What are the responsibilities and job description for the Security Control Assessor position at Jobs via Dice?
Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.
Description
Title: Security Control Assessor
Location: Hybrid, Washington, DC
Terms: Full-time
Clearance: Ability to obtain a Public Trust
Travel: 0-20%
Position Description:
Harmonia is seeking a Security Control Assessor aligned to the National Initiative for Cybersecurity Education (NICE) Framework (Securely Provision)and (Protect and Defend) to support Federal government cybersecurity programs.
This role is responsible for planning, conducting, and overseeing independent security assessments of systems, applications, networks, and common controls to evaluate the effectiveness of management, operational, and technical security controls in accordance with NIST SP 800-37. The position also performs vulnerability assessments to identify deviations from acceptable configurations and evaluates the effectiveness of defense-in-depth architectures against known vulnerabilities.
Responsibilities:
___________________________________________________________________________________________________________
Here at Harmonia we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
Harmonia is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Harmonia does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans. To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contact .
Description
Title: Security Control Assessor
Location: Hybrid, Washington, DC
Terms: Full-time
Clearance: Ability to obtain a Public Trust
Travel: 0-20%
Position Description:
Harmonia is seeking a Security Control Assessor aligned to the National Initiative for Cybersecurity Education (NICE) Framework (Securely Provision)and (Protect and Defend) to support Federal government cybersecurity programs.
This role is responsible for planning, conducting, and overseeing independent security assessments of systems, applications, networks, and common controls to evaluate the effectiveness of management, operational, and technical security controls in accordance with NIST SP 800-37. The position also performs vulnerability assessments to identify deviations from acceptable configurations and evaluates the effectiveness of defense-in-depth architectures against known vulnerabilities.
Responsibilities:
- Conduct independent, comprehensive assessments of security controls and control enhancements for Federal IT systems.
- Plan, execute, and oversee assessments of systems, applications, networks, sites, and common controls.
- Perform vulnerability assessments to identify weaknesses, misconfigurations, and deviations from policy or baseline requirements.
- Measure the effectiveness of defense-in-depth architectures against known and emerging vulnerabilities.
- Evaluate security control effectiveness in alignment with the NIST Risk Management Framework (RMF).
- Perform independent assessments of cloud-based solutions, ensuring compliance with Federal cybersecurity requirements.
- Support assessments of cloud-native and emerging technologies, as applicable.
- Document assessment results, findings, and recommendations, including inputs to SARs, POA&Ms, and authorization packages.
- Collaborate with system owners, engineers, and stakeholders to communicate risks and remediation strategies.
- Ensure assessment activities align with Federal cybersecurity policies, standards, and guidelines.
- Advanced capability level consistent with the NICE framework roles, with demonstrated abilities, knowledge, and skills to perform all core tasks.
- Demonstrated, recent experience planning, conducting, and overseeing independent assessments of Federal systems, applications, sites, and programs.
- Certified Information Systems Security Professional (CISSP) certification (required).
- Demonstrated, recent experience performing independent assessments of cloud-based solutions.
- Demonstrated knowledge and expertise in the NIST Risk Management Framework (RMF) and Federal cybersecurity policy, standards, and guidelines.
- Bachelor's degree from an accredited college or university.
- Additional relevant cybersecurity certifications.
- Demonstrated, recent experience performing independent assessments of cloud-native and emerging technologies, such as artificial intelligence, robotic process automation, or similar technologies.
- Demonstrated, recent experience performing independent security assessments.
- Master's degree or higher, and/or a degree in cybersecurity, information technology, or a related field.
___________________________________________________________________________________________________________
Here at Harmonia we are pleased to have been repeatedly recognized for our outstanding work culture, the innovative work we do, and the employees on our team who make a difference each day. Some of these recognitions include:
- Recognized as a Top 20 "Best Place to Work in Virginia"
- Recipient of Department of Labor's HireVets Gold Medallion
- Great Place to Work Certification for five years running
- A Virginia Chamber of Commerce Fantastic 50 company
- A Northern Virginia Technology Council Tech 100 company
- Inc. 5000 list of fastest growing companies for eleven years
- Two-time SBA SBIR Tibbett's Award winner
- Virginia Values Veterans (V3) Certification
- Traditional and HSA- eligible medical insurance plans
- 100% employer-paid dental and vision insurance options
- 100% employer-sponsored STD, LTD, and life insurance
- 5% 401(k) company matching
- Flexible-schedules and teleworking options
- Paid holidays and PTO Accrual Plans
- Paid Parental Leave
- Professional development and career growth opportunities
- Team and company-wide events, recognition, and appreciation-- and so much more!
Harmonia is an Equal Opportunity Employer providing equal employment opportunity to all employees and applicants for employment without regard to race, color, religion, national origin, age, gender, gender identity, sexual orientation, disability, or genetics. Harmonia does and will take affirmative action to employ and advance in employment individuals with disabilities and protected veterans. To perform the above job successfully, an individual must possess the knowledge, skills, and abilities listed; meet the education and work experience required; and must be able to perform each essential duty and responsibility satisfactorily. Other duties in addition to those listed may be assigned as necessary to meet business needs. Reasonable accommodation will be made to enable an applicant with a disability to successfully apply for and/or perform the essential duties of the job. If you are in need of an accommodation, please contact .