Senior Security Controls Assessor
Location
Virginia
Posted
1 day ago
Salary
0
Seniority
Senior
Job Description
Senior Security Controls Assessor
ARETUM
• Independently perform all aspects of the security controls assessment in alignment with NIST 800-53 Revision 5 • Ensure comprehensive understanding and application of ATO documentation requirements • Coordinate all aspects of testing with relevant stakeholders and team lead • Develop a security assessment plan with input from stakeholders • Conduct and lead assessment interviews and tests and manage evidence • Provide insightful recommendations to improve security posture
Job Requirements
- Minimum of 3 years leading security controls assessments
- Experience performing assessments while supporting the federal government
- Proficient understanding of NIST RMF
- Expertise in NIST 800-53 Rev 5
- Understanding of the ATO process
- Strong communication and task management skills
- Preferred Qualifications **
- BA/BS degree, Information Security or Related
- Certifications: CISSP, CISM, CISA, or equivalent
- CSAM/JCAM Experience
Benefits
- Health Care Plan (Medical, Dental & Vision)
- Retirement Plan (401k)
- Life Insurance (Basic, Voluntary & AD&D)
- Paid Time Off
- Family Leave (Maternity, Paternity)
- Short Term & Long-Term Disability
- Training & Development
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Senior Product Marketing Manager, API, Security & Infrastructure
AlphaSenseThe market intelligence and search platform trusted by over 3,500 leading organizations
• Own the technical positioning & messaging for AlphaSense’s platform infrastructure and security posture • Develop compelling narratives that translate complex architectural capabilities into credible, trust-based content for technical buyers • Act as the primary bridge between technical SMEs and GTM teams • Partner with Thought Leadership and Security/Compliance teams to create high-impact technical thought leadership • Partner with the broader marketing team to leverage technical content for organic growth • Partner with Enablement to equip Sales, Support, and App Spec teams with technical enablement • Partner with Competitive Intelligence to contribute to competitive battlecards • Conduct research into technical buyer personas and emerging infrastructure trends • Partner with Solution Marketing to build targeted programs that highlight security and stability • Lead product launches for infrastructure and security-centric releases
• Drive technical projects from ideation to delivery, including managing complex project schedules, removing roadblocks, and keeping processes running smoothly. • Identify and operationalize the metrics and key performance indicators necessary to track progress, and drive issue resolution & mitigation at a granular level across the organization. • Create and operationalize processes to transform the effectiveness of the organization with respect to meeting business goals. • Drive effective communication, collaboration and commitment across multiple stakeholders and disparate groups with competing priorities • Work with teams to identify and handle our top risks and drive decisions to align leadership on the right level of risk for each project. • Facilitate productive meetings from small (3-5 people) to large (100 people or more).
Principal Cyber Security Engineer - Senior Mainframe RACF Engineer
First Citizens BankFirst Citizens Bank offers a full line of financial services and focuses on individuals, as well as small to medium-sized businesses. As an employer, the compan
Role Description The Senior Mainframe RACF Engineer leads the design, implementation, and governance of RACF security controls across complex z/OS environments. This role requires expert-level RACF engineering, strong programming skills, and hands-on experience with various security technologies. - Architect, configure, and maintain RACF profiles, classes, permissions, and database structures across multi-LPAR environments. - Support MFA for mainframe access, including integration with Enterprise Identity providers and enforcement of strong authentication policies. - Manage digital certificate creation, renewal, rotation, and ring assignments; ensure secure integration with SFTP and cross-platform authentication. - Develop automation and tooling using REXX, CLIST, and TSO/ISPF to streamline RACF administration and operational workflows. - Build and optimize SAS programs for compliance reporting, audit evidence generation, access analytics, and RACF database insights. - Integrate RACF with DB2, CICS, and enterprise applications to ensure end-to-end security coverage. - Diagnose and resolve RACF-related issues; perform root-cause analysis and lead remediation for security events. - Produce SOX/HIPAA/PCI evidence, lead reviews, and maintain defensible documentation for audits. - Drive modernization of authentication and cryptographic controls, including MFA and certificate lifecycle automation. - Train junior engineers; support processes, standards, and engineering design documentation. Qualifications - Bachelor's Degree and 8 years of experience in Systems Engineering, Network, or Information Security OR High School Diploma or GED and 12 years of experience in Systems Engineering, Network, or Information Security. - 10+ years of mainframe experience with expert RACF knowledge (profiles, classes, permissions, command set). - Advanced proficiency in REXX, SAS, JCL, TSO/ISPF, and IBM utilities. - Hands-on experience with Vanguard specific tools. - Hands-on experience with MFA for mainframe access, including integration with enterprise identity providers. - Experience with dataset encryption and cryptographic modernization. - Strong background in digital certificates, rings, and cross-platform authentication. - Proven ability to troubleshoot complex RACF issues and differentiate RACF vs. non-RACF root causes. - Experience supporting SOX, HIPAA, PCI, and internal audit requirements. - Strong analytical, communication, and documentation skills. - Experience defining enterprise RACF standards and reference architectures. - Systems programming experience. - Financial industry experience. Requirements - Remote eligible. - The base pay for this position is generally between $130,000 and $190,000, determined based on skills, experience, location, and other non-discriminatory factors. - Total compensation may include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. Benefits Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at First Citizens Bank Benefits .
