Demo
Salary Resume Critique Job Openings

Security Controls Assessor (SCA)

Humango Solutions
Washington, DC Full Time
POSTED ON 4/7/2025 CLOSED ON 4/16/2025

What are the responsibilities and job description for the Security Controls Assessor (SCA) position at Humango Solutions?

Summary

Humango is currently hiring a Security Control Assessor for our customer – the Department of Homeland Security (DHS). The position is in the Washington, DC area and is an on-site position. The Security Control Assessor (SCA) is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an information system to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). The Security Control Assessor shall provide an assessment of the severity of weaknesses or deficiencies discovered in the information system and its environment of operation and recommend corrective actions to address identified vulnerabilities. The SCA shall conduct analysis of information system security controls, information systems and applications for weaknesses, and documents recommendations addressing security measures to protect information against loss of confidentiality, integrity and/or availability.

Duties and Responsibilities

  • Perform assessment of information systems, based upon the Risk Management Framework (RMF).
  • Evaluate Authorization packages and make authorization recommendations.
  • Evaluate IS threats and vulnerabilities to determine whether additional safeguards are required.
  • Advise the Information System Security Officer (ISSO) concerning the impact levels for confidentiality, integrity, and availability for information on a system.
  • Review and approve the IS Security Control Assessment Procedures, the Security Assessment Plan (SAP), the System Security Plan (SSP), and the Security Control Traceability Matrix (SCTM).
  • Perform configuration management of a client central repository for authorization documentation (i.e., Body of Evidence (BOE)), which is maintained using an Assessment and Authorization (A&A) workflow software application.
  • Review and compile the BOE (i.e., security control allocations, security control implementations, test results, Security Assessment Reports (SARs), Plan of Action and Milestones (POA&M), risk acceptance recommendations, and risk mitigation strategies) to support the recommendation for client risk acceptance authorization decisions.
  • Perform vulnerability and compliance scans using approved enterprise scan solutions such as Tenable to validate status.

Qualifications:

  • Degree in Computer Science or related discipline from an accredited college or University required or the equivalent (7 years) combination of education, professional training, or work experience.
  • At least one of the following certifications: Security , CAP, CASP, GSLC, CISM, CISSP
  • Possess 5 years of experience conducting security control assessment of all NIST 800-53 controls.
  • Possess 1 years' DevOps experience.
  • Possess 1 years’ of assessing commercial cloud environments such as Amazon Web Services (AWS) and Microsoft Azure.
  • Technical understanding (understand network diagrams, vulnerability, and compliance scans).
  • Experience creating and maintaining various security documents such as the Security Control Plan/Vulnerability Security Review (SCP/VSR), System Backup and Recovery Plans (SBRP) and Plan of Action and Milestone (POA&M) tables.
  • Familiarity with a variety of the IT technologies, architecture, concepts, best practices, and procedures.
  • Strong attention to detail, ability to interface with all levels of personnel (system administrators, ISSM, Authorizing Officials, etc.).
  • Experience creating and maintaining various security documents such as the Security Assessment Plan.
  • Knowledge of NIST 800-53 security controls and required documentation.
  • Experience with Tenable and Security Technical Implementation Guides (STIGs).
  • Excellent Communication skills (written and oral).

Clearance Required: Must have active TS Clearance with SCI eligibility and have the ability to acquire DHS Suitability.

Company Overview

Humango Solutions, LLC (Humango) is a Small Business Administration (SBA)-certified Historically Underutilized Business Zone (HUBZone) and Woman-Owned Small Business (WOSB) that delivers services and solutions that maximize our customers’ positive impact on society. We are dedicated to supporting, maximizing, and evolving digital solutions and information technology that enables government services to be more effective, accessible, and available to the public.

If you are passionate about making a difference through innovative solutions, we invite you to apply for the Controls Assessor (SCA) position at Humango Solutions. Join us in creating exceptional experiences that drive positive change!

Job Type: Full-time

Pay: $95,000.00 - $100,000.00 per year

Benefits:

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Employee assistance program
  • Flexible spending account
  • Health insurance
  • Health savings account
  • Life insurance
  • Paid time off
  • Tuition reimbursement
  • Vision insurance

Schedule:

  • Day shift
  • Monday to Friday

Experience:

  • Conducting Risk Assessments: 2 years (Required)
  • Developing Security Assessment Reports: 2 years (Required)
  • NIST 800-53 Controls: 5 years (Required)
  • Security Controls Assessments: 5 years (Required)

Security clearance:

  • Top Secret (Required)

Ability to Commute:

  • Washington, DC 20032 (Required)

Work Location: In person

Salary : $95,000 - $100,000

Lead Security Controls Assessor
Tyto Athene, LLC -
Arlington, VA
View Job Details
Junior Security Controls Assessor
Warriors Recruiting -
Washington, DC
View Job Details
Security Control Assessor I
P-11 SECURITY -
Crystal, VA
View Job Details

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Security Controls Assessor (SCA)?

Sign up to receive alerts about other jobs on the Security Controls Assessor (SCA) career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$164,835 - $201,088
Income Estimation: 
$135,994 - $168,063
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$91,971 - $119,923
Income Estimation: 
$114,980 - $148,259
Income Estimation: 
$114,980 - $148,259
Income Estimation: 
$128,215 - $164,493
Income Estimation: 
$87,093 - $107,335
Income Estimation: 
$111,725 - $147,313
Income Estimation: 
$112,673 - $137,290
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$112,673 - $137,290
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
This job has expired.
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Not the job you're looking for? Here are some other Security Controls Assessor (SCA) jobs in the Washington, DC area that may be a better fit.

Security Controls Assessor

Alpha Omega, Arlington, VA

FedRAMP Security Controls Assessor

Zachary Piper Solutions, Mc Lean, VA

View More Jobs

AI Assistant is available now!

Feel free to start your new journey!