Must have an active Secret Clearance to be considered

Must be within 1 hour of Alexandria, VA or Seaside, CA

Company Information

NexGen Technologies, Inc. is a leading IT services firm specializing in delivering innovative, high‑quality solutions to our federal government clients. Our core competencies include IT professional support services, software development, cloud services, IT Operations, Agile project management, and GIS services.

Job Summary

The Security Control Assessor (SCA) conducts independent security control assessments to validate the effectiveness of implemented security safeguards in accordance with NIST SP 800‑53 and the Risk Management Framework (RMF). This role provides objective evaluations, identifies residual risk, and delivers authorization recommendations to support Authorizing Officials (AOs). The SCA ensures systems are fully prepared for authorization decisions and remain compliant with evolving DoD cybersecurity requirements.

Supervisory Responsibilities

• There are no supervisory responsibilities.

Essential Duties and Responsibilities (as assigned)

• Conducts security control assessments, validates and evaluates security control effectiveness (NIST 800-53), and provides authorization recommendations. Directly responsible for ensuring RMF control effectiveness and readiness for authorization.
• Conducts independent control assessments, verifying the appropriateness and effectiveness of implemented security measures.
• Prepares Security Assessment Reports (SARs) for Authorizing Officials (AOs), detailing control validation findings and assessing residual risk.
• Tests the compliance of systems with RMF security controls (e.g., NIST 800-53) and develops recommendations for control remediation.
• Validates the effectiveness of control mitigations detailed in POA&Ms and tracks progress on corrective actions.
• Coordinates periodic risk re-assessments based on evolving threat landscapes and DoD cybersecurity directives.
• Other duties as assigned.

Technical Skills

• Experience conducting RMF security control assessments for DoD systems.
• Strong knowledge of NIST SP 800‑53, RMF processes, and DoD cybersecurity policies.
• Ability to evaluate technical and procedural controls, interpret evidence, and assess residual risk.
• Experience preparing SARs and providing recommendations to AOs or senior cybersecurity leadership.
• Familiarity with POA&M management and remediation tracking.

Desired Skills

• Knowledge of eMASS workflows and assessment package structure.
• Relevant certifications (e.g., CAP, Security+, CISSP, CISA, CCSP).
• Experience conducting risk assessments in dynamic or high‑threat environments.

Education

• Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field.

Additional Requirements

• Ability to collaborate with ISSMs, ISSOs, system owners, and engineering teams.
• Strong documentation, communication, and stakeholder engagement skills.
• Must be able to pass background screening prior to employment.
• US Citizenship, legal permanent residence, or US work authorization with a minimum of 3 years of US presence is required due to federal contract requirement.
• Active Secret clearance required; ability to obtain TS/SCI preferred.

Place of Performance

• Minimum 25% on‑site at the Mark Center (Alexandria, VA) or DoD Center – Monterey Bay (Seaside, CA).
• Work hours: 8 a.m. Eastern to 5 p.m. Pacific, Monday–Friday, excluding federal holidays or government closures.
• Incident response may require after‑hours support with one‑hour recall.

Physical Requirements

• Reliable internet (50 Mbps down / 25 Mbps up) and a secure remote work environment.
• Reasonable accommodations will be provided as needed. (We provide reasonable accommodations to individuals with disabilities to enable them to perform the essential functions.)

Compensation: $110,000-$135,000/year

(The successful candidate's starting pay will fall within the salary range provided and is determined based on job-related factors, including, but not limited to, experience, qualifications, knowledge, skills, geographic work location, and market conditions.)  

NexGen Technologies, Inc. is an equal opportunity employer. All qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, disability, genetic information, or veteran status.

(Last Revision: 2026‑03-12)