Gables Search GroupSecurity Control Assessor - ( TS/SCI FS Poly Required) Gables Search GroupSecurity Control Assessor - ( TS/SCI FS Poly Required)Columbia, MD$225,000–$235,000This role performs verification and validation of low to moderately complex systems to ensure compliance with federal security requirements. We are representing a Level 3 Security Control Assessor supporting certification and validation of secure information systems.
Company ConfidentialSecurity Control Assessor (SCA) Company ConfidentialSecurity Control Assessor (SCA)Springfield, VA$102,831–$150,000Full timeEngineer Info Assurance 3: 5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience. Engineer Info Assurance 2: 2 years relevant experience with Bachelors in related field; 0 years experience with Masters in related field; or High School Diploma or equivalent and 6 years relevant experience.
Tau SixSecurity Control Assessor (SCA) (TS/SCI) Tau SixSecurity Control Assessor (SCA) (TS/SCI)Chantilly, VATau Six, an agile small company delivering cutting edge cybersecurity and systems integration services to the US National Security market, has an immediate need for a Cybersecurity Security Control Assessor (SCA) for a Department of Defense customer. Shall develop an annual compilation of findings and observations based upon the Security Assessment Reports and Periodic Cybersecurity Assessment Reports or Security Compliance Reports based upon fiscal year assessments.
CYBERRX INCCMMC Certified Assessor (CCA) CYBERRX INCCMMC Certified Assessor (CCA)Silver Spring, MDRemoteCyberRx, Inc. is a Cyber AB authorized Certified Third-Party Assessor Organization (C3PAO) in the Cybersecurity Maturity Model Certification (CMMC) ecosystem, providing CMMC assessments for defense contractors and organizations within the Defense Industrial Base (DIB). We are experienced assessors, and cybersecurity experts, but above all, we are a passionate team of problem-solvers and collaborators dedicated to safeguarding national security and committed to partnering with our clients to achieve their compliance and security goals.
Harmonia Holdings Group, LLCSecurity Control Assessor Harmonia Holdings Group, LLCSecurity Control AssessorWashington, DCThis role is responsible for planning, conducting, and overseeing independent security assessments of systems, applications, networks, and common controls to evaluate the effectiveness of management, operational, and technical security controls in accordance with NIST SP 800-37. Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.
AECOMHuman Health and/or Ecological Risk Assessor AECOMHuman Health and/or Ecological Risk AssessorGermantown, MD$62,000–$72,000 / yearWe invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. **ReqID:** J10152351 **Business Line:** Environment **Business Group:** DCS **Strategic Business Unit:** West **Career Area:** Science **Work Location Model:** Hybrid **Compensation:** USD 62000 - USD 72000 - yearly
The Newberry GroupJunior Security Control Assessor The Newberry GroupJunior Security Control AssessorFt. Meade, MDFull timeThis includes medical coverage with three plan options, dental and vision coverage, personal time off, paid holidays, paid parental leave, telecommuting if available, retirement savings accounts (Pre-Tax and Roth), flexible and dependent care savings accounts, life insurance, long and short-term disability coverage, tuition and training reimbursement, employee assistance program, and more. For each RMF Review, the assessors shall perform the following: The candidate will be required to review applicable controls to determine compliance status and enter all test results into the designated repository (Enterprise Mission Assurance Support Service (eMASS).
GAMA-1 TechnologiesSenior Security Control Assessor (SCA) GAMA-1 TechnologiesSenior Security Control Assessor (SCA)Washington, DCFull timeGAMA-1 Technologies is seeking a Senior Security Control Assessor to support cybersecurity assessments and compliance activities across federal systems and national security environments. This position is ideal for cybersecurity professionals with deep assessment experience who enjoy working at the intersection of compliance, technical security, and risk management.
Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA) Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA)Laurel, MarylandWe are seeking a Cybersecurity Compliance Auditor / Security Control Reviewer (SCR) to perform independent security control assessments across classified information systems to determine the overall effectiveness of the controls. Collaborate with Program Managers/System Owners, ISSMs, ISSOs, system engineers/administrators, and program teams to resolve findings and improve security posture.
Softthink Solutions IncSecurity Control Assessor / ST&E Lead Softthink Solutions IncSecurity Control Assessor / ST&E LeadWashington, DCRemoteResponsible for planning and executing security assessment and evaluation activities supporting system authorization. • Perform technical and non-technical security testing .
Technology Security Associates, Inc.Senior Security Control Assessor Technology Security Associates, Inc.Senior Security Control AssessorArlington, VA$130,000–$150,000 / yearJHNA/TSA provides for the welfare of its employees and their dependents through a comprehensive benefits program by offering healthcare benefits, paid leave, retirement plans, insurance programs, and education and training assistance. TSA is currently seeking a Senior Security Control Assessor who will serve as a Functional Lead and provide support to our NAVAIR customer in the DC Metro area.
Peraton IncCORA Assessor Peraton IncCORA AssessorHerndon, VA$86,000–$138,000 / yearMust attain and maintain CORA Assessor certification through the DCDC Reviewer Certification Program and have completed the DISA Security Readiness Reviewer (SRR) course (or equivalent documented completion). Deliver authoritative briefings and decision‑grade reports to commanders, senior leaders, and state leadership on assessment results and risk posture.
Peraton IncCORA Assessor/CHAP Trainer Peraton IncCORA Assessor/CHAP TrainerHerndon, VA$66,000–$106,000 / yearWe are seeking a highly skilled and innovative CORA Assessor/CHAP Trainer to join our team in the greater DMV area, supporting the Army National Guard. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies.
ManTechSecurity Control Assessor ManTechSecurity Control AssessorWashington, DCMust hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Information System Manager (CISM), or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1. + Initiate, coordinate, and recommend to the FBI Authorizing Official all Interconnection Security Agreement (ISAs), Memorandum of Understanding (MOUs), and Memorandum of Agreement (MOAs) that permit the interconnection of an FBI IS with any non-FBI or joint-use IS.
Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor) Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor)Washington, DC$112,000–$179,000 / yearThe ideal candidate will be confident writing Security Test Procedures (STPs), building Security Controls Traceability Matrices (SCTMs), interpreting ACAS/Nessus scan results, and using Splunk to verify control effectiveness. We are seeking a highly skilled and technically proficient Information Systems Security Officer (ISSO) with hands-on experience developing, implementing, and validating security controls within DoD RMF environments.
Aminov Search PartnersSecurity Control Assessor Aminov Search PartnersSecurity Control AssessorColumbia, MD$225,000–$225,000 / yearCandidates should bring over 12 years of experience in cybersecurity or systems engineering, with recent experience spanning five different cybersecurity fields. Key tasks include conducting compliance evaluations on-site, managing vulnerability assessments, and organizing penetration testing activities.
IMAGINEEER LLCSME Security Control Assessor IMAGINEEER LLCSME Security Control AssessorArlington, VAWe are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate control implementation and effectiveness. Additionally, the role maintains assessment documentation and tracking artifacts, reviews security documentation, and assists in the development of Plans of Action and Milestones (POA&Ms).
AGE solutionsSecurity Control Assessor, Mid AGE solutionsSecurity Control Assessor, MidFort Meade, MDRemoteDemonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications. Skills and Knowledge: Demonstrated experience with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices.
TestProsHIPAA Compliance Assessor/Consultant (Remote, Part-Time) TestProsHIPAA Compliance Assessor/Consultant (Remote, Part-Time)Sterling, VARemoteFull timeOur capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST SP 800-171 / CMMC Assessment and Compliance, HIPAA, Privacy, Computer Forensics, Software Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. TestPros is a successful and growing business, established in 1988 to provide Information Technology (IT) technical support services to a wide range of Commercial and U.S. Federal, State, and Local Government customers.
PeratonCORA Assessor PeratonCORA AssessorHerndon, Virginia$86,000–$138,000 / yearMust attain and maintain CORA Assessor certification through the DCDC Reviewer Certification Program and have completed the DISA Security Readiness Reviewer (SRR) course (or equivalent documented completion). Deliver authoritative briefings and decision‑grade reports to commanders, senior leaders, and state leadership on assessment results and risk posture.
