FCC - ISSO Lead
Washington, DC · Remote
This position is remote. This position requires the ability a Public Trust clearance ... Lead internal controls testing and Security Control Assessments (SCA). * Coordinate and support ...
Quick apply
FCC - ISSO Lead
Washington, DC · Remote
This position is remote. This position requires the ability a Public Trust clearance ... Lead internal controls testing and Security Control Assessments (SCA). * Coordinate and support ...
... in-depth assessments of security control effectiveness across classified and unclassified ... requirements in a remote and on-site work environment. You will evaluate technical and ...
... in-depth assessments of security control effectiveness across classified and unclassified ... requirements in a remote and on-site work environment. You will evaluate technical and ...
FCC - ISSO Lead
Washington, DC · On-site +1
This position is remote. This position requires the ability a Public Trust clearance ... Lead internal controls testing and Security Control Assessments (SCA). * Coordinate and support ...
FCC - ISSO Lead
Washington, DC · On-site +1
This position is remote. This position requires the ability a Public Trust clearance ... Lead internal controls testing and Security Control Assessments (SCA). * Coordinate and support ...
Conduct comprehensive security risk assessments and gap analyses * Implement and maintain continuous monitoring solutions * Perform security control testing and validation * Develop and deliver ...
Quick apply
Conduct comprehensive security risk assessments and gap analyses * Implement and maintain continuous monitoring solutions * Perform security control testing and validation * Develop and deliver ...
Remote Chief Information Security Officer (Government Contracting) The Chief Information Security ... Strong working knowledge of NIST SP 800-171, security control assessment practices, and the ...
Remote Chief Information Security Officer (Government Contracting) The Chief Information Security ... Strong working knowledge of NIST SP 800-171, security control assessment practices, and the ...
Remote Chief Information Security Officer (Government Contracting) The Chief Information Security ... Strong working knowledge of NIST SP 800-171, security control assessment practices, and the ...
Remote Chief Information Security Officer (Government Contracting) The Chief Information Security ... Strong working knowledge of NIST SP 800-171, security control assessment practices, and the ...
Task Order Project Manager (59843)
Fort Myer, VA · On-site +1
This is a fully remote position and contingent on contract award. Job Summary The TOPM provides ... Security Control Assessors (SCAs), and Authorizing Officials in executing cybersecurity program ...
Task Order Project Manager (59843)
Fort Myer, VA · On-site +1
This is a fully remote position and contingent on contract award. Job Summary The TOPM provides ... Security Control Assessors (SCAs), and Authorizing Officials in executing cybersecurity program ...
Lead ISSO Manager
Washington, DC · Remote
$90K - $120K/yr
This is a remote position. Responsibilities: * Serve as the principal advisor to senior SSD ... or senior security control assessor role on federal systems. * Minimum 3 years of direct ...
Quick apply
Lead ISSO Manager
Washington, DC · Remote
$90K - $120K/yr
This is a remote position. Responsibilities: * Serve as the principal advisor to senior SSD ... or senior security control assessor role on federal systems. * Minimum 3 years of direct ...
SME Information Technology Project Manager (15.38)
Washington, DC · Remote
$111.60K - $131.90K/yr
Provide program and project management of highly complex IT initiatives Execute the hands-on manual technical NIST SP 800-53 security control assessments including any overlays (e.g. high value asset ...
SME Information Technology Project Manager (15.38)
Washington, DC · Remote
$111.60K - $131.90K/yr
Provide program and project management of highly complex IT initiatives Execute the hands-on manual technical NIST SP 800-53 security control assessments including any overlays (e.g. high value asset ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Public Trust Potential for Remote Work: ORA_HYBRID Description SAIC is seeking a Lead Information ... Oversee preparation of systems and documentation for Security Control Assessments (SCAs), audits ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Public Trust Potential for Remote Work: ORA_HYBRID Description SAIC is seeking a Lead Information ... Oversee preparation of systems and documentation for Security Control Assessments (SCAs), audits ...
Information Security Analyst - SME
Camp Springs, MD · On-site +1
Conduct comprehensive security risk assessments and gap analyses * Implement and maintain continuous monitoring solutions * Perform security control testing and validation * Develop and deliver ...
