ITSecurityControlAssessor

**_Job Family_ :** Cyber Consulting ** _Travel Required_ :** Up to 25% **_Clearance Required_ :** Ability to Obtain Secret ** _What You Will Do_ :** * Conduct FISMA security control assessments in accordance with NIST SP 800-53 and NIST SP 800-53A * Support system authorization efforts across the RMF lifecycle * Perform control testing, interviews, and evidence reviews for management, operational, and technical controls * Document assessment results, findings, and risk determinations in SARs and related ATO artifacts * Identify control gaps, weaknesses, and POA&M items with clear, actionable remediation guidance * Coordinate with system owners, ISSOs, engineers, and program stakeholders during assessments * Support continuous monitoring activities, including ongoing control assessments and ad hoc reviews * Ensure assessments align with agency-specific cybersecurity compliance and information security policies ** _What You Will Need_ :** * Bachelor’s degree in computer science, Information Technology, Cybersecurity, or related field * Minimum of THREE (3) years of experience in cybersecurity * Must be able to OBTAIN and MAINTAIN a Federal or DoD "SECRET" security clearance; candidates must obtain approved adjudication of clearance prior to onboarding with Guidehouse. Candidates with an ACTIVE "SECRET" or higher-level clearance are preferred. * Demonstrated experience performing FISMA or RMF-based security control assessments * Strong working knowledge of FISMA, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37 * Experience assessing cloud-based systems, including inherited controls * Ability to clearly document technical and non-technical findings for audit-ready reporting * Understanding of federal cybersecurity compliance requirements and governance processes * Relevant certifications preferred (e.g., CISSP, CISA, CAP, GSLC) **_What Would Be Nice To Have_ :** * Master’s Degree in in computer science, Information Technology, Cybersecurity, or related field * Certified