The Leidos Digital Modernization Team is seeking a Zero Trust Strategist to support a highly visible fast paced cyber prime contract.

The Department of Homeland Security (DHS), Customs and Border Protection (CBP) Security Operations Center (SOC) is a US

Government program responsible to prevent, identify, contain and eradicate cyber threats to CBP networks through monitoring,

intrusion detection and protective security services to CBP information systems including local area networks/wide area

networks (LAN/WAN), commercial Internet connection, public facing websites, wireless, mobile/cellular, cloud, security devices,

servers and workstations. The CBP SOC is responsible for the overall security of CBP Enterprise-wide information systems, and

collects, investigates, and reports any suspected and confirmed security violations.

Primary Responsibilities:

The Zero Trust Strategist will excel at building and developing and communicating strategies that enable the organization to stay

at the cutting edge of our industry. The candidate should be able to effectively communicate and collaborate with both technical

and non-technical business leaders, senior government officials and C-Suite executives. The position requires the ability to

provide guidance in an advisory and tactical capacity on how to design, operate, leverage and accelerate capabilities for a zero-

trust architecture. Additionally, responsibilities will include partnering with infrastructure stakeholders to design roadmaps and

strategies to transition our networks, compute, and storage to a zero trust architecture.

Basic Qualifications:

Bachelors’ degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 12-15 years of related experience. Additional years of experience and cyber certifications may be considered in lieu of degree.

· Develop, design and spearhead the implementation of a comprehensive Zero Trust strategy/framework by socializing

the Zero Trust concepts to the client stakeholders and perform the current state cybersecurity assessment

· Advise and architect the integration of Zero Trust principles across the enterprise, through policy, prioritizing network

security, data encryption, identity and credential management, and application security.

· Drive Identity, Credential, and Access Management (ICAM) initiatives to ensure robust identity governance, multifactor

authentication, and stringent authorization aligned with Zero Trust pillars

· Coordinate with Leidos Corporate resources to help create, update and enforce security policies and procedures that

reflect Zero Trust Principles.

· Establish and enforce robust data protection measures including encryption, data classification, and secure data

handling practices to align with Zero Trust principles.

· Evaluate and recommend cutting-edge security technologies, tools, and solutions supporting Zero Trust, ensuring scalability, interoperability, and cost-effectiveness in network and data protection ·

Drive alignment to industry leading technologies and standards.

Collaborate with IT solution teams to integrate identity management solutions that improve our security posture while equally improving employee/contractor and partner onboarding experiences.

Enable the success of applications as we adopt new Zero Trust based security frameworks. ·

Collaborate closely with cross-functional teams, providing expert guidance and fostering a security-focused culture while aligning with Federal security policies. · Ensure adherence to Federal security regulations and reporting requirements, providing comprehensive documentation and reports on security postures and progress, especially within network and data domains. · Evangelize Zero Trust concepts and principles across the enterprise to help educate customer stakeholders and gain buy-in. · Continuously assess and improve the Zero Trust strategy to ensure effectiveness and relevance Basic Qualifications: ·

Experience supporting enterprise Cybersecurity programs within a federal public sector environment; specifically CBP · Familiarity with CBP’s current security architecture · Experience working with C-Suite executives in policy creation and development · Experience with the management, operational, and technical aspects of IT Security in a complex enterprise environment. · Experience with in-depth analysis of Zero Trust Infrastructures and Architecture. ·

Experience in defining security standards and reference architectures used to guide technical resources in secure system implementation and configuration for enterprise systems. · Experience implementing Cybersecurity standards utilizing NIST guidelines, preferably CISA Zero Trust · Excellent communication skills to internal and external stakeholders – ability to adjust messaging to a variety of audiences (client leadership, technical staff, team members etc.) ·

Consultative mindset and ability to map solutions against client challenges and utilizing corporate resources to support client success · Solid understanding of technical concepts and such as Encryption, Multi-Factor Authentication (MFA), Network Segmentation, Data Loss Prevention, Incident Response, Cloud Security, Network Security and Data Protection · Familiarity with predominant public cloud providers · Experience driving discussions with senior executives (technical, non-technical audience) regarding trade-offs, best practices, project management and risk mitigation. · Strong written and verbal communications skill with experience presenting to a variety of audiences (developers, managers, executives, etc.) ·

Deep hands-on experience leading the design, development, and deployment of Cybersecurity services · Experience with IT compliance and risk management requirements (e.g., FISMA, FedRAMP, DoD SRG) · Ability to connect and translate (Federal) policy documents, executive orders, and other guidance to “on the ground” technical implementations · Understanding of industry trends in Zero Trust Identity, Zero Trust Networks, Zero Trust Devices, Zero Trust Data, and Zero Trust Applications · Familiarity with technologies commonly utilized within an enterprise IT and OT environment · Zero Trust knowledge of NIST and CISA guidelines and compliance requirements ·

Familiarity with The Open Group Architecture Framework (TOGAF), Open Web Application Security Project (OWASP), Open Security Architecture, National Institute of Standards and Technology (NIST) Cloud Computing Reference Architecture, or other architecture frameworks

Full understanding and working experience of federal government directives (M-22-09, EO-14028,..) · Knowledge of security, risk, and control frameworks and standards such as ISO 27001 and 27002, SANS-CAG, NIST CSF, NIST RMF, NIST 800-53, 800-207, 1800-35, FICAM, CMMC, FISMA, COBIT, COSO, CISA Zero Trust Maturity Model, DoD Zero Trust Reference Architecture and ITIL · Able to be hands-on with technical engineering and process management skills and the ability to advocate positive transformation within the broader information technology organization

Clearance: · All Department of Homeland Security CBP SOC employees are required to favorably pass a 5-year (BI) Background Investigation.

Original Posting Date:2024-06-20

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:Pay Range $122,200.00 - $220,900.00

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.