LTS is seeking a seeking a highly skilled and proactive Cybersecurity Engineer who thrives at the intersection of DevSecOps, cloud infrastructure, and secure software delivery. This is a hands-on engineering role—not just analysis. You’ll help shape the architecture, tooling, and practices that embed security throughout the platform, with a focus on highly regulated data (e.g., PHI) and network-connected devices like kiosks. You’ll collaborate cross-functionally to evaluate business needs and guide security planning, from cloud architecture and application development to infrastructure, networking, and compliance. If you’re passionate about designing security-first systems, building automated controls, and owning security compliance across regulated environments - this role is for you.
This position is 100% remote.
LTS is an award-winning enterprise consulting, IT modernization, and healthcare innovations firm. As a leading provider of healthcare IT solutions for both federal agencies and public organizations, LTS has more than 20 years of experience fusing technology, ingenuity, and human-centered experiences to tackle an array of highly complex public health issues.
The LTS Health group is focused on providing technology solutions that improve our nation’s health equity and increase overall access to public health resources. LTS believes technological advances will continue to shape how the healthcare industry provides and improves services. Our internal expertise within IT Solutions and collaborations with industry partnerships allow LTS to remain at the forefront of emerging technologies. We continuously evaluate and integrate new technologies to enhance solutions in new models of care that help organizations meet individual care needs by bringing key health-care services closer to home in a cost-effective manner.

REQUIRED SKILLS AND QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field is required.
• 8+ years of experience in cybersecurity engineering or DevSecOps, with hands-on involvement in cloud architecture, application security, and compliance-driven environments. Additional years of related experience are required in lieu of a degree.
• Proven experience architecting secure cloud environments (preferably AWS) and microservices systems that handle regulated data.
• Deep understanding of network security principles, including VPNs, firewalls, private networking, and endpoint hardening—especially in hybrid cloud/edge scenarios.
• Experience with compliance frameworks such as HIPAA, FedRAMP, and SOC 2, including implementation of technical safeguards and audit preparation.
• Extensive experience implementing NIST SP 800-37 Rev. 2 Risk Management Framework (RMF) and applying NIST SP 800-53 Rev. 5 security and privacy controls to federal information systems.
• Strong understanding of web application security (OWASP Top 10, API security), including code-level vulnerabilities and secure development practices.
• Skilled in using and integrating tools like Snyk, Trivy, Falco, Checkov, Cloud Custodian, or similar to secure infrastructure and application delivery.
• Hands-on experience with infrastructure-as-code security, securing CI/CD pipelines, containers, and serverless environments.
• Ability to conduct threat modeling, vulnerability scanning, and penetration testing across cloud, application, and network layers.
• Familiarity with encryption practices, secure data storage, and access control for PII/PHI.
• Strong written and verbal communication skills, with experience working closely with engineering, DevOps, product, and compliance teams.

PREFERRED SKILLS:

• Certifications such as CISSP, AWS Security Specialty, GCSA, GIAC, or equivalent.
• Experience designing or securing IoT or kiosk-based platforms.
• Knowledge of Zero Trust Architecture, SSO/identity federation, or mobile app security.
• Background in digital health, government, or other heavily regulated industries.
  LTS is committed to offering eligible employees comprehensive benefits that will provide them with options intended to meet their needs and the needs of their family.

• Architect and guide the secure design of cloud infrastructure and microservices-based systems, ensuring scalability, reliability, and compliance with PHI-related standards.
• Evaluate business strategies and feature requirements to determine appropriate security controls and embed them early in the design process.
• Design and implement DevSecOps practices across CI/CD pipelines, infrastructure-as-code, and deployment workflows to enable secure-by-default systems.
• Develop and maintain automated security tooling and real-time monitoring to detect and respond to threats, misconfigurations, and vulnerabilities.
• Define and implement controls for secure data flow, storage, and processing of PHI, aligned with HIPAA, FedRAMP, and other regulatory requirements.
• Collaborate on the network security architecture for both cloud systems and distributed edge devices (e.g., kiosks), ensuring secure connectivity, patching, and threat visibility.
• Partner with DevOps and engineering teams to enforce secure configuration of cloud accounts, containers, serverless functions, and service-to-service communication.
• Generate, manage, and maintain encryption keys and other sensitive assets securely, in accordance with internal and regulatory standards.
• Provide hands-on technical support for security tools and infrastructure, and develop required documentation for audits, incidents, and operational changes.
• Develop and execute test scripts and validation plans to ensure the effectiveness of security controls across the platform.
• Create, maintain, and regularly update security operations documentation—including risk assessments, incident response plans, and business continuity strategies—to support organizational preparedness and regulatory alignment.
• Prepare cost estimates and recommendations for new security investments or implementations.
• Develop and maintain security policies, standards, and technical guidelines, and support internal audits and third-party certifications (e.g., SOC 2, HIPAA, FedRAMP) through clear, audit-ready documentation.
• Align all practices with applicable privacy regulations (e.g., HIPAA, GDPR, CCPA) and frameworks such as NIST, ensuring secure, compliant system design and delivery.