Security Control Assessor

Security Control Assessor

Anywhere

Type: Contract-to-Hire

Category: Security

Industry: Government

Workplace Type: Remote

Reference ID: JN -092025-103789

Date Posted: 09/21/2025

Pay Rate: $60 - $65 / hr

Our client is a leading federal agency dedicated to protecting critical mission systems and ensuring compliance with national cybersecurity standards. The team is responsible for conducting independent security assessments and providing assurance that systems meet federal security and compliance requirements. As part of this mission, we are seeking a skilled Security Control Assessor (SCA) to support system assessments, collaborate with stakeholders, and strengthen the agency’s cybersecurity posture.

Location: Washington DC

Notes: This is a contract-to-hire opportunity. Applicants must be willing and able to work on a W2 basis and convert to FTE following contract duration. For our W2 consultants, the benefits package includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

• Assist in the development of Security Assessment Plans (SAPs) by identifying security controls to be tested and selecting appropriate assessment methods.

• Conduct testing of implemented security controls using examination, interview, and technical evaluation techniques in alignment with NIST SP 800-53A Rev. 5 and SP 800-115.

• Collect and validate objective evidence (screenshots, logs, configurations, etc.) to support assessment results.

• Document assessment results in test cases, checklists, and supporting artifacts.

• Support preparation of Security Assessment Reports (SARs) by summarizing findings and mapping results to applicable NIST controls.

• Collaborate with ISSOs, system owners, and stakeholders to clarify scope, resolve discrepancies, and address assessment issues.

• Participate in remediation and retesting activities, validating fixes and updating assessment documentation.

• Contribute to continuous monitoring activities by performing follow-up assessments and updating risk documentation.

• 3–5 years of experience performing cybersecurity control assessments or related RMF activities.

• Working knowledge of NIST RMF, FISMA, and NIST SP 800-53/53A control assessment procedures.

• Hands-on experience with security testing tools and techniques (e.g., Nessus, database scanners, manual validation).

• Strong attention to detail with the ability to maintain accurate and thorough documentation.

• Ability to work collaboratively under the guidance of the Lead SCA and coordinate effectively with ISSOs and system stakeholders.

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience).

• Industry-recognized certification preferred: Security+, CAP, CISA, CISSP Associate, or equivalent.

• Active Secret clearance or higher required.

Notes: Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

Equal Opportunity Statement: Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

About Eliassen Group: Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions.