Sr. Cybersecurity Risk Assessor

Judit Inc

Tallahassee, FL

JOB DETAILS
SKILLS
CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, CompTIA Security+, Computer Security, Consulting, Document Management, FISMA - Federal Information Security Management Act, Federal Bureau of Investigation (FBI), Government, Internet Security, Organizational Skills, Quality Assurance, Risk, Risk Analysis, Risk Management Framework (RMF), Secret Clearance, Security Analysis, Time Management, U.S. National Institute of Standards and Technology (NIST), Willing to Travel
LOCATION
Tallahassee, FL
POSTED
6 days ago

JOB TITLE: Senior Cybersecurity Risk Assessor

LOCATION: Florida (Central/South Florida preferred) - field-based with statewide travel

TRAVEL: Regular statewide travel to client sites; 1-2 day on-site visits across a multi-entity engagement

JOB TYPE: Contract / Engagement-Based (Government Consulting Services) - 6 months

CONTRACT RATE BASIS: Senior Consultant tier

  • --

JOB SUMMARY

Judit Inc. is seeking a Senior Cybersecurity Risk Assessor to lead day-to-day execution of a large-scale, multi-site government IT security risk assessment. This role owns the full assessment cycle at each assigned entity - from evidence collection through scoring and findings validation - and is accountable for the technical quality of every deliverable before it advances to quality review.

KEY RESPONSIBILITIES

  • Execute the full assessment cycle at each assigned site: pre-visit evidence requests, on-site structured interviews and walk-throughs, control scoring, and remediation plan development

  • Apply control evaluation mapped to NIST SP 800-53 Rev 5 across all required cybersecurity framework categories (Identify, Protect, Detect, Respond, Recover)

  • Conduct interview-based reconstruction with observation evidence for entities with limited documentation, ensuring no risk category is left unscored

  • Validate assessment findings for technical accuracy and defensibility prior to quality assurance review

  • Maintain a standardized evidence catalog and manage documentation requests to minimize burden on client-side coordinators

REQUIRED QUALIFICATIONS

  • 9+ years of federal or enterprise cybersecurity experience, including hands-on risk assessment execution

  • Demonstrated end-to-end NIST Risk Management Framework (RMF) experience, including system categorization through Authorization to Operate (ATO)

  • Working knowledge of NIST SP 800-53/800-53A, FISMA, and FedRAMP; experience producing System Security Plans (SSP), Plans of Action and Milestones (POA&M), and Security Assessment Reports (SAR)

  • Active professional certifications required (minimum of two): CISA, CISM, Security+, CASP+

  • Willingness and ability to pass Level 2 background screening (Livescan/FBI) prior to accessing confidential information

  • Enrollment in / compliance with E-Verify requirements

PREFERRED QUALIFICATIONS

  • Active Secret clearance

  • Prior experience assessing government or public-sector entities under a fixed statewide or multi-site deadline

  • ISSO or equivalent operational security officer background

About the Company

J

Judit Inc