We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
Arcfield jobs

Security Control Assessor (SCA) Professional- Level II

Arcfield
United States, Virginia, Chantilly
Aug 07, 2025
Overview

Arcfield was purpose-built to protect the nation and its allies through innovations in digital transformation, space mission engineering and launch assurance, miniaturized sensors and satellites, advanced modeling and simulation, cybersecurity, and conventional and hypersonic missile support. Headquartered in Chantilly, VA with 16 global offices, Arcfield employs more than 1,500 engineers, analysts, IT specialists, and other professionals with more than 60 years of collective proven experience supporting missions in cyber and space defense, space exploration, hypersonic and nuclear deterrence and warfighter readiness. Visit arcfield.com for more details.


Responsibilities

Arcfield's Cyber programs are expanding and are currently in need of Level II-Security Control Assessor (SCA) professionals to support Risk Management Framework (RMF) workflows, performing comprehensive INFOSEC assessment of management, operational, and technical security controls to determine overall effectiveness of the controls for A&A determination throughout an NRO program's system lifecycle. SCAs provide an assessment of the severity of weakness or deficiencies discovered in the IS and its environment of operation and recommend corrective actions to address identified vulnerabilities. Note: An offer for this position is contingent upon contract award.

Responsibilities include, but are not limited to:

  • Review and assess information systems (IS) for compliance with IC, DoD, and ND guidelines
  • Provide IS security advice and guidance to government and industry partners
  • Advise Information System Owners (ISO) on confidentiality, integrity, and availability impact values
  • Offer technical guidance for Authorization and Accreditation (A&A) responses
  • Evaluate IS threats and vulnerabilities, recommending additional safeguards as needed
  • Support development and implementation of NRO IT-IA-IM policies
  • Contribute to future NRO IS security policy development
  • Conduct site visits and assessments, prepare written reports for government approval
  • Ensure completion of security control assessments for each IS
  • Support RMF process-related presentations, briefings, and reports
  • Utilize NRO's RMF system of record for workflow duties and documentation
  • Track and report on RMF process workflow activities and metrics
  • Prepare Security Assessment Reports (SARs) and Authorization Recommendations
  • Collaborate on Plans of Action and Milestones (POAMs) based on assessment findings
  • Review and approve IS Security Assessment Plans
  • Address security issues as requested by the government
  • Support A&A for special programs and tactical operations
  • Conduct reviews and write reports for ISAP or TISSRs
  • Verify proper implementation and documentation of security controls in System Security Plans (SSPs)
  • Assess severity of identified weaknesses and recommend corrective actions
  • Act as IS liaison between Directorates and Offices (Ds&Os) and COMM

Qualifications

Required:

  • BS 2-4 years or MS 0-2 years
  • Must posess and able to maintain a TS/SCI w/ poly
  • Certifications:
    • CAP
    • GSLC
    • Security+ CE
    • GSEC
    • Security+
    • A+
  • SCA experience
  • Relevant experience in technical project management
  • Moderate IS security skills and knowledge
  • Familiarity with IA concepts
  • Ability to review and recommend vulnerability and risk levels associated with SW and HW products
  • Practical experience developing and implementing security related directives
  • Practical experience performing IS' A&A as defined in applicable ICDs and guidance
  • Practical experience utilizing risk management strategies for IT solutions
  • Understanding of emerging technologies and their implementation w/in government systems and network environments
  • Knowledge of IT concepts used in evaluation of security performance and integrity of state-of-the-art applications, communications systems, HW, SW, satellite controls systems, and information processing systems
  • Understanding of IT systems, SW, and networks
  • Practical experience assessing security of cloud-based systems including IaaS, PaaS, and/or SaaS deployment
  • Ability to effectively coordinate A&A activities of industry and government IS' to meet acquisition milestone requirements
  • Effective technical report and general correspondence writing ability

Desired:

  • BA/BS or higher STEM degree
  • Education relevant to computer engineering, INFOSEC, cyber security, information management, and/or computer science

EEO Statement

We are an equal opportunity employer and federal government contractor. We do not discriminate against any employee or applicant for employment as protected by law.

Applied = 0
MORE JOBS LIKE THIS

(web-8669549459-6b8c7)