Cherokee Federal

Senior Security Controls Assessor

Cherokee Federal

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

Cyber Security

About the role

  • Provide independent assessments of MARAD information systems in support of system authorization, reauthorization, and continuous monitoring activities.
  • Evaluate management, operational, and technical security controls in accordance with NIST Risk Management Framework (RMF) requirements.
  • Support Authority to Operate (ATO) decisions.
  • Develop assessment documentation and reports.
  • Collaborate with MARAD, DOT, and cybersecurity stakeholders to ensure compliance, risk visibility, and mission assurance.
  • Conduct independent assessments of specified MARAD information systems following the System Authorization process.
  • Provide annual assessment support to the NSMV and MARAD CIO programs.
  • Conduct on-site evaluations at the Philadelphia shipyard and other locations.
  • Develop security assessment plans and assessment reports compliant with latest revisions of NIST Special Publication 800-53A.
  • Develop Security Assessment Plan (SAP) detailing assessment scope and methods.

Requirements

  • Applicant MUST have prior US Navy or Coastguard Maritime Cyber Security experience
  • Bachelor's Degree in Cybersecurity or related IT field may be substituted for 4 years of experience
  • Certified Information Systems Auditor (CISA), Advanced in AI Audit (AAIA), or equivalent certification
  • 12 years of related work experience
  • Prior experience supporting US Navy or Coast Guard Maritime Cyber Assessments
  • Clearance: Must possess or be able to obtain a public Trust.
  • Prior Department of Transportation experience is a plus.
  • Must pass pre-employment qualifications of Cherokee Federal
Benefits
  • Medical
  • Dental
  • Vision
  • 401K
  • Other possible benefits as provided.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurityrisk management frameworksecurity controlsassessment documentationsecurity assessment plansNIST Special Publication 800-53Asystem authorizationcontinuous monitoringtechnical securityoperational security
Soft Skills
collaborationindependent assessmentcommunicationrisk visibilitymission assurance
Certifications
Certified Information Systems Auditor (CISA)Advanced in AI Audit (AAIA)