Senior Security Controls Assessor (SCA)
A
AvintCybersecurity
United StatesFull-TimeSenior
Salary125,000 - 141,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 8-10 years
- Required Skills
- Cybersecurity
Requirements
- Bachelor’s degree (BS/BA) or equivalent professional experience.
- Minimum 8-10 years of dedicated experience in cybersecurity, information assurance, or IT auditing.
- At least 6 years of experience performing hands-on security controls assessments of complex (C4) systems.
- Security+ certification required.
- CISSP, CAP, or CASP certifications desired.
- Advanced knowledge of NIST SP 800-53, NIST SP 800-37, and NIST SP 800-171 frameworks.
- Familiarity with cloud security concepts (AWS, Azure, Google Cloud) and FedRAMP.
- Strong technical writing and critical thinking skills.
- Exceptional interpersonal and diplomatic communication skills.
Responsibilities
- Lead comprehensive security control assessments using interview, examination, and testing methods.
- Verify compliance with NIST SP 800-37, NIST SP 800-53, NIST SP 800-171, FISMA, and/or FedRAMP frameworks.
- Analyze system architectures, network configurations, and policies to identify vulnerabilities.
- Review vulnerability scan results from tools like Nessus or Qualys.
- Act as a technical mentor for junior and mid-level team members.
- Perform peer reviews of assessment documentation and test reports.
- Author Security Assessment Reports (SAR) and present findings to Authorizing Officials.
- Assist system owners in developing Plans of Action and Milestones (POA&M).
View Full Description & ApplyYou'll be redirected to the employer's site