Overview
On Site
USD 76.00 - 86.00 per hour
Contract - W2
Skills
Security Controls
Privacy
NIST SP 800 Series
SCA
Publications
Risk Management Framework
RMF
Documentation
SSP
SAR
NIST 800-53
FISMA
FedRAMP
Communication
Collaboration
Government Contracting
FAR
CISSP
CISM
Software Development
Cyber Security
Computer Science
Information Technology
Taxes
Insurance
Law
Management Consulting
Finance
Regulatory Compliance
Job Details
Description:
Our client is seeking a Lead Security Control Assessor.
Rate: $76 - $86 / hr. w2
Responsibilities:
Experience Requirements:
Preferred Qualifications:
Education Requirements:
Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.
W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact
About Eliassen Group:
Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.
Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
Our client is seeking a Lead Security Control Assessor.
Rate: $76 - $86 / hr. w2
Responsibilities:
- The lead control assessor is responsible for conducting a comprehensive assessment of implemented controls and control enhancements to determine the effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security and privacy requirements for the system and the organization).
- For systems, implemented system-specific controls and system-implemented parts of hybrid controls are assessed. For common controls, implemented common controls and common control-implemented parts of hybrid controls are assessed.
- The system owner and common control provider rely on the security and privacy expertise and judgment of the assessor to assess the implemented controls using the assessment procedures specified in the security and privacy assessment plans.
- Multiple control assessors who are differentiated by their expertise in specific control requirements or technologies may be required to conduct the assessment effectively. Prior to initiating the control assessment, assessors review the security and privacy plans to facilitate development of the assessment plans.
- Control assessors provide an assessment of the severity of the deficiencies discovered in the system, environment of operation, and common controls and can recommend corrective actions to address the identified vulnerabilities.
- For system-level control assessments, control assessors do not assess inherited controls, and only assess the system-implemented portions of hybrid controls.
- Control assessors prepare security and privacy assessment reports containing the results and findings from the assessment. (NIST 800-37 rev2)
Experience Requirements:
- 5-10 years of experience as a SCA or ISSO.
- Proven track record in developing and implementing policies aligned with NIST standards (specifically NIST 800-53 and related Special Publications).
- Experience with the Risk Management Framework (RMF) process and associated documentation (SSP, SAR, POA&M, etc.).
- In-depth knowledge of NIST 800-53, and other relevant cybersecurity standards and regulations (e.g., FISMA, FedRAMP).
- Understanding of how to tailor cybersecurity policies to meet specific agency and mission requirements.
- Exceptional written and verbal communication skills, including the ability to translate technical concepts for non-technical audiences.
- Ability to collaborate effectively with cross-functional teams, including stakeholders at various levels within the government.
Preferred Qualifications:
- Familiarity with Department of State FAM/FAH: Experience with internal framework is highly advantageous.
- Contracting Acumen: Familiarity with government contracting processes, terminology (FAR, DFARS, etc.), and how policy decisions impact contract compliance.
- Industry Certifications: Relevant cybersecurity certifications (e.g., CISSP, CISM, etc.) are a significant plus.
- Software Development Background: Understanding of the software development lifecycle and the integration of security principles within it.
Education Requirements:
- Minimum of bachelor's degree in Cybersecurity, Computer Science, Information Technology, Public Policy, or a related field OR Equivalent combination of education and relevant experience.
Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.
W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact
About Eliassen Group:
Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate.
Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.