FIPS 140 Security Engineer

inSync Staffing

Columbia, MD, MD

JOB DETAILS
SKILLS
Algorithms, Analysis Skills, Android, Architectural Analysis, Authentication, Automation, Best Practices, C Programming Language, C++ Programming Language, CCIE - Cisco Certified Internetwork Expert, CCNA - Cisco Certified Network Associate, CCNP - Cisco Certified Network Professional, Code Reviews, Commercial Off-the-Shelf (COTS), Communication Skills, Communications Protocols, Computer Engineering, Computer Science, Computer Security, Conferences, Cryptography, Cryptography Algorithms, Debugging Skills, Debugging Tools, Dental Insurance, Documentation, Electrical Components, Electrical Engineering, FIPS (Federal Information Processing Standards) 140, Federal Information Processing Standards (FIPS), Government, IPsec (IP Security), Information/Data Security (InfoSec), Internet Security, JNCIA - Juniper Networks Certified Internet Associate, JNCIE - Juniper Networks Certified Internet Expert, JNCIP - Juniper Networks Certified Internet Professional, JNCIS - Juniper Networks Certified Internet Specialist, Java, Laboratory, Laboratory Systems, Laboratory Testing, Linux Administration, Mentoring, Microsoft Active Directory, Microsoft Visual Studio, Military, Multitasking, OpenPGP Encryption Software, OpenSSL, Oscilloscope, Penetration Testing, Physical Security, Presentation/Verbal Skills, Product Design, Product Reviews, Product Testing, Programming Languages, Project Evaluation, Public Key Infrastructure (PKI), Python Programming/Scripting Language, Reporting Skills, SSH (Secure Shell), SSL-TLS (Secure Socket Layer - Transport Layer Security), Scripting (Scripting Languages), Security Analysis, Security Protocols, Software Development, Software Testing, Statistics, Subnetting, TCP/IP (Transmission Control Protocol/Internet Protocol), Team Player, Technical Support, Technical Writing, Test Case, Test Equipment, Test Lab, Test Scripts, Testing, Time Management, United States Citizen, Validation Documentation, Validation Testing, WinDbg, Writing Skills, X.509 Digital Certificate
LOCATION
Columbia, MD, MD
POSTED
1 day ago

FIPS 140 Security Engineer

Location: 6841 Benjamin Franklin Drive, Columbia, MD 21046, USA
Position Type: Hybrid / Customer-Government Site with Telework Available
Program: Accredited Testing and Evaluation (AT&E) Common Criteria/FIPS
Duration: 6-Month Contract with Potential for Full-Time Conversion
Target Start Date: 03/02/2026
Security Clearance: None Required
Citizenship Requirement: No U.S. Citizenship Requirement
Work Schedule: Standard Business Hours
Overtime Requirement: None

Role Summary

Leidos is seeking a FIPS 140 Security Engineer to join the Accredited Testing and Evaluation (AT&E) team supporting Common Criteria and FIPS validation activities for products used in national defense and secure communications environments. This role provides an opportunity to work with commercial and government technologies in support of cryptographic validation, security testing, and product certification efforts.

The successful candidate will support FIPS 140 validation projects involving cryptographic analysis, vulnerability testing, source code review, automation development, and technical reporting within a hands-on laboratory environment. The role combines software development, security engineering, testing, and analytical responsibilities while working alongside industry experts in cryptography and information assurance.

Key Responsibilities

  • Support FIPS 140 validation projects across multiple technology and product types.
  • Perform general security analysis and product architecture evaluations.
  • Conduct vulnerability testing and physical security testing activities.
  • Perform system-level logical analysis and product evaluations against applicable technology standards and Protection Profiles.
  • Execute cryptographic and Public Key Infrastructure (PKI) testing activities.
  • Perform cryptographic algorithm validation and testing.
  • Conduct source code reviews and security analysis activities.
  • Develop and maintain technical reports and validation documentation.
  • Create automation scripts and applications to support testing activities and test case execution.
  • Develop tools and scripts to improve testing efficiency and repeatability.
  • Build and maintain testing environments and supporting lab infrastructure.
  • Analyze testing results and provide technical recommendations.
  • Support design reviews and product architecture assessments.

