6,525 Cybersecurity Specialist jobs in the United States

**Description**
SAlC is seeking a **Cybersecurity Specialist** to support the U.S. Army Combat Capabilities Development Command (CCDEVCOM), Engineering and Systems Integration (ESl) Directorate, Quick Reaction Capability (QRC) Branch.
**This position is on-site in Aberdeen, MD on Aberdeen Proving Ground (APG).**
ln support of the information Analysis Center Multiple Award Contract (lAC MAC) and Task Order (TO), SAlC is seeking a qualified, cleared, and experienced professional who has in-depth experience in the achievement of strategic goals and objectives related to the ongoing execution and maturity of its cybersecurity and assessment and authorization (A&A) programs.
**Job Responsibilities:**
+ Support the maintenance and upkeep of system packages using a GRC application (e.g., eMASS / XACTA) and/or customer tool(s) to ensure auditability and report on the security posture of assigned systems.
+ Support the Army's risk management process by maintaining visibility and awareness of changes to the cyber threat landscape that impact the security posture of their assigned systems and ensure efforts to address security risk are executed efficiently and on schedule.
+ Interface broadly with internal branch customers as well as external branch stakeholders to support achievement of the program's strategic goals and objectives and mature its A&A capabilities and services.
+ Work independently and as a member of a team to guide federal customers through the Risk Management Framework, focusing on A&A and continuous monitoring lifecycles.
+ Execute A&A and ongoing authorization activities and provide guidance and technical direction to SO and Federal ISSOs, as required. Serve as a interface on status of packages for their assigned systems.
+ Collaborate with the Security Engineering and Architecture team members on risk assessments, impact assessments, vulnerability and compliance management and security change requests to ensure system compliance, up-to-date package information, and that all system changes are being executed within the configuration control lifecycle.
+ Support the GRC PM and GRC Lead in ensuring a coordinated and collaborated approach on whole-of-program efforts in support of RMF/CSF maturity.
+ Provide technical guidance and best practices to the team and customers to ensure that the agency achieves maximum value from its IT investments.
**Qualifications**
**Required Education:**
+ Bachelors and five (5) years or more experience; Masters and three (3) years or more experience; PhD and zero (0) years or more experience; four (4) years of experience considered in lieu of degree.
**Required Skills:**
+ Demonstrated experience with establishing, implementing, and maintaining the A&A lifecycle using the NIST RMF.
+ Experience with vulnerability scanning reports and findings from Nessus, Security Center, and/or EvaluateStig.
+ Demonstrated knowledge in the field of risk management and compliance to efficiently work on and apply frameworks including ISO, NIST CSF, NIST 800-53, NIST 800-171, NIST 800-137, NIST 1800 series, etc.
+ Demonstrated experience with the development and update of policies to align with OMB, DHS, NIST, CNSS, ICD, Congressional and other cybersecurity mandates, and directives.
+ Experience with Application Security Audits and Risk Scoring.
+ Maintain updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, ISO, NIST 800-53, NIST 800-34 etc.
+ Ability to independently manage tasks across multiple competing priorities and work tasks in parallel to maintain deadlines.
+ Must be able to lift, pull, push and carry up to 30 pounds, unassisted, on a regular basis.
+ Ability to stand, walk, bend, kneel, squat, climb ladders/equipment, and crawl for extended periods.
**Clearance:**
+ Must have an active TS/SCI with current CI polygraph.
Target salary range: $120,001 - $60,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
REQNUMBER:
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately 6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability

