Maryland Department of Information Technology
Cyber Platforms Engineer
Maryland Department of Information Technology, Crownsville, Maryland, United States, 21032
Maryland Department of Information Technology provided pay range
This range is provided by Maryland Department of Information Technology. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range $104,519.00/yr - $126,308.00/yr
Introduction The Maryland Department of Information Technology (DoIT), through its Office of Security Management (OSM), utilizes a portfolio of advanced cybersecurity platforms to protect State information assets and critical infrastructure. The effective engineering, administration, management, and evolution of these platforms are vital to the State's ongoing security posture and ability to respond to cyber threats.
This is a contractual position, with limited benefits All hires need to be eligible to work in the U.S., either as a U.S. Citizen or those who have a Permanent Resident or green card as the state of Maryland does not have the ability to sponsor employees Applicants are required to submit an up-to-date and accurate resume. Main Purpose The Cyber Platforms Engineer position will serve as a key technical resource responsible for the engineering, implementation, administration, optimization, and lifecycle management of multiple existing and emerging cybersecurity platforms within OSM's portfolio. This role involves strong technical expertise, hands‑on administration, and participation in platform planning.
This position's platform portfolio includes, but is not limited to, critical systems such as:
Security Information and Event Management (SIEM - e.g., Splunk and Microsoft Sentinel)
Log Management/Observability (e.g., Cribl)
Managed Detection and Response (MDR - e.g., CrowdStrike)
Cybersecurity Asset Attack Surface Management (CAASM, e.g., Axonius)
Web Application Firewalls (WAF, e.g., Cloudflare)
Cloud Security, Exposure, and Vulnerability Management (e.g., Wiz, Tenable)
Email Security (e.g., Abnormal.ai)
and other security technologies
The Cyber Platforms Engineer shall act as a Subject Matter Expert (SME) in the architecture, implementation, and administration of multiple enterprise-scale cybersecurity platforms. The Cyber Platforms Engineer shall have excellent communication skills, be organized and detail oriented, able to work independently and with teams, and manage multiple projects simultaneously.
Position Duties
Lead the design, implementation, configuration, administration, integration, and ongoing maintenance of multiple cybersecurity platforms (e.g., SIEM, Log Management/Observability, MDR, CAASM, WAF, SOAR, Vulnerability Management) in coordination with State Cybersecurity Platforms, Architecture, and Engineering guidance.
Perform administration and optimize platform performance, availability, and scalability for systems including Cribl, Sentinel, Cloudflare, Wiz, and future platforms.
This optimization includes capacity planning, performance tuning, patching, and upgrades.
Serve as an escalation point for troubleshooting complex technical issues related to platform functionality, data ingestion pipelines, inter‑system integrations, and agent deployments.
Interface with platform vendors for technical support, and contribute to roadmap discussions and feature requests.
Support Incident Response efforts by ensuring platform stability, providing technical assistance, and facilitating data retrieval or analysis as needed.
Lead collaboration with State agency stakeholders to configure, implement, and maintain assigned DoIT cybersecurity platforms across the State enterprise.
Collaborate closely with security operations analysts, incident responders, threat intelligence analysts, and other stakeholders to ensure platforms effectively support security monitoring, detection, investigation, and response use cases.
Assist in researching, evaluating, piloting, and integrating new and emerging cybersecurity technologies and platforms to enhance the State's security capabilities.
Contribute technical expertise to the development and execution of the Cyber Platform Team's strategic roadmap and technology lifecycle planning.
Assist in developing technical requirements for procurement activities related to platform acquisition, renewal, or expansion.
Utilize and contribute to the development of standard operating procedures (SOPs), technical configuration documents, architectural diagrams, and knowledge base articles for all managed platforms.
Ensure comprehensive documentation is created and maintained for all platform configurations, changes, and operational processes.
Implement, manage, and audit platform‑level security controls, role‑based access control (RBAC), and system logging in accordance with DoIT policies, OSM standards, and cybersecurity best practices.
Ensure platform configurations and operations support compliance requirements (e.g., NIST frameworks, State security policies).
Participate actively in team / agency meetings and collaboration platforms, providing clear updates on assigned tasks, project progress, platform health, and potential risks.
Support and learn from more senior engineers within the Cyber Platform Team.
Engage in continuous learning, training, and professional development to maintain and enhance technical proficiency in cybersecurity and platform engineering.
Stay current with cybersecurity trends, adversary tactics, platform advancements, vendor updates, and industry best practices.
Foster a collaborative and knowledge‑sharing environment within the team and with other technical groups across DoIT.
Minimum Qualifications Education: Bachelor’s degree in information technology, information systems, cybersecurity, computer science, or a related field. Additional experience may substitute for education.
Experience: Two years' experience operating and administering enterprise cyber security platforms.
Preferred Qualifications Preference will be given to applicants who possess the following preferred qualification(s). Include clear and specific information on your application regarding your qualifications.
