Position SummaryECS is seeking a Cybersecurity Compliance Technician (VM) - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This position supports Task 3 - Cybersecurity Operations Support - by executing enterprise vulnerability management activities across ARNG classified and unclassified network environments, analyzing scan results, coordinating remediation with system owners, validating corrective actions, and tracking POA&M status in accordance with STIGs, IAVMs, and RMF requirements. The role contributes directly to ENOCS deliverables for cybersecurity compliance, secure baseline configuration, vulnerability management, and continuous monitoring, while working in coordination with broader SOC, compliance, and RMF support teams.
Please Note: This position is contingent upon contract award.In this role, the technician helps defend the DoDIN-Army-NG area of responsibility that supports more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories. The position supports ARNG mission readiness for Title 10 and Title 32 operations, including mobilization readiness, domestic emergency response, and classified SIPRNet operations, by helping maintain secure and compliant enterprise systems. The technical environment includes coordination with NETCOM Global Cyber Center and DISA DCDC; integration with eMASS for compliance and artifact updates; and support to enterprise platforms and systems identified across ENOCS operations, including ACAS, STIG Manager, USIEM-enabled monitoring workflows, and servers and services such as Tenable.SC, Elastic, MECM, Domain Controllers, and ACAS.
Responsibilities- Execute enterprise vulnerability scans and review findings to identify cybersecurity compliance gaps across ARNG systems and networked environments.
- Analyze scan results and coordinate remediation activities with system owners to address vulnerabilities in accordance with STIGs, IAVMs, RMF requirements, and ARNG cybersecurity directives.
- Validate the effectiveness of completed remediation actions and document results to support continuous compliance validation and updated risk posture assessments.
- Track POA&M status for unresolved findings, monitor progress to closure, and maintain accurate records to support cybersecurity compliance reporting.
- Support secure baseline configuration and vulnerability management activities aligned to Task 3 deliverables for continuous scanning, remediation, and compliance monitoring.
- Update and support compliance artifacts in eMASS and associated reporting workflows to maintain alignment with ARNG and DoD continuous monitoring objectives.
- Coordinate vulnerability management activities within the broader ENOCS Cybersecurity Operations Support mission, including interaction with compliance, SOC, and RMF personnel as needed.
- Use enterprise security and operations context from platforms such as ACAS, STIG Manager, and Tenable.SC to help assess findings, confirm corrective actions, and support reporting accuracy.
- Support cybersecurity operations conducted in coordination with the NETCOM Global Cyber Center and DISA DCDC across ARNG classified and unclassified enclaves.
Required QualificationsU.S. Citizenship is required
Security Clearance: Secret Eligible
Required Certifications: DCWF Work Role 541-Vulnerability Assessment Analyst - Basic proficiency; must hold ONE OR MORE of the following: CEH
Experience: 3+ years of experience in cybersecurity
- Experience executing vulnerability scans and analyzing findings in support of enterprise vulnerability management activities.
- Experience coordinating remediation actions with system owners and documenting status through closure.
- Experience validating remediation effectiveness against identified vulnerabilities and compliance requirements.
- Experience tracking POA&Ms and supporting compliance reporting for continuous monitoring activities.
- Working knowledge of STIGs, IAVMs, and RMF processes as applied to operational cybersecurity environments.
- Experience supporting eMASS updates, artifact maintenance, or related compliance documentation activities.
- Familiarity with enterprise security and compliance platforms referenced in the ENOCS environment, including ACAS, STIG Manager, or Tenable.SC.
