We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
LCG, Inc. jobs

Senior Cybersecurity Engineer

LCG, Inc.
$142,400.00 - $177,600.00 / yr
retirement plan
United States, D.C., Washington
Mar 17, 2025

This job opportunity is part of an RFP process; candidates are invited to submit their resumes detailing relevant experience.

Job Title: Senior Cybersecurity Engineer (Computer Security System Specialist III)

Work Location: Washington DC (Onsite)

Clearance: Public Trust

Required: US citizen or Lawful Permanent Resident

LCG is a minority-owned technology consulting firm that has been a trusted partner to more than 40 federal agencies, including 21 of the 27 Institutes and Centers (ICs) at the National Institutes of Health (NIH). For over 25 years, LCG has brought digitization and innovation to the Health and Human Services (HHS) and the NIH ecosystems. We support IT organizations by bringing precision technology and operation models that achieve mission capabilities and performance success.

Job Summary:

LCG's Growth Team is seeking an experienced Senior Cybersecurity Engineer. The client works to support promoting financial stability. The client collects and standardizes data for other member agencies, ensuring that the data is available and useful for decision-making. The office performs applied research, develops tools for risk measurement, and shares the results with financial regulatory agencies. Additionally, the client helps member agencies determine the types and formats of data they are authorized to collect.

The Senior Cybersecurity Engineer will support the Client Security Operations (SecOps) and Architecture team. This role involves providing expertise in monitoring, reporting, threat intelligence, threat hunting, and incident response. The engineer will work with operations and engineering teams to ensure security requirements are implemented in various projects. A key responsibility will be managing Continuous Diagnostics and Mitigation (CDM) tools such as Qualys and Forescout. Experience with Rapid7 and BigFix will be helpful as the team migrates to Qualys.

The position also involves managing Endpoint Detection and Response (EDR) systems like CrowdStrike Falcon and Trellix HX. The engineer will conduct regular vulnerability scans, perform audits to verify the effectiveness of security controls, and collaborate with third-party vendors during annual security assessments. As part of a growing team, the Senior Cybersecurity Engineer will contribute to enhancing incident response and overall security practices, including working with new technologies such as deception infrastructure, data loss prevention (DLP), and machine learning.

Key Tasks and Responsibilities:



  • Extensive experience configuring, managing, and troubleshooting the Qualys VM, PC, Web Application Scanner, and Container Security modules.
  • In-depth knowledge of Qualys dashboarding, reporting, and data analysis functionalities
  • Experience with Qualys APIs for automation and integration purposes.
  • Develop and implement security automation workflows using Qualys APIs and scripting languages (e.g., Python).
  • Streamline security operations by automating repetitive tasks and integrating Qualys with other security tools.
  • Proactively identify and address potential security risks within the Qualys platform.
  • Working knowledge of Amazon Web Services (AWS) EC2 and Workspaces, VMWare virtual infrastructure, and network/security appliances.
  • Coordinate with the Network Engineering team in the deployment of Forescout CounterACT.
  • Continuously improve security posture by recommending and implementing best practices for Qualys usage.



Qualifications



  • Bachelor's degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering, or a related field.
  • Deep hands-on experience with Qualys Vulnerability Management platform performing data collection via sensors, scanning, report generation, and data analysis.
  • Very strong experience with Qualys Policy Compliance and setting up secure baseline configurations utilizing an industry framework (e.g., DISA STIG, CIS benchmark, etc.) to assess security posture across an environment.
  • Experience with ServiceNow SecOps and Vulnerability Management a plus.
  • Strong experience fine-tuning controls to meet standards utilizing custom controls and regex.
  • Strong understanding of security frameworks and standards (e.g., NIST, CIS).
  • Overall experience with vulnerability remediation processes, including risk prioritization, change management, analysis, and triage.
  • Understanding of networking technologies and concepts (routing, switching, network segmentation, etc.). Programming and scripting languages, preferably Python and PowerShell.
  • Strong written and verbal communication skills; must be able to effectively communicate with all levels of staff up to executive-level management, customers (internal and external), and vendors.
  • Ability to work effectively under pressure; previous experience as an emergency medical responder, firefighter, or related high-pressure environment preferred but not required.
  • Familiar with and have worked within security frameworks such as: NIST SP 800-61, Attack lifecycle, SANS Security Controls, MITRE ATT&CK, Kill chain, OWASP Top 10.


Compensation and Benefits

The projected compensation range for this position is $142,400 to $177,600 per year benchmarked in the Washington, D.C. metropolitan area. The target salary is $159,500 . The salary range provided is a good faith estimate representative of all experience levels. Salary at LCG is determined by various factors, including but not limited to role, location, the combination of education/training, knowledge, skills, competencies, certifications, and work experience.

LCG offers a competitive, comprehensive benefits package which includes health insurance options (medical, dental, vision), life and disability insurance, retirement plan contributions, as well as paid leave, federal holidays, professional development, and lifestyle benefits.

Devoted to Fair and Inclusive Practices

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.

If you are interested in applying for employment with LCG and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department by email at hr@lcginc.com.

Securing Your Data

Beware of fraudulent job offers using LCG's name. LCG will never request payment-related details or advancement of money during the application process. Legitimate communication will only come from lcginc.com or system@hirebridgemail.com emails, not free commercial services like Gmail or WhatsApp. If you receive suspicious emails asking for payment or personal information, contact us immediately at hr@lcginc.com.

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission.

Applied = 0
MORE JOBS LIKE THIS

(web-b798c7cf6-z2v8z)