More jobs:
Junior Security Control Assessor
Job in
Gaithersburg, Montgomery County, Maryland, 20883, USA
Listed on 2026-07-01
Listing for:
The Newberry Group
Full Time
position Listed on 2026-07-01
Job specializations:
-
IT/Tech
Cybersecurity, Information Security
Job Description & How to Apply Below
Job Summary
Newberry Group seeks a Jr. Security Control Assessor to support its Government Client. This role requires 85% travel to various government locations both domestically and internationally.
Location & TravelHybrid position – approx. 25% remote support with up to 75% CONUS and OCONUS travel.
Security ClearanceDoD Top Secret/SCI Clearance required or Interim Top Secret preferred. Candidates with an active Secret clearance may be considered.
Certifications- DoD 8570 IAT II (active or will obtain within 90 days of hire)
$70,000 – $74,000
Primary Responsibilities- Conduct cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN.
- Evaluate systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing.
- Adhere to policies and processes for each assessment type.
- Support assessment development and execution to ensure security expertise is properly applied.
- Coordinate logistics, test plans, and scope with the SCA Team Lead.
- Perform vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS.
- Analyze security gaps and provide mitigation recommendations.
- Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines.
- Provide risk analysis and assessment results for authorization recommendations.
- Participate in daily assessment reviews, in‑briefs, and out‑briefs, sharing findings with the SCA‑R.
- Review applicable controls to determine compliance status and enter all test results into eMASS.
- Provide key assessment results to the team lead, including the number of controls reviewed and risk/residual information for inclusion in the authorization recommendation.
- Be certified via the ACP IAW the ACP CONOPS before conducting any assessments.
- Maintain a minimum of two (2) technology certifications and RMF Control Validation.
- Maintain active accounts to the tools and systems required to perform risk assessments.
- Participate in the in‑brief and out‑brief of each assessment.
- Bachelor's degree in a related field such as Security or Information Technology.
- At least three (3) years of experience supporting similar assessment requirements.
- Active DoD Top Secret clearance with SCI eligibility.
- IAT Level II certification active or obtainable within 90 days of hire, including one or more of the following:
- CompTIA Cybersecurity Analyst (CySA+)
- CompTIA Security+
- EC‑Council Certified Network Defense (CND) v3
- Red Hat Certified System Administrator (RHCSA)
- CCNA Security
- Global Industrial Cyber Security Professional (GICSP)
- GIAC Security Essentials (GSEC)
- Systems Security Certified Practitioner (SSCP)
- Familiarity with STIGs, Security Requirement Guides (SRGs), POA&Ms, and cybersecurity best practices.
- Understanding of the RMF process, NIST SP 800‑37, NIST SP 800‑53, and CNSSI 1253.
- Familiarity with tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS.
- Strong written and verbal communication skills for reporting assessment findings.
- Medical coverage with three plan options
- Dental and vision coverage
- Personal time off
- Paid holidays
- Paid parental leave
- Telecommuting (when available)
- Retirement savings accounts (Pre‑Tax and Roth)
- Flexible and dependent care savings accounts
- Life insurance
- Long‑ and short‑term disability coverage
- Tuition and training reimbursement
- Employee assistance program
Newberry Group, Inc. is an Equal Opportunity Employer – EEO/AA/Disability/Veterans.
#J-18808-LjbffrTo View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×