LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed. Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors—helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.
Cybersecurity Engineer
Location
United States
Posted
2 days ago
Salary
$111.4K - $200K / year
Seniority
Mid Level
Job Description
Cybersecurity Engineer
Logistics Management Institute
Role Description We’re looking for a Cybersecurity Engineer to support the secure deployment and continuous authorization of IronSled, an enterprise Platform as a Service built for federal missions. You’ll join a small, high-visibility team and own the security work that lets IronSled reach production, maintaining the ATO posture, driving vulnerability management, and partnering with cyber stakeholders to keep the platform compliant as it evolves. This is hands-on cyber engineering, not paper compliance. You’ll work alongside platform engineers, ISSOs, and the security team to harden deployments, validate controls, and resolve findings against real systems. If you want to do federal cybersecurity in an environment that ships fast and treats security as part of the product, keep reading. IronSled is LMI’s DevSecOps platform that serves as the central hub for all software development projects. IronSled allows internal and external users to set up development environments with just a few clicks. Responsibilities - Lead Risk Management Framework (RMF) activities for the LIGER deployment, including system categorization, control selection and tailoring, implementation, assessment, and continuous monitoring. - Own and maintain authorization artifacts: System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and supporting documentation aligned to DHS requirements. - Coordinate directly with ISSOs, Authorizing Officials, and cyber working groups to advance ATO and continuous authorization activities. - Interpret NIST 800-53 controls in the context of the LIGER platform and translate them into actionable engineering requirements. - Run and review vulnerability scans across CI/CD pipelines and runtime environments, triage findings, and drive remediation through the engineering team. - Validate secure configurations and hardening baselines (e.g., CIS Benchmarks, DISA STIGs) on containers, hosts, and cloud resources. - Partner with platform engineers on cloud and container security in AWS GovCloud, including IAM, network controls, secrets management, logging, and runtime protection. - Develop and maintain security policies, procedures, and standard operating procedures (SOPs) specific to LIGER on customer infrastructure. - Track audit findings, remediation actions, and POA&M items to closure. - Support FedRAMP-aligned control implementation and inheritance where applicable. - Advise senior LIGER and leadership on system risk levels, control effectiveness, and emerging compliance considerations for AI/LLM systems in federal environments. Qualifications - Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field. - 5+ years of experience designing, implementing, and monitoring cybersecurity solutions in federal environments. - 5+ years of hands-on RMF experience, including ATO development and continuous monitoring against NIST 800-53. - CISSP, CISM, or equivalent senior-level cybersecurity certification. - Experience securing LLM, GenAI, or agentic AI systems, including data handling, prompt and tool-call risk, and model output controls. - Strong working knowledge of cloud security, particularly AWS, with experience in GovCloud or similar high-compliance environments. - Experience with vulnerability management workflows: scanning, triage, remediation tracking, and reporting. - Experience hardening systems against secure baselines such as CIS Benchmarks or DISA STIGs. - Familiarity with secure software development practices: secrets management, access control, auditability, and CI/CD pipeline security. - Strong written communication skills, including the ability to produce ATO artifacts that hold up to assessor and AO review. - Ability to translate compliance requirements into specific engineering work and partner closely with developers. What Will Set You Apart - Direct experience supporting ATO or continuous authorization for systems hosted at DHS, or another DHS component. - Familiarity with DHS 4300A and cybersecurity policies and processes. - FedRAMP readiness or assessment experience (Moderate or High). - Hands-on container and Kubernetes security experience (e.g., EKS, image scanning, admission control, runtime protection). - DevSecOps experience integrating security scanning into GitLab CI/CD pipelines. - Experience with vulnerability management platforms such as Tenable. - Experience with ATO documentation tooling (e.g., Xacta, OpenRMF, or similar). - Familiarity with CISA Binding Operational Directives, Continuous Diagnostics and Mitigation (CDM), or High Value Asset (HVA) program requirements. Salary Information Target salary range: $111,427 - $200,000 The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Security Engineer – Microsoft Purview
ResMedPioneering innovative medical device and digital health solutions that treat and keep people out of the hospital.
• Design, implement, and maintain Microsoft 365 security and compliance solutions • Safeguard sensitive data and manage access controls • Monitor compliance posture and produce actionable insights • Collaborate with IT, Legal, Risk, and Security teams • Participate in incident response and investigations • Maintain awareness of emerging Microsoft 365 compliance features
SAP Application Security Consultant
Accenture Federal ServicesWe believe in the power of change, harnessed in ways that matter for our country and communities.
• Perform role creation and maintenance for SAP Fiori and SAP S/4HANA • Create and manage SAP catalogs, pages, and spaces; resolve Fiori tile and launchpad errors • Support full security lifecycle implementations: preparation, blueprinting, build, testing, go‑live, hypercare, and operations • Manage SAP and supporting‑system users and authorization assignments • Troubleshoot authorization failures and analyze SAP Security tables, programs, and logging mechanisms • Collaborate with functional and technical teams to ensure role design meets business, audit, and compliance needs • Support SAP Security for ECC, S/4HANA, BW on HANA, and Fiori platforms • Assist with GRC access control processes, BRF+ rulesets, MSMP workflows, and SAC authorization alignment (preferred) • Participate in design reviews and provide recommendations to strengthen security architecture • Support greenfield S/4 implementations, including modern role‑building approaches and Fiori‑based access models
M&A Collaboration, Security Platforms Engineer
Kraken Digital Asset ExchangeWe put the power in your hands to buy, sell, and trade digital currency 🌏
• Drive collaboration-platform integration end-to-end for each acquisition • Assess acquired-company collaboration stacks during and after diligence • Rationalize overlapping tools across brands • Build repeatable playbooks, tooling, and automation for integration • Own Google Workspace, Slack, and Zoom across the brand portfolio • Manage email security infrastructure across brands • Lead legal hold management, eDiscovery queries, and data productions • Design and maintain DLP rules, group access controls, and data access policies
M&A Collaboration, Security Platforms Engineer
Kraken Digital Asset ExchangeWe put the power in your hands to buy, sell, and trade digital currency 🌏
• Drive collaboration-platform integration end-to-end for each acquisition • Assess acquired-company collaboration stacks during and after diligence • Rationalize overlapping tools across brands • Build repeatable playbooks, tooling, and automation • Coordinate cutover timelines and TSA-driven dependencies • Own Google Workspace, Slack, and Zoom at multi-entity enterprise scale • Build and maintain integrations between collaboration tools and the broader identity and security stack • Define and enforce cross-brand platform governance standards • Collaborate with HRIS and IAM teams to manage clean onboarding and offboarding • Own email security infrastructure across brands • Manage a large, multi-registrar, multi-brand domain portfolio • Respond to phishing campaigns, insider threat signals, and anomalous domain activity • Lead legal hold management, eDiscovery queries, and data productions • Produce and defend evidence for regulatory and audit obligations • Design and maintain DLP rules, group access controls, and data access policies • Evaluate, onboard, consolidate, and sunset SaaS tools across the collaboration and security stack


