Security Controls Assessor

United Ventures LLC

Job Overview

Location

Bluemont, VA

Job Type

Full-time

Full Job Description

📋 Description

• Assess, validate, and document the effectiveness of security controls across enterprise environments, including cloud, on-premises, and hybrid infrastructures, in alignment with NIST, CIS, and ISO 27001 frameworks.
• Conduct detailed evaluations of technical and administrative controls to ensure compliance with federal cybersecurity requirements, including FISMA, NIST SP 800-53, and CMMC standards.
• Collaborate with security engineering, IT operations, and compliance teams to identify gaps in control implementation and recommend remediation strategies based on real-time threat intelligence.
• Perform control testing through interviews, document reviews, configuration audits, and system scans to verify control functionality and operational consistency.
• Prepare comprehensive assessment reports detailing findings, risk ratings, control maturity levels, and actionable recommendations for senior leadership and client stakeholders.
• Support client engagements by presenting assessment outcomes in clear, non-technical terms to business and technical audiences, ensuring alignment with organizational risk tolerance.
• Maintain up-to-date knowledge of evolving cyber threats, regulatory changes, and emerging security control technologies to ensure assessments remain relevant and effective.
• Work directly with UltraViolet Cyber’s security-as-code platform to automate control validation workflows, enhance detection accuracy, and reduce manual assessment overhead.
• Participate in continuous improvement initiatives to refine assessment methodologies, templates, and tooling used across federal, commercial, and Fortune 500 client engagements.
• Coordinate with cross-functional teams to ensure timely closure of control deficiencies and track remediation progress through established ticketing and tracking systems.
• Ensure all assessment activities adhere to strict data handling, confidentiality, and chain-of-custody protocols required for federal and sensitive commercial engagements.
• Support internal audits and readiness reviews for client certifications, including FedRAMP, SOC 2, and other industry-specific compliance frameworks.
• Maintain accurate documentation of all assessment processes, evidence collected, and conclusions drawn in accordance with audit trail and quality assurance standards.
• Provide subject matter expertise during client onboarding and scoping phases to define assessment scope, objectives, and success criteria.
• Contribute to the development of standardized assessment playbooks and training materials for junior assessors and internal teams.
• Engage in periodic peer reviews of assessment deliverables to ensure consistency, accuracy, and adherence to organizational quality benchmarks.
• Represent UltraViolet Cyber professionally in client-facing interactions, maintaining a reputation for technical rigor, integrity, and responsiveness.

🎯 Requirements

• Minimum of 3 years of hands-on experience conducting security controls assessments in federal or commercial environments
• Proven expertise in NIST SP 800-53, FISMA, and CIS Controls frameworks
• Demonstrated ability to interpret and apply cybersecurity standards to real-world system configurations

🏖️ Benefits

• Competitive salary with performance-based bonuses
• Comprehensive health, dental, and vision insurance
• 401(k) with company matching

Skills & Technologies

Onsite

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

United Ventures LLC

Visit Website

About United Ventures LLC

United Ventures LLC, operating as UVCyber, is a veteran-owned cybersecurity firm headquartered in Tampa, Florida. Founded in 2017, the company provides penetration testing, compliance assessments, risk management, and managed security services to defense, healthcare, finance, and government clients. UVCyber maintains CMMC Registered Provider Organization status and supports NIST 800-171, FedRAMP, and HIPAA frameworks through its team of cleared consultants.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.