1+ months

Federal - Security Control Assessor

Washington, DC 20020


Organization: Accenture Federal Services Location: Washington, DC



Travel-25% Nationwide





We are:



Accenture Federal Services, implementing the latest security frameworks tailored to our federal clients. Cybersecurity challenges are different for every business in every industry. With customized plans, we prepare, protect, detect, respond and recover along all points of the security lifecycle. Whether were defending against known cyberattacks, detecting and responding to the unknown, or running an entire security operations center, we help build cyber resilience so our clients can grow with confidence in security.



You are:



A risk-savvy and compliance-smart expert in the industry. You stay current with the latest cyber threats and help clients spot them before they happen. You work well across technology teams to implement the latest security frameworks and put security systems and processes in place. And, when it comes to creating IT risk assessments, you tackle the design and launch with ease.



The work:



The Security Control Assessor (SCA) is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an information system to determine the overall effectiveness of the controls. The Security Control Assessor shall provide an assessment of the severity of weaknesses or deficiencies discovered in the information system and its environment of operation, and recommend corrective actions to address identified vulnerabilities.



Perform assessment of information systems, based upon the Risk Management Framework (RMF) Conduct security testing and security control assessments on federal applications and general support systems to ensure compliance with the NIST SP 800-53 Rev. 4, NIST 800-37 Rev.1, and agency-specific requirements. Evaluate Authorization packages and make authorization recommendations Review and compile the security control implementations, test results, Security Assessment Reports (SARs), Plan of Action and Milestones (POA&M), risk acceptance recommendations, and risk mitigation strategies to support the recommendation for client risk acceptance authorization decisions. Technically assess both major application and general support system security configurations and implementation. Analyze results from vulnerability scanning tools such as Nessus, HP WebInspect, QualysGuard, AppDetective, and Burp Suite. Experience reviewing/updating SSPs







Here's what you need:





2+ years conducting security control assessments Hands on experience conducting analysis of vulnerability scan results Hands of experience reviewing one of the following: Security Assessment Plan (SAP), Security Assesment Reports (SAR), System Security Plan (SSP) or Security Control Traceability Matrix (SCTM)







Bonus points if you have:







Understanding of various Operating Systems. Advanced knowledge of general-purpose vulnerability scanners (e.g., QualysGuard, Nessus). Ability to communicate effectively; strong documentation and communication (written and verbal) skills. Understanding of SCADA or Industrial Control Systems Self-motivated and able to work in an independent manner.







An active security clearance or the ability to obtain one may be required for this role.



Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.



Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture (i.e., H1-B visa, F-1 visa (OPT), TN visa or any other non-immigrant status).



Accenture is a Federal Contractor and an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.



Equal Employment Opportunity All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.



Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.



Accenture is committed to providing veteran employment opportunities to our service men and women.








Categories

Posted: 2021-03-12 Expires: 2021-05-16

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Federal - Security Control Assessor

Accenture
Washington, DC 20020

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast