Cyber Security Engineer

Location: Remote (U.S.)
Clearance: Ability to obtain and maintain a Public Trust

LTS is seeking a skilled and mission-focused Cyber Security Engineer to support a major modernization initiative within the Department of Veterans Affairs (VA) health portfolio. This role will support cybersecurity engineering, risk management, and security modernization efforts across enterprise healthcare systems and infrastructure environments supporting Veteran healthcare operations nationwide.

The ideal candidate will possess strong experience securing complex federal IT systems, supporting cloud and hybrid environments, and implementing cybersecurity solutions aligned with federal compliance frameworks and Zero Trust initiatives. This individual will work closely with infrastructure, application, integration, and DevSecOps teams to ensure modernization efforts are designed and deployed with security at the forefront.

What You’ll Do:
• Support cybersecurity engineering for the pilot, including cloud security, RMF/ATO support, compliance documentation, and continuous monitoring.
• Secure AWS-based environments through identity and access management, encryption, logging, monitoring, network security, vulnerability management, and configuration hardening.
• Configure, monitor, and support AWS security services such as AWS Network Firewall, Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, and related capabilities.
• Support security planning for an AWS Commercial Cloud environment with consideration for future migration to AWS GovCloud or another VA-approved hosting environment.
• Assist with ATO planning, control implementation, evidence collection, compliance reporting, and approval workflows.
• Work within eMASS, ServiceNow GRC, or similar risk management systems to support ATO artifacts, information assurance tasking, POA&M tracking, and security documentation.
• Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams, and remediation plans.
• Support vulnerability assessments, DISA STIG hardening, configuration compliance reviews, remediation tracking, and audit readiness activities.
• Integrate security requirements into architecture, sprint planning, CI/CD processes, testing, and deployment readiness.
Support security reviews for VIA platform capabilities, including data handling, access control, auditability, secure integration, and AI-enabled modernization workflows.
• Collaborate with technical and non-technical stakeholders to translate security requirements into practical engineering, documentation, and compliance actions.

What We’re Looking For:
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field.
• 5+ years of cybersecurity engineering experience supporting federal, cloud, healthcare, or other regulated environments.
• Experience securing AWS cloud environments, including IAM, encryption, logging, monitoring, network security, and vulnerability management.
• Hands-on experience with AWS security services such as Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, AWS Network Firewall, or similar capabilities.
• Experience supporting RMF, ATO, continuous monitoring, risk management, and federal compliance activities.
• Familiarity with eMASS, ServiceNow GRC, or similar risk management and authorization systems.
• Experience developing or supporting SSPs, POA&Ms, SOPs, control narratives, risk assessments, evidence packages, and remediation plans.
• Working knowledge of NIST RMF, NIST SP 800-53 controls, FISMA, FedRAMP, Zero Trust, and federal cybersecurity requirements.
• Knowledge of DISA STIGs, secure configuration baselines, system hardening, and vulnerability remediation processes.
• Familiarity with DevSecOps, secure SDLC practices, automated security scanning, CI/CD security, and environment hardening.
• Strong communication, documentation, analytical, and problem-solving skills.

Nice to Have:
• Experience supporting AWS GovCloud, federal cloud migration, or Commercial-to-GovCloud transition planning.
• Prior experience supporting VA systems, VA cloud environments, or VA healthcare modernization initiatives.
• Familiarity with VistA, CPRS, MUMPS, or legacy healthcare application modernization.
• Experience securing AI-enabled, automation-based, or agentic platforms in regulated environments.
• Experience supporting FedRAMP Moderate or High environments.
• Experience with container security, Kubernetes, infrastructure as code, or cloud-native security architectures.
• Knowledge of healthcare interoperability standards such as HL7, FHIR, APIs, or healthcare data exchange.
Relevant certifications such as CISSP, Security+, CEH, CCSP, AWS Security Specialty, AWS Solutions Architect, or similar.

Why Join LTS?
At LTS, we support mission-critical programs that improve healthcare outcomes for Veterans nationwide. Our teams work on transformative modernization initiatives focused on securing and advancing federal healthcare technology systems. We foster a collaborative environment built on integrity, innovation, and continuous growth while empowering employees to make meaningful contributions to national healthcare missions.