Senior Security Manager

Description

Summary: The Senior Security Manager for CMS Endpoints & M365 leads security operations, compliance, and lifecycle management for CMS-managed endpoints and the Microsoft 365 ecosystem. Highlights: 1. Lead end-to-end security management for CMS endpoints 2. Oversee security governance for Microsoft 365 3. Lead modernization and secure deployment initiatives Apply Now Description The Senior Security Manager for CMS Endpoints & M365 is responsible for leading security operions, compliance, and lifecycle management for CMS‑managed endpoints and the Microsoft 365 ecosystem. This role ensures the protection, integrity, and continuous security posture of desktops, mobile devices, collaborion tools, cloud productivity services, and hybrid enterprise environments supporting CMS mission operions. The manager oversees the secure deployment, configurion, monitoring, and modernizion of endpoint plforms and M365 services, while developing security standards, governance processes, and operional controls th align with CMS, HHS, FISMA, and NIST security requirements. Key Responsibilities Endpoint Security Operions & Compliance Lead end‑to‑end security management for CMS endpoints, including Windows, Mac, and VDI.  Develop and enforce security baselines, pching standards, encryption requirements, and hardening procedures. Maintain compliance with CMS ARS, HHS security directives, and NIST 800‑53 control families through documention, audits, and continuous monitoring. Coordine with CMS security leaders, ISSOs, and system owners to ensure endpoint plforms meet accredition and risk management obligions.  M365 Security & Administrion Oversee security governance for Microsoft 365, including Exchange Online, SharePoint Online, OneDrive, Teams, and security/compliance center capabilities. Manage conditional access, identity protections, DLP policies, thre detection, and da governance controls. Partner with engineering and operions teams to ensure secure configurion, feure deployment, and lifecycle maintenance of the M365 environment. Evalue and implement security enhancements, logging stregies, and integrion points across cloud and on‑premise environments. Secure Infrastructure Oversight Lead modernizion and secure deployment initiives across CMS environments, including migrion of legacy systems into protected M365 and endpoint ecosystems.  Manage sustainment of multi‑site enterprise endpoint systems, ensuring availability, integrity, and compliance.  Oversee device inventory, and asset accountability processes, aligning with federal property standards.  Team Leadership & Security Governance Work with multidisciplinary teams of system administrors, endpoint engineers, and security analysts.  Establish SOPs, workflows, and operional frameworks th enhance security posture and operional quality across the CMS endpoint and M365 landscape.  Lead cross‑functional coordinion involving IT, security, engineering, compliance, and governance groups.  Configurion, Pch, and Change Management Manage secure configurion repositories and CM processes, ensuring version control, traceability, and documented baselines for endpoint and M365 systems.  Oversee secure pch deployment, software updes, vulnerability remediion, and endpoint lifecycle management. Incident Response & Endpoint/M365 Support Provide Tier III escalion support for endpoint and M365 incidents, outages, or security events.  Coordine forensic reviews, root‑cause analysis, and response actions reled to endpoint or cloud productivity plforms. Ensure timely communicion and remediion across impacted CMS teams. Required Qualificions Bachelor’s degree in Informion Technology or reled field.  Extensive experience managing enterprise endpoints, secure infrastructure, or M365 environments. Strong knowledge of Windows, VDI/thin client ecosystems, and endpoint‑security tooling.  Demonstred expertise in configurion management, security compliance, and process development.  Proven ability to lead technical teams and work collaborively within a large federal organizion. If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the stus quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already step 30 — and moving faster than anyone else dares. Original Posting: May 13, 2026 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipes th this job requisition will remain open for least 3 days with an anticiped close de of no earlier than 3 days after the original posting de as listed above. Pay Range: Pay Range $131,300.00 - $237,350.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compension or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, educion, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market da, applicable bargaining agreement (if any), or other law. About Leidos Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovions. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximely $16.7 billion for the fiscal year ended January 3, 2025. For more informion, visit www.Leidos.com. Pay and Benefits Pay and benefits are fundamental to any career decision. Th's why we craft compension packages th reflect the importance of the work we do for our customers. Employment benefits include competitive compension, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available www.leidos.com/careers/pay-benefits. Securing Your Da Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-reled informion during any part of the employment applicion process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communice with you through emails th are genered by the Leidos.com automed system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhsApp, Telegram, etc. If you received an email purporting to be from Leidos th asks for payment-reled informion or any other personal informion (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediely by emailing us LeidosCareersFraud@leidos.com. If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission. Commitment to Non-Discriminion All qualified applicants will receive considerion for employment without regard to sex, race, ethnicity, age, nional origin, citizenship, religion, physical or mental disability, medical condition, genetic informion, pregnancy, family structure, marital stus, ancestry, domestic partner stus, sexual oriention, gender identity or expression, veteran or military stus, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. #Remote Apply Now