Security Assessor

Job not on LinkedIn

🕒 November 13, 2025

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

DataLock Consulting Group

WebsiteLinkedInAll Job Openings

11 - 50 employees

Founded 2013

🔒 Cybersecurity

📋 Compliance

Cybersecurity • Compliance • Healthcare

DataLock Consulting Group is a cybersecurity consulting firm that specializes in security program development, compliance, and security architecture and engineering. They believe in integrating cybersecurity into the foundation of networks and systems rather than treating it as an afterthought. They serve various industries, including government, financial, aerospace, and healthcare, offering services such as risk management, security assessments, and cloud security.

📋 Description

• Conduct security control assessments of the security and privacy controls implemented by an information system to determine the overall effectiveness of the controls • Develop, document and review System Rules of Engagement (ROE), Security Assessment Plans (SAPs) and Security Assessment Reports (SARs). • Perform quality control on the assessment and associated deliverables. • Participate as an individual contributor for complex system assessments. • Develop practical and risk-based approaches for security control implementation and vulnerability remediation. • Work closely with ISSOs (contractors and Government) and the technical team and ensure all appropriate A&A supporting documentation is provided prior to conducting the assessment. • Conduct Security Assessment Kickoff briefings and SAR briefings. • Analyze security control findings for information systems and applications to convey weaknesses. • Document security assessment results accurately; read, understand, and convey vulnerabilities found during the assessments. • Perform audits of each system and provide an authorization recommendation based on determination of risk to the customer.

🎯 Requirements

• 1+ years of experience performing security testing and/or security control assessments. • 1+ years of experience with developing and documenting the SAPs, and SARs. • 1+ years of experience utilizing NIST 800-53 and 800-53A. • Knowledge of the NIST Cybersecurity Framework, Risk Management Framework, FIPS, and other NIST A&A publications. • Experience assessing and providing recommendation on the following: Privacy Impact Assessment, Risk Assessment, System Security Plan, Disaster Recovery / Contingency Plan, and Incident Response Plan. • Knowledge of the Systems Development Life Cycle (SDLC) and its application in the development of technology solutions. • Knowledge and skills to perform and document the assessment. • Understanding of tools such as Nessus, Web Inspect, Db Protect and Splunk. • Familiar with the cloud environments (services/security) and FedRAMP A&A process. • Effective verbal and written communication skills with ability to effectively communicate with all levels of users and teammates both written and verbally. • Effective technical writing and documentation processing skills.

🏖️ Benefits

• Remote Job • Competitive salary • Professional development opportunities