LMI is seeking a highly skilled Cyber Security Analyst to support the Army Training Information System (ATIS) program as part of the Platform Team operating within a SAFe Agile Release Train (ART)environment. ATIS is a key Army initiative to modernize and unify training management systems across the enterprise.  

In this role, you will be responsible for cybersecurity analysis, compliance, and risk management activities to ensure platform-level services and shared components are secure, compliant with DoD and Army cybersecurity frameworks, and effectively integrated into the Agile software development lifecycle. You will act as a cybersecurity subject matter expert, collaborating closely with DevSecOps, software engineering, infrastructure, and security operations teams to support the delivery of secure, scalable, and resilient cloud-based systems.  

Key Responsibilities:  

• Serve as the lead cybersecurity analyst on the ATIS Platform Team, ensuring cybersecurity is embedded across the Agile development lifecycle.  
• Analyze system architectures, software designs, and platform services to ensure compliance with NIST 800-53, DoD RMF, Army RMF, and applicable STIGs.  
• Drive the development and maintenance of system security documentation, including System Security Plans (SSPs), POA&Ms, Security Assessment Reports (SARs), and continuous monitoring artifacts.  
• Support the preparation and submission of Authority to Operate (ATO) packages and interface with Information System Security Managers (ISSMs), Authorizing Officials (AOs), and other security stakeholders.  
• Extensive experience with eMASS, including conducting security control assessments, performing vulnerability analyses, and implementing threat modeling to identify, monitor, and resolve cybersecurity risks, ultimately enhancing the overall security posture. 
• Proficiency in configuring and managing AWS security services, such as AWS Security Hub, CloudTrail, GuardDuty, and AWS Config. 
• Assist with the implementation of security automation in CI/CD pipelines and security scans using tools like GitLab, ACAS, Interrogator and AESS,    
• Contribute to the development and enforcement of security baselines for cloud infrastructure, containerized environments, and Infrastructure as Code (IaC) tools.    
• Track compliance with STIGs for operating systems, containers, and application components; recommend and document deviations or mitigations as appropriate.  

Required Qualifications:  

• Active Secret Security Clearance.  
• Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field.    
• 5+ years of experience in cybersecurity analysis, information assurance, or cyber risk management.    
• Active DoDI 8140 certification (e.g., CISSP, CISM, Security+).    
• Hands-on experience of NIST Frameworks, Cloud Share Responsibility Model, FedRAMP and/or CNSSI 1253 control overlays.  
• Experience working in Agile or DevSecOps environments with cross-functional development and operations teams.  
• Familiarity with cloud security principles (preferably in AWS GovCloud) and securing platform-level components.  
• Experience with backlog management and collaboration tools (e.g., Gitlab, Lucid Spark).  

• Preferred Qualifications:  
• Prior experience supporting and implementing DoD Risk Management Framework (RMF) processes and U.S. Army Cybersecurity requirements. 
• Working knowledge of container security tools and cloud-native application security.    
• SAFe Agile certification (e.g., SAFe Practitioner, SAFe Architect, SAFe Scrum Master) or equivalent Agile training. 
• Strong documentation, reporting, and presentation skills for technical and non-technical audiences.  

Travel Requirements:  

Occasional travel required (e.g., quarterly for PI Planning, technical syncs, and major delivery milestones).

The target salary range for this position is $158,138.59/Yr.  

The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.