Integration Engineer – CSAM

ECS is seeking an Integration Engineer – CSAM to work in our Bethesda, MD office/remote.  

Position Summary:

ECS Federal is seeking an Integration Engineer to design and operate high-quality data flows for the Federal Agency’s Cybersecurity Assessment and Management (CSAM) platform. This full-time role focuses on building and maintaining integrations from asset management tools, CMDBs, discovery tools, and governance systems; normalizing schemas; and automating tagging to enable continuous monitoring and Ongoing Authorization (OA). The engineer will also support OSCAL as a required skill to produce machine-readable compliance outputs (JSON/XML/YAML).

Position Responsibilities:

• Design, build, and maintain pipelines that feed data into CSAM from asset management tools, CMDBs, discovery tools, and governance systems.
• Develop and operate API/ETL integrations, ensuring schema translation, normalization, and resilient error handling.
• Automate tagging so systems inherit attributes needed for compliance and reporting.
• Troubleshoot integration failures and coordinate with ICOs when data gaps or mapping issues occur.
• Validate the quality, completeness, and accuracy of all data flowing into CSAM; implement QA checks and reconciliation routines.
• Apply and enforce naming conventions, metadata standards, and attribute requirements across incoming data sources.
• Support OSCAL pilots by outputting data in JSON/XML/YAML and aligning exported structures to required models.
• Help reconcile ICO data structures into standardized OSCAL-aligned definitions and CSAM target schemas.

Salary Range: $115,000 - $135,000

General Description of Benefits

• Strong written and verbal communication skills; able to brief stakeholders and collaborate with technical teams.
• Hands-on experience building API and ETL integrations (e.g., REST-based pipelines, message queues, scheduled jobs) with robust error handling and monitoring.
• Experience integrating asset, software, and configuration data sources into a GRC or enterprise system and performing schema translation and normalization.
• Demonstrated ability to automate tagging so systems inherit compliance attributes consistently across data feeds.
• Experience administering or working closely with teams operating Linux and Windows Server environments that host integration components.
• Ability to troubleshoot integration failures end-to-end and coordinate with Information/Integration Coordinators (ICOs) to resolve data gaps.
• Experience validating data quality, completeness, and accuracy; applying QA gates, reconciliation checks, and exception handling.
• Familiarity with NIST RMF / SP 800-53 data elements used for ISCM, POA&M, and OA reporting (as applied within integration pipelines and metadata).
• Required skill: familiarity with OSCAL to support generation of machine-readable SSP/assessment/POA&M outputs in JSON, XML, or YAML.

Certifications/Licenses:

• Education: Bachelor’s degree in Computer Science, MIS/IT, Engineering, Business/Econ, Information Security/IA, or related field (minimum).
• Public Trust Tier 2S (moderate-risk) eligibility and ability to obtain/maintain HSPD-12 credentials, per client requirements.