Cybersecurity Engineer

2w2 weeks ago

Logistics Management Institute

US · Full-time · $111,427 – $200,000

About this role

We’re looking for a Cybersecurity Engineer to support the secure deployment and continuous authorization of LIGER, an enterprise AI platform built for federal missions, into a U.S. Customs and Border Protection (CBP) environment. You’ll own the security work that lets LIGER reach production at CBP and stay there: maintaining the ATO posture, driving vulnerability management, and partnering with CBP cyber stakeholders. This position requires an active Secret clearance, CBP Background Investigation ability, and U.S. citizenship.

This is hands-on cyber engineering, not paper compliance. You’ll work alongside platform engineers, ISSOs, and the CBP security team to harden deployments, validate controls, and resolve findings against real systems. If you want federal cybersecurity in an environment that ships fast and treats security as part of the product, this role fits.

LIGER sits within LMI’s Chief Technology Office, a small, high-visibility team building AI tools for federal agencies. The culture is more startup than traditional government contractor: move fast, solve problems in design spikes, care about outcomes over process. Craft and attention to detail matter, especially in security.

You’ll work daily with the platform lead, engineering team, product manager, and directly with CBP cyber stakeholders. Security and compliance are foundational to how LIGER ships. This is a real opportunity to define how the platform maintains its CBP authorization while continuing to iterate.

LMI is dedicated to accelerating government impact with innovation and speed, bringing commercial-grade platforms and mission-ready AI to federal agencies. Leveraging proven expertise in federal deployment, LMI enhances outcomes efficiently across defense, space, healthcare, and energy sectors.

Requirements

Active Secret clearance
Ability to obtain a CBP Background Investigation
U.S. citizenship
Experience with Risk Management Framework (RMF) for federal systems
Knowledge of NIST 800-53 controls and tailoring for platforms
Proficiency in vulnerability scanning, triage, and remediation in CI/CD and runtime environments
Familiarity with secure configurations, CIS Benchmarks, and DISA STIGs for containers, hosts, and cloud
Hands-on experience with AWS GovCloud security including IAM, network controls, and logging

Responsibilities

Lead Risk Management Framework (RMF) activities for the LIGER deployment at CBP, including system categorization, control selection and tailoring, implementation, assessment, and continuous monitoring
Own and maintain authorization artifacts: System Security Plan (SSP), Security Assessment Plan (SAP), Security Assessment Report (SAR), Plan of Action and Milestones (POA&M), and supporting documentation aligned to CBP and DHS requirements
Coordinate directly with CBP ISSOs, Authorizing Officials, and cyber working groups to advance ATO and continuous authorization activities
Interpret NIST 800-53 controls in the context of the LIGER platform and translate them into actionable engineering requirements
Run and review vulnerability scans across CI/CD pipelines and runtime environments, triage findings, and drive remediation through the engineering team
Validate secure configurations and hardening baselines (e.g., CIS Benchmarks, DISA STIGs) on containers, hosts, and cloud resources
Partner with platform engineers on cloud and container security in AWS GovCloud, including IAM, network controls, secrets management, logging, and runtime protection