Strategic Analysis, Inc

Senior Security Controls Assessor (TS/SCI #26-125)

Strategic Analysis, Inc$100K — $130K *
Aerospace & Defense
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 7+ years of experience in cybersecurity focusing on RMF/A&A activities.
  • Past roles as SCA, ISSM, ISSO, or ISSE.
  • Deep understanding of Secure Systems & AI/ML Environments, particularly within NIST RMF frameworks.
  • Proficiency in GRC/RMF tools like XACTA, eMASS, or ServiceNow.
  • IAM Level III certification (CISM, CISSP, or GSLC) required.
  • Ability to assess vulnerabilities and document findings effectively.

Responsibilities

  • Assess security controls effectiveness according to the RMF.
  • Conduct security reviews to find gaps in system architecture.
  • Perform risk analysis and suggest mitigation strategies.
  • Support ATO decisions by executing security authorization reviews.
  • Validate security posture of systems and networks.
  • Monitor compliance across information systems regularly.
  • Draft Statements of Risk (SORs) and record security findings.

Benefits

  • Opportunity to work within DoD and IC environments.
  • Engaging role focused on advanced R&D portfolios.
  • Potential for significant professional growth in cybersecurity.
  • Strong emphasis on teamwork and collaborative problem-solving.
  • Travel opportunities to engage with diverse teams and locations.
Full Job Description
Strategic Analysis, Inc. is seeking an experienced Senior Security Control Assessor (SCA) to support Risk Management Framework (RMF) activities, including assessment, authorization, and continuous monitoring of information systems. This role focuses on evaluating security controls, identifying risks, and supporting authorization decisions within DoD and/or IC environments. Responsibilities:
• Assess the effectiveness of security controls in accordance with RMF • Perform security reviews to identify gaps in system architecture and design • Conduct risk analysis and develop mitigation recommendations • Execute security authorization reviews and support ATO decisions • Validate security posture of systems, networks, and applications • Monitor and evaluate compliance across information systems • Develop Statements of Risk (SORs) and document security findings • Provide authorization recommendations to the Authorizing Official (AO) Qualifications & Requirements:
• 7+ years of cybersecurity experience supporting RMF/A&A activities • Previous experience in SCA, ISSM, ISSO, or ISSE roles • Strong working knowledge of Secure Systems & Cloud/AI/ML Environments and NIST RMF frameworks in advanced R&D portfolios • Experience with GRC/RMF tools such as XACTA, eMASS, or ServiceNow (SNOW) • IAM Level III certification (CISM, CISSP, or GSLC) • Ability to assess vulnerabilities, analyze risk, and document findings clearly Preferred:
• Experience supporting DoD, IC, or SAP environments • Knowledge of FedRAMP and cloud security requirements • Familiarity with STIGs, SRGs, and continuous monitoring practices Travel: Up to 50% travel required during the first year. Clearance • Active TS/SCI w/ CI Poly or willingness to take and pass a CI Poly

About Strategic Analysis, Inc

Strategic Analysis, Inc. (SA) is a professional services firm that provides innovative solutions and expert analysis to government and commercial clients. SA was founded in 1984 and is headquartered in Alexandria, Virginia. The company specializes in management consulting, engineering, and technology services. SA's clients include the Department of Defense, Department of Homeland Security, and various other federal agencies. The company has a reputation for providing high-quality services and has received numerous awards for its work.
Learn more about Strategic Analysis, Inc
Size
200 employees
Industry
Net Income
$1 million
Founded
1984
5 Year Trend
-2%
Revenue
$47 million
NASDAQ

Similar Jobs

More Jobs at Strategic Analysis, Inc

More Aerospace & Defense Jobs

Find similar Senior Security Controls Assessor (TS/SCI #26-125) jobs: