Security Control AssessorEvolver Federal • Washington, DC, USA
Security Control Assessor
Evolver Federal • Washington, DC, USA
[job_card.30_days_ago]
[job_preview.job_type]
- [job_card.full_time]
- [filters_job_card.quick_apply]
[job_card.job_description]Gathering evidence for tested controls. Summarizing testing results, highlighting high / moderate risk items and compliance percentages. Documenting results within the Security Controls Assessment Plan. Analyzing and summarizing scan results, utilizing scans provided by the cloud environment. Assist in updating the client's IT Security Program policies and procedures. Provide timely reminders to Agency ISSOs to support Continuous Monitoring efforts. Assist in launching the client's Configuration Management program, including compliance testing and guidance on implementing DISA's Security Technical Implementation Guides (STIGs). Produce Security Assessment Reports (SAR) using the Agency's Information Assurance tool. Evaluate the risk of SAR findings from security testing and summarize them into Plan of Action and Milestone (POA&M) tracking documentation. Track the progress of the IT Risk Management program through POA&M updates and / or data submission to the Agency's Office of Risk Management. Review supporting artifacts, evaluate remediation of risk, and recommend POA&M closure Bachelor's degree in computer science, Information Technology, or a related field. 4 years of experience in conducting security testing in accordance with NIST SP 800-53A. 4 years of experience creating POA&Ms in the CSAM tool. 2 years of experience with NIST SP 800-53-A and security control assessment methodologies. 2 years of experience with security program management, including policy and procedure development, Continuous Monitoring, and risk management. US Citizen with the ablity to pass a comprehensive background check. 2 years of previous client-engagement experience. Strong analytical skills and ability to quantify and analyze test findings. Knowledge of security tools and techniques, including scanning tools. Understanding of cloud environments and related security implications. Excellent communication (verbal and written) and collaboration skills, with the ability to work effectively with security staff and Agency ISSOs. Impeccable work ethic, the ability to make sound decisions, and a commitment to integrity and accountability. Excellent organizational skills and attention to detail. Strong analytical, critical thinking, and problem-solving skills. Ability to function well in a high-paced and at times stressful environment. Ability to prioritize tasks. Proficient with Microsoft Office Suite; specifically, Excel, Word, and Outlook a must. One or more of the following certifications preferred : CISSP, CAP, CISM, Security+, CASP, CISA.
Evolver is looking for a Security Control Assessor to join our team supporting our federal client in Washington, DC. This position requires on-site 5 days / week at our federal client's HQ located in Washington, DC.
The Security Control Assessor is responsible for providing independent security control testing to the client for 20 FIPS Moderate and Low systems. Duties include conducting security control assessments through interviews, examination, and / or testing for all applicable management, operational, and technical controls, including analyzing findings and results and validating test results / reports. Duties also include developing Security Control Assessment Plans, Risk Assessment Reports, and ATO Memos, as well as developing and maintaining testing policies and related Standard Operating Procedures (SOPs). The Security Control Assessor is also responsible for documenting and presenting the results of the Security Test & Evaluation (ST&E) to government stakeholders including System Owners, ISSOs, the CISO and Authorizing Official. Responsibilities also include reviewing artifacts and providing recommendations on POA&M closures.
Responsibilities
- Conduct security testing in accordance with NIST SP 800-53-A.
- Develop Security Controls Assessment Plans, including :
Interviewing, examining, and / or testing management, operational, and technical controls.
Basic Qualifications
Preferred Qualifications
Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military / veteran status, or any other factor protected by law.
Actual salary will depend on factors such as skills, qualifications, experience, market and work location. Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.
Job Posted by ApplicantPro
[job_alerts.create_a_job]
Security Control Assessor • Washington, DC, USA
[internal_linking.related_jobs]
Job Title : Lead Security Engineer - Reviewer.Clearance : Top Secret with SCI eligibility.Start : Based on Contract Award.
Foxhole Technology provides robust cybersecurity and IT support capabilities f...[show_more]
AlliedTravelNetwork is working with Care Career to find a qualified Mammography Tech in Baltimore, Maryland, 21229!.Positions patient and performs imaging procedure(s).
Reviews patient images and id...[show_more]
BCLS / BLS - American Heart Association / ARDMS-OB / ARDMS-AB.Ultrasound Tech (Travel) - Rockville, MD.Contract Duration 13 Weeks (Standard).
Start Date Negotiable (Typical ASAP or 2-4 weeks out).Shift Ni...[show_more]
As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure.In this role, the main responsibilities will be to investigate and analyze emerging threat...[show_more]
Staffing Pros, a division of VETS Inc.Washington, DC or Beltsville, MD.This position requires an Active Secret Clearance.
This position is based on-site at either the Washington, DC or Beltsville, M...[show_more]
Security Controls Assessor (SCA).Founded in 2007 and headquartered in Columbia, Maryland, Synergy ECP is a leading provider of cybersecurity, software and systems engineering and IT services to the...[show_more]
The ConMon Services Lead / SME will be directly engaged with DISA's Risk Management Executive's (RME) Continuous Monitoring program to ensure success.
