COLSA
COLSA is seeking a Cybersecurity Specialist to deliver information cybersecurity direction and support consolidating NASA's enterprise IT system.
* Principal Duties and Responsibilities ( Essential Functions):
Apply knowledge of cybersecurity principles to technical assignments.
Develop and implement enterprise Cybersecurity standards in coordination with Government entities.
Ensure compliance with federal cybersecurity regulations, including NIST 800-53, NIST 800-171, FISMA, FedRAMP, and other relevant guidelines.
Coordinate, develop, and recommend security processes for the organization, ensuring adherence to compliance frameworks.
Identify and report security violations while recommending appropriate solutions.
Collaborate with stakeholders to develop and implement security processes and policies, including security documentation and risk assessments.
Support the preparation and submission of security compliance documentation, including RBDs, PPOAMs, ATOs, PTAs, ISAs, SAPs, SIAs and SARs.
Conduct vulnerability and risk analyses of computer systems and applications at various development stages, ensuring compliance with regulatory requirements.
Ensure the protection of information system assets by implementing robust security controls that meet compliance standards.
Perform cyber monitoring and ensure timely incident response in accordance with established procedures and compliance guidelines.
Provide leadership and support for critical cybersecurity efforts, including after-hours response to incidents, ensuring compliance with reporting requirements.
Communicate security metrics and insights to senior stakeholders, incorporating compliance-related performance indicators.
Prepare and distribute cybersecurity and Information Assurance (IA) reports, ensuring they meet compliance requirements.
Act as a point of contact for NCAPS cyber/IA activities, coordinating with NASA enterprise contract vendors and ensuring compliance with federal cybersecurity mandates.
At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here: https://www.colsa.com/culture_benefits/
Required Skills
Required Experience
Bachelor's degree or higher in related field
Minimum of 4 years of related experience
US Citizenship required; must be able to pass a NASA background investigation for a position of Public Trust
Strong written and verbal communication skills with the ability to present technical concepts in a business-like manner
Proven experience working in fast-paced environments that require teamwork and coordination
Expertise in cybersecurity frameworks, risk assessment methodologies, and compliance standards, including NIST, ISO 27001, CIS Controls, and other relevant government and industry guidelines
Ability to lead incident response efforts and develop strategic security solutions that align with compliance requirements
Experience interfacing with both client managers and system users to drive cybersecurity requirements
Familiarity with tools and platforms including Confluence, Jira, BigFix, AWS AlienVault, DevSecOps pipeline, ARCHER, WordPress, custom code reviews, Tenable, Splunk, SaaS, and IaaS
Understanding of cybersecurity frameworks and compliance standards such as NIST 800-53, NIST 800-171, FISMA, FedRAMP, and CIS benchmarks
Experience working with security compliance documentation
Familiarity with security tools including the ability to design, implement and sustain the tools
Hands-on experience with cloud security (SaaS, IaaS, AWS)
Knowledge of vulnerability assessments, security audits, and incident response procedures
Strong written and verbal communication skills for reporting compliance findings and security recommendations
Ability to work in a fast-paced agile team-oriented environment while managing multiple security initiatives
Problem-solving skills with the ability to analyze and mitigate security risks
Experience interfacing with both technical teams and executive stakeholders to drive cybersecurity initiatives
Preferred Qualifications
SAFe Agile Certification
ITIL v4 - Foundation
Experience managing operations in an Agile environment
Experience with SecDevOps and Agile processes and/or tools
Familiarity with the general IT practices and terminology
Highly responsible, team-oriented individual with very strong work ethic; self-starter
Hands-on experience in technical operations, including system administration, network security, or an equivalent role
Experience performing security reviews of custom code and applications
Applicant selected will be subject to a government security investigation and must meet eligibility requirements for Public Trust. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.
* Principal Duties and Responsibilities ( Essential Functions):
Apply knowledge of cybersecurity principles to technical assignments.
Develop and implement enterprise Cybersecurity standards in coordination with Government entities.
Ensure compliance with federal cybersecurity regulations, including NIST 800-53, NIST 800-171, FISMA, FedRAMP, and other relevant guidelines.
Coordinate, develop, and recommend security processes for the organization, ensuring adherence to compliance frameworks.
Identify and report security violations while recommending appropriate solutions.
Collaborate with stakeholders to develop and implement security processes and policies, including security documentation and risk assessments.
Support the preparation and submission of security compliance documentation, including RBDs, PPOAMs, ATOs, PTAs, ISAs, SAPs, SIAs and SARs.
Conduct vulnerability and risk analyses of computer systems and applications at various development stages, ensuring compliance with regulatory requirements.
Ensure the protection of information system assets by implementing robust security controls that meet compliance standards.
Perform cyber monitoring and ensure timely incident response in accordance with established procedures and compliance guidelines.
Provide leadership and support for critical cybersecurity efforts, including after-hours response to incidents, ensuring compliance with reporting requirements.
Communicate security metrics and insights to senior stakeholders, incorporating compliance-related performance indicators.
Prepare and distribute cybersecurity and Information Assurance (IA) reports, ensuring they meet compliance requirements.
Act as a point of contact for NCAPS cyber/IA activities, coordinating with NASA enterprise contract vendors and ensuring compliance with federal cybersecurity mandates.
At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here: https://www.colsa.com/culture_benefits/
Required Skills
Required Experience
Bachelor's degree or higher in related field
Minimum of 4 years of related experience
US Citizenship required; must be able to pass a NASA background investigation for a position of Public Trust
Strong written and verbal communication skills with the ability to present technical concepts in a business-like manner
Proven experience working in fast-paced environments that require teamwork and coordination
Expertise in cybersecurity frameworks, risk assessment methodologies, and compliance standards, including NIST, ISO 27001, CIS Controls, and other relevant government and industry guidelines
Ability to lead incident response efforts and develop strategic security solutions that align with compliance requirements
Experience interfacing with both client managers and system users to drive cybersecurity requirements
Familiarity with tools and platforms including Confluence, Jira, BigFix, AWS AlienVault, DevSecOps pipeline, ARCHER, WordPress, custom code reviews, Tenable, Splunk, SaaS, and IaaS
Understanding of cybersecurity frameworks and compliance standards such as NIST 800-53, NIST 800-171, FISMA, FedRAMP, and CIS benchmarks
Experience working with security compliance documentation
Familiarity with security tools including the ability to design, implement and sustain the tools
Hands-on experience with cloud security (SaaS, IaaS, AWS)
Knowledge of vulnerability assessments, security audits, and incident response procedures
Strong written and verbal communication skills for reporting compliance findings and security recommendations
Ability to work in a fast-paced agile team-oriented environment while managing multiple security initiatives
Problem-solving skills with the ability to analyze and mitigate security risks
Experience interfacing with both technical teams and executive stakeholders to drive cybersecurity initiatives
Preferred Qualifications
SAFe Agile Certification
ITIL v4 - Foundation
Experience managing operations in an Agile environment
Experience with SecDevOps and Agile processes and/or tools
Familiarity with the general IT practices and terminology
Highly responsible, team-oriented individual with very strong work ethic; self-starter
Hands-on experience in technical operations, including system administration, network security, or an equivalent role
Experience performing security reviews of custom code and applications
Applicant selected will be subject to a government security investigation and must meet eligibility requirements for Public Trust. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.