ECS

Compensation

Full Description

ECS is seeking a Network Security Engineer to work remotely.     Overview  The Network Security Engineer provides engineering support for network security monitoring tools and identity integration within a federal energy sector cybersecurity program. This role focuses on managing IDS/IPS sensors, firewall telemetry, and identity data feeds to meet Information Security Continuous Monitoring (ISCM) and DHS Continuous Diagnostics and Mitigation (CDM) requirements. The engineer ensures that network and identity event data is reliable, properly integrated, and compliant with federal standards.  Core Capabilities  * Deploy, configure, and maintain IDS/IPS platforms and ensure accurate event detection.  * Integrate firewall and network security device logs into SIEM and CDM dashboards.  * Support CDM Phase 2 identity integration, ensuring directory, authentication, and privileged account events are monitored and mapped.  * Validate and normalize identity and network telemetry for reporting and compliance.  * Perform health checks, tuning, and optimization of network and IAM event pipelines.  * Document network and identity monitoring configurations for audit readiness.  * Collaborate with platform engineers, SOC analysts, and compliance specialists to ensure full coverage across CDM domains.  Salary Range: $125,000 - $152,000 General Description of Benefits [https://ecstech.com/careers/benefits] Qualifications * U.S. Citizenship  * Ability to obtain and maintain a DOE “L” clearance or DoD Secret clearance with reciprocity  * 5+ years of experience in cybersecurity engineering, with at least 3 years focused on network security tools  * Hands-on experience with IDS/IPS platforms and firewall log integration  * Familiarity with IAM event feeds and privileged access monitoring for CDM reporting  * Strong troubleshooting and log pipeline integration experience  * Knowledge of federal cybersecurity standards (FISMA, NIST 800-53, ISCM, CDM Phase 2 & 3)