Senior Cybersecurity Information System Security Engineer

Overview

LMI is seeking a skilled Senior Cybersecurity Information Systems Security Engineer (ISSE) to support US Army PEO Soldier at Ft. Belvoir, Virginia. The ISSE will drive efforts that support software and hardware cybersecurity Risk Management Framework (RMF) Authority to Operate (ATO).

LMI is committed to powering a future-ready, high-performing government with integrated capabilities that incorporate emerging technologies. Founded in 1961, LMI has a legacy of helping the Department of Defense resolve complex logistics management challenges and continues to support federal civilian and defense agencies in ensuring mission success. Recognized as a Top Workplace in 2022 and 2024, LMI values a people-centered culture that fosters innovation and mission success.

Join LMI to advance the pace of progress and thrive in a dynamic, mission-oriented environment while contributing to the security and operational readiness of the US Army PEO Soldier organization.

This position requires an active Secret clearance and onsite presence at Ft. Belvoir, VA.

Responsibilities

• Define system security requirements in coordination with system engineers, program managers, and Authorizing Officials (or their delegates).
• Ensure continuous monitoring and verification of cybersecurity requirements throughout the system lifecycle.
• Provide cybersecurity advice and guidance to government stakeholders and contractor teams.
• Develop and review system security designs and architectures, including cloud, on-prem, and hybrid solutions.
• Support RMF processes, ensuring successful ATO acquisition and maintenance.
• Identify, mitigate, and track security control gaps and non-compliance issues.
• Conduct risk assessments, vulnerability assessments, and develop/maintain System Security Plans (SSPs).
• Support Interim Authority to Test (IATT), risk assessment/acceptance, and all other ATO related activities.
• Identify and interpret security control non-compliance to determine the impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
• In concert with ISSM, work with product teams to identify controls, develop appropriate mitigations, and develop and track Program of Action and Milestone (POAM) documents to ensure that ATO packages are technically sound before submission to the program cyber government staff for review.
• Advise system engineers on the best methods to remediate vulnerability findings using security scanning tools and DoD / Industry best practices.
• Support cybersecurity engineering analysis of alternatives, tradeoffs, and risk treatment decisions.
• Work with interdisciplinary teams to deliver trustworthy and secure systems.
• Be able to build and maintain dashboards including but not limited to Platform system controls, logs, and compliance monitoring.
• Experience with cloud cybersecurity implementations.
• Implement NIST SP 800-53 Revision 4 or 5 security requirements and NIST SP 800-53A security assessment procedures.

Core KSATs for DoD Cyber Workforce (DCWF):

• Knowledge of computer networking concepts and protocols, and network security methodologies.
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• Knowledge of national and international laws, regulations, policies, and ethics as they relate to cybersecurity.
• Knowledge of cybersecurity principles.
• Knowledge of cyber threats and vulnerabilities.
• Knowledge of specific operational impacts of cybersecurity lapses.
• Knowledge of cloud computing service models Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS).
• Knowledge of cloud computing deployment models in private, public, and hybrid environment and the difference between on-premises and off-premises environments.

Qualifications

Required Qualifications:

• A BS degree in Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, or Software Engineering from an ABET accredited or NCAE-C designated institution Minimum active SECRET security clearance.
• 5+ years of experience in system and/or security engineering within U.S. Government systems.
• Hands on experience working in government cloud environments (i.e., Azure, Amazon C2S, Commercial and/or GovCloud) implementing the security planning, design, and operations in a secure manner.
• Proven ability to develop and maintain RMF documentation such as System Security Plans (SSPs) and Plans of Action and Milestones (POAMs).
• Experience with DoD technology, systems, and command & control policies and procedures.
• Previous working experience with eMASS.
• Familiarity with security requirements for federal IT environments, including DoD cyber regulations, FedRAMP and FISMA.
• Knowledge of DoD STIGs, SRGs, and NIST SP 800-53 security requirements and assessment procedures.
• Strong communication and interpersonal skills for interacting with technical and non-technical stakeholders.
• GISF, SecurityX / CASP+, CSSP, Cloud+, CSSLP, GSEC or GSEC. If none, must be willing to obtain in first 30-days.

Preferred Additional Qualifications:

• Working knowledge of cloud security planning, design, and operations.
• Experience with systems engineering lifecycle processes and agile development methodologies.
• Experience with Continuous Integration/Continuous Delivery (CI/CD) frameworks and DevSecOps.
• Tactical military experience preferred.

Target salary range: $137,791 - $238,260

Disclaimer: 

The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.