Defensive Cyber Engineer (STIGs, POA&M, IAVMs) - Journeyman

Position Summary

ECS is seeking a Defensive Cyber Engineer (STIGs, POA&M, IAVMs) - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This role supports Task 3 — Cybersecurity Operations Support by implementing and maintaining technical security controls that harden systems in accordance with STIGs, IAVMs, and DoD and ARNG cybersecurity policy. The engineer applies secure configuration baselines, validates remediation actions, tracks POA&M items to closure, and works with system owners and SOC personnel to strengthen continuous monitoring and risk mitigation across ARNG classified and unclassified network environments in support of Defensive Cyberspace Operations – Internal Defensive Measures (DCO-IDM).

 

Please Note: This position is contingent upon contract award.

 

In this position, the selected candidate contributes to protection of an enterprise supporting more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories. The role directly supports ARNG mission execution across Title 10 and Title 32 operations, including mobilization readiness, domestic emergency response, and classified SIPRNet operations. Work is performed within the broader ENOCS cyber environment that includes coordination with the NETCOM Global Cyber Center and DISA DCDC, integration with 24x7x365 SOC monitoring, and support for enterprise cybersecurity tooling and processes such as eMASS updates, continuous compliance validation, vulnerability management, and secure baseline configuration across ARNG systems and enclaves.

Responsibilities

• Implement and maintain technical security controls to harden systems in accordance with applicable STIGs, IAVMs, and DoD and ARNG cybersecurity policy.
• Apply configuration baselines, security patches, and system hardening measures to reduce exposure across ARNG classified and unclassified environments.
• Conduct vulnerability assessments, review scan results, and validate remediation actions to support secure baseline configuration and continuous compliance.
• Track POA&M items through resolution, document remediation status, and support timely closure of non-compliant controls.
• Coordinate with system owners, engineers, and SOC personnel to support continuous monitoring, risk mitigation, and enterprise cyber defense activities under Task 3 — Cybersecurity Operations Support.
• Support cybersecurity compliance activities by maintaining required artifact updates and contributing to eMASS update and integration efforts aligned to ARNG RMF processes.
• Assist with prioritizing and implementing remediation actions based on the threat environment, vulnerability findings, and ARNG operational requirements.
• Collaborate with the 24x7x365 SOC and related cybersecurity teams to strengthen detection, escalation, and response workflows across the DoDIN-Army-NG area of responsibility.
• Support cyber operations conducted in coordination with the NETCOM Global Cyber Center and DISA DCDC to help defend ARNG network environments and sustain DCO-IDM mission objectives.