Cyber Security Analyst

Job Description

ECS is seeking a Cyber Security Analyst to join our team for our Corporate Offices located in Fairfax, VA .

ECS is seeking a Cyber Security Analyst to work primarily out of a customer site in Falls Church, VA on a Cyber Operations team focusing on SECRET and above environments. The team provides cyber security services to multiple DoD contracts that specialize in AI/ML, data enabled operations, and international cooperation initiatives.

The Cyber Security Analyst will work in a demanding, high-energy environment that requires innovative solutions to cyber, operational, programmatic, and business challenges. The Cyber Security Analyst reports directly to the Technical Program Manager.

The ideal candidate demonstrates a willingness to learn, understands project management fundamentals and frameworks, and possesses technical knowledge and experience required to support the implementation, maintenance, and continuous improvement of Risk Management Framework (RMF) processes and documentation in accordance with DoD requirements. The ideal candidate is also highly adaptable, takes ownership of tasks and deadlines, works efficiently and effectively with limited to no supervision, and commits to high-quality results and deliverables.

General Responsibilities:

• Assess the effectiveness of cyber CONMON (continuous monitoring) activities across multiple programs.
• Analyze and interpret ACAS (Assured Compliance Assessment Solution) scan results to identify vulnerabilities, assess risk, and drive timely remediation efforts.
• Utilize Endpoint Security Solutions (ESS), including Trellix tools, to monitor host-based security posture and ensure compliance.
• Assist with SIEM Monitoring
• Correlate data from ACAS, ESS, and Trellix to support vulnerability management, incident response, and continuous monitoring.
• Assist in the implementation, management, and continuous improvement of the RMF process, ensuring compliance with applicable DoD standards, policies, and guidelines.
• Collaborate with cyber security team members and system owners to implement security controls, policies, and procedures.
• Monitor and track the implementation of Security Technical Implementation Guides (STIGs).
• Collaborate effectively with internal teams and external vendors to communicate findings and coordinate remediation to ensure security objectives are met.
• Aid in reviewing and maintaining RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
• Support the change management process by conducting security assessments on proposed and implemented changes within environments.
• Stay up to date with the latest cyber security threats, trends, and best practices to proactively improve the organization's security posture.
• Participate in the development and execution of incident response plans and cyber security exercises.
• Other duties, as assigned.

Required Skills

• .
• Active Secret security clearance and the ability to obtain and maintain a DoD Top Secret security clearance with SCI indoctrination (TS/SCI).
• Bachelor's degree in information technology, computer science or similar STEM discipline.
• 3+ years of equivalent, hands-on, professional responsibility and experience may be substituted for a degree.
• Ability to work up to 5 days a week at either ECS corporate office or local customer sites; additional CONUS travel up to 5%.
• Minimum DoD 8140 IAT Level II certification (e.g., Security+); must be current/active or obtained within 30 calendar days of hire.
• Working knowledge of ACAS, ESS, and SIEM tools.
• Familiarity with cloud platforms to include AWS and Azure.
• Strong understanding of cybersecurity best practices, standards, and frameworks, including NIST and RMF.
• Strong troubleshooting skills with the ability to independently resolve issues.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).

Desired Skills

Preference shown to candidates with:

• Active Top Secret security clearance.
• Current DoD 8140 IAT Level II certification.
• Expert level in a variety of cyber security tools and technologies, such as SIEM, IDS/IPS, and vulnerability scanners.
• Experience working with DoD organizations and/or performers.
• Prior experience with a team responsible for various aspects of cyber security management.
• Hands-on experience with Atlassian's Jira and Confluence.

#ECS1

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3500+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.