Security Control Assessor, Senior

Job description

Security Control Assessor, Senior The Opportunity: C ond uct independent assessments of management, operational, and technical security controls for client information systems in accordance with the NIST Risk Management Framework ( RMF ) . Perform technical evaluations of General Support Systems ( GSS ) and applications using both manual and automated met hods to verify proper security control implementation and configuration. Assess the effectiveness of security controls, identify weaknesses, and evaluate the severity of vulnerabilities across the system and its operating environment. Develop and deliver actionable recommendations for corrective measures. Create and review all Security Control Assessment ( SCA ) artifacts, including the Security Assessment Plan ( SAP ) , Security Assessment Report ( SAR ) , and Security Configuration Report ( SCR ) . You Have: 5+ years of experience performing security assessments of federal systems to ensure compliance with NIST SP 800‑53 Rev. 5, NIST SP 800‑37 Rev. 1, and agency-specific requirements Experience c ond ucting vulnerability assessments and analyzing scan results using Tenable Nessus, Web Inspect, and Fortify Experience performing m...