Job Title: Cyber Controls Assessor

Working Pattern: Full-time

Working location: Indianapolis, IN (Hybrid Schedule)

We are seeking a Cyber Controls Assessor to plan and execute security control assessments aligned with CMMC and/or NIST SP 800-53. This role evaluates the design and operating effectiveness of security controls, validates evidence, documents results, and partners with technical and business stakeholders to reduce risk and strengthen compliance—especially in environments supporting U.S. DoD and federal requirements. Experience in the aerospace industry or working with DoD / U.S. federal government programs is a strong plus.

What you will be doing

With this attractive opportunity you will get a chance to:

• Conduct security control assessments against CMMC and/or NIST SP 800-53 (and related standards as applicable).
• Plan assessment activities: scope, methodology, schedules, evidence requests, interviews, and sampling.
• Evaluate control implementation and effectiveness through documentation review, technical validation, and stakeholder walkthroughs.
• Collect, validate, and organize assessment evidence; maintain clear traceability from requirements to test results.
• Produce assessment deliverables such as control test plans, assessment reports, findings/risk statements, POA&Ms, and executive summaries.
• Identify control gaps and provide practical remediation recommendations aligned to risk and operational constraints.
• Partner with engineering, IT, security, and program teams to validate remediation and perform follow-up testing.
• Support governance activities including policy/standard updates, risk register inputs, and continuous monitoring improvements.
• Contribute to audit readiness and compliance support for federal/DoD-aligned environments (e.g., SSP/assessment artifacts as relevant).
• Maintain professional documentation standards and ensure consistent assessment quality across programs.

Who we’re looking for:

At Rolls-Royce we put safety first, do the right thing, keep it simple and make a difference. These principles form the behaviours that guide us and are an essential component of our assessment process. They are the fundamental qualities that we seek for all roles.

Basic Requirements:

• Associate’s degree in Information Technology, Cybersecurity, Information Systems or and 7+ years of relevant IT experience, OR
• Bachelor’s degree in Information Technology, Cybersecurity, Information Systems and 5+ years of relevant IT experience, OR
• Master’s degree in Information Technology, Cybersecurity, Information Systems, and 3+ years of relevant IT experience, OR
• PhD and no years of experience, OR
• 9+ years of experience in lieu of degree

Preferred Requirements:

• Experience working on NIST RMF or controls assessment
• Experience as a SOC Security Analyst and familiarity with industry leading security products such as SIEMs and networking mapping, vulnerability scanning and packet capture and data analytics tools
• Experience of network anomaly detectionusingtraffic analysisornetworkintruderdetection systems
• A basic understanding of the cyber kill chain in relation to Advanced Persistent Threats (APTs)
• Experience and knowledge of threat actor tactics, techniques and procedures, vulnerabilities, attacks and countermeasures.
• Experience of presenting on cyber security issues

What we offer

We offer excellent development opportunities, a competitive salary, and exceptional benefits. These include bonus, employee support assistance and employee discounts.

Your needs are as unique as you are. Hybrid working is a way in which our people can balance their time between the office or home. It99s a locally managed and flexed informal discretionary arrangement. As a minimum we99re all expected to attend the workplace for collaboration and other specific reasons, on average three days per week.

Relocation assistance is available for this position.

Global Grade Level C

Closing date: July 6th, 2026

Benefits

Rolls-Royce provides a comprehensive and competitive Total Rewards package that includes base pay and a discretionary bonus plan. Eligible employees may have the opportunity to enroll in other benefits, including health, dental, vision, disability, life and accidental death & dismemberment insurance; a flexible spending account; a health savings account; a 401(k) retirement savings plan with a company match; Employee Assistance Program; Paid Time Off; certain paid holidays; paid parental and family care leave; tuition reimbursement; and a long-term incentive plan. The options available to an employee may vary depending on eligibility factors such as date of hire, employment type, and the applicability of collective bargaining agreements.