Everest Consultants, Inc. · 14 hours ago
Security Control Assessor
Vancouver, WA
Contract
Onsite
Mid, Senior Level
$46.34/hr - $49.57/hr
4+ years expEverest Consultants, Inc. is seeking a Security Control Assessor to ensure compliance with information and cyber security laws and standards. The role involves assessing security controls, conducting audits, and recommending improvements to enhance security measures for information systems.
ConsultingInformation TechnologyStaffing Agency
Hiring Manager
Mohammed Mushaffiq
Responsibilities
Perform risk analyses so that appropriate countermeasures can be developed
Conduct security audits to identify potential vulnerabilities related to physical security, staff safety or asset protection
Assess operational, assurance and technical security controls implemented on an information system via security testing and evaluation (ST&E) methods
Understand and assess policies and procedures implemented to protect all categories of information and to verify compliance with applicable laws, regulations and/or departmental requirements
Recommend improvements in security systems or procedures
Plan, implement, upgrade or monitor security measures for the protection of computer networks and information
Maintain, monitor, control and protect IT infrastructure and the information residing on such infrastructure
Perform a wide variety of data collection, analysis, reporting and briefing activities associated with security operations and maintenance to verify that security policies are implemented and maintained on information systems
Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs
Review violations of security procedures and discuss procedures with violators to verify that violations are not repeated
Monitor current reports of computer viruses to determine when to update virus protection systems
Perform risk assessments and execute system tests to verify that adequate security measures are in place
Asses the effectiveness of the risk management program to include mitigation strategies
Modify computer security files to incorporate new software, correct errors, or change individual access status
Plan implement, upgrade or monitor security measures for the protection of computer networks and information
Train users and promote security awareness on system security
Provide security incident handling, response, follow-up as well as documentation
Respond to computer security breaches and viruses
Develop documentation of testing and evaluation activity in order to arrive at logical and comprehensive conclusions and recommendations
Review violations of computer security and emergency measures, policies, procedures and tests
Document computer security and emergency measures policies, procedures and tests
Confer with users to discuss issues such as computer data access needs, security violations and programming changes
Monitor use of data files and regulate access to safeguard information in computer files
Coordinate implementation of computer system plans with management and outside vendors
Recommend improvements in security systems or procedures
Provide system design and integration recommendations
Assess the nature and level of threats so that the scope of the problem can be determined
Respond to emergency situations on an on-call basis
Recommend the value-loss impact and criticality of assets
Encrypt data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers
Provide project management technical expertise for assigned projects
Qualification
Required
A bachelor's degree in computer science, information technology management, Cyber Security, Forensics, or a closely related technical discipline is preferred
4 years of experience is required with an applicable bachelor's degree
6 years of experience is required with an applicable associate degree
8 years of experience is required without a degree or applicable degree
Experience should be consistent with the specific requirements of operations analysis, incident response, and progressively more technical in nature
Ability to research and maintain proficiency in tools, techniques, countermeasures, and trends in information security, computer and network vulnerabilities, data hiding, network security, and encryption
Ability to plan, execute and document compliance evaluations both independently and as a team member
Preferred
Demonstrated experience with North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) standards, National Institute of Standards and Technology (NIST) Cybersecurity Framework, and/or NIST SP 800-53 Security and Privacy Controls for Information Systems and Organizations
Certified Information Systems Security Professional (CISSP) or equivalent
Benefits
Medical, dental, & vision insurance
Short-term disability
Life and AD&D insurance
A 401(k)-retirement plan
A referral bonus program
Paid sick/vacation/holidays
A health and welfare fringe benefit
Company
Everest Consultants, Inc.
Everest Consultants, Inc.
51-200 employees
H1B Sponsorship
Everest Consultants, Inc. has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (1)
2024 (1)
2020 (1)
Funding
Current Stage
Growth StageLeadership Team
Sriram Edupuganti
CEO
Recent News
Company data provided by crunchbase