Responsibilities Risk Assessment & Management Assist in conducting information security risk assessments across business units, systems, and processes in accordance with established methodologies.
Responsibilities Risk Assessment & Management Assist in conducting information security risk assessments across business units, systems, and processes in accordance with established methodologies.
Lead targeted security risk assessments across the organization, proactively identifying gaps and risks which pose a threat to the safety and security * Analyze risk data to identify patterns of ...
Lead targeted security risk assessments across the organization, proactively identifying gaps and risks which pose a threat to the safety and security * Analyze risk data to identify patterns of ...
Information Security Risk Analyst
New Brunswick, NJ · On-site
$108K/yr
Facilitates and evaluates internal and third-party information security risk assessments. * Provides risk remediation recommendations to mitigate identified control gaps and promotes awareness of ...
Information Security Risk Analyst
New Brunswick, NJ · On-site
$108K/yr
Facilitates and evaluates internal and third-party information security risk assessments. * Provides risk remediation recommendations to mitigate identified control gaps and promotes awareness of ...
Perform gap analysis between current state of cybersecurity risk /risk assessments and required criteria * Ensure a clear process is defined and then followed through for security risks risk ...
Perform gap analysis between current state of cybersecurity risk /risk assessments and required criteria * Ensure a clear process is defined and then followed through for security risks risk ...
Security Risk Lead
Denver, CO · On-site
Lead targeted security risk assessments across the organization, proactively identifying gaps and risks which pose a threat to the safety and security * Analyze risk data to identify patterns of ...
Security Risk Lead
Denver, CO · On-site
Lead targeted security risk assessments across the organization, proactively identifying gaps and risks which pose a threat to the safety and security * Analyze risk data to identify patterns of ...
Risk Assessment Specialist
Washington, DC · Hybrid
$105K/yr
Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ... Experience with Application Security Threat and Attack Modeling (ASTAM) * Experience with the ...
Risk Assessment Specialist
Washington, DC · Hybrid
$105K/yr
Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ... Experience with Application Security Threat and Attack Modeling (ASTAM) * Experience with the ...
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Quick apply
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Quick apply
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Quick apply
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Senior Technical Program Manager, Security Risk and M&A Security
Livingston, NJ · On-site
$140K - $171K/yr
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Senior Technical Program Manager, Security Risk and M&A Security
Livingston, NJ · On-site
$140K - $171K/yr
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Quick apply
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
Quick apply
Alongside the build work, you'll run the ongoing operations of the risk program, from recurring risk reviews with security leadership to the annual enterprise risk assessment. You'll also keep our M& ...
This role involves delivering against an information security and cybersecurity assessment plan, performing risk assessments, and ensuring compliance with security policies and standards.
New
This role involves delivering against an information security and cybersecurity assessment plan, performing risk assessments, and ensuring compliance with security policies and standards.
New
Senior Security Risk Management Analyst - Remote Location: Remote Duration: 6 Months Only W2 ... Our client is seeking an experienced professional to join our Third-Party/ Vendor Risk Assessment ...
Senior Security Risk Management Analyst - Remote Location: Remote Duration: 6 Months Only W2 ... Our client is seeking an experienced professional to join our Third-Party/ Vendor Risk Assessment ...
Risk Assessment Specialist
Washington, DC · On-site
$105K/yr
... security issues. With over 50 years of business expertise and consistent growth, we are known for ... Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ...
Risk Assessment Specialist
Washington, DC · On-site
$105K/yr
... security issues. With over 50 years of business expertise and consistent growth, we are known for ... Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ...
Risk Assessment Specialist
Washington, DC · On-site
$105K/yr
... security issues. With over 50 years of business expertise and consistent growth, we are known for ... Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ...
Risk Assessment Specialist
Washington, DC · On-site
$105K/yr
... security issues. With over 50 years of business expertise and consistent growth, we are known for ... Responsibilities The Risk Assessment Specialist will provide advanced analytical support to the ...
Responsibilities include owning specific functional responsibilities that directly contribute to security risk assessment deliverables and organizational risk posture. However, the role as an ...
Responsibilities include owning specific functional responsibilities that directly contribute to security risk assessment deliverables and organizational risk posture. However, the role as an ...
Responsibilities include owning specific functional responsibilities that directly contribute to security risk assessment deliverables and organizational risk posture. However, the role as an ...
Responsibilities include owning specific functional responsibilities that directly contribute to security risk assessment deliverables and organizational risk posture. However, the role as an ...
... security and risk management. * Functional knowledge of some CISSP security domains and information ... Demonstrated experience with controls definition, development, implementation and assessment.
Quick apply
... security and risk management. * Functional knowledge of some CISSP security domains and information ... Demonstrated experience with controls definition, development, implementation and assessment.
Assess the adequacy of severity ratings, root cause analyses, action plans, and closure evidence ... Focus: Enterprise Technology and Information Security Risk * Provide independent challenge and ...
Assess the adequacy of severity ratings, root cause analyses, action plans, and closure evidence ... Focus: Enterprise Technology and Information Security Risk * Provide independent challenge and ...
Freelance Security Risk Assessment information
See salary details
$23.52 is the 25th percentile. Wages below this are outliers.
$14.90 - $25.57
31% of jobs
The median wage is $32.14 / hr.
$25.57 - $36.23
31% of jobs
$36.23 - $46.90
4% of jobs
$56.23 is the 75th percentile. Wages above this are outliers.
