General Summary:
Performs analysis, assesses cybersecurity compliance, and evaluates user requirements on major software products.

• Performs complex analysis of software cybersecurity compliance
• Responsible for obtaining user, developer, and pipeline information to conduct analysis
• Executes SAST, DAST, IAST, and SCA activities on software products
• Responsible for analyzing test results on software
• Apply confidence factors to findings, prioritizing the most important ones to fix
• Articulate software issues to developers in an easy to understand, practical way
• Describe impacts of software weaknesses at high levels to leadership

At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits here

Required Qualifications

• Bachelor’s degree in related field or equivalent experience, advanced degree preferred.
• Minimum of 10-12 plus years of work related experience.
• Relevant certifications (CISSP, CSSLP, CySA+, or equivalent), including government directed certifications, may be required.
• Ability to clearly present and communicate technical approaches and findings.
• Familiarity with CWEs, CVEs, the NVD, and the CVSS
• Experience with SAST tools such as Coverity, Fortify, Checkmarx, and SonarQube
• Experience with DAST tools and methods suh as Valgrind, Debuggers, Fuzzing, and Sandboxing
• Experience with SCA tools such as OWASP Dependency Check, Black Duck, and Dependency Track
• Must possess a DoD Secret security clearance and be eligible to hold a Top Secret security clearance

Preferred Qualifications

• Graduate degree in Computer Science or other related field

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.