Title:
Cybersecurity Specialist
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
+ Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
+ Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
+ Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
Job Summary
KBR is seeking an experienced Cybersecurity Specialist to support the acquisition of aeronautical systems and subsystems.
Key Responsibilities:
The successful candidate will utilize their expertise in developing and analyzing systems and cybersecurity engineering artifacts used to support the integration of advanced avionics systems and subsystems at the Air Force Life Cycle Management Center (AFLCMC) C-130 Program Office at Robins Air Force Base. The candidate should be experienced and successful at solving complex cyber security issues, enjoy working in a dynamic, responsive, and collaborative environment, and dedicated to the success of our customers against advanced, persistent threats.
+ Support and advise the C-130 Information System Security Manager (ISSM) working as part of a dynamic team to develop cybersecurity strategies, program protection planning, and support development of artifacts required to obtain Interim Authorizations to Test (IATTs) and Authorizations to Operate (ATOs) according to the Risk Management Framework (RMF)
+ Review program documentation (e.g. concept, requirements, design, manuals, reports, deficiency/change reports and program schedules) to ensure that established security requirements are adequately addressed and sustained
+ Solve complex cyber security issues while working in a collaborative environment dedicated to the success of our customers against advanced, persistent threats
+ Conduct analysis on components that comprise integrated weapons systems such as data environments, software, data, and hardware to identify the cybersecurity requirements and risks
+ Analyze and identify component and subsystem vulnerabilities and risks to determine potential solutions and safeguards including system survivability and interoperability
+ Analyze systems to ensure cybersecurity controls, risk mitigations, and testing are in compliance as they relate to the Risk Management Framework (RFM)
+ Occasional travel required (~15%)
Work Environment:
+ Location: On-site
+ Travel Requirements: Minimal 0-20%
+ Working Hours: Standard
Qualifications:
Required:
+ Bachelor's degree and minimum of 5-7 years of Information Systems Security experience. In lieu of the degree an additional eight (8) years related professional experience is required.
+ DoD -M IAM Level I certification is required
+ Experience in:
+ RMF
+ Life cycle support on developmental programs
+ Collaborating with Program Offices on Weapon Systems Programs
+ Weapon system/airborne platform software, avionics or networking desired
+ DoD Clearance Requirement: Secret
Desired:
+ Familiarity with DoD acquisition policies and processes, a plus, but not required.
+ C-130 or other similar fixed wing or military aircraft experience
Ready to Make a Difference?
If you're excited about making a significant impact in the field of space defense and working on projects that matter, we encourage you to apply and join our team at KBR. Let's shape the future together.
KBR Benefits
KBR offers a selection of competitive lifestyle benefits which could include 401K plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We support career advancement through professional training and development.
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Join the Cleveland Clinic team where you will work alongside passionate caregivers and making a lasting, meaningful impact on patient care. Here, you will receive endless support and appreciation while building a rewarding career with one of the most respected healthcare organizations in the world.
A caregiver in this role collaborates with IT leadership, staff, and business partners to design and implement effective cybersecurity solutions that align with Cleveland Clinic's operational and strategic objectives. As a Cybersecurity Specialist, you will be responsible for managing third-party and supplier risk across all domains, ensuring robust business continuity planning, and embedding supplier risk requirements into new continuity management tools. In this role, you will utilize your skills in supplier risk management, communication, and critical thinking needed to drive innovation and engage stakeholders across the organization. This role offers meaningful learning and development opportunities through daily interactions with senior leadership, honing strategic thinking, and driving innovation.
**A caregiver in this position works remotely out of Ohio, Florida, or Nevada, Monday-Friday, 8:00am-5:00pm.**
A caregiver who excels in this role will:
+ Perform all necessary duties to ensure the safety of digital assets and to protect systems from intentional or inadvertent access.
+ Provide input to solutions to identified needs, meeting specific operational and business objectives, technology capabilities.
+ Provide technical expertise and support to clients, IT management, and staff in risk assessments, implementation, and operational aspects of appropriate Cybersecurity procedures and products.
+ Assist with maintaining ongoing service relationships throughout the organization.
