ChantillyRecruiter Since 2001
the smart solution for Chantilly jobs

Security Control Assessor (SCA) with Security Clearance

Company: CACI
Location: Herndon
Posted on: May 13, 2024

Job Description:

Security Control Assessor (SCA) Job Category: Information Technology Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: None Type of Travel: None--- *--- CACI is seeking a Security Control Assessor (SCA) to join our team of talented Cybersecurity professionals in Reston, VAYou will evaluate Government customer systems and other security standards and publications as well as Government customer defined security guidelines and regulationsYou will also determine the extent to which the assigned security controls are implemented correctly; operating as intended; and producing the desired outcome with respect to meeting the regulatory and or statutory security requirements for National Security SystemsInvent your future and make a lasting impact at CACI! Duties include but are not limited to:--- Evaluate Government customer systems against NIST SP 800 53/53A R4, 30, 37 and 39, RMF and other security standards and publications as well as Government customer defined security guidelines and regulations utilizing the customer assessment tracking system.--- Conduct a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by complex and diverse information systems to determine the overall effectiveness of the control implementation.--- Function as an independent and unbiased advocate who provides evidence to validate the trustworthiness of the system for the designated Authorizing Official (AO).--- Conduct hands-on security control testing, analyze Body of Evidence (BoE) documentation and test results, document risk and recommend countermeasures.--- Provide an assessment of the severity of weakness or deficiencies discovered in the information system and its environment of operation and recommend corrective actions to address identified vulnerabilities.--- Conduct hands-on security testing leveraging commercial tools and custom developed scripts and procedures.--- Execute vulnerability/compliance assessment tools and evaluate results for systems undergoing security assessment.--- Participate in joint test teams with other customer organizations and or Government Agencies to complete security assessment and adjudication.--- Coordinate with other program elements conducting security testing.--- Actively participate in or lead technical exchange meetings and application review boards, documenting actions items/results of these events.--- Brief management, as needed, on the status of action items and/or results of activities.--- Prepare security assessment reports containing the results and findings form the assigned security control assessments.--- Provide documentation to the customer which describes all identified system risks, planned test procedures taken and test results.--- Provide enhancement capabilities and SOPs to assessment operations for execution and implementation.--- Responsible for implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access.--- Investigates network device and information security incidents to determine extent of compromise to national security information and automated information systemsRequired Certifications:--- TS/SCI with Polygraph (active / in-scope)--- Bachelor's Degree--- 4+ years of relative experienceAdditional experience may be considered in lieu of a degree--- Familiarity with conducting security assessment in support of accreditation and or authorization (A&A) decisions.--- Familiarity with National Institute of Standards and Technology (NIST) Cybersecurity Framework and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) requirements.--- Familiarity with National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 and or 800-53A Revision 4 as well as 800-30, 37 and 39.--- Familiarity with the Committee on National Security Systems (CNSS) Instruction No1253.--- Knowledge of Federal laws, regulations, policies, and ethics as they relate to cybersecurity.--- Knowledge of cyber defense and vulnerability assessment tools, including open source tools, and their capabilities.--- Knowledge of cybersecurity principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).--- Knowledge of cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or dataDesired Qualifications:--- CompTIA Security+--- GIAC Security Essentials (GSEC)--- Certified Information Systems Security Professional (CISSP)--- Knowledge of cyber threats and known vulnerabilities from alerts, advisories, errata, and bulletins.--- Knowledge of computer networking concepts and protocols, and network security methodologies.--- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).--- Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code).--- Skill in discerning the protection needs (i.e., security controls) of information systems and other computing environmentsWhat we can offer you: At CACI, our philosophy of employee development and advancement rests on a cultural foundation of providing unlimited and equal opportunity for growth, recognition, and rewardsWe provide the environment, support and responsive, available management to nurture and stretch your abilitiesWe also offer a career mobility program to make it easy to build a dynamic career at CACI and offer flexible work schedule arrangements to support work/life balance.--- CACI has been named one of Fortune magazine's World's Most Admired Companies for 2022--- CACI also has more than 20 Communities of Practice to share and gain skills and knowledge regarding various technologies and topics including SAP, Salesforce, Agile Development, and many moreThe associated Learning Academies provide training and certifications to gain additional skills and build your brand.--- We offer competitive benefits and learning and development opportunities--- We are mission-oriented and ever vigilant in aligning our solutions with the nation's highest priorities--- With over 25,000 employees worldwide, CACI has been named a Best Place to Work by the Washington Post--- For over 55 years, the principles of CACI's unique, character-based culture have been the driving force behind our success Company Overview: CACI is an Equal Opportunity/Affirmative Action EmployerAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other protected characteristicPay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certificationsOur employees value the flexibility at CACI that allows them to balance quality work and their personal livesWe offer competitive compensation, benefits and learning and development opportunitiesOur broad and competitive mix of benefits options is designed to support and protect employees and their familiesAt CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefitsLearn more here The proposed salary range for this position is: $109,800 - $241,600

Keywords: CACI, Chantilly , Security Control Assessor (SCA) with Security Clearance, Other , Herndon, Virginia

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest Virginia jobs by following @recnetVA on Twitter!

Chantilly RSS job feeds