Senior Security Control Assessor

A leading Firm is looking for a skilled Senior Security Control Assessor (SCA). As a key member of the cybersecurity team, the Senior SCA will be responsible for evaluating and validating the security controls implemented in DOD systems to ensure compliance with established security policies and guidelines.

-Location: Onsite (DMV Area)

-Salary: $165,000-$200,000

-Security Clearance: Active TS/SCI Polygraph

Responsibilities:

• Conduct in-depth security assessments of DOD information systems, analyzing security controls and identifying vulnerabilities and weaknesses.
• Evaluate and validate the effectiveness of security controls in accordance with DOD security frameworks, including the Risk Management Framework (RMF).
• Prepare detailed assessment reports documenting findings, recommendations, and risk assessments.
• Collaborate with system owners and stakeholders to ensure accurate and comprehensive documentation of security controls and assessment results.
• Identify and prioritize security risks based on assessment findings.
• Provide expert guidance to stakeholders on risk mitigation strategies and corrective actions.
• Ensure that DOD information systems comply with applicable cybersecurity policies, regulations, and standards.
• Stay current on emerging threats, vulnerabilities, and industry best practices to enhance the security posture of DOD systems.
• Work closely with system administrators, security engineers, and other cybersecurity professionals to address identified vulnerabilities and implement security improvements.
• Communicate effectively with leadership and stakeholders, providing updates on assessment progress and security posture.
• Participate in the development and enhancement of security assessment processes, tools, and methodologies.
• Contribute to the improvement of the overall cybersecurity posture of the DOD through lessons learned and best practices.

Qualifications:

• Bachelor's degree in Computer Science, Information Technology, or a related field. Advanced degrees and relevant certifications (e.g., CISSP, CISM, CISA) are highly desirable.
• Minimum of 3 years of experience in conducting security assessments within the DOD environment.
• Proven experience with the Risk Management Framework (RMF) and familiarity with DOD cybersecurity policies and guidelines.
• Expert knowledge of security controls, vulnerability assessments, and risk management practices.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Clearance: Active TS/SCI Polygraph is required.

Benefits:

• Competitive salary and benefits package.
• Opportunities for professional development and training.
• Meaningful contribution to national security initiatives.
• Collaborative and inclusive work environment.

If you are a dedicated Security Control Assessor, we invite you to apply and contribute to the success.