Security Control Assessor - TS/SCI with Polygraph required
About The Position
Seize your opportunity to make a personal impact as a Security Control Assessor supporting customer activities. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career. At GDIT, people are our differentiator. As a Security Control Assessor, you will help ensure today is safe and tomorrow is smarter. Our work depends on a Security Control Assessor joining our highly skilled team to be a premier provider of cyber security services to the customer. We provide consummate cyber security risk management “as a service” platform across multiple fabrics and centers. We have responsibility to ensure operational IT capabilities provide the client with necessary timeliness, accuracy and security of information demanded from all our highly professional roles. Be the change, lead our change – join us!
Requirements
- Bachelor's Degree (Computer Science or Engineering, Information Systems, Information Technology, Cybersecurity, or a closely related discipline)
- 10+ yrs (Must have 4+ yrs of hands-on SCA experience)
- TS/SCI with Polygraph
- Compliance and vulnerability scanning tools (XACTA, RedSeal, Tenable, Nessus, Splunk, and/or other vulnerability scanners)
- Strong understanding of the Assessment and Authorization (A&A) process including Cloud Best Practices
- Excellent oral and technical writing skills
- US Citizenship Required
Nice To Haves
- CASP, CISA, CISSP, AWS Cloud Practitioner, AWS Solutions Architect Associate, Microsoft AZ 900, Microsoft AZ-500
Responsibilities
- Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems working either alone or as part of a team.
- Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation including system level attacks and user level attacks.
- Applies experience with RMF, CNSSI 1253, NIST SP 800-53 Rev 5, and NISPOM
- Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
- Demonstrated experience conducting hands on security testing, analyzing results, documenting risks, and recommending countermeasures
- Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer assess systems against information assurance policies, regulations and instructions
- Develops and documents security evaluation test plans and procedures
- Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation
Benefits
- 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career
- Professional growth opportunities including paid education and certifications
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
- variety of medical plan options, some with Health Savings Accounts
- dental plan options
- a vision plan
- a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match
- full flex work weeks where possible
- a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
- short and long-term disability benefits
- life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
