Security Engineer
- Recruiter
- ECS
- Location
- Arlington, Virginia, United States
- Salary
- USD 125,000.00 - 150,000.00 per year
- Posted
- 24 Jan 2025
- Closes
- 23 Feb 2025
- Ref
- -2282003948530064378
- Job Type
- Security Engineer
- Employer Sector
- Engineering & Electronics
- Contract Type
- Permanent
- Hours
- Full Time
ECS is seeking a Security Engineer to work in our Arlington, VA office / remote.
ECS is seeking a talented, dynamic, and enthusiastic Security Engineer to support the Department of Homeland Security's (DHS) Continuous Diagnostics and Mitigation (CDM) Dashboard Ecosystem Program. The CDM Dashboard Program provides cybersecurity tools, integration services, and dashboards to participating agencies to support them in improving their respective security posture. CDM is a large, DHS-managed program which is comprised of several large contracts and various services. ECS is delivering the next generation CDM Dashboard. The CDM Dashboard increases visibility and insight in federal Agencies' cybersecurity posture by aggregating, displaying, and reporting data collected from tools and sensors deployed on agencies' networks which then report to a DHS-managed Federal Dashboard. The CDM Dashboard is comprised of multiple Commercial Off the Shelf (COTS) and open source products, software configuration packages and custom code which work together to operate as a single dashboard solution, tailored to meet DHS requirements. Core technologies include Elasticsearch and Kibana. ECS is also deploying, operating and maintaining the CDM Federal Dashboard, as well as a subset of Agency Dashboards hosted in a DHS-managed AWS environment under the Agency Dashboard as a Service (DBaaS) offering. Specific task areas within the CDM Dashboard contract include: Requirements Management, Design and Analysis, Development, Testing, Knowledge Management and Communications, Training, Helpdesk Support, Security Support, Deployment Services and Operations & Maintenance.
The Security Engineer will apply their knowledge to scrutinize the security architecture, implementation, deployment, and operations of the CDM Dashboard and define/implement plans of action, processes, and procedures. As Security Engineer, you will have opportunities to master and serve as a reference in one or more technical domains such as network protocols/security, hardware security, software engineering, virtualization, and operating systems. This individual will be responsible for evaluating the security of the dashboard under this new program initiative in order to satisfy program requirements, and prevent attack, damage, or unauthorized access.
You will also support ECS and DHS customers in security related areas and become, or continue to be, a recognized industry expert in your field. Specific responsibilities include but are not limited to:
Salary Range: $125,000 - $150,000
General Description of Benefits
ECS is seeking a talented, dynamic, and enthusiastic Security Engineer to support the Department of Homeland Security's (DHS) Continuous Diagnostics and Mitigation (CDM) Dashboard Ecosystem Program. The CDM Dashboard Program provides cybersecurity tools, integration services, and dashboards to participating agencies to support them in improving their respective security posture. CDM is a large, DHS-managed program which is comprised of several large contracts and various services. ECS is delivering the next generation CDM Dashboard. The CDM Dashboard increases visibility and insight in federal Agencies' cybersecurity posture by aggregating, displaying, and reporting data collected from tools and sensors deployed on agencies' networks which then report to a DHS-managed Federal Dashboard. The CDM Dashboard is comprised of multiple Commercial Off the Shelf (COTS) and open source products, software configuration packages and custom code which work together to operate as a single dashboard solution, tailored to meet DHS requirements. Core technologies include Elasticsearch and Kibana. ECS is also deploying, operating and maintaining the CDM Federal Dashboard, as well as a subset of Agency Dashboards hosted in a DHS-managed AWS environment under the Agency Dashboard as a Service (DBaaS) offering. Specific task areas within the CDM Dashboard contract include: Requirements Management, Design and Analysis, Development, Testing, Knowledge Management and Communications, Training, Helpdesk Support, Security Support, Deployment Services and Operations & Maintenance.
The Security Engineer will apply their knowledge to scrutinize the security architecture, implementation, deployment, and operations of the CDM Dashboard and define/implement plans of action, processes, and procedures. As Security Engineer, you will have opportunities to master and serve as a reference in one or more technical domains such as network protocols/security, hardware security, software engineering, virtualization, and operating systems. This individual will be responsible for evaluating the security of the dashboard under this new program initiative in order to satisfy program requirements, and prevent attack, damage, or unauthorized access.
You will also support ECS and DHS customers in security related areas and become, or continue to be, a recognized industry expert in your field. Specific responsibilities include but are not limited to:
- Providing security technical expertise and management of security engineers, processes and procedures across the CDM Dashboard Ecosystem program
- Providing technical expertise for all CDM Dashboard Ecosystem security matters in technical domains such as network protocols/security, hardware security, software engineering, virtualization, and operating systems
- Providing technical expertise and management in order to maintain DHS Authority to Operate (ATO) of the CDM Dashboard Ecosystem
- Applying their in depth knowledge to scrutinize the security architecture, implementation, deployment, and operations of the CDM Dashboard Ecosystem and define/implement plans of action, processes, and procedures.
- Evaluating the security of the CDM Dashboard Ecosystem in order to satisfy DHS security controls, program requirements, and prevent attack, damage, or unauthorized access
- Manage operational security tasks such as Incident Response and Continuous Monitoring practices
- Manage and facilitate Incident Response and Disaster Recovery Table Top Exercises as needed
Salary Range: $125,000 - $150,000
General Description of Benefits
- 5+ years of experience
- In depth understanding of general information security concepts and principles, system architectures and development, network protocols, etc.
- In depth experience with supporting system DHS Authority to Operate (ATO) processes and creating artifacts, control implementation details, and POAMs
- In depth experience with Information Security Continuous Monitoring (ISCM), RMF automation, and Comply to Connect
- In depth experience with National Institute of Standards and Technology (NIST) security controls, the Governance, Risk Management, and Compliance (GRC) security documentation tool, Risk Management Framework (RMF), and security compliance processes
- In depth experience with Federal Information Security Management Act (FISMA) and Federal Information System Controls Audit Manual (FISCAM) criteria
- In depth experience with relationship building and maintenance as it relates to internal and external team members and program leadership, certification authorities, ISSOs and ISSMs and customers
- Ability to build teams and facilitate growth, development of security engineers and cross team collaboration and knowledge transfer
- Ability to analyze authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system team stakeholders
- Ability to analyze vulnerability assessment data to identify technical risks to the organization
- Ability to work across multiple disciplines
- Eagerness to dig into technical questions and problems, enthusiasm, good customer interface skills, positive attitude, strong communication skills (written and verbal), and effective teamwork and technical collaboration skills
- Experience with DHS Programs and the DHS Systems Engineer Lifecycle (SELC)
- Note: Fairfax, VA office with option to work remotely