$46.90 - $57.56
10% of jobs
$57.56 - $68.23
9% of jobs
$68.23 - $78.89
5% of jobs
$78.89 - $89.55
0% of jobs
$89.55 - $100.22
8% of jobs
$100.22 - $110.88
0% of jobs
$110.88 - $121.55
0% of jobs
$121.55 - $132.21
1% of jobs
$14
$47
$132
How much do freelance security risk assessment jobs pay per hour?
What is the difference between Freelance Security Risk Assessment vs Security Consultant?
| Aspect | Freelance Security Risk Assessment | Security Consultant |
|---|---|---|
| Credentials | Certifications like CISSP, CISA, or CEH often required | Similar certifications, often with additional experience requirements |
| Work Environment | Independent, project-based, often remote or on-site at client locations | Typically employed by firms or consulting agencies, may work on multiple projects |
| Industry Usage | Used by organizations seeking independent risk assessments | Engaged for broader security strategy, policy development, and consulting |
While both roles involve assessing security risks, Freelance Security Risk Assessments focus on independent, project-specific evaluations, whereas Security Consultants often provide ongoing security advice and strategy within organizations or consulting firms.

Full-time
Posted 26 days ago
Victaulic rating
7.1
Based on 34 frontline employees who took The Breakroom Quiz
366th of 529 rated manufacturers
Job description
Job Description
The Security Risk & Compliance Analyst supports the organizations global information security program by assisting in the identification, assessment, and management of information security risks and compliance demands across Victaulic's entire organization. This position plays an integral role in ensuring the company meets its obligations under domestic and international regulatory frameworks, including but not limited to, NIST CSF, ISO27001, CMMC and the EU's NIS2 Directive. The analyst will work closely with internal stakeholders, external auditors, and third-party vendors to support a culture of security awareness and continuous compliance improvement.
The ideal candidate for this role will have knowledge of, if not actual experience, in the processes of obtaining and maintaining compliance with security frameworks as well as an understanding of industry standard Information Technology auditing.
Responsibilities
Risk Assessment & Management
Assist in conducting information security risk assessments across business units, systems, and processes in accordance with established methodologies.
Document risk findings, assign risk ratings, and track remediation activities through the risk register.
Support the development and maintenance of risk treatment plans in coordination with system owners and IT teams.
Participate in annual and ad hoc enterprise risk reviews, contributing analysis and supporting materials.
Compliance & Framework Management
Support compliance activities related to NIST Cybersecurity Framework (CSF), ISO/IEC 27001, CMMC (Cybersecurity Maturity Model Certification), and the EU NIS2 Directive.
Conduct gap analyses against applicable frameworks and assist in developing remediation roadmaps.
Maintain compliance documentation, including policies, procedures, control evidence, and assessment reports.
Monitor regulatory changes and emerging framework updates; summarize implications for the security program.
Third-Party & Audit Management
Coordinate and support third-party security audits and assessments, including scheduling, evidence collection, and stakeholder communication.
Assist in managing vendor risk assessments for new and existing third-party vendors and suppliers.
Track audit findings and corrective action plans, ensuring timely remediation and closure.
Serve as a liaison between internal teams and external auditors during certification audits.
Policy, Documentation & Awareness
Assist in drafting, reviewing, and updating information security policies, standards, and procedures.
Support the delivery of security awareness training and phishing simulation programs.
Maintain organized records of all compliance and risk management activities in the Governance, Risk & Compliance platform.
Collaboration & Reporting
Collaborate with IT, Legal, Operations, and other business functions to integrate security requirements into business processes.
Prepare regular status reports and metrics dashboards for management review.
Contribute to the continuous improvement of the information security program by identifying process gaps and recommending enhancements.
Qualifications
Technical Experience
Foundational understanding of information security principles, including confidentiality, integrity, and availability (CIA).
Basic understanding of risk assessment methodologies and risk management concepts.
Familiarity with third-party risk management and audit processes.
Strong analytical and problem-solving skills with attention to detail.
Capacity to understand legacy and progressive technology and security controls along with respective risk.
Working knowledge of technologies such as cloud computing, DevOps, and application security is required.
General Requirements
Analytical Thinking - applies structured reasoning to evaluate risk and compliance data objectively
Integrity & Accountability - Handles sensitive security information with discretion and professionalism.
Communication - Clearly translates security requirements and findings for varied audiences across the organization
Continuous Learning - Proactively keeps pace with evolving security frameworks, threats, and regulatory requirements
Collaboration - Builds effective working relationships across IT, operations, and business functions globablly
Detail Orientation - Produces thorough, accurate documentation and maintains meticulous records of compliance activities
Education & Certifications
0 - 2 years' experience in information security, IT audit, risk management, or a related field.
Bachelor's degree, cybersecurity certification, or equivalent experience in an information security or related field.
A minimum of an entry-level certification such as the CompTIA Security+ certification
Additional Risk & Compliance certification(s), such as CISA, a plus
Work Environment & Physical Requirements
This position is primarily office-based with hybrid flexibility. The role may require occasional visits to manufacturing facilities domestically and internationally. Ability to work across global time zones may be required for coordination with European and Asian teams.
Victaulic is an Equal Employment Opportunity (EOE/M/F/Vets/Disabled) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, gender, color, religion, national origin, age, disability, veteran status, sexual orientation, genetic data, or other legally protected status. (Background checks may be required as part of our pre-employment process).
What Victaulic employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Victaulic
Sourced by ZipRecruiter
Industry
Industrial machinery manufacturing
Company size
1,001 - 5,000 Employees
Headquarters location
Easton, PA, US
Year founded
1919