ECS is seeking a IT SOC Engineer to work in our Remote office.
Job Description:
ECS currently seeks a Cybersecurity professional to join our team in support of US International Development Finance Corporation's (DFC)'s Chief Information Security Officer (CISO) within the Office of Information Technology (OIT). This position will provide governance, risk management, compliance support, security architecture, standards and design, cybersecurity monitoring (Detection, Response, and Prevention), and threat intelligence. The functions provided will comply with the NIST RMF per Office of Management and Budget (OMB) guidance and the NIST Cybersecurity Framework (CSF) Functions aligned with proven industry standards and best practices.
Responsibilities are:
Responsible for performance of forensic analysis on various digital media devices and mediums to identify, reverse engineer, and obfuscate content related to an incident, such as malicious content.
Consult with security operations regarding cybersecurity communications and deliver or request assistance or assist with investigations.
Provide technical expertise in cyber adversary capabilities and an assessment of the intentions of these groups to conduct Computer Network Exploitation (CNE) and Computer Network Attack (CNA) against U.S. private sector and Government networks and information systems.
Consult and provide onsite and remote vulnerability assessment capabilities as a sustained, full-time program independent of incident detection, recovery, or reporting activities.
Consult both internal and external penetration and security testing which mimics real-world attacks to identify methods for circumventing the security features of an application, system, and network.
Consult with teams to detect, prevent, and respond to threats posed by malicious, negligent, or compromised insiders by maintaining in-depth visibility into the DFC Enterprise and having a means of filtering and prioritizing threat data into concise, actionable intelligence.
Provide expert security engineering and subject matter expertise to conduct market research, product evaluation, testing, configuration, deployment, operations, and maintenance support for various SOC software tools and technologies.
Advise and assist with SOC architecture activities for all DFC SOC information systems initiatives supporting all SOC tools and capabilities.
Create procedures and documentation for maintaining SOC hardware and software.
Determine and document the security impact of proposed or actual changes to the information systems and their environment of operation.
Assess the technical, management, and operational security controls employed within and inherited by the information systems in accordance with the organization defined monitoring strategy.
Facilitate and perform remediation actions based on the results of ongoing monitoring activities and the outstanding items in the POA&M.
Update the System Security Plan, SAR, and POA&Ms. Key Deliverables: updated Residual Risk Statement and Risk Acceptance Recommendation Report.
Report the security status of information systems to appropriate organizational officials on an ongoing basis.
Review the reported security status of information systems ongoing Risk Determination and Acceptance.
Incident Assessment and Response Support; work with the DFC CIRT or any other pertinent parties (including external vendors) at any DFC location to recover from any incident.
Salary Range: $100,000-$110,000
General Description of Benefits
Required Skills:
3+ years of technical experience in Cybersecurity, maintaining IT security policies, processes, and guidance.
Experience with mitigation of security control vulnerabilities based on Cybersecurity principles and tenets. (e.g., STIG, NIST SP 800-53, Cybersecurity Risk Management Framework, etc.).
Experience with implementing security measures to resolve vulnerabilities, mitigate risks and recommend security changes to system or system components as needed.
Implementing system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation.
Experience with mitigating/correcting security deficiencies identified during security/certification testing and/or recommend risk acceptance.
Desired Skills:
Must possess or have the ability to obtain a Secret clearance.
8570.01/8140.03 Cybersecurity certification.
ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, sex, age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, status as a crime victim, disability, protected veteran status, or any other characteristic protected by law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.
ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.
