General Summary:
Provide support to RMF compliance and procurement of IATT/ATO for Intelligence Mission Data (IMD) programs on all identified networks.

*Principal Duties and Responsibilities (Essential Functions):

• Monitors the network and supporting systems to detect security compromise events (including intrusions and virus incidents). *
• Provides network and security operations technical analysis, assessment, and recommendations.*
• Identifies where systems/networks deviate from acceptable configurations, enclave policy, or local policy.*
• Conducts audits to ensure information systems security policies and procedures are implemented as defined in security plans and best practices. *
• Performs detailed analyses to validate established security requirements and to recommend additional security requirements and safeguards.*
• Establishes strict program control processes and policies to ensure mitigation of risks and supports obtaining certification and accreditation of systems. *
• Supports the formal testing requirements through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports.*
• Performs evaluations (compliance audits) and/or active evaluations (vulnerability assessments). *
• Develop and maintain certification documentation, requirements, standard operating procedures, policies and security instructions for networks and stand-alone systems via Xacta.*
• Coordinate with and between relevant CIO elements, software development team, business management team, and the IMD Program Management Office (PMO).*
• Develop security control adherence process.*
• Develop and coordinate documentation and requirements to comply with NIST controls, STIGs, and RFM controls.*
• Maintain compliance with DIA, Federal, DoD, and IC policies, instructions, and directives.*
• Provide network and security operations technical analysis, assessments, and recommendations to inform government Technical Point of Contact (TOPC) on architecture design and system security requirements.*
• Provide continuous monitoring of security controls to assess security compliance.*
• Leads response teams to ensure any anomalies are corrected in accordance with government or industry standards.

_At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefitshere. _

Required Skills

Required Experience

Required Qualifications

• Associate's degree or Bachelor’s degree in related field or equivalent experience, advanced degree preferred.
  • Minimum of 3 related certifications may be used in place of unrelated degree field.
• Minimum of 10 plus years of work-related experience maintaining the appropriate security posture for an information system or program.
• Knowledge and understanding of the NIST Framework for Improving Critical Infrastructure Cybersecurity and the NIST Risk Management Framework.
• Ability to clearly present and communicate technical approaches and findings.
• Current/past military experience correlating to mission objectives
• U.S. Citizenship required; Current active DoD Top Secret security clearance with SCI eligibility required along with ability to successfully complete a Counterintelligence Polygraph (CI Poly) after start
• Current CompTIA Security + certification is required.
• Current CompTIA CASP certification or CISSP is required.

Preferred Qualifications

• Demonstrated experience providing mission risk analysis and mission assurance for DoD programs on classified networks is preferred.
• Demonstrated experience with the Risk Management Framework (RMF) and Assessment & Authorization is preferred.
• Demonstrated experience/proficiency with DISA STIGs is preferred.
• Demonstrated experience/proficiency with eMASS is preferred.
• Demonstrated experience authoring and revising Standard Operating Procedures (SOP) and test plans is preferred.
• Demonstrated experience in successful completion and maintaining of ATO's and IATT's is preferred.
• Demonstrated experience in professional interaction with government leaders and decision makers is preferred.
• Demonstrated experience translating technical findings into mission-level risk recommendations for ISSM and Authorizing Official (AO) decision-making is preferred.
• Demonstrated proficiency with continuous monitoring and vulnerability triage/mitigation is preferred.

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.