ZipRecruiter

Log In

1

Cyber Security Assessor Jobs (NOW HIRING)

Analygence

Cybersecurity Assessment Lead

Virginia Beach, VA · On-site

$98K - $133K/yr

... senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks and training systems. This position leads ...

Peraton

CORA Assessor

Herndon, VA · On-site

$86K - $138K/yr

DCMA DIBCAC Cybersecurity Assessor Advanced); OR * Relevant professional certification or equivalent experience (examples: CCISO, CISA, CISM, CISSP, CISSP-ISSEP, CySA+, GSLC, GSNA). * Required ...

VMD Corp

Senior Cybersecurity and IT Assessor

$102K - $132K/yr

As a Senior Cybersecurity and IT Assessor, you will support a government cybersecurity assessment and oversight program focused on strengthening enterprise security governance, operational resilience ...

Saransh Inc

Cybersecurity Analyst

Austin, TX · On-site

Contract Security Consultant * Cyber Security assessment Analyst conducts and supports the cyber security controls risk assessment and management process across all our suppliers. * Responsibilities ...

Guernsey

Cybersecurity Consultant

Oklahoma City, OK · On-site

Through our Cybersecurity Assessments practice, we deliver independent assessments, compliance reviews, and strategic cybersecurity consulting that help clients improve security posture, manage risk ...

Smithers Group

Contract CMMC Assessor

Akron, OH · On-site

The Quality Assessments Division of Smithers seeks an ambitious and detail-oriented Cybersecurity Maturity Model Certification (CMMC) Certified Assessor (CCA) or Lead CCA to join our growing ...

Peraton

CORA Assessor

Herndon, VA

$86K - $138K/yr

DCMA DIBCAC Cybersecurity Assessor Advanced); OR * Relevant professional certification or equivalent experience (examples: CCISO, CISA, CISM, CISSP, CISSPISSEP, CySA+, GSLC, GSNA). * Required ...

Smithers

Contract CMMC Assessor

Akron, OH · On-site

The Quality Assessments Division of Smithers seeks an ambitious and detail-oriented Cybersecurity Maturity Model Certification (CMMC) Certified Assessor (CCA) or Lead CCA to join our growing ...

Peraton

CORA Assessor

Herndon, VA

$86K - $138K/yr

DCMA DIBCAC Cybersecurity Assessor Advanced); OR * Relevant professional certification or equivalent experience (examples: CCISO, CISA, CISM, CISSP, CISSPISSEP, CySA+, GSLC, GSNA). * Required ...

next page

Showing results 1-20

All JobsCyber Security Assessor Jobs

Cyber Security Assessor information

See salary details

$8

$58

$78

How much do cyber security assessor jobs pay per hour?

As of Jun 16, 2026, the average hourly pay for cyber security assessor in the United States is $58.77, according to ZipRecruiter salary data. Most workers in this role earn between $50.48 and $68.03 per hour, depending on experience, location, and employer.

What is a cyber security assessor?

A cyber security assessor is a professional responsible for evaluating an organization's security measures, identifying vulnerabilities, and ensuring compliance with security standards. They often use tools like vulnerability scanners and may hold certifications such as CISSP or CEH to perform risk assessments and recommend improvements.

What are the key skills and qualifications needed to thrive as a Cyber Security Assessor, and why are they important?

To thrive as a Cyber Security Assessor, you need a robust understanding of cybersecurity frameworks, risk assessments, and information security principles, often backed by a degree in computer science or information security and relevant certifications like CISSP or CISA. Familiarity with vulnerability assessment tools, penetration testing software, and compliance management systems is typically required. Strong analytical thinking, attention to detail, and effective communication skills set top performers apart in this role. These skills and qualifications are crucial for accurately identifying security gaps, advising on remediation, and ensuring organizational compliance with industry standards.

What is the 80 20 rule in cyber security?

In cybersecurity, the 80/20 rule suggests that approximately 80% of security issues are caused by 20% of vulnerabilities or threats. Cybersecurity assessors focus on identifying and mitigating these critical vulnerabilities to improve overall security posture efficiently.

Can you make $500,000 a year in cyber security?

Cyber Security Assessors typically earn salaries ranging from $70,000 to $150,000 annually, depending on experience, certifications, and location. Reaching a $500,000 annual income usually requires advanced roles such as senior security consultants, security architects, or executive positions, often combined with bonuses, profit sharing, or consulting fees. High earnings in cybersecurity generally involve extensive expertise, specialized skills, and leadership responsibilities.

