Cybersecurity Manager

ECS is seeking a Cybersecurity Manager to work in Arlington, VA. 

ECS is seeking a Cybersecurity Manager to lead the day-to-day activities of contractor cybersecurity personnel to ensure information assets and technologies are adequately protected in support of the Army National Guard (ARNG) mission.

As the Cybersecurity Manager, you will be responsible for delivery of all aspects of Cybersecurity Support, encompassing all facets of cybersecurity engineering, advisory services, and workforce development.

• Implementing and maintaining all aspects of cybersecurity engineering support IAW all federal, DoD, Component, and Agency-specific security initiatives, including implementing all phases and aspects of the DoD accreditation/certification policies and procedures for DoD IT during the entire lifecycle for all systems and environments, and evaluating, identifying, and implementing innovative cybersecurity practices and tools to enable the Government to meet security standards with the greatest possible efficiency.
• Developing and maintaining a Cybersecurity Strategy Plan that describes concisely how a program’s cybersecurity features comply with applicable standards, regulations, and requirements, as well as describe the system, the program’s risk assessment in the face of cyber and physical threats, and the Assessment and Authorization (A&A) approach.
• Monitoring and evaluating cybersecurity-related list services such as the Information Assurance Support Environment (IASE) and Army Computer Emergency Response Team (ACERT) portal, and alerts/notifications from authoritative organizations such as RCC, DCO, the U.S. Army Network Command (NETCOM), and Army Cyber Command (ARCYBER) to ensure the most current information is being utilized to maintain a secure baseline.
• Developing and maintaining a program Enterprise Architecture (EA) and Technology Roadmap by incorporating evolving cybersecurity requirements and emerging technologies to comply with the DoD Architecture Framework (DoDAF).
• Providing and maintaining a Configuration Settings Document (CSD) that describes how vulnerability is resolved or mitigated.
• Developing and maintaining an automated Cross Domain Enterprise Solution (CDES) for the synchronization of data from SIPRNet to NIPRNet and vice versa.
• Acquiring commercial items for security functions (excluding cryptographic modules) IAW policies and guidance contained in the DoD IT Standards and Profile Registry (DISR).
• Assessing the program’s systems against changes to published or known vulnerabilities, such as STIGs and Cybersecurity Vulnerability Management (CVM) alerts/bulletins and implement mitigation strategies.
• Maintaining that the program meets requirements for certificate-based authentication (i.e., CAC and Public Key Infrastructure (PKI)) and integration with U.S. Army enterprise authentication policies, procedures, and systems.
• Addressing the cybersecurity ramifications that are associated with any system change.
• Maintaining that all systems meet authorization requirements set forth by Government cybersecurity personnel, the accreditation/certification process, and Connectivity or Interconnectivity activities as required, including providing cybersecurity artifacts/documentation, upon request, in a format acceptable to Government.
• Establishing an integrated cybersecurity program for all phases of the SDLC during the execution of this program.

• A minimum of five years of experience managing cybersecurity compliance for a DoD agency, including securing IT systems and services using Government and industry cybersecurity standards, policies, guidelines, and best practices.
• Five (5)+ years of experience successfully managing information security risks including completing the entire Assessment and Authorization (A&A) process.
• Possess the appropriate certifications and education to achieve DoDM 8140.03 qualification requirements for the DCWF work role 462 (Control Systems Security Specialist) at the advanced level.
• Possess a TS clearance with eligibility for SCI.
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Data Science, or Software Engineering.