Security Controls Assessor

Security Control AssessorLocation: Annapolis Junction, MDOverview Our client is seeking a highly skilled and experienced Security Control Assessor to perform verification and validation of security compliance for information systems, products, and components. This role requires expertise in security and system engineering across multiple domains, and the ability to provide comprehensive assessments and mitigation recommendations for systems within a secure environment. This is a critical role supporting the certification and accreditation of systems in a highly regulated setting. The ideal candidate has extensive experience in security engineering, vulnerability assessment, and compliance verification, with professional certifications in line with IAT III or IAM III requirements. Key Responsibilities Conduct verification and validation for security compliance of low- and moderately complex information systems, products, and components Analyze design specifications, design documentation, configuration practices, and operational procedures Identify non-compliance with security requirements and recommend possible mitigations Conduct on-site evaluations to validate system security requirements Verify and validate that systems meet established security requirements Perform vulnerability assessments, coordinate penetration testing, and deliver comprehensive certification and validation reports Collaborate with system owners and stakeholders to ensure systems adhere to security standards and best practices Education & Experience Minimum 12 years of related work experience in security or system engineering Bachelor's Degree in Computer Science or IT Engineering may substitute for 4 years of experience Experience in five or more of the following areas: Telecommunications concepts Operating systems Databases / DBMS Middleware Applications Web servers SANS / NetApps Active Directory Firewalls Controlled interfaces Professional certifications meeting IAT III or IAM III requirements (e.g., CISSP, CASP+ SecurityX, or CISM) Required Skills In-depth understanding of system security engineering principles and practices Strong analytical and problem-solving skills Ability to provide clear, detailed reporting and recommendations Knowledge of federal security regulations, standards, and frameworks Equal Employment Opportunity Our client is an Equal Opportunity Employer and is committed to creating a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, veteran status, or any other protected characteristic under applicable federal, state, or local law. We celebrate diversity and are dedicated to fostering an environment where all employees feel respected, valued, and empowered to succeed.

Created: 2026-03-05