Colorado Technology Jobs

Colorado Jobs

Job Information

Lumen ISSO - Sr Lead Information Security Engineer - Herndon VA in DENVER, Colorado

About Lumen

Lumen is guided by our belief that humanity is at its best when technology advances the way we live and work. With 450,000 route fiber miles serving customers in more than 60 countries, we deliver the fastest, most secure global platform for applications and data to help businesses, government and communities deliver amazing experiences. Learn more about Lumen’s network, edge cloud, security and communication and collaboration solutions and our purpose to further human progress through technology at, LinkedIn: /lumentechnologies, Twitter: @lumentechco, Facebook: /lumentechnologies, Instagram: @lumentechnologies and YouTube: /lumentechnologies.

The Role

The Senior Lead Information Security Engineer is a member of the Government Industrial Security team responsible for implementation of the Risk Management Framework for Federal customers from system build to required Assessment and Authorization activities followed by Continuous Monitoring and annual assessment as required throughout the system lifecycle.

The successful candidate will have broad technical knowledge of all Federal Security Laws, Directives, Policy, Frameworks and Guidance; current and emerging cyber threats, as well as security technologies and methods used to protect both corporate and customer-facing network infrastructures. This candidate must be able to work independently and as a team leader to develop and execute strategies and consult with internal clients on advanced security topics that affect the ability to meet or exceed Federal mandates. In addition, the candidate must possess excellent oral and written communications skills and experience in presenting technical issues to a wide variety of audiences.

The Main Responsibilities

  • Acting as the Information System Security Manager for the Industrial Security Team on FedRAMP and FISMA accredited systems

  • Establishing/improving processes to conduct Assessment and Authorization activities for customer engagements

  • Acting as a mentor, and in a senior oversight capacity, to the engineers within the Industrial Security team that perform the Information System Security Officer (ISSO) role on specific customer engagements

  • Supporting the customer directly, or through interaction with the assigned ISSO, to facilitate continued compliance to the Risk Management Framework and Agency specific policy and requirements through understanding of the installed customer supporting infrastructure, its operation, and its security posture

  • Providing security support to the Federal bids and proposals process to facilitate the development of compliant customer environment solutions by providing security requirements and applicable pragmatic guidance to Sales, Solutions Development teams, Partner organizations, and internal Product Owners

  • Supporting the Federal sales channel and solution development teams with respect to proposed security services and solutions to facilitate successful Assessment and Authorization; as a direct contributor/author to the solution development process including customer meetings and presentations as required; and to provide solution guidance to the assigned Program Manager and ISSO on contract award

  • Understand new laws, regulations, policies, and frameworks/framework updates and provide consultation, recommendations, and implementation advice to the organization. Make necessary recommendations to the Corporate Information Security Policy that will facilitate successful Assessment and Authorization results for Federal customers.

What We Look For in a Candidate

  • Ability to interface in a professional manner with management and customer is essential

  • Ability to relate technical issues to management and Customer personnel

  • Advanced knowledge of FedRAMP, FISMA and DOD frameworks

  • Ability to take a teamwork approach to the job by cooperating with others, offering to help others when needed, and considering larger organization or team goals rather than individual concerns. Includes the ability to build a constructive team spirit where team members are committed to the goals and objective

Education and Experience:

  • Bachelor’s degree in Computer Science, a related field, or equivalent experience

  • Minimum of 10 years of relevant Security/Compliance Engineering experience

  • Extensive experience in the administration, design and implementation of security controls including experience in applying methodologies and principles for all levels of security.

  • Exceptionally strong oral and written communication skills, collaboration skills, and experience in presenting technical issues to all levels of management, as well as non-technical staff.

  • Must possess current applicable professional/technical certifications, such as CISSP, GPEN, GWAPT, GISEC, CISM or CISA.

  • Experience with technologies, tools and process controls to minimize risk and data exposure.

  • Broad technical knowledge of current and emerging technologies used both within the corporate infrastructure and in delivering customer facing services.

Security Requirements:

  • US Citizenship required due to a Suitability/Public Trust is required for the role

What to Expect Next

Requisition #: 237339

EEO Statement

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.


The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.