Today
Secret
Unspecified
Unspecified
Security
Remote/Hybrid• (Off-Site/Hybrid)
Description:
Our client is a leading federal agency dedicated to protecting critical mission systems and ensuring compliance with national cybersecurity standards. The team is responsible for conducting independent security assessments and providing assurance that systems meet federal security and compliance requirements. As part of this mission, we are seeking a skilled Security Control Assessor (SCA) to support system assessments, collaborate with stakeholders, and strengthen the agency's cybersecurity posture.
Location: Washington DC
Pay Rate: $60 - $65 / hr
This is a contract-to-hire opportunity. Applicants must be willing and able to work on a W2 basis and convert to FTE following contract duration. For our W2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.
Responsibilities: Responsibilities
Experience Requirements: Experience Requirements
Education Requirements: Education & Certifications
Our client is a leading federal agency dedicated to protecting critical mission systems and ensuring compliance with national cybersecurity standards. The team is responsible for conducting independent security assessments and providing assurance that systems meet federal security and compliance requirements. As part of this mission, we are seeking a skilled Security Control Assessor (SCA) to support system assessments, collaborate with stakeholders, and strengthen the agency's cybersecurity posture.
Location: Washington DC
Pay Rate: $60 - $65 / hr
This is a contract-to-hire opportunity. Applicants must be willing and able to work on a W2 basis and convert to FTE following contract duration. For our W2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.
Responsibilities: Responsibilities
- Assist in the development of Security Assessment Plans (SAPs) by identifying security controls to be tested and selecting appropriate assessment methods.
- Conduct testing of implemented security controls using examination, interview, and technical evaluation techniques in alignment with NIST SP 800-53A Rev. 5 and SP 800-115.
- Collect and validate objective evidence (screenshots, logs, configurations, etc.) to support assessment results.
- Document assessment results in test cases, checklists, and supporting artifacts.
- Support preparation of Security Assessment Reports (SARs) by summarizing findings and mapping results to applicable NIST controls.
- Collaborate with ISSOs, system owners, and stakeholders to clarify scope, resolve discrepancies, and address assessment issues.
- Participate in remediation and retesting activities, validating fixes and updating assessment documentation.
- Contribute to continuous monitoring activities by performing follow-up assessments and updating risk documentation.
Experience Requirements: Experience Requirements
- 3-5 years of experience performing cybersecurity control assessments or related RMF activities.
- Working knowledge of NIST RMF, FISMA, and NIST SP 800-53/53A control assessment procedures.
- Hands-on experience with security testing tools and techniques (e.g., Nessus, database scanners, manual validation).
- Strong attention to detail with the ability to maintain accurate and thorough documentation.
- Ability to work collaboratively under the guidance of the Lead SCA and coordinate effectively with ISSOs and system stakeholders.
Education Requirements: Education & Certifications
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).
- Industry-recognized certification preferred: Security+, CAP, CISA, CISSP Associate, or equivalent.
- Active Secret clearance or higher required.
group id: 10106647
