Security Control Assessor

We're looking for a Security Control Assessor to join our team. As a systems security and network security engineer, you will identify the appropriate tools, systems, and applications needed to assess vulnerabilities and recommend the best solution and security strategy. You'll assess security threats and implement infrastructure controls, and have impact on the mission by supporting accreditation and authorization packages for both new and existing systems.

Requirements

• Experience utilizing NIST 800-53 security controls
• Experience with NIST 800-37 Risk Management Framework (RMF) requirements
• Experience supporting system authorization activities, including the development and maintenance of security documentation such as System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms)
• Experience monitoring system security posture and identifying risks, vulnerabilities, and compliance gaps
• Experience tracking and managing POA&Ms and coordinating remediation activities with system stakeholders
• Experience assessing the security impact of system changes and supporting configuration and change management processes
• Experience preparing systems for security assessments, audits, and Authorizing Official reviews
• Ability to support continuous monitoring activities, including vulnerability management and security reporting, and serve as a security liaison between system teams, cybersecurity operations, and governance bodies

Benefits

• Generous Paid Time Off
• 401k Matching
• Health, life, disability, financial, and retirement benefits
• Paid leave, professional development, tuition assistance, work-life programs, and dependent care
• Recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values