ZipRecruiter

Log In

1

Cyber Security Risk Assessment Jobs in Boca Raton, FL

Phiston Technologies, Inc.

Be Seen First

Senior Controls Engineer

Miramar, FL · On-site

$90K - $125K/yr

Automation cybersecurity fundamentals: firewalls, access controls, RFID * Excellent troubleshooting ... Knowledge of safety standards (ISO, OSHA) and automation risk assessment * Certification in ...

next page

Showing results 1-20

All JobsCyber Security Risk Assessment JobsCyber Security Risk Assessment Jobs in Boca Raton, FL

Cyber Security Risk Assessment information

See Boca Raton, FL salary details

$54.1K

$126.2K

$176.5K

How much do cyber security risk assessment jobs pay per year?

As of Jun 14, 2026, the average yearly pay for cyber security risk assessment in Boca Raton, FL is $126,176.00, according to ZipRecruiter salary data. Most workers in this role earn between $105,300.00 and $142,300.00 per year, depending on experience, location, and employer.

Can you make $500,000 a year in cyber security?

Cyber security professionals, especially those in senior roles such as security architects or chief information security officers, can earn $500,000 or more annually, often through a combination of base salary, bonuses, and stock options. Achieving this level typically requires extensive experience, advanced certifications like CISSP or CISM, and working in high-demand industries or organizations with complex security needs.

What are the key skills and qualifications needed to thrive in Cyber Security Risk Assessment, and why are they important?

To excel in Cyber Security Risk Assessment, you need a solid understanding of information security principles, risk management frameworks, and often a degree in cybersecurity, IT, or related fields. Familiarity with tools like vulnerability scanners, SIEM systems, and certifications such as CISSP or CISM are commonly required. Analytical thinking, attention to detail, and strong communication skills help professionals effectively assess risks and convey findings to stakeholders. These skills are crucial for identifying vulnerabilities, prioritizing threats, and ensuring the organization’s data and systems are adequately protected.

What is the role of risk assessment in cyber security?

In cyber security, a risk assessment is a process that identifies, evaluates, and prioritizes potential threats and vulnerabilities to an organization's information systems. It helps security professionals, such as cyber security risk assessors, determine where to allocate resources and implement controls to reduce the likelihood and impact of cyber threats. Conducting regular risk assessments is essential for maintaining an effective security posture and complying with industry standards and regulations.

What is the difference between Cyber Security Risk Assessment vs Cyber Security Analyst?

AspectCyber Security Risk AssessmentCyber Security Analyst
Primary FocusIdentifying and evaluating security risks and vulnerabilitiesMonitoring, analyzing, and responding to security threats
CertificationsCompTIA Security+, CISSP, CISACompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment teams, consulting firms, security departmentsSecurity operations centers, IT departments, incident response teams

While both roles require similar certifications and work within cybersecurity, a Cyber Security Risk Assessment focuses on evaluating potential vulnerabilities and risks to an organization’s assets. In contrast, a Cyber Security Analyst actively monitors and responds to security threats, ensuring ongoing protection. Understanding these differences helps organizations assign the right responsibilities to each role.

Is SOC analyst a high paying job?

SOC analysts typically earn competitive salaries that increase with experience, certifications, and the size of the organization. Entry-level positions may start at average wages, while experienced analysts with certifications like CISSP or CEH can earn higher salaries, making it a financially rewarding cybersecurity role.

What are some common challenges faced by professionals conducting cyber security risk assessments?

Professionals in cyber security risk assessment often face challenges such as keeping up with rapidly evolving threats, effectively communicating technical risks to non-technical stakeholders, and ensuring comprehensive coverage across complex IT environments. Balancing thoroughness with tight deadlines can also be demanding, as assessments must be both detailed and timely. Collaborating with various departments to gather accurate information and maintain up-to-date asset inventories is crucial for effective risk analysis and mitigation.

What is a cyber security risk assessment?

A cyber security risk assessment is a process used to identify, evaluate, and prioritize potential threats and vulnerabilities that could negatively impact an organization's information systems. By analyzing assets, threats, vulnerabilities, and impacts, organizations can determine the likelihood and consequences of cyber incidents. The goal is to implement appropriate measures to reduce risks to acceptable levels, ensuring data protection and regulatory compliance. Regular risk assessments help organizations stay ahead of evolving cyber threats and make informed security decisions.

