Security Control Assessor (SCA)

SMX is seeking a Security Control Assessor (SCA) to directly support the Secretary of the Air Force/Concept Development Management Office (SAF/CDM), Mission Architecture Innovation Division (CDMM). The organization manages a portfolio of projects to develop and implement information systems to support a broad range of business and mission activities.  This is an onsite role in Fairfax, VA.

As Security Control Assessor (SCA) you will be responsible for conducting system security assessment activities to include but not limited to the architecture and implementation of technical cybersecurity measures.  The SCA reports to Authorizing Official on all cyber activities.

This position requires a DoD TS/SCI clearance, which requires US citizenship for work on DoD contracts.

Essential Duties & Responsibilities

• Develop cybersecurity policies, procedures, standards, and guidance
• Provide input to assessment and authorization process activities and related documentation such as systems concept of operations, system security design, implementation plans, operational procedures, and maintenance training materials
• Provide engineering support and assistance to authorization/accreditation test and evaluation activities
• Provide continuous monitoring support for information systems
• Develop IT architecture deliverables, specific to information security countermeasure implementations, for operational systems and systems under development
• Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST 800-37) Reports to Authorizing Official on all cyber activities

Required Skills/Experience

• DoD Top Secret/SCI
• Certifications: 8140 / 8570 IAM/IAT III (CISSP required)
• BS in STEM / Computer Science/ Cybersecurity or related field
• Minimum 7-10 years’ experience
• Minimum 5 years’ experience as a security control assessor or representative
• Occasional travel may be required
• Experience with Integration and engineering of cybersecurity related tools such as vulnerability scanners (Nessus), anti-malware solutions (McAfee, Trellex, ClamAV, etc), Security Information
• Event Management (SIEM) tools (such as Splunk / ELK / OpenSearch), secure baseline implementation and hardening, basic system administration for Linux or Windows environments
• Experience with translation of technical security control plans and objectives into actionable engineering milestones and creation of security control plans / assessment procedures
• Experience within modern cloud environments is required (AWS, Oracle, MS, Google)
• Experience with Xacta or Emass

Desired Skills/Experience

• Special Access Program community experience
• Master’s Degree in related discipline

Application Deadline:  May 5, 2025

#CJPOST 

 

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:$133,100—$221,800 USD

 

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

SMX is an Equal Opportunity employer including disabilities and veterans.

Selected applicant may be subject to a background investigation and/or education verification.