Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Subject Matter Expert (SME) Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Quick apply
Subject Matter Expert (SME) Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various locations throughout Maryland) Rate: Competitive, DOE (W2 or 1099) Position Overview We are seeking a ...
Quick apply
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various locations throughout Maryland) Rate: Competitive, DOE (W2 or 1099) Position Overview We are seeking a ...
Cybersecurity Risk Analyst
Houston, TX · On-site
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · On-site
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Risk Analyst
Houston, TX · Hybrid
Cybersecurity Risk Assessment * Conduct cybersecurity risk assessments for systems, applications, infrastructure, technologies, projects, and business initiatives. * Identify, assess, analyze, and ...
Cybersecurity Assessment Lead
Coronado, CA · On-site
$117.70K - $159.10K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Coronado, CA · On-site
$117.70K - $159.10K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Risk Analyst
Jersey City, NJ · On-site
Key responsibilities include developing and maintaining risk assessment questionnaires tailored to applications and infrastructure (on-prem & cloud), conducting cybersecurity risk assessments using a ...
Cybersecurity Risk Analyst
Jersey City, NJ · On-site
Key responsibilities include developing and maintaining risk assessment questionnaires tailored to applications and infrastructure (on-prem & cloud), conducting cybersecurity risk assessments using a ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.10K - $132.60K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.10K - $132.60K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Risk Analyst
Dallas, TX · On-site
Key responsibilities include developing and maintaining risk assessment questionnaires tailored to applications and infrastructure (on-prem & cloud), conducting cybersecurity risk assessments using a ...
Cybersecurity Risk Analyst
Dallas, TX · On-site
Key responsibilities include developing and maintaining risk assessment questionnaires tailored to applications and infrastructure (on-prem & cloud), conducting cybersecurity risk assessments using a ...
Cybersecurity Assessment Lead
Coronado, CA · On-site
$117.70K - $159.10K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Coronado, CA · On-site
$117.70K - $159.10K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Cybersecurity Risk Analyst
Jersey City, NJ · On-site
The Information Risk Analyst/Cybersecurity Risk Analyst will be responsible for developing risk ... These assessments will be executed through a formalized risk assessment program. The role involves ...
Cybersecurity Risk Analyst
Jersey City, NJ · On-site
The Information Risk Analyst/Cybersecurity Risk Analyst will be responsible for developing risk ... These assessments will be executed through a formalized risk assessment program. The role involves ...
Key Responsibilities Risk Assessments Conduct end-to-end cybersecurity risk assessments across applications, infrastructure, and business processes Identify vulnerabilities, threats, and control gaps ...
Key Responsibilities Risk Assessments Conduct end-to-end cybersecurity risk assessments across applications, infrastructure, and business processes Identify vulnerabilities, threats, and control gaps ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Cybersecurity Risk Analyst Innovation isn't just a talking point at GM Financial, it's how we ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Cybersecurity Risk Analyst Innovation isn't just a talking point at GM Financial, it's how we ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity context, and Cybersecurity Risk Analysis Cybersecurity Architecture definition and ... Assessment, using the tools like Fence or equivalent. Good understanding with methods of ...
Cybersecurity context, and Cybersecurity Risk Analysis Cybersecurity Architecture definition and ... Assessment, using the tools like Fence or equivalent. Good understanding with methods of ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Cybersecurity Risk Analyst
Irving, TX · Hybrid
Why GMF Cybersecurity? Innovation isn't just a talking point at GM Financial, it's how we operate ... Perform third party risk assessments * Partner with Application Custodians to perform application ...
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Cyber Security Risk Assessment information
See salary details
$57K - $68.7K
1% of jobs
$68.7K - $80.5K
4% of jobs
$80.5K - $92.2K
5% of jobs
$92.2K - $103.9K
9% of jobs
$110.4K is the 25th percentile. Wages below this are outliers.
$103.9K - $115.6K
11% of jobs
$115.6K - $127.4K
10% of jobs
The median wage is $131.9K / yr.
$127.4K - $139.1K
28% of jobs
$145.9K is the 75th percentile. Wages above this are outliers.
$139.1K - $150.8K
14% of jobs
$150.8K - $162.5K
11% of jobs
$162.5K - $174.3K
4% of jobs
$174.3K - $186K
4% of jobs
$57K
$133K
$186K
How much do cyber security risk assessment jobs pay per year?
As of May 28, 2026, the average yearly pay for cyber security risk assessment in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive in Cyber Security Risk Assessment, and why are they important?
