Career Center
Rosslyn, VA

Job Description

ECS is seeking a IT Analyst to work in our Rosslyn, VA office. Please Note: This position is contingent upon contract award.

Job Description:

* Implements and interprets the requirements for agency compliance with policy directives governing IT infrastructure protection
* Supports USPS OIG security policy and compliance management program
* Coordinates the review and evaluation of the agency IT programs for security assessment, authorization and risk assessment
* Identifies security risks and recommends risk mitigation strategies
* Conducts software Security Test & Evaluation (ST&E)
* Documents security assessment and authorization and ST&E activities for CIO and other Business leader review and approval
* Updates or makes recommendations for new requirements for IT Security in other IT projects as well as for IT Security infrastructure and policy
* Participates in the development of security policies
* Supports Security Operations Center activities
* Participates in cyber threat and vulnerability analysis and remediation
* Supports operational implementation of FISMA/NIST/FedRAMP standards and compliance to SOC 2 audit reports
* Incorporates security tools in security review and assessment and includes systems that provide monitoring, prevention, response, and reporting. These tools may include, but are not limited to:
* Microsoft Cloud Security Stack
* (virtual networks, network security groups, web application firewalls, virtual firewalls)


* Security and Compliance Center
* Windows Anti-malware
* Azure Security Center
* Microsoft Azure Information Protection
* Azure Sentinel
* Microsoft Data Loss Prevention
* Exchange Online Protection Advance Threat Protection
* Microsoft Cloud App Security
* Advanced Malware Protection
* Hybrid Connectors
* Security Incident and Event Management
* Security Logging
* Vulnerability Identification and Analysis
* Smart Card / Password Protection
* Azure Log Analytics / Event Hub
* Amazon Web Services (cloud layered security stack)
* LastPass Password Management
* Blackberry Workspaces (secure file sharing & collaboration)
* RAPID 7 and Nessus Scanners
* Supports Security Engineering and technical solution development


* Documents security architecture and supports documentation of technical solutions for security products
* Collaborates effectively with members of OCIO and Business units to assess security architecture and solutions for IT and business systems.
* Evaluates security requirements associated with cloud-hosted environments and services
* Evaluates security requirements associated with mobile applications

Required Skills:

* Degree in Information Security, Information Systems, Computer Science, or related field
* 5+ years of specialized IT experience with at least 3 years in information security- related field
* GIAC, CEH, CISSP certification(s) (or equivalent); DHS Security Certification; or ISACA certifications (CISM or CISA)
* Knowledge of information security principles, concepts, practices, systems software, database software, and immediate access storage technology to carry out activities relating to security certification/accreditation, System Security Plans and Authority-To-Connect requirements
* Knowledge & Skill in implementing FedRAMP, FISMA, NIST, OMB guidelines, and other Federal regulations and guidance. Experience interpreting and implementing FISMA and Security Technical Implementation Guide requirements focused on the operational implementation and documentation of those requirements
* Skill & Ability to document IT Security risks, advice, guidance, and recommendations to management and other technical specialists on critical information technology security issues
* Skill & Ability to assess risk factors and advise on vulnerability to attack from a variety of sources and procedures for protection of systems and applications
* Knowledge of security requirements associated with cloud-hosted environments and services and mobile application development and deployment
* Ability to effectively communicate both orally and in writing with management

Desired Skills:

* ITIL v3 Foundation certification

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state, or local law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 2300+ employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.