Security Control Assessor
Boston Government Services, LLC (BGS) · Knoxville Metropolitan Area · 2 wk ago
Information TechnologyFull-time
Responsibilities
- General understanding of cyber requirements.
- Ability to interpret cyber security plans for vendors to determine compliance with the National Institute of Standards and Technology (NIST) requirements.
- Ability to communicate with vendor IT and Cyber staff.
Requirements
- Working knowledge of NIST 800-171, NIST SP 800-53, NIST SP 800-53A.
- Ability to assess and document assessment results for NIST SP 800-171 security controls.
- Ability to aggregate risk for NIST SP 800-171 security controls into an overall risk assessment for a non-federal information system processing Controlled Unclassified Information (CUI) data.
- Knowledge of cyber controls.
- Familiarity with Defense Federal Acquisition Regulation Supplement (DFARS) requirements for processing CUI data on non-federal information systems.
- Must be U.S. citizen.
- Successful drug screening.
- Must have an Active Clearance: U.S. Department of Energy (DOE) Q clearance or an equivalent clearance from an agency such as the US Department of Defense (DOD), U.S. Department of State (DOS), U.S. Department of Justice (DOJ) Top Secret Clearance.
Preferred Qualifications
- Cybersecurity Maturity Model Certification (CMMC)
- Certification as Certified CMMC Professional (CCP)
- Certification as Certified CMMC Assessor (CCA)
- Training associated with the assessment of NIST security controls.
Benefits
- Health
- Dental
- Vision
- Life Insurance
- Paid Vacation
- 401K
- Long and Short-Term Disability
Schedule
Full-time, Monday – Friday 40-hour week.