1

Security Control Assessor Jobs in Reston, VA (NOW HIRING)

Security Control Assessor

Arlington, VA · On-site

$110K - $130K/yr

Security Control Assessor Location: Arlington, VA (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability required) Company: Argo Cyber Systems, LLC - Service-Disabled Veteran ...

Security Control Assessor III Responsibilities: * Leads comprehensive security assessments for complex or high-impact systems. * Oversees control testing strategies, validates remediation ...

They are seeking a Security Control Assessor to lead comprehensive security assessments for complex systems and oversee control testing strategies while providing risk determinations to Authorizing ...

We are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate ...

We are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate ...

Security Control Assessor

Washington, DC · On-site

$155K - $165K/yr

Security Control Assessor III Responsibilities: * Leads comprehensive security assessments for complex or high-impact systems. * Oversees control testing strategies, validates remediation ...

We are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate ...

We are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate ...

Senior Security Control Assessor Overview: TSA is currently seeking a Senior Security Control Assessor who will serve as a Functional Lead and provide support to our NAVAIR customer in the DC Metro ...

next page

Showing results 1-20

Security Control Assessor information

See Reston, VA salary details

$9

$61

$81

How much do security control assessor jobs pay per hour?

As of Jul 11, 2026, the average hourly pay for security control assessor in Reston, VA is $61.14, according to ZipRecruiter salary data. Most workers in this role earn between $52.50 and $70.77 per hour, depending on experience, location, and employer.

Can you make $500,000 a year in cyber security?

Security Control Assessors typically earn salaries ranging from $70,000 to $150,000 annually, depending on experience, certifications, and location. Reaching a $500,000 annual salary in cybersecurity generally requires senior roles, specialized expertise, management positions, or consulting work with high-value contracts.

Is SOC an entry level job?

A Security Control Assessor (SOC) role is typically not entry-level; it usually requires prior experience in cybersecurity, knowledge of security frameworks, and relevant certifications such as CISSP or Security+. Entry-level positions in cybersecurity may include roles like Security Analyst or Technician, with SOC roles often requiring more specialized skills and experience. However, some organizations offer junior or trainee SOC positions for those starting their cybersecurity careers.

What are the key skills and qualifications needed to thrive as a Security Control Assessor, and why are they important?

To thrive as a Security Control Assessor, you need expertise in information security principles, risk management frameworks like NIST RMF, and a relevant bachelor's degree or equivalent work experience. Familiarity with security assessment tools, compliance management systems, and certifications such as CISSP, CISA, or CAP is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial for evaluating security controls and reporting findings clearly. These skills ensure accurate risk assessments, regulatory compliance, and robust protection of organizational information assets.

What skills do you need to be a security control assessor?

A security control assessor needs strong knowledge of cybersecurity frameworks, risk management, and security controls. Skills in analyzing security policies, conducting assessments, and familiarity with tools like NIST, ISO standards, and vulnerability scanning are essential. Certifications such as CISSP or CISA can also enhance qualifications.

What is the difference between Security Control Assessor vs Security Analyst?

AspectSecurity Control AssessorSecurity Analyst
CertificationsRisk Management Framework (RMF), CISSP, CISACISSP, Security+
Work EnvironmentFederal agencies, DoD, government complianceCorporate, cybersecurity teams, IT departments
ResponsibilitiesAssess security controls, ensure compliance, auditMonitor security, analyze threats, implement security measures

The Security Control Assessor primarily evaluates security controls for compliance and risk management, often within government agencies. In contrast, the Security Analyst focuses on monitoring and analyzing security threats to protect organizational assets. While both roles require cybersecurity knowledge and certifications like CISSP, their focus areas and work environments differ significantly.

What is the role of a security control assessor?

A security control assessor evaluates the effectiveness of security controls implemented within an organization to ensure they meet security standards and compliance requirements. They review documentation, conduct testing, and provide recommendations for improvement, often working with frameworks like NIST or ISO. Certification such as CISSP or CISA is commonly required for this role.

What are the main challenges Security Control Assessors face when evaluating complex information systems?

Security Control Assessors often encounter challenges such as rapidly evolving security threats, integrating new technologies, and ensuring compliance with multiple frameworks (like NIST, FISMA, or RMF). Assessing large, interconnected systems requires attention to detail and strong analytical skills to identify vulnerabilities and recommend effective controls. Collaboration with system owners, IT staff, and auditors is essential to obtain comprehensive documentation and clarify system boundaries, which can be a demanding part of the assessment process.

What are Security Control Assessors?

