Security Data Engineer

Security Data Engineer

The Leidos Digital Modernization Team is seeking a Security Data Engineer to support a large Department of Defense (DoD) Cyber Security Service Provider (CSSP). This role focuses on engineering, operations, and management of enterprise datasets within a high-impact cybersecurity environment. The C5ISR CSSP team delivers network operations and cyber defense services to CSSP subscribers. As part of the engineering team, your primary focus will be managing an enterprise Elastic environment, emphasizing data normalization, enhancement, and enrichment.

Key Responsibilities:

• Maintain awareness of operational data feeds and ensure traceability across systems (e.g., Kafka, Elastic, CI/CD tools).
• Build and maintain scalable ingestion and normalization pipelines for Elastic, ensuring architectural alignment.
• Develop custom enhancements and enrichments for diverse log sources.
• Configure, optimize, and scale Elastic components (Elasticsearch, Logstash, Kibana, Fleet) for high-throughput workloads.
• Manage index templates, mappings, and schemas to support analytics, detection logic, and long-term data strategies.
• Implement validation, deduplication, and quality control for cybersecurity telemetry.
• Automate workflows using scripting languages (e.g., Python, Bash) for ingestion, schema updates, and transformations.
• Collaborate with Detection Engineering, Threat Analysis, and Endpoint teams to align data models with operational needs.
• Monitor and optimize ingestion/indexing performance for efficiency and scalability.
• Create and maintain technical documentation, SOPs, and engineering artifacts for sustainment and knowledge sharing.

Required Qualifications:

• Bachelor’s degree and 4–8 years of relevant experience.
• Minimum 3 years of experience in data engineering or analysis.
• Certifications: 8570 IAT I & IAM II (e.g., Security+), and CSSP Analyst (e.g., CEH, GCIH).
• Active TS/SCI security clearance.
• Strong written, verbal, and interpersonal communication skills, with the ability to brief senior leadership (SES & Flag Officers) as needed.

Come break things (in a good way). Then build them smarter. We're the tech company everyone calls when things get weird. We don't wear capes (they're a safety hazard), but we do solve high-stakes problems with code, caffeine, and a healthy disregard for "how it's always been done."

Leidos is an equal opportunity employer/disability/vet.