HiringCafe
Posted 3mo ago

Security Control Assessor (SCA) Level 3

@ System High
View All Jobs
Chantilly, Virginia, United States
OnsiteFull Time
Responsibilities:interface clients, coordinate A&A, write reports
Requirements Summary:Bachelor's degree + 5 years experience or HS/GED + 7 years; Masters + 3 years. IT/INFOSEC-related education. IAM Level 2 certification. TS/SCI with CI Polygraph clearance. Strong communication, organizational, and confidentiality skills. Willingness to travel.
Technical Tools Mentioned:Information Assurance (IA), Information Security (IS), Risk management, Security directives and guidance, A&A (Assessment & Authorization), IT systems, IT security concepts, Cloud security (IaaS, PaaS, SaaS)
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Position Overview: 
System High requires SCAs to provide Information Security Assessment and Authorization (A&A) support throughout a program's lifecycle to both Contractor and Government systems.  

Duties & Responsibilities (but not limited to) 

  • Familiarity with Information Assurance (IA) concepts and possess moderate Information Security (IS) skills and knowledge 

  • Ability to review and recommend vulnerability and risk levels associated with software (SW) and hardware (HW) products 

  • Practical experience performing Information System (IS) A&A as defined in applicable Intelligence Community Directives (ICD) and guidance 

  • Practical experience developing and implementing security related directives and guidance for Information Technology (IT), Information Assurance (IA), and Information Management (IM) 

  • Practical experience utilizing risk management strategies for IT solutions 

  • Understanding of emerging technologies and their implementation within Government system and network environments 

  • Knowledge of IT concepts used in the evaluation of security performance and integrity of state-of­the-art applications, communications systems, HW, SW, satellite control systems, and information processing systems 

  • Understanding of IT systems, SW, and networks 

  • Practical experience assessing security of cloud-based systems, including infrastructure as a service (IaaS), platform as a service (PaaS), and/or software as a service (SaaS) deployment 

  • Ability to effectively coordinate A&A activities of industry and Government ISs to meet acquisition milestone requirements 

  • Ability to write effective technical reports and general correspondence 

  • Ability to manage and track systems or programs involved in the A&A process 

  • Experience developing and implementing security related directives and guidance for IT, IA, and IM 

  • Experience working with a mixed skill level team to ensure that appropriate knowledge and skill transfer occurs