ZipRecruiter

Log In

1

Security Control Assessor Jobs (NOW HIRING)

JASINT

Security Control Assessor

Annapolis Junction, MD

$85K - $130K/yr

Security Control Assessor Level 2 Location(s): Annapolis Junction, MD Hours: Regular Full-Time Salary Range: $85k/yr - $130k/yr Clearance Requirements: This position requires a current and active TS ...

Goldbelt, Inc.

Security Control Assessor

Monterey, CA · On-site

$97.26K - $109.42K/yr

The Security Control Assessor is responsible for conducting independent, comprehensive assessments of the management, operational, & technical security controls & control enhancements w/in or ...

Castro & Company, LLC

PR

Nist Security Control Assessor We are currently seeking a NIST 800-53 Security Control Assessor interested in starting a rewarding career in public accounting by joining our Information Technology ...

Goldbelt, Inc.

Security Control Assessor

Monterey, CA · On-site

$97.26K - $109.42K/yr

The Security Control Assessor is responsible for conducting independent, comprehensive assessments of the management, operational, & technical security controls & control enhancements w/in or ...

Cymertek

Security Control Assessor (SCA)

San Antonio, TX · On-site

Security Control Assessor (SCA) LOCATION San Antonio, TX 78208 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a meticulous and detail ...

Cymertek

Security Control Assessor (SCA)

Tysons, VA · On-site

Security Control Assessor (SCA) LOCATION Tysons, VA 22182 CLEARANCE TS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARY We are seeking a meticulous and detail ...

Cymertek

Security Control Assessor (SCA)

Reston, VA · On-site

Security Control Assessor (SCA) LOCATIONReston, VA 20190 CLEARANCETS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARYWe are seeking a meticulous and detail ...

next page

Showing results 1-20

People also search for

All JobsSecurity Control Assessor Jobs

Security Control Assessor information

See salary details

$8

$58

$78

How much do security control assessor jobs pay per hour?

As of May 31, 2026, the average hourly pay for security control assessor in the United States is $58.77, according to ZipRecruiter salary data. Most workers in this role earn between $50.48 and $68.03 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Security Control Assessor, and why are they important?

To thrive as a Security Control Assessor, you need expertise in information security principles, risk management frameworks like NIST RMF, and a relevant bachelor's degree or equivalent work experience. Familiarity with security assessment tools, compliance management systems, and certifications such as CISSP, CISA, or CAP is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial for evaluating security controls and reporting findings clearly. These skills ensure accurate risk assessments, regulatory compliance, and robust protection of organizational information assets.

What are the main challenges Security Control Assessors face when evaluating complex information systems?

Security Control Assessors often encounter challenges such as rapidly evolving security threats, integrating new technologies, and ensuring compliance with multiple frameworks (like NIST, FISMA, or RMF). Assessing large, interconnected systems requires attention to detail and strong analytical skills to identify vulnerabilities and recommend effective controls. Collaboration with system owners, IT staff, and auditors is essential to obtain comprehensive documentation and clarify system boundaries, which can be a demanding part of the assessment process.

What are Security Control Assessors?

Security Control Assessors (SCAs) are professionals responsible for evaluating the security controls of information systems to ensure they meet required standards and regulations. They conduct assessments, document findings, and provide recommendations to help organizations manage risk and achieve compliance with frameworks such as NIST or FISMA. SCAs play a critical role in maintaining the security and integrity of sensitive data by identifying vulnerabilities and verifying that corrective actions are implemented effectively.

What is the difference between Security Control Assessor vs Security Analyst?

AspectSecurity Control AssessorSecurity Analyst
CertificationsRisk Management Framework (RMF), CISSP, CISACISSP, Security+
Work EnvironmentFederal agencies, DoD, government complianceCorporate, cybersecurity teams, IT departments
ResponsibilitiesAssess security controls, ensure compliance, auditMonitor security, analyze threats, implement security measures

The Security Control Assessor primarily evaluates security controls for compliance and risk management, often within government agencies. In contrast, the Security Analyst focuses on monitoring and analyzing security threats to protect organizational assets. While both roles require cybersecurity knowledge and certifications like CISSP, their focus areas and work environments differ significantly.

More about Security Control Assessor jobs
What cities are hiring for Security Control Assessor jobs? Cities with the most Security Control Assessor job openings:
What are the most commonly searched types of Security Control Assessor jobs? The most popular types of Security Control Assessor jobs are:
What states have the most Security Control Assessor jobs? States with the most job openings for Security Control Assessor jobs include:
What job categories do people searching Security Control Assessor jobs look for? The top searched job categories for Security Control Assessor jobs are:
What are popular job titles related to Security Control Assessor jobs? For Security Control Assessor jobs, the most frequently searched job titles are:
Security Control Assessor jobs near you
Infographic showing various Security Control Assessor job openings in the United States as of May 2026, with employment types broken down into 95% Full Time, 1% Temporary, 3% Contract, and 1% Nights. Highlights an 100% Physical job distribution, with an average salary of $122,236 per year, or $58.8 per hour.
(684) Security Control Assessor

(684) Security Control Assessor

Arlo Solutions LLC

Washington, DC

Other

Posted 9 days ago

Job description

Position Description:

The Security Control Assessor (SCA) will be responsible for evaluating and assessing the security controls of Defense Security Cooperation Agency's (DSCA) information systems. This role involves conducting comprehensive assessments to ensure compliance with federal cybersecurity standards and providing recommendations to improve the agency's security posture.

Clearance:  Active Secret Clearance

Work Location:  Washington DC

Responsibilities and/or Success Factors: 

  • Conduct thorough assessments of security controls on DSCA's information systems and networks to ensure compliance with federal regulations, including NIST, FISMA, and DoD directives. 
  • Develop and maintain assessment documentation, including Security Assessment Plans (SAPs), Security Assessment Reports (SARs), and Plan of Action and Milestones (POA&Ms). 
  • Perform risk assessments to identify potential security threats and vulnerabilities. 
  • Provide detailed recommendations to mitigate identified risks and enhance the security posture of DSCA's information systems. 
  • Collaborate with system owners, IT staff, and cybersecurity teams to ensure effective implementation of security controls. 
  • Conduct continuous monitoring activities to ensure ongoing compliance with security policies and procedures. 
  • Provide guidance on the security assessment and authorization (A&A) process, including developing and maintaining System Security Plans (SSPs).
  • Assist in the development and delivery of cybersecurity training and awareness programs for DSCA personnel. 
  • Stay current with the latest cybersecurity threats, trends, and technologies to continuously improve assessment methodologies and practices. 
  • Participate in security audits and reviews to ensure adherence to established security standards and best practices.


Minimum Qualifications Including Certificates:

  • Must be a US Citizen. 
  • Must have a Secret Clearance 
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (Master's degree preferred). 
  • Minimum of 5 years of experience in information security, with a focus on security control assessment and risk management. 
  • Certifications such as CISSP, CISM, CISA, CAP, or equivalent are highly desirable. 
  • In-depth knowledge of federal cybersecurity regulations and standards, including NIST SP 800 series and FISMA. 
  • Proven experience in conducting security control assessments and developing security assessment documentation. 
  • Excellent analytical, problem-solving, and decision-making skills. 
  • Strong communication and interpersonal skills, with the ability to effectively communicate complex cybersecurity concepts to technical and non-technical stakeholders. 
  • Ability to work independently and collaboratively in a fast-paced environment.

Desired Qualifications: 

  • eMASS, cloud, STIGS experience

Apply