Access Authorization, Amazon Web Services (AWS), Analysis Skills, Architectural Analysis, Automation, Best Practices, Cloud Architecture, Cloud Computing, Communication Skills, Computer Science, Computer Security, Continuous Deployment/Delivery, Continuous Improvement, Continuous Integration, Disability Accommodations, Documentation, Emerging Technology, Employee Orientation, Endpoint Security, Enterprise Protection, FISMA - Federal Information Security Management Act, Federal Contracts, Government, Hybrid Cloud, Identify Issues, Identity Data Management, Information Systems Security Engineering (ISSE), Information Technology & Information Systems, Information/Data Security (InfoSec), Internet Security, Leadership, Machine Tool, Mentoring, Microsoft Windows Azure, Network Design, Network Security, On Site Support, Operational Support, People Management, Presentation/Verbal Skills, Problem Solving Skills, Regulatory Compliance, Risk, Risk Analysis, Risk Management, Risk Management Framework (RMF), Security Analysis, Security Architecture, Security Compliance, Security Information and Event Management (SIEM), Small Business, Software Engineering, Strategic Planning, Technical Delivery, Technical Leadership, Technical Presentation, Technical Strategy, Technical Support, Testing, U.S. National Institute of Standards and Technology (NIST), United States Citizen, Writing Skills
About NDi:
Network Designs, Inc. (NDi) is a leading Federal contractor that specializes in designing, developing, and delivering information technology and network solutions for government customers. Founded in 1985, NDi's firmly defined core values have driven all aspects of the business, which have been paramount to our company's success and the establishment of an enjoyable workplace atmosphere. At NDi, we believe that our people are the cornerstone of our success, and we value collaboration, career growth, and winning ideas. Military Veterans Encouraged to Apply.
Job Description:
NDi is seeking a highly experienced Information Systems Security Engineer (ISSE) - Subject Matter Expert (SME) to support enterprise cloud security engineering, authorization, compliance, and modernization initiatives within a complex federal cybersecurity environment.
This position serves as a senior technical authority supporting the secure design, implementation, assessment, and continuous monitoring of cloud-based and hybrid information systems. The selected candidate will provide expert-level cybersecurity engineering guidance supporting cloud adoption, security architecture, RMF implementation, vulnerability management, and enterprise modernization efforts across mission-critical systems and environments.
The ideal candidate possesses deep expertise in cloud security engineering, federal cybersecurity compliance, modern cloud architectures, and secure enterprise technology integration within highly regulated environments.
Requirements:
- U.S. Citizenship is required
- Must possess an active Top Secret (TS) clearance at the time of application
- Must have the ability to obtain and maintain a Counterintelligence (CI) Polygraph
- Ability to obtain and maintainadditional agency access as required
- This position requires onsite support in Washington, DC 5/days a week
Qualifications and Experience:
- Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Engineering, or related technical discipline; or equivalent combination of education, training, and experience
- Master's degree preferred
- Ten (10) or more years of experience: supporting cybersecurity engineering, information assurance, or enterprise security operations, in secure design, analysis, and testing of information security systems and products, applying methods, standards, and approaches ensuring baseline security safeguards are properly implemented and documented, creating and updating security test plans for detecting and mitigating risks to information systems. Certifications, prior experience, and demonstrated expertise may be considered in lieu of traditional years of experience requirements where applicable.
