2

Remote Security Risk Assessment Jobs (NOW HIRING)

Responsibilities : • Vendor Information Risk Assessments • Perform formal risk assessments on ... vendor security documentation as part of assessment activities. • Help establish risk and ...

Cover security, operational, regulatory, and counterparty risk, including the risk register, annual assessments, scenario analyses, and escalation framework across all entities. * Own the Information ...

Partner with Legal, Compliance, Information Security, Affiliate Risk, and business stakeholders to ... Experience leading a third-party risk management program, including risk assessments, due diligence ...

Risk Assessment & Operational Support * Monitor national and international events to identify ... Strategic thinker with demonstrated leadership experience across distributed or remote business ...

Information Security Analyst

Salem, OR · On-site +1

$46 - $51/hr

Conduct formal risk assessments on partner and vendor connections * Validate data sharing arrangements and agreements * Review third-party SOC reports and security documentation * Establish risk ...

next page

Showing results 1-20

Remote Security Risk Assessment information

See salary details

$10

$50

$69

How much do remote security risk assessment jobs pay per hour?

As of Jul 13, 2026, the average hourly pay for remote security risk assessment in the United States is $50.41, according to ZipRecruiter salary data. Most workers in this role earn between $40.87 and $60.10 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Remote Security Risk Assessor, and why are they important?

To thrive as a Remote Security Risk Assessor, you need expertise in cybersecurity principles, risk analysis, and a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with tools like vulnerability scanners, security information and event management (SIEM) systems, and risk assessment frameworks (e.g., NIST, ISO 27001) is essential. Strong analytical thinking, communication skills, and attention to detail help in accurately identifying and communicating risks to stakeholders. These skills and qualities are vital to ensure organizations can proactively mitigate threats and maintain robust security postures in remote or distributed environments.

What is the difference between Remote Security Risk Assessment vs Cybersecurity Analyst?

AspectRemote Security Risk AssessmentCybersecurity Analyst
CredentialsCertifications like CISSP, CISA, CISMCertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentRemote or on-site, focusing on risk evaluationRemote or on-site, focusing on security monitoring and incident response
Industry UsageUsed in risk management, compliance, and audit contextsUsed in security operations, threat analysis, and incident handling

Remote Security Risk Assessments and Cybersecurity Analysts both require security certifications and often work in similar environments. However, risk assessors focus on evaluating vulnerabilities and compliance, while analysts handle ongoing security monitoring and incident response. Understanding these differences helps organizations assign the right roles for their security needs.

What is a Remote Security Risk Assessment?

A Remote Security Risk Assessment is a process where security professionals evaluate an organization's security risks, vulnerabilities, and threats without being physically present on-site. This assessment is typically conducted through virtual meetings, digital questionnaires, and remote access to systems and documentation. The goal is to identify potential security gaps and recommend improvements to protect sensitive data and systems from cyber threats. Remote assessments have become increasingly popular due to their flexibility, cost-effectiveness, and ability to serve organizations regardless of location.

What are some common challenges faced by professionals in remote security risk assessment roles?

Professionals in remote security risk assessment often encounter challenges such as limited on-site visibility, reliance on digital communication, and the need to assess complex IT environments from afar. Effective collaboration with on-site staff and stakeholders is essential to gather accurate information and implement recommendations. Additionally, staying up-to-date with evolving cybersecurity threats and maintaining clear documentation are vital for success in this role.
More about Remote Security Risk Assessment jobs
What cities are hiring for Remote Security Risk Assessment jobs? Cities with the most Remote Security Risk Assessment job openings:
What are the most commonly searched types of Security Risk Assessment jobs? The most popular types of Security Risk Assessment jobs are:
What states have the most Remote Security Risk Assessment jobs? States with the most job openings for Remote Security Risk Assessment jobs include:
What job categories do people searching Remote Security Risk Assessment jobs look for? The top searched job categories for Remote Security Risk Assessment jobs are:
Infographic showing various Remote Security Risk Assessment job openings in the United States as of July 2026, with employment types broken down into 3% As Needed, 77% Full Time, 17% Part Time, and 3% Contract. Highlights an 93% Physical, 1% Hybrid, and 6% Remote job distribution, with an average salary of $104,848 per year, or $50.4 per hour.
Information Security Analyst 2