What does a Cyber Security Assessor do?

A Cyber Security Assessor is responsible for evaluating an organization's information systems and networks to identify vulnerabilities, assess risks, and ensure compliance with security standards. They conduct security assessments, audits, and penetration tests to detect potential threats and recommend improvements to strengthen the organization’s cyber defenses. Their work helps organizations protect sensitive data and maintain the integrity, confidentiality, and availability of their digital assets.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role is often considered an entry-level position in cybersecurity, suitable for individuals with foundational knowledge of security principles, network protocols, and security tools. However, some SOC roles may require prior experience or certifications like CompTIA Security+ or Certified SOC Analyst (CSA).

What is the difference between Cyber Security Assessor vs Cyber Security Analyst?

AspectCyber Security AssessorCyber Security Analyst
CertificationsISO 27001 Lead Auditor, CISSP, CEHCISSP, CompTIA Security+, CEH
Work EnvironmentAudit and compliance settings, consulting firmsSecurity operations centers, IT departments
Employer & IndustryOrganizations seeking compliance, consulting firmsBusinesses with IT security teams, government agencies
Primary FocusAssessing security controls, compliance auditsMonitoring security threats, incident response

The main difference is that a Cyber Security Assessor focuses on evaluating security controls and ensuring compliance with standards, often through audits. In contrast, a Cyber Security Analyst actively monitors and responds to security threats within an organization. Both roles require relevant certifications but serve different functions within cybersecurity teams.

What are some common challenges faced by Cyber Security Assessors during security audits?

Cyber Security Assessors often encounter challenges such as limited access to system documentation, resistance from staff during interviews, or time constraints when performing comprehensive assessments. Navigating complex and rapidly changing IT environments can also make it difficult to identify all vulnerabilities. Successful assessors use strong communication skills to build trust with stakeholders and prioritize findings to ensure critical risks are addressed first.
More about Cyber Security Assessor jobs
What cities are hiring for Cyber Security Assessor jobs? Cities with the most Cyber Security Assessor job openings:
What states have the most Cyber Security Assessor jobs? States with the most job openings for Cyber Security Assessor jobs include:
What job categories do people searching Cyber Security Assessor jobs look for? The top searched job categories for Cyber Security Assessor jobs are:
Cyber Security Assessor jobs near you
Infographic showing various Cyber Security Assessor job openings in the United States as of June 2026, with employment types broken down into 97% Full Time, and 3% Contract. Highlights an 92% Physical, 3% Hybrid, and 5% Remote job distribution, with an average salary of $122,236 per year, or $58.8 per hour.
Cybersecurity Assessment Lead

Cybersecurity Assessment Lead

Analygence

Virginia Beach, VA • On-site

$98K - $133K/yr

Full-time

Posted yesterday

Job description

Tharros is seeking a Cybersecurity Assessment Lead for an upcoming program supporting a US Navy customer located at NAS Oceana. The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks and training systems.

This position leads independent security control validation activities, ensures RMF packages are complete and compliant, and provides cybersecurity risk analysis to the Government Security Control Assessor (SCA) and Authorizing Official (AO). The Assessment Lead provides technical direction and quality oversight for cybersecurity assessment personnel supporting RMF validation and continuous monitoring activities.

  • Lead cybersecurity assessment teams supporting RMF authorization activities across all performance locations.
  • Perform or oversee independent security control assessments for DoD information systems.
  • Validate implementation of required NIST 800-53 security controls.
  • Support Security Control Assessors (SCA) in evaluating residual cybersecurity risk.
  • Provide technical leadership and quality oversight for cybersecurity assessors supporting RMF validation efforts.
  • RMF Assessment Support
    • Lead RMF assessment activitiesin accordance withDoD and Department of the Navy cybersecurity requirements. Conduct or oversee independent verification and validation of implemented security controls, including initial authorization assessments and periodic reassessments. Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official.
  • RMF Package Development and Reporting
    • Oversee preparation and delivery of RMF artifacts including:
    • Security Assessment Plans (SAP)
    • Security Assessment Reports (SAR)
    • Risk Assessment Reports (RAR)
    • System Security Plans (SSP)
    • Continuous Monitoring Strategies
    • Plans of Action & Milestones (POA&M)
    • Ensure cybersecurity artifacts are properly documented and maintained within the Enterprise Mission Assurance Support Service (eMASS) system.

Apply