Apply on Employer Site

COLSA · 4 hours ago

Information Systems Security Engineer - MEKS

Huntsville, AL

Full-time

Onsite

Senior Level, Lead/Staff

10+ years exp

COLSA is a company focused on developing secure practices for software releases in cloud environments. The Information Systems Security Engineer will be responsible for ensuring security compliance and implementing best practices for software development, while coordinating with various teams to maintain security standards.

Cyber SecuritySoftwareInformation Technology

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Develop the necessary tests and security scans to support multiple MEKS software releases in a cloud environment

Build, secure, and deploy artifacts/images to deploy on the MEKS CI/CD pipeline

Secure the cloud environments by ensuring cloud configurations and settings are adhering to established security protocols

Ensure software development efforts are utilizing industry best practices

Develop, modify, or refine the necessary items for IATT/ATO procurement on all identified networks

Draft and deliver all IATT/ATO documentation necessary for RMF compliance into Xacta

Identify, evaluate, scope, and prioritize all necessary items and controls for RMF compliance and enter items into Xacta

Coordinate with the Cyber Team and technical team to develop an RMF process for control adherence

Support system security requirements, design security layout or architecture, and determine required security tools and existing tool functionality

Provide Continuous Monitoring (ConMon) to determine if the complete set of planned, required, and deployed security controls continue to be effective. Assess the security impacts by continuously monitoring logs, source code, inventories, and other items necessary for security compliance

Provides full assessment of system’s security posture

Performs security testing to verify cyber security integrity of the product. Designs and recommends mitigations

Develops security policies and procedures

May provide technical expertise and guidance to more junior team members

Qualification

Information Systems Security EngineeringNIST Cybersecurity FrameworkRisk Management Framework (RMF)Security+CISSP CertificationCloud Security PracticesContinuous Monitoring (ConMon)Technical ExpertiseSecurity Policies Development

Required

Bachelor's degree in computer science, information technology, cyber security, engineering, or related field or equivalent work experience

Minimum of 10 or more years of experience conducting information systems security engineering activities to include capturing and refining information security requirements and ensuring their integration into information technology component products through purposeful security design or configuration

Knowledge and understanding of the National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) and the NIST Risk Management Framework (RMF)

Ability to obtain a DoD 8570/8140 Baseline Certification (Security+, CISSP or equivalent) within 90 days of hire

U.S. Citizenship required; Active DoD SECRET clearance required to start with the ability to obtain Top Secret clearance with eligibility for SCI and a CI Scope Polygraph after start

Preferred

Current Security + CE or CISSP is highly preferred

Current DoD TS/SCI is highly preferred

Company

COLSA

COLSA's full-scale capabilities include cyber and information warfare, rapid prototyping and engineering, uncrewed systems, acquisition, logistics, studies and analysis, data science, and systems and software engineering.

Founded in 1980

Huntsville, Alabama, USA

1001-5000 employees

http://www.colsa.com

Funding

Current Stage

Late Stage

Leadership Team

Van Corum

Deputy CEO & CFO

Ivan Garcia

Chief Technology Officer

Company data provided by crunchbase