Jobs Companies Avint Security Controls Assessor (SCA) - Journeyman

About this Security Controls Assessor (SCA) - Journeyman role at Avint

Avint · Remote · United States

Avint is seeking a highly motivated Journeyman Security Controls Assessor (SCA) in support of a critical federal contract. The Journeyman SCA is a mid-level professional responsible for executing standard security control assessments, evaluations, and compliance verifications across organizational information systems. Operating as a core member of the cybersecurity assurance team, this role focuses on testing technical, operational, and management controls to ensure alignment with regulatory requirements and security policies. The mid-level SCA works under the general supervision of and receives technical guidance from senior SCAs, contributing directly to the organization’s Risk Management Framework (RMF) and Security Assessment and Authorization (A&A) lifecycles.

Requirements

Education:

· Bachelor’s degree (BS/BA) OR equivalent professional experience

· Security+ or higher

Experience

· Minimum of 6-8 years of dedicated experience in cybersecurity, information assurance,

or IT auditing.

· At least six (6) years of dedicated experience performing hands-on security controls

assessments of systems of moderate complexity (C2 & C3) with capability of

supporting C4 assessments.

Clearance Requirements:

· Must be a U.S. citizen (no dual citizenship).

· Ability to pass a background investigation.

· Able to obtain and maintain DHS Suitability/Entry on Duty (EOD).

Soft Skills:

· Strong attention to detail and organized documentation habits.

· Good analytical and troubleshooting abilities.

· Professional verbal and written communication skills, with an ability to collaborate

effectively across technical boundaries.

Position Responsibilities

Security Assessment and Validation

· Conduct security control assessments of information systems using interview,

examination, and testing methods.

· Verify compliance with established frameworks such as NIST SP 800-37, NIST SP

800-53, NIST SP 800-171, FISMA, and/or FedRAMP, depending on organizational

requirements.

· Analyze system architectures, network diagrams, configuration settings, and policies to

identify vulnerabilities and compliance gaps.

· Review vulnerability scanning results (e.g., Nessus, Qualys) and penetration testing

reports to validate the implementation of technical controls.

Reporting and Risk Management

· Document detailed testing results and draft sections of the Security Assessment Report

(SAR), ensuring clear explanations of non-compliant findings.

· Present assessment findings and risk postures to Authorizing Officials (AO), system

owners, and other stakeholders in clear, actionable terms.

· Assist system owners in the development of realistic Plans of Action and Milestones

(POA&M) to remediate identified deficiencies.

· Collaborate with the Risk Management team to ensure assessment data accurately

informs the organization’s continuous monitoring strategy.

Continuous Improvement and Strategy · Stay current on emerging cyber threats, vulnerabilities, regulatory changes, and assessment techniques. · Identify opportunities to automate assessment processes and integrate modern tooling into the assessment lifecycle. · Participate in the development and refinement of enterprise information security policies, standards, and guidelines.

Technical Areas of Expertise

· Solid working knowledge of security control frameworks (specifically NIST SP 800-

53, NIST SP 800-37, and NIST SP 800-171).

· Familiarity with cloud security concepts (AWS, Azure, Google Cloud) and cloud

compliance frameworks (FedRAMP).

· Knowledge of operating system security, network protocols, access control

mechanisms, and vulnerability management tools.

Benefits

Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits, from competitive salaries, full health insurance, generous time off, and observation of federal holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development! Salary Range $104,000-$119,000

Ready to apply to Avint?
Apply to Avint

About Avint

Avint delivers transformational cybersecurity solutions to achieve government mission success. As a fast-growing service-disabled veteran-owned and women-owned small business, Avint offers defense, intelligence and national security customers better options for securing systems anywhere at any time. Through proven past performance in providing advanced cybersecurity solutions within classified technology environments, the Avint team is trusted for ensuring excellent outcomes. Avint was founded by CEO Marcie Nagel, a recognized national cybersecurity expert, U.S. Air Force and FBI veteran, and former principal of the Continuous Diagnostics and Mitigation division of Booz Allen Hamilton. Learn more at www.avintllc.com and follow us on LinkedIn: https://www.linkedin.com/company/avint-llc

See all jobs at Avint →

Similar jobs

Sign up for suggestions tailored to the jobs you open and the searches you save.

More jobs at Avint

See all jobs at Avint →

Apply now
🤖

Whoa — hold up

JobsRadar was built for real people having a rough time in their job search — not for automated requests. You're clicking way too fast and you're now temporarily blocked.

Come back later. If you're genuinely job hunting, we've got your back — just act like a human.

Catch your next role the second it’s posted.

Create a free account and we’ll watch the boards for you — the instant a job matches your search, it lands in your inbox or Telegram. No digging, no refreshing.

Create free account

Free forever · takes 30 seconds · already have one?

Get an edge on your job hunt.

Join our Telegram channel for the stuff that helps you land the role — salary benchmarks, the weekly market pulse, and new-feature drops. No spam, just signal.

Join the channel — it's free