Senior RONIN Network Security Engineer

Description

Leidos has an immediate need for a Senior RONIN Network Security Engineer on our AGUN Program.

PROGRAM SUMMARY:

The AGUN program is a highly demanding mission requiring expert technical and professional management to support the Army's global wide area network and security infrastructure. The RONIN (Resilient Operations Network Integration Node) initiative provides a secure, resilient, and adaptive networking environment that ensures mission continuity and assured communications across all Army network domains. This position supports the RONIN engineering and operational teams to sustain and enhance the AGUN enterprise through resilient design, secure integration, and agile response capabilities.

CLEARANCE REQUIREMENT:

• Must currently possess and be able to maintain an active DoD SECRET security clearance.

PRIMARY RESPONSIBILITIES:

• Engineer, operate, and maintain secure RONIN network security solutions within the AGUN enterprise, ensuring mission assurance and network resilience across distributed Army environments.
• Partner with AGUN stakeholders and technical teams to integrate RONIN capabilities into existing and emerging network architectures to enhance operational continuity.
• Analyze and optimize complex firewall and segmentation policies supporting secure, dynamic node-to-node interconnectivity under contested or degraded conditions.
• Support implementation of Zero Trust Network Access (ZTNA) frameworks and adaptive routing technologies that enhance RONIN node performance and survivability.
• Lead troubleshooting and mitigation of high-impact network and security events affecting RONIN operations, coordinating with the AGUN Cybersecurity Service Provider (CSSP).
• Integrate resilient network design, load balancing, and recovery mechanisms into operational processes and capacity planning.
• Conduct network anomaly detection, security forensics, and performance monitoring to ensure optimal RONIN node integrity and operational readiness.
• Ensure compliance with DoD STIGs, Army cybersecurity policy, and other applicable directives for secure network operations.
• Develop and maintain technical documentation, topology diagrams, and configuration baselines using collaborative platforms and version-controlled repositories.

BASIC QUALIFICATIONS:

• Bachelor's degree with 12+ years of experience, or Master's degree with 10+ years of experience (additional directly applicable experience may substitute for degree).
• Active DoD IAT Level II (e.g., Security+) certification or equivalent prior to start.
• Expert understanding of network security, segmentation, and virtualization technologies, including VSYS and multi-tenant environments.
• Demonstrated experience with LAN, WAN, BGP, TCP/UDP, IPSec, VPN, L2/L3 routing, and firewall operations within hybrid or virtualized infrastructures.
• Experience with one or more enterprise management platforms such as Palo Alto Panorama, Cisco ISE, Tenable Security Center, VMWARE vSphere, Redhat Openshift, Cisco Prime, Cisco DNA, or Junos Space.
• Proven ability to apply DoD STIGs and system hardening standards to enterprise network environments.
• Experience with two or more of the following vendor technologies: Cisco, Juniper, Palo Alto, Dell, RAVPN, GlobalProtect, or AppGate.
• Working knowledge of SFTP, SSH, SCP, MPLS, SNMP, and NTP.
• Ability to work collaboratively in a high-tempo, mission-driven environment, executing complex troubleshooting and resolution efforts.
• Strong written and verbal communication skills.
• Willingness to work non-standard shifts to support mission operations.
• Ability to travel up to 10%.

PREFERRED QUALIFICATIONS:

• Experience supporting Army or DISA network modernization/migration programs.
• Hands-on experience with Palo Alto Next-Generation Firewalls (NGFW) and advanced rule-base design.
• Familiarity with NetSecOps tools such as Git, GitLab CI/CD, Ansible, Terraform, and Puppet.
• Scripting experience in Python for automation and configuration management.
• Expertise in resilient and distributed enterprise network architecture design.
• Comprehensive understanding of U.S. Army network security and compliance standards.

At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, "what's next?" before the dust settles on "what's now."

If you're already scheming step 20 while everyone else is still debating step 2... good. You'll fit right in.

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit www.Leidos.com.

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at www.leidos.com/careers/pay-benefits.

Securing Your Data

Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at LeidosCareersFraud@leidos.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Commitment to Non-Descrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#Remote