Emerging Technology / Cybersecurity Engineer
Zermount is seeking a senior Emerging Technology / Cybersecurity Engineer to support a federal client in modernizing cybersecurity authorization, cloud security, architecture review, and emerging technology assessment.
This client-facing role helps accelerate secure adoption of SaaS, AI technologies, cloud services, commercial products, and emerging capabilities. The engineer will support RMF, ATO, continuous monitoring, cloud compliance, control validation, AI security testing, and risk-based authorization decisions.
Responsibilities include architecture reviews; SaaS, cloud, AI, and non-COTS assessments; review of data flows, identity models, access controls, logging, tenant isolation, and network architecture; development of reusable security patterns, test plans, control checklists, and ATO-ready evidence; documentation of risks, POA&Ms, remediation plans, and executive recommendations; vendor coordination; and continuous ATO modernization.
Candidates must have 5+ years of experience in cybersecurity, architecture, cloud security, GRC, RMF, ATO, or federal compliance. Experience with federal programs, NIST RMF/CSF, FISMA, FedRAMP, vulnerability management, cloud compliance, SaaS assessments, control validation, risk reporting, and stakeholder coordination is required.
Preferred experience includes AI/LLM security testing, generative AI risk assessment, continuous ATO, evidence automation, AWS, Azure, GCP, DevSecOps, SIEM/SOAR/GRC tools, Tenable, Splunk, Sentinel, ServiceNow, Prisma Cloud, or similar tools.
Bachelor's degree in Computer Science, IT, Cybersecurity, Engineering, or equivalent experience required. One certification is required, such as Security+, CISSP, CISM, CISA, CCSP, GCIH, AWS Security Specialty, Microsoft Cybersecurity Architect Expert, Azure Security Engineer Associate, or equivalent GIAC.
Public Trust required; Secret preferred. Remote with occasional reporting to Arlington/Alexandria, VA.