SOC Vulnerability Management ACAS Technician - Junior

Position Summary

ECS is seeking a SOC Vulnerability Management ACAS Technician - Junior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program in Fairfax, VA. In this role, the candidate supports Task 3 — Cybersecurity Operations Support by executing authenticated and unauthenticated ACAS scans, analyzing vulnerability results, validating credential integrity and scan coverage, and coordinating remediation tracking with system owners. The position contributes directly to ENOCS delivery of 24/7/365 cybersecurity engineering, operations, vulnerability management, and RMF support across the DoDIN-Army-NG area of responsibility, working as part of the broader SOC and cybersecurity operations team that defends ARNG classified and unclassified network environments.

 

Please Note: This position is contingent upon contract award.

 

This position helps protect a mission environment that delivers DoDIN services to more than 120,000 users and approximately 141,000 endpoints across about 2,800 sites in 54 states and territories. The role supports ARNG Title 10 and Title 32 missions, including mobilization readiness, domestic emergency response, and classified SIPRNet operations, by helping maintain secure baseline configurations and continuous compliance across enterprise systems. The technician operates within an environment that uses ACAS, eMASS, STIG Manager, USIEM-integrated cyber operations, and RMF-aligned processes, while coordinating within the larger defensive cyber ecosystem that includes NETCOM Global Cyber Center and DISA DCDC support relationships.

Responsibilities

• Execute authenticated and unauthenticated ACAS scans across ARNG networked systems to identify vulnerabilities affecting classified and unclassified environments.
• Analyze scan results to identify vulnerabilities, assess scan completeness, and validate credential integrity and asset coverage.
• Coordinate remediation actions with system owners and other cybersecurity stakeholders to support timely correction of identified weaknesses.
• Perform follow-up rescans to verify implementation and effectiveness of corrective actions and document validation results.
• Update and maintain POA&M entries based on scan findings, remediation status, and residual risk in support of RMF-aligned cybersecurity operations.
• Support operational reporting for vulnerability management activities in accordance with STIGs, IAVMs, RMF requirements, and DoD and ARNG cybersecurity directives.
• Contribute to Task 3 deliverables for secure baseline configuration, vulnerability management, and vulnerability assessment supporting continuous compliance across the ARNG enterprise.
• Interface with the broader SOC and cybersecurity operations structure to support enterprise defense activities aligned with ENOCS coordination across NETCOM Global Cyber Center and DISA DCDC.
• Help sustain cyber readiness for an ARNG environment spanning approximately 141,000 endpoints and 2,800 sites by validating scan coverage and supporting prioritized remediation tracking.