Security Control Assessor; SCA

Overview

VTG is looking for multiple levels (Level 2, 3 &
4) of a Security Control Assessor (SCA) in multiple locations. (

Note:

position is contingent upon program award and the postions are located in Chantilly VA, Auroro CO, Springfield VA, Las Cruces NM, & LAAFB.)

A SCA is a security professional that provides INFOSEC A&A support throughout an NRO program's lifecycle to both Contractor and Government systems processing NRO information.

All positions require: TS/SCI with Poly

• Bachelor's degree relevant to computer engineering, INFOSEC, cyber security, information management, and/or computer science
• Level 2 SCA: BS Degree + 3 years OR High School + 5 years OR Associates + 4 years OR Masters Degree + 2 years
• Experience in technical project management
• Familiarity with IA concepts
• Ability to review and recommend vulnerability and risk levels associated SW and HW products
• Ability to provide basic IA support to SCA Level 2
  -4 personnel in the conduct of assessment actions
• Practical experience performing ISs A&A as defined in applicable ICDs and guidance
• Practical experience developing and implementing security related directives and guidance for IT-IA-IM
• Practical experience utilizing risk management strategies for IT solutions
• Understanding of emerging technologies and their implementation within Government system and network environments
• Knowledge of IT concepts used in the evaluation of security performance and integrity of state-of-the-art applications, communications systems, HW, SW, satellite control systems, and information processing systems
• Understanding of IT systems, SW, and networks
• Practical experience assessing security of cloud-based systems, including infrastructure as a service (IaaS), platform as a service (PaaS), and/or software as a service (Saas) deployment
• Ability to effectively coordinate A&A activities of industry and Government ISs to meet acquisition milestone requirements
• Effective technical report and general correspondence writing ability
• IAM Level I Certification: CAP, CompTIA Security, GSLC

Level 3 SCA: BS Degree + 5 years OR High School or Associates + 7 years OR Masters Degree + 3 years

Level 3 SCAs should possess all SCA Level 1 and Level 2 qualifications, a compliant IAM Level II certification, and the additional desired qualifications:

• Ability to manage and track systems or programs involved in the A&A process
• Experience developing and implementing security related directives and guidance for IT-IA-IM
• Experience working with a mixed skill level team to ensure that appropriate knowledge and skill transfer occurs

IAM Level II Certification: CAP, CASP, CISM, CISSP (for Associate), GSCL

Level 4 SCA: BS Degree or higher + 10 years OR High School or Associates + 15 years

Level 4 SCAs should possess all SCA Level 1, Level 2, and Level 3 qualifications, a compliant IAM Level III certification, and the additional desired qualifications:

• Ability to simultaneously manage and track multiple large-scale systems or programs involved in the A&A process
• Experience developing and implementing security related directives and guidance for IT-IA-IM
• In-depth understanding of IT systems, SW, and networks
• Effective technical report and general correspondence writing ability
• IAM Level III Certification: CISSP-ISSEP, CISSP-ISSAP

A SCA is a security professional that provides INFOSEC A&A support throughout an NRO program's lifecycle to both Contractor and Government systems processing NRO information.