About Lumen

​

Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress.

​

We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future.

​

The Role

​

We are seeking a highly skilled and experienced Senior Lead Information Security Engineer specializing in Cloud and Virtualization, to join the Public Sector Security Architecture and Engineering team. In this role, you will be a part of a team that builds security solutions to protect Lumen public sector customers and infrastructure, from advanced security threats.

​

The ideal candidate will be responsible for certifying architecture designs, creating implementation guides, and training security operations teams, to support a new virtualized cloud infrastructure environment. This role requires a deep understanding of cloud security, virtualization technologies, best practices in information security, and CISA controls. Additionally, this role requires recurring collaboration with Product Management, IT, Architecture, Engineering, and Operations teams, to provide subject matter expertise.

​

Candidate must be a U.S. Citizen and eligible to obtain suitability and/or a US Government personnel security clearance.

​

Location and Schedule

​

This is a Work from Home position available from any US-based location.

• Security Engineering: Researches, evaluates, engineers, develops, troubleshoots, and supports solutions and infrastructure for the company’s Managed Security portfolio.
• Technical Documentation and Test Procedures: Defines and executes repeatable test procedures, creation of technical documentation, and delivery of scalable standards.
• Solution Design: Responsibility for independent engineering design to include collaboration with the Product Management, Product Development, Architecture, and Operations staff on complex security solutions.
• New Capabilities: Provides input regarding multivendor network, compute, virtualization, and security infrastructure capabilities and future possibilities to conceptualize new products and features.
• Improve Processes: Assesses security operational processes to identify opportunities to optimize, enhance, and automate.
• Security Infrastructure Support: Ensure ongoing scale, management, and monitoring of deployed solutions.
• Lifecycle Management: Define process and support all platform lifecycle management.
• Vendor Relations: Develops partnerships with key equipment suppliers. Communicates requirements, guidance, and vision to develop, implement, and support security solutions.

Required Qualifications:

​

• Experience using industry leading security solutions and technologies, to implement modern virtualized cloud infrastructure deployments.
• Has built lab and production development environments to certify architecture designs.
• Development of low-level design documents, configuration templates, and implementation guides.
• Implementation of production systems and training operations teams.
• Experience with integrated network architectures, data center architectures, and virtualized cloud technologies.
• DevOps tools such as Git, Docker, Jenkins, Gitlab CI/CD; configuration management tools such as Ansible, Salt, Puppet, Chef; and scripting language experience.
• Broad technical knowledge of current and emerging technologies used within the service provider security, data center, network, and cloud infrastructure.
• Demonstrated ability to effectively manage vendor and contract resources.
• Experience working with government programs, employees, and contractors.
• 10+ years of related experience.
• Undergraduate degree in Computer Science, Engineering, or related field, or equivalent experience.

​

Preferred Qualifications:

​

• SOC (Security Operations Center) infrastructure engineering and cloud deployment experience.
• Hands-on experience with accreditation and acceptance processes for complex, integrated solutions in a DOD or federal government environment.
• Federal TIC (Trusted Internet Connections) or MTIPS (Managed Trusted Internet Protocol Services) experience.
• Understanding of cloud infrastructure, networking, storage, and platform services and proficiency in cloud-native tools, virtualization and orchestration.
• Relevant cloud certifications, such as AWS certified solutions architect, Azure solutions architect or Google cloud professional architect.
• Professional/technical certifications, such as CISSP, CISM or CISA.
• Experience developing solutions per FISMA, DCID, NIST policy frameworks, FedRAMP, CISA, and GSA compliance requirements - while maintaining balance between functionality, performance, scalability, and reliability.
• Working experience with Managed Security Services platforms and solutions.
• Working experience with data center platforms such as service provider edge/core devices, Ethernet switch platforms, load balancers, etc.
• Experience with software development, and automation of testing, troubleshooting, and provisioning tasks.
• Knowledge of project management practices and experience with agile development process.

• Compensation: This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.

​

• Location Based Pay Ranges:
• $129,639 - $172,852 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, and WY.
• $136,121 - $181,494 in these states: CO, HI, MI, MN, NC, NH, NV, OR, and RI.
• $142,603 - $190,137 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, and WA.

​

• Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process.

​

Learn more about Lumen's:

• Benefits*
• Bonus Structure

​

• Background Screening: If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page. Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.

​

• Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

​

• Equal Employment Opportunities: We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments, or training.

​

• Disclaimer: The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.

​

• In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.

​

• Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.

