1

Security Assessor Jobs (NOW HIRING)

Security Control Assessor

Washington, DC · On-site

$155K - $165K/yr

Security Control Assessor III Responsibilities: * Leads comprehensive security assessments for complex or high-impact systems. * Oversees control testing strategies, validates remediation ...

Security Control Assessor

Washington, DC · On-site

$165K - $185K/yr

Conduct ongoing assessments of information systems security requirements, perform STIG analysis Highly motivated self-starter that can run objectives to completion on their own Define metrics and ...

Nist Security Control Assessor We are currently seeking a NIST 800-53 Security Control Assessor interested in starting a rewarding career in public accounting by joining our Information Technology ...

Yes The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall ...

Security Control Assessor (SCA) Belong. Connect. Grow. with KBR! KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the ...

New

Security Control Assessor

Arlington, VA · On-site

$110K - $130K/yr

Security Control Assessor Location: Arlington, VA (On-Site) Citizenship: US only Clearance: Active TS/SCI (DHS EOD Suitability required) Company: Argo Cyber Systems, LLC - Service-Disabled Veteran ...

Security Control Assessor - TS/SCI clearance required - Port of San Antonio, TX IPSecure is seeking an experienced Security Control Assessor (SCA) to support the 16 AF Assessments and Authorization ...

Security Controls Assessor

Bluemont, VA · On-site

$110K - $125K/yr

UltraViolet Cyber is seeking to hire a Senior Security Control Assessor (SCA) to act as an independent evaluator to ensure the effectiveness of management, operational, and technical security ...

Security Controls Assessor

Bluemont, VA · On-site

$110K - $125K/yr

UltraViolet Cyber is seeking to hire a Senior Security Control Assessor (SCA) to act as an independent evaluator to ensure the effectiveness of management, operational, and technical security ...

Security Controls Assessor

Bluemont, VA · On-site

$110K - $125K/yr

UltraViolet Cyber is seeking to hire a Senior Security Control Assessor (SCA) to act as an independent evaluator to ensure the effectiveness of management, operational, and technical security ...

next page

Showing results 1-20

Security Assessor information

See salary details

$8

$58

$78

How much do security assessor jobs pay per hour?

As of Jul 16, 2026, the average hourly pay for security assessor in the United States is $58.77, according to ZipRecruiter salary data. Most workers in this role earn between $50.48 and $68.03 per hour, depending on experience, location, and employer.

What does a security assessor do?

A security assessor evaluates an organization's security measures, policies, and systems to identify vulnerabilities and ensure compliance with security standards. They conduct risk assessments, review security controls, and may use tools like vulnerability scanners, often requiring certifications such as CISSP or CISA. Their work helps organizations protect sensitive information and maintain security posture.

How to become a security control assessor?

To become a security control assessor, individuals typically need a background in cybersecurity, information technology, or related fields, along with experience in security frameworks such as NIST or ISO. Earning relevant certifications like Certified Authorization Professional (CAP) or Certified Information Systems Security Professional (CISSP) can enhance qualifications. Assessors often undergo specialized training and may need to obtain government or industry-specific clearance depending on the environment they work in.

Is SOC analyst a high paying job?

SOC analysts typically earn competitive salaries that vary by experience, location, and employer. Entry-level positions may start lower, but with certifications like CompTIA Security+ or CISSP, salaries can increase significantly, especially for those with specialized skills in threat detection and incident response.

What are the key skills and qualifications needed to thrive as a Security Assessor, and why are they important?

To thrive as a Security Assessor, you need a thorough understanding of information security principles, risk assessment methodologies, and compliance frameworks, often supported by a degree in cybersecurity or related fields. Familiarity with tools such as vulnerability scanners, compliance management systems, and certifications like CISSP, CISA, or PCI QSA is typically required. Strong analytical thinking, attention to detail, and clear communication are vital soft skills for accurately identifying risks and conveying findings to stakeholders. These skills ensure that organizations remain compliant, secure, and resilient against evolving cyber threats.

