Millennium Group - Sumter, SC
posted about 2 months ago
Full-time - Mid Level
Sumter, SC
Food Services and Drinking Places
About the position
The Security Control Assessor will provide cybersecurity support to AFCENT at Shaw AFB in Sumter, SC. This role involves performing comprehensive IT security control assessments on AFCENT systems and software applications, ensuring the effectiveness of security controls and compliance with security requirements. The position requires physical travel to various contractor and Government sites both within and outside the continental United States (CONUS and OCONUS).
Responsibilities
- Perform initial and continual security control assessment and validation for AFCENT networks, systems, and software applications.
- Utilize DOD approved tools such as ACAS, Nessus, HBSS, CMRS, OCRS, and SolarWinds to generate monitoring reports.
- Complete reports to support risk decisions from the AO, both as required and as requested.
- Provide an assessment on the severity of weaknesses or deficiencies discovered in the information system or software application and recommend corrective actions.
- Review the System Security Plan (SSP) prior to initiating the security control assessment.
- Advise the Information System Owner (ISO) concerning the impact values for confidentiality, integrity, and availability.
- Evaluate threats and vulnerabilities to information systems or software applications.
- Assist in creating, reviewing, and approving the information system or software application security assessment plan.
- Ensure security control assessments are completed for each information system or software application.
- Assist with preparing the final Security Assessment Report (SAR) containing the results and findings from the assessment.
- Ensure a Plan of Action and Milestones (POA&M) is initiated based on findings and recommendations from the SAR.
- Evaluate security control assessment documentation and provide written recommendations for security authorization to the AO.
- Provide expertise to execute vulnerability assessments on Platform IT systems.
- Assist with assembling and submitting the security authorization artifacts to the AO.
- Assess proposed changes to information systems or software applications to determine if they are security-relevant.
- Utilize the RMF methodology to implement an information technology process to protect information assets.
- Provide guidance to other assessors on the policies and procedures of the job.
- Provide solutions and recommendations to remedy security vulnerabilities and threats.
- Utilize assessment results to identify trends and improve IA training, policies, and processes.
- Develop reports and trend analyses to support risk assessment decisions.
Requirements
- Must possess and maintain a Secret Clearance.
- Proof of IAT-III or IAM-III Certification.
- For Senior (III) and higher positions: MA/MS in related field AND 3 or more years' relevant experience; or BS in related field AND 5 or more years' relevant IT experience; or 7 or more years' relevant IT experience.
- For Mid-level (II) or lower positions: BS in related field AND 1 or more years' relevant experience; or Associates in related field and 3 or more years' relevant IT experience; or 5 or more years' of relevant IT experience.
Benefits
- Competitive salary between $100,000 - $120,000 per year.
- Full-time employment.
