Nisga'a CIOPS provides hands-on experienced services to civilian and DoD programs worldwide. Delivering highly skilled, cleared personnel who provide services on five continents for a portfolio of customers.

Summary:

The Security Control Assessor (SCA) support services shall be provided to the Federal Bureau of Prisons. The contractor, serving as the SCA, shall conduct testing and evaluation of security controls to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the assigned information system and organization.

Essential Job Functions:

Demonstrate subject matter expertise with the RMF process and apply it to meet the government's security needs.
• Review the System Security Plan (SSP), prior to initiating the security control assessment and ensure the plan provides a set of security controls for the information system that meet the stated security requirements.
• Evaluate threats and vulnerabilities to information systems to ascertain the need for additional safeguards.
• Ensure security control assessments are completed for each information system, controls are working as intended, and the controls protect the confidentiality, integrity and availability of IT resources at the appropriate levels.
• Provide detailed assessment findings using Government-specified processes and
• Provide recommendations to remedy and mitigate security vulnerabilities and threats to ultimately improve the protection of IT resources.
• Utilize assessment results to identify trends and improve processes, policies, and cybersecurity training.

Necessary Skills and Knowledge:

• Possesses demonstrated expertise in and capability to perform full range of a Security Control Assessor to include:
  • Assess the SSPP to ensure it provides sufficient security and privacy control implementation status to meet DOJ security requirements.
  • Develop the security and privacy assessment plan, conduct security and privacy control assessments, perform and analyze vulnerability scans, document the SAR, and provide authorization recommendations.
  • Assess changes to the information system, its environment, and operational needs that may affect its authorization status.
  • Recommend POA&Ms to reduce risk to an acceptable level.
• Proficiency with Microsoft Office Suite.

Minimum Qualifications:

• Bachelor's degree (or higher degree) from an accredited educational institution.
• Minimum seven (7) years of experience in Information System Security.
• Knowledge of DOJ Joint Cybersecurity Assessment Management (JCAM) system.
• Must be a US Citizen.
• Must have the ability to pass a drug test if requested.

Preferred Qualifications:

• Master's degree in a related field
• Certified Information Security Manager preferred
• Certified Information Systems Auditor preferred
• CompTIA Advanced Security Practitioner certification preferred
• CompTIA Security certification preferred
• Certified Ethical Hacker preferred
• Active Top-Secret clearance preferred

The salary range for this position is $101,000 - $155,000 per year.

Pay and BenefitsAt Goldbelt, we value and reward our team's dedication and hard work. We provide a competitive base salary commensurate with your qualifications and experience. As an employee, you'll enjoy a comprehensive benefits package, including medical, dental, and vision insurance, a 401(k) plan with company matching, tax-deferred savings options, supplementary benefits, paid time off, and professional development opportunities.