Find JobsSalary EstimateCareer AdviceUpload ResumeEmployers / Post JobProfileMessage Center

Cyber Security Controls Assessor - Career

GTT

Oakland, CA

Apply
JOB DETAILS
SKILLS
Analysis Skills, Banking Services, Biology, Biotech and Pharmaceutical, Business Processes, Business Solutions, CCNA - Cisco Certified Network Associate, CISA - Certified Information Systems Auditor, CISSP - Certified Information Systems Security Professional, Citrix Product Family, Communication Skills, Computer Science, Computer Security, Control Objectives for Information and related Technology (COBIT), Dental Insurance, Establish Priorities, Financial Services, Fortune 500 Customers, GNU C Compiler, Gap Analysis, ITIL (IT Infrastructure Library), Information Technology & Information Systems, Internet Security, Laptop PC, Leadership, Microsoft Excel, Middleware, Multiplatform/Cross-Platform, Multitasking, Network Security, Operating Systems, Presentation/Verbal Skills, Project/Program Management, Regulatory Compliance, Regulatory Requirements, Retail, Retirement Funds, Risk Analysis, Risk Management, Sarbanes-Oxley Act (SOX), Test Plan/Schedule, U.S. National Institute of Standards and Technology (NIST), Vision Plan, Writing Skills
LOCATION
Oakland, CA
POSTED
2 days ago
Primary Job Title:
Cyber Security Controls Assessor

Alternate/Related Job Titles:
IT Controls Assessor
IT Compliance Analyst
Cybersecurity Auditor
IT Risk Analyst
Information Security Controls Analyst

Location:
Oakland, CA

Onsite Flexibility:
Hybrid (Monthly onsite; adjusted as needed)

Contract Details (Contract roles only):

  • Position Type: Contract
  • Contract Duration: 12 Months
  • Start: As Soon As Possible
  • Pay Rate: $60 – $65/hr

Job Summary

The Cyber Security Controls Assessor is responsible for the assessment, verification, review, and audit of General Computer Controls (GCCs) across the enterprise.
This role evaluates IT and business systems for compliance with regulatory standards, internal policies, and procedures. The Assessor identifies risks, evaluates control deficiencies, and recommends remediation efforts aligned with organizational policies and regulatory requirements.

Key Responsibilities

  • Perform multi-platform assessments (applications, databases, operating systems, middleware, monitoring tools, and business processes) based on predefined test objectives and plans
  • Perform retesting of remediated or updated controls
  • Obtain, review, and interpret evidence to validate control effectiveness
  • Execute and report IT compliance assessments aligned with NIST SP800-53, SP800-115, SOX, and NERC CIP standards
  • Review organizational IT policies, standards, and procedures to identify control points that mitigate risk
  • Analyze test results and evidence to identify vulnerabilities and control deficiencies
  • Partner with stakeholders to establish sustainable remediation plans
  • Identify risks associated with control failures and recommend mitigating controls
  • Ensure control documentation is updated to reflect the current control environment
  • Support Compliance leadership as needed

Required Experience

  • BA/BS in Computer Science, Business, or equivalent experience
  • Minimum 3 years of general IT experience, including IT security or IT risk management
  • Experience using Excel worksheets, workbooks, and formulas
  • Experience managing multiple projects with conflicting priorities
  • At least one current and valid certification from: CCNA, CISA, CRISC, CIA, or CISSP

Nice-to-Have Experience

  • Utility industry experience
  • Big 4 experience
  • Experience with Sarbanes-Oxley (SOX) compliance
  • Experience with NIST SP800-53 security controls

Required Skills

  • Deep understanding of security frameworks and IT assessment processes
  • General computing controls (GCC) knowledge
  • Risk identification and control gap analysis

Preferred Skills

  • Knowledge of COBIT and ITIL frameworks
  • Regulatory standards (SOX, NERC/CIP) expertise
  • Strong planning and project management skills
  • Multi-project management capability
  • Detail-oriented and analytical mindset

Additional Skills

  • Understanding of application, database, network, and systems security
  • Ability to interpret audit evidence and documentation
  • Strong oral and written communication skills
  • Ability to work independently in a fast-paced environment
  • Collaboration with control owners and stakeholders

Working Conditions

  • Local candidates only (Oakland area)
  • Hybrid role with monthly onsite requirement (adjusted as needed)
  • Client laptop provided (temporary use of personal laptop via Citrix if delayed)

Benefits

  • Medical, Vision, and Dental Insurance Plans
  • 401k Retirement Fund

About GTT

GTT is a minority-owned staffing firm and a subsidiary of Chenega Corporation, a Native American-owned company in Alaska. We highly value diverse and inclusive workplaces and support Fortune 500 organizations across banking, financial services, technology, life sciences, biotech, utilities, and retail sectors throughout the U.S. and Canada.
Job Number:
26-01828
Hashtags:
#LI-GTT #LI-Hybrid #gttjobs

About the Company

G

GTT