Security Control Assessor; SCA III

Company: General Dynamics IT
Location: Arlington, VA
Employment Type: Full Time
Date Posted: 02/26/2026
Job Categories: Engineering, Information Technology

Responsibilities will cover Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities within the customers area of responsibility.

• Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure
• Perform assessment of ISs, based upon the Risk Management Framework (RMF) methodology in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG)
• Advise the Information System Owner (ISO), Information Data Owner (IDO), Program Security Officer (PSO), and the Delegated and/or Authorizing Official (DAO/AO) on any assessment and authorization issues
• Evaluate Authorization packages and make recommendation to the AO and/or DAO for authorization
• Evaluate IS threats and vulnerabilities to determine whether additional safeguards are required
• Advise the Government concerning the impact levels for Confidentiality, Integrity, and Availability for the information on a system
• Ensure security assessments are completed and results documented and prepare the Security Assessment Report (SAR) for the Authorization boundary
• Initiate a Plan of Action and Milestones (POA&M) with identified weaknesses for each Authorization Boundaries assessed, based on findings and recommendations from the SAR
• Evaluate security assessment documentation and provide written recommendations for security authorization to the Government
• Discuss recommendation for authorization and submit the security authorization package to the AO/DAO
• Assess proposed changes to Authorization boundaries operating environment and mission needs to determine the continuation to operate
• Review and concur with all sanitization and clearing procedures in accordance with Government guidance and/or policy
• Assist the Government compliance inspections
• Assist the Government with security incidents that relate to cybersecurity and ensure that the proper and corrective measures have been taken
• Ensure organization are addressing and conducting all phases of the system development life cycle (SDLC)
• Evaluate Hardware and Software to determine security impact that it might have on Authorization boundaries
• Evaluate the effectiveness and implementation of Continuous Monitoring Plans
• Evaluate the differences and have a working knowledge of Information Systems and Network Appliances operating at Protection Level 3 (PL3) and Protection Level 4 (PL4)
• Differentiate the differences between the various types of Cross-Domain Solutions (CDS)
• Assist with joint assessments of Cross-Domain Solutions with other DoD agencies

• Must be able to regularly lift 50lbs
• Must have expert knowledge of DoD, National and applicable service and agency security policy, manuals and standards; must have the ability to work in a dynamic environment and effectively interact with numerous DoD, military/civilian personnel and industry partners
• Mastery of Microsoft Office (Word, PowerPoint, and Excel)

• 9+ years related experience in SAP, SCI or Collateral Information Systems (IS) Security and the implementation of regulations identified in the description of duties
• Prior performance in the role of ISSO and ISSM or SCA
• 2+ years SAP experience required

• Bachelors degree in a related discipline OR Associates degree in a related area + 2 years experience OR equivalent experience (4 years)

• IAT Level III or IAM Level III - within 6 months of hire (CISSP, CASP+ CE, CCNP Security, CISA, etc.)

• TS/SCI required
• Must be able to Attain TS/SCI with CI Polygraph

#defense #AirforceSAPOpportunities

Company Name: General Dynamics IT
Website: