Cybersecurity Control Evaluator
2 weeks ago
Tau Six, a forward-thinking company providing state-of-the-art cybersecurity and systems integration services, is actively seeking a Cybersecurity Control Evaluator (CCE) to support a Department of Defense initiative. This prestigious role will involve assisting the DoD in overseeing and managing IT projects aimed at integrating essential enterprise services. The ideal candidate will possess strong cybersecurity and information assurance expertise, complemented by excellent communication abilities. Candidates should have a comprehensive understanding of Windows and Linux operating systems, cloud technologies, and modern networking practices.
Your exceptional technical skills will be instrumental in identifying risks to enterprise systems across a diverse range of technologies and processes. Your duties will also encompass aspects of physical and environmental security, incident management, and security awareness training. Collaborating closely with the security team, you will play a vital role in risk identification and enterprise defense.
Clearance Required: U.S. Government Top Secret / SCI
Key Responsibilities:
The Cybersecurity Control Evaluator (CCE) will perform and document thorough assessments of the management, operational, and technical security controls implemented within or associated with an information system. You will evaluate the overall effectiveness of these controls through documentation reviews, inspections, testing, and interviews. Your role will include providing assessments of vulnerabilities and recommending corrective measures to address identified weaknesses. You will also be responsible for initial mitigation of cybersecurity incidents, supporting investigations, and ensuring incident closure. Additionally, you will assess proposed technologies (hardware, software, and firmware) for cybersecurity vulnerabilities.
General Activities:
- Enhance operations by conducting functional and systems analyses and recommending policy and procedural changes.
- Examine secure infrastructure builds to ensure adherence to best practices using the latest networking, virtualization, automation, and configuration management tools.
- Collaborate with clients to identify and implement security requirements, best practices, and controls.
- Work alongside clients to develop and execute strategic security initiatives.
- Assist in security investigations and responses as necessary.
- Provide cybersecurity technical expertise and analysis for new technologies and configurations.
- Assessment Package Feedback focusing on documentation supporting Risk Management Framework (RMF) steps.
- Security Assessment Report evaluating an information system in support of authorization determinations.
- Periodic Cybersecurity Assessment Reports or Security Compliance Reports assessing cybersecurity programs.
- Cybersecurity Incident Reports documenting cybersecurity incidents.
- Technical Assessments of hardware, software, or firmware addressing cybersecurity vulnerabilities.
- Annual compilation of findings based on Security Assessment Reports and Periodic Cybersecurity Assessment Reports.
- Minimum of 4 years of experience validating security configurations of operating systems.
- At least 2 years of experience applying Risk Management Framework (RMF) as outlined in NIST Special Publications.
- Extensive experience with risk assessment technologies and evaluating security feature adequacy across various technologies.
- Proven experience conducting security testing and providing accreditation recommendations.
- Familiarity with NIST SP800-53, CNSSI 1253, DCID 6/3, JSIG, and/or ICD 503 is essential.
- Direct experience with policies, processes, and methodologies in RMF application.
- Knowledge of host and network access control and auditing technologies.
- Understanding of incident response, configuration management, and defense-in-depth best practices.
- Understanding of cloud computing technologies is a significant advantage.
- Experience with DISA Security Technical Implementation Guides is highly desired.
- Operating System/Computing Environment certification for Windows Server 2012 or newer UNIX (Linux, Red Hat, Solaris).
- Experience with vulnerability scanning tools.
- Experience assessing security-relevant applications.
- Background as a System Administrator, Information System Security Manager, or Information System Security Officer.
- Experience applying DoD Joint Special Access Program Implementation Guide (JSIG) requirements.
- Experience with Cross Domain Solutions (CDS).
- Bachelor's or Master's Degree in a technology-related field.
-
Cybersecurity Control Evaluator
2 weeks ago
Arlington, Virginia, United States Arlo Solutions Full timeCompany Overview Arlo Solutions (Arlo) is a premier information technology consulting firm dedicated to providing innovative technology solutions. Our esteemed reputation is built on the exceptional quality of our team and the collaborative partnerships we forge with our clients. Our mission is to thoroughly understand and fulfill the needs of both our...
-
Cybersecurity Security Control Assessor
5 days ago
Arlington, Virginia, United States Tau Six Full timeAbout the RoleTau Six, a leading provider of cutting-edge cybersecurity and system integration services to the US National Security market, is seeking a highly skilled Cybersecurity Security Control Assessor to join our team.Key ResponsibilitiesConduct and document comprehensive assessments of management, operational, and technical security controls employed...
-
Security Control Evaluator
1 week ago
Arlington, Virginia, United States General Dynamics Information Technology Full timePosition Overview: The Security Control Evaluator (SCE) III plays a crucial role in executing a thorough evaluation of the management, operational, and technical security measures utilized within or associated with an Information System (IS). The primary objective is to assess the overall efficacy of these measures, ensuring they are correctly implemented,...
-
Security Control Evaluator
1 week ago
Arlington, Virginia, United States General Dynamics Information Technology Full timePosition Overview: The Security Control Evaluator (SCE) III plays a crucial role in performing a thorough evaluation of the management, operational, and technical security measures utilized within or adopted by an Information System (IS). This assessment aims to ascertain the overall efficacy of these measures, specifically regarding their correct...
-
Security Control Evaluator
1 week ago
Arlington, Virginia, United States General Dynamics Information Technology Full timePosition Overview: The Security Control Evaluator (SCE) III plays a crucial role in performing an extensive evaluation of the management, operational, and technical security measures utilized within or associated with an Information System (IS). The objective is to assess the overall efficacy of these measures, ensuring they are implemented correctly,...
