Subject Matter Expert (SME) Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Quick apply
Subject Matter Expert (SME) Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Quick apply
Subject Matter Expert (SME) Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment Overview: The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on ...
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various locations throughout Maryland) Rate: Competitive, DOE (W2 or 1099) Position Overview We are seeking a ...
Quick apply
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various locations throughout Maryland) Rate: Competitive, DOE (W2 or 1099) Position Overview We are seeking a ...
Tallahassee, FL · On-site
JOB TITLE : Cybersecurity Risk Assessor LOCATION : Florida (Central/South Florida preferred ... Populate assessment findings into the engagement's standardized risk assessment tool in accordance ...
New
Quick apply
Tallahassee, FL · On-site
JOB TITLE : Cybersecurity Risk Assessor LOCATION : Florida (Central/South Florida preferred ... Populate assessment findings into the engagement's standardized risk assessment tool in accordance ...
New
Perform cybersecurity risk assessments for all qualifying IT and OT environment changes. * Coordinate with the cybersecurity architecture senior specialist to validate risk assessment findings, and ...
Perform cybersecurity risk assessments for all qualifying IT and OT environment changes. * Coordinate with the cybersecurity architecture senior specialist to validate risk assessment findings, and ...
Perform cybersecurity risk assessments for all qualifying IT and OT environment changes. * Coordinate with the cybersecurity architecture senior specialist to validate risk assessment findings, and ...
Perform cybersecurity risk assessments for all qualifying IT and OT environment changes. * Coordinate with the cybersecurity architecture senior specialist to validate risk assessment findings, and ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
The Risk Assessment Lead serves as a key member of the Cybersecurity Risk Oversight team within the Second Line of Defense (2LoD). This role is accountable for independently assessing and challenging ...
Senior Cybersecurity Risk Assessor LOCATION : Florida (Central/South Florida preferred) -- field ... This role owns the full assessment cycle at each assigned entity -- from evidence collection ...
New
Quick apply
Senior Cybersecurity Risk Assessor LOCATION : Florida (Central/South Florida preferred) -- field ... This role owns the full assessment cycle at each assigned entity -- from evidence collection ...
New
Coronado, CA · On-site
$117K - $159K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Coronado, CA · On-site
$117K - $159K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
$98K - $133K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
$98K - $133K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Virginia Beach, VA · On-site
$98K - $133K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Virginia Beach, VA · On-site
$98K - $133K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
$117K - $159K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
$117K - $159K/yr
The Cybersecurity Assessment Lead serves as the senior assessor overseeing cybersecurity assessment activities supporting Risk Management Framework (RMF) authorization processes for customer networks ...
Jersey City, NJ · On-site
The role involves developing and conducting risk assessments for applications, infrastructure, and vendors, while collaborating with IT teams to address cybersecurity risks and improve risk ...
Jersey City, NJ · On-site
The role involves developing and conducting risk assessments for applications, infrastructure, and vendors, while collaborating with IT teams to address cybersecurity risks and improve risk ...
Pittsburgh, PA · On-site
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, and senior leaders to ensure cybersecurity risks are understood, documented, mitigated, and monitored in ...
Pittsburgh, PA · On-site
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, and senior leaders to ensure cybersecurity risks are understood, documented, mitigated, and monitored in ...
$57K - $68.7K
1% of jobs
$68.7K - $80.5K
4% of jobs
$80.5K - $92.2K
5% of jobs
$92.2K - $103.9K
9% of jobs
$110.4K is the 25th percentile. Wages below this are outliers.
$103.9K - $115.6K
11% of jobs
$115.6K - $127.4K
10% of jobs
The median wage is $131.9K / yr.
$127.4K - $139.1K
28% of jobs
$145.9K is the 75th percentile. Wages above this are outliers.
$139.1K - $150.8K
14% of jobs
$150.8K - $162.5K
11% of jobs
$162.5K - $174.3K
4% of jobs
$174.3K - $186K
4% of jobs
$57K
$133K
$186K
| Aspect | Cyber Security Risk Assessment | Cyber Security Analyst |
|---|---|---|
| Primary Focus | Identifying and evaluating security risks and vulnerabilities | Monitoring, analyzing, and responding to security threats |
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment teams, consulting firms, security departments | Security operations centers, IT departments, incident response teams |
While both roles require similar certifications and work within cybersecurity, a Cyber Security Risk Assessment focuses on evaluating potential vulnerabilities and risks to an organization’s assets. In contrast, a Cyber Security Analyst actively monitors and responds to security threats, ensuring ongoing protection. Understanding these differences helps organizations assign the right responsibilities to each role.

Full-time
Re-posted 18 days ago
Subject Matter Expert (SME) Cybersecurity & Risk Assessment
Overview:
The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on cybersecurity, risk analysis, and program integrity. This role is responsible for enhancing operational processes, developing standard operating procedures (SOPs), and ensuring the confidentiality, integrity, and effectiveness of security-related initiatives. The SME works cross-functionally to evaluate systems, identify vulnerabilities, and recommend mitigation strategies in alignment with federal and industry standards.
________________________________________
Key Responsibilities:
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management.
Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation.
Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures.
Identify, evaluate, and report on system vulnerabilities, threats, and security gaps.
Review and provide recommendations on program-level documentation, including:
o Requirements specifications
o System architecture and design documents
o Test plans and security plans
Develop and document security evaluation test plans and procedures.
Support the development and implementation of information security policies, standards, and guidance.
Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB).
Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts.
Coordinate with cross-functional teams and stakeholders to support security testing and program objectives.
Lead or participate in technical exchange meetings, documenting outcomes and action items.
Prepare and deliver briefings to leadership on project status, risks, and key findings.
Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences.
Provide oversight for the design, development, and implementation of security support systems.
Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
________________________________________
Qualifications:
Education:
o Masters degree (MS/MA) in Cybersecurity, Information Technology, Computer Science, or a related field
Experience:
o Minimum of 8+ years of relevant experience in cybersecurity, risk management, or assessment operations
o Experience supporting federal or highly regulated environments preferred
Certifications (preferred):
o CISSP, CISM, CISA, CEH, or other relevant industry certifications
________________________________________
Required Skills & Expertise:
Strong knowledge of cybersecurity frameworks and standards (FISMA, NIST, OMB, etc.)
Experience with risk assessments, vulnerability analysis, and security testing methodologies
Ability to translate complex technical concepts into clear documentation and briefings
Familiarity with security documentation development, including risk assessments, contingency plans, and test reports
Strong analytical, problem-solving, and communication skills
Ability to work independently and collaboratively in a fast-paced environment