Key Role:

​

Work with a wide variety of clients, including Fortune 100 companies, to identify security vulnerabilities through offensive security operations. Interface directly with client leadership and technical security staff to lead network penetration testing, application testing and red and purple team engagements in a wide variety of scenarios. Work with a team of 10+ seasoned security testing professionals to enhance existing services offerings and security testing capabilities and conduct hands-on technical testing. Conduct planning, reconnaissance, and exploitation within multiple environments, including complex Active Directory and mixed Windows and nix environment. Develop comprehensive and accurate reports and presentations for both technical and executive audiences. Identify and communicate findings and strategy effectively to client stakeholders, including technical staff, executive leadership, and legal counsel. Apply security testing and penetration testing techniques and mindset to a wide range of projects, become part of a team of security enthusiasts that perform cutting-edge research, and promote an environment of innovation and knowledge sharing. Due to the nature of work performed within this facility, U.S. citizenship is required.

NA

Basic Qualifications:

​

• Experience with conducting offensive security testing
• Experience with using, administering, and troubleshooting Kali or Ubuntu as an attack platform
• Experience working in a Windows environment and with Active Directory attack path enumeration
• Experience with security vulnerability identification and exploitation
• Ability to perform, oversee, and provide feedback on network penetration testing services
• HS diploma or GED

​

Additional Qualifications:

​

• Experience deploying attacker infrastructure in cloud environments
• Experience with network vulnerability assessments, web application security testing, network penetration testing, red teaming, security operations, or threat hunt
• Experience reporting vulnerabilities and developing recommendations
• Bachelor's degree in Computer Science
• CISSP, CEH, OSCP, CRTO, GPEN, GXPN, OSCE, OSWE, GCIH, or GWAPT certification
• Ability to obtain OSCP or CRTO Certification within one year of hire date

Compensation

​

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen’s benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

​

Salary at Booz Allen is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $54,000.00 to $123,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen’s total compensation package for employees. This posting will close within 90 days from the Posting Date.

​

Identity Statement

​

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

​

Work Model

​

Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

​

• If this position is listed as remote or hybrid, you’ll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you’ll work with colleagues and clients in person, as needed for the specific role.

​

Commitment to Non-Discrimination

​

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

Summary

​

The Senior Technology Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Front Line Units (FLU) / Operations (Ops) executives. In this role, you will be supporting a group/team to develop a deep understanding of the business in order to have specialized information security risk-based discussions. This relationship will ensure a focus on the right risk priorities. You will also provide guidance on information security topics, policies and controls.

​

Company Overview

​

NA

• Contribute to the ongoing information security initiatives and improvements development, implementation and maintenance of information security for FLU/Ops
• Serves as an Information Security subject matter expert and participates in the development, implementation and maintenance of information security for FLU/Ops
• Provides guidance and advocacy regarding the prioritization of investments that impact information security
• Advises management on risk issues related to information security and recommends actions in support of the bank's wider risk management and compliance programs
• Monitors information security trends internal and external to the bank and keeps leadership informed
• Manages quality control and reporting
• Ensures compliance with policies and laws
• Drives GIS/FLU/Ops risk deliverables
• Collaborates with risk partners on info security critical priorities
• Participates in senior FLU/Ops specific Risk Management & Business Continuity Routines
• Identifies and measures global information security (GIS) controls on most critical business processes or channels

Required Skills

• Information Security & Technology professional with 10+ years’ experience
• 5+ years of risk management experience with proven ability to effectively apply risk principles to challenging business situations
• Subject matter expertise in application security, vulnerability testing and development of risk appetite
• Experience evaluating cyber security controls and providing guidance for platform or distributed computing platforms (Cloud, PaaS)
• Experience with information security for No SQL, Big Data, and unstructured data stores (Cassandra, Hadoop, and/or Teradata)
• Knowledge in Windows, Midrange and Mainframe Platforms with emphasis on security and access controls.
• Exceptional executive presentation and communication skills
• Excellent influencing and problem resolution skills
• Ability to be comfortable delivering messages across a wide spectrum of individuals having varying degrees of technical understanding
• Strong leadership skills and qualities which enable you to work with peers and various levels of management

​

Desired Skills

• Bachelors and/or Master’s degree in Computer Science, Information Technology or related field

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

​

Shift:

1st shift (United States of America)

​

Hours Per Week:

40

​

Pay Transparency details

US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540)

​

Pay and benefits information

​

Pay range

​

$141,700.00 - $206,100.00 annualized salary, offers to be determined based on experience, education and skill set.

​

Discretionary incentive eligible

​

This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company.

​

Benefits

​

This role is currently benefits eligible. We provide industry-leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve.