Army Organic Industrial Base (OIB) Senior Cyber Analyst

Tracking Code

9541-987

Posted Date

4/9/2026

Job Location

Huntsville, Alabama

Location of Position

Huntsville, Alabama

Work Arrangement

On Site: 100%

Position Type

Full-Time/Regular

Clearance Required?

Yes

Level of Clearance Required

Secret

COLSA Corporation is seeking a highly skilled Organic Industrial Base (OIB) Cybersecurity Analyst to join our team in Huntsville, Alabama. As a senior-level cybersecurity professional, you will play a critical role in protecting our clients' networks and systems from security threats.

The Organic Industrial Base (OIB) Cybersecurity Analyst is responsible for strengthening the cyber defense posture of critical industrial and operational environments. This role focuses on developing tactics, techniques, and procedures (TTPs), guiding local defenders, identifying network and security deficiencies, and producing actionable defender playbooks to enhance resilience across OIB systems.

Key Responsibilities

Research, develop, and document cyber defense tactics, techniques, and procedures (TTPs) aligned with current threat intelligence and adversary behaviors
Translate intelligence and real-world incidents into practical defensive guidance for operational environments
Continuously update TTPs based on evolving threats and lessons learned
Provide direct advisory support to local cybersecurity defenders and system administrators
Deliver clear, actionable recommendations for improving detection, response, and mitigation capabilities
Conduct training sessions, workshops, and briefings to enhance defender readiness
Analyze enterprise and industrial networks to identify security gaps, misconfigurations, and architectural weaknesses
Assess existing monitoring, logging, and incident response capabilities
Prioritize deficiencies based on operational risk and mission impact
Design and maintain local defender playbooks for incident response, threat hunting, and defensive operations
Ensure playbooks are tailored to specific environments (IT, OT, ICS) and mission requirements
Incorporate step-by-step procedures, escalation paths, and decision frameworks
Leverage threat intelligence to map adversary activity to defensive actions
Align defensive strategies with frameworks such as MITRE ATT&CK and ICS-specific threat models
Support proactive threat hunting and detection engineering efforts
Coordinate with internal teams, government stakeholders, and partner organizations
Produce detailed reports, risk assessments, and executive summaries
Track remediation efforts and measure improvement in defensive posture

At COLSA, people are our most valuable resource and centered at our core value. We invite you to unite your talents with opportunity and be a part of our “Family of Professionals!” Learn about our employee-centric culture and benefits https://www.colsa.com/culture_benefits/

Required Skills

Network security monitoring
Security event analysis
Vulnerability assessment
Compliance auditing
Security requirement validation
Threat mitigation
Incident response
Security policy implementation
Risk management
Technical documentation
Leadership and team training
Trend analysis of security events
System certification and accreditation
Security testing and evaluation
Network configuration assessment

Required Experience

Associate's or Bachelor's Degree in cybersecurity, information technology, or related field
- Minimum of 3 related certifications if degree is in unrelated field
Minimum of 12+ years of work-related experience in cybersecurity
Must have a minimum of an active Secret clearance; US citizenship required
Strong understanding of network architecture and protocols (TCP/IP, routing, segmentation) and industrial environments (SCADA, ICS, OT systems)
Experience developing TTPs or standard operating procedures for a high level Army Command and incident response or defender playbooks
Familiarity with security frameworks (e.g., MITRE ATT&CK, NIST, CIS Controls)
Strong analytical and problem-solving abilities
Ability to translate complex technical issues into clear, actionable guidance
Excellent written and verbal communication skills
Experience working in mission-critical or high-security environments
Self-driven with the ability to operate independently and in team settings
Future certifications may be required

Preferred Qualifications

Advanced degree preferred
Experience supporting DoD, critical infrastructure, or manufacturing environments
Knowledge of Cyber Mission Assurance to include decomposition of findings from cyber vulnerability assessments to track for mitigation activities, cost, and timeline to completion
Previous AMC support preferred

Applicant selected will be subject to a government security investigation and must meet eligibility requirements for access to classified information. COLSA Corporation is an Equal Opportunity Employer, Minorities/Females/Veterans/Disabled. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

The salary range, if referenced, represents a good faith estimate. COLSA considers various factors when determining base salary offers, but not limited to, location, the role, function and associated responsibilities, a candidate’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements.

COLSA offers a comprehensive and customizeable benefits program which includes Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, Accidental Death & Dismemberment, Supplemental Income Protection Programs, 401(k) with company match, Flexible Spending Accounts, Employee Assistance Program, Education & Certification Reimbursement, Employee Discount Program, Paid Time Off and Holidays.

This position will be posted for a minimum of 3 business days. If a candidate has not been selected at that time, it will continue to be posted until a suitable candidate is selected or the position is closed.