Security Control Assessor
Washington, DC
If you are looking for a rewarding career with a highly successful company that puts people first, Halvik Corp is the place for you! We are committed to delivering smarter IT-driven solutions bolstered by quality and innovation to help the US Federal Government succeed. Join our growing team and make a difference!
What You Will Do:Function in a collaborative, virtual environment, seeking continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise
The Security Controls Assessor will conduct independent, comprehensive assessments of the management, operational, and technical security and privacy controls and control enhancements to determine the overall effectiveness of the controls (as defined in NIST SP 800-37). Conducting system vulnerability and risk assessments and reviews and nterpret vulnerability scanner results to identify vulnerabilities. Identify gaps in security architecture, and develop a security risk management plan with recommendations for inclusion in the risk mitigation strategy. Plan and conduct security authorization reviews to confirm that the level of risk is within acceptable limits for each software application, system, and network. Provide input to the Risk Management Framework process activities. Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers). Review Accreditation Packages.
What You Need:A College Degree in a related field and active CISSP is required.Ability to obtain a Public Trust Clearance. US Citizen or Green Card required.7 years total of relevant cybersecurity experience which includes 3 to 4 years of SCA experience. Your experience must include the following:Assessing security controls and security systems designs, conducting system vulnerability and risk assessments and reviews. Conducting vulnerability scans and recognizing vulnerabilities in security systems. Communicating complex information in a confident and well-organized manner through verbal, written, and/or visual means. Identifying systemic security issues based on the analysis of vulnerability and configuration data. Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Halvik offers a competitive full benefits package including:Company-supported medical, dental, vision, life, STD, and LTD insuranceBenefits include 11 federal holidays and PTO.401(k) with company matchingFlexible Spending Accounts for commuter, medical, and dependent care expensesTuition AssistanceCharitable Contribution matching
To comply with the guidance provided by the Safer Federal Workforce Task Force (Task Force) for Federal Contractors and Subcontractors, Halvik is requiring COVID-19 vaccinations for all their employees except where an employee is legally entitled to an accommodation.
Halvik Corp is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.
What You Will Do:Function in a collaborative, virtual environment, seeking continuous consultation with other analysts and experts—both internal and external to the organization—to leverage analytical and technical expertise
The Security Controls Assessor will conduct independent, comprehensive assessments of the management, operational, and technical security and privacy controls and control enhancements to determine the overall effectiveness of the controls (as defined in NIST SP 800-37). Conducting system vulnerability and risk assessments and reviews and nterpret vulnerability scanner results to identify vulnerabilities. Identify gaps in security architecture, and develop a security risk management plan with recommendations for inclusion in the risk mitigation strategy. Plan and conduct security authorization reviews to confirm that the level of risk is within acceptable limits for each software application, system, and network. Provide input to the Risk Management Framework process activities. Develop security compliance processes and/or audits for external services (e.g., cloud service providers, data centers). Review Accreditation Packages.
What You Need:A College Degree in a related field and active CISSP is required.Ability to obtain a Public Trust Clearance. US Citizen or Green Card required.7 years total of relevant cybersecurity experience which includes 3 to 4 years of SCA experience. Your experience must include the following:Assessing security controls and security systems designs, conducting system vulnerability and risk assessments and reviews. Conducting vulnerability scans and recognizing vulnerabilities in security systems. Communicating complex information in a confident and well-organized manner through verbal, written, and/or visual means. Identifying systemic security issues based on the analysis of vulnerability and configuration data. Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Halvik offers a competitive full benefits package including:Company-supported medical, dental, vision, life, STD, and LTD insuranceBenefits include 11 federal holidays and PTO.401(k) with company matchingFlexible Spending Accounts for commuter, medical, and dependent care expensesTuition AssistanceCharitable Contribution matching
To comply with the guidance provided by the Safer Federal Workforce Task Force (Task Force) for Federal Contractors and Subcontractors, Halvik is requiring COVID-19 vaccinations for all their employees except where an employee is legally entitled to an accommodation.
Halvik Corp is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISSP Clearance Cloud Compliance NIST Privacy Risk assessment Risk management RMF Strategy Vulnerabilities Vulnerability scans
Perks/benefits: Health care
Region:
North America
Country:
United States
Job stats:
6
3
0
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs