Security Control Assessor (SCA)

Ready to Ignite your career and work alongside some of the most innovative and brightest professionals in emerging and secure technology? Join us and unleash your potential working in an Agile environment while securing enterprise systems and applications needed to support the men and women charged with safeguarding the American people and enhancing the Nation's safety, security, and prosperity. As a Security Control Assessor (SCA) to contribute to our success by ensuring systems meet rigorous security standards. Clearance Level: Top Secret Clearance (SCI Eligibility preferred)

Your Role:

• Advise the Information System Owner (ISO) on impact levels for Confidentiality, Integrity, and Availability (CIA) for system data
• Conduct comprehensive security assessments for each Information System (IS)
• Initiate and manage POA&Ms, addressing weaknesses with defined timelines and recommendations from the Security Assessment Report (SAR)
• Evaluate security documentation, providing written recommendations for security authorization to the Chief Information Security Officer (CISO) and Authorizing Official (AO)
• Assess the impact of system changes, operational environments, and mission requirements on system authorization
• Act as a cybersecurity advisor to the CISO and AO, providing expertise on system risks and mitigations
• Contribute to the development of continuous monitoring strategies at the system level, aligning with DoD and Component-level frameworks
• Document and rate noncompliant security controls, identifying aggregate risk levels in the SAR and key risk drivers
• Develop tailored continuous monitoring plans for each IS to ensure ongoing security compliance
  
  
  

Requirements

• Education: Bachelor's degree or higher (relevant experience can substituted for Education)
• Experience: 12 years of IT experience, including 7 years of relevant security experience
• Certifications: DOD 8140 IAM Level II (CAP, CASP, CISM, CISSP, GSLC, CCISO)
• Clearance: Active Top-Secret Clearance (SCI eligibility preferred)
• Strong knowledge of Risk Management Framework (RMF) NIST 800-37 and continuous monitoring (NIST 800-137)
• Hands-on experience with FISMA, NIST 800-series, FIPS, SA&A processes, vulnerability/patch management, and POA&M policies
• Proficiency with Microsoft Word, Excel, PowerPoint, and vulnerability scanning tools
• Expertise in cloud-based security authorizations (FedRamp, AWS, Azure) and CSAM tools
• Demonstrated experience documenting security materials (SSPs, SARs, SAPs)
  
  
  

Preferred:

• Experience assessing cloud security authorizations and interpreting risk postures from assessment reports
• Additional cybersecurity certifications at IAM-III level
• Strong project management and executive briefing experience
  
  
  

Benefits

• 401(k) with matching and 100% Vested
• Health Insurance - 3 plans to select from
• Dental insurance
• Vision Insurance
• Health savings account
• Life insurance
• Short Term Disability
• Long Term Disability
• AD&D
• Paid time off
• Professional development assistance
• Training
• Tuition reimbursement
• Flexible schedule
• Flexible spending account
• Referral program
• Paid Legal Plan
• and more...
  
  

Ignite IT is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, Veteran status, sexual orientation, or other protected characteristic. In accordance with EO 13665 Final Rule, Ignite IT will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Applicants selected must be able to possess and maintain a government clearance