To excel in Cyber Security Risk Assessment, you need a solid understanding of information security principles, risk management frameworks, and often a degree in cybersecurity, IT, or related fields. Familiarity with tools like vulnerability scanners, SIEM systems, and certifications such as CISSP or CISM are commonly required. Analytical thinking, attention to detail, and strong communication skills help professionals effectively assess risks and convey findings to stakeholders. These skills are crucial for identifying vulnerabilities, prioritizing threats, and ensuring the organization’s data and systems are adequately protected.
What are some common challenges faced by professionals conducting cyber security risk assessments?
Professionals in cyber security risk assessment often face challenges such as keeping up with rapidly evolving threats, effectively communicating technical risks to non-technical stakeholders, and ensuring comprehensive coverage across complex IT environments. Balancing thoroughness with tight deadlines can also be demanding, as assessments must be both detailed and timely. Collaborating with various departments to gather accurate information and maintain up-to-date asset inventories is crucial for effective risk analysis and mitigation.
What is a cyber security risk assessment?
A cyber security risk assessment is a process used to identify, evaluate, and prioritize potential threats and vulnerabilities that could negatively impact an organization's information systems. By analyzing assets, threats, vulnerabilities, and impacts, organizations can determine the likelihood and consequences of cyber incidents. The goal is to implement appropriate measures to reduce risks to acceptable levels, ensuring data protection and regulatory compliance. Regular risk assessments help organizations stay ahead of evolving cyber threats and make informed security decisions.
What is the difference between Cyber Security Risk Assessment vs Cyber Security Analyst?
| Aspect | Cyber Security Risk Assessment | Cyber Security Analyst |
|---|---|---|
| Primary Focus | Identifying and evaluating security risks and vulnerabilities | Monitoring, analyzing, and responding to security threats |
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment teams, consulting firms, security departments | Security operations centers, IT departments, incident response teams |
While both roles require similar certifications and work within cybersecurity, a Cyber Security Risk Assessment focuses on evaluating potential vulnerabilities and risks to an organization’s assets. In contrast, a Cyber Security Analyst actively monitors and responds to security threats, ensuring ongoing protection. Understanding these differences helps organizations assign the right responsibilities to each role.
More about Cyber Security Risk Assessment jobs
What cities are hiring for Cyber Security Risk Assessment jobs? Cities with the most Cyber Security Risk Assessment job openings:
What states have the most Cyber Security Risk Assessment jobs? States with the most job openings for Cyber Security Risk Assessment jobs include:
What job categories do people searching Cyber Security Risk Assessment jobs look for? The top searched job categories for Cyber Security Risk Assessment jobs are:
Full-time
Posted 5 days ago
Job description
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment
Overview:
The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on cybersecurity, risk analysis, and program integrity. This role is responsible for enhancing operational processes, developing standard operating procedures (SOPs), and ensuring the confidentiality, integrity, and effectiveness of security-related initiatives. The SME works cross-functionally to evaluate systems, identify vulnerabilities, and recommend mitigation strategies in alignment with federal and industry standards.
________________________________________
Key Responsibilities:
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management.
Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation.
Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures.
Identify, evaluate, and report on system vulnerabilities, threats, and security gaps.
Review and provide recommendations on program-level documentation, including:
o Requirements specifications
o System architecture and design documents
o Test plans and security plans
Develop and document security evaluation test plans and procedures.
Support the development and implementation of information security policies, standards, and guidance.
Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB).
Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts.
Coordinate with cross-functional teams and stakeholders to support security testing and program objectives.
Lead or participate in technical exchange meetings, documenting outcomes and action items.
Prepare and deliver briefings to leadership on project status, risks, and key findings.
Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences.
Provide oversight for the design, development, and implementation of security support systems.
Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
________________________________________
Qualifications:
Education:
o Master's degree (MS/MA) in Cybersecurity, Information Technology, Computer Science, or a related field
Experience:
o Minimum of 8+ years of relevant experience in cybersecurity, risk management, or assessment operations
o Experience supporting federal or highly regulated environments preferred
Certifications (preferred):
o CISSP, CISM, CISA, CEH, or other relevant industry certifications
________________________________________
Required Skills & Expertise:
Strong knowledge of cybersecurity frameworks and standards (FISMA, NIST, OMB, etc.)
Experience with risk assessments, vulnerability analysis, and security testing methodologies
Ability to translate complex technical concepts into clear documentation and briefings
Familiarity with security documentation development, including risk assessments, contingency plans, and test reports
Strong analytical, problem-solving, and communication skills
Ability to work independently and collaboratively in a fast-paced environment