LCG
Lead Systems Security
LCG, Durham, North Carolina, United States, 27703
This job opportunity is part of an RFP process; candidates are invited to submit their resumes detailing relevant experience.
Location: Durham, NC (Hybrid)
LCG is a minority-owned technology consulting firm that has been a trusted partner to more than 40 federal agencies, including 21 of the 27 Institutes and Centers (ICs) at the National Institutes of Health (NIH). For over 25 years, LCG has brought digitization and innovation to the Health and Human Services (HHS) and the NIH ecosystems. We support IT organizations by bringing precision technology and operation models that achieve mission capabilities and performance success.
Position Description:
LCG is seeking a Systems Security Lead will oversee and manage the information security operations at the client site, ensuring the organization's information systems remain secure, compliant, and resilient. This role involves monitoring, detecting, investigating, and responding to cyber threats while ensuring compliance with FISMA, NIST 800-53 (moderate level), and other relevant frameworks. The Systems Security Lead will coordinate security efforts across teams, administer security technologies, and support audit and authorization processes, as well as incident response and disaster recovery planning. The role also involves leading security initiatives, protecting against unauthorized access and modification of sensitive information, and ensuring system compliance with federal standards.
Duties and Responsibilities:•Monitor client information systems for compliance with FISMA, NIST security guidelines, client standards, and OMB mandates.•Conduct regular security audits, generate compliance reports, and update security policies based on new mandates.•Implement and manage a network security framework that includes prevention, detection, continuous monitoring, incident response, and recovery.•Administer firewalls, intrusion detection/prevention systems (IDS/IPS), and log aggregation systems, ensuring up-to-date configurations, event logging, and real-time monitoring.•Perform vulnerability scanning and remediate identified threats across IT systems and network infrastructures.•Maintain and manage web traffic filtering appliances, file integrity monitoring applications, and cybersecurity detection/response applications.•Support endpoint security tools, such as DLP (Data Loss Prevention) and cyber risk response systems (e.g., Absolute Resilience).•Monitor and respond to adverse security events, including malware infections, unauthorized access attempts, and denial-of-service attacks.•Conduct forensic investigations and maintain the chain of custody for retrieved data, producing detailed forensic reports.•Support the client information system Assessment and Authorization (A&A) process based on NIST and DHS guidelines.•Ensure ongoing security compliance through continuous monitoring and verification of security controls.•Prepare artifacts and documentation to support audits and ensure system security compliance.•Provide network security audit support, including the configuration of security hardware, analysis of security risks, and the creation of required audit documentation.•Produce reports detailing network security status, patch management, and incident response activities.•Assist in the development and maintenance of the IT portion of the Continuity of Operations Plan (COOP) and Disaster Recovery Plan (DRP).•Ensure IT systems at alternate sites are ready to take over operations during system failures.•Maintain COOP and DRP strategies to reflect changes in the client operational environment.
Requirements:•Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field OR Four years of related experience may be substituted for the education degree requirement•Minimum of 7 years of experience in IT security, with strong knowledge of FISMA, NIST 800-53, and other relevant federal guidelines.•Minimum of 5 years of experience analyzing information security systems and applications, and recommending and developing security measures to protect information against unauthorized modification or loss.•Experience in vulnerability analysis, security evaluation and testing, certification and accreditation, and incident reporting and remediation.•Strong knowledge of network security, data loss prevention, and endpoint protection systems.•Experience in leading application and system security initiatives and providing technical expertise in designing secure public-facing and internal-facing services and APIs.•Experience with authoring, editing, and maintaining design documentation, standard operating procedures, and system configuration documentation.•Strong analytical and problem-solving skills.•Excellent written and verbal communication skills.•Ability to work collaboratively with cross-functional teams.•Capable of managing and leading security initiatives and teams effectively.
Desired Skills and Certifications•Certified Information Systems Security Engineering Professional (CISSP) or equivalent is highly preferred.•Other relevant certifications such as CISM or CEH.•Familiarity with Splunk, Tenable.SC, Malwarebytes, and other cybersecurity tools.•Experience in a federal or healthcare environment, specifically with NIH or HHS standards.•Leverage Generative AI tools, such as Microsoft 365 Copilot, to automate and streamline security reporting, vulnerability analysis, and compliance documentation tasks, enhancing overall productivity and accuracy in daily operations.•Guide team members in using AI-driven tools to improve incident response processes, optimize network security workflows, and develop efficient methods for monitoring and reporting on security compliance.
Compensation and Benefits
The projected compensation range for this position is $136,200 to $165,200 per year benchmarked in the Washington, D.C. metropolitan area. The target salary is $149,900. The salary range provided is a good faith estimate representative of all experience levels. Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience.
LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits.
Devoted to Fair and Inclusive Practices
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at .
