LMI is seeking a mid-level Information System Security Officer (ISSO) with an active SECRET clearance to provide cybersecurity Risk Management Framework (RMF) support for Department of Defense (DoD) Information Systems. This hybrid role (within 50 miles of Fort Bragg, NC) or fully remote position offers the opportunity to contribute to mission-critical cybersecurity operations, ensuring compliance, readiness, and continuous monitoring of DoD systems.

LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed.

Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors—helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value.

This position can be remote but requires quarterly travel for planning increments.

This position requires an active SECRET clearance; TS/SCI preferred.

• Serve as the primary cybersecurity point of contact for assigned DoD Information Systems (IS), overseeing day-to-day security operations, maintenance, and continuous monitoring.
• Collaborate with the Information System Security Manager (ISSM), System Owner (SO), and other stakeholders to ensure system compliance and readiness.
• Engage and coordinate with senior government leaders, civilian personnel, and uniformed service members to communicate cybersecurity requirements, address compliance issues, and support mission objectives.
• Develop, maintain, and update all RMF authorization and GRC documentation, ensuring alignment with NIST SP 800-53 Rev. 5 controls.
• Manage system accreditation data and reporting in eMASS (Enterprise Mission Assurance Support Service), accurately tracking vulnerabilities, POAMs, and authorization status.
• Oversee implementation and validation of technical and procedural security controls, coordinating and supporting security control assessments, vulnerability scans (ACAS/Nessus), and annual reviews per Continuous Monitoring (ConMon) requirements.
• Maintain and track Plans of Action and Milestones (POAMs), managing minor workflow submissions and coordinating for government approval.
• Translate technical requirements from DISA STIGs and Security Requirements Guides (SRGs) into actionable implementation statements for NIST SP 800-53 Rev. 5 compliance.
• Support cloud RMF efforts, applying knowledge of IL4/IL6 environments and DoD cloud security guidance (AWS, Azure, or equivalent).
• Provide subject matter expertise (SME) on cybersecurity compliance, risk management, and vulnerability mitigation.
• Assist with cybersecurity inspections, audits, and sustainment activities to maintain the system’s Authorization to Operate (ATO).

• Active SECRET clearance required; TS/SCI preferred.
• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
• 3–5 years of experience in cybersecurity compliance, RMF implementation, or ATO sustainment roles within a DoD environment.
• Strong, hands-on experience across RMF lifecycle steps, including assessment, authorization, and continuous monitoring.
• Proficiency with eMASS, NIST SP 800-53 Rev. 5, ACAS/Nessus, DISA STIGs, and vulnerability management tools.
• Demonstrated ability to manage and remediate Plans of Action and Milestones (POAMs) and produce accurate RMF documentation.
• Experience implementing and maintaining compliance within cloud environments (AWS, or DoD IL4/IL6).
• Familiarity with continuous monitoring tools, dashboards, and vulnerability tracking systems.
• Experience with security automation and scripting (Python, PowerShell, or Bash) is a plus.
• Excellent organizational, analytical, and communication skills; able to translate complex technical data into clear, actionable insights.
• Current IAM Level I or II certification (e.g., Security+ CE, CAP, CISSP, CISM, GSLC); IAM Level II highly preferred.

Target Salary Range: $90,270.00 - $155,037.00

Disclaimer: 

The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.