Evaluating, validating, and strengthening the security posture of information systems across the organization.
Reviewing system security documentation, assessing the effectiveness of management, operational, and technical controls, and identifying vulnerabilities or deficiencies requiring remediation.
Supporting incident response activities, evaluating new technologies for security risks, and producing comprehensive reporting to ensure compliance with cybersecurity standards and requirements.

2 years relevant experience with Bachelors in related field; 0 years experience with Masters in related field; or High School Diploma or equivalent and 6 years relevant experience.
5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience.
Technical understanding of Enterprise operating systems, components, protocols, and services (i.e., Windows, RHEL, Active Directory, ACAS, AV, etc.).
Demonstrated experience applying the Risk Management Framework to secure Enterprise information systems in the DoD/IC space.
Developing and maintaining technical documentation, such as Security Assessment Reports, System Security Plans, Plan of Action and Milestones, Security Controls Traceability Matrices, etc.
Active TS/SCI government security clearance required to start.

Security Control Assessor, SCA

Key skills