Today
Secret
Mid Level Career (5+ yrs experience)
Unspecified
No Traveling
IT - Security
Herndon, VA (Off-Site/Hybrid)
LTS is seeking a Cybersecurity Engineer who will be responsible the comprehensive design, development, implementation, and integration of architectures, systems, or system components within Military OneSource computing, network, and enclave environments. This role ensures compliance with DoD Information Assurance (IA) requirements and guarantees that both development and operational systems are functional and secure. The position involves working with program of record systems and special purpose processing nodes that require platform IT interconnectivity.
This position is 100% remote and requires an active Secret clearance.
LTS provides trusted consulting, and solutions in an increasingly complex and growing world. Our deep expertise in technology and analytics helps us serve a broad constituency of clients that range from cabinet-level departments of the U.S. Government to the largest Federal IT contractors in the world.
LTS is a leading information technology (IT) provider for mission critical systems leveraging the latest technologies to deliver innovative solutions from small mobile applications to large, complex enterprise applications. Our professionals specialize in multiple disciplines including program management, system integration, system design, system development, cybersecurity, infrastructure, and data analytics.
Responsibilities and Qualifications:
Develop and design secure and functional system architectures for on-premises and cloud environments, with emphasis on AWS GovCloud and FedRAMP-authorized services.
Ensure integration and interoperability of platform IT systems and services across hybrid cloud infrastructures.
Address program-of-record systems and special-purpose processing nodes to ensure compliance with DoD SRG, FedRAMP Moderate/High, and NIST SP 800-53 Rev 5 baselines.
Conduct comprehensive system security, vulnerability, and privacy impact assessments, including evaluation of inherited and shared controls from cloud service providers.
Implement and manage AWS security services including Security Hub, GuardDuty, Inspector, CloudTrail, CloudWatch, Macie, Config, and IAM Access Analyzer to detect, monitor, and remediate security risks.
Research, interpret, and apply current information security and privacy standards, including HIPAA, Privacy Act of 1974, and DoD 5400.11-R.
Design and oversee intrusion detection and prevention architectures, leveraging AWS-native and DoD-approved tools (e.g., ACAS, HBSS, IDS/IPS solutions).
Prepare cost and resource estimates for implementing and maintaining security and privacy controls.
Direct installation, configuration, and validation of security solutions, ensuring compliance with FIPS 140-3 encryption and Zero Trust principles.
Develop and execute preventive and reactive security measures, including automated event correlation and continuous monitoring via AWS CloudWatch and GuardDuty.
Manage cryptographic key generation, transmission, and lifecycle operations within AWS KMS and other approved key management systems.
Produce and maintain technical documentation, including RMF artifacts, SSPs, SARs, POA&Ms, and Privacy Impact Assessments (PIAs).
Support Continuous Monitoring (ConMon) activities through integration of ACAS scan results, AWS security alerts, and event-driven reporting dashboards.
Ensure full compliance with DoD Instruction 8510.01 (RMF for DoD IT), DoDI 8500.01, and other relevant DoD, NIST, and federal cybersecurity frameworks.
Contribute to developing, reviewing, and updating cybersecurity and privacy policies, SOPs, and implementation guidance.
Utilize Enterprise Mission Assurance Support System (eMASS) and Assured Compliance Assessment Solution (ACAS) to document control compliance and manage vulnerabilities.
Requirements:
Bachelor’s Degree in a related field and a minimum of five years of experience.
Active Secret clearance
DoD 8570 certification at IAT Level III or IAM Level III (CASP+ CE, CISSP, CISM, CCNP Security, CISA, CCSP).
Proven experience designing and implementing secure AWS architectures compliant with FedRAMP and DoD SRG IL4/IL5 requirements.
Demonstrated expertise using AWS security services: Security Hub, GuardDuty, Inspector, CloudTrail, CloudWatch, Macie, AWS Config, and AWS KMS.
Strong working knowledge of FedRAMP, NIST SP 800-53 Rev 5, NIST SP 800-171, DoD Cloud Computing SRG, and RMF processes.
Experience applying privacy controls and regulatory requirements including HIPAA, Privacy Act, and OMB M-17-12.
