Posted today
Secret
$80,000 - $110,000
Unspecified
IT - Security
San Diego, CA (On-Site/Office)
The Team and the Role
IND US is a 100% employee-owned, customer-focused government services provider with expertise in Engineering, Information Technology, Cybersecurity, Program/Financial Management, Logistics, and Data Analytics. At IND US , we believe in the value of the IND US team. Together we deliver exceptional customer service, foster a growth and support-centered work environment, and focus on how we can give back to the communities that we serve. Empowering our employees starts on day one and creates an environment full of innovation and promise. By offering mentorship and robust Training and Development opportunities, IND US continues its pursuit to be the Employer of Choice.
The Navy's Security Control Assessor is responsible for independently evaluating, validating, and verifying the implementation and effectiveness of security controls in accordance with Department of Defense (DoD) Risk Management Framework (RMF) requirements. This effort focuses on identifying, analyzing, and documenting cybersecurity risks associated with C4I systems supporting security cooperation and operational mission requirements.
Reporting to the Program Manager, the Jr. Cybersecurity Analyst conducts cybersecurity risk assessments, validates security control implementation, and develops risk recommendations for C4I systems on the Risk Management Framework support services contract.
What You'll Do
Required Qualifications:
Physical Requirements:
INDUS aims to provide a competitive compensation package, including a strong pay for performance rewards approach. The expected base pay range for this position is $80,000 - $110,000 per year. This position is eligible to participate in our corporate 401(k) and Employee Stock Ownership Plan (ESOP) programs, and may be eligible for performance bonuses, and other rewards and benefits (see more about our compensation package and benefits offered at Culture @ INDUS | INDUS Technology). The pay range for this role considers job-related knowledge, skills, work location, education and training, and certifications. To drive fair pay practices for employees, INDUS conducts regular comparisons across our employee groups and the industry.
INDUS is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.
#CJ
IND US is a 100% employee-owned, customer-focused government services provider with expertise in Engineering, Information Technology, Cybersecurity, Program/Financial Management, Logistics, and Data Analytics. At IND US , we believe in the value of the IND US team. Together we deliver exceptional customer service, foster a growth and support-centered work environment, and focus on how we can give back to the communities that we serve. Empowering our employees starts on day one and creates an environment full of innovation and promise. By offering mentorship and robust Training and Development opportunities, IND US continues its pursuit to be the Employer of Choice.
The Navy's Security Control Assessor is responsible for independently evaluating, validating, and verifying the implementation and effectiveness of security controls in accordance with Department of Defense (DoD) Risk Management Framework (RMF) requirements. This effort focuses on identifying, analyzing, and documenting cybersecurity risks associated with C4I systems supporting security cooperation and operational mission requirements.
Reporting to the Program Manager, the Jr. Cybersecurity Analyst conducts cybersecurity risk assessments, validates security control implementation, and develops risk recommendations for C4I systems on the Risk Management Framework support services contract.
What You'll Do
- Conduct independent RMF Step 4 security control assessments to evaluate the effectiveness of implemented controls and determine residual cybersecurity risk in support of Authorization to Operate (ATO) decisions.
- Perform comprehensive Accreditation & Authorization (A&A) activities, including detailed review, validation, and analysis of RMF packages and supporting artifacts such as System Security Plans (SSPs), network and architecture diagrams, authorization boundary documentation, security control implementation statements, Security Assessment Plans (SAPs), Security Assessment Reports (SARs), test plans, test procedures, test results, and Plans of Action and Milestones (POA&Ms).
- Review network topologies, data flow diagrams, interface documentation, and system architecture artifacts to validate security categorization, control allocation, boundary definition, control inheritance, and external service dependencies for accuracy and completeness within the authorization package.
- Identify, analyze, and document security control deficiencies, vulnerabilities, and gaps; assess likelihood and impact; determine residual risk; and develop risk mitigation and remediation recommendations for Authorizing Officials (AOs).
- Evaluate security test strategies and results to ensure assessment procedures adequately validate control effectiveness and meet DoD and Navy RMF requirements.
- Assess cybersecurity impacts of system changes, configuration updates, interface modifications, and inherited controls to support ongoing authorization, continuous monitoring, and reauthorization decisions.
- Develop formal risk assessment documentation and authorization decision support materials, providing clear, defensible risk determinations and recommendations aligned with DoD and Navy cybersecurity policy.
- Support continuous monitoring activities by reviewing updated SSPs, change requests, vulnerability scan results, POA&M updates, and periodic reassessment artifacts to ensure sustained risk visibility and compliance.
- Provide independent cybersecurity risk analysis during technical and program reviews to inform authorization decisions, audit readiness, and compliance inspections.
- Bid and proposal support if requested.
- Other duties as assigned.
Required Qualifications:
- An active secret clearance is required to be considered for this position.
- Bachelor's degree from an accredited university in Cybersecurity, Computer, Electrical, or Electronics Engineering, or Mathematics with a concentration in computer science or equivalent is required.
- At least one (1) year of experience providing information technology, networking, or cybersecurity support to a Navy program office.
- Certifications:
- Must be IAT, IAM, or IASAE Level I qualified per the DoD 8570.1M (CompTIA Security + or higher level equivalent).
- Must possess basic computer literacy and data entry skills.
- Demonstrated proficiency in Microsoft Office applications (to include MS Word, Excel, PowerPoint, etc.).
- Strong attention to detail and organizational skills.
- Excellent verbal and written communication skills.
- Demonstrated problem-solving skills.
- Must possess strong time management skills.
- Must be able to work in a fast-paced, changing, and challenging environment.
- Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
Physical Requirements:
- Must be able to remain seated in a stationary position 50% of the time. Must also be able to alternate between sitting, standing, and walking.
INDUS aims to provide a competitive compensation package, including a strong pay for performance rewards approach. The expected base pay range for this position is $80,000 - $110,000 per year. This position is eligible to participate in our corporate 401(k) and Employee Stock Ownership Plan (ESOP) programs, and may be eligible for performance bonuses, and other rewards and benefits (see more about our compensation package and benefits offered at Culture @ INDUS | INDUS Technology). The pay range for this role considers job-related knowledge, skills, work location, education and training, and certifications. To drive fair pay practices for employees, INDUS conducts regular comparisons across our employee groups and the industry.
INDUS is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.
#CJ
group id: 10179363
N
