Sr. Security Engineer

OverviewWe/u2019re seeking a senior/u2011level Security Engineer to lead secure configuration, continuous monitoring, and compliance engineering efforts. You/u2019ll drive baseline hardening, risk assessments, and automation across cloud and on/u2011prem systems, ensuring adherence to federal mandates and Zero Trust principles.About NDiNetwork Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi/u2019s core values drive all aspects of the business, and we value collaboration, career growth, and winning ideas.ResponsibilitiesLead Secure Configuration Management baselines for applications, operating systems, databases, network devices, and platformsConduct Continuous Diagnostics and Mitigation (CDM) program activities: vulnerability management, configuration management, identity & access controls, and incident responsePerform risk assessments and manage POA&Ms; oversee Cybersecurity Assessment and Secure Mission (CASM) workflowsImplement and automate DISA STIG and SCAP standards across Windows, Red Hat, iOS/iPadOS, macOS, and Chrome environmentsDesign and enforce Zero Trust controls: micro-segmentation, least-privilege access, continuous verification of users, devices, and servicesApply NIST RMF (SP 800-37/800-53) controls from system categorization through continuous authorizationFacilitate FedRAMP compliance for cloud services; author and maintain SSPs, SARs, and authorization packagesMap security controls to CISA CDM dashboard metrics; integrate data into monitoring solutionsCollaborate with stakeholders to define baseline exceptions, track remediation progress, and report metricsMaintain documentation in enterprise wiki and compliance portals; manage Jira boards for tasks and exceptionsMentor junior security engineers and coordinate cross/u2011team compliance reviewsQualifications And ExperienceBachelor/u2019s degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT fieldMinimum 6 years of relevant experience in enterprise security engineering and complianceCertifications such as CISSP, CISM, CISA, CEH, CAP, Security+, or equivalentIn/u2011depth understanding of the Continuous Diagnostics and Mitigation program and its phasesProficiency in Zero Trust: micro/u2011segmentation, least/u2011privilege access, continuous verificationExpertise in NIST RMF (SP 800-37/800-53)Familiarity with the CASM model; knowledge of FISMA, FedRAMP, and cloud service provider authorizationExperience with DISA STIG and SCAP automation for multiple OS platformsAbility to map organizational controls to CISA CDM dashboard metrics and drive data integrationsExperience scripting in Python, PowerShell, or Bash; automation using Ansible, Terraform, or cloud/u2011native security controlsStrong communication, documentation, and stakeholder-management skillsRequired Tools And TechnologiesCloud & Database PlatformsMS SQL Server (2019/2022)AWS GovCloudAzure compliance baselinesAWS RDSPower Platform & M365 BaselinesSharePoint 2019Tomcat 9/10Identity & Access ManagementOktaCyberArk EPM & Privileged Access ManagementClearPassActive DirectoryEndpoint & Network SecurityTaniumZscalerCisco IOS XEConfiguration Management & Compliance BaselinesBelarcDISA STIG ToolsSCAPCDM & CSAM toolsPOA&M tracking systemsSecure Configuration dashboardsMonitoring & ReportingPower BIDLP / Information Protection solutionsRisk assessment workflowsCollaboration & DocumentationJiraEnterprise Wiki / KSN portalsRunbook documentationCompensation And BenefitsWe offer a competitive benefits package including health, dental, vision, pet, and legal insurance; 401(k) with company match; paid leave and holidays; life and disability insurance; professional development; and education benefits.Veterans First CommitmentAs a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and supporting their mitment To DiversityNDi is an Equal Opportunity Employer. We are committed to a diverse environment and comply with applicable laws in all phases of employment and compliance with federal, state, and local regulations.Apply NowTake advantage of this unique opportunity to join one of the fastest-growing companies in Federal contracting. #J-18808-Ljbffr

Created: 2025-10-06