Junior Cyber Security Engineer

ECS is seeking a Junior Cyber Security Engineer to work in our Fairfax, VA office.

 The ideal candidate should have familiarity with security information and event management (SIEM) systems. The candidate will work with a cross functional team of Linux Systems Engineers, Project Managers, Information System Security Manager, and Software Developers to build, assess, maintain, and deploy a variety of software and hardware products globally in support of a DevSecOps program for the United States Department of Defense customer.

Key Responsibilities:

• Monitor and analyze network traffic, system logs, and threat intelligence feeds to identify potential security threats.
• Respond to security incidents in a timely and effective manner, working closely with cross-functional teams to resolve issues.
• Conduct in-depth analysis of security events, identifying root causes and recommending mitigation strategies.
• Develop and maintain knowledge of emerging threats, vulnerabilities, and security best practices.
• Collaborate with the Customer’s Cyber Security Team to develop and implement incident response plans and procedures.
• Collaborate with the Cyber Security Team to develop and implement security scan to include but not limited to source code (Fortify), container (Trivy), Openshift Advanced Cluster Security (ACS), etc.
• Collaborate with Developer teams to review and monitor security scans in GitLab (Fortify, Trivy, etc) and Openshift (ACS, etc).
• Participate in regular security briefings and training sessions to stay current with industry developments.
• Assist in the development and maintenance of security-related documentation, such as security policies and procedures.
• Work with the ECS leadership team to identify areas for process improvement and contribute to the development of new security initiatives.
• Work in a cross-functional team, advising and supporting the achievement and sustainment processes of Authorities to Operate (ATOs), Authorities to Connect (ATC), and/or system accreditations.

Qualifications

• Must be a US Citizen; eligible for a Top-Secret Clearance with the capability of obtaining SCI / CI-Poly to meet contract requirements
• 1-2+ years of working experience in Cybersecurity - relevant coursework may be considered as a substitute for work experience
• Possess an understanding of industry security frameworks and regulations
• CISSP, CEH, or CompTIA Security+ certification
• Familiarity with security monitoring tools, threat intelligence platforms, and security information and event management (SIEM) systems
• Strong analytical and problem-solving skills, with the ability to work in a fast-paced environment
• Experience with incident response and threat hunting
• Understanding of network protocols, operating systems, and security technologies
• Familiarity with threat intelligence platforms and security information and event management (SIEM) systems