Mid-Level Continuous Diagnostics and Mitigation (CDM) Engineer

K2Share LLC

MD(remote)

JOB DETAILS
SALARY
$80,000–$105,000 Per Year
SKILLS
Amazon Web Services (AWS), Analysis Skills, Asset Management, Background Investigation, CISA - Certified Information Systems Auditor, CISSP - Certified Information Systems Security Professional, Cloud Computing, Communication Skills, CompTIA Security+, Computer Science, Computer Security, Configuration Management, Consumer Branding, Continuous Improvement, Customer Relations, Customer Support/Service, Data Analysis, Documentation, Enterprise Protection, Establish Priorities, FIPS (Federal Information Processing Standards) 199, FISMA - Federal Information Security Management Act, Federal Government, Fitness, GCIA - GIAC Certified Intrusion Analyst, GCIH - GIAC Certified Incident Handler, GIAC - Global Information Assurance Certification, Homeland Security, Hybrid Cloud, Incident Response, Information Technology & Information Systems, Internet Security, Maintain Compliance, Microsoft Windows Azure, Nessus, On Site Support, Onboarding, Online Courses, Online Training, Operational Communications, Operational Improvement, Operational Strategy, Organizational Development/Management, Python Programming/Scripting Language, Reimbursement, Reporting Dashboards, Risk, Risk Management, Risk Management Framework (RMF), Scripting (Scripting Languages), Security Information and Event Management (SIEM), Security Monitoring, Small Business, Systems Administration/Management, Team Player, Technical Support, Time Management, U.S. National Institute of Standards and Technology (NIST), Vulnerability Scanners, Windows PowerShell
LOCATION
MD
POSTED
3 days ago

Apply

Job Type

Contract

Description

K2United is an organization that houses two distinct, national, customer-facing brands tied together by a shared purpose: setting the standard for an extraordinary workplace. Through our brands, K2Share and CareerSafe, we provide advisory services in cyber risk management and online education for workforce readiness.

Our four core values define how we show up every day:

  • Respect Others - We lead with respect, building trust and connection.
  • Internally Driven - We are relentlessly compelled to accomplish our objectives.
  • Collaborative Innovation - We create by listening, sharing, and working together.
  • Client Success - We hold our clients' mission as our own.

We believe in people who are accountable, curious, and motivated to make an impact that matters.

Our programs make a meaningful difference. CareerSafe supports more than two million users each year, while K2Share delivers cybersecurity and IT solutions that strengthen federal agencies. As part of our team, you'll help solve complex challenges in a mission-driven, small-business environment that values professional growth, collaboration, and work-life balance.

K2Share is seeking a CDM Engineer to support a federal health-sector client. In this role, you will implement, operate, and enhance the Continuous Diagnostics and Mitigation (CDM) program across a complex hybrid environment spanning on-premises, cloud, and third-party systems. Your work will improve enterprise visibility, strengthen cybersecurity posture, and help reduce operational risk by driving effective asset, configuration, and vulnerability management.

You'll support a large, hybrid enterprise environment of FIPS 199 Low and Moderate systems spanning on-premises, cloud, and third-party hosted services.

This position is remote first, with periodic on-site support in the Washington, DC metropolitan area as directed, and is contingent upon contract award.

About You

You are a cybersecurity professional who thrives on building and improving enterprise security operations. You understand that effective vulnerability management is more than running scans. It requires collaboration, analysis, prioritization, and continuous improvement to help organizations make informed risk decisions.

You are comfortable working across hybrid environments, partnering with technical teams, system owners, and security stakeholders to improve visibility and reduce cyber risk. You enjoy solving complex operational challenges, communicating technical findings clearly, and helping organizations mature their continuous monitoring capabilities in alignment with federal cybersecurity standards.

Whether responding to emerging vulnerabilities, improving scanning infrastructure, or supporting ongoing authorization efforts, you bring a proactive mindset, technical expertise, and a commitment to protecting mission-critical systems.

Your Impact

As the CDM Engineer, you will play a key role in operating and advancing the client's Continuous Diagnostics and Mitigation program. You'll ensure security teams and system owners have the visibility and actionable intelligence needed to identify, prioritize, and remediate vulnerabilities across the enterprise.

