Security Controls Assessor

Job Summary

A company is looking for a Security Controls Assessor to support a federal program focused on cybersecurity and privacy risk management.

Key Responsibilities

• Conducting security and privacy control assessments for various systems, including cloud-based environments
• Implementing risk management processes using NIST frameworks to ensure compliance with federal standards
• Developing and maintaining continuous monitoring strategies to provide real-time risk awareness

Required Qualifications

• Degree in a cyber-related field or equivalent relevant experience
• Experience with security and privacy control assessments for federal information systems
• Deep understanding of NIST RMF processes and hands-on application across assessment lifecycles
• Proven ability to manage and validate Plan of Action and Milestones (POA&Ms)
• Familiarity with integrating security and privacy controls into the System Development Life Cycle (SDLC)