Bowman Consulting Group, Ltd.Senior MEP Assessor Bowman Consulting Group, Ltd.Senior MEP AssessorHerndon, Virginia$100,000–$130,000 / yearOverview: The Senior MEP Assessor performs advanced mechanical, electrical, and plumbing (MEP) system inspections and condition assessments for commercial, institutional, and public facilities. Work performed in a variety of environments including commercial buildings, industrial facilities, mechanical rooms, rooftops, and construction sites.
Tyto Athene, LLCNewJunior Security Controls Assessor Tyto Athene, LLCJunior Security Controls AssessorWashington, Washington, DC$75,000–$95,000 / yearPerform security testing at the control-requirement level for each unique component of each system (e.g., application, web application server, financial systems, database server/instance, operating systems, specialized appliances, network and infrastructure devices, and end-user devices (e.g., mobile phones, laptops, etc.). Conduct technical content review and analysis of technical reports from security vulnerability scan, penetration test, and configuration compliance scan tools with respect to the subject system’s context and environment in order to analyze the findings accurately and completely.
PeratonCORA Assessor/CHAP Trainer PeratonCORA Assessor/CHAP TrainerHerndon, Virginia$66,000–$106,000 / yearResponsibilities: We are seeking a highly skilled and innovative CORA Assessor/CHAP Trainer to join our team in the greater DMV area, supporting the Army National Guard. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies.
PeratonInformation Systems Security Officer (Technical ISSO / RMF Assessor) PeratonInformation Systems Security Officer (Technical ISSO / RMF Assessor)Herndon, Virginia$112,000–$179,000 / yearPeraton offers enhanced benefits to employees working on this critical National Security program, which include heavily subsidized employee benefits coverage for you and your dependents, 25 days of PTO accrued annually up to a generous PTO cap and eligible to participate in an attractive bonus plan. The ideal candidate will be confident writing Security Test Procedures (STPs), building Security Controls Traceability Matrices (SCTMs), interpreting ACAS/Nessus scan results, and using Splunk to verify control effectiveness.
CarMax IncVehicle Condition Assessor CarMax IncVehicle Condition AssessorBrandywine, MD$20.40–$32.60 / hourPrinciple Duties and Responsibilities: • Conduct accurate vehicle condition assessments by collecting, recording, and communicating all required information (including cosmetic, specific mechanical conditions, options, etc.) about customer appraisals for a Buyer, Senior Buyer, or Purchasing Manager's analysis. General Summary: The Vehicle Condition Assessor (VCA) position is responsible for delivering exceptional customer service by accurately collecting, recording, and communicating information about customer appraisals to Buyers, Sr.
Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCIArlington, VA$100,000–$149,000 / yearClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
IBSS CorporationNewLead Certified CMMC Assessor (CCA) Consultant | Remote | 1 week Consulting Project IBSS CorporationLead Certified CMMC Assessor (CCA) Consultant | Remote | 1 week Consulting ProjectSilver Spring, MDRemote$50–$70 / hourIf you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the Talent Acquisition Department at Recruiting@ibsscorp.com. Our services include cybersecurity and enterprise information technology, environmental science and engineering (including oceans, coasts, climate, and weather), and professional management services.
IBSS CorporationNewSecurity Control Assessor IBSS CorporationSecurity Control AssessorSilver Spring, MD$80,000–$110,000 / yearDevelop, review, and evaluate essential security assessment outputs, including a Security Assessment Plan (SAP), Security Requirements Traceability Matrix (SRTM), Penetration Testing Report (PTR), Security Assessment Report (SAR), Risk Assessment Report (RAR), and Assessment Findings Report (AFR). If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the Talent Acquisition department at Recruiting@ibsscorp.com.
Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCIArlington, VAFull timeClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
SkyePoint DecisionsSecurity Control Assessor SkyePoint DecisionsSecurity Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
SkyePoint DecisionsSr. Security Control Assessor SkyePoint DecisionsSr. Security Control AssessorSterling, VARemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
DHD ConsultingNewFacility Assessors DHD ConsultingFacility AssessorsAlexandria, VAFieldwork: Perform physical inspections that may include ladder use, confined spaces, extended walking, and exposure to various weather conditions, while adhering to all safety protocols. Coordination: Support senior assessors in managing timelines and collaborating with team members to ensure timely completion of assessments.
SkyePoint DecisionsAWS Assessor SkyePoint DecisionsAWS AssessorWashington, DCSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. The AWS Assessor is responsible for conducting a comprehensive assessment of implemented controls and control enhancements to determine the effectiveness of the controls, i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security and privacy requirements for the system and the organization.
SkyePoint DecisionsSenior Security Control Assessor SkyePoint DecisionsSenior Security Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) -Crystal City, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) II to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) -Arlington, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) III to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
TLA-LLCSecurity Assessor TLA-LLCSecurity AssessorMcLean, VAIdentify Vulnerabilities and Risks: Utilize assessment tools and manual techniques (e.g., vulnerability scanning, penetration testing, code review) to identify security weaknesses, document findings, and assess the severity of risk. · Documentation and Reporting: Prepare detailed documentation, including Security Assessment Plans (SAP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms), for identified weaknesses and deficiencies.
Leidos Holdings IncTraveling Security Control Assessor (Journeyman) Leidos Holdings IncTraveling Security Control Assessor (Journeyman)Fort George G. Meade, MD$67,600–$122,200 / yearAdditional relevant experience may be considered in lieu of degreeDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings---The maximum starting salary for this position is $85,000. Assist with mentoring and guiding personnel by providing technical expertise, best practices, and professional development support to enhance team capabilities and knowledgeBasic Qualifications:Active DoD Top Secret clearance with SCI eligibility requiredCurrent DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the timeBachelor''s degree (IT-related field preferred) and five (5) years of cybersecurity or network security experience, including three (3) years of experience in a Certification and Accreditation/A&A role.
Leidos Holdings IncTraveling Security Control Assessor Leidos Holdings IncTraveling Security Control AssessorAlexandria, VA$85,150–$153,925 / yearDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings. Basic Qualifications: Active DoD Top Secret clearance with SCI eligibility required Current DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the time Bachelors degree (IT-related field preferred) and eight (8) years of cybersecurity or network security experience, including five (5) years of experience in a Certification and Accreditation/A&A role.
Chenega CorporationSecurity Control Assessor Chenega CorporationSecurity Control AssessorAlexandria, VAThe Security Control Assessor is responsible for supporting A&A or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks, ensuring validity and accuracy review of all associated documentation. Current knowledge of cloud-computing technologies and security as they relate to Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS).
VTGSecurity Control Assessor (SCA) VTGSecurity Control Assessor (SCA)Chantilly, VirginiaLevel 4 SCAs should possess all SCA Level 1, Level 2, and Level 3 qualifications, a compliant 1AM Level Ill certification, and the additional desired qualifications: • Ability to simultaneously manage and track multiple large-scale systems or programs involved in the A&A process. Level 3 SCAs should possess all SCA Level 1 and Level 2 qualifications, a compliant IAM Level II certification, and the additional desired qualifications: • Ability to manage and track systems or programs involved in the A&A process.
Jasint Consulting And Technologies, LlcSecurity Control Assessor Level 2 Jasint Consulting And Technologies, LlcSecurity Control Assessor Level 2Annapolis Junction, MD$85,000–$130,000 / yearMinimum Requirements: Experience: Five (5) years experience in security, systems engineering or system assessment to include recent experience within the last three (3) years in the following areas: Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture is required. JASINT participates in E-Verify and will provide the federal government with I-9 information to confirm that all new hires are authorized to work in the U.S. To learn more about E-Verify, please visit dhs.gov/e-verify.
