Demo
Salary Resume Critique Job Openings

Security Control Assessor (SCA)

ASSYST, Inc.
Washington, DC Full Time
POSTED ON 12/5/2025 CLOSED ON 1/5/2026

What are the responsibilities and job description for the Security Control Assessor (SCA) position at ASSYST, Inc.?

ASSYST is seeking a Security Control Assessor (SCA) to support our government customer Project based in Washington, DC.

This position is contingent upon contract award

Hybrid - Rockville, MD / Washington D.C

Responsibilities:
  • Configure, interpret, and identify vulnerabilities or false positives in web application, server, and database scans.
  • Plan and perform security control assessments for ESS customer systems in accordance with NIST SP 800-53 and SP 800-53A, using ESS LoB processes and guidance to support authority to operate (ATO) or annual assessment processes. Activities may include interviews, documentation reviews, physical security walkthroughs, and technical vulnerability testing.
  • Perform assessments of PCIF facilities and/or OpDivs in accordance with NIST 800-79 requirements for authorization of Personal Identity Verification (PIV) Card Issuers and Derived PIV Credential Issuers (DPCI).
  • Assist with identification and recommendation of PCIF Corrective Action Plans (CAPs).
  • Identify organizational security weaknesses in personnel controls, training, incident and emergency response, logical and physical security, operational security, and integrity of software applications and data.
  • Develop and deliver reports and presentations communicating findings of security control assessments.
  • Conduct vulnerability assessments on networks, servers, websites, and databases to support assessment activities.
  • Assess, review, update, and develop documentation to support ESS LoB in security controls assessment activities.
  • Provide input for weekly customer status reports and project plans.
  • Maintain tools, laptops, and testing materials.
  • Conduct on-site assessments of PCIF facilities across the continental U.S.
  • Demonstrate prior experience performing assessments validating and justifying compliance or non-compliance in accordance with NIST guidance, FISMA, and FISCAM.

Required Skills:
  • 5–8 years of IT security experience performing and configuring information security scans and evaluating system security controls.
  • Certifications such as CISSP or equivalent credentials for penetration testing and vulnerability assessment.
  • In-depth knowledge of IT security laws, directives, and policies relevant to Federal government agencies.
  • Understanding of security requirements across secured and non-secured environments.
  • Familiarity with IT security products (hardware, software, services), technologies, protocols, and best practices.
  • Experience performing technical evaluations and validating compliance/non-compliance with NIST, FISMA, and FISCAM for Federal agencies.
  • Knowledge of standard security policies and procedures, including ensuring testing machines and equipment remain physically secure and accessible only to authorized personnel.
  • Excellent written and oral communication skills.
  • Hands-on experience with vulnerability scanning and testing using tools for web application testing, server scanning, and manual system configuration validation.

Applications (may include but not limited to):
  • Nmap
  • Netcat
  • Nipper Studio
  • Microsoft Baseline Security Analyzer
  • Tenable Nessus
  • Security Center
  • Wireshark
  • Core Impact
  • IBM Appscan Standard
  • Burp Suite Professional
  • Application Security AppDetective Pro
  • WebInspect
ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law
Security Control Assessor (SCA)
Cymertek -
Tysons, VA
View Job Details
Security Control Assessor (SCA)
Chenega MIOS SBU -
Oakton, VA
View Job Details
Security Control Assessor
ASRC Federal -
Washington, DC
View Job Details

Salary.com Estimation for Security Control Assessor (SCA) in Washington, DC
$146,034 to $171,352
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Security Control Assessor (SCA)?

Sign up to receive alerts about other jobs on the Security Control Assessor (SCA) career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$164,835 - $201,088
Income Estimation: 
$135,994 - $168,063
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$101,856 - $146,479
Income Estimation: 
$73,266 - $131,599
Income Estimation: 
$148,382 - $214,197
Income Estimation: 
$87,142 - $126,289
Income Estimation: 
$73,266 - $131,599
Income Estimation: 
$101,856 - $146,479
Income Estimation: 
$59,793 - $89,166
Income Estimation: 
$73,266 - $131,599
Income Estimation: 
$83,579 - $128,541
Income Estimation: 
$83,579 - $128,541
Income Estimation: 
$73,266 - $131,599
Income Estimation: 
$65,788 - $91,913
This job has expired.
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at ASSYST, Inc.

Workday Application Developer
Apply
  • ASSYST, Inc. Towson, MD
  • ASSYST is seeking a Workday Application Developer to support our client with the implementation and ongoing support of Workday HCM and Financial Systems. J... more
  • 12 Days Ago
Program Manager
Apply
  • ASSYST, Inc. Sterling, VA
  • ASSYST is a trusted provider of secure, mission-aligned IT services to the Department of Defense (DoD), with a proven track record of delivering innovative... more
  • 12 Days Ago
Data Warehouse Analyst
Apply
  • ASSYST, Inc. Tallahassee, FL
  • ASSYST is seeking a highly experienced and motivated Data Warehouse Analyst to join our client team in Tallahassee, FL Location: Tallahassee, FL Job Type: ... more
  • 12 Days Ago
SailPoint Engineer
Apply
  • ASSYST, Inc. Tallahassee, FL
  • ASSYST is seeking a skilled SailPoint Engineer to support our client in Tallahassee, Florida. Location: Tallahassee, Florida Job Type: Contract (W2/C2C or ... more
  • 12 Days Ago
View More Jobs at ASSYST, Inc.

Not the job you're looking for? Here are some other Security Control Assessor (SCA) jobs in the Washington, DC area that may be a better fit.

Security Control Assessor
Apply
  • NewGen Technologies Springfield, VA
  • The Security Control Assessor (SCA) will conduct and document a comprehensive assessment of the management, operational, and technical security controls em... more
  • 1 Month Ago
Security Control Assessor (SCA)
Apply
  • Cymertek Chantilly, VA
  • Security Control Assessor (SCA) LOCATION Chantilly, VA 20151 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMM... more
  • 14 Days Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!