Security Controls Assessor

Job Requirements Oak Ridge, TN Top Secret Polygraph not specified Career Level not specified $135,000 - $185,000 Job Description Overview We are seeking a Systems Security Engineer / Network Security Engineer to support mission‑critical systems. This role focuses on Risk Management Framework (RMF) implementation, Authorization to Operate (ATO) support, and continuous monitoring across network, system, and application environments. The ideal candidate has hands‑on experience with

NIST 800

‑53 security controls, NIST 800‑37, and federal system authorization processes, and is comfortable working with both technical teams and senior stakeholders in a regulated, classified environment. Key Responsibilities Implement and assess

NIST 800

‑53 security controls across network, system, and application layers Support RMF (NIST 800‑37) activities for new and existing systems Develop, maintain, and update security documentation, including: System Security Plans (SSPs) Plans of Action and Milestones (POA&Ms) Support Authorization to Operate (ATO) packages and AO decision processes Perform risk and vulnerability assessments and identify security gaps and mitigation strategies Track and manage POA&M remediation activities in coordination with system owners Monitor system security posture and support continuous monitoring and vulnerability management Assess security impacts of system changes and support configuration and change management processes Prepare systems for security assessments, audits, and compliance reviews Implement and enhance cybersecurity and infrastructure controls, including detection, event correlation, and vulnerability capabilities Leverage security telemetry, event data, and analytics to identify threats and indicators of compromise Communicate complex security concepts to technical teams, leadership, and senior management Serve as a security liaison between engineering teams, cybersecurity operations, and governance bodies Required Qualifications Active Top Secret (TS) clearance Experience with

NIST 800

‑53 security control implementation and assessment Experience with

NIST 800

‑37 Risk Management Framework (RMF) Experience supporting ATO and system authorization activities Experience developing and managing SSPs and POA&Ms Experience with continuous monitoring, vulnerability management, and security compliance Strong collaboration and communication skills in a classified environment

Education & Experience:

HS diploma or GED with 8+ years of Information Assurance / Cybersecurity experience OR Bachelor's degree with 5+ years of Information Assurance / Cybersecurity experience group id: kforcecx N Name Hidden Talent Associate Apply now