Information Security Analyst - SME
Camp Springs, MD · On-site +1
Conduct comprehensive security risk assessments and gap analyses * Implement and maintain continuous monitoring solutions * Perform security control testing and validation * Develop and deliver ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Public Trust Potential for Remote Work: ORA_HYBRID Description SAIC is seeking a Lead Information ... Oversee preparation of systems and documentation for Security Control Assessments (SCAs), audits ...
Lead Information System Security Officer (ISSO)
Washington, DC · On-site +1
$120K - $160K/yr
Public Trust Potential for Remote Work: ORA_HYBRID Description SAIC is seeking a Lead Information ... Oversee preparation of systems and documentation for Security Control Assessments (SCAs), audits ...
Louis, MO preferred (remote potential within the continental US) The Role: The Cloud Security ... audits, assessments, and security reviews. Support control testing and remediation tracking ...
Louis, MO preferred (remote potential within the continental US) The Role: The Cloud Security ... audits, assessments, and security reviews. Support control testing and remediation tracking ...
Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation ...
Quick apply
Provide detailed security-related reports including data, analyses, and conclusions upon completion of tests, scans, and assessments, including mitigations and, if indicated, appropriate escalation ...
System Technical Security Analyst
Herndon, VA · On-site +1
Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... This effort requires security testing/assessment support, the knowledge/development of the ...
System Technical Security Analyst
Herndon, VA · On-site +1
Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... This effort requires security testing/assessment support, the knowledge/development of the ...
Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... This effort requires security testing/assessment support, the knowledge/development of the ...
Herndon, VA 20171 (Remote) Employment Type: FTE + Benefits Client is supporting the FedRAMP and ... This effort requires security testing/assessment support, the knowledge/development of the ...
Senior Security Engineer
Washington, DC · Remote
$150K - $170K/yr
Security Control Assessments (SCAs) : Conduct annual SCAs for approximately 63 systems, testing a third of the security controls each year. Document and resolve issues identified during assessments ...
Quick apply
Senior Security Engineer
Washington, DC · Remote
$150K - $170K/yr
Security Control Assessments (SCAs) : Conduct annual SCAs for approximately 63 systems, testing a third of the security controls each year. Document and resolve issues identified during assessments ...
Senior Security Architect
Washington, DC · Remote
$155K - $175K/yr
Annual Security Control Assessments (SCAs): * Conduct SCAs for approximately 63 systems, testing one-third of security controls annually. * Address and resolve identified security issues, ensuring ...
Quick apply
Senior Security Architect
Washington, DC · Remote
$155K - $175K/yr
Annual Security Control Assessments (SCAs): * Conduct SCAs for approximately 63 systems, testing one-third of security controls annually. * Address and resolve identified security issues, ensuring ...
Validate results of control testing conducted by Information System Security Officers (ISSO) in support of annual self- assessment requirements for IT systems within the required testing frequencies ...
Validate results of control testing conducted by Information System Security Officers (ISSO) in support of annual self- assessment requirements for IT systems within the required testing frequencies ...
Vulnerability Management & Threat Assessment * Identify threats and measure potential ... Support ATO/Continuous Authorization processes with automated security control validation Required ...
Quick apply
Vulnerability Management & Threat Assessment * Identify threats and measure potential ... Support ATO/Continuous Authorization processes with automated security control validation Required ...
Remote Security Control Assessor information
See Reston, VA salary details
$9.25 - $15.80
2% of jobs
$15.80 - $22.35
2% of jobs
$22.35 - $28.90
0% of jobs
$28.90 - $35.44
0% of jobs
$35.44 - $41.99
3% of jobs
$41.99 - $48.54
5% of jobs
$52.39 is the 25th percentile. Wages below this are outliers.
$48.54 - $55.09
21% of jobs
The median wage is $60.43 / hr.
$55.09 - $61.63
20% of jobs
$61.63 - $68.18
18% of jobs
$69.70 is the 75th percentile. Wages above this are outliers.
$68.18 - $74.73
15% of jobs
$74.73 - $81.28
14% of jobs
$9
$61
$81
How much do remote security control assessor jobs pay per hour?
