RIVA Solutions, Inc.Remote
Endpoint Security Engineer
United States of America
Full-time
4 weeks ago
$120,000 USD
No H1B
Key skills
Cybersecurity engineeringEndpoint managementVulnerability managementNIST complianceSecurity certificationsSIEM integrationSystem hardeningCVE reportingTechnical writingCommunication skillsCCommunicationZero Trust
About this role
RIVA Solutions, Inc. is seeking a mission-driven Endpoint Security Engineer to support the Department of Health and Human Services (HHS) Office of Inspector General (OIG). This role involves engineering and maintaining secure endpoint systems, delivering vulnerability reports, and ensuring cybersecurity compliance across HHS systems and endpoints.
Responsibilities:
- Hands-on experience with vulnerability assessment, CVE/KEV reporting, and remediation tracking
- Experience preparing and presenting security findings and compliance reports to executive management
- Expertise in endpoint engineering and SIEM integration
- Strong documentation and technical writing skills, including C&A documentation
- Monitor and assess CVE and Known Exploited Vulnerabilities (KEVs) published by CISA
- Report and track vulnerabilities in compliance with CISA Binding Operational Directives (BODs)
- Deliver vulnerability and risk assessments to senior stakeholders
- Support documentation related to SSPs, POA&Ms, and penetration test reports
- Assist with system security documentation, audit responses, and remediation efforts
- Provide log forwarding support to SIEM systems for continuous monitoring
- Safeguard Personally Identifiable Information (PII) following NIST SP 800-122 guidelines
Requirements:
- Bachelor's degree in Information Systems, Computer Science, Engineering, or equivalent experience
- 5–8 years of experience in cybersecurity engineering and endpoint management
- Familiarity with federal cybersecurity standards and compliance documentation, including: NIST SP 800 series (800-53, 800-207, etc.), FISMA, FedRAMP, and FIPS 140-2, CISA Binding Operational Directives
- Hands-on experience with vulnerability management and reporting tools
- Experience with system hardening, patching, and SIEM integrations
- Strong technical writing and communication skills
- Advanced degree in Cybersecurity, Computer Science, or related field
- Security certifications (e.g., Security+, CISSP, CISM, CEH)
- Prior experience supporting HHS, DHS, DoD, or other federal agencies
- Familiarity with Zero Trust Architecture and endpoint detection tools