Gables Search GroupNewSecurity Control Assessor - ( TS/SCI FS Poly Required) Gables Search GroupSecurity Control Assessor - ( TS/SCI FS Poly Required)Columbia, MD$225,000–$235,000This role performs verification and validation of low to moderately complex systems to ensure compliance with federal security requirements. We are representing a Level 3 Security Control Assessor supporting certification and validation of secure information systems.
Company ConfidentialSecurity Control Assessor (SCA) Company ConfidentialSecurity Control Assessor (SCA)Springfield, VA$102,831–$150,000Full timeEngineer Info Assurance 3: 5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience. Engineer Info Assurance 2: 2 years relevant experience with Bachelors in related field; 0 years experience with Masters in related field; or High School Diploma or equivalent and 6 years relevant experience.
Stantec Consulting InternationalNewFacility Assessor/Inspector (Remote) Stantec Consulting InternationalFacility Assessor/Inspector (Remote)Annapolis, MDRemoteCapabilities and CredentialsGood technical writing skills requiredGood mathematical aptitude requiredGood communication and organization skillsAbility to travel, 50% or morePosition requires a drug screenMust have valid driver's license with good driving recordDemonstrated on-the-job experience or formal trade school education in building and mechanical systems5 years of experienceDegree in architecture, engineering, construction management, or other applicable fieldMaster mechanic/technicianThis description is not a comprehensive listing of activities, duties or responsibilities that may be required of the employee and other duties, responsibilities and activities may be assigned or may be changed at any time with or without notice. This position is well‑suited for persons working in the following positions who may be looking for a change: facility or construction managers, project/field engineers, construction tradespersons, transitioning military construction persons (Seabees, Red Horse, USACE, etc.), construction owner's representatives or Clerk of Works, engineering/architect technicians, facility designers, CAD/BIM staff, or similar roles requiring expertise and understanding of building systems/components.
CYBERRX INCCMMC Certified Assessor (CCA) CYBERRX INCCMMC Certified Assessor (CCA)Silver Spring, MDRemoteCyberRx, Inc. is a Cyber AB authorized Certified Third-Party Assessor Organization (C3PAO) in the Cybersecurity Maturity Model Certification (CMMC) ecosystem, providing CMMC assessments for defense contractors and organizations within the Defense Industrial Base (DIB). We are experienced assessors, and cybersecurity experts, but above all, we are a passionate team of problem-solvers and collaborators dedicated to safeguarding national security and committed to partnering with our clients to achieve their compliance and security goals.
Harmonia Holdings Group, LLCSecurity Control Assessor Harmonia Holdings Group, LLCSecurity Control AssessorWashington, DCThis role is responsible for planning, conducting, and overseeing independent security assessments of systems, applications, networks, and common controls to evaluate the effectiveness of management, operational, and technical security controls in accordance with NIST SP 800-37. Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.
AECOMHuman Health and/or Ecological Risk Assessor AECOMHuman Health and/or Ecological Risk AssessorGermantown, MD$62,000–$72,000 / yearWe invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. **ReqID:** J10152351 **Business Line:** Environment **Business Group:** DCS **Strategic Business Unit:** West **Career Area:** Science **Work Location Model:** Hybrid **Compensation:** USD 62000 - USD 72000 - yearly
The Newberry GroupJunior Security Control Assessor The Newberry GroupJunior Security Control AssessorFt. Meade, MDFull timeThis includes medical coverage with three plan options, dental and vision coverage, personal time off, paid holidays, paid parental leave, telecommuting if available, retirement savings accounts (Pre-Tax and Roth), flexible and dependent care savings accounts, life insurance, long and short-term disability coverage, tuition and training reimbursement, employee assistance program, and more. For each RMF Review, the assessors shall perform the following: The candidate will be required to review applicable controls to determine compliance status and enter all test results into the designated repository (Enterprise Mission Assurance Support Service (eMASS).
Technology Security Associates, Inc.Senior Security Control Assessor Technology Security Associates, Inc.Senior Security Control AssessorArlington, VA$130,000–$150,000 / yearJHNA/TSA provides for the welfare of its employees and their dependents through a comprehensive benefits program by offering healthcare benefits, paid leave, retirement plans, insurance programs, and education and training assistance. TSA is currently seeking a Senior Security Control Assessor who will serve as a Functional Lead and provide support to our NAVAIR customer in the DC Metro area.
