Senior Security Assessor

As the largest provider of IT services, Leidos develops and sustains large data and technology infrastructures and integrates complex law enforcement IT system for several US federal agencies.  At Leidos we offer engaging careers, a collaborative culture, and support for your career goals and growth.  This role would be serving a federal law enforcement agency in Clarksburg, WV with remote work possible.

We are seeking a talented and experienced Senior Security Assessor on our team. The ideal candidate will be responsible for leveraging expertise in security testing methodologies to conduct thorough security assessments, utilizing application security tools such as Nessus and Nmap, demonstrating knowledge of network mapping and web application exploitation techniques, actively participating in both blue and red team assessments, and ensuring strict compliance with frameworks like FedRAMP, NIST, and OWASP. This role will be part of a dedicated security assessment team which is part of a larger team that is responsible for identifying and mitigating security vulnerabilities across the organization's applications and infrastructure.

Primary Responsibilities:

• Plan and execute comprehensive security assessments of applications, systems, and networks.

• Utilize application security tools (e.g., Nessus, Nmap) to identify vulnerabilities and weaknesses.

• Perform network mapping to understand network topology and potential attack vectors.

• Conduct web application penetration testing to assess for common web exploitation techniques.

• Participate in blue team activities, analyzing security logs and monitoring systems for suspicious activity.

• Participate in red team exercises, simulating real-world attacks to identify vulnerabilities and test defense effectiveness.

• Analyze assessment results and prepare detailed reports documenting findings, risks, and remediation recommendations.

• Communicate security findings and recommendations to developers, system administrators, and other stakeholders.

• Verify the implementation of security fixes and remediation efforts.

• Develop and maintain security testing methodologies and procedures.

• Stay up-to-date on the latest security threats, vulnerabilities, and testing techniques.

• Ensure compliance with relevant security frameworks and standards, such as FedRAMP, NIST, and OWASP.

• Collaborate with other security professionals to improve the overall security posture.

• Automate security testing processes where possible.

• Provide guidance and mentorship to junior security assessors.

Basic Qualifications:

• Bachelor’s Degree in Software Engineering, Computer Science, Information Systems

• Management, Cyber Security or other related discipline, or equivalent experience; additional years of experience may be considered in lieu of a degree

• 6+ years of prior relevant experience

• Certified Ethical Hacker (CEH) or Certified Information Systems Auditor (CISA) required

• Professional work experience with a variety of dynamic and static application security tools to include Nessus and Nmap

• In-depth knowledge and professional work experience with network mapping, web application exploitation, and database reconnaissance

• Previous experience with blue and red team assessments

• Experience with information systems security risk assessments, compliance reviews, in-depth vulnerability assessments on a variety of OS, databases, web application/services, and virtualization platforms

• Experience in information system compliance with government standards and industry best practices, including FedRAMP, NIST, OWASP, Common Criteria, DISA, and SANS Institute

• Expertise in the evaluation of enterprise wide security functional testing methodologies and strategies to include technical and operational controls test through automated and manual processes.

• Ability to research and learn both independently and as part of a team

• Must have reliable internet access

• Must be a US Citizen to apply

• DOD Top Secret Clearance is required

Original Posting:

May 20, 2025

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $104,650.00 - $189,175.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.