Position Summary

ECS is seeking a Cybersecurity Compliance Team Lead (VM) - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. Supporting Task 3 - Cybersecurity Operations Support, this role provides enterprise-level cybersecurity architecture leadership for vulnerability management, compliance, and defensive operations across ARNG mission systems, enclaves, and operational environments. The selected candidate will define secure architecture patterns, assess risk, evaluate boundary protections and control inheritance, and provide authoritative guidance to engineering, operations, and modernization teams contributing to ENOCS delivery of 24x7x365 cybersecurity engineering, monitoring, compliance, and RMF support across the DoDIN-Army-NG area of responsibility.

This position directly supports ARNG's mission to deliver secure DoDIN services and Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) for more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories. The role operates across classified and unclassified network environments that support Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. In this environment, the Cybersecurity Compliance Team Lead (VM) - Senior will help align secure architecture and compliance practices with operational technologies and platforms referenced across ENOCS, including USIEM analytics, eMASS, ACAS, STIG Manager, endpoint and network security toolsets, and DoDIN-connected services coordinated with the NETCOM Global Cyber Center and DISA DCDC.

Please Note: This position is contingent upon contract award.

Responsibilities

• Provide enterprise-level cybersecurity architecture guidance for vulnerability management and compliance activities across ARNG mission systems, enclaves, and operational environments.
• Define and maintain secure architecture patterns, layered defense approaches, and zero trust implementation strategies aligned to RMF, NIST SP 800-53, and applicable DoD and ARNG cybersecurity policy.
• Lead architecture risk assessments to identify security gaps, boundary protection issues, and control inheritance considerations affecting DoDIN-connected systems and services.
• Review proposed system and network designs to ensure scalable, secure, and mission-aligned implementation across classified and unclassified ARNG environments.
• Advise engineering, operations, and modernization teams on cybersecurity integration standards that strengthen defensive posture while supporting continuous operations across 54 states and territories.
• Guide vulnerability management architectural decisions in support of continuous scanning, remediation, and compliance validation activities using enterprise processes associated with ACAS, STIG Manager, and eMASS record maintenance.
• Coordinate cybersecurity architecture considerations with ENOCS Task 3 stakeholders and operational partners supporting DCO-IDM, including interfaces with the NETCOM Global Cyber Center and DISA DCDC.
• Support the development of compliance-focused technical recommendations that improve enterprise resilience for ARNG missions spanning Title 10, Title 32, mobilization readiness, domestic emergency response, and SIPRNet operations.
• Provide authoritative recommendations to leadership on enterprise security strategy, interoperability risks, and technology adoption across mission systems, sensors, and network security services integrated with USIEM and related cyber operations workflows.

Required Qualifications

U.S. Citizenship is required

Security Clearance: TS//SCI Eligible

Required Certifications: DCWF Work Role 652-Security Architect - Intermediate proficiency; must hold ONE OR MORE of the following: GMON, SecurityX / CASP+, CCSP, CISSO, Cloud+, CSSLP, FITSP-D, GCSA, GSEC

Experience: 7+ years of experience in cybersecurity

Education: Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering

• Demonstrated experience developing or evaluating enterprise cybersecurity architectures for mission systems, enclaves, or operational environments.
• Demonstrated experience applying RMF principles, including assessment of security controls, control inheritance, and boundary protection adequacy.
• Experience producing architecture risk assessments and translating findings into actionable guidance for engineering and operational teams.
• Experience supporting vulnerability management or compliance activities in DoDIN-connected environments with continuous monitoring expectations.
• Working knowledge of enterprise cybersecurity compliance artifacts and processes associated with eMASS, STIG implementation, and vulnerability assessment workflows.
• Ability to provide technically sound recommendations to leadership on secure modernization, interoperability risk, and enterprise security strategy.
• Experience collaborating across cybersecurity operations, engineering, and compliance functions to support coordinated defensive cyber outcomes.
• Ability to assess security implications of architecture decisions affecting both classified and unclassified environments.