Cyber Security Engineer

We are in search for multiple Cyber Security Engineers with varying technical backgrounds. Required to work at our customer site in Huntingdon, Cambridgeshire with occasional travel to other UK sites. In this role, you will be working within a team of engineers to ensure that the customer sites maintain a strong cyber security posture. Cyber Security Engineers are responsible for providing cybersecurity engineering services for classified and unclassified networks of computer systems. The Cyber Security Engineers will provide operational and engineering support.

• Develop creative solutions to complex technical issues and problems
• Work with engineering teams to ensure systems remain at the required security posture against baseline requirements
• Collaborate with the Security Monitoring engineering team to ensure logs are forwarded to the SIEM capability
• Work with the customer and appropriate agencies to develop new policies, design processes and procedures, and develop technical designs
• Assess system vulnerabilities, implement risk mitigation strategies, validate secure systems, and test security products and systems to detect security weaknesses
• Maintain and support security enforcing functions

• Experience working in MOD or Home Office project environments
• Strong knowledge of network and system security, including firewalls, IDS/IPS, micro-segmentation, and host security
• Hands-on experience with security products Trellix, Ivanti, ClearSwift, Yubikey
• Understanding of secure coding practices and common vulnerabilities (OWASP Top 10, SANS Top 25)
• Expertise in identity and access management (IAM), including RBAC, ABAC, JWT and cookie-based authentication
• Incident detection and response in MOD environments
• Security compliance and regulatory frameworks (e.g., NIST, CIS Benchmarks)
• Experience working with Kubernetes at an administrative level

• Containerisation Security
• Expertise in Kubernetes security (RBAC, network policies, pod security standards, secrets management)
• Knowledge of container runtime security (container escapes, rootless containers, sandboxing)
• Image security practices (scanning, signing, provenance verification)
• Secure deployment patterns using Tanzu & Kubernetes
• Runtime security monitoring
• DevSecOps & CI/CD Security: secure CI/CD pipeline design with security testing, IaC security (Terraform, Ansible), secrets management, security automation and policy enforcement (GitHub Actions, GitLab CI, Jenkins)
• Cloud & Infrastructure Security: cloud security in containerised environments, KSPM tools (e.g., Trivy), ingress/egress controls, service mesh security (Istio), data encryption, Tanzu networking, compliance monitoring
• Automation & Scripting: Python, PowerShell; API security (OAuth, JWT); Security as Code for automated policy enforcement
• Candidate Essentials: British - non-dual national; DV clearance or willingness to obtain; experience delivering accredited security solutions in sensitive government scenarios

Are you ready to make an impact? Begin your journey of a flourishing and meaningful career. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services. We serve the United Kingdom in defence, healthcare, government, safety and security, and transportation sectors.

Pay Range: £60,100.00 - £77,000.00

Everything we do is built on our commitment to do the right thing for our customers, our employees, and our communities. We offer a range of benefits including pension, private medical insurance, annual leave, flexible benefits, and more. This description does not include every job duty or requirement and is subject to change at any time.

EEO Statement: Leidos is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or veteran status.