Job Requirements
Fairfax, VA
Secret Polygraph Unspecified
Career Level not specified
Salary not specified
Join Premium to unlock estimated salaries 
Job Description
Job Description
Everforth ECS is seeking a Senior Cross-Domain Transfer Engineer to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent upon contract award.
The War Data Platform (WDP) is a key initiative within the U.S. Department of War's (DoW) AI-First strategy introduced in early 2026. The WDP focuses on operational warfighting data and aims to accelerate the deployment of artificial intelligence (AI) on the battlefield. The WDP extends to Unclassified, Secret, and Top Secret environments, and supports collaboration between Combatant Commands, Joint Staff directorates, Senior Executive Service leaders, and operational analysts.
This role implements cross-domain transfer scanning stages and policy-as-code enforcement for AI and machine-learning serving artifacts within WDP Core Integration deployment pipelines, maintaining enclave-parity scanning standards and supply-chain integrity across Unclassified, SIPR, and JWICS environments to protect mission-critical AI model deployments from vulnerability, configuration risk, and unauthorized cross-domain data movement.
• Implements cross-domain transfer scanning stages and policy-as-code enforcement for artificial intelligence and machine-learning serving artifacts within unclassified War Data Platform (WDP) Core Integration deployment pipelines supporting Department of War missions, Joint Staff analysts, Combatant Command elements, and Senior Executive Service leadership.
• Develops scanning logic, rule sets, and enforcement patterns that validate artifact integrity, security posture, dependency provenance, and configuration compliance prior to deployment across enterprise serving environments.
• Applies Kubernetes, GitLab Continuous Integration, SonarQube, Tenable Nessus, Elastic Stack, VMware environments, and hardened artifact repositories to execute vulnerability assessments, integration checks, and policy-driven gating actions aligned with mission assurance requirements.
• Conducts rule tuning, signature refinement, and policy updates to maintain alignment with evolving security architectures, IAVA-driven patching requirements, and DevSecOps supply-chain standards.
• Maintains higher-domain parity for scanning and policy enforcement across SIPR and JWICS enclaves by adapting rule sets, resolving enclave-specific constraints, and coordinating exception-handling workflows with multi-national engineering teams and cross-service mission partners.
• Produces mission-critical deliverables-including scanning policy documentation, policy-as-code modules, exception-handling records, vulnerability disposition reports, operational risk assessments, and deployment-readiness artifacts.
• Strengthens program value by advancing supply-chain integrity, reinforcing deployment consistency, and supporting mission assurance across all enclaves.
• Supports Tier-4 incident-response actions by providing authoritative scanning evidence, policy-compliance documentation, and remediation guidance required for operational continuity and sustained mission performance.
• Performs other duties as assigned.
Required Skills
• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• IAT III-level security certification (CompTIA CASP+ CE, ISC² CISSP or Associate, GIAC GCED, GIAC GCIH, or Cisco CCNP Security).
• Minimum 10 years of experience implementing cross-domain transfer solutions, artifact scanning frameworks, and policy-as-code enforcement within classified or federal multi-enclave environments.
• Demonstrated hands-on expertise with scanning and pipeline-security tools-including Kubernetes, GitLab CI, SonarQube, and Tenable Nessus-with proven ability to develop and enforce cross-domain gating logic, tune vulnerability rule sets, and manage IAVA-driven patching alignment across NIPRNet, SIPRNet, and JWICS.
• Proven experience maintaining enclave-parity scanning and policy enforcement across SIPR and JWICS, including adaptation of rule sets to enclave-specific constraints and management of exception-handling workflows in collaboration with multi-national and cross-service engineering partners.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).
Desired Skills
• Active Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI) eligibility.
• Prior experience working within Platform One or Cloud One environments, including familiarity with BigBang DevSecOps factory frameworks, Cross Domain Solution (CDS) automation tooling, and CDS Diode transfer workflows as applied to AI/ML artifact promotion across classification boundaries.
• Demonstrated expertise in Software Bill of Materials (SBOM) generation and Supply Chain Risk Management (SCRM) practices, including automated ingest-time scanning for malicious code, transitive dependency tracking, and delivery of compliance artifacts supporting formal government authorization packages.
• Experience integrating observability platforms-such as Elastic Stack or Prometheus-into cross-domain scanning workflows to enable real-time visibility into policy-gate behavior, transfer validation outcomes, and deployment-readiness metrics across all enclaves.
• Familiarity with DoW Risk Management Framework (RMF) processes, continuous authorization workflows, and POA&M adjudication, including the ability to generate and maintain scanning evidence packages that satisfy enclave-specific ATO requirements and ongoing compliance reporting obligations.
ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
is the federal segment of , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.
Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.
We value:
Everforth ECS is seeking a Senior Cross-Domain Transfer Engineer to work in the National Capital Region covering the Pentagon, Falls Church, and Fairfax . Please Note: This position is contingent upon contract award.
