Senior Infrastructure & Cybersecurity Engineer

About Us

PMAT is an innovative small business founded with a passion for developing forward-leaning solutions from exceptional people that increase the mission's capability. We focus on designing and building impactful digital solutions that utilize modern cloud, data, and software concepts. Our passion is working on complex and progressive challenges such as edge platform computing, containerizing legacy platforms, distributed data platforms, or heterogeneous data analysis.

We recruit, retain, and foster a team motivated to pursue passions, investigate new ways of doing things, and embody an innovative and entrepreneurial spirit. We believe in being curious about every element of a problem and experiment relentlessly. We foster continuous learning in an environment that encourages positive collaboration and expands our capabilities. We tap into collective intelligence, acknowledging that the most brilliant people may not be in the room.

Above all else, we believe that delivering and demonstrating is more potent than a sheet of paper. We are passionate about mission-centric design and delivering effective capabilities to and for the warfighter.

Whether you’re an experienced engineer or just beginning your career, you’ll work alongside experts who are committed to solving mission-critical problems. If you’re passionate about using your skills to make a real difference, apply today and become part of a team that’s shaping the future of defense technology!

PMAT is seeking a Senior Infrastructure & Cybersecurity Engineer to design, deploy, secure, and sustain Secret and Top Secret mission-critical environments supporting government and intelligence community customers. This role is ideal for a technically hands‑on engineer with deep experience in on‑prem cloud, virtualization, Linux/Windows systems, and compliance‑driven security architectures.

The ideal candidate is comfortable operating in classified environments, has a strong background in NIST 800‑53 and DISA STIG compliance, and can lead complex infrastructure efforts from concept through production.

• Architect, build, and secure Secret and Top Secret infrastructure stacks in on‑prem and private cloud environments
• Design and manage large‑scale VMware ESXi / vSAN virtualization platforms
• Deploy, configure, and maintain RHEL 6/7/8 and Windows Server 2019/2022 systems
• Implement and remediate security controls in accordance with NIST 800‑53 (r4/r5) and DISA STIGs
• Automate system builds, patching, and hardening using Ansible, Jenkins, PDQ, WSUS, and related tools
• Lead vulnerability remediation efforts using ACAS, Nessus, and Splunk, dramatically reducing attack surfaces
• Support enterprise services including Active Directory, databases, Veeam, Horizon, Atlassian Suite, YUM repositories, and monitoring platforms
• Design and maintain LAN/WAN and virtualized network backbones, including troubleshooting Tier‑3 routing issues (OSPF/BGP)
• Lead and mentor technical teams, collaborating across engineering, security, and mission stakeholders
• Support accreditation efforts including ATO packages, compliance documentation, and security audits

• 10+ years of experience in infrastructure engineering, systems administration, or network engineering
• Extensive experience with:
  • VMware ESXi / vSAN
  • RHEL and Windows Server environments
  • Infrastructure automation (Ansible preferred)
  • DISA STIGs and NIST 800‑53 compliance
• Strong understanding of on‑prem cloud architectures, enterprise virtualization, and secure datacenter operations
• Proven ability to manage and remediate large vulnerability backlogs in classified environments
• Experience working in DoW / IC mission systems or similarly regulated environments

• Prior experience supporting the Intelligence Community or National‑level organizations
• Background in network engineering (LAN/WAN, routing, switching)
• Experience with ACAS, Splunk, Nessus, Veeam, Horizon, Dell Wyse
• Leadership experience managing teams or acting as a technical lead
• Familiarity with Dev Sec Ops  workflows in classified environments

• Bachelors or Masters - STEM
• CompTIA Security+
• CompTIA Network+
• ITIL Foundations
• Additional DoD 8570/8140 certifications a plus

• US Citizenship and an active TS/SCI clearance with CI Poly

• Centennial, CO (Onsite, with occasional hybrid work opportunities)

PMAT offices as needed. In some cases, work in a government facility may be required. Travel may be required for customer engagement, team coordination, and potentially for business development.

PMAT is an equal‑opportunity employer. We believe in hiring a diverse workforce and sustaining an inclusive, people‑first culture. We are committed to non‑discrimination on any protected basis, such as disability and veteran status, or any other basis covered under applicable law.