Security Engineer

Job Description

ECS is seeking a Security Engineer to work in our Fairfax, VA office. Please Note: This position is contingent upon contract award.

Program Description

ECS is seeking talented professionals to join our successful and growing team in building the next-generation Threat Intelligence Enterprise Service (TIES) solution. The TIES Program is the Cybersecurity and Infrastructure Security Agency's (CISA) dynamic approach to fulfilling its federally mandated cyber information sharing responsibilities and ensuring real-time automated threat intelligence reaches key security partners. The TIES product is an integrated suite of multiple Commercial Off the Shelf (COTS) products, software configuration packages, and custom code which work together to operate as an integrated solution tailored to meet CISA requirements.

We seek driven professionals who excel in a dynamic, fast-paced, and highly collaborative environment, where critical thinking, problem-solving, and a mission -focused approach are essential. A passion for continuous learning, improvement, and cybersecurity is vital.

As a small team committed to radically improving government, every member directly shapes ECS's direction and success. We take pride in our stewardship, holding deep responsibility for the solutions we develop. Collaboration is at the heart of our work-both within our team and alongside our federal partners.

This position is contingent based upon contract award.

Role & Responsibilities:

ECS is seeking a Security Engineer to work alongside our deployment and security team, to support the implementation, configuration, and maintenance of security engineering and security controls within the TIES environment in order to maintain the highest level of security for the environment, as well as ensure engineering to obtain a successful Authorization to Operate (ATO) . The successful candidate will work closely with security policy and ATO leads to support the following :

• Implement engineering related to ATO security controls across the environment (within AWS and on COTS tools) for partially implemented or not implemented controls

• Support attestation , evidence collection, and documentation of completed controls during accreditation testing or Security Assessment and Authorization (SA&A) activities

• Work alongside security and engineering teams to ensure security configuration does not have impact the solution

• Responsible for continual security engineering requirements such as Vulnerability Management, Patch Management, KEV/BOD respons es.
• Ensure integration with agency logging and SOC services for meeting logging and monitoring requirements

Required Skills

R equired Skills:

• ship with ability to obtain and maintain a Public Trust Suitability up to Top Secret/SCI

• Bachelor's degree or equivalent experience

• 5+ years incorporating security best practices for system integration / design and security configurations , such as NIST Risk Management Framework (RMF)

• 5+ years of experience supporting implementation and engineering of FISMA ATO Security Controls to include defining , implementing, and validating implementation of controls

• 4+ years of experience implementing and configuring security requirements on AWS

• Hands on experience implementing and documenting technical measures for ongoing security operations ( e.g. Vulnerability Management, Patch Management, Known Exploited Vulnerabilities and Binding Operational Directive remediation/responses, etc.)

• Experience integrating solutions with agency monitoring , logging , and Security Operations Center (SOC) solutions to satisfy ATO requirements ( e.g. SIEM, Vulnerability Management, CDM tools, IR/Risk Management, etc.)

Desired Skills

Desired Skills:

• Familiarity with Government Cyber Mission Space and legal constraints applicable to civilian Government Agencies (FISMA, FIPS, SecOps, etc.)

• Experience in assessment, evaluation, and documentation of client environment, infrastructure, process, operations

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.