Bloomberg

Security Control Assessor

Bloomberg$160K — $185K *
Aerospace & Defense
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • Master's degree in cybersecurity or related field (or equivalent experience)
  • Minimum 12 years of relevant cybersecurity experience, especially in RMF/A&A leadership
  • Active TS/SCI clearance with SAP access eligibility
  • Certifications required: IAT Level III or IAM Level III (like CISSP, CISM, CASP+)

Responsibilities

  • Lead RMF activities including the development and validation of security documents
  • Act as cybersecurity advisor to support ATO decisions
  • Conduct system security assessments and documentation reviews
  • Validate control implementation in hybrid and cloud environments
  • Provide guidance to ensure compliance with DoD cybersecurity mandates
  • Assist in developing SOPs and standardizing cybersecurity metrics
  • Support cybersecurity incident response documentation

Benefits

  • Standard 8-hour workdays, Monday-Friday
  • Core hours from 9 AM to 3 PM
  • Opportunity for limited local and CONUS travel
  • Potential for on-call response for critical issues
Full Job Description
Job Description Position Summary
This role delivers technical and managerial leadership across RMF activities, system accreditation, and enterprise-wide cyber compliance. The Security Control Accessor will serve as a trusted cybersecurity advisor, managing high-impact assessments and helping to ensure secure operations across highly classified SAP environments. Essential Duties and Responsibilities
  • Lead Risk Management Framework (RMF) activities, including the development, review, and validation of:
  • System Security Plans (SSPs)
  • Security Assessment Plans (SAPs)
  • Plan of Action and Milestones (POA&Ms)
  • Security Assessment Reports (SARs)
  • Security Control Traceability Matrices (SCTMs)
  • Act as an advisor to the Authorizing Official (AO), providing SME input to support Authorization to Operate (ATO) decisions.
  • Perform system security assessments, documentation reviews, and artifact evaluations in eMASS or equivalent tools.
  • Validate control inheritance and implementation across hybrid, cloud, AI/ML-enabled, or cross-domain architectures.
  • Provide technical guidance to system owners, ISSMs, SCAs, and program staff to maintain compliance with DoD cybersecurity mandates.
  • Assist in development and standardization of SOPs, cybersecurity scorecards, and dashboards.
  • Support cybersecurity incident response documentation and post-event reporting in classified environments.
  • Participate in enterprise-wide security initiatives, policy updates (e.g., JSIG revisions), and threat awareness activities.
  • Serve as eMASS administrator: manage accounts, permissions, workflows, and enterprise-level metrics reporting.
Minimum Qualifications (Knowledge, Skills, and Abilities)
  • Master's degree in cybersecurity or a related technical field
    (Or equivalent combination: e.g., Bachelor's + 2 years, or High School + 6 years of additional experience)
  • Minimum of 12 years of relevant cybersecurity experience, including leadership in RMF/A&A efforts.
  • Clearance: Active TS/SCI with eligibility for SAP access
  • Certifications: Must hold a cybersecurity certification at IAT Level III or IAM Level III (e.g., CISSP, CISM, CASP+)
Physical Demands and Work Environment

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions.

While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers, handle or feel objects, tools, or controls. The employee is occasionally required to stand; walk; sit; and reach with hands and arms. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this position include close vision, distance vision, and the ability to adjust focus. The noise level in the work environment is usually low to moderate.

Travel

Up to 10% - Local travel within NCR may be required; occasional CONUS travel possible

Shift
  • Standard 8-hour workdays, Monday-Friday (core hours: 9 AM-3 PM)
  • May require occasional travel within the National Capital Region (NCR) and limited CONUS travel
  • On-call response may be required for critical system issues or classified facility access
Note

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship.

Salary Description

Salary Range: 160k-185k/yr

About Bloomberg

Bloomberg L.P. is a privately held financial, software, data, and media company headquartered in Midtown Manhattan, New York City. It was founded by Michael Bloomberg in 1981, with the help of Thomas Secunda, Duncan MacMillan, Charles Zegar, and a 12% ownership investment by Merrill Lynch. Bloomberg L.P. provides financial software tools and enterprise applications such as analytics and equity trading platform, data services, and news to financial companies and organizations through the Bloomberg Terminal (via its Bloomberg Professional Service), its core revenue-generating product. Bloomberg L.P. also includes a wire service (Bloomberg News), a global television network (Bloomberg Television), digital websites, a radio station (WBBR), subscription-only newsletters, and three magazines: Bloomberg Businessweek, Bloomberg Markets, and Bloomberg Pursuits.
Learn more about Bloomberg
Size
20,000 employees
Industry
Founded
1981

Similar Jobs

More Jobs at Bloomberg

  • Bloomberg
    Security Control Assessor
    $160K — $185K *
    Washington, VA 22747 (Rappahannock County)
    Aerospace & Defense
    In-Person
  • Bloomberg
    Security Control Assessor
    $160K — $185K *
    Arlington, VA 22204 (Arlington County)
    Aerospace & Defense
    In-Person
  • SOC Analyst
    $150K — $165K *
    Alexandria, VA 22304 (Alexandria City County)
    Information Technology
    In-Person

More Aerospace & Defense Jobs

Find similar Security Control Assessor jobs: