- Steampunk (Mclean, VA)
- …or CISA + Should be able to support a minimum of four of the areas listed: + Security Control Assessment + Security Code Analysis + Product Evaluation + ... Steampunk participates in the E-Verify program._ Refer a Friend (https://careers-steampunk.icims.com/jobs/5732/ security - control - assessment -%28sca%29-analyst/job?mode=apply&apply=yes&in\_iframe=1&hashed=-336029103) **Need help finding the… more
- System One (Herndon, VA)
- …artifacts. * Implement System Security Plan on the information system * Support Security Control Assessment ( SCA ) - technical and non-technical ... providing SecOps implementation. * Working knowledge of source version control , build/release tools and methodologies, NIST Security ...tracking * Support NIRT penetration testing per SAFR CA-8 control requirement * Attend the scheduled SCA … more
- General Dynamics Information Technology (Washington, DC)
- …9 + years of related experience **US Citizenship Required:** Yes **Job Description:** The Security Control Assessor ( SCA ) III is responsible for conducting a ... security assessments are completed and results documented and prepare the Security Assessment Report (SAR) for the Authorization boundary + Initiate a Plan of… more
- Guidehouse (Reston, VA)
- …and impact managerial practices. + Act as a high-level assessor to help all the Security Control Assessors ( SCA ) on the RMF Team with their assessments ... Do** **:** Guidehouse has an opportunity for a cleared Security Controls Assessor ( SCA ) Lead to leverage...assessment methodologies and tools. + Mentor to junior Security Control Assessors **What You Will Need**… more
- ASM Research, An Accenture Federal Services Company (Fort Meade, MD)
- …tools in support of continuous monitoring. + Interacts with additional resources including Security Control Assessor ( SCA ) and Information System Security ... firmware). Manage and control changes to the system and assessing the security impact of these changes. + Evaluates technical solutions to ensure compliance with… more
- General Dynamics Information Technology (Arlington, VA)
- … and/or Risk Analysis. + **Required Certifications:** DoD Manual 8140.03 (612) Security Control Accessor - Advanced. + **Education:** MS/MA/BS/BA Degree in ... Top Secret/SCI **Public Trust/Other Required:** None **Job Family:** Information Security **Skills:** Airframes,Air Systems,Network Systems Design,Weapons Systems **Certifications:** CISSP:… more
- BAE Systems (Herndon, VA)
- …to ensure it s easy to understand at all levels. + Document the various security control implementations as well as gather the artifacts that support the Risk ... Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and...but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance… more
- BAE Systems (Herndon, VA)
- …in order to ensure it s easy to understand. + Document the various security control implementations as well as gather the artifacts that support the ... Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization...but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance… more
- BAE Systems (Herndon, VA)
- …documentation in order to ensure it s easy to understand. Document the various security control implementations as well as gather the artifacts that support the ... Risk Management Framework (RMF) and ICD 503 Security Accreditation for various Assessment and Authorization...but not required for the following general topics: Cloud security control implementation, PKI implementation, STIG compliance… more
- Parsons Corporation (Columbia, MD)
- …Delegated Authorizing Official (DAO), Information System Security Engineer (ISSE), and the Security Control Assessor ( SCA ). The right candidate will have ... of custody and evidentiary preservation + Guide complex information systems through assessment and authorization (A&A) control gates + Establish and maintain… more
- General Dynamics Information Technology (Elkridge, MD)
- …ISSMs and Security Controls Assessors ( SCA ). + Documents the various security control implementations as well as gather the artifacts that support the ... Risk Management Framework (RMF) and ICD 503 Security Accreditation for the various Assessment and...+ Conduct a technical review and update of the control volatility section of the plan considering emerging threats,… more
- Northrop Grumman (Dulles, VA)
- …SCAP compliance scans, vulnerability scans, container scans, developing and running security control Verification Procedures and automating manual STIG check ... in Cloud Security architectures is a plus. + Developing security -focused assessment procedures for application containers and container orchestration… more
- Amentum (Arlington, VA)
- … Assessment Solution (ACAS), Nessus vulnerability scanning tool and Security Content Automation Protocol tool. Identify applicable STIGs and perform assessments ... of customer networks to ensure compliance with regulations and security and standards. The end goal is to ensure...assessments of IT and IS for authorization; prepare risk assessment reports for submission to the SCA … more
- Leidos (Fort Meade, MD)
- …**Job Description:** The selected candidate shall perform (or review) technical security assessments of computing environments to identify points of vulnerability, ... assess threats to the environment, provide inputs on the adequacy of security designs and architectures, perform RMF related activities, and participate in risk… more
- TestPros (Washington, DC)
- …include Program Management, Program Oversight, Process Audit, Intelligence Analysis, Cyber Security , NIST SP 800-171 Assessment and Compliance, Computer ... is seeking Cybersecurity SME(s) to support a CISA cyber security program: ISSO, ISSE, SCA , cyber engineers/analysts...in DHS 4300A (Sensitive Security Handbook IT Security Program), USCG COMDTINST 5230.67 (Command, Control ,… more
- NANA Regional Corporation (Fort Belvoir, VA)
- …execution of the POA&Ms on a quarterly basis. + Acts as a liaison between Security Control Assessors ( SCA ) and programs for all information system ... not limited to Security Controls Traceability Matrix (SCTM), System Security Plans (SSP), Security Assessment Report (SAR), and Plans of Action and… more