×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer Information Security Network Security

Security Engineer - Continuous Diagnostics and Mitigation; CDM

Job in Washington, District of Columbia, 20022, USA
Listing for: Network Designs, Inc.
Contract position
Listed on 2025-12-27
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer, Information Security, Network Security
Job Description & How to Apply Below
Position: Security Engineer - Continuous Diagnostics and Mitigation (CDM)

Security Engineer - Continuous Diagnostics and Mitigation (CDM)

3 days ago Be among the first 25 applicants

About NDi

Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi's firmly defined core values have driven all aspects of the business, which have been paramount to our company's success and the establishment of an enjoyable workplace atmosphere. At NDi, we believe that our people are the cornerstone of our success, and we value collaboration, career growth, and winning ideas.

Military

Veterans Encouraged to Apply

Military veterans are encouraged to apply for this position.

Job Description

The Security Engineer - Continuous Diagnostics and Mitigation (CDM) is responsible for designing, implementing, integrating, and maintaining enterprise CDM capabilities to provide continuous visibility into cybersecurity risk, asset posture, and compliance. This role supports federal cybersecurity objectives by deploying and operating CDM tools and dashboards, integrating security data sources, and enabling real‑time risk awareness across on‑premises and cloud environments. The Security Engineer works closely with cybersecurity operations, system owners, and compliance teams to improve situational awareness, support risk‑based decision‑making, and ensure alignment with federal cybersecurity standards and mandates.

Requirements
  • U.S. Citizenship is required
  • Must be able to obtain a Public Trust
  • This position is primarily remote, but it requires the ability to attend occasional meetings in DC, MD, VA, WV, NJ, and OK as needed
Qualifications And Experience
  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field
  • 6+ years of experience in cybersecurity engineering, security operations, or risk management roles.
  • One or more industry‑recognized certifications required, including:
    • Certified Information Systems Security Professional (CISSP)
    • Certified Information Security Manager (CISM)
    • Certified Information Systems Auditor (CISA)
    • Certified Ethical Hacker (CEH)
    • Certified Authorization Professional (CAP)
    • CompTIA Security+
    • Or other equivalent IT or cybersecurity certifications
  • Demonstrated experience supporting or implementing CDM program capabilities within federal or regulated environments.
CDM Architecture & Tools
  • Experience implementing and operating CDM program tools, including capabilities across:
    • Asset Management (HWAM, SWAM)
    • Identity and Access Management (IdAM)
    • Vulnerability Management
    • Event Management
    • Network and Data Protection
  • Experience integrating CDM components such as:
    • Vulnerability scanners
    • Endpoint security tools
    • IAM solutions
    • Network security tools
  • Experience supporting or integrating with CDM dashboards, data feeds, and agency or federal‑level reporting.
Security Engineering & Operations
  • Configure, manage, and tune security controls including:
    • Firewalls, IDS/IPS, endpoint protection, encryption, and network security controls
  • Perform patch management and vulnerability remediation aligned with CIS Benchmarks, DISA STIGs, and SCAP.
  • Monitor security posture, vulnerabilities, and configuration compliance across enterprise environments.
  • Respond to security incidents, vulnerabilities, and emerging threats; support investigations and impact assessments.
Cloud & Zero Trust Security
  • Experience securing cloud environments (AWS, Azure, GCP) using:
    • Zero Trust Architecture (ZTA) principles
    • Cloud-native security controls, CSPM, CASB, and encryption
  • Support implementation of IAM, PAM, and RBAC controls aligned with Zero Trust objectives.
Governance, Risk & Compliance (GRC)
  • Assess, develop, and implement security policies and procedures aligned with:
    • NIST RMF, FISMA, FedRAMP, ISO 27001, and DoD STIGs
  • Conduct security risk assessments, control effectiveness reviews, and gap analyses.
  • Support preparation and maintenance of:
    • System Security Plans (SSPs)
    • Security Control Assessments (SCAs)
    • Authorization to Operate (ATO) packages
    • Plans of Action & Milestones (POA&Ms), including remediation tracking
  • Ensure compliance with federal…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search