Senior Security Manager

The Senior Security Manager for CMS Endpoints & M365 is responsible for leading security operations compliance and lifecycle management for CMSmanaged endpoints and the Microsoft 365 ecosystem. This role ensures the protection integrity and continuous security posture of desktops mobile devices collaboration tools cloud productivity services and hybrid enterprise environments supporting CMS mission operations.

The manager oversees the secure deployment configuration monitoring and modernization of endpoint platforms and M365 services while developing security standards governance processes and operational controls that align with CMS HHS FISMA and NIST security requirements.

Key Responsibilities

Endpoint Security Operations & Compliance

• Lead endtoend security management for CMS endpoints including Windows Mac and VDI.

• Develop and enforce security baselines patching standards encryption requirements and hardening procedures.

• Maintain compliance with CMS ARS HHS security directives and NIST 80053 control families through documentation audits and continuous monitoring.

• Coordinate with CMS security leaders ISSOs and system owners to ensure endpoint platforms meet accreditation and risk management obligations.

M365 Security & Administration

• Oversee security governance for Microsoft 365 including Exchange Online SharePoint Online OneDrive Teams and security/compliance center capabilities.

• Manage conditional access identity protections DLP policies threat detection and data governance controls.

• Partner with engineering and operations teams to ensure secure configuration feature deployment and lifecycle maintenance of the M365 environment.

• Evaluate and implement security enhancements logging strategies and integration points across cloud and onpremise environments.

Secure Infrastructure Oversight

• Lead modernization and secure deployment initiatives across CMS environments including migration of legacy systems into protected M365 and endpoint ecosystems.

• Manage sustainment of multisite enterprise endpoint systems ensuring availability integrity and compliance.

• Oversee device inventory and asset accountability processes aligning with federal property standards.

Team Leadership & Security Governance

• Work with multidisciplinary teams of system administrators endpoint engineers and security analysts.

• Establish SOPs workflows and operational frameworks that enhance security posture and operational quality across the CMS endpoint and M365 landscape.

• Lead crossfunctional coordination involving IT security engineering compliance and governance groups.

Configuration Patch and Change Management

• Manage secure configuration repositories and CM processes ensuring version control traceability and documented baselines for endpoint and M365 systems.

• Oversee secure patch deployment software updates vulnerability remediation and endpoint lifecycle management.

Incident Response & Endpoint/M365 Support

• Provide Tier III escalation support for endpoint and M365 incidents outages or security events.

• Coordinate forensic reviews rootcause analysis and response actions related to endpoint or cloud productivity platforms.

• Ensure timely communication and remediation across impacted CMS teams.

Required Qualifications

• Bachelors degree in Information Technology or related field.

• Extensive experience managing enterprise endpoints secure infrastructure or M365 environments.

• Strong knowledge of Windows VDI/thin client ecosystems and endpointsecurity tooling.

• Demonstrated expertise in configuration management security compliance and process development.

• Proven ability to lead technical teams and work collaboratively within a large federal organization.

If youre looking for comfort keep scrolling. At Leidos we outthink outbuild and outpace the status quo because the mission demands it. Were not hiring followers. Were recruiting the ones who disrupt provoke and refuse to fail. Step 10 is ancient history. Were already at step 30 and moving faster than anyone else dares.

Original Posting:

Pay Range:

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job education experience knowledge skills and abilities as well as internal equity alignment with market data applicable bargaining agreement (if any) or other law.