Security Control Assessor - TS/SCI Polygraph
Listed on 2026-07-04
-
IT/Tech
Cybersecurity, Information Security, IT Consultant
Job Description:
Seize your opportunity to make a personal impact as a Security Control Assessor supporting customer activities. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career.
At GDIT, people are our differentiator. As a Security Control Assessor, you will help ensure today is safe and tomorrow is smarter. Our work depends on a Security Control Assessor joining our highly skilled team to be a premier provider of cyber security services to the customer. We provide consummate cyber security risk management “as a service” platform across multiple fabrics and centers.
We have responsibility to ensure operational IT capabilities provide the client with necessary timeliness, accuracy and security of information demanded from all our highly professional roles. Be the change, lead our change – join us!
- Evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems working either alone or as part of a team.
- Ensures integrity of IT systems by identifying and mitigating potential avenues of exploitation including system level attacks and user level attacks.
- Applies experience with RMF, CNSSI 1253, NIST SP 800-53 Rev 5, and NISPOM.
- Applies experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC).
- Demonstrated experience conducting hands‑on security testing, analyzing results, documenting risks, and recommending countermeasures.
- Demonstrated experience developing risk assessment reports based on review of security plans and interviews with developer/customer assess systems against information assurance policies, regulations and instructions.
- Develops and documents security evaluation test plans and procedures.
- Demonstrated experience testing security architectures of cloud-based systems and applications, identifying vulnerabilities and providing security remediation.
- Education :
Bachelor’s Degree (Computer Science or Engineering, Information Systems, Information Technology, Cybersecurity, or a closely related discipline) - Required Experience : 10+ years (Must have 4+ years of hands‑on SCA experience)
- Clearance : TS/SCI with Polygraph
- Required Technical
Skills: - Compliance and vulnerability scanning tools (XACTA, Red Seal, Tenable, Nessus, Splunk, and/or other vulnerability scanners)
- Strong understanding of the Assessment and Authorization (A&A) process including Cloud Best Practices
- Excellent oral and technical writing skills
- Strongly Desired
Certifications:
CASP, CISA, CISSP, AWS Cloud Practitioner, AWS Solutions Architect Associate, Microsoft AZ 900, Microsoft AZ-500 - Security Clearance Level : TS/SCI with active polygraph
- Location :
McLean, VA - On Customer Site
- 401K with company match
- Comprehensive health and wellness packages
- Internal mobility team dedicated to helping you own your career
- Professional growth opportunities including paid education and certifications
- Cutting-edge technology you can learn from
- Rest and recharge with paid vacation and holidays
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post‑tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave.
To ensure our employees are able to protect their income, other offerings such as short and long‑term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
Type of Requisition:
Regular
Clearance Level Must Currently Possess:
Top Secret SCI + Polygraph
Clearance Level Must Be Able to Obtain:
Top Secret SCI + Polygraph
Public Trust/Other
Required:
None
Job Family:
Cyber and IT Risk Management
Job Qualifications:
Skills:
RMF, Security Content Automation Protocol (SCAP), Security Technical Implementation Guides (STIGs)
Certifications:
None
Experience:
10 + years of related experience
US Citizenship
Required:
Yes
Scheduled Weekly
Hours:
40
Travel Required:
Less than 10%
Telecommuting Options:
Onsite
Work Location:
USA VA Mc Lean
Additional Work Locations:
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).