JOB TITLE: Senior Cybersecurity Risk Assessor
LOCATION: Florida (Central/South Florida preferred) - field-based with statewide travel
TRAVEL: Regular statewide travel to client sites; 1-2 day on-site visits across a multi-entity engagement
JOB TYPE: Contract / Engagement-Based (Government Consulting Services) - 6 months
CONTRACT RATE BASIS: Senior Consultant tier
JOB SUMMARY
Judit Inc. is seeking a Senior Cybersecurity Risk Assessor to lead day-to-day execution of a large-scale, multi-site government IT security risk assessment. This role owns the full assessment cycle at each assigned entity - from evidence collection through scoring and findings validation - and is accountable for the technical quality of every deliverable before it advances to quality review.
KEY RESPONSIBILITIES
Execute the full assessment cycle at each assigned site: pre-visit evidence requests, on-site structured interviews and walk-throughs, control scoring, and remediation plan development
Apply control evaluation mapped to NIST SP 800-53 Rev 5 across all required cybersecurity framework categories (Identify, Protect, Detect, Respond, Recover)
Conduct interview-based reconstruction with observation evidence for entities with limited documentation, ensuring no risk category is left unscored
Validate assessment findings for technical accuracy and defensibility prior to quality assurance review
Maintain a standardized evidence catalog and manage documentation requests to minimize burden on client-side coordinators
REQUIRED QUALIFICATIONS
9+ years of federal or enterprise cybersecurity experience, including hands-on risk assessment execution
Demonstrated end-to-end NIST Risk Management Framework (RMF) experience, including system categorization through Authorization to Operate (ATO)
Working knowledge of NIST SP 800-53/800-53A, FISMA, and FedRAMP; experience producing System Security Plans (SSP), Plans of Action and Milestones (POA&M), and Security Assessment Reports (SAR)
Active professional certifications required (minimum of two): CISA, CISM, Security+, CASP+
Willingness and ability to pass Level 2 background screening (Livescan/FBI) prior to accessing confidential information
Enrollment in / compliance with E-Verify requirements
PREFERRED QUALIFICATIONS
Active Secret clearance
Prior experience assessing government or public-sector entities under a fixed statewide or multi-site deadline
ISSO or equivalent operational security officer background