ECS is seeking a Security Engineering Manager to work in our Fairfax, VA office.ECS is seeking talented professionals to join our successful and growing team in building the next-generation Continuous Diagnostics and Mitigation (CDM) Cyber data solution. The CDM Program is the Cybersecurity and Infrastructure Security Agency's (CISA) dynamic approach to strengthening the cybersecurity of Federal networks and systems through better awareness and visibility into their security posture and cyber threats. ECS is responsible for designing, building, deploying, operating, and maintaining a complete 'Data Services' solution which includes the collection, normalization, visualization, and sharing of cyber data from more than 100 Federal agencies. The CDM Data Services product is an integrated suite of multiple Commercial Off the Shelf (COTS) products, software configuration packages, and custom code which work together to operate as an integrated solution tailored to meet Department of Homeland Security (DHS) requirements. We are seeking professionals who thrive in a dynamic, fast-paced, and highly collaborative environment where problem-solving, critical thinking, and a holistic approach to serving the mission are key. Our program operates within the Scaled Agile Framework (SAFe). An aptitude and enthusiasm for continuous learning, improvement, and cyber security is a must!ECS is seeking a talented, dynamic, and enthusiastic Security Engineering Manager. The successful candidate will apply their knowledge to scrutinize the security architecture, implementation, deployment, and operations of the CDM Data Services solution. This individual will provide technical expertise and management skills to maintain ongoing security across the Data Services solution.
- Execute vulnerability and configuration scans using common tools and techniques (i.e., Nessus, Burpsuite)
- Evaluate scan results for vulnerabilities, configuration alignment, and system baseline drift
- Lead team of 5-10 security engineers who work closely across all functional teams
- Support ATO process by contributing to control responses, participating in audits, and communicating risk posture
- Continually evaluate system security posture through scans, tests, and other practical means
- Participate in SAFe process, placing security engineering resources with agile teams based on need
- US citizenship and ability to acquire Public Trust Suitability
- Bachelor's degree or equivalent additional experience
- 5+ years of Security Engineering experience
- In depth understanding of general information security concepts and principles, system architectures and development, network protocols, etc.
- 2+ years experience supporting system Authority to Operate (ATO) processes and creating/managing artifacts, control implementation details, Risk Management Framework (RMF), and POAMs
- 2+ years analyzing vulnerability assessment data to identify technical risks to the organization
- 2+ years experience with architecture, engineering, and services of Amazon Web Services (AWS) to include but not limited to experience using AWS services, AWS well-architected framework best practices, container orchestration platform experience (ex: AWS EKS), and automating the creation of Infrastructure as a Service (IaaS) such as CloudFormation, AWS Service Catalog, and GitLab.
- 2+ years experience with supporting the ELK (Elasticseach, Kibana, Logstash) Stack in non-production and production environments
- 2+ years experience supervising and leading others, preferably a team of 5+ security engineers and analysts