×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Senior Security Control Assessor

Job in Arlington, Arlington County, Virginia, 22201, USA
Listing for: Arlo Solutions LLC
Full Time position
Listed on 2026-06-19
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below
Position: (178) Senior Security Control Assessor

Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value‑added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end‑users, and give our customers a competitive edge, now and into the future.

Position Overview

The Department of War’s (DoW) Chief Digital and Artificial Intelligence Office (CDAO) are at the forefront of supporting the DoW with the adoption of innovative technologies such as data, analytics, and artificial intelligence to help accelerate predictions, forecasts, and interpretations for both strategic and tactical decisions across the enterprise. These ground‑breaking endeavors bring new challenges to the assessment of DoW IT systems that previously did not exist.

The Security Control Assessor (SCA) plays a pivotal role in comprehensively understanding the cybersecurity posture of a given capability within CDAO. SCAs must go beyond a mere compliance focus on controls to articulate the inherent risks of systems. Success in this position requires expertise in statutory guidance such as the NIST 800 series, DoW I 8500.01, DoW 8140.03, ISO 27001, COBIT, DoW RMF, and Operation Vulcan Logic (OVL), along with current cybersecurity best practices.

The Senior SCA provides authoritative risk determinations and recommendations critical for the Authorizing Official (AO) to grant an Authority to Operate (ATO). Their assessments integrate technical rigor with regulatory compliance, ensuring a robust security posture and informing strategic decision‑making.

Work Location

Full‑time remote. Candidates in the Washington DC Metropolitan area preferred. Travel requirements will vary with location, however, expect approximately 10% to 25%.

Job Responsibilities
  • Provide the AO with an independent risk assessment of assigned systems and authorization.
  • Advise Program Managers on AO determination utilizing OVL documentation.
  • Provide senior advisory support to CDAO AO regarding authorizations of CDAO capabilities.
  • Utilize expert knowledge and experience regarding risk management strategies in support of a major DoW program.
  • Provide support regarding the agile authorization and OVL processes.
  • Provide independent risk analysis and recommendation.
  • Collaborate between the AO and the program as well as Program leadership.
  • Identify the security baseline based on the mission and security impacts to the system.
  • Determine assessment criteria, develop, review, and create a plan to assess the security requirements.
  • Assess the security requirements in accordance with the assessment procedures defined in the Security framework.
  • Prepare the Security Assessment Report (SAR).
  • Monitor POAM actions based on findings and reassess remediated risks as appropriate.
  • Develop the Risk Recommendation and AO Determination Brief.
  • Develop a system‑level continuous monitoring strategy.
  • Author and present briefs regarding status of authorizations to AO and other senior Government officials.
  • Provide security architecture and DoW compliance advisory support.
  • Perform other duties as assigned or required.
Success Factors
  • Strong background in information security systems management (ISSM), risk management, and governance, risk and compliance (GRC).
  • Strong client focus and commitment to continuous improvement, ability to proactively network and establish relationships.
  • Manage multiple priorities in a high‑paced and fast‑changing environment.
  • Experience supporting and assessing risks within a CI/CD Dev Sec Ops  environment, including data mesh, data orchestration, control gates review, and vulnerability management within a pipeline.
  • Expansive knowledge of integrating IaaS, PaaS, and SaaS offerings into government cloud environments (AWS, Azure & GCP), including cloud compute, cloud storage, cloud native solutions, cloud data transfer,…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search