Logo for K2United

Mid-Level Continuous Diagnostics and Mitigation (CDM) Engineer

Role overview

Qualifications

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field
  • Five or more years of experience in enterprise vulnerability management or security operations
  • Experience administering enterprise vulnerability scanning platforms
  • Working knowledge of DHS Continuous Diagnostics and Mitigation program

Responsibilities

  • Implement, operate, and maintain Continuous Diagnostics and Mitigation (CDM) capabilities
  • Partner with technical stakeholders to expand and mature CDM capabilities
  • Deliver continuous asset visibility and improve detection of vulnerabilities
  • Collaborate with stakeholders to improve security operations and support incident response activities

Key facts

Other skills

  • Analytical Skills
  • Verbal Communication Skills
  • Organizational Skills
  • Problem Solving
  • Teamwork

About the company

K2United logo

K2United

IT Services & IT Consulting

Company details

IndustryIT Services & IT Consulting

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Job Type
Contract
Description

  

K2United is an organization that houses two distinct, national, customer-facing brands tied together by a shared purpose: setting the standard for an extraordinary workplace. Through our brands, K2Share and CareerSafe, we provide advisory services in cyber risk management and online education for workforce readiness.

Our four core values define how we show up every day:

  • Respect Others - We lead with respect, building trust and connection.
  • Internally Driven - We are relentlessly compelled to accomplish our objectives.
  • Collaborative Innovation - We create by listening, sharing, and working together.
  • Client Success - We hold our clients' mission as our own.

We believe in people who are accountable, curious, and motivated to make an impact that matters.


Our programs make a meaningful difference. CareerSafe supports more than two million users each year, while K2Share delivers cybersecurity and IT solutions that strengthen federal agencies. As part of our team, you'll help solve complex challenges in a mission-driven, small-business environment that values professional growth, collaboration, and work-life balance.


K2Share is seeking a CDM Engineer to support a federal health-sector client. In this role, you will implement, operate, and enhance the Continuous Diagnostics and Mitigation (CDM) program across a complex hybrid environment spanning on-premises, cloud, and third-party systems. Your work will improve enterprise visibility, strengthen cybersecurity posture, and help reduce operational risk by driving effective asset, configuration, and vulnerability management.


You'll support a large, hybrid enterprise environment of FIPS 199 Low and Moderate systems spanning on-premises, cloud, and third-party hosted services. 


This position is remote first, with periodic on-site support in the Washington, DC metropolitan area as directed, and is contingent upon contract award. 


About You


You are a cybersecurity professional who thrives on building and improving enterprise security operations. You understand that effective vulnerability management is more than running scans. It requires collaboration, analysis, prioritization, and continuous improvement to help organizations make informed risk decisions.


You are comfortable working across hybrid environments, partnering with technical teams, system owners, and security stakeholders to improve visibility and reduce cyber risk. You enjoy solving complex operational challenges, communicating technical findings clearly, and helping organizations mature their continuous monitoring capabilities in alignment with federal cybersecurity standards.


Whether responding to emerging vulnerabilities, improving scanning infrastructure, or supporting ongoing authorization efforts, you bring a proactive mindset, technical expertise, and a commitment to protecting mission-critical systems.


Your Impact


As the CDM Engineer, you will play a key role in operating and advancing the client's Continuous Diagnostics and Mitigation program. You'll ensure security teams and system owners have the visibility and actionable intelligence needed to identify, prioritize, and remediate vulnerabilities across the enterprise.


In this role, you will:

  • Implement, operate, and maintain Continuous Diagnostics and Mitigation (CDM) capabilities that strengthen enterprise cybersecurity posture.
  • Maintain the CDM scanning infrastructure supporting client systems across on-premises, cloud, and hybrid environments.
  • Partner with technical stakeholders to expand and mature CDM capabilities as the environment evolves through modernization and cloud adoption.
  • Support the transition to  Ongoing Authorization by providing continuous monitoring and security visibility.
  • Deliver continuous asset visibility and improve detection of vulnerabilities, configuration issues, unmanaged assets, and unauthorized software or hardware.
  • Manage enterprise vulnerability scanning infrastructure, including credentialed scanning across systems, devices, and applications.
  • Analyze vulnerability scan results, prioritize risk, and provide actionable remediation recommendations.
  • Monitor the CISA Known Exploited Vulnerabilities (KEV) Catalog and other authoritative guidance to support timely remediation and compliance with applicable Binding Operational Directives.
  • Support enterprise asset inventory, configuration monitoring, and compliance reporting activities.
  • Collaborate with the client and department stakeholders, system owners, administrators, and technical teams to improve security operations, optimize tools, and support incident response activities.
  • Contribute data and analysis supporting executive cybersecurity reporting, including weekly CIO dashboards and ad hoc vulnerability reports.
  • Produce and maintain required CDM deliverables, including CDM Scan Results on the DHS-defined periodicity of no less than every three days, CDM Mitigation Procedures documenting mitigation steps and end-user mitigation activities when requested, and compliance reporting. 
Requirements

  

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field, or equivalent professional experience.
  • Five or more years of experience supporting enterprise vulnerability management, Continuous Diagnostics and Mitigation (CDM), or security operations.
  • Experience administering enterprise vulnerability scanning platforms and supporting credentialed  scanning across large hybrid environments.
  • Working knowledge of the DHS Continuous Diagnostics and Mitigation (CDM) program, including asset management, configuration monitoring, reporting, and CDM dashboard concepts.
  • Familiarity with FISMA, FIPS 199, NIST SP 800-53 Rev. 5, Risk Management Framework (RMF), and continuous monitoring supporting Ongoing Authorization.
  • Experience managing vulnerabilities in accordance with the CISA Known Exploited Vulnerabilities (KEV) Catalog and applicable CISA Binding Operational Directives.
  • Strong analytical, communication, and collaboration skills with the ability to work effectively across technical and customer organizations.
  • Ability to satisfy federal background investigation requirements and complete required onboarding before receiving system access.
  • U.S. work authorization.

Preferred Qualifications

  • Professional cybersecurity certification such as CISSP, CompTIA Security+, CySA+, or GIAC certifications (GCIH, GCIA, GMON).
  • Tenable platform certification (Tenable Certified Security Center Specialist or Nessus equivalent)
  • Experience with enterprise vulnerability management tools such as Tenable.sc, Nessus, and related asset discovery, SIEM, EDR, or configuration management platforms.
  • Experience securing AWS and/or Azure cloud environments, including cloud vulnerability and posture management.
  • Experience supporting federal civilian agency continuous diagnostic and mitigation programs.
  • Experience with scripting or automation using Python, PowerShell, or similar technologies to improve reporting and operational efficiency.

Benefits

We're invested in the people who make our success possible. As a K2United employee, you'll enjoy a comprehensive benefits package designed to support your professional and personal well-being, including:

  • 401(k) with employer matching
  • Low-cost medical coverage for employees and their families
  • Paid time off
  • Paid leave for jury duty, military service, voting, and other qualifying events
  • Wellness stipend, including fitness reimbursement
  • Tuition assistance
  • Casual work environment
  • Technical training and certification support
  • Complimentary access to CareerSafe online training courses for employees and their immediate family

Equal Opportunity Employer

K2United is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or any other characteristic protected by applicable law.

Salary Description
$80,000 - $105,000

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Related jobs

Other jobs at K2United

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.