Softthink Solutions IncSecurity Control Assessor / ST&E Lead Softthink Solutions IncSecurity Control Assessor / ST&E LeadWashington, DCRemoteResponsible for planning and executing security assessment and evaluation activities supporting system authorization. • Perform technical and non-technical security testing .
GAMA-1 TechnologiesSenior Security Control Assessor (SCA) GAMA-1 TechnologiesSenior Security Control Assessor (SCA)Washington, DCFull timeGAMA-1 Technologies is seeking a Senior Security Control Assessor to support cybersecurity assessments and compliance activities across federal systems and national security environments. This position is ideal for cybersecurity professionals with deep assessment experience who enjoy working at the intersection of compliance, technical security, and risk management.
Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA) Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA)Laurel, MarylandWe are seeking a Cybersecurity Compliance Auditor / Security Control Reviewer (SCR) to perform independent security control assessments across classified information systems to determine the overall effectiveness of the controls. Collaborate with Program Managers/System Owners, ISSMs, ISSOs, system engineers/administrators, and program teams to resolve findings and improve security posture.
ManTechSecurity Control Assessor ManTechSecurity Control AssessorWashington, DCMust hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Information System Manager (CISM), or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1. + Initiate, coordinate, and recommend to the FBI Authorizing Official all Interconnection Security Agreement (ISAs), Memorandum of Understanding (MOUs), and Memorandum of Agreement (MOAs) that permit the interconnection of an FBI IS with any non-FBI or joint-use IS.
Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor) Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor)Washington, DC$112,000–$179,000 / yearThe ideal candidate will be confident writing Security Test Procedures (STPs), building Security Controls Traceability Matrices (SCTMs), interpreting ACAS/Nessus scan results, and using Splunk to verify control effectiveness. We are seeking a highly skilled and technically proficient Information Systems Security Officer (ISSO) with hands-on experience developing, implementing, and validating security controls within DoD RMF environments.
IBSS CorporationNewLead Certified CMMC Assessor (CCA) Consultant | Remote | 1 week Consulting Project IBSS CorporationLead Certified CMMC Assessor (CCA) Consultant | Remote | 1 week Consulting ProjectSilver Spring, MDRemote$50–$70 / hourIf you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the Talent Acquisition Department at Recruiting@ibsscorp.com. Our services include cybersecurity and enterprise information technology, environmental science and engineering (including oceans, coasts, climate, and weather), and professional management services.
IBSS CorporationNewSecurity Control Assessor IBSS CorporationSecurity Control AssessorSilver Spring, MD$80,000–$110,000 / yearDevelop, review, and evaluate essential security assessment outputs, including a Security Assessment Plan (SAP), Security Requirements Traceability Matrix (SRTM), Penetration Testing Report (PTR), Security Assessment Report (SAR), Risk Assessment Report (RAR), and Assessment Findings Report (AFR). If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the Talent Acquisition department at Recruiting@ibsscorp.com.
Aminov Search PartnersSecurity Control Assessor Aminov Search PartnersSecurity Control AssessorColumbia, MD$225,000–$225,000 / yearCandidates should bring over 12 years of experience in cybersecurity or systems engineering, with recent experience spanning five different cybersecurity fields. Key tasks include conducting compliance evaluations on-site, managing vulnerability assessments, and organizing penetration testing activities.
SkyePoint DecisionsSecurity Control Assessor SkyePoint DecisionsSecurity Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
DHD ConsultingNewFacility Assessors DHD ConsultingFacility AssessorsAlexandria, VAFieldwork: Perform physical inspections that may include ladder use, confined spaces, extended walking, and exposure to various weather conditions, while adhering to all safety protocols. Coordination: Support senior assessors in managing timelines and collaborating with team members to ensure timely completion of assessments.
SkyePoint DecisionsAWS Assessor SkyePoint DecisionsAWS AssessorWashington, DCSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. The AWS Assessor is responsible for conducting a comprehensive assessment of implemented controls and control enhancements to determine the effectiveness of the controls, i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security and privacy requirements for the system and the organization.
