Cybersecurity Engineer

Who we are!

Platinum Technologies is a Washington DC-based integrated solutions firm that specializes in Cybersecurity, Cloud and Digital Services to the Public Sector. Our team provides high-end, quality resources to help our Mission Partners realize their goals. If you are self-motivated, possess demonstrated learning agility, and are passionate about delivering high-quality work products – we want to hear from you.

You.

Platinum Technologies is seeking a highly skilled Cybersecurity Engineer to join our team, with a primary focus on security assessment and authorization. This role involves security assessment documentation analysis, developing and managing Plans of Action and Milestones (POA&Ms) to remediate system security weaknesses, ensuring compliance with IT security policies, and maintaining the overall security posture of the system. The ideal candidate will have a deep understanding of cybersecurity risk management frameworks, government compliance requirements, and experience with federal cybersecurity tools and practices.

What you get to do.

•Develop POA&Ms in response to identified system security flaws, ensuring inclusion of content such as descriptions of weaknesses, associated NIST 800-53 security controls, remediation milestones, and timelines.

•Record and maintain POA&Ms in mandated POA&M repository to provide the government with visibility into remediation progress.

•Track remediation progress, ensuring timely completion of POA&Ms, and proactively address any barriers to on-time closure.

•Review and validate artifacts for each POA&M milestone, providing assurance to the government that remediation efforts are effective.

•Recommend to the government whether POA&M milestones and overall POA&Ms are ready for closure.

•Develop and update IT security documentation to ensure compliance with IT security policies, procedures, and requirements.

•Update documentation in response to POA&M remediation efforts, system architecture changes, new interconnections, and changes in federal and internal security policies.

•Prepare materials for contingency preparation training and recommend updates to system policies and procedures to align with evolving security requirements.

•Develop briefing materials for system owners and authorizing officials to accurately communicate POA&M remediation progress and the current IT security status of the system.

•Support independent IT security assessments by ensuring all documentation and remediation efforts are up-to-date and meet federal requirements.

•Conduct regular vulnerability scans using government-approved tools (e.g., Tenable Nessus, Qualys, OpenVAS) to identify potential security risks across the network and systems.

•Analyze scan results to prioritize vulnerabilities based on severity, potential impact, and exploitability, ensuring critical issues are addressed promptly.

•Generate detailed vulnerability reports for stakeholders, including summaries of findings, risk assessments, and recommended remediation actions to mitigate identified threats.

•Collaborate with system administrators and IT teams to develop and implement remediation plans, tracking progress and validating the effectiveness of fixes through follow-up scans.

Required Skills:

•Bachelor’s degree in Cybersecurity, Information Technology, or related field; advanced degree preferred.

•Minimum of five (5) + years of experience in cybersecurity, with at least 3 years in a senior engineering role.

•Ability to obtain and maintain a Public Trust 

•Extensive experience with NIST 800-53 controls and the development and management of POA&Ms within a federal environment.

•Proficiency with common cybersecurity tools, such as Tenable Nessus, Splunk, and McAfee ePO.

•In-depth understanding of federal cybersecurity compliance frameworks, including FISMA, FedRAMP, and RMF.

•Strong analytical skills with the ability to assess security risks and develop effective mitigation strategies.

•Excellent communication skills, with the ability to present complex information to both technical and non-technical stakeholders.

•Working experience with Governance risk and compliance tools, such as eMASS and Xacta.

Preferred Qualifications:

•Certifications such as CISSP, CISM, or CISA.

•Experience working within federal agencies.

Platinum Technologies is an Equal Opportunity/Affirmative Action employer. All qualified candidates will receive consideration for employment without regard to disability, protected veteran status, race, color, religious creed, national origin, citizenship, marital status, sex, sexual orientation/gender identity, age, or genetic information.