Full-time

Posted 6 days ago


Job description

Job Summary:
Net2Source Inc. is a global leader in workforce solutions, recognized for its rapid growth and innovative approach to connecting talent with opportunities. They are seeking an Information Security Analyst 2 to join their Information Risk Management team, where the primary responsibilities include performing risk assessments, ensuring compliance with security policies, and collaborating on data analysis and reporting.
Responsibilities:
• Vendor Information Risk Assessments
• Perform formal risk assessments on partner and vendor connections, evaluating vendor processes at the point of engagement with client.
• Ensure sufficient validation of data sharing arrangements and agreements to protect client's sensitive information.
• Confirm business objectives align with the type and volume of data used, maintaining a "need to know/use" mindset.
• Review third-party SOC reports and vendor security documentation as part of assessment activities.
• Help establish risk and remediation ownership for identified vendor-related risks and document findings in the Risk Register.
• Security Controls Baseline Assessments
• Assess moderately complex platforms and systems against client security and configuration standards.
• Evaluate and process exceptions to information security policies and standards.
• Perform compliance control validation testing to determine the operating effectiveness of IT controls for scoped systems.
• Consult with technology units on IT general controls (ITGCs) and compliance matters.
• Champion information security policies, standards, controls, and processes so compliance requirements are addressed as part of business-as-usual operations.
• Internal Risk Assessments
• Identify, document, and elevate visibility to information risk where business direction creates potential exposure to employee, athlete, and product sensitive data streams.
• Identify and profile client systems and processes that require risk assessments; scope specific assessments accordingly.
• Perform detailed analysis of threats and vulnerabilities across information security domains including network security, asset security, security engineering, identity and access management, security operations, and software development security.
• Review key system configurations and complex IT infrastructures (e.g., cloud services).
• Communicate effectively through risk reports, presentations, and stakeholder interactions to drive remediation of identified risks.
• Data Analysis and Other Projects
• Support vendor risk management metrics, reporting, and master data stewardship to improve accuracy, timeliness, and completeness.
• Provide analysis and insights into data supporting the effectiveness of technical and process based cybersecurity controls.
• Collaborate on process improvements for data retrieval, analysis, and risk assessment intake.
• Contribute to IRM team projects and strategic initiatives as assigned, including documentation in ServiceNow (SNOW) and Box.
• Support the risk analysis intake process and participate in daily standups and weekly process meetings.
• General Responsibilities
• Execute targeted internal and external (vendor) risk assessments in support of IRM strategy, following established team processes and enablers.
• Be proactive in anticipating next steps in the risk assessment process and take action accordingly.
• Collaborate with team members on assessment approach, scoping, documentation, and issue presentation activities.
• Serve as an information security and CIS ambassador to client lines of business and management.
• Provide enforcement of security policies, standards, and procedures by working cross functionally with Compliance and Governance functions.
• Stay current on information security technologies, trends, standards, best practices, and emerging threats and vulnerabilities.
Qualifications:
Required:
• 2-5 years' minimum experience required in tech, cybersecurity, risk management, or similar role
• Bachelor's degree in Business Information Management, Computer Science, or a related field, OR relevant experience in lieu of a degree
• 5+ years of experience in information security, risk management, GRC, or a related field
• Knowledge of information security principles and practices, best practice security architectures, general procedures, and guidelines
• Knowledge of information security frameworks and best practices (e.g., NIST, ISO 27000, COBIT, COSO)
• Experience performing vendor/third-party risk assessments and internal information security risk assessments
• Experience assessing systems against security standards and performing control validation or baseline assessments
• Strong analytical and problem-solving skills with experience identifying solutions for complex problems in enterprise environments
• Superb communication skills (written and verbal) with comfort and experience in presentation delivery and proven persuasion skills
• The ability to appropriately communicate complex security risks to non-technical staff
• Must be trustworthy in keeping sensitive data confidential
• Demonstrated desire for continual learning and improvement
Preferred:
• Degree preferred, not a hard requirement
• CRISC, CISSP certifications preferred, not required
• Experience reviewing third-party SOC reports preferred
• Experience with ServiceNow, Confluence, or Jira preferred
• CISSP, CISM, CRISC, or relevant GIAC Management Focus Area certifications preferred
• Advanced knowledge of Excel and PowerPoint; experience organizing and analyzing large datasets preferred
Company:
Net2Source (N2S) is a Minority owned global workforce solutions company recognized by SIA as the largest and fastest-growing Total Talent Solutions provider with a presence in 34 countries and in-house Glo-Cal (global and local) teams to support our clients. Founded in 2007, the company is headquartered in Somerset, USA, with a team of 1001-5000 employees. The company is currently Late Stage.

Net2Source logo

About Net2Source

Sourced by ZipRecruiter

Net2Source is an employer-of-choice for over 2200+ consultants across the globe. We recruit top-notch talent for over 40 Fortune and Government clients coast-to-coast across the U.S. We are one of the fastest-growing companies in the U.S. and this may be your opportunity to join us!

Industry

Recruiting and staffing services

Company size

1,001 - 5,000 Employees

Headquarters location

New Brunswick, NJ, US

Year founded

2007