LMI Consulting, LLC
Chief Information Security Officer
LMI Consulting, LLC, Tysons Corner, Virginia, United States,
Chief Information Security Officer
Job Locations:
US-VA-Tysons Job ID:
2024-11970 # of Openings:
1 Category:
Cyber Overview
LMI is a consultancy dedicated to powering a future-ready, high-performing government, drawing from expertise in digital and analytic solutions, logistics, and management advisory services. We deliver integrated capabilities that incorporate emerging technologies and are tailored to customers' unique mission needs, backed by objective research and data analysis. Founded in 1961 to help the Department of Defense resolve complex logistics management challenges, LMI continues to enable growth and transformation, enhance operational readiness and resiliency, and ensure mission success for federal civilian and defense agencies. Responsibilities
The LMI Chief Information Security Officer (CISO) will be responsible for securing the organization's information systems, ensuring compliance with government regulations, and managing cybersecurity risks. The CISO drives implementing and running the enterprise Cybersecurity function from strategy and to implementation to thought leadership. This will involve identifying, evaluating, and reporting on legal and regulatory, IT, and cybersecurity risks and information assets while supporting and advancing business objectives. The CISO position requires a visionary leader with sound knowledge of Federal government contractor business management and a working knowledge of cybersecurity technologies covering the corporate network as well as the broader digital ecosystem. He or she will proactively work with the CIO, CTO, business units and stakeholders to architect and implement practices and solutions that meet agreed-on policies and standards for information security. Develops and implements cybersecurity strategies that align with LMI's goals, business objectives and government security requirements. Establishes governance frameworks including policies, procedures, and governance structures to ensure cybersecurity is managed consistently across the organization. Regularly briefs executive leadership on the security posture, plans, and emerging threats. Ensures compliance with federal regulation and standards, including but not limited to: ISO 2700X, ITIL, ENISA, ISA-62443, COBIT/Risk IT, NIST SP 800-53, NIST SP 800-171, CMMC, FISMA. Prepares the organization for and leads audit readiness, audits, and certifications related to government cybersecurity compliance. Identifies and manages cybersecurity risks, including third-party risks, insider threats, vulnerability assessments, incident response and recovery, and supply chain vulnerabilities. Ensures LMI's information systems and data are protected and implements robust access controls, encryption standards, and other technical security measures on sensitive and classified information, including securing our cloud environments. Manages LMI's security operations and oversees security operations centers (SOCs), ensuring continuous monitoring, detection, and response to security threats. Stays informed on new cyber threats and deploys countermeasures to mitigate them. Collaborates with government entities and serves as the liaison between the contractor and government agencies for security matters. Implements cybersecurity awareness and training programs across the organization. Manages third-party and supply chain security to ensure compliance with cybersecurity requirements. Develops, tests, and communicates business continuity and disaster recovery (BC/DR) plans. Allocates and manages the budget for cybersecurity initiatives, tools, and staff. Manages a cost-efficient information security organization, including hiring, training, and performance management. Qualifications
Required Qualifications: Demonstrated experience and success in leadership roles in information security, risk management, and IT or OT security. Knowledge of information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, and NIST standards. Demonstrated experience leading support and response to external security audits. Degree in a STEM field or equivalent work experience. 10+ years of experience in cybersecurity or information security roles. Experience designing and implementing cybersecurity architectures. Familiarity with firewalls, intrusion detection systems (IDS), endpoint protection, data loss prevention (DLP), and vulnerability management. Preferred Qualifications: Graduate degree in a STEM field or IT Security program. Relevant certifications (CISSP, CISM, CISA, CRISC). Experience establishing a Cyber Supply Chain Risk Management program. Previous experience as a corporate CISO or head of a Cybersecurity practice. Experience with federal agencies. TS/SCI with Full Scope Polygraph. Experience maintaining IL6, SCIF, and SAP environments. Demonstrated ability to lead and motivate teams. LMI is an Equal Opportunity Employer committed to fair treatment and equal employment opportunities.
