Job Descriptionhackajob is collaborating with Leidos to connect them with exceptional professionals for this role. NSenior Cyber SecurityEngineer/ Architect / Lead NLocation: Farnborough NSecurity Clearance Leve High: DV – Developed Vetting N nRoleOverview: NEverything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of our Leidos culture is our Values, Beliefs and Expectations by which we select, recognise and reward employees. They create the environment that drives us toward our mission. N nInspired to make a difference, we are committed to solving the world’s toughest problems. Passionate about customer success, we work closely with our stakeholders to understand, shape, and deliver secure solutions that enable critical outcomes. N nUnited as a team, we are bound together by our conviction that ethics and integrity are core to how we operate. In this role, you will be a trusted security practitioner, working with minimal direction on a critical programme and helping to raise the security bar across engineering and operations. N nBecause of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Senior Cyber Security Engineer based in the UK working at our Farnborough site and remotely. NLeidos has more than 30 years’ experience of developing and running some of the largest government systems in the world. We are currently hiring to expand our UK based technical team who support our delivery for the UK Govt. NCome join our team and further develop your skills as we deliver and support systems key to the defence of the UK and partner nations. NBeing part of the Leidos team is a commitment to push yourself and those around you to do better, constantly adapt and learn new technologies. We’re a passionate team and are committed to developing and growing our staff. NLeidos is a global science and technology solutions leader working to solve the world’s toughest challenges in the defence, intelligence, homeland security, civil, and health markets. The company’s 33,000 employees support vital missions for government and commercial customers. NWhat Will You Be Doing? NTo support current program delivery, we currently have a permanent vacancy for a Senior Cyber Security Engineer to support the development and transition into live of a MOD application and infrastructure solution providing support to a critical operational end user. NLeidos is seeking an enthusiastic protective security specialist to lead the implementation and assurance of security within a key defence project. You will contribute across the delivery lifecycle—shaping secure designs, defining and assuring controls, and providing senior-level security engineering support across protective and information security. You will have demonstrable experience applying recognised security frameworks (e.G., Government Functional Standard 007, NIST, CIS benchmarks) to real-world systems and services. NYou will be joining ateam of highly skilled and highly motivated individuals who are working on one of the UKs leading programmes. NRequired Skills: NThe Senior Cyber Security Engineer (T4) plays a critical role in protecting and enabling mission IT by combining deep technical expertise with pragmatic risk management. You will be able to work with minimal direction on a specific programme, taking responsibility for planning, implementing, and assuring security controls across infrastructure, platforms, and applications (including cloud services). You will provide clear security advice and assurance to stakeholders, typically aligned to HMG/MOD expectations and recognised standards (e.G., NIST, CIS benchmarks), and you will support teams by sharing knowledge and guiding good practice. NKey functions/outputs: N1. Vulnerability Management, Reporting & Risk Prioritisation N2. Endpoint, Identity& Cloud Security Engineering (AWS) N3. Incident Response Leadership & Operational Security N4. Secure Configuration, Hardening & Compliance Assurance N5. Security Design Review, Change Impact Assessment & ST&V N6. Stakeholder Engagement, Governance & Decision Support N7. Documentation, Mentoring & Continuous Improvement NMain Objectives: NVulnerability Management, Reporting & Risk Prioritisation NPerform regular vulnerability assessments and generate actionable reporting using approved toolsets (or equivalent). The process should focus on ensuring scanners and signatures are current, coverage is agreed, and findings are prioritised based on risk, mission impact, and exploitability. You will support (and where required lead) triage with engineering teams to drive remediation to closure and provide clear risk narratives to senior stakeholders. NnnCode Scans: perform regular code scans to assess code quality, detect potential bugs, and identify security vulnerabilities; work with development teams to agree remediation approaches and prevent recurrence. NnnVulnerability Management Tooling: perform regular vulnerability management scans and ensure repositories/plugins are maintained to detect emerging vulnerabilities across endpoints, servers, and cloud workloads. NnnReporting: produce and quality-assure recurring vulnerability and risk reporting for the cyber security and IA lead; highlight trends, systemic issues, and recommendations for control improvements. NnnEndpoint, Identity & Cloud Security Engineering (AWS): NnnEndpoint Protection: drive endpoint security posture through regular updates, policy tuning, and validation activities aligned to current threats and programme requirements. NnnAntivirus and Anti-malware Protection: perform assurance checks to ensure