+ Monitor specific Cybersecurity solutions for efficient and appropriate operations.
+ Collaborate on IT projects to ensure that security issues are addressed throughout the project life cycle.
+ Research and assesses new threats and security alerts and recommends remedial action.
+ Participate in Cybersecurity projects, including planning, obtaining customer input and projecting resource requirements.
+ Ensure Analysts receive and analyze alerts from various enterprise level sensors and determine possible causes of such alerts.
+ Review security system requirements with customers and translate requirements into specific functions or deliverables.
+ Analyze and integrate security solutions into multiple platforms, including clinical and financial systems
+ Analyze flow chart processes and recommends ways to reduce steps and increase efficiency through use of technology.
+ May coach or provide guidance to lower-level Cybersecurity Analysts and support the continuous process of optimizing department resources.
+ Communicate security procedures and policies with caregivers.
+ Weigh business needs against security concerns and articulate issues to Cybersecurity peers.
+ Defend systems against unauthorized access, modification and/or destruction
+ Provide after-hours support as needed.
Minimum qualifications for the ideal future caregiver include:
+ High School diploma/GED and minimum 7 years of Information, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with at least 3 years of Cyber Security experience.
+ OR bachelor's degree and minimum or 5 years of Information, Clinical or Financial Systems experience required, including directing, planning and scheduling a major information system project, with at least 3 years of Cyber Security experience.
+ ITIL Foundations Certification required upon or within six months of hire
+ Excellent knowledge of security technology and strong analytical skills.
+ Understanding of networking/distributed computing environment concepts.
+ Requires familiarity with domain structures, user authentication mechanisms and fundamental cryptography.
+ In-depth knowledge of intrusion detection and data correlation.
+ Practical knowledge of network topology and the underlying OSI model.
+ Understands principles of client/server configuration.
Preferred qualifications for the ideal future caregiver include:
+ Bachelor's degree in information technology/computer science or related field preferred.
+ Certifications from SysAdmin, Audit, Network and Security Institute (SANS), International Information Systems Security Certification Consortium (ISC2) or Computing Technology Industry Association (CompTIA) or other position related certifications preferred
+ Certified Fraud Examiner
+ Associate Cyber Resilience Professional - Disaster Recovery Institute International
+ Completed Cisco Threat Hunting Workshop 5.2
+ U.S. Dept. of Homeland Security FEMA CDP Healthcare Leadership
+ Toastmasters' International certification or 2+ years of membership
+ Demonstrated experience implementing and aligning cybersecurity initiatives with third party risk management
+ Demonstrated experience developing and conducting live tabletop workshops and exercises
+ Demonstrated experience in documenting and auditing business continuity and supplier business continuity plans
+ Experience developing and delivering pillar strategies. This includes developing project plans on a timeline, delivering proof of concept cases, and reporting results.
+ Delivering presentations to medium- large size audiences on topics related to compliance assessments, information security, and digital security topics as well as status updates on projects and assessments.
+ 10+ years of progressive experience in business resilience, third party exit strategy planning, working with federal agencies, and cross-functional project leadership
+ Proven success as a trusted advisor to executive stakeholders, including direct engagement with CISO level
Our caregivers continue to create the best outcomes for our patients across each of our facilities. Click the link and see how we're dedicated to providing what matters most to you: Requirements:**
+ Ability to perform work in a stationary position for extended periods.
+ Ability to travel throughout the hospital system.
+ Ability to operate a computer and other office equipment.
+ Ability to communicate and exchange accurate information.
**Personal Protective Equipment:**
+ Follows standard precautions using personal protective equipment as required.
**Pay Range**
Minimum hourly: $44.53
Maximum hourly: $67.92
The pay range displayed on this job posting reflects the anticipated range for new hires. While the pay range is displayed as an hourly rate, Cleveland Clinic recruiters will clarify whether the compensation is hourly or salary. A successful candidate's actual compensation will be determined after taking factors into consideration such as the candidate's work history, experience, skill set, and education. This is not inclusive of the value of Cleveland Clinic's benefits package, which includes among other benefits, healthcare/dental/vision and retirement.
Cleveland Clinic Health System is pleased to be an equal employment employer: Women / Minorities / Veterans / Individuals with Disabilities