What is the 80 20 rule in cyber security?

In cyber security risk assessment, the 80/20 rule suggests that approximately 80% of security issues are caused by 20% of vulnerabilities or threats. Security professionals focus on identifying and mitigating the most critical risks to efficiently improve overall security posture.
What are popular job titles related to Cyber Security Risk Assessment jobs in Boca Raton, FL? For Cyber Security Risk Assessment jobs in Boca Raton, FL, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Assessment jobs in Boca Raton, FL look for? The top searched job categories for Cyber Security Risk Assessment jobs in Boca Raton, FL are:
Cyber Security Risk Assessment jobs near you

IT Security & Compliance Manager

Complete Turbine Services

Coral Springs, FL • On-site

Full-time

Posted 8 days ago

Job description

Description:

Position Overview

We are seeking an IT Security & Compliance Manager to oversee, maintain, and defend our digital infrastructure while strictly enforcing federal cybersecurity requirements. In this role, you will own our compliance posture, ensuring full alignment with NIST SP 800-171, DFARS 252.204-7012, and CMMC Level 2.


The ideal candidate bridges the gap between technical execution and regulatory governance. You will be responsible for managing security operations, maintaining our System Security Plan (SSP), closing Plan of Action and Milestones (POA&M) items, and preparing the organization for a formal third-party CMMC assessment.


Key Responsibilities

  • CMMC & NIST Governance: Own, update, and enforce the System Security Plan (SSP) and Plan of Action and Milestones (POA&M). Ensure all 110 practices of NIST SP 800-171 are fully implemented and auditable.
  • Infrastructure Security Oversight: Oversee the security posture of our technical stack, ensuring secure configurations across firewalls, Endpoint Detection and Response (EDR), Remote Monitoring and Management (RMM), and cloud environments.
  • Cloud & Tenant Security: Manage data enclave boundaries and security policies, specifically optimizing and maintaining a Microsoft 365 GCC High environment to prevent CUI spillage.
  • Data Flow & CUI Management: Map, audit, and control the flow of Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) across all internal and external systems.
  • Incident Response & DFARS Reporting: Lead the incident response team. Ensure full compliance with DFARS 252.204-7012, including rapid reporting of cyber incidents to the DoD Cyber Crime Center (DC3) within 72 hours.
  • Vulnerability & Patch Management: Conduct regular internal audits, vulnerability scans, and risk assessments. Prioritize and remediate vulnerabilities across servers, endpoints, and network devices.
  • Vendor & Supply Chain Risk: Evaluate subcontractors and third-party vendors to ensure they meet mandatory DFARS flow-down requirements.
Requirements:

Required Skills & Qualifications


Compliance & Regulatory Expertise:

  • Deep, practical knowledge of NIST SP 800-171, NIST SP 800-53, DFARS 252.204-7012, and CMMC Level 2 requirements.
  • Proven experience writing, editing, and maintaining institutional IT policies, SSPs, and technical restoration playbooks.
  • Experience navigating formal external IT audits or third-party assessments (C3PAO).

Technical Environment Experience:

  • Strong background managing enterprise firewalls and network segmentation.
  • Hands-on experience with modern EDR platforms and centralized RMM tools for patch deployment and monitoring.
  • Deep familiarity with Microsoft 365 GCC High tenant administration, including data classification and sensitivity labels.
  • Familiarity with secure file migration, data backup architectures, and Disaster Recovery (DR) execution.

Education & Experience Requirements

  • Education: Bachelor’s degree in Cybersecurity, Computer Science, IT Management, or a related technical field (equivalent practical experience considered).
  • Experience: 5+ years of experience in IT systems administration or cybersecurity, with at least 2 years directly managing compliance frameworks within the DoD supply chain.
  • Citizenship: Must be a U.S. Citizen (required for accessing/managing CUI/ITAR-regulated data).
  • Certifications (Highly Desired):
    • Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM).
    • CMMC Certified Professional (CCP) or CMMC Certified Assessor (CCA).
    • CompTIA Security+ or CySA+ (minimum baseline).