Security Control Assessors (SCAs) are professionals responsible for evaluating the security controls of information systems to ensure they meet required standards and regulations. They conduct assessments, document findings, and provide recommendations to help organizations manage risk and achieve compliance with frameworks such as NIST or FISMA. SCAs play a critical role in maintaining the security and integrity of sensitive data by identifying vulnerabilities and verifying that corrective actions are implemented effectively.
What are the most commonly searched types of Security Control Assessor jobs in Reston, VA? The most popular types of Security Control Assessor jobs in Reston, VA are:
What are popular job titles related to Security Control Assessor jobs in Reston, VA? For Security Control Assessor jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Security Control Assessor jobs in Reston, VA look for? The top searched job categories for Security Control Assessor jobs in Reston, VA are:
What cities near Reston, VA are hiring for Security Control Assessor jobs? Cities near Reston, VA with the most Security Control Assessor job openings:
Infographic showing various Security Control Assessor job openings in Reston, VA as of July 2026, with employment types broken down into 3% Locum Tenens, 26% Full Time, 3% Part Time, 1% Temporary, 66% Nights, and 1% Summer. Highlights an 88% Physical, 3% Hybrid, and 9% Remote job distribution, with an average salary of $127,169 per year, or $61.1 per hour.
Security Control Assessor

Security Control Assessor

Argo Cyber Systems

Arlington, VA • Hybrid

Contractor

Medical, Dental, Vision, Life, Retirement

Posted 17 days ago


Job description

Security Control Assessor

Location: Arlington, VA (On-Site)

Citizenship: US only

Clearance: Active TS/SCI (DHS EOD Suitability required)

Company: Argo Cyber Systems, LLC - Service-Disabled Veteran-Owned Small Business (SDVOSB)

About Argo Cyber Systems

Argo Cyber Systems provides mission-critical cybersecurity support to U.S. Government agencies and critical infrastructure owners nationwide. Our teams deliver rapid incident response, advanced forensics, and coordinated recovery operations to protect vital systems from evolving cyber threats. We combine technical precision with operational agility, helping federal partners identify, contain, and recover from complex cyber incidents with speed and confidence.

Argo Cyber Systems is seeking a RMF/ Security Control Assessor to support cybersecurity governance, risk, compliance, and modernization activities in federal environments. The selected candidate will work collaboratively with technical teams, program leadership, and customer stakeholders to deliver high-quality cybersecurity support in alignment with contract requirements and organizational standards.

*This opportunity is contingent upon the successful win of a contract bid.

Role and Responsibilities

  • Perform RMF security control assessments and validate implementation of technical, administrative, and operational controls.
  • Review SSPs, policies, procedures, diagrams, and supporting artifacts to determine control compliance and implementation maturity.
  • Develop Security Assessment Reports (SARs), assessment findings, risk statements, and remediation recommendations.
  • Coordinate with ISSOs, ISSMs, system owners, engineers, and program leadership to collect evidence and resolve assessment issues.
  • Support authorization package development, annual assessments, continuous monitoring, and control inheritance analysis.

Qualifications, Education and Skills Requirements

  • U.S. Citizenship is required.
  • Bachelor's degree with 3–4+ years progressive security control assessor experience.
  • Hands-on experience with NIST RMF, NIST SP 800-53, control assessment procedures, and federal authorization packages.
  • Ability to write assessment findings, remediation recommendations, and executive-ready assessment documentation.

Additional Desires and Considerations

  • 5–8 years of RMF/A&A/control assessment experience.
  • CAP, CISSP, CISM, Security+.
  • eMASS/Xacta/CSAM experience.
  • Experience assessing cloud, Zero Trust, and hybrid environments.
  • Experience with multiple operating systems to include Linux/Unix, Windows, & Splunk
  • Practical experience with different scripting languages (e.g., Python, JavaScript, etc.)
  • Practical experience with the Databricks Intelligence Platform
  • Experience with system vulnerability assessments
  • Knowledge of computer programming and scripting languages
  • Excellent written and verbal communication skills
  • Scaled Agile Framework (SAFe) experience
  • CompTIA Security+ or higher certification level preferred

Company Benefits

ARGO Cyber Systems provides industry-competitive employee benefits, including: medical, dental, vision, life insurance, and 401K.

Argo Cyber Systems is a Federal Contractor and an Equal Opportunity Employer.


Why Join Argo

As part of Argo Cyber Systems, you will serve at the forefront of national cyber defense-protecting civilian agencies and high-value assets from persistent and emerging threats. You'll join a veteran-founded, mission-driven team dedicated to operational excellence, collaboration, and innovation in the cyber domain.