SkyePoint DecisionsSenior Security Control Assessor SkyePoint DecisionsSenior Security Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) -Crystal City, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) II to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) -Arlington, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) III to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
TLA-LLCSecurity Assessor TLA-LLCSecurity AssessorMcLean, VAIdentify Vulnerabilities and Risks: Utilize assessment tools and manual techniques (e.g., vulnerability scanning, penetration testing, code review) to identify security weaknesses, document findings, and assess the severity of risk. · Documentation and Reporting: Prepare detailed documentation, including Security Assessment Plans (SAP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms), for identified weaknesses and deficiencies.
Leidos Holdings IncTraveling Security Control Assessor (Journeyman) Leidos Holdings IncTraveling Security Control Assessor (Journeyman)Fort George G. Meade, MD$67,600–$122,200 / yearAdditional relevant experience may be considered in lieu of degreeDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings---The maximum starting salary for this position is $85,000. Assist with mentoring and guiding personnel by providing technical expertise, best practices, and professional development support to enhance team capabilities and knowledgeBasic Qualifications:Active DoD Top Secret clearance with SCI eligibility requiredCurrent DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the timeBachelor''s degree (IT-related field preferred) and five (5) years of cybersecurity or network security experience, including three (3) years of experience in a Certification and Accreditation/A&A role.
Leidos Holdings IncTraveling Security Control Assessor Leidos Holdings IncTraveling Security Control AssessorAlexandria, VA$85,150–$153,925 / yearDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings. Basic Qualifications: Active DoD Top Secret clearance with SCI eligibility required Current DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the time Bachelors degree (IT-related field preferred) and eight (8) years of cybersecurity or network security experience, including five (5) years of experience in a Certification and Accreditation/A&A role.
StantecNewFacility Assessor/Inspector (Remote/Temporary) StantecFacility Assessor/Inspector (Remote/Temporary)Annapolis, MDRemoteThis position is well-suited for persons working in the following positions who may be looking for a change: facility or construction managers, project/field engineers, construction tradespersons, transitioning military construction persons (Seabees, Red Horse, USACE, etc.), construction owner's representatives or Clerk of Works, engineering/architect technicians, facility designers, CAD/BIM staff, or similar roles requiring expertise and understanding of building systems/components. Knowledge of BUILDER web-based Sustainment Management System (SMS) software application developed by the US Army Corps of Engineers Engineer Research and Development Center's Construction Engineering Research Laboratory (CERL) is desirable; however, Stantec will train good candidates in the use of this SMS software and/or other software that may be required.
Stantec IncFacility Assessor/Inspector (Remote) Stantec IncFacility Assessor/Inspector (Remote)Annapolis, MDRemoteThis position is well-suited for persons working in the following positions who may be looking for a change: facility or construction managers, project/field engineers, construction tradespersons, transitioning military construction persons (Seabees, Red Horse, USACE, etc.), construction owner''s representatives or Clerk of Works, engineering/architect technicians, facility designers, CAD/BIM staff, or similar roles requiring expertise and understanding of building systems/components. Knowledge of BUILDER web-based Sustainment Management System (SMS) software application developed by the US Army Corps of Engineers Engineer Research and Development Center's Construction Engineering Research Laboratory (CERL) is desirable; however, Stantec will train good candidates in the use of this SMS software and/or other software that may be required.
IMAGINEEER LLCSME Security Control Assessor IMAGINEEER LLCSME Security Control AssessorArlington, VAWe are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate control implementation and effectiveness. Additionally, the role maintains assessment documentation and tracking artifacts, reviews security documentation, and assists in the development of Plans of Action and Milestones (POA&Ms).
AGE solutionsSecurity Control Assessor, Mid AGE solutionsSecurity Control Assessor, MidFort Meade, MDRemoteDemonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications. Skills and Knowledge: Demonstrated experience with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices.
Tyto Athene, LLCNewJunior Security Controls Assessor Tyto Athene, LLCJunior Security Controls AssessorWashington, Washington, DC$75,000–$95,000 / yearPerform security testing at the control-requirement level for each unique component of each system (e.g., application, web application server, financial systems, database server/instance, operating systems, specialized appliances, network and infrastructure devices, and end-user devices (e.g., mobile phones, laptops, etc.). Conduct technical content review and analysis of technical reports from security vulnerability scan, penetration test, and configuration compliance scan tools with respect to the subject system’s context and environment in order to analyze the findings accurately and completely.
