Fayetteville NC US 28308
Description
The Digital Modernization Sector at Leidos currently pursuing a new opportunity that has openings for a Cyber Security Architect to work in Fayetteville, NC. This is an exciting opportunity to use your experience helping the U.S. Special Operations Command (USSOCOM) Enterprise Development, Application, and Training (EDAT) mission. In this mission we are focused on providing innovative, data-driven solutions and enterprise architecture enhancements to enable seamless operations across USSOCOM's global network. The program emphasizes rapid development and deployment of technologies to enhance the mobility and readiness of Special Operations Forces (SOF) in both combat and non-combat scenarios. Key tasks include program management, application development, training support, and technology integration to maintain USSOCOM's operational edge. The EDAT program underscores agility and adaptability, ensuring SOF professionals have access to the information and tools they need to meet evolving mission requirements.
Primary Responsibilities
Architect, implement, and maintain robust cybersecurity solutions with a focus on Commercial Solutions for Classified (CSfC) infrastructure and Cross Domain Solutions (CDS) Access, ensuring secure data transfer and interoperability across classified networks.
Lead the design and modernization of CSfC architectures, aligning USASOC G6 infrastructure with USSOCOM’s strategic objectives to integrate Trusted Thin Client Remote (TTC-R) as a Program of Record (POR).
Develop and implement Zero Trust (ZT) architectures by incorporating micro-segmentation, identity-based access controls, and multi-layered encryption to enhance security posture across hybrid, cloud-based, and on-premises environments.
Engineer and optimize secure network architectures, leveraging advanced routing and switching expertise (Cisco CCNP ENCOR, ENSLD) to design resilient, mission-critical Software-Defined Networks (SDN), converged networks, and hyper-converged compute platforms (e.g., Cisco HyperFlex, Dell XC systems).
Evaluate, deploy, and configure advanced security solutions, including firewalls, VPNs, intrusion prevention/detection systems (IPS/IDS), endpoint protection platforms (EPP), and SIEM systems, ensuring compliance with DISA STIGs, RMF, and NIST 800-53.
Develop secure identity and access management (IAM) strategies, implementing Public Key Infrastructure (PKI), Identity, Credential, and Access Management (ICAM), Attribute-Based Access Control (ABAC), and Role-Based Access Control (RBAC).
Integrate advanced encryption and authentication mechanisms, ensuring secure data transmission across classified and unclassified networks by leveraging NSA-approved CSfC encryption suites.
Support the development and implementation of NSA CSfC Capability Packages (CPs), producing comprehensive network diagrams, security checklists, deviation statements, and general registration documents.
Conduct advanced threat analysis, risk assessments, and vulnerability management, applying proactive security measures to mitigate potential cyber threats and ensure mission-critical system resilience.
Lead and mentor cybersecurity and network engineering teams, providing expert guidance on CSfC, CDS, network security, and secure system architecture.
Collaborate with government stakeholders, engineers, program managers, and vendors, ensuring cybersecurity best practices are embedded into system development lifecycles (SDLC) and aligned with USSOCOM’s evolving mission requirements.
Develop and maintain cybersecurity documentation, including security architecture frameworks, implementation guides, system security plans, and risk assessment reports, ensuring continuous compliance with DoD cybersecurity mandates.
Advise and lead incident response efforts, leveraging forensic analysis techniques to rapidly detect, contain, and remediate security breaches.
Basic Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field or 12+ years of years designing advanced non-terrestrial and terrestrial networks to support tactical and complex mission sets
Active Secret clearance with the ability to obtain Top Secret.
4+ years of experience in CSfC implementation, CDS architecture, or Zero Trust (ZT) security frameworks.
Advanced network engineering expertise with Cisco CCNP ENCOR and ENSLD certifications, demonstrating deep technical knowledge of enterprise network design, secure routing, switching, and SDN architectures.
Proficiency in secure system design, including network segmentation, MPLS, BGP, VPLS, SD-WAN, and VPN tunneling technologies.
Hands-on experience with DoD security frameworks, including DISA STIG compliance, RMF accreditation, and NIST 800-53 security controls.
Expertise in deploying, configuring, and hardening security tools, including SIEM solutions, IDS/IPS, endpoint protection platforms (EPP), and next-gen firewalls.
Experience integrating and managing cryptographic technologies, including NSA CSfC-certified encryption solutions and PKI authentication frameworks.
Strong ability to work collaboratively with cross-functional teams, including system engineers, software developers, and senior government stakeholders, to embed cybersecurity into all aspects of IT and mission operations.
Preferred Qualifications
Bachelor’s degree in Cybersecurity, Computer Science, Engineering, or a related field
Advanced networking certifications beyond CCNP ENSLD, such as CCIE Security, AWS Advanced Networking, or GIAC Certified Enterprise Defender (GCED).
Hands-on experience designing and deploying Zero Trust (ZT) environments, integrating Identity, Credential, and Access Management (ICAM), micro segmentation, and multi-layered encryption.
Expert-level proficiency in cross-domain security solutions, including Tactical CDS, Multi-Level Security (MLS), and Guard-based architectures.
Experience working within USSOCOM environments, with a deep understanding of the SOF Information Environment (SIE) and tactical networks.
Strong background in developing cybersecurity roadmaps, performing gap analyses, and implementing long-term strategic security initiatives.
Ability to develop and present technical recommendations to senior leadership, government stakeholders, and cybersecurity committees, ensuring alignment with mission-critical objectives.
Proven leadership experience mentoring cybersecurity and network engineering teams, ensuring technical excellence and mission success
Original Posting:
March 19, 2025
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $126,100.00 - $227,950.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Leidos / Equal Opportunity Employer
R-00155759 JBLDJ 2025-03-19 13:13:47 UTC
