March 16, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. The selected individual will lead all security engineering efforts for a large, complex network environment with geographically distributed systems; and will manage a team of Information Systems Security Officers (ISSOs) and Information Systems Security Engineers (ISSEs), providing technical leadership and direction to meet program requirements.
The CIOCC Tier 3 Analyst shall be responsible for the following but not limited to: Analyze and respond to security events and incidents from SIEM, Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Network Access Control (NAC) and other client data sources. This is a customer facing role, and will require excellent analytic and communication skills, delegation, and shared ownership of team processes.
p>The selected candidate will have a range of day-to-day responsibilities across multiple activities, including the following: Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems that are part of a large complex network environment with geographically distributed components.
Must have experience developing and implementing integrated security services management processes, such as assessing and auditing network penetration testing, anti-virus planning assistance, risk analysis, and incident response.
Aberdeen Proving Ground, Maryland30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications.
Expertise in exploitation techniques including buffer overflows, fuzzing, SQL injection, Man-in-the-Middle attacks, covert channels, secure tunneling, XSS, privilege escalation, and lateral movement.
Annapolis, Maryland17 days ago
Successful candidates will conduct in-depth assessments of web applications, APIs, mobile applications, and supporting infrastructure while leveraging custom tooling, manual testing techniques, and advanced exploitation methodologies to uncover impactful security findings. The ideal candidate will possess deep expertise in web application security testing, vulnerability research, and exploitation techniques, with the ability to identify complex attack paths and develop creative solutions to challenging security problems.
Fort Meade, MD30+ days ago
Bachelor of Science degree in Computer Science, Electrical Engineering, Computer Engineering, Physics or similar technical field and 10 years of penetration testing experience. + Lead the information assurance evaluation of target systems, including developing threat models, conducting security analysis and testing, demonstrating vulnerabilities and documenting the results.
There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. Minimum Qualifications:
- Bachelor of Science degree in Computer Science, Electrical Engineering, Computer Engineering, Physics or similar technical field and 10 years of penetration testing experience.
Aberdeen Proving Ground, MD30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Expertise in exploitation techniques including buffer overflows, fuzzing, SQL injection, Man-in-the-Middle attacks, covert channels, secure tunneling, XSS, privilege escalation, and lateral movement.
Annapolis Junction10 days ago
To learn more about recruitment fraud and how to report it, please refer to https://www.parsons.com/fraudulent-recruitment/. In this role you will be responsible for simulating adversary tactics and working with other threat analyst team members to inform the proactive identification of cyber threats with the goal to prevent and eradicate threats to critical U.S. systems.
Annapolis Junction, MD30+ days ago
for description visit the url https://jobs.baesystems.com/global/en/job/BAE1US125477BREXTERNAL/Senior-ISSE/Penetration-Tester.
In this role you will be responsible for simulating adversary tactics and working with other threat analyst team members to inform the proactive identification of cyber threats with the goal to prevent and eradicate threats to critical U.S. systems. To learn more about recruitment fraud and how to report it, please refer to https://www.parsons.com/fraudulent-recruitment/.
Baltimore, MD30+ days ago
We are seeking a Senior Systems Security Specialist to lead and execute offensive security initiatives, including advanced penetration testing and red team engagements across networks, applications, APIs, and cloud environments. Responsibilities:- Conduct internal and external penetration testing of networks, web applications, APIs, and cloud environments to uncover security vulnerabilities and exploit paths.
Baltimore, MD30+ days ago
Matrix Systems and Technology is seeking a Systems Security Specialist to perform internal and external penetration testing of networks, web applications, API's, and cloud environments to identify security vulnerabilities and exploit paths, and other related tasks. A minimum of five (5) years of working with NIST Cybersecurity Framework, NIST 800-53 or similar federal control frameworks, MITRE ATT&CK and OWASP Top 10 A minimum of five (5) years of experience mapping findings to security control frameworks.
Gaithersburg, MD30+ days ago
Leidos Digital Modernization sector is seeking an experienced SME Penetration Testing Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations. Ideal candidates are motivated by mission impact, comfortable operating in complex stakeholder environments, and interested in building deep domain expertise while delivering capabilities with real-world national security outcomes.
Gaithersburg, Virginia30+ days ago
April 20, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Leidos Digital Modernization sector is seeking an experienced SME Penetration Testing Analyst to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations.
Annapolis Junction, Maryland17 days ago
The selected individual will work on a team of cyber Subject Matter Experts (SMEs) who are providing support to a large, complex technical program for preventing, identifying, containing and eradicating cyber threats to networks through monitoring, intrusion detection, and protective security services on information systems including local area networks/wide area networks (LAN/WAN), commercial Internet connections, public facing websites, security devices, servers and workstations. A Lead Penetration Tester is needed to join a high performing agile team using the Scaled Agile Framework (SAFe) methodology on a large, complex program that provides system engineering, development, test, integration and operational support.
Gaithersburg, MD30+ days ago
Leidos Digital Modernization sector is seeking an experienced Senior Penetration Testing Analyst Lead to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD organizations. Ideal candidates are motivated by mission impact, comfortable operating in complex stakeholder environments, and interested in building deep domain expertise while delivering capabilities with real-world national security outcomes.