- Demonstrated experience supporting cloud security engineering within federal or highly regulated environments
- Experience designing and implementing secure cloud and hybrid architectures
- Experience supporting NIST RMF authorization and accreditation activities for cloud-based systems
- Experience supporting enterprise modernization, cloud migration, and Zero Trust initiatives
- Experience performing security architecture analysis, vulnerability remediation, and risk management activities
- Experience supporting large-scale AWS, Azure, or hybrid cloud environments
- Experience advising senior technical and executive stakeholders on cybersecurity strategy and risk
Certifications:
- Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) required
Preferred Qualifications:
- Experience supporting enterprise federal cloud modernization programs
- Experience supporting classified or highly regulated environments
- Experience implementing Zero Trust security architectures
- Familiarity with Kubernetes, container security, and serverless technologies
- Experience supporting DevSecOps and automation initiatives
- Experience supporting enterprise cloud governance and security compliance programs
Domain Expertise:
- Expert understanding of:
- Cloud security architecture and engineering
- NIST Risk Management Framework (RMF)
- FedRAMP
- FISMA compliance requirements
- Security authorization / ATO processes
- Continuous monitoring
- Zero Trust architecture
- Identity and access management (IAM)
- Container and Kubernetes security
- DevSecOps and Infrastructure-as-Code (IaC)
- Experience supporting:
- Cloud security assessments
- Security architecture reviews
- Security control implementation and validation
- Risk assessments and mitigation planning
- POA&M management
- Enterprise vulnerability management
- Security automation and orchestration
- Familiarity with:
- AWS GovCloud
- Azure Government
- Cloud-native security tooling
- SIEM and monitoring platforms
- Endpoint and network security technologies
- CI/CD pipeline security
Skills & Competencies:
- Expert-level cloud security engineering and cybersecurity expertise
- Strong strategic thinking and technical leadership capability
- Ability to evaluate emerging technologies and associated cybersecurity risks
- Excellent written and verbal communication skills
- Ability to brief senior leadership and executive stakeholders
- Strong analytical, troubleshooting, and problem-solving capabilities
- Ability to lead technical discussions, architecture reviews, and modernization efforts
- Experience mentoring junior engineers and cybersecurity personnel
- High degree of professionalism, accountability, and judgment in sensitive environments
Responsibilities:
Cloud Security Engineering & Architecture:
- Lead security engineering efforts supporting cloud-based and hybrid enterprise environments
- Design and evaluate secure cloud architectures and modernization strategies
- Support implementation of cloud-native security controls and enterprise security baselines
- Provide cybersecurity engineering guidance for cloud adoption, migration, and modernization initiatives
- Evaluate emerging cloud technologies and recommend secure implementation approaches
RMF & Authorization Support:
- Lead RMF authorization and accreditation activities for cloud-based systems
- Develop, review, and maintain cybersecurity documentation including:
- System Security Plans (SSPs)
- Security assessment documentation
- POA&Ms
- Risk assessments
- Security architecture documentation
- Mitigation strategies
- Support continuous monitoring and audit readiness activities
Vulnerability & Risk Management:
- Identify, assess, and mitigate cybersecurity risks across cloud and hybrid environments
- Support enterprise vulnerability management and remediation activities
- Evaluate security impacts associated with new technologies, cloud services, and architectural changes
- Coordinate with technical teams to resolve cybersecurity findings and compliance deficiencies
Technical Leadership & Stakeholder Engagement:
- Serve as a senior cybersecurity advisor supporting technical and operational stakeholders
- Participate in architecture reviews, technical working groups, and modernization initiatives
- Provide executive-level briefings, technical recommendations, and risk analysis
- Mentor cybersecurity personnel and provide guidance on security engineering best practices
- Support continuous improvement and enterprise cybersecurity strategy initiatives
Compensation and Benefits:
At NDi, we value our team and are committed to retaining top talent by offering competitive benefits and compensation packages. Our employee benefits package includes comprehensive health, dental, vision, pet, and legal insurance. Our corporate benefits include 401(k) retirement matching, paid leave, paid holidays, and health and wellness programs. In addition, we provide employer-paid life and disability insurance, professional development, education benefits, and much more to ensure our team has the resources they need to thrive on and off the job.
Veterans First** Commitment:**
As a Service-Disabled Veteran-Owned Small Business (SDVOSB), NDi is dedicated to hiring veterans and providing a supportive work environment that honors their service while recognizing the unique skills and experiences they bring to our organization.
Our Commitment:
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or other characteristics protected by law.
Apply Now: Take advantage of this unique opportunity to join one of the fastest-growing companies in Federal contracting!