SOC Vulnerability Management AESS Lead - Senior

Position Summary

ECS is seeking a SOC Vulnerability Management AESS Lead - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. Supporting Task 3 — Cybersecurity Operations Support, this senior role leads endpoint security scanning and validation operations, directs AESS execution, verifies coverage, and coordinates remediation across supported enterprise environments. The position contributes directly to ENOCS delivery of 24/7/365 cybersecurity engineering, operations, vulnerability management, and compliance support across the DoDIN-Army-NG area of responsibility, working closely with SOC personnel, system owners, endpoint administrators, and other cybersecurity teams to strengthen defensive cyberspace operations and continuous monitoring outcomes.

In this role, the selected candidate will help protect ARNG classified and unclassified network environments that support more than 120,000 users and approximately 141,000 endpoints across roughly 2,800 sites in 54 states and territories. The position operates within a mission environment that enables Title 10 and Title 32 operations, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The role aligns AESS vulnerability management activities with ARNG cybersecurity requirements and the broader ENOCS security ecosystem, including coordination with the NETCOM Global Cyber Center, DISA DCDC, SOC monitoring functions, RMF processes in eMASS, POA&M tracking, and compliance obligations tied to STIGs, IAVMs, and ARNG/DoD directives.

Please Note: This position is contingent upon contract award.

Responsibilities

• Lead AESS endpoint security scanning and validation activities across supported enterprise environments to identify, prioritize, and track endpoint vulnerabilities.
• Oversee configuration, sustainment, and operational effectiveness of AESS tools to ensure reliable endpoint visibility, accurate scan data, and complete security coverage.
• Verify vulnerability scanning coverage and data quality across enterprise endpoints supporting ARNG operations in 54 states and territories.
• Coordinate remediation activities with system owners, endpoint administrators, and SOC personnel to resolve identified weaknesses and validate corrective actions.
• Ensure vulnerability management activities align with STIGs, IAVMs, RMF requirements, and applicable DoD and ARNG cybersecurity directives.
• Maintain accurate POA&M documentation and support eMASS-related continuous monitoring and compliance activities for endpoint security findings.
• Produce operational metrics, status reporting, and compliance artifacts that support audit readiness, cybersecurity governance, and enterprise risk management objectives.
• Support Task 3 deliverables by contributing to continuous scanning, remediation, and compliance monitoring efforts that strengthen ARNG defensive cyberspace operations.
• Coordinate vulnerability management actions within the broader SOC and cybersecurity operations framework, including collaboration across 24x7x365 monitoring functions and engagement points with NETCOM Global Cyber Center and DISA DCDC as required.