ECS

ECS is seeking an Information Systems Security Engineer (ISSE) to work in our Fairfax, VA office. (Situational telework eligible) Please Note: This position is contingent upon additional funding.

Specific responsibilities include but are not limited to:

• Provide expertise and recommendations in applying security requirements to complex combatant command projects, identifying gaps, and while integrating new technologies.
• Develop secure system architectures and hardening solutions.
• Conduct vulnerability assessments, security testing, and continuous monitoring.
• Implement security controls per RMF and NIST guidelines.
• Support risk assessments and incident response efforts.
• Ensure security policies and best practices are integrated into system design.
• Develop strategies to address potential solutions to complex problems.
• Develop and document requirements from project inception to conclusion.
• Provide strategic advice, technical guidance, and expertise to program and project staff.
• Apply security controls and all technical mechanisms required by DoD RMF/Joint Special Access Program Implementation Guide (JSIG)/and Intelligence Community (IC) Directives and building security assessment procedures and evidence for assessment by Authorizing Officials of body of evidence.
• Engineering, administration, and configuration of Nessus scans and policies, Trellix/McAfee back end and policies, Splunk and Elastic SIEM administration, engineering, and query languages (SPL, SQL, or ES/QL) for analysis.
• Apply STIGs, and various security mechanisms within Windows, Linux, and AWS cloud consoles.
• Identify and analyze information system vulnerabilities and compliance issues.
• Administration of AWS cloud console and cybersecurity mechanisms, and STIG/SCAP compliance checker.
• Execute incident response as necessary
• Provide detailed analysis, evaluation, and recommendations for improvements, optimization, and/or maintenance efforts for specified mission-critical challenges/issues as related to system vulnerabilities and remediation.
• Coordinate cross-functional teams through meetings and progress measuring activities.
• Participate in project performance review meetings and discussions.
• Support a cross-functional teams with cybersecurity support.

Travel: Some local travel may be expected