Network Designs, Inc.
Overview
We\u2019re seeking a senior\u2011level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You\u2019ll drive baseline hardening, risk assessments, and automation across cloud and on\u2011prem systems, ensuring adherence to federal mandates and Zero Trust principles. About NDi
Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi\u2019s core values drive all aspects of the business, and we value collaboration, career growth, and winning ideas. Responsibilities
Lead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platforms Conduct Continuous Diagnostics and Mitigation (CDM) program activities: vulnerability management, configuration management, identity & access controls, and incident response Perform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflows Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environments Design and enforce Zero Trust controls: micro-segmentation, least-privilege access, continuous verification of users, devices, and services Apply NIST RMF (SP 800-37/800-53) controls from system categorization through continuous authorization Facilitate FedRAMP compliance for cloud services; author and maintain SSPs, SARs, and authorization packages Map security controls to CISA CDM dashboard metrics; integrate data into monitoring solutions Collaborate with stakeholders to define baseline exceptions, track remediation progress, and report metrics Maintain documentation in enterprise wiki and compliance portals; manage Jira boards for tasks and exceptions Mentor junior security engineers and coordinate cross\u2011team compliance reviews Qualifications And Experience
Bachelor\u2019s degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field Minimum 6 years of relevant experience in enterprise security engineering and compliance Certifications such as CISSP, CISM, CISA, CEH, CAP, Security+, or equivalent In\u2011depth understanding of the Continuous Diagnostics and Mitigation program and its phases Proficiency in Zero Trust: micro\u2011segmentation, least\u2011privilege access, continuous verification Expertise in NIST RMF (SP 800-37/800-53) Familiarity with the CASM model; knowledge of FISMA, FedRAMP, and cloud service provider authorization Experience with DISA STIG and SCAP automation for multiple OS platforms Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations Experience scripting in Python, PowerShell, or Bash; automation using Ansible, Terraform, or cloud\u2011native security controls Strong communication, documentation, and stakeholder-management skills Required Tools And Technologies
Cloud & Database Platforms
MS SQL Server (2019/2022) AWS GovCloud Azure compliance baselines AWS RDS Power Platform & M365 Baselines SharePoint 2019 Tomcat 9/10 Identity & Access Management
Okta CyberArk EPM & Privileged Access Management ClearPass Active Directory Endpoint & Network Security
Tanium Zscaler Cisco IOS XE Configuration Management & Compliance Baselines
Belarc DISA STIG Tools SCAP CDM & CSAM tools POA&M tracking systems Secure Configuration dashboards Monitoring & Reporting
Power BI DLP / Information Protection solutions Risk assessment workflows Collaboration & Documentation
Jira Enterprise Wiki / KSN portals Runbook documentation Compensation And Benefits
We offer a competitive benefits package including health, dental, vision, pet, and legal insurance; 401(k) with company match; paid leave and holidays; life and disability insurance; professional development; and education benefits. Veterans First Commitment
As a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and supporting their service. Commitment To Diversity
NDi is an Equal Opportunity Employer. We are committed to a diverse environment and comply with applicable laws in all phases of employment and compliance with federal, state, and local regulations. Apply Now
Take advantage of this unique opportunity to join one of the fastest-growing companies in Federal contracting.
#J-18808-Ljbffr
We\u2019re seeking a senior\u2011level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You\u2019ll drive baseline hardening, risk assessments, and automation across cloud and on\u2011prem systems, ensuring adherence to federal mandates and Zero Trust principles. About NDi
Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi\u2019s core values drive all aspects of the business, and we value collaboration, career growth, and winning ideas. Responsibilities
Lead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platforms Conduct Continuous Diagnostics and Mitigation (CDM) program activities: vulnerability management, configuration management, identity & access controls, and incident response Perform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflows Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environments Design and enforce Zero Trust controls: micro-segmentation, least-privilege access, continuous verification of users, devices, and services Apply NIST RMF (SP 800-37/800-53) controls from system categorization through continuous authorization Facilitate FedRAMP compliance for cloud services; author and maintain SSPs, SARs, and authorization packages Map security controls to CISA CDM dashboard metrics; integrate data into monitoring solutions Collaborate with stakeholders to define baseline exceptions, track remediation progress, and report metrics Maintain documentation in enterprise wiki and compliance portals; manage Jira boards for tasks and exceptions Mentor junior security engineers and coordinate cross\u2011team compliance reviews Qualifications And Experience
Bachelor\u2019s degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field Minimum 6 years of relevant experience in enterprise security engineering and compliance Certifications such as CISSP, CISM, CISA, CEH, CAP, Security+, or equivalent In\u2011depth understanding of the Continuous Diagnostics and Mitigation program and its phases Proficiency in Zero Trust: micro\u2011segmentation, least\u2011privilege access, continuous verification Expertise in NIST RMF (SP 800-37/800-53) Familiarity with the CASM model; knowledge of FISMA, FedRAMP, and cloud service provider authorization Experience with DISA STIG and SCAP automation for multiple OS platforms Ability to map organizational controls to CISA CDM dashboard metrics and drive data integrations Experience scripting in Python, PowerShell, or Bash; automation using Ansible, Terraform, or cloud\u2011native security controls Strong communication, documentation, and stakeholder-management skills Required Tools And Technologies
Cloud & Database Platforms
MS SQL Server (2019/2022) AWS GovCloud Azure compliance baselines AWS RDS Power Platform & M365 Baselines SharePoint 2019 Tomcat 9/10 Identity & Access Management
Okta CyberArk EPM & Privileged Access Management ClearPass Active Directory Endpoint & Network Security
Tanium Zscaler Cisco IOS XE Configuration Management & Compliance Baselines
Belarc DISA STIG Tools SCAP CDM & CSAM tools POA&M tracking systems Secure Configuration dashboards Monitoring & Reporting
Power BI DLP / Information Protection solutions Risk assessment workflows Collaboration & Documentation
Jira Enterprise Wiki / KSN portals Runbook documentation Compensation And Benefits
We offer a competitive benefits package including health, dental, vision, pet, and legal insurance; 401(k) with company match; paid leave and holidays; life and disability insurance; professional development; and education benefits. Veterans First Commitment
As a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and supporting their service. Commitment To Diversity
NDi is an Equal Opportunity Employer. We are committed to a diverse environment and comply with applicable laws in all phases of employment and compliance with federal, state, and local regulations. Apply Now
Take advantage of this unique opportunity to join one of the fastest-growing companies in Federal contracting.
#J-18808-Ljbffr