Pay Growth
?
out of 5
Not enough data
Not enough info to score pay or growth
Industrial Control System Engineer - Journeyman
Job
ECS Federal, LLC
Fairfax, VA (In Person)
Full-Time
Review key factors to help you decide if the role fits your goals.
Job Security
?
out of 5
Not enough data
Calculating job security score...
Total Score
67
out of 100
Average of individual scores
Skill Insights
Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
Position SummaryECS is seeking an Industrial Control System Engineer - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In this role, the candidate will serve as an Enterprise Information System Security Officer (ISSO) supporting Task 3 — Cybersecurity Operations Support, with responsibility for system-level Risk Management Framework (RMF) execution for assigned ARNG systems and enclaves. The ISSO will lead development and maintenance of authorization artifacts, validate security control implementation, coordinate remediation with engineering and operations teams, and support assessment and authorization activities that sustain cybersecurity posture across ARNG classified and unclassified environments. This position works closely with ISSMs, cybersecurity engineers, operations personnel, and other ENOCS Task Area teams to maintain authorization status and provide compliance visibility aligned to Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM).
This role directly supports ARNG's mission to deliver secure DoDIN services to more than 120,000 users and approximately 141,000 endpoints across about 2,800 sites in 54 states and territories, including support to Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The candidate will operate within a technical environment that includes eMASS-based authorization workflows, continuous compliance review of STIGs and NIST guidance, vulnerability analysis tied to IAVAs and penetration testing, and coordination across Security Operations Center, DCO-IDM, and broader cyber operations activities. The position contributes to maintaining secure operations across ARNG enclaves and supports coordination with organizations identified in the ENOCS environment, including the NETCOM Global Cyber Center and DISA DCDC.ResponsibilitiesLead system-level RMF activities for assigned ARNG systems and enclaves, including development, update, and maintenance of System Security Plans, security control traceability documentation, and POA&M artifacts.
Review and validate implementation of security controls, assess control effectiveness, and coordinate corrective actions with engineering and operations teams to maintain authorization status.
Prepare, organize, and submit authorization and assessment artifacts in eMASS in support of A&A events, continuous assessment, and ongoing maintenance of authorization.
Provide risk, compliance, and authorization status reporting to the ISSM, including visibility into non-compliant controls, remediation progress, and residual risk.
Coordinate security compliance reviews against updated STIGs, NIST publications, and related cybersecurity guidance to support continuous monitoring and ARNG compliance objectives.
Support vulnerability analysis activities associated with IAVAs, penetration testing, and static code analysis, and ensure resulting findings are documented and tracked through remediation.
Work across ENOCS Task 3 cybersecurity operations functions to align RMF documentation and authorization evidence with ongoing DCO-IDM, monitoring, and cybersecurity engineering efforts.
Interface with ARNG stakeholders and external mission partners, including coordination aligned with the NETCOM Global Cyber Center and DISA DCDC, to support secure operation of classified and unclassified environments.
Support authorization activities for ARNG environments that include both NIPRNet and SIPRNet operations, helping preserve cybersecurity readiness for Title 10, Title 32, mobilization, and domestic emergency response missions.
Required QualificationsU.S. Citizenship is required
Demonstrated ability to develop and maintain RMF documentation, including SSPs, control traceability artifacts, assessment evidence, and POA&Ms.
Experience validating security control implementation and coordinating remediation actions with technical teams responsible for engineering, operations, or sustainment.
Experience supporting authorization and assessment events and maintaining documentation in eMASS.Ability to interpret and apply cybersecurity compliance guidance, including STIG updates, NIST-based control requirements, and vulnerability findings.
Experience producing clear risk and compliance status reporting for ISSMs, authorizing stakeholders, or system leadership.
Familiarity with cybersecurity support for classified and unclassified environments within a DoD enterprise context.
Experience supporting environments with continuous monitoring, vulnerability assessment, and coordination with SOC or cyber operations teams.
Please Note:
This position is contingent upon contract award.This role directly supports ARNG's mission to deliver secure DoDIN services to more than 120,000 users and approximately 141,000 endpoints across about 2,800 sites in 54 states and territories, including support to Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The candidate will operate within a technical environment that includes eMASS-based authorization workflows, continuous compliance review of STIGs and NIST guidance, vulnerability analysis tied to IAVAs and penetration testing, and coordination across Security Operations Center, DCO-IDM, and broader cyber operations activities. The position contributes to maintaining secure operations across ARNG enclaves and supports coordination with organizations identified in the ENOCS environment, including the NETCOM Global Cyber Center and DISA DCDC.ResponsibilitiesLead system-level RMF activities for assigned ARNG systems and enclaves, including development, update, and maintenance of System Security Plans, security control traceability documentation, and POA&M artifacts.
Review and validate implementation of security controls, assess control effectiveness, and coordinate corrective actions with engineering and operations teams to maintain authorization status.
Prepare, organize, and submit authorization and assessment artifacts in eMASS in support of A&A events, continuous assessment, and ongoing maintenance of authorization.
Provide risk, compliance, and authorization status reporting to the ISSM, including visibility into non-compliant controls, remediation progress, and residual risk.
Coordinate security compliance reviews against updated STIGs, NIST publications, and related cybersecurity guidance to support continuous monitoring and ARNG compliance objectives.
Support vulnerability analysis activities associated with IAVAs, penetration testing, and static code analysis, and ensure resulting findings are documented and tracked through remediation.
Work across ENOCS Task 3 cybersecurity operations functions to align RMF documentation and authorization evidence with ongoing DCO-IDM, monitoring, and cybersecurity engineering efforts.
Interface with ARNG stakeholders and external mission partners, including coordination aligned with the NETCOM Global Cyber Center and DISA DCDC, to support secure operation of classified and unclassified environments.
Support authorization activities for ARNG environments that include both NIPRNet and SIPRNet operations, helping preserve cybersecurity readiness for Title 10, Title 32, mobilization, and domestic emergency response missions.
Required QualificationsU.S. Citizenship is required
Security Clearance:
Secret EligibleRequired Certifications:
DCWF Work Role 722-Information Systems Security Manager — Intermediate proficiency; must holdONE OR MORE
of the following: GMON, SecurityX / CASP+, CCISO, CCSP, CGRC/CAP, CISSO, Cloud+, GCSA, GSEC, Security+,SSCPExperience:
7+ years of experience in information assuranceEducation:
Bachelors degree or higher in Computer Science, Cybersecurity, Data Science, Information Systems, Information Technology, or Software EngineeringExperience performing ISSO or closely related RMF support functions for enterprise systems, enclaves, or operational networks.Demonstrated ability to develop and maintain RMF documentation, including SSPs, control traceability artifacts, assessment evidence, and POA&Ms.
Experience validating security control implementation and coordinating remediation actions with technical teams responsible for engineering, operations, or sustainment.
Experience supporting authorization and assessment events and maintaining documentation in eMASS.Ability to interpret and apply cybersecurity compliance guidance, including STIG updates, NIST-based control requirements, and vulnerability findings.
Experience producing clear risk and compliance status reporting for ISSMs, authorizing stakeholders, or system leadership.
Familiarity with cybersecurity support for classified and unclassified environments within a DoD enterprise context.
Experience supporting environments with continuous monitoring, vulnerability assessment, and coordination with SOC or cyber operations teams.