What are some common challenges Security Assessors face when conducting security audits, and how can they overcome them?

Security Assessors often encounter challenges such as incomplete documentation, resistance from stakeholders, and rapidly changing technology environments. To overcome these, assessors should develop strong communication skills to build trust, encourage transparency, and ensure all relevant parties understand the importance of compliance. Staying current with industry standards and maintaining flexibility in their assessment approach also helps them adapt to new threats and technologies, ensuring thorough and effective audits.

What are Security Assessors?

Security Assessors are professionals who evaluate the security measures, policies, and practices of an organization to identify vulnerabilities and ensure compliance with security standards and regulations. They conduct assessments such as penetration testing, risk analysis, and audits to help organizations safeguard their information systems against threats. Security Assessors often work with frameworks like PCI DSS, ISO 27001, and NIST to ensure best practices are followed. Their work is crucial for maintaining the confidentiality, integrity, and availability of sensitive data.

What is the difference between Security Assessor vs Security Analyst?

AspectSecurity AssessorSecurity Analyst
CertificationsISO 27001 Lead Auditor, CISSP, CISACISSP, Security+
Work EnvironmentAudit, compliance, risk assessmentMonitoring, incident response, threat analysis
Employer & IndustryConsulting firms, large organizations, governmentIT departments, security firms, corporations

Security Assessors primarily focus on evaluating security controls, conducting audits, and ensuring compliance with standards like ISO 27001. Security Analysts monitor security systems, analyze threats, and respond to incidents. While both roles require cybersecurity knowledge and certifications, Assessors emphasize compliance and auditing, whereas Analysts focus on threat detection and response.

Which security certificate pays the most?

For security assessors, the Certified Information Systems Security Professional (CISSP) is among the highest-paying certifications, often leading to higher salaries due to its advanced knowledge requirements. Other valuable certifications include Certified Information Security Manager (CISM) and Certified Ethical Hacker (CEH), which can also enhance earning potential in security roles. Salary varies based on experience, location, and employer, but these certifications are generally associated with higher compensation in cybersecurity and security assessment positions.
More about Security Assessor jobs
What cities are hiring for Security Assessor jobs? Cities with the most Security Assessor job openings:
What states have the most Security Assessor jobs? States with the most job openings for Security Assessor jobs include:
What job categories do people searching Security Assessor jobs look for? The top searched job categories for Security Assessor jobs are:
Security Control Assessor

Security Control Assessor

Telos Corporation

Washington, DC • On-site

Full-time

Posted 13 days ago


Job description

Job Summary:
Telos Corporation is a trusted provider of IT security solutions for highly security-conscious organizations. The Security Control Assessor will be responsible for conducting assessments of information systems security requirements and communicating the security posture to clients.
Responsibilities:
• Conduct ongoing assessments of information systems security requirements, perform STIG analysis
• Highly motivated self-starter that can run objectives to completion on their own
• Define metrics and reporting strategies that effectively communicate security posture to the client
• Present complex, technical information to both technical and nom-technical audiences
• Review scan information from various outputs such as ACAS, HBSS, IP subnets
• Analyze Host Based Security System (HBSS) output and configuration
• Review and update information security posture within Xacta 360
Qualifications:
Required:
• An active DoD Top Secret Clearance is required, SCI Eligibility is required
• Bachelor’s Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience (6 years)
• 5+ years of experience assessing security controls from NIST 800-53/CNSS 1253 is required
• Experience with the Risk Management Framework, NIST 800-37
• Specific Experience with writing Security Assessment Plans and Reports is required
• Strong written and verbal communications skills and the ability to interact with people at all levels are required
• A professional attitude regarding attention to detail and customer service and excellent organizational skills are required
Company:
Telos is a provider of cyber, cloud and enterprise security solutions for the world’s most security-conscious organizations. Founded in 1971, the company is headquartered in Ashburn, USA, with a team of 501-1000 employees. The company is currently Late Stage.