ISSO Information Security Engineer

Herndon, VA
Jan 11, 2021
Jan 16, 2021
Full Time
Job Description About Lumen Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen's network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies. The Role The Lead Information Security Engineer is a member of the Government Industrial Security team responsible for implementation of the Risk Management Framework for Federal customers from system build to required Assessment and Authorization activities followed by Continuous Monitoring and annual assessment as required throughout the system lifecycle. The successful candidate will have broad technical knowledge of all Federal Security Laws, Directives, Policy, Frameworks and Guidance; current and emerging cyber threats, as well as security technologies and methods used to protect both corporate and customer-facing network infrastructures. This candidate must be able to work independently to develop and execute strategies and consult with internal clients on advanced security topics that affect the ability to meet or exceed Federal mandates. In addition, the candidate must possess excellent oral and written communications skills and experience in presenting technical issues to a wide variety of audiences. The Main Responsibilities * Acting as the Information System Security Officer for the Industrial Security Team on FedRAMP and FISMA accredited systems * Establishing/improving processes to conduct Assessment and Authorization activities for customer engagements * Acting as a mentor to the engineers within the Industrial Security team that perform the Information Security Engineering role on specific customer engagements * Supporting the customer directly, or through interaction with the assigned ISSO, to facilitate continued compliance to the Risk Management Framework and Agency specific policy and requirements through understanding of the installed customer supporting infrastructure, its operation, and its security posture * Providing security support to the Federal bids and proposals process to facilitate the development of compliant customer environment solutions by providing security requirements and applicable pragmatic guidance to Sales, Solutions Development teams, Partner organizations, and internal Product Owners * Supporting the Federal sales channel and solution development teams with respect to proposed security services and solutions to facilitate successful Assessment and Authorization; as a direct contributor/author to the solution development process including customer meetings and presentations as required; and to provide solution guidance to the assigned Program Manager and ISSO on contract award * Understand new laws, regulations, policies, and frameworks/framework updates and provide consultation, recommendations, and implementation advice to the organization. Make necessary recommendations to the Corporate Information Security Policy that will facilitate successful Assessment and Authorization results for Federal customers. What We Look For in a Candidate * Ability to interface in a professional manner with management and customer is essential * Ability to relate technical issues to management and Customer personnel * Advanced knowledge of FedRAMP, FISMA and DOD frameworks * Ability to take a teamwork approach to the job by cooperating with others, offering to help others when needed, and considering larger organization or team goals rather than individual concerns. Includes the ability to build a constructive team spirit where team members are committed to the goals and objective Education and Experience: * Bachelor's degree in Computer Science, a related field, or equivalent experience * Minimum of 6 years of relevant Security/Compliance Engineering experience * Experience in the administration, design and implementation of security controls including experience in applying methodologies and principles for all levels of security. * Exceptionally strong oral and written communication skills, collaboration skills, and experience in presenting technical issues to all levels of management, as well as non-technical staff. * Must possess current applicable professional/technical certifications, such as CISSP, GPEN, GWAPT, GISEC, CISM or CISA. * Experience with technologies, tools and process controls to minimize risk and data exposure. * Broad technical knowledge of current and emerging technologies used both within the corporate infrastructure and in delivering customer facing services. Security Requirements: * US Cit

Similar jobs