Cybersecurity Assessor

Job description

***This position is contingent upon award *** Responsibilities: Location: Hybrid - 3 days onsite Brooklyn, NY, 2 days remote - Evaluate enterprise systems, networks, and applications to identify vulnerabilities, assess risks, and ensure compliance - Interpret federal mandates (NIST SP 800-53/37), evaluate controls, and conduct Security Impact Analyses - Manage Plan of Action and Milestones (POA&M) documentation - Conduct security and compliance assessments for internal systems and third-party vendors - Analyze assessment results, document findings, and support remediation efforts - Use industry-standard GRC and risk tools for documentation and workflow - Maintain assessment documentation and contribute to security posture reporting - Perform daily RMF (Risk Management Framework) lifecycle control assessments Requirements: Applicant must be a U.S. citizen residing in the U.S. This position requires obtaining a clearance through the Department of Education. Applicants must be willing to undergo a background check as part of the hiring process. Education: Bachelor’s degree from an accredited university or 5-7 years of relevant experience. Experience: 5+ years in GRC methodologies, sec...