General Summary: Performs system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings. Also responsible for serving as an Information Systems Security Officer (ISSO) for systems assigned. Responsibilities of an ISSO include, but are not limited to, maintenance of authorization packages, account management, security auditing, and configuration management reporting. Principal Duties and Responsibilities (*Essential Functions): + Develops Risk Management Framework (RMF) Certification and Accreditation documentation, standard operating procedures, policies, and security instructions for both networked and stand-alone computer systems and provides oversight and guidance for multiple systems. + Supports the Cyber Security Program to include, but not limited to, Cyber Security policy, procedures, and regulations to assist with identifying potential Cyber Security issues. + Monitors, evaluates, and maintains systems and procedures to safeguard information systems, networks, and databases. + Implements, enforces, communicates, and develops security policies or plans for data, software applications, hardware, telecommunications, and information systems security education/ awareness programs. + Establishes and satisfies system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands. + Demonstrated Security Technical Implementation Guide (STIG) and Security Requirements Guide (SRG) experience in population and review + Experience performing Security Center and Assured Compliance Assessment Solution (ACAS) scan review, analyzation and troubleshooting, as well as, using the results to populate POA&Ms. + Experience working in Enterprise Mission Assurance Support Service (eMASS) + Comfortable working in a closed environment + Comfortable with setting deadlines and measurable results + Comfortable working with all types of personnel at all levels (contractors, government) At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here (https://www.colsa.com/culture\_benefits/) . Required SkillsRequired Experience Required Qualifications + Bachelor’s Degree in related field, or equivalent experience. + Minimum of 8 years of work-related experience. + Currently active Security+ CE certification or other equable DoD 8570 Information Assurance IAM-I level certification. + Acctive DoD SECRET security clearance; US Citizenship required. + Experience determining and assessing vulnerabilities including planning, testing, and documenting (DoD) accreditation packages for Information Technology (IT) systems and networks, specifically within RMF. + Working knowledge of eMASS, ACAS, DISA STIGS, and STIG-Tools. + Strong written and verbal communication skills. + Must have good interpersonal skills and the ability to adapt to a dynamic customer-oriented environment. Preferred Qualifications + CISM, CISSP or other IAM II/III certification + Experience applying DISA STIGS, conducting vulnerability audits, security configuration checks, and system configuration scans to meet Cyber Security requirements. + Knowledge of Information Security and Auditing. + Knowledge of Federal and DoD Guidance DoDI 8500.1, DoDI 8500.2, DoDI 8510.01, SP 800-57, SP 800-53, and CNSSI 1253. + Knowledge of US Army RMF requirements. + Knowledge of HBSS operations + Knowledge of Cisco Networking Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.