The Endpoint Security SME will provide expert-level technical guidance and support for the design, implementation, and maintenance of endpoint security solutions across the Army’s IT infrastructure. This position is critical to ensuring the confidentiality, integrity, and availability of C5ISR CSSP subscriber's environments. The SME will collaborate with various stakeholders, including cybersecurity teams, system administrators, and software developers, to proactively identify and mitigate endpoint security risks.

*Principal Duties and Responsibilities (Essential functions)

• Technical Leadership: Serve as the primary technical expert on endpoint security technologies, including Endpoint Detection and Response (EDR), Anti-Malware, Host-Based Intrusion Prevention Systems (HIPS), Data Loss Prevention (DLP), and application control.
• Architecture & Design: Design, implement, and maintain secure endpoint configurations and architectures aligned with DoD and Army cybersecurity policies (e.g., STIGs, SRGs). Focus on hardening endpoints to defend against advanced persistent threats.
• Threat Analysis & Incident Response: Analyze endpoint security alerts and incidents, conduct forensic investigations, and develop effective mitigation strategies. Participate in incident response activities as a subject matter expert.
• Vulnerability Management: Identify and assess endpoint vulnerabilities, recommend remediation actions, and track vulnerability patching efforts. Utilize vulnerability scanning tools and penetration testing results.
• Policy & Compliance: Develop and maintain endpoint security policies, standards, and procedures. Ensure compliance with applicable regulations and frameworks (e.g., NIST, FedRAMP).
• Collaboration & Training: Collaborate analysts on the team and provide training on endpoint security best practices. Mentor junior team members.

_At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefitshere. _

Required Skills

Required Experience

• One of the following combinations of education/experience:

  • Master's degree in related field or equivalent experience + 12 years of related experience in information security, cyber security, or a related field
  • Bachelor's degree in related field or equivalent experience + 16 years of related experience in information security, cyber security, or a related field
  • Expert knowledge of End Point Security
  • Prior experience in leading a SOC team
  • Excellent analytical, problem-solving, and communication skills
  • CISSP certification required
  • DoD Secret security clearance required; US Citizenship required

Preferred Qualifications

• Expert knowledge with Elastic
• Experience with cloud security
• Familiarity with Army and DoD cybersecurity policies and procedures

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.