ECS

Cybersecurity Manager - SME

ECS$120K — $150K *
Fairfax, VA 22030In-Person
Education, Government & Non-Profit
11 - 15 years of experience
Reposted Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • U.S. Citizenship is required
  • TS//SCI Eligible security clearance
  • Minimum 12 years of cybersecurity experience
  • Proven record of leading enterprise cybersecurity operations
  • Skilled in setting operational priorities and risk thresholds
  • Experience presenting cybersecurity matters to senior officials
  • Familiarity with both classified and unclassified environments.

Responsibilities

  • Lead cybersecurity operations for the organization, setting priorities and performance standards.
  • Act as the primary cybersecurity advisor to government leadership for risk and compliance issues.
  • Manage continuous cybersecurity operations, monitoring classified and unclassified networks.
  • Oversee risk reporting and compliance validation to ensure operational authorization.
  • Enhance threat detection and response through advanced monitoring tools and analytics.
  • Coordinate incident response across multiple cybersecurity centers and governing bodies.
  • Integrate cybersecurity measures within enterprise application and operations teams.

Benefits

  • Opportunity to work within a critical national defense environment
  • Engagement with high-level government stakeholders
  • Involvement in diverse cybersecurity operations across various environments
  • Chance to significantly influence organizational cybersecurity strategy
  • Exposure to advanced cybersecurity tools and operational techniques.
Full Job Description
Position Summary

ECS is seeking a Cybersecurity Manager - SME to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In this role, the Cybersecurity Manager leads Task 3 - Cybersecurity Operations Support - and provides executive-level leadership, governance, and accountability for enterprise cybersecurity operations across ARNG environments. The position sets operational priorities, risk tolerance thresholds, and performance standards across Security Operations Center (SOC) operations, vulnerability management, incident response, RMF support, compliance, defensive cyber engineering, Cyber Defense Assessment Program (CDAP) analytics, and advanced threat operations. This role serves as the primary cybersecurity authority to Government leadership and works closely with ENOCS Task Area Managers, enterprise operations, applications, architecture, and program management teams to sustain authorization posture and mission readiness.

The position directly supports ARNG's mission to deliver DoDIN services and conduct DCO-IDM across the DoDIN-A(NG) area of responsibility for more than 120,000 users and approximately 141,000 endpoints spanning roughly 2,800 sites in 54 states and territories. The Cybersecurity Manager helps defend both classified and unclassified environments supporting Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and SIPRNet operations. The role operates within a technical environment that includes 24x7x365 SOC monitoring, USIEM analytics, EDR, SOAR, ACAS, STIG Manager, eMASS, IDS/IPS tuning, MITRE ATT&CK-based detections, and coordination with NETCOM Global Cyber Center, DISA DCDC, ARCYBER, USCYBERCOM, RCCs, and other mission stakeholders.

Please Note: This position is contingent upon contract award.

Responsibilities

  • Lead Task 3 cybersecurity operations and establish enterprise priorities, performance standards, and risk tolerances across SOC operations, vulnerability management, incident response, RMF, compliance, defensive cyber engineering, CDAP analytics, and advanced threat activities.
  • Serve as the principal cybersecurity advisor to Government leadership on enterprise security posture, risk acceptance, compliance status, and modernization considerations in accordance with DoD and ARNG cybersecurity policy.
  • Direct 24x7x365 cybersecurity operations supporting DCO-IDM across ARNG classified and unclassified network environments within the DoDIN-A(NG) area of responsibility.
  • Oversee enterprise risk reporting, compliance validation, and sustained authorization activities, including alignment of security artifacts, POA&Ms, and ongoing authorization evidence within eMASS.
  • Guide SOC and monitoring operations using USIEM, EDR, SOAR, IDS/IPS, and MITRE ATT&CK-based analytics to improve threat detection, triage, response, and enterprise defensive posture.
  • Coordinate cybersecurity operations and incident response with NETCOM Global Cyber Center, DISA DCDC, ARCYBER, USCYBERCOM, RCCs, and other owning organizations as required.
  • Align vulnerability management and secure baseline activities across ARNG environments, including integration of ACAS, STIG Manager, continuous compliance validation, and prioritized remediation based on mission and threat conditions.
  • Synchronize cybersecurity support with enterprise applications and enterprise operations teams to maintain secure operations across platforms, enclaves, and hosted services supporting 54 states and territories.
  • Direct resource alignment and operational governance to ensure cybersecurity support remains responsive to ARNG mission requirements, including Title 10 and Title 32 operations, mobilization readiness, domestic emergency response, and SIPRNet mission support.
  • Support transition-in planning and execution, as needed, to preserve operational continuity, maintain security oversight, and reduce risk during assumption of Task 3 responsibilities.


Required Qualifications

U.S. Citizenship is required

Security Clearance: TS//SCI Eligible

Experience: 12+ years of experience in cybersecurity
  • Demonstrated experience leading enterprise cybersecurity operations spanning SOC activities, vulnerability management, incident response, compliance, and RMF support.
  • Demonstrated ability to establish operational priorities, performance standards, and risk tolerance thresholds for large-scale cybersecurity programs.
  • Experience briefing senior Government stakeholders on cybersecurity posture, risk decisions, compliance status, and mission impacts.
  • Experience managing cybersecurity operations in both classified and unclassified environments.
  • Experience coordinating cross-functional cyber activities with operations, engineering, and application support teams to maintain mission readiness.
  • Experience overseeing continuous monitoring, authorization sustainment, and compliance reporting using eMASS and related security evidence processes.
  • Experience directing threat detection and defensive cyber activities supported by SIEM analytics, EDR, IDS/IPS, and incident escalation workflows.

About ECS

ECS is a leading provider of digital solutions and services to the federal government. The company was founded in 2001 by Roy Kapani and has since grown to become a trusted partner to a wide range of government agencies. ECS offers a broad range of services, including cloud computing, cybersecurity, and artificial intelligence. The company has been recognized for its innovative solutions and has won numerous awards, including the AWS Public Sector Partner of the Year award.
Learn more about ECS
Size
2,000 employees
Industry
Information Technology
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at ECS

More Education, Government & Non-Profit Jobs

Find similar Cybersecurity Manager - SME jobs:

NationwideFairfax, VA