Senior Security Control Assessor

    • Reston, VA

Kforce has a client in search of a Senior Security Control Assessor in Reston, VA. Key Tasks:

  • Plan and/or perform security controls assessments for customer systems in accordance with NIST SP 800-53 and NIST SP 800-53A, using established process, guidance and methods to support the customer's authority to operate process, or its annual assessment process - activities could include control assessment (Interview & Examination, physical security walkthroughs and/or technical vulnerability testing)
  • Assist with identification and remediation of Plan of Action & Milestones (POA&MS)
  • Identify existing and/or potential organizational security weaknesses as a result of the assessments, including personnel controls, training, incident and emergency response, logical security controls, physical security controls, operational security and integrity of software applications and data for customer engagements
  • Prepare and/or assist in the preparation of reports and presentations required for communicating findings of the security control assessments
  • Conduct vulnerability assessments on networks, servers, websites and databases, as directed by the government, to assist with other assessment activities
  • Assess, review, update or develop documentation to support a Federal client in their security controls assessment activities
  • Compile, or provide input to, weekly customer status reporting and project plans
  • Perform maintenance of tools, laptops and upkeep of testing materials
  • Make recommendations for process improvements and increasing efficiency of assessments
  • Perform analysis on assessment results and make holistic and programmatic recommendations

  • A Bachelor's degree in Information Technology or a related discipline
  • Demonstrated 8+ years of IT security experience; preferably in IT Security Federal Consulting
  • In-depth knowledge of laws, directives, orders, etc., pertaining to IT security and directing Federal government agencies
  • Strong knowledge of NIST Risk Management Framework (RMF)
  • Familiarity with IT security products (hardware, software, and services), cloud technologies, protocols, and best practices
  • Prior experience performing assessments to include validating and justifying compliance or non-compliance in accordance with NIST (National Institute of Standards and Technology) guidance, FISMA (Federal Information Security Management Act), FISCAM (Federal Information System Controls Audit Manual), for non-DOD Federal agencies
  • Understanding of standard security policies and procedures
  • Excellent written and oral communications skills
  • Experience in various scanning and testing tools
  • Certified Ethical Hackers (CEH), Security+, or higher Certifications are desired
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

Kforce is a staffing and solutions firm offering technology and finance jobs at top employers nationwide.

Kforce Company Image

Back to top