controls are deployed successfully, monitored, and kept up to date; define exceptions and compensating controls where needed. NnnNetwork Controls: perform compliance checks and targeted audits of network security controls (e.G., firewall rules, segmentation, proxying) to ensure unauthorised access and threats are blocked and logged appropriately. NnnAccess Control & IAM: design and ensure access controls are implemented correctly to enforce least privilege and need-to-know across systems and data; provide oversight of privileged access, account lifecycle, and authentication policy. NnnAWS Cloud Security: design and assure cloud security controls across networking, identity, logging/monitoring, and configuration management; validate guardrails andsupport secure landing zone patterns where applicable. NnnIncident Response Leadership & Operational Security: NnnIncident Identification: help to recognise and confirm potential incidents through alerts, logs, and user reports; apply sound judgement to distinguish true threats from false positives. NnnIncidentResponse: lead or provide senior support to containment, eradication, investigation, and recovery activities; coordinate with serviceowners and stakeholders to restore operations and capture lessons learned. NnnTickets & Requests: manage and resolve tickets raised to the Leidos Security group that require Cyber Security Engineering input; prioritise based on risk and impact, and mentor others through complex issues. NnnSecure Configuration, Hardening & Compliance Assurance: NnnPatch Updates to Security Products: ensure security toolsets are kept up to date with patches and software updates; assess impact and coordinate change implementation in line with governance. NnnSystem Compliance: perform and oversee regular compliance audits to ensure systems meet agreed baselines and best practices (e.G., CIS, STIG, NIST); manage exceptions with evidence-based rationale and compensating controls. NnnSecurityEnforcing Function Configuration: assist in the design, review, and improvement of security enforcing functions (e.G., GPOs, system policies, cloud guardrails) to ensure they are compliant, testable, and fit for purpose. NnnAssurance Activities: conduct periodic technical assessments (configuration reviews, control testing, threat-driven checks) to identify weaknesses and drive measurable improvements. NnnSecurity Design Review, Change Impact Assessment & ST&V: NnnSecurity Impact Triage Tool (SITT): lead or support evaluation and impact assessment of proposed changes to security posture; provide clear recommendations, conditions, and required evidence for approval. NnnSecurityEvaluation, Testing and Assurance (ST&V): plan and execute security evaluation and assurance activities for changes delivered through PI Planning; define test scope, coordinate evidence capture, and ensure outcomes are documented and traceable. NnnStakeholder Engagement, Governance & Decision Support: NSenior Cyber SecurityEngineers are expected to lead and contribute to governance forums and working groups, providing clear security advice, risk-based recommendations, and decision support. This may include the following depending on work activity. NYou will interface with customer security representatives, accreditation/assurance stakeholders, delivery teams, and third-party/supplier engineers to agree security requirements, provide evidence, manage risks and exceptions, and support timely decisions. NnnSecurity Working Group (SWG) NnnCustomer/Supplier Security Forums NnnVulnerability Triage NnnSecurityWorkshop NnnPI Planning NnnDaily Standups (Blue/Green Team) NnnDocumentation, Mentoring & Continuous Improvement: NSenior Cyber SecurityEngineers are responsible for creating, maintaining, and reviewing high-quality documentation and security evidence. This includes High-Level & Low-Level Designs (HLD/LLD), Standard Operating Procedures (SOPs), risk assessments, and compliance/assurance reports. You will also support capability uplift through mentoring, knowledge sharing, and identifying opportunities to automate and improve security processes. NEssential Experience: NnnProven experience in a senior cyber security engineering role, delivering security outcomes across complex IT environments (on-prem and/or cloud). NnnPractical experience implementing security as code and policy as code in AWS environments, leveraging tools such as AWS CloudFormation, Terraform, and AWS Organisations service control policies. NnnStrong knowledge of secure configuration and hardening practices, and ability to apply benchmarks/standards (e.G., CIS, NIST, STIG) pragmatically. NnnHands-onexperience with vulnerability management and risk-based prioritisation, including working with engineering teams to drive remediation. NnnExperience supporting or leading incident response activities, including investigation, containment, and lessons learned. NnnAbility to communicate technical security issues clearly to non-specialists and support governance/assurance decision-making. NnnExperience producing high-quality security documentation and evidence suitable for audit/assurance. NnnAWS security-related certifications (e.G., AWS Certified Security – Specialty) or equivalent cloud security experience. NnnDesirable Certifications: NnnCISSP, CISM,or equivalent senior-level security certification. Nnnn NDegree or postgraduate qualification in cyber security, such as a master’s or PhD in Information Security, Cyber Security, or a related discipline. NnnClearance Requirements: NnnClearance toStart and for Role SC/DV Nnn…
