isecjobs.com

Security Control Assessor

Work from home, VA

Full Time Senior-level / Expert USD 90K - 110K
Company logo

ECS

ECS is a technology leader in science, engineering, cloud, cybersecurity, artificial intelligence, machine learning and IT modernization. Reach out today.

View all jobs at ECS

Apply now Apply later

ECS is seeking a Security Control Assessor to work Remotely.

 

Salary Range: 90,000-110,000

General Description of Benefits  

 

  • Strong written and verbal communication skills. 
  • Strong communication ability across all levels of management. 
  • Experience in planning assessments and a collaborative member with a team of security control assessors 
  • Three (3) years’ experience supporting security assessment teams is required. 
  • Experience in presenting control requirements and deficiencies to both technical and non-technical audiences. 
  • Experience performing detailed, full-scope technical security control testing for each of the component types, including development of security and privacy assessment plans is required. 
  • Ability to analyze information system configurations and technical specifications against NIST SP 800-53 and other overlays 
  • Possesses a strong understanding of the NIST Special Publication 800-53 security and privacy controls, the NIST Cybersecurity Framework and other information security and privacy laws and regulations. 
  • Experience with development and writing of risk-based documentation. 
  • Experience with Power automate, Power BI, & Microsoft Project Online.
Qualifications
  • Experience performing Certification and Accreditation (C&A) activities, including risk assessments, Security Plans, Security Controls Assessments (SCA), Certification and Accreditation documents. 
  • Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities. 
  • Experience with cloud technology offerings from AWS and Azure and assessing systems hosted within those environments. 
  • Experience performing assessment in accordance with the policies, procedures, and standards of the Office of Management and Budget (OMB), the National Institute of Standards and Technology (NIST), and the OCC. 

  • Certifications/Licenses: 

    • Bachelor’s degree or higher in Computer Science’s, MIS/IT, Engineering, Information Security/IA, or related discipline to work requirement 
    • Five (5) or more years of Information Security experience required. 
    • Two (2) years of experience with the use of eGRC tools. 
    • One of the following certifications preferred: Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Certified Risk and Information Systems Control (CRISC), or Certified Information Security Auditor (CISA). 

 

Apply now Apply later
Job stats:  26  1  0

Tags: AWS Azure Business Intelligence C CEH CISA CISSP Cloud Computer Science CRISC Monitoring NIST NIST 800-53 Privacy Risk assessment Security assessment

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information System Security Officer jobsIT Security Analyst jobsSecurity Operations Engineer jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsSenior Security Analyst jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Product Security Engineer jobsSenior Network Security Engineer jobsSecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSecurity Specialist jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsCyber Threat Intelligence Analyst jobsSecurity Operations Analyst jobsSenior Software Engineer jobsSenior IT Auditor jobsCybersecurity Specialist jobsNetwork Engineer jobs
Bash jobsCEH jobsTS/SCI jobsEncryption jobsEDR jobsSDLC jobsSplunk jobsThreat detection jobsMalware jobsRMF jobsTerraform jobsFinance jobsIDS jobsSQL jobsTop Secret jobsCompTIA jobsForensics jobsITIL jobsIPS jobsSOC 2 jobsOWASP jobsActive Directory jobsDocker jobsClearance Required jobsGIAC jobs
CRISC jobsIntrusion detection jobsTCP/IP jobsOSCP jobsAnsible jobsHIPAA jobsVPN jobsMITRE ATT&CK jobsDoDD 8570 jobsZero Trust jobsData Analytics jobsJavaScript jobsSOAR jobsCCSP jobsSOX jobsBanking jobsIT infrastructure jobsJira jobsUNIX jobsDNS jobsIndustrial jobsNIST 800-53 jobsKPIs jobsCISO jobsMachine Learning jobs