Computer Security System Specialist

Computer Security System Specialist (Remote)

ECS is seeking an experienced Computer Security System Specialist to join our team remotely. This role provides critical cybersecurity support for the NIH NIAID Enabling and Advancing Technologies (NEAT) contract. You will play a key part in facilitating the implementation and operation of network and cybersecurity initiatives, supporting current and future technologies within the NIAID and NIH environment. This includes evaluating, planning, and implementing new technologies in response to evolving business strategies, policies, and regulatory changes.

This is a contract position, contingent upon contract award.

About the Role

The Computer Security System Specialist will be responsible for cybersecurity incident resolution, monitoring NIAID systems for potential threats, and providing project management and engineering support to enhance and automate security operations tools and processes. You will offer professional support services and technical leadership to ensure the efficient and effective delivery of services and projects.

Key Responsibilities

• Design, develop, engineer, and implement solutions to meet Multi-Level Security (MLS) requirements.
• Perform complex risk analyses, including comprehensive risk assessments.
• Establish and satisfy information assurance and security requirements based on user, policy, regulatory, and resource demands.
• Support stakeholders at the highest levels in developing and implementing doctrine and policies.
• Apply expertise to common government and commercial user systems, as well as specialized systems requiring unique security features and procedures.
• Analyze, design, and develop security features for system architectures.

Requirements

• Minimum of 5 years of cybersecurity experience supporting Health IT software development initiatives.
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Active Public Trust or higher security clearance.
• Proven ability to understand threats, evaluate the impact of potential incidents, and recommend risk reduction techniques. This includes knowledge of various operational threat environments, attack stages, incident categories, cyber defense tool data collection, and incident resolution playbooks.
• Demonstrated expertise in analyzing and presenting clear and concise risk reports, dashboards, and visualizations to federal risk executives, system operators, and stakeholders.
• Knowledge of and experience with administering and configuring workstation and infrastructure security tools, including but not limited to: Anti-malware/Anti-virus software, Data Loss Prevention software, Endpoint Detection and Response (EDR), vulnerability assessment tools, asset discovery and management software, SIEM, and Cloud Access Security Broker (CASB).
• Experience in establishing and enhancing security operations capabilities and proactively identifying potential risks. This includes coordination with multi-contractor teams and across agency groups.
• Experience in setting up, administering, and enhancing cybersecurity tools and security operations processes to reduce false positives, proactively identify potential incident-causing configurations, and automate incident resolution playbooks.
• Knowledge of different operational threat environments (e.g., script kiddies, non-nation state sponsored, nation state sponsored), general attack stages, incident categories, incident responses, timelines, and penetration testing techniques and tools.
• Strong verbal communication, technical written communication, and analytical skills.
• Must reside within the Washington DC Metro area.
• Ability to travel within the Washington DC Metro Area and CONUS as needed.