We are seeking a Security Controls Assessor (Level 3) for a prime contract that is based out of our Columbia, MD office.
Analyze design specifications, design documentation, configuration practices and procedures, and operational practices and procedures
Conduct on-site evaluations
Conduct verification and validation for security compliance of low and moderately complex information systems, products, and components
Provide identification of non-compliance of security requirements and possible mitigations to requirements that are not in compliance
Validate the security requirements of the information system
Verify and validate the system meets the security requirements
Provide vulnerability assessment of the system, coordinate penetration testing, and provide a comprehensive verification and validation report (certification report) for the information system
Facilitate penetration testing
Provide a comprehensive verification and validation report (certification report) for the information system
Active TS/SCI with Poly
Bachelor's degree in Computer Science or Information Technology Engineering or related field of study is required
A Master's degree in Computer Science or Information Technology Engineering or related field of study may be substituted for two (2) years experience, reducing the requirement to ten (10) years experience
In lieu of a Bachelor's degree, an additional four (4) years in security or system engineering experience may be substituted
Twelve (12) years experience in security, systems engineering or system assessment to include recent experience within the last three (3) years in five (5) or more of the following areas: Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture is required.