Job Description

Job Description

Summary :
Supports protection of exercise-related systems, communications, and data. Develops information products and manages secure information flow.
Location : Lansing, MI
Duties:

• Apply cybersecurity policies during exercises.

• Develop and maintain knowledge management tools.

• Support cyber defense readiness and secure data handling.

• Create briefings and exercise documentation.

Qualifications:

• Familiarity with DoD cyber standards and tools (WebEOC, LLIS)

• Working knowledge of ICS, NRF, NIMS

Powered by JazzHR

E8zPKWXMcE

Overview
As part of a multidisciplinary team, you will be responsible for coordinating and implementing technical controls and configuration settings and will work in a team environment alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts responsible for supporting Information System Security Engineering efforts.
Responsibilities
+ Working closely and supporting team members, vendors, and government customers
+ Implementing DoD Security Technical Implementation Guides (STIGs) on traditional Information Technology (IT) and Operational Technology (OT) systems
+ Assisting in the development and verification of documentation necessary to complete the DoD RMF assessment and authorization process
+ Conducting ICS/SCADA system inventories following DoD guidance
+ Conducting vulnerability scanning and document system vulnerabilities
+ Supporting ISO standardization and Quality inspections
+ Participating in continuous improvement of organizational cybersecurity posture
Qualifications
**Education:**
+ 5+ Years of Experience with a Master's Degree in Information Technology, Risk Management, Cybersecurity
+ 7+ Years of Experience with a Bachelor's Degree in Information Technology, Risk Management, Cybersecurity
+ 10+ Years of Experience with an Associate's Degree in Information Technology, Risk Management, Cybersecurity
+ 12+ Years with a High School Diploma
**Required Progressive Experience:**
+ Working with industry and government agencies on the design of platforms and integrated systems Working on government and/commercial projects implementing cybersecurity requirements in a variety of industrial control systems (e.g., building management, electronic security, fire alarm/mass notification, electrical distribution, power management, etc.)
+ Proficiency with ACAS and HBSS and mitigation strategies
+ Developing policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data
+ Assessment, mitigation, and closure of network vulnerabilities and vulnerability management eMASS
+ Establishing, managing, and tracking of Plan of Action & Milestones (POA&M) Applying STIGs to servers, databases, applications, and other hardware Security Readiness Review (SRR) Tools (scripts and ACAS)
+ Ability to identify, maintain, and troubleshoot control network components
+ Excellent understanding of the DoD RMF lifecycle and NIST 800-53 controls implementation
+ Awareness of NIST Special Publication 800-82, Guide to Industrial Control Systems (ICS) Security and UFC 4-010-06 Unified Facilities Criteria (UFC) Cybersecurity of Facility
+ Working knowledge of operational control systems and implementing a variety of security assessment tools
+ Working knowledge of other operational control systems
+ Familiarity with DoDIN CCRI/CCORI and CYBERCOM TASKORDS
+ Familiarity with various industry products
**One of the Required Certifications:**
+ CASP CE CISSP CISSP - ISSAP CISSP - ISSEP CSSLP CISA CISM GCED GCIH
**Also:**
+ Strong Oral, Written and Presentation Skills with the ability and experience communicating directly with Customers
+ Demonstrated background working with multidisciplinary teams
+ Demonstrated time management and organization skills to meet deadlines and quality objectives
+ Strong MS Excel, Word, PowerPoint, AUTOCAD, Cameo and Visio Skills is a plus.
**Abilities:**
+ Exposure to computer screens for an extended period of time.
+ Sitting for extended periods of time.
+ Reach by extending hands or arms in any direction.
+ Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
+ Listen to and understand information and ideas presented through spoken words and sentences.
+ Communicate information and ideas in speaking so others will understand.
+ Read and understand information and ideas presented in writing.
+ Apply general rules to specific problems to produce answers that make sense.
+ Identify and understand the speech of another person.
**We offer an excellent benefits package including:**
+ A competitive salary
+ Medical, dental, vision, life, and disability insurance
+ Paid-time off
+ Tuition reimbursement
+ 401k Retirement Plan
+ Military Reserve pay offset
+ Paid maternity leave
Pay Range
USD $124,880.00 - USD $187,320.00 /Yr.

