ECS · 9 hours ago
Senior Cyber Security Analyst
Arlington, VA
Full-time
Onsite
Mid, Senior Level
3+ years expECS is a leading mid-sized provider of technology services to the United States Federal Government, seeking a Senior Cyber Security Analyst to work in their Arlington, VA office. The role involves managing the program’s Assessment and Authorization efforts, focusing on Risk Management and Security Authorization activities in compliance with NIST guidelines and Federal standards.
Artificial Intelligence (AI)Cloud InfrastructureComplianceConsultingCyber SecurityInformation TechnologyMachine LearningSecuritySoftware
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Create new and modify existing hardening standards for emerging technologies for potential on-premise and cloud-based technologies
Collaborate with developers and various teams to integrate secure coding and application security requirements and best practices into development processes
Recommend secure application configurations and conduct security testing on the proposed application
Facilitate and support the IT Risk Acceptance process
Other duties as assigned
Complete required A&A activities on assigned IT systems
Perform continuous monitoring of security controls to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems
Work with technical teams to mitigate security control deficiencies and scan vulnerabilities for assigned IT systems
Assess the cybersecurity impact of changes to assigned IT systems
Conduct self-assessments of security controls, identify weaknesses, and track remediation activities in Plan of Action and Milestones (POA&M) via eMASS
Qualification
Required
3+ years of experience with IT, including in a DoD environment
3+ years of experience with DIACAP and NIST Risk Management Framework (RMF) policies, including continuous monitoring, information system security policies, standards, and procedures
Experience with preparing or supporting DIACAP or RMF packages and supporting documentation and DoD Authorization and Accreditation (A&A) process and standards
Experience with using the Enterprise Management Assurance Support Service (eMASS)
Knowledge of IA or INFOSEC concepts and requirements
Ability to conduct security control selection, tailoring, and overlays
Ability to analyze a security plan and perform system security analysis
Ability to work independently
Active Secret clearance -DoD 8140 IAM or IAT Certification, including Security+ CE, CISM, CISSP, or CASP
Preferred
BS degree in CS or Engineering preferred
3+ years of experience with supporting Navy Commands in the implementation or assessment of Cybersecurity controls or legacy DIACAP implementation
3+ years of experience with system and network vulnerability analysis, risk assessment and risk mitigation analysis, security test and evaluation (ST&E), contingency planning, and firewall policy, ports, and protocols
Experience with Retina, Nessus, SCAP Compliance Checker, STIGs, hardening systems, and applying IA controls
Experience with Nessus, ACAS, SCAP, and HBSS
Possession of excellent oral and written communication skills
Navy Qualified Validator (NQV) Appointment or Legacy Fully Qualified Navy Validator (FQNV) Appointment
Company
ECS
ECS is a fast-growing 4,000-person, $1.2B provider of advanced technology solutions for federal civilian, defense, intelligence, and commercial customers.
1001-5000 employees
Funding
Current Stage
Late StageTotal Funding
unknown2018-01-31Acquired
2015-04-10Private Equity
Leadership Team
Keith McCloskey
VP / Chief Technology Officer
Ryan Garner
Chief Financial Officer
Recent News
Business Wire
2026-01-22
2025-11-19
2025-03-26
Company data provided by crunchbase