Security Controls Assessor – Mid to Senior Level
Job Purpose
The security controls assessor will perform security controls assessments according to NIST and USDA guidelines. Must have at least 3 years performing assessments for Federal agencies. Must have assessment experience at the USDA using CSAM.
Duties and Responsibilities
- Responsible for independently performing all aspects of the security controls assessment from kickoff to submission of all assessment deliverables.
- Conduct assessment interviews and tests, and manage evidence.
- Coordinate with team lead and client management to develop a project plan.
- Responsible for ensuring that all required tasks are performed in a timely and proficient manner.
- Ensure high level of quality in all deliverables submitted by the team.
- Complete the USDA assessment review process and obtain final USDA approval memo.
Qualifications
- Proficient understanding of the NIST RMF process and the NIST security control set (particularly technical controls).
- Minimum of (3) years of relevant experience performing assessments as the primary assessor on general support systems and applications.
- Experience performing assessments at the USDA using Cyber Security Assessment and Management (CSAM).
- Ability to work alone and in a team environment proficiently.
- Must have strong communication (verbal and written) skill and experience.
- Must have strong task management skills.
- Certifications such as CISSP, CISM, or CISA (preferred but not required).
- Must have current Medium Risk Public Trust clearance.