Rockville, MD30+ days ago
Our clients include the US Department of Education, US Department of Transportation, US Department of Justice, US Department of Health & Human Services, Montgomery County government, Prince George's County Government, the governments of the State of Maryland and the District of Columbia. A minimum of five (5) years conducting network penetration testing, web application and API testing, internal and external vulnerability assessments and threat modeling and attack path analysis.
The selected individual will lead all security engineering efforts for a large, complex network environment with geographically distributed systems; and will manage a team of Information Systems Security Officers (ISSOs) and Information Systems Security Engineers (ISSEs), providing technical leadership and direction to meet program requirements. At least twelve years of experience with defense-in-depth principals/technology (including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture) and applying risk assessment methodology to system development.
Lexington Park, MD30+ days ago
Basic Qualifications: Requires a minimum of 10 years of related experience with a Bachelor's degree; or 8 years and a Master's degree; or a PhD with 5 years' experience; or equivalent combination of related education and work experience. This dual focus enables us to address the evolving needs of our sponsors, ensuring scalable and effective cybersecurity solutions that meet today's challenges and anticipate tomorrow's threats.
Lexington Park, MD30+ days ago
p>Basic Qualifications: - Requires a minimum of 8 years of related experience with a Bachelor's degree; or 6 years and a Master's degree; or a PhD with 3 years' experience; or equivalent combination of related education and work experience. This dual focus enables us to address the evolving needs of our sponsors, ensuring scalable and effective cybersecurity solutions that meet today's challenges and anticipate tomorrow's threats.
Baltimore, MD30+ days ago
p>DMI, LLC is seeking a Senior Systems Security Specialist to perform internal and external penetration testing of networks, web applications, APIs, and cloud environments to identify security vulnerabilities and exploit paths, and other related tasks. With a focus on end-to-end managed IT services, including managed mobility, cloud, cybersecurity, network operations, and application development, DMI supports public sector agencies and commercial enterprises around the globe.
In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts.
Chevy Chase, MD30+ days ago
Success in this role means you can champion operations end-to-end: shape the scope and objectives, define safety controls and deconfliction, build or tailor emulation plans, execute advanced operator tradecraft in authorized environments, and deliver clear findings mapped to TTPs, telemetry gaps, and detection opportunities. Partner with defenders: work directly with Detection Engineering, Threat Intelligence, and Risk Management to validate telemetry coverage, tune detections, improve response playbooks, and close visibility gaps.
Aberdeen Proving Ground, Maryland30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. You'll have the opportunity to work across diverse technical and security domains, collaborating with subject matter experts, highly skilled engineers, and penetration testers while introducing modern project management methodologies to drive mission success.
Aberdeen Proving Ground, MD30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. You''ll have the opportunity to work across diverse technical and security domains, collaborating with subject matter experts, highly skilled engineers, and penetration testers while introducing modern project management methodologies to drive mission success.
Rockville, MD30+ days ago
This role integrates the cyber security philosophy into the design of plant information and operational technology systems and is responsible for implementation and assessment of cyber security systems, supports the cyber security assessments of Xe-100 systems, and recommends solutions to cyber security issues. One or more of the following qualifications is required: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), GIAC (Global Information Assurance Certification), Certified Incident Handler GCIH, GIAC Certified Penetration Tester (GPEN), Global Industrial Cybersecurity Professional (GICSP) or equivalent.
Aberdeen Proving Ground, Maryland30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications.
You'll collaborate closely with penetration testers and other engineers, bringing your computer engineering expertise while cross-training in complementary disciplines to build comprehensive security assessment workflows..
Aberdeen Proving Ground, MD30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Youll collaborate closely with penetration testers and other engineers, bringing your computer engineering expertise while cross-training in complementary disciplines to build comprehensive security assessment workflows.
Annapolis Junction, Maryland30+ days ago
p style="margin: 0px; padding: 0px; color: windowtext;">Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with a polygraph is required. - Experience with encryption techniques, routing, and network infrastructure.
Columbia, Maryland30+ days ago
February 9, 2026For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Our talented team is at the forefront in Mission Software, Security Engineering, Computer Network Operations (CNO), Offensive Cyber, AI/ML, Analysis, Signals Intelligence (SIGINT), and Cryptographic Key Management.
As an analyst on our team, you will provide expert analytic support while working alongside the mission owners to tackle complex and challenging problems in computer network analysis, network exploitation, digital network intelligence, dataflow, access development, and target network analysis. This will provide an opportunity to grow your expertise, develop new skills and tradecraft, use and share your methodologies and tool experience with other analysts, and most importantly, be a part of a team conducting offensive cyberspace operations that are crucial to national security.
In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. The Senior Backend Data Test Engineer will be responsible for validating large-scale data systems, ensuring data accuracy, integrity, and consistency across backend platforms and corresponding frontend/UI applications.
p>We are seeking a Subject Matter Expert (SME)level Lead Security Engineer to lead application security across a large-scale, cloud-native federal modernization program supporting the U.S. Census Bureaus Decennial Transformation and Application Modernization (DTAM) effort. In recognition of all these efforts, B&A has been named a Companies as Responsive Employers (CARE) award recipient by Northern Virginia Family Services and nominated by the Northern Virginia Chamber of Commerce for Outstanding Corporate Citizenship Award.
