FIPS Security Engineer

Work Model: Telework allowed; primary work location at Leidos site / customer-government site

Clearance: None required

Program: Accredited Testing & Evaluation (AT&E – Common Criteria / FIPS)

Positions: 1

TSR SAIJP-Intake

The FIPS 140 Security Engineer will support Leidos’ Accredited Testing and Evaluation (AT&E) team, contributing to the design, analysis, testing, and validation of secure products used in national defense and modern cyber warfare environments. This role focuses on FIPS 140 cryptographic validation, security engineering, and hands-on evaluation of commercial off-the-shelf (COTS) products deployed within secure military systems.

• Execute and support FIPS 140 validation projects
• Perform general security analysis and system-level logical analysis
• Contribute to product architecture and design work
• Conduct vulnerability testing and physical security testing
• Evaluate products against Technology Type standards (Protection Profiles)
• Perform cryptographic algorithm testing and PKI testing
• Build and configure testing environments
• Automate testing through scripting
• Develop applications to support test cases
• Produce and review technical test reports

• Cryptographic Validation Program (CVP) Certification
• Knowledge of:
• Cryptographic encryption algorithms
• Key exchange algorithms
• Hashing and message authentication algorithms
• Public Key Infrastructure (PKI)
• Experience with programming languages and environments:
• C, C++, Python, or Java
• Ability to interpret and apply security standards to product evaluations
• Experience setting up networks with understanding of subnetting and routing
• Knowledge of common security protocols and architectures:
• SSH, IPsec, TLS
• Experience with:
• Building testing environments
• Performing security testing
• Technical documentation and reporting
• Strong troubleshooting
  , problem-solving
  , multitasking
  , and time management skills

• Python programming experience
• Debugging experience using tools such as:
• WinDBG
• Visual Studio
• Experience with statistical analysis of entropy sources
• Knowledge of OpenSSL and/or OpenPGP
• Vulnerability analysis and/or penetration testing experience
• Strong understanding of computer security principles and best practices
• Strong English communication skills (written and verbal)
• CCNA / CCNP / CCIE
• JNCIA / JNCIS / JNCIP / JNCIE
• Knowledge of Active Directory and Linux
• Hands-on experience with lab tools:
• Multimeter
• Signal generator
• Knowledge of X.509 certificate validation

• Bachelor’s degree in a related field
• 2–4 years of prior relevant experience

The Leidos AT&E (Common Criteria/FIPS) team operates at the forefront of cybersecurity and national defense, delivering accredited testing and evaluation services for secure communications technologies. Team members work in hands-on lab environments alongside industry experts, supporting systems critical to U.S. National Security while maintaining a strong emphasis on work-life balance, collaboration, and professional development.