In this role, you will:

  • Implement, operate, and maintain Continuous Diagnostics and Mitigation (CDM) capabilities that strengthen enterprise cybersecurity posture.
  • Maintain the CDM scanning infrastructure supporting client systems across on-premises, cloud, and hybrid environments.
  • Partner with technical stakeholders to expand and mature CDM capabilities as the environment evolves through modernization and cloud adoption.
  • Support the transition to Ongoing Authorization by providing continuous monitoring and security visibility.
  • Deliver continuous asset visibility and improve detection of vulnerabilities, configuration issues, unmanaged assets, and unauthorized software or hardware.
  • Manage enterprise vulnerability scanning infrastructure, including credentialed scanning across systems, devices, and applications.
  • Analyze vulnerability scan results, prioritize risk, and provide actionable remediation recommendations.
  • Monitor the CISA Known Exploited Vulnerabilities (KEV) Catalog and other authoritative guidance to support timely remediation and compliance with applicable Binding Operational Directives.
  • Support enterprise asset inventory, configuration monitoring, and compliance reporting activities.
  • Collaborate with the client and department stakeholders, system owners, administrators, and technical teams to improve security operations, optimize tools, and support incident response activities.
  • Contribute data and analysis supporting executive cybersecurity reporting, including weekly CIO dashboards and ad hoc vulnerability reports.
  • Produce and maintain required CDM deliverables, including CDM Scan Results on the DHS-defined periodicity of no less than every three days, CDM Mitigation Procedures documenting mitigation steps and end-user mitigation activities when requested, and compliance reporting.

Requirements

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field, or equivalent professional experience.
  • Five or more years of experience supporting enterprise vulnerability management, Continuous Diagnostics and Mitigation (CDM), or security operations.
  • Experience administering enterprise vulnerability scanning platforms and supporting credentialed scanning across large hybrid environments.
  • Working knowledge of the DHS Continuous Diagnostics and Mitigation (CDM) program, including asset management, configuration monitoring, reporting, and CDM dashboard concepts.
  • Familiarity with FISMA, FIPS 199, NIST SP 800-53 Rev. 5, Risk Management Framework (RMF), and continuous monitoring supporting Ongoing Authorization.
  • Experience managing vulnerabilities in accordance with the CISA Known Exploited Vulnerabilities (KEV) Catalog and applicable CISA Binding Operational Directives.
  • Strong analytical, communication, and collaboration skills with the ability to work effectively across technical and customer organizations.
  • Ability to satisfy federal background investigation requirements and complete required onboarding before receiving system access.
  • U.S. work authorization.

Preferred Qualifications

  • Professional cybersecurity certification such as CISSP, CompTIA Security+, CySA+, or GIAC certifications (GCIH, GCIA, GMON).
  • Tenable platform certification (Tenable Certified Security Center Specialist or Nessus equivalent)
  • Experience with enterprise vulnerability management tools such as Tenable.sc, Nessus, and related asset discovery, SIEM, EDR, or configuration management platforms.
  • Experience securing AWS and/or Azure cloud environments, including cloud vulnerability and posture management.
  • Experience supporting federal civilian agency continuous diagnostic and mitigation programs.
  • Experience with scripting or automation using Python, PowerShell, or similar technologies to improve reporting and operational efficiency.

Benefits

We're invested in the people who make our success possible. As a K2United employee, you'll enjoy a comprehensive benefits package designed to support your professional and personal well-being, including:

  • 401(k) with employer matching
  • Low-cost medical coverage for employees and their families
  • Paid time off
  • Paid leave for jury duty, military service, voting, and other qualifying events
  • Wellness stipend, including fitness reimbursement
  • Tuition assistance
  • Casual work environment
  • Technical training and certification support
  • Complimentary access to CareerSafe online training courses for employees and their immediate family

Equal Opportunity Employer

K2United is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or any other characteristic protected by applicable law.

Salary Description

$80,000 - $105,000

About the Company

K

K2Share LLC