The ideal candidate brings strong hands-on application security expertise, experience integrating security into CI/CD pipelines, and the ability to leverage modern automation and GenAI technologies to scale secure code review and vulnerability analysis capabilities. For over 25 years, we have connected thousands of consultants with meaningful roles through a personal, communication-driven approach, partnering with a diverse client base to build high-performing teams and create lasting impact.
College Park, Maryland30+ days ago
p>Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications.
· Implement and manage security technologies including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security information and event management (SIEM) tools.
Collaborate within an expanding Cybersecurity team, and work closely with internal EnerSys teams to ensure new and continued compliance with cybersecurity frameworks and required programs and initiatives. - Serve as a primary liaison between the Cybersecurity and development teams, ensuring security is integrated into design, development, deployment, and operations.
p>This program is driving a large-scale transformation of systems into a data-centric, cloud-native ecosystem capable of supporting high-volume, near real-time data processing and advanced analytics. We apply modern capabilities, including AI/ML, cloud, cybersecurity, and IT modernization to solve complex challenges, enable faster and more secure operations, and drive measurable mission outcomes.
College Park, MD19 days ago
Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Implement and manage security technologies including firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security information and event management (SIEM) tools.
Lexington Park, MD1 day ago
The MIL Corporation provides a full range of engineering services including cyber resiliency engineering, vulnerability research, software and hardware penetration testing, reverse engineering, support of the NAVAIR Red Team, as well as other System Security Engineering (SSE) support to Naval Aviation acquisition programs. Analyzes designs, develops, implements, tests, or evaluates software, components, or systems related to engineering or functional requirements of military weapons systems, associated support systems, or management information systems.
This role blends deep security engineering expertise with strong architectural leadership, hands-on experience, leveraging frontier AI models for security, drive customer success, and provide advisory to senior executive leaders. You are equally comfortable advising executive leadership as you are designing and building secure systems, bringing a rare blend of strategic influence and deep engineering execution to elevate the organization's security posture.
li>Analyze and exploit vulnerabilities through detailed operational logging, leveraging strong documentation and communication skills to translate complex technical findings into actionable remediation guidance that directly hardens the organization's security. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights..
Please find us at https://sgainc.com/ . This role involves in evaluating security vulnerabilities, security tools, implementing security solutions, and leveraging latest solutions to secure code review capabilities.
Suitland, Maryland25 days ago
In support of our various efforts, we have developed the Onyx Data Management Toolkit, a combination of Agile Development principles, COTS Integration, and custom software, to deliver flexible, cost-effective solutions to a variety of Department of Defense, Intelligence Community, and Law Enforcement agencies. We are seeking a Subject Matter Expert (SME)–level Lead Security Engineer to lead application security across a large-scale, cloud-native federal modernization program supporting the U.S. Census Bureau’s Decennial Transformation and Application Modernization (DTAM) effort.
strong> Required Skills :- Bachelor's degree in a technical field such as computer science, computer engineering or related field required. Software Guidance & Assistance, Inc., (SGA), is searching for a Senior Application Security Engineer for a CONTRACT assignment with one of our premier Regulatory clients in Rockville, MD.
Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. The strongest candidates will have experience working in these areas:
- Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems that are part of a large complex network environment with geographically distributed components.
Annapolis Junction, MD3 days ago
Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. The strongest candidates will have experience working in these areas: Validating and verifying system security requirements and establishing system security designs for large-scale systems, major system elements, and interfacing systems that are part of a large complex network environment with geographically distributed components.
Lexington Park, MD1 day ago
The MIL Corporation provides a full range of engineering services including cyber resiliency engineering, vulnerability research, software and hardware penetration testing, reverse engineering, support of the NAVAIR Red Team, as well as other System Security Engineering (SSE) support to Naval Aviation acquisition programs. The MIL Corporation seeks a Senior Systems Security Engineer (Security Engineering, Senior Associate) that will support our Naval Aviation acquisition programs, which has an exciting opportunity supporting a major ACAT developmental program.
College Park, MD30+ days ago
3+ years of hands-on AWS security engineering experience with in-depth knowledge of: IAM VPC security KMS GuardDuty CloudTrail Security Hub S3 security controls AWS Security Specialty or AWS Solutions Architect certifications (preferred). Overview We are seeking an experienced AWS Security Engineer to ensure the security, integrity and compliance of cloud infrastructure and applications hosted on Amazon Web Services (AWS).
li>Configuring and tuning security capabilities including Threat Prevention, intrusion prevention system/intrusion detection system (IPS/IDS), Anti-Spyware, Antivirus, WildFire, Domain Name System (DNS) Security, and Secure Sockets Layer/Transport Layer Security (SSL/TLS) decryption policies. This role supports the design, deployment, and optimization of Zscaler capabilities across complex enterprise environments, helping organizations strengthen security posture, improve user access experiences, and enable secure transformation across on-premises and cloud ecosystems.