HiringCafe
Posted 1mo ago

Security Control Assessor Representative (SCAR)

@ Dark Wolf Solutions
View All Jobs
Ogden, Utah, United States
$130k-$190k/yrOnsiteFull Time
Responsibilities:assess controls, develop SSPs, review SARs
Requirements Summary:10+ years in security/RMF roles; RMF/NIST; system hardening; vulnerability assessment; SSP/SAR/POA&M; DoD IAM III; US citizenship with TS clearance and SCI eligibility.
Technical Tools Mentioned:Windows, Linux, STIG, TCP/IP, firewall, IDS/IPS, FedRAMP, AWS GovCloud, Azure GovCloud, virtualization, database security, ACAS, Tenable.sc, Nessus, SCAP, STIG tools, log analysis, SIEM, Splunk, Elastic Stack, DoDI 8500.01, CNSSI 1253
Save
Mark Applied
Hide Job
Report & Hide
Job Description
Dark Wolf is hiring in Ogden, Utah for a Security Controls Assessor Representative (SCAR). This position works with fellow SCARs, Security Controls Assessors (SCAs), Information System Security Managers (ISSM), Program Managers (PM), and Authorizing Official (AO) representatives to obtain and maintain Authority toOperate (ATO) approvals for various AFNWC weapon subsystems and supporting IT systems by adhering to the Risk Management Framework (RMF). This position is responsible for reviewing, assessing, and providing advice/recommendations to the SCA/AO throughout the RMF process for assigned programs. This is an on-site position on Hill Air Force Base.

Required Qualifications:
  • 10+ years of relevant work experience, including experience as an ISSO, ISSM, SCA, SCAR, or similar roles.
  • Mastery of the NIST Risk Management Framework (RMF), including all seven steps and in-depth knowledge of NIST SP 800-53 security controls and their application to complex government information systems. 
  • Comprehensive technical understanding and practical experience with Windows/Linux OS hardening (including STIGs), network protocols (TCP/IP), firewall configurations, IDS/IPS, cloud security (FedRAMP, AWS/Azure GovCloud), virtualization, and database security.
  • Hands-on experience with vulnerability scanning (ACAS/Tenable.sc/Nessus), configuration assessment (SCAP/STIG tools), and log analysis/SIEM platforms (e.g., Splunk, Elastic Stack) to identify and evaluate security posture. Expert-level knowledge of DoD/Agency-specific security requirements (e.g., DoDI 8500.01, CNSSI 1253), IAVMs, and STIG implementation/verification.
  • Proven ability to develop and review System Security Plans (SSPs), write comprehensive Security Assessment Reports (SARs), and manage Plans of Action and Milestones (POA&Ms).
  • Strong capability in analyzing control effectiveness, identifying critical risks, and articulating residual risk to Authorizing Officials (AOs).
  • A Bachelors degree in a relevant field or 3+ years of relevant experience
  • Possess a valid certification that meets or exceeds DoD 8570.01-M IAM III requirements
  • US Citizenship and an active Top Secret security clearance with SCI eligibility. 

This location is located on Hill AFB in Ogden, Utah. On-site presence is expected 5 days per week. The estimated salary range for this position is $130,000.00 - $190,000.00, commensurate on experience and technical interview. 

We are strictly looking for direct, full-time W2 employees. We do not engage with third-party staffing agencies, C2C, or 1099 independent contractors for this role.

We are proud to be an EEO/AA employer Minorities/Women/Veterans/Disabled and other protected categories.

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.