Senior Cybersecurity Information Systems Security Manager (ISSM)

LMI is seeking a Senior Cybersecurity Information Systems Security Manager (ISSM) to provide cybersecurity Risk Management Framework (RMF) Authority to Operate (ATO) support for a United States Army client helping to develop platform architecture. This position is located in the Raleigh, NC area and can be supported by partial telework. Candidates must be able to work at the client site as needed. This position requires an active Secret clearance, TS/SCI preferred.

LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed.

Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors-helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.

* Oversee the entire RMF cycle, including initiation, categorization, selection, implementation, assessment, authorization, and continuous monitoring.

* Develop and maintain system security plans (SSPs) and associated documentation for each system under management.

* Conduct risk assessments and vulnerability assessments to identify and mitigate security risks

* Develop, review, and maintain Plan of Action & Milestones (POA&Ms), as required

* Ensure compliance with all relevant security policies, standards, and guidelines, including NIST SP 800 series.

* Work closely with Army cybersecurity personnel to document controls, support authorization, seeking any Interim Authorization to Test (IATT) and Authority to Operate (ATO) documentation and approvals and provide metrics to comply with audits.

* Perform Mission Owner (MO) responsibilities in accordance with (IAW) Cybersecurity Service Providers (CSSPs) Statement of Work (SOW).

* Responsible for escalating issues, problems, risks, and constraints to the appropriate levels for clarification and resolution.

* Develop and maintain a working knowledge of AWS products and capabilities.

* Perform unsupervised, hands-on work in GovCloud environments and eMASS.

* Manage multiple and competing customer priorities with little supervision.

* Develop High Availability, Continuity of Operations (COOP) and Disaster Recovery (DR) processes in accordance with government and industry guidelines.

* Work closely with the DevOps and system support engineers to provide guidance on security weaknesses in the cloud environment.

* Review security controls and configuration requirements including secure network design, database access, security testing, authentication methods, implementation of

encryption, privilege management, logging, input validation, secure storage design, and secure data transfer.

* Assist with the development and implementation for cloud security architectures for protecting sensitive data deployed into various cloud (AWS, Azure, GCP, etc.) and hybrid systems

* Participate in Requests for Change (RFC), Account Requests, Change Management Processes, IAVM tracking, and Cyber Task Orders (CTOs).

* Perform data transfers between security domains IAW SOCOM policies and procedures as a Data Transfer Agent (DTA).

Minimum Qualifications:

* Minimum of a SECRET security clearance, TS/SCI Preferred.

* 5 years Managerial experience in developing and implementing system information security standards and procedures in a DoD Cybersecurity Enterprise Environment.

* Previous Army cybersecurity and technology experience.

* Demonstrated experience with US Army technology, systems, and command & control policies and procedures.

* DOD Cyber Workforce (DCWF) 8140 (722) Intermediate Information Systems Security Manager certification: CGRC/CAP or CASP or CCSP or Cloud or SSCP or Security or GSEC.

* Experience with security requirements in a federal IT environment, including FedRAMP-certified providers and FISMA requirements for acquiring and maintaining an ATO.

* Experience with Enterprise Cross Domain Solutions.

* Experience with DoD STIGs and SRGs.

* Strong understanding of cybersecurity principles, standards, and best practices.

* Excellent communication and interpersonal skills, with the ability to interact effectively with technical and non-technical stakeholders.

Additional Preferred Qualifications:

* Working knowledge of AWS products and capabilities.

* Experience with Agile development methodologies and working with Agile teams.

* A BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution fulfills the educational requirement.

Target salary range: $119,000 - $185,000

Disclaimer:

The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.