ECS

Defense Critical Infrastructure/Operational Technology Team Lead - Senior

ECS$120K — $150K *
Aerospace & Defense
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • U.S. Citizenship required
  • Secret eligible security clearance
  • 7+ years of cybersecurity experience
  • Bachelor's degree in relevant fields (e.g., Computer Science, Cybersecurity)
  • Required certifications in cybersecurity (e.g., CEH(P), Security+)
  • Experience with data security monitoring and risk analysis
  • Familiarity with SIEM-driven monitoring and analytics

Responsibilities

  • Lead enterprise data protection activities by defining monitoring strategies and governance processes
  • Analyze data risk trends and provide remediation recommendations to leadership
  • Oversee investigation of complex data security incidents
  • Coordinate remediation activities with system owners and cybersecurity teams
  • Support integration of data protection considerations with analytics and monitoring activities
  • Collaborate with NETCOM Global Cyber Center for incident coordination and protection
  • Advise on data security risks affecting critical infrastructure

Benefits

  • Opportunities for professional development and certifications
  • Collaborative work environment with cybersecurity experts
  • Engagement in significant national security efforts
  • Exposure to a wide range of cybersecurity technologies and environments
  • Ability to influence and enhance data protection strategies across the DoDIN-Army-NG
Full Job Description
Position Summary

ECS is seeking a Defense Critical Infrastructure/Operational Technology Team Lead - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This senior role supports Task 3 - Cybersecurity Operations Support - by leading enterprise data protection activities that strengthen Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) across the DoDIN-Army-NG area of responsibility. The position establishes data security monitoring strategies, risk assessment methodologies, and governance processes for data loss prevention, encryption, and access control enforcement; analyzes data risk trends; leads complex data security incident investigations; and coordinates remediation with system owners, cybersecurity teams, and broader ENOCS cyber operations personnel.

In this role, the successful candidate helps protect ARNG classified and unclassified network environments that support more than 120,000 users and approximately 141,000 endpoints across about 2,800 sites in 54 states and territories. The position contributes to cybersecurity operations that enable Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The role operates within an enterprise environment that includes USIEM analytics, DLP, EDR, cross domain services, and continuous coordination with the NETCOM Global Cyber Center and DISA DCDC, while supporting ARNG efforts to extend unified detection capabilities across Defense Critical Infrastructure (DCI) and Operational Technology (OT) environments.

Please Note: This position is contingent upon contract award.

Responsibilities

  • Lead enterprise data protection activities by defining and implementing monitoring strategies, risk assessment methods, and governance processes for DLP, encryption, and access control enforcement.
  • Analyze data risk trends and high-risk exposure areas across ARNG classified and unclassified environments, and provide prioritized recommendations to leadership for remediation and risk reduction.
  • Oversee investigation of complex data security incidents and ensure response actions align with DoD and ARNG cybersecurity policy, continuous monitoring objectives, and Task 3 cybersecurity operations deliverables.
  • Coordinate remediation activities with system owners, cybersecurity teams, and security operations personnel to reduce data exposure and improve enterprise security posture across the DoDIN-Army-NG AOR.
  • Support integration of data protection considerations with USIEM, DLP analytics, and broader monitoring and analysis activities to improve centralized visibility and cyber defense decision-making.
  • Collaborate with NETCOM Global Cyber Center, DISA DCDC, and internal ENOCS cyber teams, as required, to support incident coordination, reporting, and protection of critical national infrastructure and other networks of interest.
  • Advise on data security risks affecting Defense Critical Infrastructure/Operational Technology environments and help align monitoring and protective measures with ARNG cyber defense objectives.
  • Ensure data security governance and incident handling activities support RMF-related continuous monitoring expectations, including coordination of evidence, reporting, and corrective actions where applicable.
  • Contribute to the protection of ARNG mission operations spanning Title 10, Title 32, mobilization readiness, domestic emergency response, and classified SIPRNet-supported activities by reducing enterprise data risk and strengthening cyber resilience.


Required Qualifications

U.S. Citizenship is required

Security Clearance: Secret Eligible

Required Certifications: DCWF Work Role 511-Cyber Defense Analyst - Intermediate proficiency; must hold ONE OR MORE of the following: CEH(P),GMON,GRID,Cloud+,FITSP-O,GCED,GDSA,GSEC,PenTest+,Security+

Experience: 7+ years of experience in cybersecurity

Education: Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software Engineering
  • Experience leading data security monitoring, risk analysis, and governance activities in support of enterprise cybersecurity operations.
  • Experience investigating complex data security incidents and coordinating remediation across system owners and cybersecurity stakeholders.
  • Experience developing or applying data protection controls supporting DLP, encryption, and access control enforcement.
  • Ability to analyze enterprise data risk trends and present high-risk exposure findings and remediation priorities to leadership.
  • Experience supporting continuous monitoring objectives within DoD or ARNG cybersecurity environments.
  • Experience working across classified and unclassified network environments in support of enterprise cyber defense missions.
  • Familiarity with SIEM-driven monitoring and analytics in support of centralized security visibility and incident response.
  • Ability to coordinate data security activities within large, geographically distributed environments supporting mission operations across multiple sites and stakeholders.

About ECS

ECS is a leading provider of digital solutions and services to the federal government. The company was founded in 2001 by Roy Kapani and has since grown to become a trusted partner to a wide range of government agencies. ECS offers a broad range of services, including cloud computing, cybersecurity, and artificial intelligence. The company has been recognized for its innovative solutions and has won numerous awards, including the AWS Public Sector Partner of the Year award.
Learn more about ECS
Size
2,000 employees
Industry

Similar Jobs

More Jobs at ECS

  • ECS
    Principal AI/ML Scientist
    $130K — $180K *
    Arlington, VA 22204 (Arlington County)
    Enterprise Technology
    In-Person
  • ECS
    Data Scientist
    $90K — $130K *
    Arlington, VA 22204 (Arlington County)
    Information Technology
    In-Person
  • ECS
    Imagery Analyst Supervisor
    $80K — $100K *
    Fairfax, VA 22030 (Fairfax City County)
    Aerospace & Defense
    In-Person
  • ECS
    Analytic Engineer
    $90K — $130K *
    Fairfax, VA 22031 (Fairfax County)
    Aerospace & Defense
    In-Person
  • ECS
    Analytic Engineer
    $90K — $130K *
    Falls Church, VA 22042 (Fairfax County)
    Aerospace & Defense
    In-Person

More Aerospace & Defense Jobs

Find similar Defense Critical Infrastructure/Operational Technology Team Lead - Senior jobs: