Security Controls Assessor

Denver, CO

Applications have closed
Company Overview
Spry brings a unique blend of proven service delivery, scalable and agile corporate infrastructure, and the ability to recruit and retain the best and brightest in the industry to support our customers. The Spry team engages in exciting and rewarding opportunities that challenge their abilities, in an atmosphere that encourages both personal and professional growth, fostering a positive and energetic work environment.

Who We're Looking For (Position Overview)
Spry Methods is on the search for a Security Control Assessor to join our team in supporting one of our government contracts in Denver, CO.
This person:
•  Possesses and applies a comprehensive knowledge across key tasks and high impact assignments
• Plans and leads major technology assignments
• Evaluates performance results and recommends major changes affecting short-term project growth and success
• Functions as a technical expert across multiple project assignments
• May supervise others

What Your Day-To-Day Looks Like (Position Responsibilities)

  • Experience with ACAS (Nessus) and DISA STIGs
  • Identify system and agency risks and conducted vulnerability analysis in accordance with industry best practices
  • Research, detect, analyze, and exploit vulnerabilities of information systems
  • Provide technical knowledge and analysis of highly complex vulnerabilities
  • Apply principles, methods, and knowledge to identifying and remediating vulnerabilities
  • Provide technical assistance in test plan development and security control testing based on security assessments
  • Experience with web assessment software, vulnerability scanning tools, or penetration test tools
  • Ability to work independently and as a member of a team
  • Experience presenting to clients or other decision makers to present and sell ideas to various audiences (technical and non-technical)
  • Strong communication skills and the ability to advise clients on technical designs, implementations, and solutions to protect against cyber security attacks
  • A&A (RMF) SME with experience testing and assessing cyber security solutions

What You Need to Succeed (Minimum Requirements)

  • Active TS/SCI with Poly
  • Need one (1) certification from each category:
  • IAT-III: CASP CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH
  • CSSP Auditor: CEH, CySA+, CISA, GSNA


Perks of Working for Us (Benefits):
Medical Coverage – United Healthcare - 3 Options
- Traditional - POS Choice Plus Network
- HDHP - POS Choice Plus Network
- HDHP - EPO Choice Network
Vision Coverage – VSP - Vision Service Plan
Dental Coverage – Guardian Dental - PPO Premier Plan or Value Plan
Paid Holidays: Full-time employees receive 11 paid federal holidays
Paid Time Off (PTO) – PTO accrural starts at 15 days per year
Training Benefit – Annual training allowance available toward any job-related training or education
401 (k) – Multiple Fund Choices through Professional Capital Service (PCS) with a company match
For our full list of benefits, please visit http://www.sprymethods.com/careers/benefits/

COVID-19 Vaccination Requirement
The COVID-19 vaccination requirement stated in Executive Order 14042 and FAR 52.223-99 is currently not implemented, however, please note that if E.O. 14042 or other related requirements become effective, positions will require successful candidates/employees to obtain and show proof of COVID-19 vaccination(s). Spry is an equal opportunity employer and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.


EEO Statement
At Spry, we believe talented and dedicated employees are our most valued assets and the foundation of our success. We are committed to crafting a diverse and inclusive workplace that endorses engagement, creativity, quality and innovation.

We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: ACAS Agile CASP+ CCNP CEH CISA CISSP DISA Exploit GCED GCIH GSNA Nessus RMF Security assessment STIGs TS/SCI Vulnerabilities

Perks/benefits: 401(k) matching Career development Health care Startup environment

Region: North America
Country: United States
Job stats:  5  0  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.