4689 Security Control Assessor

GENERAL DUTIES:

This role is responsible for leading evaluations and ensuring the effectiveness of security controls for classified information systems and Platform Information Technology (PIT) in accordance with the Risk Management Framework (RMF). Assigned systems will process up to, and including Alternate Compensatory Control Measures (ACCM), Special Access Programs (SAP), Controlled Access Programs (CAP), and Sensitive Compartmented Information (SCI) data.

The technical functions encompass a range of tasks aimed at assessing, testing, and validating security measures to identify vulnerabilities and enhance overall security posture. Here are the technical functions typically associated with ensuring the integrity, confidentiality, and availability of data within these highly restricted programs.

• Accountable for managing and overseeing the assessments and authorization activities for systems within the assigned portfolio.
• Lead relevant program & project team meetings in coordination with stakeholders to establish RMF assessment criteria and conduct system and program level cyber security testing.
• Identify possible improvement actions to enhance the SAP SCA team performance and ensure quality and

REQUIRED QUALIFICATIONS:

• Experience: 7 years of cyber security related experience or the equivalent combination of professional support, education, and professional training. 2 years of prior experience as a Security Control Assessor (SCA). 4 Years prior experience in DoD or IC Special Programs.
• Education: Bachelor's degree from an accredited institute in an area applicable to the position in Cybersecurity, Computer Science, Software Engineering, Systems Engineering, Information Systems, or a related technical discipline.
• Certifications: Certification in DoD 8570.01-M Cybersecurity workforce, compliance with DoD Directive 8140
• Cyberspace Workforce Management, and IAT Level III (CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP).
• Skills: Strong independent work ethic, exceptional oral and written communication skills, and the ability to work unsupervised and within a team environment. Focuses on the consistent execution and updating of organizational
• Certifications: Certification in DoD 8570.01-M Cybersecurity workforce, compliance with DoD Directive 8140 Cyberspace Workforce Management, and IAT Level III (CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP).

DESIRED QUALIFICATIONS:

• Current Counter-Intelligence Polygraph.
• Experience with Protection Level (PL)3 technologies, which bind security attributes to data objects.
• Experience conducting cyber security assessment of complex SAP, CAP, ACCM, and SCI systems.
• Experience with technologies such as cloud computing, encryption, Public Key Infrastructure (PKI).
• Background and understanding of the organizational relationships between the Intelligence Community (IC), DoD SAP community, and DIA.
• Knowledge of networking technologies and protocols.
• Knowledge of the hardening process for operating systems and applications.

CLEARANCE:

• TS/SCI minimum