JOB TITLE: Cybersecurity Risk Assessor
LOCATION: Florida (Central/South Florida preferred) - field-based with regional travel
TRAVEL: Regular regional travel to assigned client sites across a multi-entity engagement
JOB TYPE: Contract / Engagement-Based (Government Consulting Services)
CONTRACT RATE BASIS: Consultant tier
JOB SUMMARY
Judit Inc. is seeking Cybersecurity Risk Assessors to join a field assessment team executing a large-scale government IT security risk assessment across more than 30 independent entities. This role performs hands-on technical control evaluation and evidence review at assigned sites, contributing directly to the volume and pace required to complete a statewide assessment on a fixed schedule.
KEY RESPONSIBILITIES
Perform technical control evaluation and evidence review mapped to NIST SP 800-53 at assigned client sites
Conduct on-site interviews, documentation review, and configuration-evidence examination (no penetration testing involved)
Support development of Plans of Action and Milestones (POA&M) and vulnerability management documentation
Populate assessment findings into the engagement''s standardized risk assessment tool in accordance with defined instructions
Maintain a sustained pace of site coverage in coordination with team leadership to meet program-wide deadlines
REQUIRED QUALIFICATIONS
Senior Security Engineer-level experience with NIST SP 800-53/800-171, Risk Management Framework (RMF), and configuration hardening standards (STIG/SCAP)
Working knowledge of cloud security concepts (Azure preferred)
Active professional certifications required (minimum of two): CISSP, CISA, CRISC, Security+, CASP, CHFI, CEH
Willingness and ability to pass Level 2 background screening (Livescan/FBI) prior to accessing confidential information
Enrollment in / compliance with E-Verify requirements
PREFERRED QUALIFICATIONS
Active Secret clearance
Experience with NIST SP 800-37/800-39 (RMF, risk assessment, SSP, SAR, ATO documentation)
Bilingual (English/Spanish) proficiency