Expert Security Controls Assessor

About The Position

Requirements

• 20+ years of experience in cybersecurity or information security fields
• Knowledge of NIST Special Publication 800-53, the associated security controls, and DoD-Specific implementations of the related Risk Management Framework process for system authorizations
• Knowledge of the DoW, it's components and the varied authorities and responsibilities of each component-type
• Ability to assess the relevant controls within operational systems, including Operational technology and information technology systems
• Ability to review of broad scope technical implementations for a wide array of disparate or disconnected systems, including capabilities such as cross domain solutions, layered defensive techniques, on premises, cloud or hybrid solutions, virtualization, Artificial Intelligence/Machine Learning (AI/ML), and robotic processing
• Ability to maintain a professional bearing in high pressure situations
• Ability to clearly and concisely communicate factual information regarding information systems, relevant implementation of security controls and their overall impact on system security
• TS/SCI clearance
• Bachelor's degree

Nice To Haves

• Experience conducting security controls assessment of operational DoW systems
• Knowledge of the Joint Special Access Program Implementation Guide
• Ability to work independently, while still maintaining a constant flow of communication to other team members and government clients
• Master's degree in IT, Cybersecurity, Engineering or Information Security fields
• CISSP, CASP, or other expert-level Cybersecurity Certifications

Responsibilities

• Assists in designing, implementing, and managing policies and procedures to ensure database and software security.
• Applies leading-edge principles, theories, and concepts, contributes to the development of new principles and concepts.
• Works on unusually complex problems and provides highly innovative solutions.
• Operates with substantial latitude for unreviewed action or decision, mentors or supervises employees in both company and technical competencies.
• Assess the relevant controls within operational systems, including Operational technology and information technology systems.
• Review of broad scope technical implementations for a wide array of disparate or disconnected systems, including capabilities such as cross domain solutions, layered defensive techniques, on premises, cloud or hybrid solutions, virtualization, Artificial Intelligence/Machine Learning (AI/ML), and robotic processing.
• Maintain a professional bearing in high pressure situations.
• Clearly and concisely communicate factual information regarding information systems, relevant implementation of security controls and their overall impact on system security.

Benefits

• health, life, disability, financial, and retirement benefits
• paid leave
• professional development
• tuition assistance
• work-life programs
• dependent care
• recognition awards program