**Overview**
SOSi is seeking a highly qualified **Senior Cybersecurity Specialist** to join our team in support of our government customer in Fort Belvoir, VA. The Senior Cybersecurity Specialist will be responsible for managing the overall cybersecurity posture and compliance of an application development program supporting the ARIMS family of applications.
**Essential Job Duties**
+ Directly interface with application development teams to integrate cybersecurity principles, adhering to DoD Instructions, directives, manuals, and Army regulations (AR25-1 & 25-2).
+ Lead and manage various IT cybersecurity projects, ensuring modifications and maintenance of GOTS applications meet government requirements.
+ Conduct assessments of cybersecurity compliance using both manual and automated software analysis tools and methods.
+ Maintain expertise in IT systems, specifically in GOTS products, and stay informed about current OMB and NARA policies and initiatives related to electronic records management.
+ Act as a project manager when assigned, managing integration and delivery of specific cybersecurity deliverables directly to the government.
+ Utilize discretion, independent judgment, and self-direction in performing complex or novel assignments that contribute to the development of new or improved cybersecurity techniques and procedures.
+ Provide technical leadership in digital records management, offering guidance to support personnel and junior engineers.
+ Responsible for ensuring that cybersecurity principles are integrated throughout the system development cycle, in accordance with DoD and Army regulations.
+ Provide technical guidance to support personnel and lower-level engineers and software professionals, and when tasked by the project manager, act in a liaison capacity with other partners.
+ Responsible for upholding the highest standards of cybersecurity, adhering to management procedures and policies, and contributing significantly to the operational efficiency and security of the IT services.
+ Perform scanning, testing, and auditing necessary to ensure that all systems, networks, and infrastructure meet Army Regulations and required compliance.
+ Oversight of the RMF process and implementation of, and adherence to, relevant agency, FISMA, and NIST guidance within the information technology environment.
+ Develop POA&Ms for all scan/audit findings and work with all applicable stakeholders to remediate systems back into compliance.
+ Develop and implement a continuous monitoring process including identification of the necessary cybersecurity capabilities.
+ Develop and maintain all agency required documentation necessary for RMF compliance.
**Minimum Requirements**
+ A bachelor's or postgraduate degree in engineering, scientific, technical, or business management disciplines from an accredited college or university.
+ At least ten (10) years of experience in a field of specialized expertise, including experience with respect to Army Records Management or similar DoD programs/projects.
+ An active in scope Top Secret security clearance or Secret with the ability to obtain a Top Secret.
+ High level of expertise in cybersecurity, with the ability to lead IT projects and perform assessments of cybersecurity requirement compliance using both manual and automated tools.
+ A proactive approach to cybersecurity challenges, a comprehensive understanding of IT systems and GOTS products, and a commitment to continuous learning and adaptation in a dynamic and critical security environment.
+ Possess a baseline and computing environment certifications for IAT-III or IAM-II IAW DoD -M (CASP, CCNP Security, CISA, CISSP, GCED, GCIH, CCSP, CAP, CISM, GSLC, CCISO, or HCISPP).
+ Thorough understanding of RMF 2.0 and FISMA policies and procedures.
+ Thorough understanding of eMASS policies and procedures.
**Work Environment**
+ Normal office conditions.
+ Core hours of operation are Monday through Friday, 0600 - 1700.
+ On government site within Ft. Belvoir, VA.
**Working at SOSi**
All interested individuals will receive consideration and will not be discriminated against for any reason.
SOSi is an equal employment opportunity employer and affirmative action employer. All interested individuals will receive consideration and will not be discriminated against on the basis of race, color, religion, sex, national origin, disability, age, sexual orientation, gender identity, genetic information, or protected veteran status. SOSi takes affirmative action in support of its policy to advance diversity and inclusion of individuals who are minorities, women, protected veterans, and individuals with disabilities.

