Security Control Assessor (SCA), Level 3

TS/SCI/POLY Required

Security Control Assessor (SCA) Qualifications
A Security Control Assessor (SCA) is a security professional that provides information security Assessment and Authorization (A&A) support throughout a program’s lifecycle to Contractor and Government facilities processing customer information.  All SCAs require relevant technical experience/education in accordance with the below table. 

Contractor personnel shall, within six months from their arrival, achieve the appropriate IA certifications at the appropriate level for the position.

Level 3 SCAs should possess all SCA Level 2 Contractor qualifications and the following desired qualifications:

1. Ability to manage and track systems or programs involved in the A&A process.
2. Experience developing and implementing security related directives and guidance for Information Assurance, Information Technology, and Information Management; and
3. Experience working with a mixed skill level team to ensure that appropriate knowledge and skill transfer occurs.

Level 2 SCAs require moderate information system security knowledge and skills to include the following desired qualifications:
a.    Practical experience performing information systems assessment and authorization (A&A) as defined in applicable ICDs and guidance; 
b.    Practical experience performing the processes involved in developing and implementing security related directives and guidance for Information Assurance, Information Technology, and Information Management;
c.    Practical experience utilizing risk management strategies for information technology solutions;
d.    Technical understanding of emerging technologies and their implementation within Government system and network environments;
e.    Knowledge of information technology concepts used in the evaluation of security performance and integrity of state-of-the-art applications, communications systems, hardware, software, satellite control systems, and information processing systems;
f.    Technical understanding of information technology systems, software, and networks;
g.    Ability to effectively coordinate A&A activities of industry and Government information systems to meet acquisition milestone requirements; and
h.    Effective technical report and general correspondence writing ability.

The following qualifications are desired:
a.    Education relevant to computer engineering, information security, information management, and/or computer science; and
b.    Experience in technical project management.

• Bachelor's Degree and 5 years or High school or Associates and 7 years or Master's or Higher and 3 years.
• Degree in Engineering, Computer Science, or related field of study