Information System Security Officer/Engineer (ISSO/ISSE)

Job Description

ECS is seeking an Information System Security Officer/Engineer (ISSO/ISSE) to join our IL6-P Team based in Fairfax, VA.

ECS is seeking an experienced and highly motivated Information System Security Officer/Engineer (ISSO/ISSE) as part of a team responsible for ensuring cyber security for a IL6-P production network within the DoD community. Occasional travel within the National Capital Region (i.e. Falls Church, VA and Suffolk, VA) required, as needed. This role requires comprehensive cyber security oversight and management. This is a demanding, high-energy position that requires innovative solutions to network, hardware, software and cyber security challenges, and demands excellent customer service and communication skills. The successful candidate can multitask; assume ownership and accountability of risks, issues, and tasks; and successfully manage and resolve those risks, issues, and tasks to completion. The successful candidate is also able to work well in a team-oriented environment; self-manage tasks; and provide hands-on guidance, direction, and mentoring to the technical team. Finally, the successful candidate is extremely well-organized and has a keen eye for detail.

Responsibilities:

• Security Architecture Design: Develop and implement secure information systems architectures, including networks, applications, databases, and cloud environments to protect against cybersecurity threats and risks.
• Risk Assessment and Management: Conduct risk assessments to identify vulnerabilities, assess threats, and develop risk mitigation strategies to minimize security risks and ensure the security posture of information systems.
• Security Tool Implementation and Management: Deploy and manage security tools and technologies, such as firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, SIEM (Security Information and Event Management) systems, and encryption tools to detect and prevent security incidents.
• Security Testing and Evaluation: Perform security testing, including penetration testing, vulnerability assessment, code review, and security audits to identify and remediate security vulnerabilities in information systems.
• Identity and Access Management (IAM): Design and implement IAM solutions, including user authentication, authorization, provisioning, de-provisioning, single sign-on (SSO), and privilege management to ensure appropriate access control and user management.
• Security Compliance and Standards: Ensure organizational compliance with regulatory requirements and industry standards (e.g., GDPR, HIPAA, PCI DSS, ISO 27001) through regular assessments, audits, and adherence to security policies and procedures.
• Secure Configuration Management: Implement and maintain secure configurations for operating systems, applications, network devices, and cloud services to minimize security risks and vulnerabilities.
• Security Awareness and Training: Provide security awareness training to employees to promote a culture of security and compliance and keep stakeholders informed about emerging threats and security best practices.
• Collaboration and Communication: Collaborate with cross-functional teams, including IT, security, compliance, and business units, to address security concerns, communicate security risks, and provide security guidance to stakeholders.
• Participate in Change Control Boards (CCB) to ensure configuration/change management of cyber security-relevant software, hardware, and firmware is maintained and documented.
• Analyze and interpret ACAS (Assured Compliance Assessment Solution) scan results to identify vulnerabilities, assess risk, and drive timely remediation efforts.
• Other duties, as assigned.

Required Skills

• .
• Active DoD Secret security clearance, with the ability to obtain/maintain a DoD Top Secret clearance with SCI Indoctrination (TS/SCI).
• Bachelor's degree in Computer Science; Information Systems Management; or similar Science, Technology, Engineering and Mathematics (STEM) discipline or 4 years of work experience.
• Ability to work up to 2 days/week at ECS corporate offices and/or local customer sites (e.g., Fairfax, VA, Falls Church, VA, and Suffolk, VA) with additional CONUS travel < 10% throughout the lifespan of the Program; infrequent OCONUS travel may occasionally be required.
• Current DoD 8140 compliant, IAT Level II / III certification (e.g., Security+, SSCP, CCNA-Security, or CISSP).
• 4+ years of experience with:
• Providing leadership, guidance, and oversight of Security concepts.
• Performing security risk assessments and security architecture reviews.
• Architecture, software design, networking, virtualization, and cloud-based technologies / infrastructure.
• Demonstrative expert knowledge, understanding, and hands-on experience with:
• DoD Information Technology best practices.
• DoD Cybersecurity best practices.
• DODD 8500.1, DODI 8500.2, and other information assurance (IA) guidance.
• Windows Domain and Linux systems architectures.
• Security / validation testing tools to include vulnerability scanners (Retina, Nessus), DISA STIGs, and DISA checklists.
• Microsoft Office applications, including Excel, SharePoint, Visio, Word, PowerPoint, and Teams.
• Ability and willingness to work as part of a team and independently, with minimal supervision.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Desired Skills

• Preference shown to candidates with:
• Current DOD 8140 IAT Level III certification (CISSP, CASP+, CCNA Security, CISA, etc.).
• Azure Fundamentals (AZ-900) foundational certification.
• Role-based Azure Administrator Associate (AZ-104) certification.
• Hands-on experience with:
• Securing a public cloud environment (Azure preferred).
• Building software utilizing public cloud (Azure preferred).
• Utilizing Agile methodologies.
• Software Security Architecture.
• Threat Modeling.
• Penetration Testing, Certified Ethical Hacking (CEH), or Vulnerability Management.
• McAfee HBSS (ePO, HIPS, Anti-Virus, etc.).
• Continuous monitoring experience.
• Offensive or Defensive Security techniques.
• Artificial intelligence and machine learning systems.

#ECS1

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3500+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.