Overview
**About M.C. Dean**
M.C. Dean is Building Intelligence. We design, build, operate, and maintain cyber-physical solutions for the nation's most mission-critical facilities, secure environments, complex infrastructure, and global enterprises. With over 7,000 employees, our capabilities span electrical, electronic security, telecommunications, life safety, automation and controls, audiovisual, and IT systems. Headquarters in Tysons, Virginia, M.C. Dean delivers resilient, secure, and innovative power and technology solutions through engineering expertise and smart systems integration.
**Why Join Us?**
Our people are passionate about engineering innovation that improves lives and drives impactful change. Guided by our core values-agility, expertise, and trust-we foster a collaborative and forward-thinking work environment. At M.C. Dean, we are committed to building the next generation of technical leaders in electrical, engineering, and cybersecurity industries.
We are seeking an **Senior Cybersecurity Specialist** to join our **Security and Electronic Systems (SES)** business Unit. As part of **(SES)** Strategic Business Unit you will be part of a team that designs, engineers, integrates, operates and maintains electronic security services inclusive of intrusion detection, access control, biometric authentication, video surveillance, audio visual, it systems, perimeter defense and command and control systems for federal, local and commercial customers across high-growth markets.
Responsibilities
Seeking a **Senior Cybersecurity Specialist** that is able to work with a dynamic team that is responsible for design, implementation, operations & maintenance, and cybersecurity for large complex resilient hardware and virtualized infrastructure. This position will Manage a team of engineers, analysts, and cybersecurity specialists-general staff supervision and evaluation, task coordination, manpower planning, risk mitigation, communications, and status tracking.
+ Be the contract Subject Matter Expert (SME) all matters related to Cybersecurity and the Risk Management Framework (RMF), and cyber compliance/tools (e.g., eMASS/XACTA, Nessus, HBSS, Splunk, etc.).
+ Drive team awareness of newly emerging Department of Defense cyber requirements.
+ Bring forward suggestions on potential new cybersecurity related tools that will drive automation of team processes.
+ Ensure Risk Assessments, Exemption/Exception requests and RMF Packages meet compliance.
+ Ensure team is monitoring, reporting, and assessing Cyber compliance for all Operations and Infrastructure on schedule and in accordance with government policies.
+ Ensure team maintenance, monitoring, reporting, and assessment of Cyber compliance on all security tools and technology.
+ Ensure team is monitoring, reporting, and assessment of Cyber internal and external policy compliance.
+ Work to mitigate risk across security system's infrastructure.
+ Interface daily with program management, operations, and engineers leads to ensure coordinated performance of program requirements and increase the security posture of the supported environment.
+ Conduct manual STIG reviews.
+ Support preparation of Plan of Action & Milestones (POAM) development to support compliance and authorization/reauthorization activities.
+ Prepare and disseminate regular Cyber Compliance/vulnerability reporting; interact with the customer to explain results and address issues.
+ Contribute to the development of Standard Operating Procedures, Work Instructions, User Guides, and checklists.
+ Work as a team to consistently learn and share advanced skills and foster team excellence.
+ Actively collaborate with the ISSO to develop, maintain, and enhance cyber security controls.
+ Collaborate with security groups such as red teams, threat intelligence and risk management to form a holistic team dedicated to thwarting attackers and reducing attack surface.
Qualifications
**Clearance/Citizen Type:** Applicants selected will be subject to a government security investigation and may meet eligibility requirements, including U.S. Citizenship, for access to classified information; **Top Secret clearance with the ability to obtain an SCI is REQUIRED**
**Education:**
+ Bachelor's Degree; Computer Science, Engineering, Information Technology, or Cybersecurity Discipline preferred, with 12+ years of demonstrated experience in Information Security, with a good working knowledge of both DoD and Federal Government Cybersecurity/Information Assurance Security policies and procedures.
+ 9+ years of applicable experience with a Master's Degree
+ 15+ years of applicable experience with an Associate's Degree
**Required Progressive Experience:**
+ Demonstrated experience leading Cybersecurity Teams.
+ Demonstrated experience with combined Risk Management Framework (RMF) and/or other system authorization and accreditation processes and NIST 800-53 controls.
+ Demonstrated experience accrediting systems using Enterprise Mission Assurance Support Service (eMASS)/Xacta or similar, McAfee Host Based Security System (HBSS) or similar, and Nessus.
+ Demonstrated ability to work effectively with technical peers/leads.
+ Current DoD 8570 IAT Level-II certificate; IAM-II or IAM-III preferred.
+ Strong oral, written and presentation skills with the ability and experience communicating with customers at various levels.
+ Demonstrated background working with multidisciplinary teams.
+ Demonstrated time management and organization skills to meet deadlines and quality objectives.
+ Strong MS Excel, Word, and PowerPoint skills.
+ Experience with Intelligence Community customers desired.
**What we offer:**
+ A collaborative team inspired by the way engineering and innovation enhance customer outcomes, improve lives, and change the world for the better. We are driven by our core values of agility, expertise, and trust.
+ An opportunity to lead and build a business with the support of an industry-leading firm that has been in business for 75 years.
+ Investment in your skills and expertise through a combination of professional and technical training programs, including leadership training and tuition reimbursement.
+ Open and transparent communication with senior leadership as well as local office management.
**We offer an excellent benefits package including:**
+ A competitive salary
+ Medical, dental, vision, life, and disability insurance
+ Paid time off
+ Tuition reimbursement
+ 401k Retirement Plan
+ Military Reserve pay offset
+ Paid maternity leave
**Abilities:**
+ Exposure to computer screens for an extended period of time.
+ Sitting for extended periods of time.
+ Reach by extending hands or arms in any direction.
+ Have finger dexterity in order to manipulate objects with fingers rather than whole hands or arms, for example, using a keyboard.
+ Listen to and understand information and ideas presented through spoken words and sentences.
+ Communicate information and ideas in speaking so others will understand.
+ Read and understand information and ideas presented in writing.
+ Apply general rules to specific problems to produce answers that make sense.
+ Identify and understand the speech of another person.

