Cyber Security Analyst

ECS is seeking a Cyber Security Analyst to work in our Fairfax, VA office.

ECS is seeking a Cyber Security Analyst to work in our Fairfax, VA office in a hybrid remote/on-site capacity supporting the Secure Unclassified Network (SUNet) Enterprise Infrastructure Program. SUNet is a DoD-owned, contractor-managed platform that houses multiple U.S. Government Mission Partner Enclaves, each with a unique set of data, applications, and information systems /sub-systems that support the development of Artificial Intelligence / Machine Learning (AI/ML) algorithms.

The Cyber Security Analyst will work in a demanding, high-energy environment that requires innovative solutions to cyber, operational, programmatic, and business challenges. The Cyber Security Analyst reports directly to the SUNet Cyber Security Manager.

The ideal candidate is an energetic and conscientious self-starter who demonstrates a willingness to learn; understands project management fundamentals and frameworks; and possesses the basic technical knowledge and experience required to support the implementation, maintenance, and continuous improvement of SUNet Risk Management Framework (RMF) processes and documentation in accordance with DoD requirements. The ideal candidate is also highly adaptable, takes ownership of tasks and deadlines, works efficiently and effectively with limited to no supervision, and commits to high-quality results and deliverables. 

General Responsibilities:

• Assist in the implementation, management, and continuous improvement of the RMF process, ensuring compliance with applicable DoD standards, policies, and guidelines.
• Collaborate with cyber security team members and system owners to implement security controls, policies, and procedures.
• Monitor and track the implementation of Security Technical Implementation Guides (STIGs).
• Aid in reviewing and maintaining RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
• Manage Maintenance Window tickets and post-Maintenance Window reporting.
• Manage Atlassian Jira tickets.
• Manage project tracking schedules, risk registers, and risk and issue mitigation strategies for SOC and incident response activities.
• Develop and maintain documentation, including standard operating procedures (SOP), technical guides, and reports, to support RMF operations and compliance efforts.
• Stay up to date with the latest cyber security threats, trends, and best practices to proactively improve the organization's security posture.
• Participate in the development and execution of incident response plans and cyber security exercises.
• Provide short-term, high-priority project management support and coordination.
• Other duties, as assigned.

• U.S. Citizen.
• Ability to obtain and maintain a DoD Top Secret security clearance.
• Bachelor's degree Information Technology, Computer Science, Information Systems Management, or similar Science, Technology, Engineering and Mathematics (STEM) discipline; 1-2 years of equivalent, hands-on, professional responsibility and experience may be substituted for a degree.
• Local resource willing to work at ECS corporate offices located in Fairfax, VA up to 2 business days per week, at the manager’s discretion.
• Minimum DoD 8140 IAT Level II certification (e.g., Security+); must be current/active, or obtained within 120 calendar days of hire. 
• Basic understanding of cyber security best practices, standards, and frameworks, including NIST and RMF.
• Proficient in Microsoft Office tools and O365, including Word, PowerPoint, Excel, and Teams.
• Strong planning, problem-solving, data collection, and analytical skills.
• Proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).