The War Data Platform (WDP) is a key initiative within the U.S. Department of War's (DoW) AI-First strategy introduced in early 2026. The WDP focuses on operational warfighting data and aims to accelerate the deployment of artificial intelligence (AI) on the battlefield. The WDP extends to Unclassified, Secret, and Top Secret environments, and supports collaboration between Combatant Commands, Joint Staff directorates, Senior Executive Service leaders, and operational analysts.
This role implements cross-domain transfer scanning stages and policy-as-code enforcement for AI and machine-learning serving artifacts within WDP Core Integration deployment pipelines, maintaining enclave-parity scanning standards and supply-chain integrity across Unclassified, SIPR, and JWICS environments to protect mission-critical AI model deployments from vulnerability, configuration risk, and unauthorized cross-domain data movement.
• Implements cross-domain transfer scanning stages and policy-as-code enforcement for artificial intelligence and machine-learning serving artifacts within unclassified War Data Platform (WDP) Core Integration deployment pipelines supporting Department of War missions, Joint Staff analysts, Combatant Command elements, and Senior Executive Service leadership.
• Develops scanning logic, rule sets, and enforcement patterns that validate artifact integrity, security posture, dependency provenance, and configuration compliance prior to deployment across enterprise serving environments.
• Applies Kubernetes, GitLab Continuous Integration, SonarQube, Tenable Nessus, Elastic Stack, VMware environments, and hardened artifact repositories to execute vulnerability assessments, integration checks, and policy-driven gating actions aligned with mission assurance requirements.
• Conducts rule tuning, signature refinement, and policy updates to maintain alignment with evolving security architectures, IAVA-driven patching requirements, and DevSecOps supply-chain standards.
• Maintains higher-domain parity for scanning and policy enforcement across SIPR and JWICS enclaves by adapting rule sets, resolving enclave-specific constraints, and coordinating exception-handling workflows with multi-national engineering teams and cross-service mission partners.
• Produces mission-critical deliverables-including scanning policy documentation, policy-as-code modules, exception-handling records, vulnerability disposition reports, operational risk assessments, and deployment-readiness artifacts.
• Strengthens program value by advancing supply-chain integrity, reinforcing deployment consistency, and supporting mission assurance across all enclaves.
• Supports Tier-4 incident-response actions by providing authoritative scanning evidence, policy-compliance documentation, and remediation guidance required for operational continuity and sustained mission performance.
• Performs other duties as assigned.
Required Skills
• Current Secret security clearance with the ability to obtain and maintain a Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI).
• IAT III-level security certification (CompTIA CASP+ CE, ISC² CISSP or Associate, GIAC GCED, GIAC GCIH, or Cisco CCNP Security).
• Minimum 10 years of experience implementing cross-domain transfer solutions, artifact scanning frameworks, and policy-as-code enforcement within classified or federal multi-enclave environments.
• Demonstrated hands-on expertise with scanning and pipeline-security tools-including Kubernetes, GitLab CI, SonarQube, and Tenable Nessus-with proven ability to develop and enforce cross-domain gating logic, tune vulnerability rule sets, and manage IAVA-driven patching alignment across NIPRNet, SIPRNet, and JWICS.
• Proven experience maintaining enclave-parity scanning and policy enforcement across SIPR and JWICS, including adaptation of rule sets to enclave-specific constraints and management of exception-handling workflows in collaboration with multi-national and cross-service engineering partners.
• Strong problem-solving and decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate solution.
• Highly developed interpersonal and oral/written communication skills, with the ability to effectively and professionally interact with a diverse set of stakeholders (from peers to end-users to executive management).
Desired Skills
• Active Top Secret (TS) security clearance with Sensitive Compartmented Information (SCI) eligibility.
• Prior experience working within Platform One or Cloud One environments, including familiarity with BigBang DevSecOps factory frameworks, Cross Domain Solution (CDS) automation tooling, and CDS Diode transfer workflows as applied to AI/ML artifact promotion across classification boundaries.
• Demonstrated expertise in Software Bill of Materials (SBOM) generation and Supply Chain Risk Management (SCRM) practices, including automated ingest-time scanning for malicious code, transitive dependency tracking, and delivery of compliance artifacts supporting formal government authorization packages.
• Experience integrating observability platforms-such as Elastic Stack or Prometheus-into cross-domain scanning workflows to enable real-time visibility into policy-gate behavior, transfer validation outcomes, and deployment-readiness metrics across all enclaves.
• Familiarity with DoW Risk Management Framework (RMF) processes, continuous authorization workflows, and POA&M adjudication, including the ability to generate and maintain scanning evidence packages that satisfy enclave-specific ATO requirements and ongoing compliance reporting obligations.
ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
is the federal segment of , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.
Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.
We value:
- Attracting and developing top talent and high-performing teams
- Fostering a culture that is engaging, accountable, and mission-driven
group id: 10112231A