ZipRecruiter

Log In

1

Security Controls Assessor Jobs (NOW HIRING)

Navstar

Security Control Assessor, Junior

Mclean, VA

$53K - $108K/yr

Experience assessing Web Application securely via security controls assessment and vulnerability and compliance scanning analysis, and assessing the security of cloud environments and cloud-hosted ...

next page

Showing results 1-20

People also search for

All JobsSecurity Controls Assessor Jobs

Security Controls Assessor information

See salary details

$8

$58

$78

How much do security controls assessor jobs pay per hour?

As of Jun 1, 2026, the average hourly pay for security controls assessor in the United States is $58.77, according to ZipRecruiter salary data. Most workers in this role earn between $50.48 and $68.03 per hour, depending on experience, location, and employer.

What Does a Security Controls Assessor Do?

A security controls assessor (SCA) evaluates the security controls within network systems to identify vulnerabilities and recommend actions to correct problems, working either alone or as part of a team. As a security controls assessor, your duties begin with conducting an in-depth assessment of the management, operations, and technical security controls. You must analyze information and prepare reports describing the vulnerability level of the network with specific detail as to what compromises data systems. You then develop a plan to address vulnerabilities and continue to monitor the security of network systems.

What are the key skills and qualifications needed to thrive as a Security Controls Assessor, and why are they important?

To thrive as a Security Controls Assessor, you need expertise in information security frameworks, risk assessment methodologies, and compliance requirements, often supported by a degree in cybersecurity or related fields and certifications like CISSP, CISA, or CAP. Familiarity with tools such as vulnerability scanners, security assessment platforms, and compliance management systems is typically required. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and clearly report findings to stakeholders. These skills ensure that organizations maintain robust security postures and meet regulatory requirements to protect critical assets.

What are some common challenges Security Controls Assessors face when evaluating compliance across multiple systems?

Security Controls Assessors often encounter challenges with inconsistent documentation, varying system configurations, and differing interpretations of compliance standards across departments. Coordinating with multiple teams to collect evidence and clarify control implementations can be time-consuming, especially in large organizations. Staying current with evolving regulations and ensuring all systems meet the latest requirements also demands continuous learning and adaptability. Building strong communication channels with system owners and IT staff helps overcome these hurdles and ensures thorough, accurate assessments.

What are Security Controls Assessors?

Security Controls Assessors are professionals responsible for evaluating and validating the effectiveness of security controls within an organization's information systems. They conduct assessments to ensure compliance with regulatory standards, such as NIST, FISMA, or other security frameworks. Their work helps organizations identify vulnerabilities, manage risks, and maintain the confidentiality, integrity, and availability of critical data. Security Controls Assessors often provide recommendations for remediation and support efforts to achieve or maintain security certifications.

What is the difference between Security Controls Assessor vs Security Analyst?

AspectSecurity Controls AssessorSecurity Analyst
CertificationsISO 27001 Lead Auditor, CISSP, CISACISSP, Security+
Work EnvironmentAssessing security controls, compliance auditsMonitoring security systems, incident response
Employer & IndustryGovernment agencies, compliance firmsCorporate IT, cybersecurity teams

The Security Controls Assessor primarily evaluates and verifies security controls for compliance, often in government or regulated environments. In contrast, a Security Analyst focuses on monitoring, analyzing, and responding to security threats within organizations. While both roles require security certifications and involve cybersecurity, their core responsibilities and work settings differ significantly.

More about Security Controls Assessor jobs
What cities are hiring for Security Controls Assessor jobs? Cities with the most Security Controls Assessor job openings:
What are the most commonly searched types of Security Controls Assessor jobs? The most popular types of Security Controls Assessor jobs are:
Who are the top companies hiring for Security Controls Assessor jobs? The top employers for Security Controls Assessor jobs are:
What states have the most Security Controls Assessor jobs? States with the most job openings for Security Controls Assessor jobs include:
What job categories do people searching Security Controls Assessor jobs look for? The top searched job categories for Security Controls Assessor jobs are:
What are popular job titles related to Security Controls Assessor jobs? For Security Controls Assessor jobs, the most frequently searched job titles are:
Security Controls Assessor jobs near you
Infographic showing various Security Controls Assessor job openings in the United States as of May 2026, with employment types broken down into 82% Full Time, and 18% Contract. Highlights an 84% In-person, 4% Hybrid, and 12% Remote job distribution, with an average salary of $122,236 per year, or $58.8 per hour.

Security Controls Assessor -MS with Security Clearance

Blu Omega LLC

Bay Saint Louis, MS • Remote

$70K - $105K/yr

Other

Medical, Retirement, PTO

Posted 21 days ago

Job description

Blu Omega is actively seeking several experienced Security Control Assessors to join our team with a focus on program-scale assessments. We are hiring for various levels within a 50 mile radius of Stennis Space Center. The roles will primarily be remote with occasional assessments completed onsite.

This role involves working within a highly visible large scale program that oversees hundreds of unique IT systems. The selected candidate will play a crucial role in assessing systems annually, with a streamlined approach that involves moving from one assessment directly to the next. Assessments are scheduled at a cadence of approximately once every six weeks.

Responsibilities: * Conduct Security Control Assessments (SCA) on a rotating schedule * Manage and assess the security compliance of non traditional IT systems * Work collaboratively with cross-functional teams to gather necessary information for assessments. * Ensure timely and accurate reporting of assessment results, vulnerabilities, and compliance status. * Collaborate with stakeholders to develop and implement corrective action plans based on assessment findings.

* Provide expertise in scaling security measures to meet the unique requirements of diverse IT systems. * Maintain awareness of emerging threats and industry best practices to continually enhance assessment methodologies. * Operate effectively in a fast-paced environment, demonstrating the ability to be proactive and adaptive.

* Act as a client-facing representative of the organization, engaging with clients professionally and effectively. Qualifications: * A minimum of 5 years of experience, including at least 2 years of hands-on experience conducting Security Control Assessments * Proven ability to handle a high volume of assessments, with a focus on program-scale operations. * In-depth knowledge of NIST 853/830 standards * Demonstrated proficiency in cloud platforms, with a preference for Google Cloud Platform (GCP).

Familiarity with Azure or AWS is also acceptable. * Strong expertise in Linux systems and the ability to apply security measures across a diverse range of IT systems. * Experience in assessing non-traditional IT systems, particularly in a program-scale context * Excellent organizational skills and the ability to manage a rotating schedule of assessments.

* Effective communication skills to convey complex security concepts to various stakeholders. * U.S. Citizenship and an Active Secret clearance are mandatory for successful candidates.

* Availability for remote work with occasional travel required, approximately once every 6 weeks. Salary Range: $70K - $105K Our final salary offer will be based on several factors, including depth of technical skills, work experience, education, certifications, and clearance What Blu Omega Can Offer You: * Competitive benefits including Health Insurance, 401K w/ match, Paid Time Off and more. * Results driven culture that embrace our core values * Rewarding work contributing to our Nation's mission critical programs Blu Omega is a Woman Owned Small Business Federal Technology services firm headquartered in Washington DC and supporting clients nationally.

We provide Technology solutions for enterprise and government customers. Our team has a past performance in a diverse range of programs including those for Data Management, Cloud/Infrastructure, Software Development and Enterprise Applications. An Equal Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. #CJ

Apply