Security Controls Analyst

---

---

Security Controls Analyst Location: Dallas (Westlake), TX Duration: 3-6 months Pay Rate: $35-$50/hr We are seeking an experienced Security Controls Analysts to assess and enhance security compliance for federal information systems and cloud environments. This role involves conducting security assessments, developing comprehensive security documentation, and collaborating with stakeholders to implement security requirements. Key Responsibilities: • Security Assessments & Compliance: Evaluate security controls based on NIST 800 standards to ensure compliance with federal regulations. • Risk & Vulnerability Analysis: Conduct system security control assessments for federal information systems, applications, and cloud environments. Perform detailed risk assessments and recommend actionable mitigation strategies. • Security Documentation: Develop, update, and maintain security documentation, including: System Security Plans (SSPs) Security Assessment Reports (SARs) Security Assessment Workbooks (SAWs) Plan of Action & Milestones (POA&Ms) • Audit & Testing: Conduct interviews, security reviews, and compliance testing to validate security controls. • Collaboration & Communication: Work closely with system owners, ISSOs, and IT teams to implement and document security requirements. Communicate findings, risks, and mitigation efforts to both technical and non-technical stakeholders through reports and presentations. • Security Policy Development: Create, update, and enforce security policies, procedures, and test plans. • Continuous Improvement: Identify and recommend enhancements to existing security control processes to align with best practices and compliance standards. Required Knowledge and Skills: • Education & Experience: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience). 3-5+ years of experience in security compliance, risk management, or cybersecurity assessments. • Security Frameworks & Standards: In-depth knowledge of NIST SP, CMS MARS-E 2.2, FedRAMP, HIPAA, PCI, State RAMP, SOC 2 Type II, and other cybersecurity compliance standards. • Technical Expertise: Strong understanding of security controls for federal systems and cloud environments. Experience in conducting independent security control assessments. Proficiency in analyzing risk and security vulnerabilities and providing actionable mitigation strategies. • Communication & Teamwork: - Strong written and verbal communication skills for clear reporting and effective stakeholder engagement. - Ability to collaborate effectively with security teams, system owners, and IT professionals to implement security controls. - Task & Time Management: Ability to manage multiple security assessments and compliance tasks efficiently, both independently and within a team environment. Preferred Certifications (Not Required, but Highly Valued): • Certified Information Systems Security Professional (CISSP) • Certified Information Security Manager (CISM) • Certified Information Systems Auditor (CISA) • Certified Cloud Security Professional (CCSP)

Keyword: cloud

Contractor Tier: Hourly: $35.00 - $50.00

Price: $42.5