This role will be based onsite in Alexandria, VA ...[show_more]
Ready to start your next travel adventure? LRS Healthcare offers a full benefits package, 24 / 7 support, and a responsive, traveler-first culture.
What are you waiting for? Apply today!.Valid license...[show_more]
Cybersecurity Assessment & Authorization (A&A) SME.IT-II Non-Critical Sensitive or Tier 3 (T3) Secret.Remote or DLA HQ, Fort Belvoir, VA.
Certified Cloud Security Professional (CCSP) and DoD 8570 / 81...[show_more]
Macy's is more than just a store.One that's captured the hearts and minds of America for more than 160 years.A story about innovations and traditions.
Macy's 4th of July Fireworks, and the wonder of...[show_more]
Security Officer - Access Control Aero / Defense Pt.Allied Universal, North America's leading security and facility services company, offers rewarding careers that provide you a sense of purpose.Whil...[show_more]
Join a dynamic team at the pulse of global markets, where we deliver innovative software and service solutions for essential financial reporting and capital markets transactions.At DFIN, we are a v...[show_more]
Job Title : FIPS 140 Security Engineer Location : Columbia, MD (Remote) Compensation : $60.HR Duration : 6 month contract to hire In joining the team, you will get an exciting opportunity to work in th...[show_more]
OCT Consulting is a business management and technology consulting firm that provides support to Federal Government clients.
We provide consulting services in the areas of Strategy, Process Improveme...[show_more]
AlliedTravelCareers is working with Windsor Healthcare Recruitment Group, Inc.CT Tech in Aberdeen, Maryland, 21001!.CT Tech - Nights 36H - Block Schedule SU / MO / TU / THU No Call.Holidays as they fall ...[show_more]
Planet Technologies, the Nation’s leading Microsoft services provider to the public sector, is looking for a highly motivated individual to join our growing team as .In this role, you will be...[show_more]
Government of the District of Columbia.Office of the Chief Financial Officer (OCFO).Network Security Engineer (INFOSEC).This position is located in the Office of the Chief Financial Officer (OCFO),...[show_more]
ABOUT WOODLAND AND JOB CORPS CENTER.The Woodland Job Corps Center provides students with the opportunity to earn their High School Diploma or Equivalent (GED), and hands-on training in the followin...[show_more]
Lead Security Assessor
Foxhole Technology • Alexandria, Virginia, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Travel Mammography Tech - $2,792 per week in Baltimore, MD
AlliedTravelNetwork • Columbia, Maryland, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Travel Ultrasound Tech - $2,171 to $2,371 per week in Rockville, MD
Titan Medical Group • Columbia, Maryland, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Lead Security Engineer - Cyber Security
Relativity • Washington, DC, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Qualys Security Engineer- Active Secret Clearance Required
VETS, Inc • Washington, DC, US
[job_card.full_time]
[filters_job_card.quick_apply]
[last_updated.last_updated_variable_days] • [promoted]
Security Controls Assessor (SCA)
Synergy Ecp • Columbia, Maryland, United States, 21044
[job_card.full_time]
[last_updated.last_updated_30]
ConMon Lead
Leidos Inc • Alexandria, VA, United States
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Travel Ultrasound Tech - $1,936 to $2,146 per week in Randallstown, MD
LRS Healthcare • Columbia, Maryland, US
[job_card.full_time]
[last_updated.last_updated_variable_days] • [promoted]
Cybersecurity Assessment & Authorization (A&A) SME
Nationwide IT Services • Fort Belvoir, VA, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Seasonal Asset Protection Security Guard, Mall in Columbia
Macy's • Columbia, MD, United States
[job_card.full_time] +1
[last_updated.last_updated_30] • [promoted]
Security Officer - Access Control Aero / Defense PT
Allied Universal • Washington, DC, US
[job_card.part_time]
[last_updated.last_updated_variable_hours] • [promoted] • [new]
Sr. Manager - Network Security Engineering & Ops (Remote)
Donnelley Financial, LLC • Rockville, MD, United States
[filters.remote]
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
FIPS 140 Security Engineer
ALTA IT Services • Columbia, MD, US
[job_card.temporary]
[last_updated.last_updated_30] • [promoted]
Information Assurance / Security Controls Assessor (15.34)
OCT Consulting, LLC • Washington, DC, US
[job_card.full_time]
[filters_job_card.quick_apply]
[last_updated.last_updated_30]
Travel CT Tech - $2,903 per week in Aberdeen, MD
AlliedTravelCareers • Columbia, Maryland, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Security Solution Architect
Planet Technologies • Washington, Washington, D.C., US
[job_card.full_time]
[last_updated.last_updated_variable_hours] • [promoted] • [new]
Network Security Engineer
Office of The Chief Financial Officer • Northern Virginia, VA, United States
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]
Safety & Security Advisor (OC)
Adams and Associates, Inc. • Laurel, MD, US
[job_card.full_time]
[last_updated.last_updated_30] • [promoted]