Cybersecurity Analyst SME

Leidos Inc, Bethesda, MD, United States

Duration: Full Time

Description

Leidos has an exciting opportunity for Cybersecurity Analyst SME in our Intel Security Sector's Analysis Solutions Business Area. Our talented team is at the forefront in Security Engineering, Computer Network Operations (CNO), Mission Software, Analytical Methods and Modeling, Signals Intelligence (SIGINT), and Cryptographic Key Management. At Leidos, we offer competitive benefits, including Paid Time Off, 11 paid Holidays, 401K with a 6% company match and immediate vesting, Flexible Schedules, Discounted Stock Purchase Plans, Technical Upskilling, Education and Training Support, Parental Paid Leave, and much more. Join us and make a difference in National Security!

Job Summary

The Cybersecurity Analyst SME supports the organization's cybersecurity program by implementing and maintaining security operations at both tactical and operational levels. This role helps ensure that security controls are operating effectively across key areas including security logging, monitoring, alert management, incident response, vulnerability management, and configuration management.

The analyst will work closely with multidisciplinary teams-including Information Systems Security Engineers (ISSEs), Information Systems Security Managers (ISSMs), software developers, and systems engineers -to strengthen the security posture of mission systems. Throughout the DevSecOps lifecycle, the candidate will assist in developing, implementing, and maintaining robust security strategies that protect mission-critical systems, data, and infrastructure while ensuring compliance with organizational and federal cybersecurity requirements.

Primary Responsibilities:

Monitor system and network security using Security Information and Event Management (SIEM) tools such as Splunk Enterprise Security to detect, analyze, and respond to potential threats or anomalous activity. Investigate and respond to cybersecurity incidents, including system or network breaches and malware attacks, and support digital forensic investigations as needed.
Conduct routine vulnerability scans, provide formal and informal reports to technical teams, and track remediation efforts to closure.
Research and evaluate emerging cybersecurity threats and mitigation strategies; proactively identify security weaknesses and vulnerabilities; and audit systems to ensure secure configurations.
Audit systems configuration to ensure compliance with established cybersecurity policies, standards, and secure configuration baselines.
Continuously monitor security advisories, bulletins and industry threat intelligence to stay informed of current vulnerabilities, threats and trends.
Participate in data analysis and root cause analysis following service-impacting incidents and providing recommendation for corrective actions and security improvements. Collaborate with technical teams, developers, and customer leadership to strengthen the overall security posture of the supported systems.
Provide risk-based recommendations to customers after reviewing the overall risk posture of sponsored assets as part of the Risk Management Framework (RMF) and Authority to Operate (ATO) processes. Manage and track customer-sponsored assets' Plans of Action and Milestones (POA&Ms) by coordinating with key security stakeholders (ISSO, ISSE, ISSM, SCA) throughout the post-authorization lifecycle.

Basic Qualifications:

Experience utilizing and tuning Splunk Enterprise Security (or similar SIEM platforms) to analyze cybersecurity audit and event logs, identify notable events, and optimize alerting rules while applying strong analytical, problem-solving, and organizational skills with exceptional attention to detail.
Experience reviewing published vulnerabilities (e.g., CVEs) and determining potential impact by analyzing system logs and indicators of compromise to detect active exploitation
Experience supporting incident detection, incident response, forensic investigations, incident response plan execution while documenting findings and results following security data calls, incident investigations, or vulnerability assessments
Experience identifying vulnerabilities and non-compliance with cybersecurity standards, security policies, and regulatory requirements. Experience coordinating with security personnel and recommending mitigation strategies to reduce risk and strengthen system security. Experience reviewing Risk Management Framework (RMF) documentation and providing feedback to ensure completeness and compliance with security requirements.
Experience collaborating with DevSecOps teams to analyze vulnerability scan results and support remediation of identified security findings.
Experience managing and maintaining a library of security audit tools and processes used for system security testing, internal audits, incident response, and troubleshooting security-related issues. Experience performing and maintaining vulnerability scans using customer-approved tools and generating reports detailing risk findings and remediation progress.
Education/Experience: Requires MS degree and 15 or more years of prior relevant experience. Additional years of experience may be substituted in lieu of a degree.

**To be considered must have an active TS/SCI with polygraph security clearance

Preferred Qualifications:

Familiar with SEIM platforms
Experience with RHEL
Experience with additional security tools such as Rapid7, Tenable/Nessus, HBSS/Trellix, Wireshark, Static analysis (SAST) and dynamic analysis (DAST) tools or endpoint detection and response (EDR) platforms.
Familiarity with NIST cybersecurity frameworks, including NIST SP 800-53, RMF processes, and federal compliance standards.
Experience supporting cloud security monitoring and compliance within AWS, Azure, Oracle (OCI) or Google Cloud environments.
Professional cybersecurity certifications such as Security+, CISSP, CySA+, CEH, or GCIH.
Experience developing or supporting security dashboards, reporting metrics, or threat-hunting activities.

At Leidos, the opportunities are boundless. We challenge our staff with interesting assignments that allow them to thrive professionally and personally. For us, helping you grow your career is good business. We look forward to learning more about you - apply today.

CABARESTON

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.

Original Posting:

April 3, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $154,050.00 - $278,475.00

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.