Cyber Security Analyst bei ECS

ECS is seeking a Cyber Security Analyst to join our team for our Corporate Offices located in Fairfax, VA.

ECS is seeking a Cyber Security Analyst to work primarily out of a customer site in Falls Church, VA on a Cyber Operations team focusing on SECRET and above environments. The team provides cyber security services to multiple DoD contracts that specialize in AI/ML, data enabled operations, and international cooperation initiatives.

The Cyber Security Analyst will work in a demanding, high-energy environment that requires innovative solutions to cyber, operational, programmatic, and business challenges. The Cyber Security Analyst reports directly to the Technical Program Manager.

The ideal candidate demonstrates a willingness to learn, understands project management fundamentals and frameworks, and possesses technical knowledge and experience required to support the implementation, maintenance, and continuous improvement of Risk Management Framework (RMF) processes and documentation in accordance with DoD requirements. The ideal candidate is also highly adaptable, takes ownership of tasks and deadlines, works efficiently and effectively with limited to no supervision, and commits to high-quality results and deliverables.

General Responsibilities:

• Assess the effectiveness of cyber CONMON (continuous monitoring) activities across multiple programs.
• Analyze and interpret ACAS (Assured Compliance Assessment Solution) scan results to identify vulnerabilities, assess risk, and drive timely remediation efforts.
• Utilize Endpoint Security Solutions (ESS), including Trellix tools, to monitor host-based security posture and ensure compliance.
• Assist with SIEM Monitoring
• Correlate data from ACAS, ESS, and Trellix to support vulnerability management, incident response, and continuous monitoring.
• Assist in the implementation, management, and continuous improvement of the RMF process, ensuring compliance with applicable DoD standards, policies, and guidelines.
• Collaborate with cyber security team members and system owners to implement security controls, policies, and procedures.
• Monitor and track the implementation of Security Technical Implementation Guides (STIGs).
• Collaborate effectively with internal teams and external vendors to communicate findings and coordinate remediation to ensure security objectives are met.
• Aid in reviewing and maintaining RMF documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
• Support the change management process by conducting security assessments on proposed and implemented changes within environments.
• Stay up to date with the latest cyber security threats, trends, and best practices to proactively improve the organization's security posture.
• Participate in the development and execution of incident response plans and cyber security exercises.
• Other duties, as assigned.