Security Controls Assessor / OSCAL (Part Time, Remote)

TestPros delivers innovative independent IT assessment solutions to critical challenges facing the nation and the world.  We support the U.S. Federal Government and Commercial clients within the continental USA. TestPros is dedicated to making lives better, safer and more secure.

Start: Future projects late 2026 or 2027 (not an immediate job opening) 

Type: Part-time consulting

Overview

The ideal candidate will have strong hands-on experience conducting independent security control compliance assessments using guidelines from NIST (800-53, 800-171) and assessment automation via OSCAL (Open Security Controls Assessment Language).  You must have security controls and OSCAL experience in both U.S. Government and Commercial environments.  FedRAMP experience is a plus...

Required Qualifications

• Proven OSCAL experience (at least two years).
• 5+ years of hands-on security controls assessment and development of Security Assessment Plan (SAP), Security Assessment Report (SAR) and Plan of Actions and Milestones (POA&M).
• Experience with RegScale, Paramify, or similar tools.
• Experience with government, public sector, or municipal IT environments is highly preferred.
• Ability to write clear, professional, and actionable technical reports.
• Full U.S. Citizenship, and ability to pass an extensive background check.

Preferred Skills

• Experience with NIST 800-53 based ATO assessment, NIST 800-171/CMMC assessment, and/or HIPAA assessment.
• Ability to produce a set of interoperable, extensible, machine-readable formats that supports a broad range of control-based risk management processes (XML-, JSON-, and YAML-based formats that allow for lossless translations between XML, JSON, and YAML representations).
• Familiarity with U.S. Government security policy requirements.
• Experience coordinating with multi-agency or cross-organizational IT teams.
• Expertise with common tools such as Kali Linux, Burp Suite, Nmap, Metasploit, Nessus/Tenable, and Wireshark.

Engagement Details

• Estimated Start: Late 2026 or 2027
• Estimated Duration: TBD
• Work Location: Fully Remote
• Clearances: Not required, but government experience is a plus

Rate: $50-85/hr (1099 or Corp. to Corp.) This range represents a good-faith estimate and is not a guarantee; final compensation is determined by factors such as experience, qualifications, and government contract labor rate requirements and may fall outside the stated range. 

Equal Opportunity Employer
TestPros is an equal-opportunity employer and does not discriminate in employment based on race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or any other non-merit factor.

Offer Considerations
TestPros considers several factors when extending an offer, including but not limited to, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications.

Federal Compliance
As a federal contractor, TestPros is subject to all federal and state mandates and/or other customer requirements.

Benefits
TestPros offers a competitive salary, medical/dental/vision insurance, life insurance, paid time off, paid holidays, 401(k) retirement plan with company match, opportunities for professional growth, cell phone discounts, and much more! All benefits are per TestPros current policies and are subject to change without notice.  Benefits are available to full-time employees.​