General Summary: 

The Senior IT / OT Analyst serves as a critical asset in supporting the Army customer, directly interfacing with government customer, stakeholders, and cross-functional teams. The ideal candidate brings robust expertise in Zero Trust architecture, Identity, Credential, and Access Management (ICAM) principles, Voice modernization initiatives, IPv6 implementation, Windows 11 migration strategies, and Risk Management Framework (RMF) processes tailored to Army and DoD environments. This role requires an understanding of IT/OT best practices, the RMF lifecycle, organizational leadership, and a working knowledge of policy development and analysis of laws, directives, and regulations, as well as firsthand experience in Information Technology practices within the Army environment. Additionally, this position demands knowledge and experience in Operational Technology (OT) and Control Systems architecture. The candidate possesses the ability to review, analyze, and interpret assessments from teams like Cyber Protection Teams (CPTs) and Black Start Exercises (BSEs), and present findings to senior leadership in a clear, actionable format.  This is a hybrid position and requires travel.

Principal Duties and Responsibilities 

CIO Experience & Strategic Planning:  

Collaborates with senior leadership to align IT/OT and Information Technology strategy with broader organizational goals.  Collaborates with IT / OT stakeholders and system owners to seamlessly integrate information technology initiatives into IT and OT infrastructure, ensuring alignment with organizational goals and security standards.  Supports and coordinates the planning and implementation of the Army's transition to IPv6, for IT / OT under the organization’s purview.   Supports the Windows 11 migration, developing secure migration roadmaps that minimize operational disruptions for Control Systems in their environment while adhering to DoD standards.  Leads and supports the design, implementation, and optimization of IT/OT strategies to safeguard organizational assets, including IT infrastructure, Operational Technology (OT) systems, applications, and sensitive data.   Advises stakeholders how to implement and optimize Zero Trust principles to ensure continuous verification, least-privilege access, and real-time threat mitigation across IT and OT infrastructures.  Provides guidance and mentorship to junior analysts and staff. 

Risk Management & Compliance:  

Consults with system owners to review risk assessments for IT and OT systems, identify vulnerabilities, and provide governance-focused recommendations for mitigation strategies in compliance with RMF and NIST standards.  Supports system owners within the IT / OT community by providing guidance on integrating cybersecurity and IT initiatives into their systems, ensuring compliance with organizational standards and security best practices.  Works closely with stakeholders to ensure compliance with RMF standards and requirements in accordance with organizational guidelines.  

Policy Development & Regulatory Analysis:  

Develops, reviews, and analyzes policies with an emphasis in IT / OT, ensuring alignment with applicable laws, directives, and regulations while addressing the unique information technology and operational requirements of both environments.  Stays current on evolving legal and regulatory requirements, including DoD and Army-specific standards, and ensures organizational compliance with federal information technology-related laws and directives.  Develops and supports initiatives to integrate Zero Trust, IPv6, and Windows 11 strategies into the Army's Operational Technology and IT environment, ensuring alignment with security objectives.   Shapes the design and informs the implementation of ICAM frameworks to ensure secure identity lifecycle management and access control policies across IT and OT systems.  Leverages ICAM principles to enhance identity governance, multi-factor authentication (MFA), and role-based access for personnel and systems.  Ensures alignment of ICAM initiatives from Army policies and DoD directives to the OT environment.  

Security Documentation & Reporting:  

Provides clear, concise reports on risk posture to senior leadership. 

 

Incident Response & Mitigation:  

Supports and advises system owners in responding to security incidents across IT and OT environments, offering guidance on the development of incident response protocols and procedures.   Assists with reviewing and analyzing post-event analyses and recommendations to enhance the security posture and resilience across IT and OT environments.  Develops and refines incident response protocols, incorporating lessons learned into Army-wide cybersecurity practices. 

Assessment Analysis & Presentation:  

Analyzes assessments and findings from Cyber Protection Teams (CPTs), Black Start Exercises, and other relevant IT/OT assessments.   Provides a comprehensive analysis of the “so-what” of these assessments, highlighting key takeaways, risks, and recommendations for improvement.   Presents findings in a clear, concise presentation format to senior leadership, ensuring the leadership team is informed and equipped to make strategic decisions based on these analyses. 

Collaboration with Cross-Functional Teams:  

Partners with stakeholders and teams to implement IT/OT best practices across all levels of the program.  

At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here.