Demo

Junior Security Control Assessor (On-Site)

Crest Security Assurance
Washington, DC Full Time
POSTED ON 7/8/2026
AVAILABLE BEFORE 1/2/2027

REQUIREMENTS:


At least 2 of experience performing the functions associated with this labor category. 


  • Experience performing control assessments as part of a team in accordance with applicable NIST standards (NIST 800-53, Rev 5, or newer version, as applicable).

  • Experience preparing control assessment plans, executing technical and non-technical assessments actions, evaluating the risk associated with areas of deficiency, and documenting detailed findings and executive-level summaries of assessment results.

  • Experience briefing stakeholders on key findings, recommendations, risks, and impacts.

  • Experience providing direct support of information security compliance activities, including managing plans of actions and milestones (POA&Ms) and inventories of information systems.

  • Understanding of relevant laws and regulations, such as NIST guidance and OMB memoranda. This includes knowledge of the NIST Risk Management Framework and familiarity with key publications like NIST SP 800-37, 800-53, and 800-171.

  • Experience conducting security assessments on federal systems.

  • Experience assessing and mitigating risks associated with cybersecurity and data privacy.

  • Experience developing and implementing compliance programs, conducting risk assessments, and advising on compliance-related issues.

  • Experience with the system Authorization to Operate process, including understanding the documentation required, the levels of approval needed, and the most effective ways to manage this process within a federal environment.

  • Basic understanding of procurement processes and contract language requirements for federal mandates.

  • Experience communicating complex regulatory and compliance information in a clear and concise manner.

  • Experience tracking and reporting on training and awareness program performance, including calculating metrics to help measure the effectiveness of security, privacy, and social engineering training.

  • RESPONSIBILITIES:


    The candidate shall provide support for the customer’s security compliance program that includes, but is not limited to, the following tasks:


    • Work with system owners, support teams, developers, vendors, and other stakeholders as necessary to conduct control assessments.


    • Ensure that plans of action and milestones (POAMs) are properly tracked, managed, and remediated.


    • Assist with inventory management for security and privacy assets.


    • Support training and awareness activities by developing metrics and producing reports on program effectiveness.


    • Assist with the design and implementation of an authorization process that aligns with NIST standards, ensuring that new systems or significant changes to existing systems undergo proper security assessments before being authorized for operation with the environment.


    • Assist with the development of a detailed security assessment framework based on NIST standards, identifying the appropriate tools, techniques, and metrics for evaluating the security of systems and applications.


    • Conduct security assessments, identify vulnerabilities, document findings, and propose remediation strategies to address any identified security gaps


    PLACE OF PERFORMANCE:


    The selected candidate shall work on-site in the Board's Washington, DC premises 5 days per week.


    CITIZEN STATUS:


    US Citizen is required.


    PREFERRED CERTIFICATIONS:


    Certified Information Systems Security Professional (CISSP)


    GIAC Security Essentials Certification (GSEC)

    Salary : $117,000 - $123,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Junior Security Control Assessor (On-Site)?

    Sign up to receive alerts about other jobs on the Junior Security Control Assessor (On-Site) career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $65,440 - $83,454
    Income Estimation: 
    $102,189 - $143,024
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Not the job you're looking for? Here are some other Junior Security Control Assessor (On-Site) jobs in the Washington, DC area that may be a better fit.

    • Technology Security Associates, Inc. Arlington, VA
    • Senior Security Control Assessor Overview: TSA is currently seeking a Senior Security Control Assessor who will serve as a Functional Lead and provide supp... more
    • 7 Days Ago

    • cyberdefensetechnologies Chantilly, VA
    • Overview: CDT is looking to add an experienced Security Control Assessor (mid to senior) to support a government customer in Chantilly, VA. Clearance: An a... more
    • 4 Days Ago

    AI Assistant is available now!

    Feel free to start your new journey!