COLSA Corporation is seeking candidates for Cybersecurity positions in support of a USAF contract.
Position openings may be available at Wright Patterson AFB, OH; Warner Robins, GA; Hill AFB, UT; and/or Tinker AFB, OK.
+ Responsible for the maintenance and support of DoD and Air Force computing systems and networks (both unclassified and classified).
+ Requires the individual to obtain/maintain classified systems administrative privileges for SIPRNet and other systems.
+ Perform system trusted downloads, burning classified Compact Discs (CDs), maintain and update host system patches, implement mandated system vulnerability mitigations and set up user accesses and accounts.
+ Demonstrate proficiency in currently utilized Windows Operating Systems (OS), Windows group policy objects, DoD Cybersecurity, National Institute of Standards and Technology (NIST) Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), Endpoint Security System (SS)/Host-based Security System (HBS) and DoD Public Key Infrastructure (PKI).
+ Assist the Information Systems Security Manager (ISSM) and provide multi-discipline expertise covering project management, system security engineering, system administration, and network administration.
+ Provide cybersecurity support to assigned systems and shall assist in developing, modifying, reviewing or coordinating items that include, but are not limited to: PIT determination package, cybersecurity strategy (formerly IAS), System Security Plan (SSP), system controls traceability matrix, risk assessment report, plan of action and milestones, security assessment plan, artifacts for program review and RFP.
+ Assist in executing the cybersecurity RMF to support Assessment and Authorization (A&A) of assigned systems.
+ Reviews program office artifacts and make recommendations to support cybersecurity RMF analysis.
+ Assist in performing vulnerability, threat, and risk assessments, and security impact assessments on assigned systems, modifications, and interconnections.
+ Assist in developing an A&A report and an A&A presentation for each required system to support approval decisions.
+ Assist in managing, planning, documenting and conducting Independent Verification and Validation (IV&V) of security requirements for weapon system
+ Assist in performing cybersecurity site audits to verify architecture analysis, cybersecurity requirements and controls, verify mitigation actions, witness cybersecurity testing and evaluation, and to support final approval for Interim Authority to Test (IATT), Interim Authority To Operate (IATO), Authority To Operate (ATO), and/or Authority To Connect (ATC). Assists in documenting and reporting cybersecurity site audit findings and recommendations to the program office and/or Security Certification Authority (CA).
+ Assist in identifying the Software Assurance (SWA) pedigree (including platform software) and QA issues and documenting the results. The C
At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our "Family of Professionals!" Learn about our employee-centric culture and benefits here ( .
Required SkillsRequired Experience
One of the following combinations of education/experience:
+ MA/MS degree, and twelve (12) years of experience in the respective technical/professional discipline being performed, five (5) years of which must be in the DoD -OR-
+ BA/BS degree, and fifteen (15) years of experience in the respective technical/professional discipline being performed, five (5) of which must be in the DoD -OR-
+ HSD/GED, twenty (20) years of directly related experience, eight (8) of which must be in the DoD.
+ DoD 8570 certification required
+ U.S. Citizenship required. Must be able to obtain and maintain a Security clearance at the required level
Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