Required Technical Skills

  • Experience with Python programming language.
  • Experience with debugging tools and methodologies including:
    • Android Debug Bridge (ADB)
    • WinDBG
    • Visual Studio debugging tools
  • Experience performing statistical analysis of entropy sources.
  • Knowledge of cryptographic encryption algorithms.
  • Knowledge of key exchange algorithms and hashing/message authentication algorithms.
  • Understanding of Public Key Infrastructure (PKI) concepts and implementations.
  • Knowledge of random number generators and entropy generation techniques.
  • Experience with one or more programming languages including:
    • C
    • C++
    • Python
    • Java
  • Ability to interpret and apply security standard requirements to commercial products.
  • Experience configuring test environments and laboratory systems.
  • Understanding of networking fundamentals including:
    • TCP/IP
    • Subnetting
    • Routing
  • Knowledge of secure communication protocols including:
    • SSH
    • IPsec
    • TLS
  • Experience performing testing, documenting results, and technical report writing.
  • Strong troubleshooting and analytical problem-solving skills.
  • Experience with scripting and testing automation.

Preferred / Nice-to-Have Skills

  • Cryptographic Validation Program (CVP) Certification.
  • Knowledge of OpenSSL and/or OpenPGP.
  • Vulnerability assessment or penetration testing experience.
  • Strong understanding of computer security principles and industry best practices.
  • Knowledge of Active Directory and Linux administration.
  • Experience with X.509 certificate validation.
  • Experience with laboratory and electrical testing equipment including:
    • Oscilloscopes
    • Function generators
    • Multi-meters
    • Signal generators
  • Industry certifications including:
    • CCNA
    • CCNP
    • CCIE
    • JNCIA
    • JNCIS
    • JNCIP
    • JNCIE

Qualifications & Experience

  • Bachelor's degree in Computer Science, Cybersecurity, Information Assurance, Electrical Engineering, Computer Engineering, or a related technical discipline.
  • Typically requires a Bachelor's degree with 2 4 years of relevant professional experience.
  • Strong multitasking, organization, and time management skills.
  • Strong written and verbal communication skills.
  • Ability to work effectively in a collaborative laboratory and testing environment.

About the Team / Company

The Leidos Accredited Testing and Evaluation (AT&E) team supports Common Criteria and FIPS validation efforts that directly contribute to national defense and secure communications initiatives. Team members work with commercial off-the-shelf technologies deployed within military and government environments while gaining exposure to advanced cybersecurity technologies and validation methodologies.

Benefits of supporting the AT&E team include:

  • Flexible scheduling within standard business hours.
  • Opportunities to attend industry conferences and technical seminars.
  • Strong work-life balance culture.
  • Access to experienced industry experts and mentors.
  • Collaborative team environment with significant opportunities for technical growth.



Benefits (employee contribution):
  • Health insurance
  • Health savings account
  • Dental insurance
  • Vision insurance
  • Flexible spending accounts
  • Life insurance
  • Retirement plan

All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Rate of pay within the stated range will depend on the qualification of the applicant.

About the Company

i

inSync Staffing

We recognize the VMS program management team is our customer and needs to be serviced with integrity, so we built and continue to improve upon our delivery methods as we strive to provide the highest quality service possible. inSync Staffing’s management team recognized ten years ago the inevitable changes to the staffing industry being brought about by technology and the growing trend of Fortune 1000 corporations to outsource management of their contingent workforces to meet compliance and cost control goals. Rather than swim upstream against the changes, inSync Staffing has embraced MSP and VMS programs as our customers, not competitors. We asked program managers how they want to be serviced. The result of their input is that we have structured inSync Staffing as a recruiting and customer service organization, unlike traditional staffing companies who sell directly to the end client. Our delivery model allows us concentrates our resources on how to best supply candidates in a very competitive MSP/VMS program environment.
COMPANY SIZE
50 to 99 employees
INDUSTRY
Staffing/Employment Agencies
FOUNDED
2014
WEBSITE
http://www.insyncstaffing.com/default.html