PeratonSecurity Control Assessor Representative PeratonSecurity Control Assessor RepresentativeLinthicum, Maryland$135,000–$216,000 / year
Chenega CorporationSecurity Control Assessor Chenega CorporationSecurity Control AssessorAlexandria, VAThe Security Control Assessor is responsible for supporting A&A or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks, ensuring validity and accuracy review of all associated documentation. Current knowledge of cloud-computing technologies and security as they relate to Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS).
Jasint Consulting And Technologies, LlcSecurity Control Assessor Level 2 Jasint Consulting And Technologies, LlcSecurity Control Assessor Level 2Annapolis Junction, MD$85,000–$130,000 / yearMinimum Requirements: Experience: Five (5) years experience in security, systems engineering or system assessment to include recent experience within the last three (3) years in the following areas: Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture is required. JASINT participates in E-Verify and will provide the federal government with I-9 information to confirm that all new hires are authorized to work in the U.S. To learn more about E-Verify, please visit dhs.gov/e-verify.
Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCIArlington, VA$100,000–$149,000 / yearClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
Parsons CompanyNewFacilities Assessor Parsons CompanyFacilities AssessorAnnapolis, MD$120,800–$217,400 / yearProject: Parsons is managing a Technical Services (TS) program for an agency within the Department of Defense to review third party A/E work; conduct studies, analysis, testing and measuring; perform specialized engineering services, planning and design reviews; commissioning services; and construction oversight on worldwide delivery orders. We promote a culture of excellence and close-knit teams that take pride in delivering, protecting, and sustaining our nation's most critical assets, from Earth to cyberspace.
Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCIArlington, VAFull timeClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
PeratonRegional Cyber Security Assessor / Secret PeratonRegional Cyber Security Assessor / SecretArlington, Virginia$80,000–$128,000 / yearRCSO's are cyber security consultants and experts whose core function is to support and implement the cyber security policies to secure the Department's critical information infrastructure by ensuring that classified and unclassified networks are installed, maintained, operated, and secured in accordance with the current department and U.S. Government regulations. Maintain security tools, Source NG assessment checklists, and related servers to include research, testing, and secure configuration of new hardware/software to meet constantly evolving cyber assessment needs.
Macpower Digital Assets Edge Private LimitedInformation Systems Security Officer (ISSO) Macpower Digital Assets Edge Private LimitedInformation Systems Security Officer (ISSO)Annapolis, MD$120,000–$166,000 / yearThis role involves driving Authorization to Operate (ATO) efforts, implementing NIST controls, and collaborating with cross-functional teams to build security into cloud-native and data-focused environments. Role Summary: The Senior Cybersecurity Engineer serves as a subject matter expert in ensuring system security compliance and risk management throughout the program life cycle.
NoblisCyber Information Assurance Specialist (Multiple Levels) NoblisCyber Information Assurance Specialist (Multiple Levels)Washington, Washington, DC$71,800–$123,300 / yearThe Cyber Information Assurance and Information Systems Security Specialist will support a team of geographically dispersed project managers, engineering technicians, analysts, and logisticians across multiple locations including Washington DC, San Diego, Norfolk, Mayport, Pearl Harbor, and international sites as part of the overall contract task of coordinating, communicating, and integrating maintenance, modernization, and sustainment performance information in support of the Navy’s Surface Warfare Enterprise. This position plays a vital role in the management and execution of readiness and sustainment initiatives for the Navy’s surface fleet, and supports the SEA 21 mission of integrating maintenance strategies, modernization plans, training needs, and technical, logistics, and programmatic efforts to manage the lifecycle of U.S. and partner Navy surface ships and systems from fleet introduction through transfer or disposal.
GeoDelphiDevSecOps Engineer GeoDelphiDevSecOps EngineerAlexandria, VARemoteWe are seeking a DevSecOps Engineer with deep expertise in DoD DevSecOps Reference Architecture, secure CI/CD implementation, and Defense cloud environments (AWS GovCloud, Azure Government, DoD Cloud or Air gapped environments). The Senior DevSecOps Engineer will lead efforts to integrate security practices into our development and operations processes, with a primary focus on assisting the company in obtaining and maintaining a DoD/DoW Authorization to Operate (ATO).