×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Engineer

Data Engineer - Journeyman Security Clearance

Job in Fairfax, Fairfax County, Virginia, 22031, USA
Listing for: ECS
Full Time position
Listed on 2026-06-10
Job specializations:
  • IT/Tech
    Cybersecurity, Data Engineer
Job Description & How to Apply Below
Position: Data Engineer - Journeyman with Security Clearance
Job Description Position Summary ECS is seeking a Data Engineer - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. In this role, the selected candidate will support Task 3, Cybersecurity Operations Support, by engineering data integration solutions that enable reliable ingestion, parsing, and transformation of cybersecurity telemetry across SOC, CDAP, and analytic platforms.

The Data Engineer will work closely with analytic developers, security engineers, and cybersecurity operations personnel to improve data quality, resolve ingestion discrepancies, and sustain the data pipelines that support continuous monitoring, threat detection, and Defensive Cyberspace Operations - Internal Defensive Measures (DCO-IDM) across the DoDIN-Army-NG area of responsibility.

Please Note:

This position is contingent upon contract award. This position directly supports ARNG's mission to deliver secure enterprise operations for more than 120,000 users and approximately 141,000 endpoints across about 2,800 sites in 54 states and territories, including Title 10 and Title 32 missions, mobilization readiness, domestic emergency response, and classified SIPRNet operations. The role operates within a cybersecurity environment that includes the Security Operations Center (SOC), Unified Security Information & Event Management (USIEM), Endpoint Detection and Response (EDR), C2C and DLP analytics, and data sources such as Zeek metadata and Sysmon-based monitoring, while coordinating with broader cyber operations aligned to NETCOM Global Cyber Center and DISA DCDC.

Responsibilities
* Engineer data integration solutions that support the ingestion, parsing, normalization, and transformation of cybersecurity telemetry across SOC, CDAP, and analytic platforms.
* Implement schema management and data validation routines to improve the accuracy, traceability, and reliability of cybersecurity reporting and monitoring outputs.
* Optimize data pipeline performance to support scalable analytics and continuous monitoring across ARNG classified and unclassified network environments.
* Collaborate with analytic developers and security engineers to improve data quality, troubleshoot ingestion discrepancies, and sustain visibility for cyber defense operations.
* Support SOC monitoring and analysis by enabling high-quality data feeds for USIEM analytics, including correlation of events from integrated SIEM, C2C, and DLP data sources.
* Help maintain telemetry pipelines that leverage sources identified in the ENOCS environment, including Zeek metadata and Sysmon-based monitoring aligned to MITRE ATT&CK-informed analytics.
* Contribute to the data foundation used for threat detection, incident analysis, and reporting supporting 24x7x365 cybersecurity operations across the DoDIN-Army-NG area of responsibility.
* Coordinate with cybersecurity operations stakeholders to ensure data integration supports DCO-IDM activities and aligns with ARNG and DoD cybersecurity policy.
* Support continuous monitoring visibility and reporting used by cyber operations teams working in coordination with NETCOM Global Cyber Center and DISA DCDC. Required Skills

Required Qualifications U.S. Citizenship is required Security Clearance:
Secret Eligible Required

Certifications:

DCWF Work Role 511-Cyber Defense Analyst - Basic proficiency; must hold ONE OR MORE of the following: CC, CEH, GFACT, GISF

Experience:

3+ years of experience in cybersecurity
* Experience engineering or supporting data ingestion, parsing, and transformation workflows for cybersecurity telemetry.
* Experience implementing data validation, schema management, and data quality controls to improve accuracy and reliability of analytic outputs.
* Experience working with security analysts, analytic developers, or security engineers to resolve data discrepancies and improve continuous monitoring visibility.
* Ability to support data integration requirements for SOC or cyber defense operations in classified and unclassified environments.
* Experience supporting reporting or analytics in environments using SIEM-centric monitoring and correlated security data feeds.
* Ability to document data integration issues, support remediation efforts, and maintain traceability of cybersecurity data artifacts. Desired Skills Desired Qualifications Security Clearance:
Active Secret (preferred)
* Experience supporting cybersecurity data feeds and analytics in environments using USIEM, EDR, C2C, or DLP capabilities.
* Familiarity with cybersecurity telemetry sources such as Zeek metadata and Sysmon monitoring in support of MITRE ATT&CK-based analytics.
* Experience supporting ARNG, Army, or DoD enterprise cybersecurity operations spanning large-scale user and endpoint environments.
* Familiarity with continuous monitoring and cyber operations supporting both NIPRNet and SIPRNet environments.
* Experience working with cross-functional cyber teams supporting SOC…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search