Cyber Security Controls Assessor, Lead
Tasks
- Collect control testing metrics
- Conduct security control assessments
- Conduct stakeholder interviews
- Coordinate with ISSOs and compliance teams
- Coordinate with system owners and engineers
- Develop plans for emergency data processing
- Develop security assessment plans
- Develop security assessment reports
- Develop testing plans
- Document assessment findings
- Document risk determinations
- Evaluate management controls
- Evaluate operational controls
- Evaluate technical controls
- Execute data processing risk assessments
- Identify security gaps
- Maintain assessment artifacts in GRC tools
- Perform control documentation reviews
- Perform security control reassessments
- Perform technical testing
- Provide advisory support for control implementation
- Provide risk-based recommendations
- Support audit readiness
- Support regulatory inspections
- Test data processing security measures
- Validate remediation actions
- Validate safeguard controls for digital files
Perks/Benefits
- 401k match
- Discretionary time off program
- Group term life insurance
- Long-term disability
- Medical/Dental/Vision insurance
- Paid Holidays
- Short-term disability
- Voluntary life insurance
Skills/Tech-stack
800-53 | Awareness Training | Control Assessment | GRC | Governance Risk | Governance risk compliance | Information security | NIST | NIST 800 | NIST 800-53 | RMF | Risk Assessment | Risk compliance | Security Awareness Training | Security Control | Security Control Assessment | Security awareness | Security clearance | Technical Testing | Technical documentation
Education
Related jobs
-
Information Security Analyst Senior USD 93K-112K800-53 | ACAS | DISA SCAP | DISA STIG | EMASS401k match | Dental insurance | Health insurance | Paid time off | Vision insuranceSenior-level Full TimeUSA HI Pearl Harbor - 425 …2d ago
-
Continuous Learning | Control Assessment | DIACAP | DOD Compliance | Information AssuranceMid-level Full TimeUnited States-Virginia-Virginia Beach2d ago
-
Sr. Security GRC Solutions Architect USD 130K-175KAudit evidence | AuditBoard | Azure Logic | Azure Logic Apps | CISSenior-level Full TimeOR-Lake Oswego US-TX-Home Office, United States2d ago
-
Cyber Security Analyst USD 85K-115KAccess Management | Compliance Auditing | Cybersecurity Risk Assessment | Cybersecurity risk | Detection Systems401k match | Dental insurance | Health insurance | Paid time off | Vision insuranceMid-level Full TimeUSA VA Manassas - 11680 Hayden …3d ago
-
Senior GRC Analyst USD 150K-185KAudit Coordination | Awareness Training | Business Continuity | Business Continuity Planning | Continuity planning401k | Equal compensation | Equity | Fertility and adoption benefits | Health insuranceSenior-level Full TimeRemote - USA R3d ago
-
Senior Security Engineer USD 153K-220K800-53 | AWS | Access Management | CI/CD | Continuous MonitoringSenior-level Full TimeRemote - USA R3d ago
-
Security Engineer (930867) USD 106K-233KAWS | Antivirus | DevSecOps | Firewall | Google CloudLearning opportunities | Networking programsSenior-level Full TimeLouisville, KY, United States3d ago
-
Cybersecurity Analyst USD 95K-166KData Visualization | Endpoint protection | Firewalls | Forensics | IDS/IPSHybrid work | Onsite 3 days per weekMid-level Full TimeWashington, DC, US3d ago
-
Senior Director, Cybersecurity Architecture USD 132K-174KAWS | Access Management | Application Security | Automation | Cloud SecuritySenior-level Full TimeCleveland, OH, United States R3d ago
-
Access Control | Access control logging | Alarm response | Computer literacy | Crisis management401k options | Dental insurance | Disability insurance | Discounts | Employee assistance programMid-level Full TimeSeattle, WA, United States3d ago
-
Access Security Operation Center Operator USD 64K-74KAccess Control | Alarm Monitoring | Database Query | Incident Response | PII handlingEntry-level Full TimeMiami, FL, United States3d ago
-
Mid-level Full TimeWashington DC3d ago
-
Security Analyst, Information Security USD 135K-200KApplication Firewall | Artificial Intelligence | Audit management | Change Management | Data reportingOn-call support | Remote workMid-level Full TimeRemote, United States R3d ago
-
Associate Cybersecurity Analyst - Incident Response USD 103K-141KAccess Control | Agile | Audit | Business Continuity | Cloud Computing401k matching | Bonding leave for new parents | Community service pay | Flexible-hybrid work | Nine company holidaysMid-level Full TimeArlington, TX, United States3d ago
-
Senior Cybersecurity Analyst USD 110K-148KContinuous Monitoring | Cybersecurity | Cybersecurity Policy | DOD STIG | EMASSHybrid work arrangementSenior-level Full TimeColorado Springs, Colorado, United States3d ago
-
DevSecOps Engineer (Secret Clearance) USD 107K-188K800-53 | AWS | AWS CloudFormation | Amazon Web Services | AnsibleMid-level Full TimeArlington/Rosslyn, Virginia, United States; Baltimore, Maryland, …3d ago
-
Senior Security Engineer USD 115K-166KAI monitoring | Assessment Reports | Automation | Change Management | Cloud Security401k plan | Dental insurance | Federal Holidays | Internal training programs | Medical insuranceSenior-level Full TimeBethesda, MD, United States3d ago
-
Security Architect/Engineer USD 107K-166K800-53 | AWS GovCloud | AWS Inspector | Cloud Security | CloudWatchFully remote workSenior-level Full TimeUnited States R3d ago
-
IT Security Analyst USD 86K-128KCybersecurity | Database Design | Event Correlation | Incident Response | Mission AssuranceOnsite work | Security clearance requiredMid-level Full TimeCoraopolis, PA, United States3d ago
-
Security Operations Engineer USD 88K-134KCIS Critical Controls | COBIT | Cloud Security | Critical controls | DLP401k match | Dental insurance | Employee assistance program | Health insurance | Hybrid work environmentMid-level Full TimeMadison, WI, United States3d ago
-
Cybersecurity Vulnerability Analyst USD 104K-166KApplication Testing | Automated vulnerability scanning | Bash | Burp Suite | CVSSMid-level Full TimeLinthicum, MD, United States3d ago
-
Security Engineer USD 80K-128K800-53 | AES 256 | Application Allowlisting | Application Firewall | CI/CDOccasional onsite travel | Remote workMid-level Full TimeHome, OR, United States R3d ago
-
Special Security Technician (Mid-Level) USD 80K-128KAccess Control | Air Force | Air Force Security | Air Force security policies | Alarm systemsMid-level Full TimeHampton, VA, United States3d ago
-
Cyber Security Analyst III (ISSO) USD 115K-191KACAS | Active Directory | Amazon EKS | Apache Tomcat | Artifactory401k match | Dental insurance | Life insurance | Medical insurance | Paid HolidaysSenior-level Full TimeVirginia Beach, VA, United States3d ago
-
Cyber Security Analyst III (ISSO) USD 115K-191KACAS | Amazon EKS | Apache Tomcat | Apache Web | Apache Web Server401k match | Dental insurance | Health insurance | Life insurance | Paid HolidaysSenior-level Full TimeVirginia Beach, VA, United States3d ago