4556 IT & Software Developer jobs in the US
C / C++ Developer Jobs in the US
C / C++
.NET Developer Jobs in the US
C#.NET
Data Science & Engineering Jobs in the US
Data
Golang Developer Jobs in the US
Golang
Java Developer Jobs in the US
Java
JavaScript Developer Jobs in the US
JavaScript
Mobile app Developer Jobs in the US
Mobile
PHP Developer Jobs in the US
PHP
Python Developer Jobs in the US
Python
Ruby on Rails Developer Jobs in the US
Ruby
SAP Developer Jobs in the US
SAP
System Engineer Jobs in the US
System
DevOps Engineer Jobs in the US
DevOps
IT & ICT Jobs in the US
IT
Database Developer Jobs in the US
Database
QA, Software Tester Jobs in the US
QA, Test
Machine-Learning Developer Jobs in the US
ML, AI
Security Engineer Jobs in the US
Security
Network Engineer Jobs in the US
Network
GameDev Developer Jobs in the US
GameDev
Blockchain Developer Jobs in the US
Blockchain
UI / UX Designer Jobs in the US
UX, UI
Architect Specialist Jobs in the US
Architect
Product / Project Manager Jobs in the US
Business
IT Management Jobs in the US
Manager
IT Support Jobs in the US
Support
Rust Developer Jobs in the US
Rust
Hardware Engineer Jobs in the US
Hardware
No-Code Developer Jobs in the US
No-Code

Security Assurance, LLC jobs

Mid-Level Cybersecurity Risk Assessor

$75,000 - 115,000
Security Assurance, LLC
Hackamore Drive 8209, Potomac
$75,000 - 115,000
Company Size icon
Company Size
<50
Company Type icon
Company Type
Services
Exp Level icon
Exp Level
Senior
Job Type icon
Job Type
Full-Time
Language icon
Language
English
Visa sponsorship icon
Visa sponsorship
No

Requirements

Must:
- Bachelors Degree with 3-5 years of experience as a Security Control or Risk Assessor, or equivalent - Strong technical acumen with the ability to comprehend network diagrams, threat models, and compliance scans - Thorough understanding of information security principles and regulatory standards, including NIST 800-53, NIST RMF 800-37, HIPAA, and PCI - Proficient in conducting structured risk assessments and analyzing compensating controls - Experience applying quantitative risk models and making formal recommendations on exception requests - Familiarity with SOC 1/SOC 2 reports and vendor attestations - Proficient in utilizing GRC platforms, particularly ServiceNow, for documentation and workflow management - Capable of working independently, managing deadlines, and conveying complex risk concepts to various business units - Background in supporting third-party assessments, audit responses, and internal control monitoring - Experience in reviewing policy exceptions, risk acceptances, or control deviations in a regulated setting - Industry certifications such as CISSP, CGRC, CISA, CRISC, or Security+ are preferred

Technologies

Support
Network
Security
ServiceNow

Responsibilities

- Conduct risk reviews and provide defensible risk ratings, ensuring compliance with organizational procedures - Examine policy and security risk exception requests through the ServiceNow GRC platform - Perform structured risk assessments, evaluating compensating controls and determining residual risk - Deliver formal recommendations on acceptance or denial of exception requests - Utilize industry-standard risk rating models for comprehensive risk assessments - Collaborate with stakeholders to communicate risk findings, document justifications, and propose mitigation strategies - Assist in tracking and closing findings from both internal and external audits - Support internal control assessments and oversee compliance with HIPAA, CJIS, PCI DSS, and Maryland PIPA - Analyze SOC 1 and SOC 2 reports from third-party vendors, pinpointing control exceptions and user considerations - Contribute to GRC documentation, including policies, procedures, workflows, and methodologies for risk rating - Aid in the remediation of audit findings and deficiencies in internal controls - Contribute to GRC reporting metrics, dashboards, and summaries for executives

Description


We are looking for a Risk Assessor to join our team, where you will be pivotal in operationalizing risk reviews and ensuring compliance with essential standards. Our organization values strategic objectives tied to HIPAA compliance, CJIS certification, and PCI standards, which our team supports through meticulous documentation and clear communication. We offer a supportive work environment that emphasizes professional development. Our location is easily accessible, and we encourage collaborative efforts to maintain the highest standards of risk management.
Something wrong or incorrect with this job? Tell us in the chat 💬 on the right ➡️

IT & Software developer jobs in the USSecurity Engineer jobs in the USSecurity Engineer jobs Gaithersburg, MD
You can find Cyber Security Engineer salaries in the United States here.

How many Cyber Security Engineer jobs are in the United States?

Currently, there are 4556 Security openings. Check also: IAM jobs, SAML jobs, Cisco jobs, Splunk jobs - all with salary brackets.

Is the US a good place for Cyber Security Engineers?

The US is one of the best countries to work as a Cyber Security Engineer. It has a vibrant startup community, growing tech hubs and, most important: lots of interesting jobs for people who work in tech.

Which companies are hiring for Cyber Security Engineer jobs in the United States?

GE Aerospace, Transport-Bourassa, Ekxpert Placement Services, D3 Security Management Systems, Combat Computers Inc., R&S Northeast, LLC, Newcourse Communications among others, are currently hiring for Security roles in the United States.

The company with most openings is Judge Group, Inc. as they are hiring for 376 different Cyber Security Engineer jobs in the United States. They are probably quite committed to find good Cyber Security Engineers.