ECS is seeking a Cybersecurity Manager - SME to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In this role, the Cybersecurity Manager leads Task 3 — Cybersecurity Operations Support — and provides executive-level leadership, governance, and accountability for enterprise cybersecurity operations across ARNG environments. The position sets operational priorities, risk tolerance thresholds, and performance standards across Security Operations Center (SOC) operations, vulnerability management, incident response, RMF support, compliance, defensive cyber engineering, Cyber Defense Assessment Program (CDAP) analytics, and advanced threat operations. This role serves as the primary cybersecurity authority to Government leadership and works closely with ENOCS Task Area Managers, enterprise operations, applications, architecture, and program management teams to sustain authorization posture and mission readiness.
The position directly supports ARNG’s mission to deliver DoDIN services and conduct DCO-IDM across the DoDIN-A(NG) area of responsibility for more than 120,000 users and approximately 141,000 endpoints spanning roughly 2,800 sites in 54 states and territories. The Cybersecurity Manager helps defend both classified and unclassified environments supporting Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and SIPRNet operations. The role operates within a technical environment that includes 24x7x365 SOC monitoring, USIEM analytics, EDR, SOAR, ACAS, STIG Manager, eMASS, IDS/IPS tuning, MITRE ATT&CK-based detections, and coordination with NETCOM Global Cyber Center, DISA DCDC, ARCYBER, USCYBERCOM, RCCs, and other mission stakeholders.
Please Note: This position is contingent upon contract award.
Responsibilities- Lead Task 3 cybersecurity operations and establish enterprise priorities, performance standards, and risk tolerances across SOC operations, vulnerability management, incident response, RMF, compliance, defensive cyber engineering, CDAP analytics, and advanced threat activities.
- Serve as the principal cybersecurity advisor to Government leadership on enterprise security posture, risk acceptance, compliance status, and modernization considerations in accordance with DoD and ARNG cybersecurity policy.
- Direct 24x7x365 cybersecurity operations supporting DCO-IDM across ARNG classified and unclassified network environments within the DoDIN-A(NG) area of responsibility.
- Oversee enterprise risk reporting, compliance validation, and sustained authorization activities, including alignment of security artifacts, POA&Ms, and ongoing authorization evidence within eMASS.
- Guide SOC and monitoring operations using USIEM, EDR, SOAR, IDS/IPS, and MITRE ATT&CK-based analytics to improve threat detection, triage, response, and enterprise defensive posture.
- Coordinate cybersecurity operations and incident response with NETCOM Global Cyber Center, DISA DCDC, ARCYBER, USCYBERCOM, RCCs, and other owning organizations as required.
- Align vulnerability management and secure baseline activities across ARNG environments, including integration of ACAS, STIG Manager, continuous compliance validation, and prioritized remediation based on mission and threat conditions.
- Synchronize cybersecurity support with enterprise applications and enterprise operations teams to maintain secure operations across platforms, enclaves, and hosted services supporting 54 states and territories.
- Direct resource alignment and operational governance to ensure cybersecurity support remains responsive to ARNG mission requirements, including Title 10 and Title 32 operations, mobilization readiness, domestic emergency response, and SIPRNet mission support.
- Support transition-in planning and execution, as needed, to preserve operational continuity, maintain security oversight, and reduce risk during assumption of Task 3 responsibilities.
U.S. Citizenship is required
Security Clearance: TS//SCI Eligible
Experience: 12+ years of experience in cybersecurity
- Demonstrated experience leading enterprise cybersecurity operations spanning SOC activities, vulnerability management, incident response, compliance, and RMF support.
- Demonstrated ability to establish operational priorities, performance standards, and risk tolerance thresholds for large-scale cybersecurity programs.
- Experience briefing senior Government stakeholders on cybersecurity posture, risk decisions, compliance status, and mission impacts.
- Experience managing cybersecurity operations in both classified and unclassified environments.
- Experience coordinating cross-functional cyber activities with operations, engineering, and application support teams to maintain mission readiness.
- Experience overseeing continuous monitoring, authorization sustainment, and compliance reporting using eMASS and related security evidence processes.
- Experience directing threat detection and defensive cyber activities supported by SIEM analytics, EDR, IDS/IPS, and incident escalation workflows.
Skills Required
- 12+ years of experience in cybersecurity
- Demonstrated experience leading enterprise cybersecurity operations spanning SOC activities, vulnerability management, incident response, compliance, and RMF support
- Experience briefing senior Government stakeholders on cybersecurity posture
- Experience managing cybersecurity operations in both classified and unclassified environments
- Experience coordinating cross-functional cyber activities
- Experience overseeing continuous monitoring, authorization sustainment, and compliance reporting using eMASS
- Experience directing threat detection and defensive cyber activities
ECS Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about ECS and has not been reviewed or approved by ECS.
-
Healthcare Strength — ECS advertises multiple national-network medical plan options with HSA eligibility alongside dental and vision coverage. Coverage generally begins quickly and is paired with company-paid short- and long-term disability, adding stability to the health package.
-
Retirement Support — A 401(k) with Safe Harbor and immediate vesting on employer contributions is emphasized, with an employer match available. Access to an employee stock purchase plan via the parent company provides an additional savings avenue.
-
Parental & Family Support — Paid parental leave up to 30 days, adoption assistance, and other family-oriented leaves are highlighted. Feedback suggests these offerings add meaningful value beyond base pay for many roles.
ECS Insights
What We Do
ECS, a segment of ASGN (NYSE: ASGN), delivers advanced solutions and services in cloud, cybersecurity, artificial intelligence (AI), machine learning (ML), application and IT modernization, and science and engineering. The company solves critical, complex challenges for customers across the U.S. public sector, defense, intelligence and commercial industries. ECS maintains partnerships with leading cloud, cybersecurity, and AI/ML providers and holds specialized certifications in their technologies. Headquartered in Fairfax, Virginia, ECS has more than 3,400 employees throughout the U.S. and has been recognized as a Top Workplace by The Washington Post for the last five years.