Work Arrangement: Hybrid

Agency Interview Type: Either Web Cam or In Person

Engagement Type: Contract

NOTE : Applications with resumes in PDF Format will be automatically rejected. Only Word format resumes will be considered.

Short Description:

Leads the development and delivery of IT security standards, best practices, architecture and systems to ensure information system security across the enterprise.

Complete Description:

*Candidate MUST be local to Metro Atlanta*

**US Citizen or GC-Permanent Resident**
*Tax Clearance Letter, due at the time of submission* (pls review compliance tab for instruction on how the CANDIDATE must obtain this letter)

Job Summary:

An advanced-level security professional, participates in advanced information security related projects, performs deep-dive threat hunting, incident response, vulnerability management, and security architecture design, focusing on complex and novel threats that bypass automated systems. Is trained and experienced in meeting security needs of the agency and its employees in multiple locations and ensure people, processes, and technology aligns with the desired security posture of the organization. This role typically requires extensive experience, advanced skills in threat detection and mitigation, and may involve developing and optimizing security tools and processes. Cybersecurity Specialist 3 may serve as lead worker for projects and team.

Entry Qualifications

Bachelor's degree in Computer Science/Information Technology/Information Security or related field or equivalent experience and four (4) years of proven experience and demonstrated success in technology leadership with emphasis on information security and data governance.

Key Responsibilities:

Advanced Threat Hunting:

· Proactively search for sophisticated, covert threats that evade automated detection.

· Possess a deep understanding of cybersecurity threats, vulnerabilities, security frameworks, and monitoring tools.

Complex Incident Response:

· Investigate, triage, and respond to security incidents, documenting findings for root cause analysis.

Vulnerability Assessment:

· Conduct in-depth vulnerability assessments and analyze asset discovery data to identify security gaps.

Security Architecture:

· Design and implement security solutions, often involving threat intelligence platforms and other advanced security technologies.

System Monitoring & Response:

· Actively monitor networks for unauthorized activities and respond to security incidents.

Tool Optimization:

· Evaluate and optimize existing cybersecurity tools, such as SIEM, EDR, and IDS, and recommend new technologies or processes.

· Threat Intelligence Integration:

Integrate various threat intelligence feeds into platforms like MISP to enhance detection capabilities.

Skills and Competencies:

Deep Technical Expertise:

· Mastery of intrusion detection systems (IDS), endpoint detection and response (EDR), and security information and event management (SIEM) platforms.

· High-level proficiency in computer science and information systems, network monitoring, and security software.

Vulnerability Management:

· Experience and skills with vulnerability assessment tools and techniques.

Threat Intelligence:

· The ability to gather, integrate, and analyze threat intelligence from various sources.

Incident Response (IR):

· In-depth knowledge of IR best practices and the ability to manage complex incidents.

Proactive Defense:

· A mindset focused on proactive threat hunting and prevention rather than just reaction.

Working Conditions:

• Hybrid work schedule.
• On-call rotation or occasional after-hours work in response to incidents.
  
  

DOR will conduct a background check on all candidates considered for the position. Individuals must be compliant with Georgia tax obligations.

Individuals having any overdue and unpaid taxes, or any felony convictions (no matter how long ago) will not be offered the position or hired.

All employees will be fingerprinted.