Advanced platform certifications in areas such as SIEM, Cloud Security, EDR/MDR/XDR, or IAM
Experience with the State’s cyber platforms such as 1Password, Abnormal, Axonius, Burp Suite, Cloudflare, Cribl, Crowdstrike, Microsoft Sentinel, Tenable, Wiz
#J-18808-Ljbffr
Base pay range $104,519.00/yr - $126,308.00/yr
Introduction The Maryland Department of Information Technology (DoIT), through its Office of Security Management (OSM), utilizes a portfolio of advanced cybersecurity platforms to protect State information assets and critical infrastructure. The effective engineering, administration, management, and evolution of these platforms are vital to the State's ongoing security posture and ability to respond to cyber threats.
This is a contractual position, with limited benefits All hires need to be eligible to work in the U.S., either as a U.S. Citizen or those who have a Permanent Resident or green card as the state of Maryland does not have the ability to sponsor employees Applicants are required to submit an up-to-date and accurate resume. Main Purpose The Cyber Platforms Engineer position will serve as a key technical resource responsible for the engineering, implementation, administration, optimization, and lifecycle management of multiple existing and emerging cybersecurity platforms within OSM's portfolio. This role involves strong technical expertise, hands‑on administration, and participation in platform planning.
This position's platform portfolio includes, but is not limited to, critical systems such as:
Security Information and Event Management (SIEM - e.g., Splunk and Microsoft Sentinel)
Log Management/Observability (e.g., Cribl)
Managed Detection and Response (MDR - e.g., CrowdStrike)
Cybersecurity Asset Attack Surface Management (CAASM, e.g., Axonius)
Web Application Firewalls (WAF, e.g., Cloudflare)
Cloud Security, Exposure, and Vulnerability Management (e.g., Wiz, Tenable)
Email Security (e.g., Abnormal.ai)
and other security technologies
The Cyber Platforms Engineer shall act as a Subject Matter Expert (SME) in the architecture, implementation, and administration of multiple enterprise-scale cybersecurity platforms. The Cyber Platforms Engineer shall have excellent communication skills, be organized and detail oriented, able to work independently and with teams, and manage multiple projects simultaneously.
Position Duties
Lead the design, implementation, configuration, administration, integration, and ongoing maintenance of multiple cybersecurity platforms (e.g., SIEM, Log Management/Observability, MDR, CAASM, WAF, SOAR, Vulnerability Management) in coordination with State Cybersecurity Platforms, Architecture, and Engineering guidance.
Perform administration and optimize platform performance, availability, and scalability for systems including Cribl, Sentinel, Cloudflare, Wiz, and future platforms.
This optimization includes capacity planning, performance tuning, patching, and upgrades.
Serve as an escalation point for troubleshooting complex technical issues related to platform functionality, data ingestion pipelines, inter‑system integrations, and agent deployments.
Interface with platform vendors for technical support, and contribute to roadmap discussions and feature requests.
Support Incident Response efforts by ensuring platform stability, providing technical assistance, and facilitating data retrieval or analysis as needed.
Lead collaboration with State agency stakeholders to configure, implement, and maintain assigned DoIT cybersecurity platforms across the State enterprise.
Collaborate closely with security operations analysts, incident responders, threat intelligence analysts, and other stakeholders to ensure platforms effectively support security monitoring, detection, investigation, and response use cases.
Assist in researching, evaluating, piloting, and integrating new and emerging cybersecurity technologies and platforms to enhance the State's security capabilities.
Contribute technical expertise to the development and execution of the Cyber Platform Team's strategic roadmap and technology lifecycle planning.
Assist in developing technical requirements for procurement activities related to platform acquisition, renewal, or expansion.
Utilize and contribute to the development of standard operating procedures (SOPs), technical configuration documents, architectural diagrams, and knowledge base articles for all managed platforms.
Ensure comprehensive documentation is created and maintained for all platform configurations, changes, and operational processes.
Implement, manage, and audit platform‑level security controls, role‑based access control (RBAC), and system logging in accordance with DoIT policies, OSM standards, and cybersecurity best practices.
Ensure platform configurations and operations support compliance requirements (e.g., NIST frameworks, State security policies).
Participate actively in team / agency meetings and collaboration platforms, providing clear updates on assigned tasks, project progress, platform health, and potential risks.
Support and learn from more senior engineers within the Cyber Platform Team.
Engage in continuous learning, training, and professional development to maintain and enhance technical proficiency in cybersecurity and platform engineering.
Stay current with cybersecurity trends, adversary tactics, platform advancements, vendor updates, and industry best practices.
Foster a collaborative and knowledge‑sharing environment within the team and with other technical groups across DoIT.
Minimum Qualifications Education: Bachelor’s degree in information technology, information systems, cybersecurity, computer science, or a related field. Additional experience may substitute for education.
Experience: Two years' experience operating and administering enterprise cyber security platforms.
Preferred Qualifications Preference will be given to applicants who possess the following preferred qualification(s). Include clear and specific information on your application regarding your qualifications.
Advanced platform certifications in areas such as SIEM, Cloud Security, EDR/MDR/XDR, or IAM
Experience with the State’s cyber platforms such as 1Password, Abnormal, Axonius, Burp Suite, Cloudflare, Cribl, Crowdstrike, Microsoft Sentinel, Tenable, Wiz
#J-18808-Ljbffr