Security Engineer

ECS is seeking a Security Engineer to work in our Fairfax, VA office. Please Note: This position is contingent upon contract award.

Program Description 

ECS is seeking talented professionals to join our successful and growing team in building the next-generation Threat Intelligence Enterprise Service (TIES) solution. The TIES Program is the Cybersecurity and Infrastructure Security Agency’s (CISA) dynamic approach to fulfilling its federally mandated cyber information sharing responsibilities and ensuring real-time automated threat intelligence reaches key security partners. The TIES product is an integrated suite of multiple Commercial Off the Shelf (COTS) products, software configuration packages, and custom code which work together to operate as an integrated solution tailored to meet CISA requirements.   

We seek driven professionals who excel in a dynamic, fast-paced, and highly collaborative environment, where critical thinking, problem-solving, and a mission-focused approach are essential. A passion for continuous learning, improvement, and cybersecurity is vital.  

As a small team committed to radically improving government, every member directly shapes ECS’s direction and success. We take pride in our stewardship, holding deep responsibility for the solutions we develop. Collaboration is at the heart of our work—both within our team and alongside our federal partners. 

This position is contingent based upon contract award. 

Role & Responsibilities: 

ECS is seeking a Security Engineer to work alongside our deployment and security team, to support the implementation, configuration, and maintenance of security engineering and security controls within the TIES environment in order to maintain the highest level of security for the environment, as well as ensure engineering to obtain a successful Authorization to Operate (ATO). The successful candidate will work closely with security policy and ATO leads to support the following: 

• Implement engineering related to ATO security controls across the environment (within AWS and on COTS tools) for partially implemented or not implemented controls 
• Support attestation, evidence collection, and documentation of completed controls during accreditation testing or Security Assessment and Authorization (SA&A) activities 
• Work alongside security and engineering teams to ensure security configuration does not have impact the solution 
• Responsible for continual security engineering requirements such as Vulnerability Management, Patch Management, KEV/BOD responses. 
• Ensure integration with agency logging and SOC services for meeting logging and monitoring requirements  

• US citizenship with ability to obtain and maintain a Public Trust Suitability up to Top Secret/SCI
• Bachelor’s degree or equivalent experience
• 4+ years of hands-on experience configuring security and logging tools within an AWS environment including native AWS tools/services (e.g., IAM polices, GuardDuty, SecurityHub, Web Application Firewall (WAF), CloudTrail, Key Manager, Secrets Manager) and 3rd party tools (e.g., Tenable/Nessus, CrowdStrike, Splunk, Nagios)
• 5+ experience integrating solutions with agency monitoring, logging, and Security Operations Center (SOC) solutions to satisfy ATO requirements (e.g. SIEM, Vulnerability Management, CDM tools, IR/Risk Management, etc.)
• 5+ years incorporating security best practices for system integration/design and security configurations, such as NIST Risk Management Framework (RMF)
• 5+ years of experience supporting implementation and engineering of FISMA ATO Security Controls to include defining, implementing, and validating implementation of controls
• 4+ years of experience implementing and configuring security requirements on AWS
• Hands on experience implementing and documenting technical measures for ongoing security operations (e.g. Vulnerability Management, Patch Management, Known Exploited Vulnerabilities and Binding Operational Directive remediation/responses, etc.) 
• Excellent verbal communication skills and in-depth experience with relationship building with internal and external team members, certification authorities, ISSOs, ISSMs and customers. This includes ability to influence and negotiate for optimizing the balance of cost and security for the program and customer.