Endpoint Security Engineer

About this role

Title: Endpoint Security Engineer
Location: Remote
Terms: Full-Time
Clearance: Must be a U.S. Citizen and able to obtain a Public Trust
Travel: None

RESULTS. INNOVATION. VALUES. ACCOUNTABILITY.
That’s RIVA. Our employee-first approach has created a culture that attracts the best and brightest. By investing in people first and providing a flexible work environment, our employees have higher morale, productivity, and retention. At RIVA, people are our #1 priority.

Program Overview

RIVA Solutions is seeking a mission-driven Endpoint Security Engineer to support the Department of Health and Human Services (HHS) Office of Inspector General (OIG). This individual will work in a hybrid capacity based in Washington, DC, and provide technical security engineering, endpoint device protection, and vulnerability reporting services. This position plays a key role in ensuring cybersecurity compliance across HHS systems and endpoints while aligning with federal mandates such as NIST, FISMA, FedRAMP, and CISA directives.

Role Overview

The Endpoint Security Engineer will be responsible for engineering and maintaining secure endpoint systems, delivering vulnerability reports, and supporting Certification & Accreditation (C&A) processes. The role requires experience working in federal environments and familiarity with compliance standards, technical documentation, and presenting remediation strategies to leadership.

Responsibilities

Endpoint Security Engineering

• Hands-on experience with vulnerability assessment, CVE/KEV reporting, and remediation tracking.
• Experience preparing and presenting security findings and compliance reports to executive management.
• Expertise in endpoint engineering and SIEM integration.
• Strong documentation and technical writing skills, including C&A documentation.

Vulnerability Management & Compliance Reporting

• Monitor and assess CVE and Known Exploited Vulnerabilities (KEVs) publis...