i4DM Logo

i4DM

Senior RMF & ATO Engineer

Posted 4 Days Ago
Be an Early Applicant
Remote
Hiring Remotely in USA
Senior level
Remote
Hiring Remotely in USA
Senior level
Lead implementation and maintenance of NIST RMF and ATO processes for a VA cloud-native platform. Engineer security controls, automate compliance validation in CI/CD, support secure cloud deployments, manage continuous monitoring and vulnerability remediation, produce authorization artifacts, assist incident response, and mentor junior engineers.
The summary above was generated by AI
Description

About Our Team 

Our employees thrive in a culture that's fast-paced and ego-free, where innovation and collaboration are encouraged at every turn. We are an organization that provides federal agencies instant access to experienced and talented professionals who understand their unique challenges and know the most efficient ways to address them. We are continually investing in resources and talent, so we stay prepared with specialized teams in place who are experts in creating tailored technologies. Our solutions empower Federal organizations to grow, modernize, and succeed in a rapidly evolving landscape.  

We value all voices and want to attract talent from all backgrounds. We're on the lookout for individuals who are passionate about technology and thrive in environments where problem-solving is approached with creativity and enthusiasm. If you're someone who enjoys continuously expanding your skill set while tackling real-world business problems, you'll feel right at home with us. Veterans and military spouses are especially encouraged to bring your unique and valuable experience to our team. 


About the Role 

We are seeking an experienced Senior RMF & ATO Security Engineer to serve as the technical cybersecurity lead responsible for implementing and maintaining Risk Management Framework (RMF), Authorization to Operate (ATO), and continuous monitoring activities supporting a mission-critical cloud-native platform within the Department of Veterans Affairs (VA). 

This is a hands-on engineering role that partners closely with Cloud Engineers, DevSecOps Engineers, Site Reliability Engineers, Solution Architects, and Government cybersecurity stakeholders to integrate security throughout the system lifecycle. The Senior RMF & ATO Security Engineer will engineer security controls, automate compliance validation, support secure cloud deployments, and ensure continuous authorization through effective implementation of Federal cybersecurity requirements. 


RESPONSIBILITIES 

  • Implement security controls required throughout the NIST RMF lifecycle. 
  • Engineer technical solutions supporting Categorize, Select, Implement, Assess, Authorize, and Monitor activities. 
  • Develop and maintain SSPs, POA&Ms, Security Assessment Reports, contingency plans, and authorization artifacts. 
  • Implement continuous monitoring processes, vulnerability management, and compliance reporting. 
  • Integrate SAST, DAST, container scanning, IaC validation, and other security automation into CI/CD pipelines. 
  • Collaborate with Cloud, DevSecOps, SRE, and software engineering teams to implement secure cloud-native architectures. 
  • Review AWS and Kubernetes environments for compliance with NIST SP 800-53 and VA security requirements. 
  • Participate in incident response, root cause analysis, and corrective action implementation. 
  • Support security audits, assessments, and ATO renewals by producing technical evidence and documentation. 
  • Mentor junior engineers on RMF implementation and cloud security best practices. 

TAG: #LI-I4DM

TAG: INDMJC

Requirements

QUALIFICATIONS 

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field. 
  • 7+ years supporting RMF, ATO, cybersecurity engineering, or cloud security in Federal environments. 
  • Strong knowledge of NIST SP 800-53, RMF, FISMA, HIPAA, and VA cybersecurity requirements. 
  • Experience with AWS, Kubernetes, Docker, Terraform, and CI/CD security integration. 
  • Experience with vulnerability management, POA&M tracking, and continuous monitoring. 
  • CISSP, CISM, or equivalent certification. 
  • Eligible to obtain and maintain a Public Trust clearance. 

PREFERRED QUALIFICATIONS 

  • AWS GovCloud experience. 
  • Experience with eMASS, SNOWCAM, Nessus, Security Hub, GuardDuty, Vault, Prometheus, Grafana, ELK, or Splunk. 
  • Experience securing healthcare platforms handling PHI. 
  • Experience supporting Kafka/MSK and event-driven architectures. 
  • teams. 
  • Identify and mitigate risks related to deployment, security, and system availability. 

Similar Jobs

3 Minutes Ago
Easy Apply
In-Office or Remote
Easy Apply
148K-168K Annually
Expert/Leader
148K-168K Annually
Expert/Leader
Machine Learning • Security • Software • Analytics • Defense
Lead and develop a recruiting team to hire cleared and uncleared technical and non-technical talent for defense and national security programs. Partner with hiring managers, oversee full-cycle recruiting for hard-to-fill roles, guide employer branding, use data to drive hiring metrics, support offer strategy and compliance, and scale recruiting processes in a regulated environment.
Top Skills: GreenhouseExcelMicrosoft OutlookMicrosoft PowerpointMicrosoft Word
4 Minutes Ago
Easy Apply
In-Office or Remote
Easy Apply
180K-220K Annually
Expert/Leader
180K-220K Annually
Expert/Leader
Machine Learning • Security • Software • Analytics • Defense
Lead enterprise recruiting strategy and operations for defense and national security programs. Build and scale a high-performing TA team, drive technical and cleared talent sourcing (cyber, RF, radar, software, systems, AI/ML), advise executives on workforce planning, implement AI-enabled recruiting tools and ATS improvements, ensure OFCCP and federal contractor compliance, and serve as player/coach on critical hires.
Top Skills: Ai-Enabled Recruiting ToolsAi/MlApplicant Tracking System (Ats)AutomationCyberRadarRfSensorsSystems EngineeringTalent Analytics
2 Hours Ago
Remote
USA
100K-130K Annually
Senior level
100K-130K Annually
Senior level
Artificial Intelligence • Information Technology • Marketing Tech • Software • SEO
Own full sales cycle selling Scrunch to digital, SEO, content, and performance marketing agencies. Prospect and close agency leaders, run consultative multi-stakeholder processes, drive pipeline via inbound and targeted outbound, and partner with Customer Success, Marketing, and Product to ensure adoption and expansion.
Top Skills: Ai PlatformsChatgptClaudeGeminiLlmsScrunch

What you need to know about the Colorado Tech Scene

With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.

Key Facts About Colorado Tech

  • Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
  • Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
  • Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
  • Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
  • Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account