-
Security Control Evaluator
1 week ago
Arlington, Virginia, United States General Dynamics Information Technology Full timePosition Overview: The Security Control Evaluator (SCE) III plays a critical role in performing a thorough evaluation of the management, operational, and technical security measures implemented within or associated with an Information System (IS). The primary objective is to assess the overall efficacy of these measures, ensuring they are correctly applied,...
-
Cybersecurity Manager
7 days ago
Arlington, Virginia, United States Applied Research Associates (ARA) Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Manager to join our team at Applied Research Associates (ARA). As a Cybersecurity Manager, you will be responsible for maintaining the overall security posture of our systems and ensuring compliance with current cybersecurity policies and regulations.Key ResponsibilitiesDevelop and Maintain Security...
-
Social Scientist
4 days ago
Arlington, Virginia, United States Cybersecurity and Infrastructure Security Agency Full timeAbout the RoleWe are seeking a highly skilled Social Scientist to join our team at the Cybersecurity and Infrastructure Security Agency. As a Social Scientist, you will play a critical role in developing, carrying out, and overseeing evaluation activities and analyses to further the mission of our agency.Key ResponsibilitiesDevelop methodologies and...
-
Cybersecurity Manager
1 week ago
Arlington, Virginia, United States Applied Research Associates (ARA) Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Manager to join our team at Applied Research Associates (ARA). As a Cybersecurity Manager, you will be responsible for maintaining the overall security posture of our systems and ensuring compliance with current cybersecurity policies and regulations.Key ResponsibilitiesDevelop and Maintain Security...
-
Information Security Control Evaluator
2 weeks ago
Arlington, Virginia, United States General Dynamics Information Technology Full timePosition Overview: The Information Security Control Evaluator (ISCE) III plays a critical role in executing thorough evaluations of the management, operational, and technical security measures implemented within or associated with an Information System (IS). The primary objective is to assess the overall efficacy of these measures, ensuring they are...
-
Senior Risk Evaluation Specialist
2 weeks ago
Arlington, Virginia, United States Zermount, Inc Full timeJob OverviewSenior Risk Evaluation SpecialistMilitary Friendly & Preferred - HOH SponsorZermount Inc. is in search of a Senior Risk Evaluation Specialist who will play a pivotal role in preparing for risk evaluations (RE), executing RE, crafting reports, and proposing strategies to minimize risk. This position involves assessing systems, technologies,...
-
Lead Cybersecurity Architect
2 weeks ago
Arlington, Virginia, United States Chenega Corporation Full timeOverview Lead Cybersecurity ArchitectLocation: Arlington, VAChenega IT Enterprise Services (CITES) is dedicated to delivering innovative technological solutions to federal entities and the Department of Defense. Established in 2016, CITES has rapidly emerged as a leader in best practices for contemporary federal operations.Are you prepared to advance your...
-
Internal Controls Evaluator
2 weeks ago
Arlington, Virginia, United States She Recruits, LLC Full timeJob Title: Internal Controls Evaluator (Secret Clearance Required)Location: HybridCompensation: $45/hr - $65/hrWe are looking for a skilled Internal Controls Evaluator to join our dynamic team. This position focuses on assessing and enhancing internal control frameworks, particularly in the areas of Real Property and Property, Plant, and Equipment (PP&E)....
-
Cybersecurity Risk Management Specialist
2 weeks ago
Arlington, Virginia, United States Arlo Solutions Full timeCompany Overview Arlo Solutions is a premier information technology consulting firm dedicated to providing innovative technology solutions. Our esteemed reputation is built on the expertise of our talented team and our commitment to partnering with clients to meet their needs. We strive to deliver exceptional, value-driven solutions that not only reduce...
-
Cybersecurity Systems Manager
1 week ago
Arlington, Virginia, United States ARA Full timeApplied Research Associates (ARA), Inc. is seeking a seasoned IT Professional to take on the role of Information System Security Manager (ISSM) within the Algorithms, Modeling and Assessments (AMA) division. The ISSM plays a crucial role in upholding the security integrity of organizational systems and is responsible for the execution of the Risk Management...
-
Cybersecurity Specialist
7 days ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a rich history of delivering technically advanced solutions, our team is passionate about driving innovation and solving complex problems.Job SummaryWe are seeking an experienced...
-
Cybersecurity Specialist
7 days ago
Arlington, Virginia, United States Peraton Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Analyst to join our team at Peraton. As a key member of our Cyber Incident Response Team, you will play a critical role in ensuring the security and integrity of our systems and data.Key ResponsibilitiesPerform gap analysis of customer systems during penetration tests to identify vulnerabilities and...
-
Cybersecurity Specialist
3 days ago
Arlington, Virginia, United States Nightwing Full timeAbout NightwingNightwing is a leading provider of full-spectrum cyber, data operations, systems integration, and intelligence mission support services to the U.S. government. With a rich history of delivering technically advanced solutions, our team is passionate about driving innovation and solving complex problems.Job SummaryWe are seeking an experienced...
-
Cybersecurity Specialist
5 days ago
Arlington, Virginia, United States MAXIMUS Full timeJob Description**Job Summary:**Maximus is seeking a highly skilled Cybersecurity Specialist to join our team as a Security Control Assessor. The ideal candidate will have a strong background in risk management, information security, and compliance.Key Responsibilities:Conduct comprehensive assessments of security controls to determine their effectiveness in...
-
Senior Cybersecurity Specialist
16 hours ago
Arlington, Virginia, United States By Light Professional IT Services Full timeJob SummaryBy Light Professional IT Services is seeking a highly skilled Senior Information Assurance Analyst to join our team. As a key member of our cybersecurity team, you will be responsible for ensuring the security and integrity of our VoIP network systems.Key ResponsibilitiesSecurity Solutions Development: Develop and implement security solutions for...