DHS Security Control Assessor III
On-site · Washington, District of Columbia, United States
Job Summary
Conduct independent assessments of the management, operational, and technical security controls employed within DHS systems and networks; evaluate the effectiveness of implemented controls in mitigating identified risks and protecting sensitive data and systems; identify and document control deficiencies, vulnerabilities, and non-compliance with security policies; develop and present clear findings and recommendations to stakeholders and decision-makers; support the implementation of corrective actions; stay current with emerging threats and best practices; contribute to the development and continual refinement of internal security assessment methodologies and procedures.
Required Qualifications
- 10+ years of direct experience serving as a Security Control Assessor (SCA) within the DoD/Federal Government
- Experience within the Intelligence Community and Law Enforcement is a strong plus
- Demonstrated expertise in security control frameworks and methodologies including NIST SP 800-53, FISMA, RMF, DISA STIGs, DHS IA controls
- Proficiency in security assessments, vulnerability scanning, penetration testing, and configuration review
- Strong understanding of information security principles including network security, system security, encryption, and incident response
- Experience with OpenRMF is a strong plus
- Excellent analytical and problem-solving skills; strong written and verbal communication
- Ability to work independently and as part of a team
- Education: Bachelor's degree and/or CRISC, GISP, CASP, CISSP, or other advanced security certifications
- Additional relevant experience may be considered in lieu of a degree
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.