Cybersecurity Engineer - Vulnerability Assessment
ECS Corporate Services

Job Info

---

ECS is a federal contractor. As such, we are subject an Executive Order requiring all employees of federal contractors to be fully vaccinated for COVID-19 by December 8, 2021. Therefore, by applying for this position, you understand that you will be required to verify that you have been, or will be, fully vaccinated by December 8, or to verify that you cannot be vaccinated due to a legally recognized exception to the vaccine mandate set forth in the Executive Order.

Note: An individual is not considered to be fully vaccinated until two weeks after receiving the second vaccine dosage in a vaccine regimen involving two vaccines.

The above does not apply to personnel applying to United States Postal Service positions, however, as an ECS employee you will be required to complete the ECS COVID-19 survey to be compliant with Executive Order 14024.

ECS is seeking a Cybersecurity Engineer - Vulnerability Assessment to work in our Washington DC office.

Job Description:
In support of a premier Law Enforcement agency, we are looking to expand our industry-leading, high-impact, Enterprise Vulnerability Assessment Program. The job will be to perform an unbiased comprehensive assessment that produces actionable security recommendations that are tailored to the assessed environment, to include vulnerability assessment and vulnerability management.

Required Skills:

• Bachelors in Cybersecurity, Computer Science/Electrical Engineering, Engineering or IT
• Must have a Top-Secret Clearance
• Ability to conduct Vulnerability Assessments using industry tools - NESSUS, Teneble, etc. Experience with Tenable (Tenable.io or Tenable.sc) in an enterprise environment highly preferred.
• Experience in vulnerability management strategies, standards, procedures and technologies across infrastructure and application-level vulnerabilities.
• Experience scanning Windows, RHEL and Centos Operating Systems and troubleshooting scans, to include the ability to communicate with customers on a daily basis describing the results of scans
• Experience scanning Virtual environments to include VMware vSphere infrastructures,
• Network devices, Databases (Oracle, MSSQL, MySql, Postgres), and websites web with tenable.sc
• Intermediate to advanced knowledge of the following platforms in an enterprise environment: Windows and RHEL, routing, switching, IDS, IPS, Firewalls
• An understanding of mapping and scanning applications and systems, including port scanning, identifying services and configurations, application flow charting, and session analysis.
• Shall possess one or more of the following certifications: (ISC)2 Certified Information Security Professional (CISSP), ISACA Certified Information Systems Auditor (CISA), SANs GIAC certification (e.g., GPEN or GW APT), and EC-Council Certified Ethical Hacker (CEH).

Desired Skills:

• Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
• Comprehensive knowledge in the one or more of the following areas: information security, network security, Windows security, UNIX/Linux security, and web application security.
• Demonstrated success and understanding of accepted frameworks such as, ISO/IEC 27001, COBIT, and NIST, including 800-53 rev 5 and the ATO process
• Research new trends, techniques, and packaging of malicious software to stay current and ready to identify and handle zero-day exploits.
• Provide technical solutions to a wide range of difficult problems
• Ability to manage time with minimal supervision
• Excellent communication skills, both written and verbal.
• MCSE (Microsoft Certified Solutions Expert), RHCSA (Red Hat Certified System Administrator), AWS CSAA (Certified Solutions Architect - Associate), CCSP (Certified Cloud Security Professional), Microsoft 365 Certified: Enterprise Administrator Expert, GIAC Public Cloud Security (GPCS), GIAC Cloud Penetration Tester (GCPN), GIAC Cloud Security Essentials (GCLD)

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3000+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.

This job has expired.