Proficiency in vulnerability management, risk assessment, and continuous monitoring tools (ACAS, Nessus, Splunk, etc.).
Excellent communication and technical writing skills for preparing compliance documentation and presenting technical data to stakeholders.
U.S. Citizenship required and fluent in English.
This position is 100% remote and requires an active Secret clearance.
LTS provides trusted consulting, and solutions in an increasingly complex and growing world. Our deep expertise in technology and analytics helps us serve a broad constituency of clients that range from cabinet-level departments of the U.S. Government to the largest Federal IT contractors in the world.
LTS is a leading information technology (IT) provider for mission critical systems leveraging the latest technologies to deliver innovative solutions from small mobile applications to large, complex enterprise applications. Our professionals specialize in multiple disciplines including program management, system integration, system design, system development, cybersecurity, infrastructure, and data analytics.
Responsibilities and Qualifications:
Develop and design secure and functional system architectures for on-premises and cloud environments, with emphasis on AWS GovCloud and FedRAMP-authorized services.
Ensure integration and interoperability of platform IT systems and services across hybrid cloud infrastructures.
Address program-of-record systems and special-purpose processing nodes to ensure compliance with DoD SRG, FedRAMP Moderate/High, and NIST SP 800-53 Rev 5 baselines.
Conduct comprehensive system security, vulnerability, and privacy impact assessments, including evaluation of inherited and shared controls from cloud service providers.
Implement and manage AWS security services including Security Hub, GuardDuty, Inspector, CloudTrail, CloudWatch, Macie, Config, and IAM Access Analyzer to detect, monitor, and remediate security risks.
Research, interpret, and apply current information security and privacy standards, including HIPAA, Privacy Act of 1974, and DoD 5400.11-R.
Design and oversee intrusion detection and prevention architectures, leveraging AWS-native and DoD-approved tools (e.g., ACAS, HBSS, IDS/IPS solutions).
Prepare cost and resource estimates for implementing and maintaining security and privacy controls.
Direct installation, configuration, and validation of security solutions, ensuring compliance with FIPS 140-3 encryption and Zero Trust principles.
Develop and execute preventive and reactive security measures, including automated event correlation and continuous monitoring via AWS CloudWatch and GuardDuty.
Manage cryptographic key generation, transmission, and lifecycle operations within AWS KMS and other approved key management systems.
Produce and maintain technical documentation, including RMF artifacts, SSPs, SARs, POA&Ms, and Privacy Impact Assessments (PIAs).
Support Continuous Monitoring (ConMon) activities through integration of ACAS scan results, AWS security alerts, and event-driven reporting dashboards.
Ensure full compliance with DoD Instruction 8510.01 (RMF for DoD IT), DoDI 8500.01, and other relevant DoD, NIST, and federal cybersecurity frameworks.
Contribute to developing, reviewing, and updating cybersecurity and privacy policies, SOPs, and implementation guidance.
Utilize Enterprise Mission Assurance Support System (eMASS) and Assured Compliance Assessment Solution (ACAS) to document control compliance and manage vulnerabilities.
Requirements:
Bachelor’s Degree in a related field and a minimum of five years of experience.
Active Secret clearance
DoD 8570 certification at IAT Level III or IAM Level III (CASP+ CE, CISSP, CISM, CCNP Security, CISA, CCSP).
Proven experience designing and implementing secure AWS architectures compliant with FedRAMP and DoD SRG IL4/IL5 requirements.
Demonstrated expertise using AWS security services: Security Hub, GuardDuty, Inspector, CloudTrail, CloudWatch, Macie, AWS Config, and AWS KMS.
Strong working knowledge of FedRAMP, NIST SP 800-53 Rev 5, NIST SP 800-171, DoD Cloud Computing SRG, and RMF processes.
Experience applying privacy controls and regulatory requirements including HIPAA, Privacy Act, and OMB M-17-12.
Proficiency in vulnerability management, risk assessment, and continuous monitoring tools (ACAS, Nessus, Splunk, etc.).
Excellent communication and technical writing skills for preparing compliance documentation and presenting technical data to stakeholders.
U.S. Citizenship required and fluent in English.
group id: 10332201
