ECS is seeking an Information System Security Engineer (ISSE) to work in our Tampa, FL office Please Note: This position is contingent upon [contract award].

Job Description:

ECS is seeking an Information Systems Security Engineer to work remote from the Tampa area supporting our cloud based AI/ML/PAI environment. Please Note: This position is contingent upon contract award.

Job Description:

ECS Federal, LLC has an opportunity to hire an Information Security Engineer based in Tampa, FL supporting a mission critical, government-wide cybersecurity program.By supporting this program, you will be contributing to the development, implementation, and assessment of new defensive measures that protect the entire .GOV and critical infrastructure communities.

The scope of the position includes the analysis and support of federally accredited networks and systems designed to provide network boundary defense from sophisticated threat actors.The ISE will review system documentation and design to ensure compliance with multiple federal security requirements standards through the application of security controls traceability matrices (SCTMs).You will review and update security documentation such as System Security Plans (SSP), Security Controls Traceability Matrix (SCTM), CONOPS, Risk Assessment Reports, Plan of Action and Milestones (POA&Ms), Interconnection Agreements, Risk Assessment Reports, Contingency Plans and Security Assessment Reports to meet ICD 503, CNSSI 1253 and NIST SP 800-37 requirements.You will support the change request process by reviewing documentation in collaboration with network security engineers and subject matter experts to provide comprehensive recommendations to the customer.The ISE will conduct vulnerability scans against these systems and review results to document the residual risk associated with findings when evaluated against mitigations.As an ISE, you will also be responsible working with ISSOs and ISSMs to ensure systems are operated and maintained in accordance with applicable policies, procedures, guidelines, and directives.

Day-to-Day Responsibilities include:

• Review and update security documentation such as that listed below to meet ICD 503, CNSSI 1253, NIST SP 800-37 and other applicable federal requirements:
• System Security Plans.
• Security Controls Traceability Matrix (SCTM).
• CONOPS/SECONOPS.
• Risk Assessment Reports.
• Plan of Action and Milestones (POA&Ms).
• Interconnection Agreements.
• Risk Assessment Reports.
• Contingency Plans.
• Security Assessment Reports.
• Review policies and procedures as required for various security controls identified in the Security Controls Traceability Matrix (SCTM).
• Conduct reviews and validations of system configurations in accordance with applicable guidelines (i.e. customer, DISA STIGS and CIS Benchmarks).
• Conduct vulnerability and compliance scans (i.e. Nessus, SCAP) to determine overall system risk impacts and provide results to the customer and information system owner respectively.
• Familiar with software scanning tools (i.e. Fortify) in order to identify vulnerabilities found in software code.
• Participate in change review meetings and document approved system changes.
• Work with designated ISSO’s/ISSM’s to ensure systems are operated, maintained and disposed of in accordance with applicable governing policies, procedures, guidelines and directives.
• Manage various security tools such as Splunk, Prisma Cloud Security, and Crowdstrike.

Required Skills:

• Must be a U.S. Citizen per contract.
• Ability to obtain and maintain a DoD Top Secret clearance.
• Bachelor’s Degree in an Information Technology related field and/or applicable equivalent work experience.
• Minimum of five (5) years of progressive experience as an ISSO as defined by NIST SP 800-37 or similar role including generating security documentation for requirements, assessment, compliance, Standard Operating Procedures, test results, etc.
• Demonstrated application of federal information system security requirements as promulgated in FISMA, OMB, NIST SP 800-30, NIST SP 800-37, NIST 800-39, NIST 800-53, NIST 800-53A, NIST SP 800-137, CNSSI 1253, and ICD 503.
• Professional Certification such as DoD 8570 IAT Level II.
• Familiar with applying security configurations, checklists or benchmarks such as DISA STIGs, United States Government Configuration Baseline USGCB, Center for Internet Security CIS, and The Security Content Automation Protocol SCAP.
• Experience with vulnerability scanning and assessment tools such as Nessus.
• Ability to multi-task in a deadline-oriented environment.
• Demonstrated ability to work well independently with little input, and as a part of a team.
• Excellent work ethic and a high commitment to quality.
• Experience with SEIM Splunk. Configure and deployment. Dashboard creation, alerting, and reporting.

Desired Skills:

• Active DoD Secret Clearance.
• Experience with AWS and Azure.
• Experience with tools such as Prisma Cloud Security and Crowdstrike.

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, sex, age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, status as a crime victim, disability, protected veteran status, or any other characteristic protected by law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800 employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.