Security Engineer
TradeStationHeadquartered in Plantation, Florida; Tradestation is an online brokerage company dedicated to making money work harder. Established in 1982, Tradestation has g
Role Description We are looking for a Security Engineer who will be responsible for the engineering, design, implementation, maintenance, monitoring, analysis, and administration of TradeStation’s security solutions and security information. The Security Engineer will also establish procedures, and, wherever possible, automate tasks to reduce operational overhead. The role will also act as a security project lead and subject matter expert in the Information Security domain. - Design, implement, configure, and troubleshoot enterprise security technologies and infrastructure - Perform vulnerability assessments, validate security controls, and drive remediation efforts across on-premises and cloud environments - Partner with infrastructure, development, and project teams to integrate security controls throughout the system development lifecycle - Secure and continuously improve public cloud environments by implementing security best practices and monitoring controls - Collaborate with Network and Systems Engineering teams to design, document, and maintain network security architectures and firewall configurations - Lead and participate in security incident response, including technical analysis, containment, eradication, and post-incident reviews - Develop and maintain security documentation, including SOPs, technical standards, runbooks, and response playbooks - Evaluate and implement security technologies and automation to improve security posture and operational efficiency - Support security operations through on-call rotation and after-hours incident response as needed - Support security assessments, audits, and compliance/risk management initiatives with technical expertise - Automate repetitive security tasks using AI or orchestration tools - Research emerging threats and attack techniques to proactively strengthen defensive capabilities Qualifications - Hands-on experience designing, implementing, administering, and supporting enterprise security technologies, including firewalls, IDS/IPS, EDR, authentication and identity solutions, SIEM platforms, vulnerability management tools, email security, NDR, deception technologies, AI usage filtering, and web/content filtering solutions - Experience implementing and supporting Privileged Access Management (PAM) solutions, preferably CyberArk - Strong understanding of security architecture principles, including secure network, infrastructure, and application design - Experience securing public cloud environments, with a solid understanding of cloud security principles, cloud-native security services, SaaS platforms, and third-party security tools; experience with AWS and Azure strongly preferred - Experience performing vulnerability assessments, validating security controls, and partnering with system owners to prioritize and remediate risk - Experience investigating security incidents, including log analysis, endpoint investigations, network forensics, and malware analysis - Working knowledge of networking concepts, common protocols, web technologies, APIs, and modern application architectures - Experience with security analysis and troubleshooting tools such as Wireshark, endpoint forensic utilities, email analysis tools, and virtualization platforms (VMware, VirtualBox) - Experience developing and maintaining security policies, standards, procedures, and operational runbooks - Experience providing support and escalation services to a Security Operations Center - Understanding of security frameworks and regulatory requirements such as NIST, CIS Controls, ISO 27001, or similar - Experience collaborating with infrastructure, cloud, development, and engineering teams to integrate security into enterprise technologies and business initiatives - Strong organizational and time-management skills, with the ability to manage multiple priorities, adapt to changing business needs, and drive initiatives from planning through implementation - Strong analytical, troubleshooting, and problem-solving skills, with the ability to evaluate complex technical issues and recommend effective solutions - Excellent verbal and written communication skills, with the ability to explain technical security concepts to both technical and non-technical audiences - Self-motivated and proactive, with a demonstrated passion for cybersecurity and a commitment to continuously learning about emerging threats, technologies, and best practices Requirements - Bachelor’s degree in Information Security, Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent practical experience - Minimum of five (5) years of progressive experience in Information Security, Cybersecurity, or a related technical discipline - 3+ years of experience as an Information Security Engineer, Security Engineer, Systems Security Engineer, or in a similar cybersecurity role - Ability to travel occasionally to domestic and international company offices or other business locations for meetings, training, project work, or other business needs Desired Qualifications - One or more of the following certifications strongly preferred: - CISSP (and/or other ISC2 certifications) - SANS GIAC certifications - CEH, OSCP, or other penetration testing certifications - Other industry recognized certifications or accreditations Benefits - Collaborative work environment - Competitive Salaries - Yearly bonus - Comprehensive benefits for you and your family starting Day 1 - Unlimited Paid Time Off - Flexible working environment - TradeStation Account employee benefits, as well as full access to trading education materials - Pay Range (US) $127-150K (Countries outside of the US have differing ranges in accordance with local labor markets)



