Senior Security Control Assessor

Company: Coalfire
Location: Bethesda
Posted on: November 19, 2021

Job Description:

About Coalfire Coalfire Federal is a market leading cybersecurity consultancy firm that provides independent and tailored advice, assessments, technical testing and a full suite of cyber engineering services to Federal agency customers. Coalfire Federal along with its parent company, Coalfire, has an unparalleled client list with deep customer relationships with leading cloud and technology providers including Amazon, Microsoft, IBM, Google and Oracle and Federal agencies. Coalfire has been a cybersecurity thought leader for nearly 20 years, and has offices throughout the United States and Europe and is committed to making the world a safer place by solving our clients' toughest security challenges. We're looking for a Senior Security Assessor to join our team in Bethesday, MD (currently remote). What you'll do You'll facilitate Security Control Assessments (SCAs) and possibly other advanced-level Continuous Monitoring Activities within cloud-based environments. To succeed in this position, you'll need a strong understanding of security-related system controls and an understanding of the various testing methods utilized to ascertain the effectiveness of those controls. You will work in a team atmosphere with an experienced Technical Project Lead, and you'll be assigned technical sections and be able to provide client-ready deliverables. In this role, you will: * Execute, examine, interview, and test procedures in accordance with NIST SP 800-53A Revision 4 * Ensure cybersecurity policies are adhered to and that required controls are implemented * Validate respective information system security plans to ensure NIST control requirements are met * Develop resultant SCA documentation, including but not limited to the Security Assessment Report * Author recommendations associated with your findings on how to improve the customer's security posture in accordance with NIST controls What you'll bring * Bachelor's degree (four-year college or university) in an IT related field * At least one of the following certifications: CISSP, CISM, and/or PMP; or equivalent combination of education and experience * 5-7+ years of experience in the IT industry, with strong familiarity with the applicable NIST Special Publications 800-37 Revision 1, 800-53 Revision 3 or 4, and 800-53A Revision 1 * Strong written and verbal communication skills including the ability to explain technical matters to a non-technical audience * A solid understanding of IT security technologies including network and application security, firewalls, access management, and data protection * Ability to lead small, less complex system assessments independently * Ability to assist team members with proper artifact collection and detail to clients' examples of artifacts that will satisfy assessment requirements Why you'll want to join us Coalfire's high energy, challenging, and fast-paced work environment will keep you engaged and motivated. Work-life balance is a core priority at Coalfire - we work hard and we play hard, and the two often overlap. We host family-friendly events and happy hours along with professional meetups and informal networking sessions, and we're active in our communities. Plus, we offer great benefits, including: * Health, dental, and vision insurance with an employer contribution * Flexible paid time off (employees are encouraged to spend four weeks away from the office each year) * A generous 401(k) plan * A corporate wellness program * Tuition reimbursement Coalfire is an EEO employer. We celebrate diversity and are committed to respecting one another, embracing individual differences, and creating an inclusive environment for all employees.

Keywords: Coalfire, Bethesda , Senior Security Control Assessor, Other , Bethesda, Maryland