Everforth ECS is seeking a seasoned Information Assurance (IA) Manager to oversee IA support activities for federal clients. This role requires deep experience managing information systems security compliance, A&A package management, and continuous monitoring in support of DoD and Marine Corps programs
Information Assurance & Compliance- Oversee support of IA activities for assigned federal clients, including management and accurate reporting of OPDRS and related security tracking systems.
- Ensure full compliance with USMC security requirements pursuant to DoDD 5200.2, DoDI 8500.2, and DoD 8570.01-M.
- Advise Program Managers and ISSMs on all 18 NIST security control families, including PHI and PII overlays.
- Implement and maintain the DoD IA Risk Management Framework (DIARMF) in accordance with NIST requirements.
- Direct self-assessments and conduct IV&V activities as a certified Marine Corps Validator.
- Maintain ATO package currency, including MCCA packages within MCCAST, covering Ports, Protocols, and Services (PPS) updates.
- Manage A&A packages and provide certification recommendations to the Authorizing Official (AO).
- Conduct and manage Information Systems Continuous Monitoring (ISCM) planning and implementation.
- Perform vulnerability scanning using ACAS, Retina, and SCAP; develop, submit, and track POA&Ms.
- Track and report on IAVA/IAVB compliance and remediation.
- Supervise security tool operations including eMASS, F5, and ACAS Security Center.
Risk Analysis & Cyber Security Assessments
- Provide and maintain Risk Analysis and Management documentation.
- Conduct IS environment cyber security assessments as required by DoD policy and regulations.
- Coordinate with internal and external entities, including penetration testing teams such as MFCC and CPT.
- Maintain and annually revaluate internal Cyber Security Policy and Standard Operating Procedures (SOPs).
- Write and maintain policy documentation addressing DIARMF security controls, System Security Plans (SSPs), and SOPs.
- Coordinate Annual Reviews for Contingency Planning and Incident Response.
- Investigate and respond to security incidents; conduct weekly IA briefings for new personnel.
- Ensure all personnel complete required System Authorization Access Reports (SAAR), DD Form 2875 prior to system access.
- Deny system access to any personnel who do not hold proper and current IA certifications.
- Ensure compliance with non-disclosure requirements in accordance with DoDI 8582.01.
- Active Top Secret with SCI eligibility.
- CISSP or equivalent security certification. DoD Directive 8140.01 DCWF compliance - certification requirements; DoD Manual 8140.03 establishes baseline qualification for distinct work roles.
- Minimum 5+ years of experience in information assurance or cybersecurity.
- Strong understanding of the RMF steps.
- Hands-on experience with GRC Platforms for ATO and A&A package management. eMASS desired but not required.
- Strong working knowledge of NIST security control families and federal compliance frameworks.
- Experience supporting Marine Corps or DoD programs is highly preferred.
Skills Required
- Active Top Secret with SCI eligibility
- CISSP or equivalent security certification
- DoD Directive 8140.01/DCWF compliance and DoD Manual 8140.03 baseline qualifications
- Minimum 5+ years experience in information assurance or cybersecurity
- Strong understanding of RMF steps/DIARMF
- Hands-on experience with GRC platforms for ATO and A&A package management
- eMASS experience
- Strong working knowledge of NIST security control families and federal compliance frameworks
- Experience with vulnerability scanning and remediation tools (ACAS, Retina, SCAP) and POA&Ms
- Experience supporting Marine Corps or DoD programs
- Certified Marine Corps Validator or ability to perform IV&V activities
ECS Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about ECS and has not been reviewed or approved by ECS.
-
Healthcare Strength — ECS advertises multiple national-network medical plan options with HSA eligibility alongside dental and vision coverage. Coverage generally begins quickly and is paired with company-paid short- and long-term disability, adding stability to the health package.
-
Retirement Support — A 401(k) with Safe Harbor and immediate vesting on employer contributions is emphasized, with an employer match available. Access to an employee stock purchase plan via the parent company provides an additional savings avenue.
-
Parental & Family Support — Paid parental leave up to 30 days, adoption assistance, and other family-oriented leaves are highlighted. Feedback suggests these offerings add meaningful value beyond base pay for many roles.
ECS Insights
What We Do
ECS, a segment of ASGN (NYSE: ASGN), delivers advanced solutions and services in cloud, cybersecurity, artificial intelligence (AI), machine learning (ML), application and IT modernization, and science and engineering. The company solves critical, complex challenges for customers across the U.S. public sector, defense, intelligence and commercial industries. ECS maintains partnerships with leading cloud, cybersecurity, and AI/ML providers and holds specialized certifications in their technologies. Headquartered in Fairfax, Virginia, ECS has more than 3,400 employees throughout the U.S. and has been recognized as a Top Workplace by The Washington Post for the last five years.
