What are the responsibilities and job description for the Security Control Assessor position at The Newberry Group?
Who We Are…
Today’s leading government agencies are putting their trust in Newberry Group, and for good reason.
Newberry brings strength to our clients, from the inside out through:
• client intimacy and superior quality,
• presence and accountability in our relationships, and
• integrity and innovation at the forefront of everything we do.
Newberry Group is a professional services firm, providing information security compliance, governance, program/project management, and mission critical project-based consulting to public sector clients nationwide.
The strength of our company is a direct reflection of our highly skilled and talented workforce.
Location
This is a full-time remote/telework position within the United States. Must be able to obtain a Public Trust clearance.
Position Duration
This position will go to May 2025 with the potential for continuing beyond May pending new contract award.
Pay
Salary range $85,000 to $90,000 annually for W2 employee. 1099 consulting agreement also an option.
Job Summary
Newberry Group's Public Sector Division has an immediate need for a Security Control Assessor with the ability to support the requirements within the Risk Management Framework at our client, USDA. A strong skillset for collecting and analyzing data within the security boundaries at USDA. Furthermore, the ability to review and assess systems to ensure security compliance with NIST standards. The candidate should be highly skilled with Microsoft suite and other industry leading security policy and assessment tools.
This role receives assignments from and reports directly to the Newberry Lead supporting USDA Governance Services Division (GSD) Security Compliance Services Branch (SCSB). The position is integral to our success at USDA and providing our client with the most organized and professional team members to meet their expectations.
Responsibilities and Duties
- Develop Security Assessment Plan (SAP). Determine the initial controls to be assessed by reviewing the accepted System Security Plan (SSP). Once the security controls to be assessed have been identified, use NIST Special Publication 800-53A, to identify an appropriate assessment procedure for each security control and control enhancement. The security control assessment plan will identify all planned assessment methods in a manner that ensures repeatability and verification of results by a third party in order to facilitate approval by staff and potential audit by external agencies.
- Assess Security Controls. Following approval of the SAP, execute the plan in accordance with the methods and preliminary schedule of activities. As the assessment is executed, conduct out-briefs/status calls with all interested parties and will conduct a formal out-brief at the conclusion of the assessment.
- Develop Reports and POA&Ms. Following the conclusion of the security assessment, fully document the results of the assessment of each control and provide verifiable evidence of each finding.
Basic Qualifications and Skills Required:
Bachelor’s degree in Business or related field; or equivalent experience.
Experience with Risk Management Framework (RMF).
2-4 years of experience directly supporting a large corporation/agency or military branch.
Leadership
Displays a positive attitude.
Demonstrates flexibility in day-to-day work.
Sets high standards of performance for oneself.
Proactive with internal and external teams to stay abreast of the needs for each requirement.
Teamwork
- Establishes harmonious working relationships with team members.
- Appreciates each team member's contributions and values each individual member.
- Experience communicating through Microsoft Teams or a similar platform.
- Ability to jump in and support other team members as workloads shift throughout the year.
- Client Management
Values internal and external clients and responds in a timely manner.
Establishes effective working relationship with clients.
Follows established communication guidelines.
Uses good judgment in what and how to communicate with clients.
Effective problem-solving skills demonstrated through related work experience.
Strong communication skills (verbal and written).
Ability to identify, initiate, manage and prioritize multiple tasks.
Must be a US Citizen with the ability to obtain a government background investigation (BI).
Preferred Qualifications and Skills
Working knowledge of CSAM.
Understanding of Risk Management Framework at USDA
Benefits and Perks
- In addition to competitive wages, Newberry Group offers an outstanding benefit package. This includes medical coverage with two plan options (HDHP or PPO), dental and vision coverage, personal time off, paid holidays, telecommuting if available, retirement savings accounts (Pre Tax and Roth), flexible and dependent care savings accounts, life insurance, long and short-term disability coverage, tuition and training reimbursement, employee assistance program, and a generous rewards based wellness program.
The Newberry Group, Inc. is an Equal Opportunity Employer – EEO/AA/Disability/Veterans.
Salary : $85,000 - $90,000
