Security Control Assessor (SCA) - Springfield, VA ; Must have an

Security Control Assessor (SCA)

Springfield, VA
Full-Time | On-Site | Actively Hiring

Join Synertex and bring your expertise to a mission that matters. We're looking for an experienced Security Control Assessor (SCA) with a strong background in Risk Management Framework (RMF), system assessments, and cybersecurity compliance to support critical Intelligence Community and Department of Defense missions. If you're passionate about securing enterprise systems, ensuring compliance, and delivering high-impact assessment work in a fast-paced, mission-driven environment-this opportunity is for you.
RESPONSIBILITIES

• Conduct comprehensive assessments of management, operational, and technical security controls within information systems.
• Review and evaluate assessment packages, recommending improvements to documentation submitted for RMF steps.
• Develop and deliver Security Assessment Reports (SARs) using government-provided templates.
• Produce Periodic Cybersecurity Assessment Reports / Security Compliance Reports for assigned systems or locations.
• Draft and document Cybersecurity Incident Reports and support initial mitigation and incident investigation efforts.
• Perform technical assessments of hardware, software, and firmware to evaluate cybersecurity vulnerabilities.
• Compile annual assessment findings and observations across systems and sites (sanitized of identifiers).
• Conduct documentation reviews, inspections, control testing, and stakeholder interviews.
• Prepare and submit all deliverables in Microsoft Office or PDF formats as required.
• Travel up to 30% CONUS and OCONUS to support Cybersecurity assessments and mission needs.

REQUIREMENTS

• 4+ years validating security configurations of operating systems.
• 2+ years applying the Risk Management Framework (RMF) based on NIST Special Publications.
• Experience conducting system security assessments, documenting findings, and producing SARs or similar reports.
• Familiarity with DISA STIGs, vulnerability scanning tools, and security compliance validation.
• Ability to review technical documentation, interview SMEs, and translate findings into formal deliverables.
• Strong analytical, writing, and communication skills with the ability to brief stakeholders.
• Ability to obtain and maintain a Top Secret/SCI clearance with a Polygraph (active TS/SCI required).
• Must meet the Cyber IT/Cybersecurity Workforce (CSWF) SCA (612) Intermediate Level requirements per SECNAV M-5239.2.

PREFERRED QUALIFICATIONS

• Experience with DISA STIGs and secure configuration guides.
• Operating System/Computing Environment certifications (Windows Server 2012+, Linux, Solaris).
• Experience with vulnerability scanners (e.g., Nessus, ACAS).
• Familiarity with cloud technologies and cloud security assessment.
• Previous experience as an ISSO, ISSM, or System Administrator.
• RMF training within DoD SAP or IC environments.
• Experience applying JSIG or supporting SAP information systems.
• Experience with Cross Domain Solutions (CDS).
• Advanced proficiency or Master-level cyber credentials in Securely Provision - Risk Management.

Join a mission-driven team advancing cybersecurity readiness, system accreditation, and national security objectives across the Intelligence Community. Apply today and become part of Synertex's legacy of excellence, innovation, and trusted mission support.