Cyber Security Engineer - Clearance Required

Overview

LMI is seeking an exceptional Cybersecurity Engineer with an active DOD SECRET Clearance to join a team supporting a critical data and analytics platform for the US Army. The Lead Cybersecurity Engineer will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and ensure their integration into the platform through purposeful security design or configuration. The Lead Cybersecurity Engineer will provide subject matter expertise (SME) in the continued research, testing, training, implementation, and continuous monitoring of this enterprise solution. This is a full-time, remote position that may require occasional travel to Tysons, Virginia or other customer locations. 

Responsibilities

• Provide technical leadership and mentorship to a team of cyberSecurity Engineers, fostering a culture of innovation, collaboration, and continuous improvement
• Define system security requirements in coordination with security stakeholders including system engineers, program managers, security control assessors, and authorizing officials
• Ensure cybersecurity requirements are identified, allocated, implemented, verified, and continuously monitored throughout the system life cycle
• Perform Assessment and Authorization (A&A) cybersecurity reviews, identify gaps, and support risk management plans for cybersecurity personnel to execute
• Support the Risk Management Framework (RMF) process for the data and analytics platform
• Provide SME level cyberSecurity Engineering support and input to the product lead and cybersecurity team to produce the authority to operate (ATO) package and successfully achieve ATO
• Support interim authority to test (IATT), risk assessment /acceptance, and all other ATO related activities
• Interpret security control noncompliance to determine the impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program
• Work with the product team to identify controls, develop appropriate mitigations, and develop and track Program of Action and Milestone (POAM) documents to ensure that the ATO package is technically sound before submission to the program cyber staff for review
• Track audit findings and recommendations to ensure that appropriate mitigation actions are taken
• Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs)
• Provide independent cybersecurity advice and guidance to government stakeholders and contractor team members
• Participate in recurring cybersecurity working group meetings
• Develop or review system security designs and architectures
• Advise system engineers on the best methods to remediate vulnerability findings through the use of security scanning tools and DoD / Industry best practices
• Support cyberSecurity Engineering analysis of alternatives, tradeoffs, and risk treatment decisions
• Develop cybersecurity documentation in support of customer Risk Management Framework (RMF) process; in accordance with NIST SP 800-37 Rev 2
• Work with the interdisciplinary team to deliver a trustworthy and secure system

Qualifications

Required:

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field
• 5+ years of experience leading cyberSecurity Engineering efforts in support of U.S. Government customers
• Extensive experience leading and mentoring high-performing cybersecurity teams
• Proven ability to design and implement secure architectures for complex, mission-critical systems
• Strong scripting skills (Python, Bash, PowerShell) and experience automating processes to improve efficiency
• Experience reviewing and developing RMF Assessment and Authorization (A&A) documentation, e.g., System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POAMs)
• Experience implementing DoDI 8510.01 Risk Management Framework for DoD
• DoD 8570 IASAE Level II baseline certification (CISSP, CASP+, or CSSLP.)
• Must possess and maintain a Secret Security Clearance

Desired:

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field
• Experience with offensive security techniques (e.g., red teaming, penetration testing) and defensive security operations (e.g., SOC management, incident response)
• Experience implementing NIST SP 800-53 Revision 4 security requirements and NIST SP 800-53A security assessment procedures
• Knowledge of Cloud (i.e., Azure, Amazon C2S, Commercial and GovCloud) security planning, design, and operations
• Familiarity with containerization technologies (e.g., Docker) and container orchestration platforms
• Ability to explain complex cybersecurity issues to a diverse audience in layman's terms
• Experience implementing or assessing cybersecurity solutions using technologies such as:
  • Nessus, WebInspect, Splunk, Open SCAP
  • Microsoft Windows, Server, Active Directory
  • RedHat Linux; CentOS
  • Virtualization Platforms: Hyper-V, VMware
  • VDI (Desktop), Citrix
• Network engineering/design of LANs, WANs, MANs, including underlying routing protocols, and implementation (TCP/IP, BGP, OSPF)
• Knowledge of Cross Domain Solutions (CDS)
• Experience presenting verbal/written communications to Senior leadership including – Information Systems Security Engineer (ISSM), System Owners, Authorizing officials, and security leads
• Experience with systems engineering lifecycle processes
• Proven ability to balance priorities in a dynamic, mission-oriented environment
• Experience with agile frameworks and Continuous Integration/Continuous Delivery (CI/CD) frameworks such as DevOps or DevSecOps
• Familiarity with Army NETCOM RMF review processes (RMF 2.0)
• Experience with Continuous Monitoring and Continuous Monitoring Risk Scoring (CMRS)
• DoD 8570 IASAE Level III certification, such CCSP, CISSP-ISSAP or CISSP-ISSEP