IT Systems Engineer III - Federal - Herndon, VA

About Lumen
Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen’s network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies.

The Role

Lumen  is seeking an IT Systems Engineer III (Security Engineer) with demonstrated critical thinking and problem solving skills to manage risk across multiple systems and a diverse network architecture. The position will support the DHS IPSS and Lumen ECS programs in providing security engineering support to mitigate cyber intrusions onto the Lumen ISP network in support of US Government networks and to ensure compliance with all relevant Federal guidelines. 

The Main Responsibilities

• Conducting internal stakeholder and third party engagements, including governance of system security and incorporation of DHS requirements into overall IT planning.
• Supporting a governance process for managing the program systems including the integration of risk management activities into planning, programming, budgeting and execution processes.
• Using FIPS 199 and NIST SP 800-60 to assist with information and information system identification and categorization.
• Coordinating overall remediation approach and reporting POA&M status and proposed mitigation strategies.
• Provides inputs to written monthly reports to Customers.
• Identifies problems with security processes and recommends/implements solutions to resolve or improve processes.
• Work with engineering teams on strict deadlines to deliver projects according to plan.
• Develop, implement, review and evaluate System Security Plans, Interconnection Security Agreements, Risk Assessments, Plan of Actions and Milestones (POAM), System Requirements Traceability Matrix (SRTM) System Controls Traceability Matrix (SCTM), Security Assessment Reports, Contingency Plans as well as other required documentation to satisfy Certification and Accreditation (C&A)/Assessment and Authorization (A&A) requirements in accordance with government policies and procedures.
• Manage and maintain current program ATO’s (Authority To Operate), as required.
• Manage Information Security Audits by federal departments/agencies, including third party auditors.
• Experience with security tools (Nessus, HBSS, ACAS, dbProtect, AppScan or similar). As needed, perform scans, review the results, and write necessary reports and remediation plans.
• Conduct periodic reviews to ensure compliance with established policies and procedures ensuring all software, hardware and firmware changes recorded as required by established configuration management procedures.
• Ensure systems are operated, maintained and disposed of in accordance with applicable governing policies and procedures.
• Interface with appropriate government agencies, company management and employees, customers, vendors, and suppliers to ensure understanding of and compliance with security requirements.
• Overtime may be occasionally required to meet project deadlines.

What We Look For in a Candidate

 • Bachelor’s Degree or equivalent experience.
• Required: 2-3 Years of experience with NIST, RMF, or DoD FISMA-related activities to include management of security baselines, system security plans, contingency plans, incident response plans, configuration management plans, security control requirements and assessments, Plan of Action and Milestones (POA&M), and/or training requirements.
• Required: 2-3 Years of experience performing system management, system auditing, or system engineering functions in a diverse system environment.
• Knowledge and experience with performing information system continuous monitoring of security controls to ensure that they continue to be implemented correctly, operating as intended and producing the desired outcome with respect for meeting the security requirements.
• Knowledge and experience in writing policies, procedures, guidance, standards and instructional materials.
• Experience analyzing and documenting security control deficiencies and system vulnerabilities.
• Strong analytical skills and process-oriented thinking.
• Must demonstrate excellent verbal and written skills.
• Ability to take guidance as well as work independently to complete tasks.
• Must meet eligibility requirements for access to classified information (Applicants selected will be subject to a government security investigation).
• US Citizenship required.
• Top Secret Security Clearance.
Preferred Qualifications:
• CISSP certification or equivalent (e.g. CISA, CISM, etc)
• 5 years NIST, RMF, or DoD FISMA-related activities.

Requisition #: 224332

When applying for a position, you may be subject to a background screen (criminal records check, motor vehicle report, and/or drug screen), depending on the requirements for the position.  Job-related concerns noted in the background screen may disqualify you from the new position or your current role.  Background results will be evaluated on a case-by-case basis.

EEO Statement
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”).  We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.

The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.  Job duties and responsibilities are subject to change based on changing business needs and conditions.

Salary Range
$91,000.00 - 128,000.00
per Year
Salary range estimated by