Cybersecurity Professionals

Company Overview
The LDM Group LLC is a federal services firm delivering mission-critical cybersecurity, program management, and strategic communications support to civilian and defense agencies. We are expanding our Cybersecurity practice and are seeking highly qualified federal cybersecurity professionals to support an enterprise-level Information Security Program.

We are looking for experienced leaders and technical experts with demonstrated federal experience supporting FISMA, NIST RMF, SOC operations, Incident Response, Threat Intelligence, A&A, and compliance-driven environments.

When applying, please indicate which position you believe best aligns with your experience. Include a detailed, updated resume clearly demonstrating your Federal experience, including agencies supported, contract scope, tools used, RMF lifecycle involvement, and measurable outcomes.

Position #1: Cyber Information Assurance / Security Specialist Lead
(Audit Management and A&A Lead)

Position Summary
The Cyber Information Assurance / Security Specialist Lead provides technical leadership for a federal Information Security Program supporting Risk Management Framework (RMF) execution, audit coordination, POA&M management, and governance operations. This role requires hands-on experience leading A&A packages, responding to federal audits, and maintaining compliance with FISMA and NIST standards.

Key Responsibilities

• Lead end-to-end A&A lifecycle activities including FIPS 199 categorization, control selection, implementation validation, assessment coordination, and ATO package preparation.
• Develop, review, and update System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Contingency Plans, and Security Assessment Reports (SARs).
• Manage enterprise POA&M tracking, remediation validation, and risk acceptance documentation.
• Support federal audits (GAO, OIG, CFO Act, FISMA) including artifact collection and response drafting.
• Maintain and update Audit Management SOPs and internal compliance documentation.
• Administer and enhance enterprise GRC platforms for risk tracking and reporting.
• Provide risk-based recommendations to Authorizing Officials and senior cybersecurity leadership.
• Develop metrics dashboards to monitor compliance posture and audit trends.

Minimum Qualifications

• Master’s degree in Information Systems, Cybersecurity, or related field.
• Minimum 7 years of IT and cybersecurity experience.
• Minimum 3 years leading RMF and A&A efforts in a federal environment.
• Demonstrated experience with FISMA, FedRAMP, NIST 800-53, 800-37, 800-61, and related standards.
• Experience managing POA&Ms and reducing audit findings year-over-year.

Required Certifications

• CISSP
• CISA
• Preferred: PMP

Position #2: Security Operations Lead

Position Summary
The Security Operations Lead manages enterprise SOC operations, detection engineering, vulnerability management, and continuous monitoring across a federal environment. This individual is responsible for operational performance metrics, automation maturity, and defensive posture improvements.

Key Responsibilities

• Direct 24x7 SOC monitoring operations and supervise Tier 1–3 analysts.
• Oversee SIEM tuning, use-case development, and correlation rule optimization.
• Implement and maintain SOAR playbooks to reduce Mean Time to Detect (MTTD) and Mean Time to Contain (MTTC).
• Manage enterprise vulnerability scanning programs achieving ≥98% asset coverage.
• Lead CDM-aligned asset, identity, and configuration management integration.
• Develop executive dashboards reporting uptime, detection accuracy, and false positive rates.
• Conduct detection gap analysis and implement mitigation strategies.
• Coordinate with Incident Response and Threat Intelligence for advanced threat campaigns.
• Oversee remediation tracking and cross-team vulnerability prioritization.

Minimum Qualifications

• Bachelor’s degree in IT, Cybersecurity, or related field.
• Minimum 10 years supporting federal SOC operations.
• Minimum 5 years managing SOC teams and security engineering personnel.
• Experience operating SIEM, SOAR, EDR, and vulnerability management platforms in federal environments.
• Demonstrated success improving operational metrics and automation maturity.

Required Certifications

• CISSP-ISSMP
• CISSP-ISSAP
• Preferred: CNSE

Position #3: Incident Management Lead

Position Summary
The Incident Management Lead directs enterprise cybersecurity incident response and penetration testing coordination within a federal environment. This role requires experience managing major cyber incidents, coordinating containment efforts, and briefing senior leadership.

Key Responsibilities

• Maintain and update the Enterprise Incident Response Plan in alignment with NIST 800-61.
• Lead incident triage, containment, eradication, and recovery activities.
• Oversee root cause analysis and after-action reporting within defined timelines.
• Manage red team, penetration testing, and adversary emulation engagements.
• Ensure MTTC objectives (≤4 hours for critical incidents) are met.
• Conduct annual incident response exercises and tabletop simulations.
• Coordinate reporting to federal stakeholders and executive leadership.
• Integrate lessons learned into updated SOPs and defensive enhancements.

Minimum Qualifications

• Master’s degree in Cybersecurity, Information Technology, or related field.
• Minimum 10 years supporting federal incident response programs.
• Minimum 5 years managing IR teams.
• Experience handling high-impact federal cybersecurity incidents.
• Experience integrating penetration testing findings into operational improvements.

Required Certifications

• CEH
• LPT
• ECSA

Position #4: Digital Forensics Analyst

Position Summary
The Digital Forensics Analyst conducts advanced forensic investigations, malware analysis, and proactive threat hunting across enterprise and cloud environments supporting federal systems.

Key Responsibilities

• Perform disk, memory, and network forensic analysis across Windows, Linux, and macOS systems.
• Conduct malware reverse engineering and behavioral analysis.
• Execute proactive threat hunting using EDR, SIEM, and full packet capture tools.
• Maintain complete chain-of-custody documentation for evidentiary materials.
• Investigate cloud logs including M365, Azure, and AWS audit trails.
• Produce forensic analysis reports suitable for federal audit and legal review.
• Support insider threat investigations and advanced persistent threat detection.

Minimum Qualifications

• Minimum 5 years performing digital forensic investigations in a federal environment.
• Experience analyzing cloud-based forensic artifacts.
• Demonstrated experience using enterprise detection and packet analysis tools.

Accepted Certifications
One or more of the following:

• GIAC (GCIH, GCFA, GCFE, GREM, GXPN, GCTI)
• EnCE or equivalent forensic certification

Position #5: Cyber Threat Intelligence Lead

Position Summary
The Cyber Threat Intelligence Lead provides operational and strategic intelligence analysis to support proactive cyber defense, adversary tracking, and federal information sharing initiatives.

Key Responsibilities

• Monitor and analyze intelligence feeds and adversary activity.
• Produce weekly threat intelligence briefings and executive summaries.
• Map adversary TTPs to MITRE ATT&CK framework.
• Integrate Indicators of Compromise (IoCs) into detection platforms.
• Correlate adversary campaigns and identify emerging threats.
• Provide risk assessments tied to operational and strategic impact.
• Support proactive discovery of emerging vulnerabilities and threat trends.

Minimum Qualifications

• Minimum 7 years of cyber threat intelligence experience supporting federal programs.
• Demonstrated expertise in adversary campaign tracking and intelligence production.
• Experience integrating CTI into SIEM/SOAR environments.

Security Eligibility Requirement
An active U.S. Government security clearance is required at the time of hire. Candidates must be able to maintain their clearance and meet all applicable Government security eligibility requirements associated with federal contract performance. U.S. citizenship is required. Lawful permanent residents (Green Card holders) are not eligible for this position.

Pay: $85,000.00 - $130,000.00 per year

Work Location: In person