Cybersecurity Engineer

Overview:

Current provider and healthcare directories are often inaccurate, fragmented, burdensome to maintain, rarely support interoperable data exchange or public health reporting, and are overall costly to the health care industry. A potential solution to this deficit is developing a centrally managed single source of truth National Directory of Healthcare (NDH).

LMI is seeking an experienced Cybersecurity Engineer to support a team building this NDH. This directory will serve as a single source of truth for numerous stakeholders that may include: insurance companies, independent researchers, VA, CMS, CCIIO, OBRHI, and any other users interested in knowing information about providers. This position may be remote.

LMI: Innovation at the Pace of Need™

At LMI, we’re reimagining the path from insight to outcome at the new speed of possible. Combining a legacy of over 60 years of federal expertise with our innovation ecosystem, we minimize time to value and accelerate mission success. We energize the brightest minds with emerging technologies to inspire creative solutioning and push the boundaries of capability. LMI advances the pace of progress, enabling our customers to thrive while adapting to evolving mission needs.

• Provide engineering and system administration support to secure information systems in cloud environments.  
• Conduct RMF Continuous Monitoring for Web, Database, and Application Services/Servers. 
• Provide Cloud Security Engineering support documentation to Cybersecurity projects and programs to include informational and decisional briefs, white papers, architecture and engineering development, acquisition artifacts, and implementation plans. 
• Install, configure, integrate, and train others on security solutions in the cloud. 
• Work closely with other engineers to provide guidance on security weaknesses in the cloud environment. 
• Review security controls and configuration requirements including secure network design, database access, security testing, authentication methods, implementation of encryption, privilege management, logging, input validation, secure storage design, and secure data transfer. 
• Coordinate quarterly self-assessment of the existing security architecture 
• Coordinate Annual Security Review  

Minimum: 

• Requires Bachelor’s Degree or higher in Computer Science, Information Systems, or related technical field.  
• 3-5+ years of experience in developing and implementing system information security standards and procedures.   
• Experience with STIGS and how inheritance works.  
• Experience with Security control implementation and inherited security controls.  
• Experience in testing, evaluating, and preparing systems for security certification under NIST and RMF for IS guidance  
• Familiarity with Cybersecurity policy, guidance, and training requirements.  

Additional Preferred:

• Experience supporting security in AWS GovCloud.    
• Understanding of automation using AWS Cloud Formation, CloudTrail, Config, Inspector, CloudWatch, IAM, or KMS AWS- Inspector, and Container Security, etc.  
• Experience with Jira and Confluence  
• CompTIA Cloud+, GIAC Cloud Security Automation (GCSA), Certified Cloud Security Professional (CCSP), Azure Security Engineer Associate, or AWS Certified Security – Specialty Certification.