#J-18808-Ljbffr
Job Locations:
US-VA-Tysons Job ID:
2024-11970 # of Openings:
1 Category:
Cyber Overview
LMI is a consultancy dedicated to powering a future-ready, high-performing government, drawing from expertise in digital and analytic solutions, logistics, and management advisory services. We deliver integrated capabilities that incorporate emerging technologies and are tailored to customers' unique mission needs, backed by objective research and data analysis. Founded in 1961 to help the Department of Defense resolve complex logistics management challenges, LMI continues to enable growth and transformation, enhance operational readiness and resiliency, and ensure mission success for federal civilian and defense agencies. Responsibilities
The LMI Chief Information Security Officer (CISO) will be responsible for securing the organization's information systems, ensuring compliance with government regulations, and managing cybersecurity risks. The CISO drives implementing and running the enterprise Cybersecurity function from strategy and to implementation to thought leadership. This will involve identifying, evaluating, and reporting on legal and regulatory, IT, and cybersecurity risks and information assets while supporting and advancing business objectives. The CISO position requires a visionary leader with sound knowledge of Federal government contractor business management and a working knowledge of cybersecurity technologies covering the corporate network as well as the broader digital ecosystem. He or she will proactively work with the CIO, CTO, business units and stakeholders to architect and implement practices and solutions that meet agreed-on policies and standards for information security. Develops and implements cybersecurity strategies that align with LMI's goals, business objectives and government security requirements. Establishes governance frameworks including policies, procedures, and governance structures to ensure cybersecurity is managed consistently across the organization. Regularly briefs executive leadership on the security posture, plans, and emerging threats. Ensures compliance with federal regulation and standards, including but not limited to: ISO 2700X, ITIL, ENISA, ISA-62443, COBIT/Risk IT, NIST SP 800-53, NIST SP 800-171, CMMC, FISMA. Prepares the organization for and leads audit readiness, audits, and certifications related to government cybersecurity compliance. Identifies and manages cybersecurity risks, including third-party risks, insider threats, vulnerability assessments, incident response and recovery, and supply chain vulnerabilities. Ensures LMI's information systems and data are protected and implements robust access controls, encryption standards, and other technical security measures on sensitive and classified information, including securing our cloud environments. Manages LMI's security operations and oversees security operations centers (SOCs), ensuring continuous monitoring, detection, and response to security threats. Stays informed on new cyber threats and deploys countermeasures to mitigate them. Collaborates with government entities and serves as the liaison between the contractor and government agencies for security matters. Implements cybersecurity awareness and training programs across the organization. Manages third-party and supply chain security to ensure compliance with cybersecurity requirements. Develops, tests, and communicates business continuity and disaster recovery (BC/DR) plans. Allocates and manages the budget for cybersecurity initiatives, tools, and staff. Manages a cost-efficient information security organization, including hiring, training, and performance management. Qualifications
Required Qualifications: Demonstrated experience and success in leadership roles in information security, risk management, and IT or OT security. Knowledge of information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, and NIST standards. Demonstrated experience leading support and response to external security audits. Degree in a STEM field or equivalent work experience. 10+ years of experience in cybersecurity or information security roles. Experience designing and implementing cybersecurity architectures. Familiarity with firewalls, intrusion detection systems (IDS), endpoint protection, data loss prevention (DLP), and vulnerability management. Preferred Qualifications: Graduate degree in a STEM field or IT Security program. Relevant certifications (CISSP, CISM, CISA, CRISC). Experience establishing a Cyber Supply Chain Risk Management program. Previous experience as a corporate CISO or head of a Cybersecurity practice. Experience with federal agencies. TS/SCI with Full Scope Polygraph. Experience maintaining IL6, SCIF, and SAP environments. Demonstrated ability to lead and motivate teams. LMI is an Equal Opportunity Employer committed to fair treatment and equal employment opportunities.
#J-18808-Ljbffr