Junior Cybersecurity Analyst/Engineer

Are you ready to join Leidos all-star team? Through training, teamwork, and exposure to challenging technical work, let Leidos show how to accelerate your career path.

Leidos is seeking a Junior Cybersecurity Analyst/Engineer to support Risk Management Framework (RMF) compliance with a focus on continuous monitoring, Body of Evidence (BoE) documentation, and vulnerability management. The successful candidate will analyze vulnerability results from ACAS, track remediation efforts, and ensure compliance with DISA STIGs and security baselines. This role will also contribute to the development of hardened system templates and support security audits and inspections.

This is a 100% on-site position. All work must be performed at the customer site in Bethesda at the Intelligence Community Campus.

Primary Responsibilities

• Support RMF Step 6 – Continuous Monitoring activities.

• Maintain and update BoE documentation, including POA&Ms, test results, and compliance artifacts.

• Review and analyze ACAS vulnerability scan results; track and report remediation efforts.

• Apply DISA STIGs/SRGs to assess and document system compliance.

• Assist in building and maintaining hardened system templates.

• Collaborate with system owners, ISSOs, and engineers to document security control implementation and track closure of findings.

• Support audit and inspection readiness activities.

Basic Qualifications

• Experience developing and reviewing security concept of operations, systems security plans, security risk assessments, contingency plans, configuration management plans

• Familiar with the RMF lifecycle, especially continuous monitoring.

• Familiar with ACAS vulnerability results and remediation tracking.

• Familiar with DISA STIGs/SRGs and system hardening concepts.

• Strong technical writing skills to maintain BoE documentation.

• Strong analytical, communication, problem solving, and interpersonal skills

• Candidate must, at a minimum, meet DoD M IAT Level II or higher certification (currently Security+ CE, CCNA-Security, GSEC, or SSCP along with an appropriate computing environment (CE) certification)

Education/Experience Requirements

• Typically requires a bachelor's degree and less than 2 years of relevant experience. Additional years of experience may be considered in lieu of a degree.

Clearance

• Active TS/SCI clearance with Polygraph required OR active TS/SCI and willingness to get a Poly.

• US Citizenship is required due to the nature of the government contracts we support.

Preferred Qualifications

• Familiar with Xacta, eMASS, or other RMF workflow tools.

• Familiar with Windows, Linux, and network device hardening practices.

• Familiar with scripting/automation (PowerShell, Bash, Python) for compliance checks.

Strong organizational skills with the ability to manage and track multiple remediation efforts.

At Leidos, we don't want someone who "fits the mold"—we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now."

If you're already scheming step 20 while everyone else is still debating step 2… good. You'll fit right in.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.