SME Security Control Assessor

Overview

SME Security Control Assessor

Onsite McLean, VA 5 Days a Week

Active TS / SCI, CI Poly Clearance Required

Summary

Our client is an information technology and cybersecurity company located in Ashburn, Virginia. They primarily serve government and enterprise clients, receiving a large number of their contracts from the United States Department of Defense.

Responsibilities

Our client is looking for multiple SME Security Control Assessors to join their team in supporting a federal client!

• Knowledge of Independent Verification & Validation (IV&V) of security controls
• Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction
• Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems working either alone or as part of a team
• Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation including system level attacks and user level attacks
• Applies experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM
• Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)

Requirements

• 10+ years of overall technical related experience along with related cyber security experience
• 5+ years of expeirence working as a Security Control Assessor
• Compliance and vulnerability scanning tools XACTA - (highly preferred) , RedSeal, Nessus, Splunk, McAfee ePO, and / or other vulnerability scanners)
• Demonstrated experience conducting hands on security testing, analyzing results, documenting risks, and recommending countermeasures
• Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer / customer assessment systems against information assurance policies, regulations, and instructions
• Demonstrated experience providing threat analysis based on identified security vulnerabilities
• Develops and documents security evaluation test plans and procedures
• Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation
• Strong understanding of the Assessment and Authorization (A&A) process
• Excellent oral and technical writing skills

Preferred Requirements

Desired Certifications : CASP, CCNP Security, CISA, CISSP, GCED, or GCIH

Education / Certification Requirements

A Bachelor’s degree in Computer Engineering, Computer Science, Electrical Engineering, Information systems, Information Technology, Cybersecurity, or a closely related discipline is required

Clearance Requirements

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information;

an active TS / SCI, CI Poly clearance is required. Additionally, a drug test on all applicants who have accepted an offer of employment will be conducted.

Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job.

Duties, responsibilities, and activities may change at any time with or without notice. About Us Northern Virginia-based Precision Solutions is an expert in staffing solutions for companies of any size that open the door to new opportunities and seek outstanding talent.

We pride ourselves on being versatile enough to tailor our relationships to the needs of each individual client, being agile in the fast-paced marketplace, and being precise in meeting the needs of any company.

Equal Opportunity Employer Statement Precision Solutions is an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, or local laws.