Junior Security Control Assessor

Leidos Holdings Inc.•Chambersburg, PA

35d•$67,000•Hybrid

About The Position

Leidos is seeking multiple Junior Security Control Assessors to join our SCA team. This position requires significant travel-please review the position overview below for important details. The maximum starting salary for this role is $67,000. A Secret clearance or higher and a IAT/IAM II certification (eg Security+ or equivalent) is required for consideration. Position Overview: As a Junior Assessor, you will play a key role in conducting Security Control Assessments at various government sites, with approximately 85% of your time dedicated to travel. Travel may be domestic or international, depending on mission requirements, and per diem is provided to cover expenses. You'll have the flexibility to work from home when not on assignment, but must be local to one of our three locations for training and occasional customer meetings - Alexandria, VA, Fort Meade, MD, or Chambersburg, PA. Your first 6-8 weeks will involve assessment training in a virtual classroom environment, which includes training modules, lectures, and exams. You will also gain hands-on experience by shadowing Senior Assessors on local assessments across the greater DC-Baltimore area (referred to as "check rides"). Once your training and check rides are successfully completed, you will be added to the regular travel schedule.

Requirements

Current DoD Secret clearance with ability to obtain Top Secret with SCI Eligibility (active TS or TS/SCI strongly preferred)
Current DoD 8570 IAM II or IAT II certification (ie Security+ or equivalent).
Ability and willingness to travel for assessments as required, approximately 85%.
Bachelor's degree (IT-related field preferred) and two (2) years of cybersecurity or network security experience. Additional relevant experience may be considered in lieu of a degree.
Familiarity with STIGs (Security Technical Implementation Guides), Plan of Action and Milestones (POA&Ms), cybersecurity best practices, and relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS.
Understanding of the RMF process, NIST SP 800-37, NIST SP 800-53, and CNSSI 1253.
Strong written and verbal communication skills for reporting assessment findings.

Responsibilities

Conduct cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN.
Evaluate systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing.
Adhere to policies and processes for each assessment type.
Support assessment development and execution to ensure security expertise is properly applied.
Assist the SCA Team Lead with coordinating logistics, test plans, and scope.
Perform vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS.
Analyze security gaps and provide mitigation recommendations.
Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines.
Provide risk analysis and assessment results for authorization recommendations.
Participate in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R.