Security Controls Assessor

A company is looking for a Security Controls Assessor to support a high-visibility federal program focused on enhancing cybersecurity and privacy measures.

Key Responsibilities

Conducting security and privacy control assessments for various systems and environments

Implementing risk management processes using NIST frameworks and establishing continuous monitoring strategies

Testing and validating controls, and developing risk scoring methodologies to inform risk management decisions

Required Qualifications

Degree in a cyber-related field or equivalent relevant experience

Experience with security and privacy control assessments in federal information systems

Deep understanding of NIST RMF processes and hands-on application across assessment lifecycles

Experience in developing and managing Plans of Action and Milestones (POA&Ms)

Familiarity with integrating security and privacy controls into the System Development Life Cycle (SDLC)