Security Control Assessor

RESPONSIBILITIES:
Kforce has a client in Oak Ridge, TN that is seeking a Security Control Assessor who will identify the appropriate tools, systems, and applications needed to assess vulnerabilities and recommend the best solution and security strategy.

Summary:
On our team, you'll assess a variety of network and security devices and applications in accordance with NIST 800-53 and NIST 800-37 standards. You'll use your curiosity for technology and market trends to further research and develop security solutions. Using your knowledge and experience you'll assess security threats and implement infrastructure controls.

In this role, you'll have impact on the mission by supporting accreditation and authorization packages for both new and existing systems. With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers.

What You'll Work On:
* Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
* Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises
* Perform risk and vulnerability assessments in network, system, and application areas
* Leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise

REQUIREMENTS:
* High School diploma or GED and 8+ years of experience with Information Assurance, or Bachelor's degree and 5+ years of experience with Information Assurance
* Experience with utilizing NIST 800-53 security controls
* Experience with NIST 800-37 Risk Management Framework (RMF) requirements
* Experience supporting system authorization activities, including the development and maintenance of security documentation such as System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms)
* Experience monitoring system security posture and identifying risks, vulnerabilities, and compliance gaps
* Experience tracking and managing POA&Ms and coordinating remediation activities with system stakeholders
* Experience assessing the security impact of system changes and supporting configuration and change management processes
* Experience preparing systems for security assessments, audits, and Authorizing Official reviews
* Ability to support continuous monitoring activities, including vulnerability management and security reporting, and serve as a security liaison between system teams, cybersecurity operations, and governance bodies

Nice If You Have:
* Master's degree in Information Systems
* CompTIA Advanced Security Practitioner (CASP) or Certified Information Systems Security Professional (CISSP) Certification
* Experience with operational technology and industrial control systems

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.