General Summary:
Performs system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings.
*Principal Duties and Responsibilities (Essential Functions):
- Ensure Program Directorate policies, processes, and procedures are following current guidance and routinely updated to follow any new guidance with regards to Cyber Tools (ACAS, ESS, SIEM, etc) and reporting.
- Oversee Incident Response and coordinate with mission partners as necessary.
- Manage the implementation, use, and reporting of all Cyber Tools (ACAS, ESS, SIEM, etc) across various information systems.
- Manage user accounts and administrative paperwork as necessary for supporting information system users.
- Manage the Cyber Tasking Order (CTO) program, to include managing Plan of Action & Milestones (POA&Ms).
- Manage/Perform software assurance assessments, to include Supply Chain Risk Management (SCRM).
- Assist in the Assessment & Authorization (A&A) process for ATO/ATC authorizations as needed within Enterprise Mission Assurance Support Service (eMASS).
At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits at https://www.colsa.com/culture_benefits/ .
Required Skills
Required Experience
Required Qualifications
- Associate’s Degree or a Bachelor’s Degree in related field, or equivalent experience.
- Minimum of 3 related certifications may be used in place of unrelated degree field.
- IAT Level III Certification
- Minimum of 8 to 10 years of work related experience.
- Strong written and verbal communication skills.
- U.S. Citizenship required
- Top Secret Security Clearance with SCI eligibility
- One of the following certification options:
- McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), or Splunk Certification
- OR 3 years' experience with McAfee Endpoint Security, Assured Compliance Assessment Solution (ACAS), Splunk, and/or experience implementing network/enclave/system security toolsets with experience reviewing technical assessment reports and prioritizing technical corrective actions AND the ability to obtain and maintain certifications in the required tools within 6 months of start date
Preferred Qualifications
- Experience in technical review / management / assessment of Software, Cloud, Firewalls, Network Defense, Ports, Protocols, and Services Management, and/or DevSecOp
Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.