2

Remote Security Control Assessor Jobs in Oregon (NOW HIRING)

Remote: US What You'll Do: * Scaled and resilient security operations capabilities aligned with ... Oversee risk assessments, privacy impact analyses, and security reviews. * Maintain and evolve the ...

Remote: US What You'll Do: * Scaled and resilient security operations capabilities aligned with ... Oversee risk assessments, privacy impact analyses, and security reviews. * Maintain and evolve the ...

... assessments, and log analysis * Engage vendors, Infrastructure, IT, GRC, Cloud, and Application ... remote Notice of Collection and Use of Personal Information for California Residents: California ...

Maintain code repositories using modern version control and CI/CD pipelines. * Apply secure coding ... Minimum Security Clearance * Must be eligible and pass security screening to obtain DoD Top Secret ...

United States - Remote Clearance: Ability to obtain and maintain a Public Trust Salary Range: 175K ... SSP progress, ISSO engagement, security control mapping, and evidence collection so that ...

Remote (U.S.) Clearance: Ability to obtain and maintain a Public Trust Salary Range: 100K - 120K ... Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams ...

... control gaps and security risks uncovered throughout the assessment lifecycle. * Stay ahead of ... Wellness program incentives Onboarding & Travel This is a remote role, with an in-person onboarding ...

... remote model. This is an excellent opportunity to join a leading Value-Added Reseller (VAR ... Support RFPs, RFIs, security assessments, and technical evaluations. Collaborate with engineering ...

Senior Privacy Engineer

OR · On-site +1

$104K - $143K/yr

... control, encryption, audit logging, or data minimization * Experience translating privacy, security ... REMOTE #LI-MidSenior --> use for L5, L6

DevSecOps Engineer

$77K - $85K/yr

... and security-hardened delivery practices within an active production environment - building on ... and remote backends within approved change control processes * Develop and maintain Ansible ...

next page

Showing results 1-20

Remote Security Control Assessor information

See Oregon salary details

$9

$62

$82

How much do remote security control assessor jobs pay per hour?

As of Jul 16, 2026, the average hourly pay for remote security control assessor in Oregon is $62.13, according to ZipRecruiter salary data. Most workers in this role earn between $53.37 and $71.92 per hour, depending on experience, location, and employer.

What is a Remote Security Control Assessor job?

A Remote Security Control Assessor evaluates and ensures that an organization's security controls comply with industry standards and regulations. They perform risk assessments, analyze security policies, and recommend improvements to enhance cybersecurity. Working remotely, they assess systems, review documentation, and collaborate with internal teams and stakeholders. Their goal is to identify vulnerabilities and ensure that security frameworks align with compliance requirements such as NIST, ISO 27001, or FedRAMP.

What are the key skills and qualifications needed to thrive in the Remote Security Control Assessor position, and why are they important?

To thrive as a Remote Security Control Assessor, you need expertise in information security frameworks, risk assessment methodologies, and IT auditing, typically supported by a bachelor's degree in cybersecurity or a related field. Familiarity with assessment tools (like Nessus or NIST compliance checklists), experience with GRC (governance, risk, compliance) platforms, and relevant certifications such as CISSP or CISA are highly valued. Excellent analytical skills, attention to detail, and strong written and verbal communication abilities help remote assessors excel, especially when working independently or with cross-functional teams. These skills are critical for accurately evaluating security controls, ensuring regulatory compliance, and communicating findings effectively in a remote work environment.

What are some typical responsibilities of a Remote Security Control Assessor on a day-to-day basis?

A Remote Security Control Assessor typically reviews security policies, analyzes technical controls, and conducts risk assessments to ensure compliance with industry standards and client requirements. Daily tasks often include evaluating documentation, coordinating virtual meetings with stakeholders, preparing assessment reports, and recommending remediation actions for identified vulnerabilities. You’ll collaborate with IT teams, compliance officers, and management to gather evidence and share assessment findings. Strong organizational and communication skills are essential, as much of the work is self-directed and relies on effective remote coordination with clients and internal teams.

What are popular job titles related to Remote Security Control Assessor jobs in Oregon? For Remote Security Control Assessor jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Remote Security Control Assessor jobs in Oregon look for? The top searched job categories for Remote Security Control Assessor jobs in Oregon are:
Infographic showing various Remote Security Control Assessor job openings in Oregon as of July 2026, with employment types broken down into 100% Full Time. Highlights an 100% Remote job distribution, with an average salary of $129,238 per year, or $62.1 per hour.
Cyber Security Framework Engineer - Remote

Cyber Security Framework Engineer - Remote

micro1 AI

Portland, OR • Remote

$50 - $90/hr

Part-time

This job post has expired 1 day ago. Applications are no longer accepted.


Job description

Role Title: Red Team Lead (Offensive Cybersecurity)


Role Type: Contractor


Location: Remote


micro1 is engaging Red Team Leads (Offensive Cybersecurity) to contribute expertise to a customer's critical cybersecurity project. In this role, you'll apply your expertise to help train next-generation AI systems. Your work will shape how models learn, reason, and perform through high-quality, real-world input. No prior experience in AI is required — your domain knowledge is what matters.


Scope of Work

  1. Develop comprehensive taxonomies for cyber-capability tasks and attack stages relevant to modern threat landscapes.
  2. Design and validate evaluation frameworks for offensive security, focusing on real-world scenarios involving exploit chains, malware, cloud/appsec, and social engineering.
  3. Create safe and effective proxy tasks to simulate advanced attack vectors while maintaining strict boundaries and ethical controls.
  4. Formulate robust scoring rubrics to assess attack sophistication, coverage, and impact across diverse domains.
  5. Review, critique, and enhance benchmarks for red team operations to ensure alignment with evolving security risks and best practices.
  6. Produce clear, well-documented methodologies and technical write-ups, communicating complex security concepts to both technical and non-technical audiences.
  7. Collaborate asynchronously with project stakeholders to iterate on frameworks and incorporate feedback into deliverables.


Preferred Qualifications

  1. 5+ years of hands-on experience in offensive cybersecurity, red teaming, exploit development, or vulnerability research (8–20 years preferred for senior contributors).
  2. Track record as a principal security engineer, exploit developer, cloud red-team lead, malware reverse-engineer, or security researcher specializing in attack chains or social engineering.
  3. Deep expertise in cyber attack methodologies, exploit chains, and cloud/application security assessments.
  4. Strong background in malware analysis, reverse engineering, and/or social engineering tactics and defenses.
  5. Demonstrated ability to produce clear, actionable written and verbal communication for a variety of audiences.
  6. Advanced degree, relevant professional security certifications, or equivalent operational experience highly valued.
  7. Experience building benchmarking or evaluation frameworks in cybersecurity is a plus.