Senior C-SCRM Cybersecurity Engineer - Clearance Desired

Pay Competitive

Employment type Other

Req#: 9862
Overview

LMI is seeking a highly skilled and experienced Senior C-SCRM Cybersecurity Engineer to join our team. As a Senior C-SCRM Cybersecurity Engineer, you will play a critical role in providing technical expertise and recommendations for the planning, implementation, integration, and management of infrastructure within Centers for Medicare & Medicaid (CMS) from a C-SCRM (Supply Chain Risk Management) perspective. Work is performed through a blend of telework and client site work located in Baltimore, MD. Periodic onsite client engagements at classified and unclassified levels could be held at offices within the National Capital Region.

LMI is a consultancy dedicated to powering a future-ready, high-performing government, drawing from expertise in digital and analytic solutions, logistics, and management advisory services. We deliver integrated capabilities that incorporate emerging technologies and are tailored to customers’ unique mission needs, backed by objective research and data analysis. Founded in 1961 to help the Department of Defense resolve complex logistics management challenges, LMI continues to enable growth and transformation, enhance operational readiness and resiliency, and ensure mission success for federal civilian and defense agencies.

LMI offers a generous compensation package with excellent benefits that start the first day of employment. Business casual dress, flex time, and tuition reimbursement are a few of our many work-life benefits available to our employees. Come join the #1 top ranked workplace by the Washington Post in 2021!

Responsibilities
• Provide technical assistance and recommendations for planning, implementing, integrating, and managing existing and emerging infrastructure within CMS from a C-SCRM and software supply chain security standpoint.
• Develop, interpret, and implement software supply chain security policies and procedures to support the SCRM Program within Information Security & Privacy Group (ISPG).
• Offer technical solutions to support various security tools used throughout the CMS environment.
• Collaborate closely with ISPG security members to develop and maintain security integration documentation on multiple cloud networks, platforms, and business-process systems.
• Work with cross-functional team members to update user guides and training materials related to C-SCRM.
• Stay updated on industry trends and advancements in C-SCRM practices to ensure continuous improvement.
• Determine processes and technologies to implement C-SCRM practices related to Software Bill of Materials (SBOM).
Qualifications
• A minimum of 10 years of experience in cybersecurity, network engineering, or a technical IT career field.
• Strong understanding and expertise in at least two of the following areas: SDLC (Software Development Life Cycle), DevSecOps pipeline, statistical analysis-correlation, vulnerability management, supply chain risk management.
• At least 3 years of overall experience supporting cloud and on-premises IT platform security solutions.
• One or more current security certifications, such as CISSP, CISA/M, CIPP/CIPM/CIPT, demonstrating expertise in the field.
• In-depth knowledge of industry standards or guidance, such as FIPS 140-2, NIST 800-30, 53, 88, 161, 171, ISO 27000, 28000, and 20243 series, NERC CIP, ICD 731, FedRAMP, CMMC, TAPA, E.O. 14028, and OMB memos.
• Understanding of administering and hardening internal processes and systems against external attacks.
• Familiarity with Software Bill of Materials (SBOM) concepts and practices related to supply chain risk management.
• Undergraduate degree in applicable discipline.
• Ability to obtain a security clearance. Active Secret clearance or Top Secret preferred.

The Logistics Management Institute is a consulting firm dedicated to improving the business of government, drawing from deep expertise in advanced analytics, digital services, logistics, and management advisory services.

Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.

Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.

An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report . NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.