As of May 30, 2026, the average hourly pay for remote security control assessor in Reston, VA is $61.14, according to ZipRecruiter salary data. Most workers in this role earn between $52.50 and $70.77 per hour, depending on experience, location, and employer.
What is a Remote Security Control Assessor job?
A Remote Security Control Assessor evaluates and ensures that an organization's security controls comply with industry standards and regulations. They perform risk assessments, analyze security policies, and recommend improvements to enhance cybersecurity. Working remotely, they assess systems, review documentation, and collaborate with internal teams and stakeholders. Their goal is to identify vulnerabilities and ensure that security frameworks align with compliance requirements such as NIST, ISO 27001, or FedRAMP.
What are the key skills and qualifications needed to thrive in the Remote Security Control Assessor position, and why are they important?
To thrive as a Remote Security Control Assessor, you need expertise in information security frameworks, risk assessment methodologies, and IT auditing, typically supported by a bachelor's degree in cybersecurity or a related field. Familiarity with assessment tools (like Nessus or NIST compliance checklists), experience with GRC (governance, risk, compliance) platforms, and relevant certifications such as CISSP or CISA are highly valued. Excellent analytical skills, attention to detail, and strong written and verbal communication abilities help remote assessors excel, especially when working independently or with cross-functional teams. These skills are critical for accurately evaluating security controls, ensuring regulatory compliance, and communicating findings effectively in a remote work environment.
What are some typical responsibilities of a Remote Security Control Assessor on a day-to-day basis?
A Remote Security Control Assessor typically reviews security policies, analyzes technical controls, and conducts risk assessments to ensure compliance with industry standards and client requirements. Daily tasks often include evaluating documentation, coordinating virtual meetings with stakeholders, preparing assessment reports, and recommending remediation actions for identified vulnerabilities. You’ll collaborate with IT teams, compliance officers, and management to gather evidence and share assessment findings. Strong organizational and communication skills are essential, as much of the work is self-directed and relies on effective remote coordination with clients and internal teams.
More about Remote Security Control Assessor jobs
What are popular job titles related to Remote Security Control Assessor jobs in Reston, VA? For Remote Security Control Assessor jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Remote Security Control Assessor jobs in Reston, VA look for? The top searched job categories for Remote Security Control Assessor jobs in Reston, VA are:
What cities near Reston, VA are hiring for Remote Security Control Assessor jobs? Cities near Reston, VA with the most Remote Security Control Assessor job openings:
Job description
cFocus Software seeks a ISSO Lead to join our program supporting the Federal Communications Commission (FCC). This position is remote. This position requires the ability a Public Trust clearance.
Qualifications:
Qualifications:
- Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience).
- 8+ years of experience in cybersecurity, compliance, or risk management.
- Demonstrated experience with RMF, NIST SP 800-53, and federal compliance frameworks.
- Experience supporting A&A, POA&M management, and continuous monitoring programs.
- Experience in enterprise-scale cybersecurity environments.
- Experience with federal environments (FISMA, NIST frameworks).
- Experience with GRC tools (e.g., Xacta).
- Strong leadership, communication, and stakeholder engagement skills
- Required Certifications
- CISSP (Certified Information Systems Security Professional) OR equivalent certification in information security governance/risk.
- Lead RMF lifecycle activities including system authorization, reauthorization, and continuous monitoring.
- Develop, maintain, and update security documentation including SSPs, CMPs, contingency plans, and A&A packages.
- Manage POA&Ms, risk acceptances, and remediation tracking across enterprise systems.
- Serve as liaison between business units and the Office of the CISO.
- Support vulnerability management, configuration management, and compliance monitoring.
- Lead internal controls testing and Security Control Assessments (SCA).
- Coordinate and support internal/external audits (e.g., FISMA, OIG).
- Maintain authorization boundary documentation and configuration deviation tracking.
- Support risk analysis, reporting, and continuous improvement initiatives.
- Facilitate weekly security meetings and stakeholder coordination.
Powered by JazzHR
coRfJiqEzx
About cFocus Software
Sourced by ZipRecruiter
Company size
51 - 200 Employees
Headquarters location
Upper Marlboro, MD, US
Year founded
2006