hero

JOBS IN CHARLESTON | SC | USA
Find your next job opportunity with a selection of the most innovative companies in the Charleston region.

Our regional job board features roles across industries from trusted local employers.
Search 
jobs
Explore 
companies
Join talent network
Talent
My job alerts

Security Controls Assessor

ECS Federal

ECS Federal

Posted on Mar 18, 2026

ECS is seeking a Security Control Assessor to work in our Washington, DC office.  

 

  • Participate in a team of Security Control Assessors (SCA) in the accomplishment of required contract SCA deliverables.
  • Review and update existing information security policy, standards, and procedures based on federal and departmental regulations.
  • Perform independent security and privacy control assessments in support of RMF Assessment & Authorization (A&A).
  • Conduct assessments of existing and new FISMA systems, including subsystems in the respective system boundary, and communicate the results and potential implications of identified control weaknesses.
  • Review and analyze, Assessment & Authorization (A&A) packages to include System Security Plans (SSP), Risk Assessments, Information System Contingency Plans (ISCP), Back-up Standard Operating Procedures (SOP), Incident Response Plans (IRP), Configuration Management Plans, (CMP), Hardware/Software lists, Network Diagrams, Data Flows, System Change Requests/Proposals, Vulnerability scan reports, test reports, and Plan of Actions & Milestones (POA&Ms) for completeness, accuracy, and document effectiveness of controls, plans and procedures implementation.
  • Create and maintain test cases for security assessment testing and perform security testing at the control-requirement level for each unique component of each system (e.g., application, web application server, financial systems, database server/instance, operating systems, specialized appliances, network and infrastructure devices, and end-user devices (e.g., mobile phones, laptops, etc.).
  • Develop and execute a security and privacy assessment plan in accordance with NIST SP 800-53A, as amended, requirements, for each security assessment project. A&A activities shall include support for RMF steps 4-6.
  • Document and provide findings and recommendations that are concise, system-specific, and actionable.
  • Analyze security tool reports and determine residual risk or false positives from technical reports and artifacts before assigning findings.
  • Perform other related duties as assigned

 

Salary Range: $140,000 - $155,000

General Description of Benefits

See more open positions at ECS Federal
Privacy policyCookie policy