Career Opportunities with Whitney, Bradley and Brown

A great place to work.

Open Positions
Share with friends!

Cybersecurity Risk Assessment Engineer

Office: Fort Belvoir, VA
Location: Fort Belvoir, VA
Job ID: S20-0800

JOB TITLE: Cybersecurity Risk Assessment Engineer


Decisive Analytics a WBB Company is seeking a Cybersecurity Risk Assessment (CRA) Engineer at Ft. Belvoir, VA, Redstone Arsenal (Huntsville, AL) or Schriever AFB (Colorado Springs, CO).

CRA Engineers support the MDA Security Control Assessors (SCA) within the Independent Verification and Validation (IV&V) team by performing comprehensive and thorough risk assessments for the MDA. The Risk Assessment process evaluates data from many sources to provide a holistic assessment that enables the Authorizing Official (AO) to make an authorization decision. This process takes vulnerabilities associated with noncompliant RMF controls and evaluates their risk to the mission and the agency to arrive at a residual risk.


  • Performing risk assessments on packages submitted from the Information System Security Manager (ISSM) in Enterprise Mission Assurance Support Service (eMASS)
  • Performing risk assessment activities for evaluating System Security Plans (SSP), Interim Authorization To Test (IATTs), Authorization to Operate (ATO), and Authorization to Connect (ATC)
  • Executes and documents risk assessments, including interacting directly with the SCAs and the ISSMs and their Cybersecurity support staff, and supporting ATO signing sessions


Security Clearance: Secret

  • Secret security clearance eligible for Top Secret/SCI
  • Bachelor Degree in a technical discipline
  • 15 years of IT experience, with at least 10 years of advanced technical cybersecurity experience
  • Understanding of the Risk Management Framework (RMF) and the NIST 800-53 RMF Security Control Catalog
  • Experience assessing compliance and performing risk assessments
  • Strong technical writing skills are required for producing Risk Assessment Reports and writing assessments that will be presented to the SCA and the AO for decision
  • Certified Information Systems Security Professional (CISSP) or other qualified IASAE Level II cybersecurity certification


  • Cyber Threat Analyst background
  • Experience in Cloud authorization strategies
  • Top Secret security clearance with SCI eligibility

WORK LOCATION: Fort Belvoir, VA / Huntsville, AL/ or Colorado Springs, CO


KEY WORDS: Cybersecurity, Operational Test and Evaluation

WBB is a technical and management consulting company that provides innovative products and services that solve government and commercial customerís toughest problems. For more than 30 years, WBB has set the standard for excellence in consulting services, while providing its employees with an outstanding work environment with ample opportunities for growth and success. WBB continues to enjoy impressive growth, which is directly attributed to the companyís hiring practice of always hiring the very best professionals from government, military and industry.

We are proud of our diverse environment and are an Equal Opportunity Employer. WBB is committed to a policy of equal employment opportunity. WBB participates in E-Verify.

WBB does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of WBB and WBB will not be obligated to pay a placement fee.

Applicant Tracking System Powered by ClearCompany HRM Applicant Tracking System