TestProsSecurity Controls Assessor / OSCAL (Part Time, Remote) TestProsSecurity Controls Assessor / OSCAL (Part Time, Remote)Sterling, VARemoteOur capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST 800-53, NIST SP 800-171 / CMMC Consulting/Assessment/Compliance, PCI Compliance, HIPAA, SOC 2, GLBA, Zero Trust, Resiliency, Computer Forensics, Software Supply Chain Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment and Remediation, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. The ideal candidate will have strong hands-on experience conducting independent security control compliance assessments using guidelines from NIST (800-53, 800-171) and assessment automation via OSCAL (Open Security Controls Assessment Language).
TestProsSecurity Controls Assessor - Part time & Remote TestProsSecurity Controls Assessor - Part time & RemoteSterling, VARemoteOur capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST 800-53, NIST SP 800-171 / CMMC Consulting/Assessment/Compliance, PCI Compliance, Zero Trust, Resiliency, Computer Forensics, Software Supply Chain Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment and Remediation, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation of identified risks and vulnerabilities.
TestProsSOC 2 Assessor - Part time & Remote TestProsSOC 2 Assessor - Part time & RemoteSterling, VARemoteOur capabilities include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security, NIST 800-53, NIST SP 800-171 / CMMC Consulting/Assessment/Compliance, PCI Compliance, SOC 2, GLBA, Zero Trust, Resiliency, Computer Forensics, Software Supply Chain Assurance, Software Testing, Test Automation, Section 508 and WCAG Accessibility Assessment and Remediation, Localization Testing, Independent Verification and Validation (IV&V), Quality Assurance (QA), Compliance, and Research and Development (R&D) services. You should be able to deliver on the following expertly and consistently: Test and evaluate the operating effectiveness of internal controls against the relevant AICPA Trust Services Criteria (TSC), including:Security: Protection against unauthorized access, disclosure, and damage.
PeratonWeb Application Security Assessor PeratonWeb Application Security AssessorHerndon, Virginia$104,000–$166,000 / yearPerform advanced manual testing to validate complex findings (SQL injection, XSS, authentication/authorization flaws, access control issues) beyond automated scans. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies.
PeratonRegional Cyber Security Assessor / Secret PeratonRegional Cyber Security Assessor / SecretArlington, Virginia$80,000–$128,000 / yearRCSO's are cyber security consultants and experts whose core function is to support and implement the cyber security policies to secure the Department's critical information infrastructure by ensuring that classified and unclassified networks are installed, maintained, operated, and secured in accordance with the current department and U.S. Government regulations. Maintain security tools, Source NG assessment checklists, and related servers to include research, testing, and secure configuration of new hardware/software to meet constantly evolving cyber assessment needs.
NoblisCyber Information Assurance Specialist (Multiple Levels) NoblisCyber Information Assurance Specialist (Multiple Levels)Washington, Washington, DC$71,800–$123,300 / yearThe Cyber Information Assurance and Information Systems Security Specialist will support a team of geographically dispersed project managers, engineering technicians, analysts, and logisticians across multiple locations including Washington DC, San Diego, Norfolk, Mayport, Pearl Harbor, and international sites as part of the overall contract task of coordinating, communicating, and integrating maintenance, modernization, and sustainment performance information in support of the Navy’s Surface Warfare Enterprise. This position plays a vital role in the management and execution of readiness and sustainment initiatives for the Navy’s surface fleet, and supports the SEA 21 mission of integrating maintenance strategies, modernization plans, training needs, and technical, logistics, and programmatic efforts to manage the lifecycle of U.S. and partner Navy surface ships and systems from fleet introduction through transfer or disposal.
GeoDelphiDevSecOps Engineer GeoDelphiDevSecOps EngineerAlexandria, VARemoteWe are seeking a DevSecOps Engineer with deep expertise in DoD DevSecOps Reference Architecture, secure CI/CD implementation, and Defense cloud environments (AWS GovCloud, Azure Government, DoD Cloud or Air gapped environments). The Senior DevSecOps Engineer will lead efforts to integrate security practices into our development and operations processes, with a primary focus on assisting the company in obtaining and maintaining a DoD/DoW Authorization to Operate (ATO).