Logo
VTG

Security Control Assessor

VTG, Mc Lean, VA


Overview

VTG is looking a Security Control Assessor in McLean, VA and Bethesda, MD

What will you do?

  • Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
  • Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems working either alone or as part of a team.
  • Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation including system level attacks and user level attacks.
  • Applies experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM
  • Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
  • Demonstrated experience conducting hands on security testing, analyzing results, documenting risks, and recommending countermeasures
  • Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer assess systems against information assurance policies, regulations and instructions
  • Demonstrated experience providing threat analysis based on identified security vulnerabilities
  • Develops and documents security evaluation test plans and procedures
  • Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation

Do you have what it takes?

  • Bachelor's Degree in Computer Science, Information Technology or related field (or equivalent work experience).
  • Must have an Active TS/SCI with Poly
  • 2+ years of technical related experience
  • Compliance and vulnerability scanning tools (XACTA, RedSeal, Nessus, Splunk, McAfee ePO, and/or other vulnerability scanners)
  • Strong understanding of the Assessment and Authorization (A&A) process
  • Excellent oral and technical writing skills
  • Desired Certifications: CASP, CCNP Security, CISA, CISSP, GCED, or GCIH