Security Control Assessor (SCA) Alexandria, VA or Seaside, CA

Must have an active Secret Clearanceto be considered

Must be within 1 hour of Alexandria VA or Seaside CA

Company Information

NexGen Technologies Inc. is a leading IT services firm specializing in delivering innovative highquality solutions to our federal government clients. Our core competencies include IT professional support services software development cloud services IT Operations Agile project management and GIS services.

Job Summary

The Security Control Assessor (SCA) conducts independent security control assessments to validate the effectiveness of implemented security safeguards in accordance with NIST SP 80053 and the Risk Management Framework (RMF). This role provides objective evaluations identifies residual risk and delivers authorization recommendations to support Authorizing Officials (AOs). The SCA ensures systems are fully prepared for authorization decisions and remain compliant with evolving DoD cybersecurity requirements.

Supervisory Responsibilities

There are no supervisory responsibilities.

Essential Duties and Responsibilities (as assigned)

• Conducts security control assessments validates and evaluates security control effectiveness (NIST 800-53) and provides authorization recommendations. Directly responsible for ensuring RMF control effectiveness and readiness for authorization.
• Conducts independent control assessments verifying the appropriateness and effectiveness of implemented security measures.
• Prepares Security Assessment Reports (SARs) for Authorizing Officials (AOs) detailing control validation findings and assessing residual risk.
• Tests the compliance of systems with RMF security controls (e.g. NIST 800-53) and develops recommendations for control remediation.
• Validates the effectiveness of control mitigations detailed in POA&Ms and tracks progress on corrective actions.
• Coordinates periodic risk re-assessments based on evolving threat landscapes and DoD cybersecurity directives.
• Other duties as assigned.

Technical Skills

• Experience conducting RMF security control assessments for DoD systems.
• Strong knowledge of NIST SP 80053 RMF processes and DoD cybersecurity policies.
• Ability to evaluate technical and procedural controls interpret evidence and assess residual risk.
• Experience preparing SARs and providing recommendations to AOs or senior cybersecurity leadership.
• Familiarity with POA&M management and remediation tracking.

Desired Skills

• Knowledge of eMASS workflows and assessment package structure.
• Relevant certifications (e.g. CAP Security CISSP CISA CCSP).
• Experience conducting risk assessments in dynamic or highthreat environments.

Education

• Bachelors degree in Cybersecurity IT Computer Science or related field.

Additional Requirements

• Ability to collaborate with ISSMs ISSOs system owners and engineering teams.
• Strong documentation communication and stakeholder engagement skills.
• Must be able to pass background screening prior to employment.
• US Citizenship legal permanent residence or US work authorization with a minimum of 3 years of US presence is required due to federal contract requirement.
• Active Secret clearance required; ability to obtain TS/SCI preferred.

Place of Performance

• Minimum 25% onsite at the Mark Center (Alexandria VA) or DoD Center Monterey Bay (Seaside CA).
• Work hours: 8 a.m. Eastern to 5 p.m. Pacific MondayFriday excluding federal holidays or government closures.
• Incident response may require afterhours support with onehour recall.

Physical Requirements

• Reliable internet (50 Mbps down / 25 Mbps up) and a secure remote work environment.
• Reasonable accommodations will be provided as needed. (We provide reasonable accommodations to individuals with disabilities to enable them to perform the essential functions.)

Compensation: $110000-$135000/year

(The successful candidates starting pay will fall within the salary range provided and isdeterminedbased on job-related factors including but not limited to experience qualifications knowledge skills geographic work location and market conditions.)

NexGen Technologies Inc. is an equal opportunity employer. All qualified applicants will receive consideration without regard to race color religion sex national origin age disability genetic information or veteran status.

(Last Revision: 202603-12)