ZERO TRUST (ZT) ENDPOINT & CONNECTED SYSTEMS SME

About The Position

Requirements

• A minimum of 10 years of experience in endpoint security, device management, or systems engineering with demonstrated Zero Trust scope.
• Hands-on experience implementing ZT-aligned device posture management using MDM/UEM platforms including Microsoft Intune or Jamf; must extend beyond administration to include ZT compliance policy design.
• Expert knowledge of CDM program components, particularly device telemetry data flows and integration with ZT access enforcement.
• Demonstrated familiarity with NIST SP 800-161, NIST SP 800-207, CISA ZTMM v2.0 Devices pillar criteria, OMB M-22-01, and NIST SP 800-53 Rev. 5 control families.
• Knowledge of EDR platforms, patch management, and device health attestation in federal environments.
• Demonstrated experience developing and implementing Zero Trust device posture solutions operationally, not limited to policy review or framework mapping.
• Experience integrating CDM HWAM data or equivalent device inventory signals into ZT access enforcement decisions.
• Experience supporting ZT-related IG FISMA metrics reporting pertaining to device management and CDM.
• Strong written and oral communication skills; ability to translate complex technical findings into CISO-ready recommendations.
• Demonstrated familiarity with AI-assisted analysis tools or prompt engineering; ability to apply AI capabilities ethically to accelerate advisory work and surface higher-value technical insights.
• Hands-on experience with supply chain device security and IoT/OT device management in a federal environment.
• Five years of IT cybersecurity experience, including direct support to the U.S. Government. This experience can be concurrent with the minimum 10 years of device security experience.
• A minimum of a Bachelor of Science (or higher) in Information Technology, Computer Science, Systems Engineering, Cybersecurity, or a related field.
• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), or equivalent certification.

Nice To Haves

• Prior direct involvement in a ZT Devices pillar implementation or enterprise ZT deployment in a technical design or advisory capacity.
• Microsoft Certified: Endpoint Administrator (MD-102) or equivalent MDM/UEM vendor certification.
• Experience with CDM HWAM data pipeline integration and CDM agency dashboard configuration.
• Microsoft Certified: Endpoint Administrator (MD-102) or equivalent MDM/UEM vendor certification.
• CompTIA Security+ (acceptable as primary only for candidates with 10+ years demonstrated technical depth and active CISSP/CISM pursuit).

Responsibilities

• Serve as the primary technical advisor for the CISA ZTMM v2.0 Devices pillar across endpoint security, device posture management, and Continuous Diagnostics and Mitigation integration domains.
• Continuously assess the agency's device inventory and endpoint security posture against CISA ZTMM v2.0 Devices pillar criteria and NIST SP 800-207; proactively identify emerging device risk indicators and deliver real-time advisory recommendations.
• Provide technical advisory guidance on IoT/OT platform strategies (e.g., Microsoft Intune, Jamf), recommending configuration approaches and compliance policy design aligned to ZT principles for agency adoption.
• Evaluate device telemetry integrity and advise on recommended approaches for integrating device posture signals into ZT access enforcement decisions.
• Advise on EDR capabilities, patch compliance strategies, and device health attestation approaches; develop recommended solutions for agency review.
• Provide advisory support for the development and maturation of Devices pillar entries in the Common Control Catalog (CCC), ensuring traceability to NIST SP 800-53 Rev. 5 control families.
• Develop recommended Devices pillar inputs to the ZT Roadmap, IG FISMA maturity reporting, dashboard scoring, and enterprise performance reporting for agency review and approval.
• Collaborate with Identity, Network, Data, and Applications SMEs to ensure device posture approaches integrate coherently into cross-pillar ZT enforcement decisions.
• Review device-related policy documents and technical standards; identify gaps relative to ZT mandates and develop recommended updates for agency concurrence.
• Support all device and endpoint-related ZT data calls, audits, and compliance reporting by providing advisory analysis and recommended responses.
• Prepare and present technical findings, maturity assessments, and advisory recommendations to senior leadership and the CISO.
• Leverage AI-assisted analysis tools, automation platforms, and prompt engineering techniques to enhance advisory productivity, accelerate gap analysis and documentation tasks, and enable focus on higher-value technical advisory work; apply all AI capabilities in accordance with agency acceptable use policies and Zermount's ethical AI use guidelines.