Securing Your Data
Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from lcginc.com or emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the .
Location: Durham, NC (Hybrid)
LCG is a minority-owned technology consulting firm that has been a trusted partner to more than 40 federal agencies, including 21 of the 27 Institutes and Centers (ICs) at the National Institutes of Health (NIH). For over 25 years, LCG has brought digitization and innovation to the Health and Human Services (HHS) and the NIH ecosystems. We support IT organizations by bringing precision technology and operation models that achieve mission capabilities and performance success.
Position Description:
LCG is seeking a Systems Security Lead will oversee and manage the information security operations at the client site, ensuring the organization's information systems remain secure, compliant, and resilient. This role involves monitoring, detecting, investigating, and responding to cyber threats while ensuring compliance with FISMA, NIST 800-53 (moderate level), and other relevant frameworks. The Systems Security Lead will coordinate security efforts across teams, administer security technologies, and support audit and authorization processes, as well as incident response and disaster recovery planning. The role also involves leading security initiatives, protecting against unauthorized access and modification of sensitive information, and ensuring system compliance with federal standards.
Duties and Responsibilities:•Monitor client information systems for compliance with FISMA, NIST security guidelines, client standards, and OMB mandates.•Conduct regular security audits, generate compliance reports, and update security policies based on new mandates.•Implement and manage a network security framework that includes prevention, detection, continuous monitoring, incident response, and recovery.•Administer firewalls, intrusion detection/prevention systems (IDS/IPS), and log aggregation systems, ensuring up-to-date configurations, event logging, and real-time monitoring.•Perform vulnerability scanning and remediate identified threats across IT systems and network infrastructures.•Maintain and manage web traffic filtering appliances, file integrity monitoring applications, and cybersecurity detection/response applications.•Support endpoint security tools, such as DLP (Data Loss Prevention) and cyber risk response systems (e.g., Absolute Resilience).•Monitor and respond to adverse security events, including malware infections, unauthorized access attempts, and denial-of-service attacks.•Conduct forensic investigations and maintain the chain of custody for retrieved data, producing detailed forensic reports.•Support the client information system Assessment and Authorization (A&A) process based on NIST and DHS guidelines.•Ensure ongoing security compliance through continuous monitoring and verification of security controls.•Prepare artifacts and documentation to support audits and ensure system security compliance.•Provide network security audit support, including the configuration of security hardware, analysis of security risks, and the creation of required audit documentation.•Produce reports detailing network security status, patch management, and incident response activities.•Assist in the development and maintenance of the IT portion of the Continuity of Operations Plan (COOP) and Disaster Recovery Plan (DRP).•Ensure IT systems at alternate sites are ready to take over operations during system failures.•Maintain COOP and DRP strategies to reflect changes in the client operational environment.
Requirements:•Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field OR Four years of related experience may be substituted for the education degree requirement•Minimum of 7 years of experience in IT security, with strong knowledge of FISMA, NIST 800-53, and other relevant federal guidelines.•Minimum of 5 years of experience analyzing information security systems and applications, and recommending and developing security measures to protect information against unauthorized modification or loss.•Experience in vulnerability analysis, security evaluation and testing, certification and accreditation, and incident reporting and remediation.•Strong knowledge of network security, data loss prevention, and endpoint protection systems.•Experience in leading application and system security initiatives and providing technical expertise in designing secure public-facing and internal-facing services and APIs.•Experience with authoring, editing, and maintaining design documentation, standard operating procedures, and system configuration documentation.•Strong analytical and problem-solving skills.•Excellent written and verbal communication skills.•Ability to work collaboratively with cross-functional teams.•Capable of managing and leading security initiatives and teams effectively.
Desired Skills and Certifications•Certified Information Systems Security Engineering Professional (CISSP) or equivalent is highly preferred.•Other relevant certifications such as CISM or CEH.•Familiarity with Splunk, Tenable.SC, Malwarebytes, and other cybersecurity tools.•Experience in a federal or healthcare environment, specifically with NIH or HHS standards.•Leverage Generative AI tools, such as Microsoft 365 Copilot, to automate and streamline security reporting, vulnerability analysis, and compliance documentation tasks, enhancing overall productivity and accuracy in daily operations.•Guide team members in using AI-driven tools to improve incident response processes, optimize network security workflows, and develop efficient methods for monitoring and reporting on security compliance.
Compensation and Benefits
The projected compensation range for this position is $136,200 to $165,200 per year benchmarked in the Washington, D.C. metropolitan area. The target salary is $149,900. The salary range provided is a good faith estimate representative of all experience levels. Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience.
LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits.
Devoted to Fair and Inclusive Practices
All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.
If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at .
Securing Your Data
Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from lcginc.com or emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at .
If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the .