Security Control Assessor (Active Polygraph Required)

We are GDIT. We support and secure some of the most complex government, defense, and intelligence projects across the country. At GDIT, cyber security is not just a singular part of our mission—it connects every one of us because it’s embedded into every aspect of what we do.

GDIT is your place. You make it your own by bringing your ideas and unique perspective to our culture. By owning your opportunity at GDIT, you are helping us ensure today is safe and tomorrow is smarter. Our work depends on a Security Control Accessor (SCA) joining our team to support ODNI Customer activities at McLean, VA.

Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.
Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems working either alone or as part of a team. Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation including system level attacks and user level attacks.
o Applies experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM
o Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
o Demonstrated experience conducting hands on security testing, analyzing results, documenting risks, and recommending countermeasures
o Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer assess systems against information assurance policies, regulations and instructions
o Demonstrated experience providing threat analysis based on identified security vulnerabilities
o Develops and documents security evaluation test plans and procedures
o Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation

WHAT YOU’LL NEED:

• Bachelors
• 10+ years or relevant experience
• Technical skills
• FSP
• Required Skills:
  Compliance and vulnerability scanning tools (XACTA, RedSeal, Nessus, Splunk, McAfee ePO, and/or other vulnerability scanners)
  Strong understanding of the Assessment and Authorization (A&A) process
  Excellent oral and technical writing skills
• Desired Certifications: CASP, CCNP Security, CISA, CISSP, GCED, or GCIH

WHAT GDIT CAN OFFER YOU:

• Full-flex work week
• 401K with company match
• Internal mobility team dedicated to helping you own your career
• Collaborative teams of highly motivated critical thinkers and innovators
• Ability to make a real impact on the world around you

#OpportunityOwned

#GDITCareers

#GDITLife

#WeAreGDIT

#GDITAlumniCampaign