1

Security Risk Assessment Jobs in Oregon (NOW HIRING)

OR ยท On-site

Conducts structured Threat Modeling & Risk Assessment exercises for generative AI, RAG, and agent ... Builds and scales AI Security Testing & Red Teaming workflows by creating repeatable adversarial ...

Senior Security Compliance Analyst

OR ยท Remote

$110K - $140K/yr

Perform gap analyses and risk assessments to identify and remediate compliance risks. * Manage and improve security governance frameworks, ensuring alignment with industry best practices and business ...

You will conduct comprehensive security assessments, including penetration testing, threat modeling ... Fully Paid by Origami Risk - Vision insurance, Short & Long-Term Disability Insurance, and Basic ...

OR ยท On-site

$400K - $680K/yr

... risk while enabling business needs. We provide cloud security subject matter expertise, build ... Furthermore, you will perform threat assessments, apply knowledge of AWS architecture and new AWS ...

Security Architect

$65 - $84/hr

Proven ability to assess and evaluate enterprise security postures and identify impacts from new ... Contribute to risk management and compliance, performing architecture reviews, identifying security ...

Security Architect

$65 - $84/hr

Proven ability to assess and evaluate enterprise security postures and identify impacts from new ... Contribute to risk management and compliance, performing architecture reviews, identifying security ...

As a Senior Third Party Risk Analyst , you'll play a critical role in ensuring the security ... security risks uncovered throughout the assessment lifecycle. * Stay ahead of emerging risks ...

Support and coordinate risk assessment and analysis activities for significant risk events ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...

next page

Showing results 1-20

Security Risk Assessment information

See Oregon salary details

$10

$53

$73

How much do security risk assessment jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for security risk assessment in Oregon is $53.30, according to ZipRecruiter salary data. Most workers in this role earn between $43.22 and $63.56 per hour, depending on experience, location, and employer.

What is a Security Risk Assessment job?

A Security Risk Assessment job involves identifying, analyzing, and mitigating potential security threats to an organization's systems, data, and operations. Professionals in this role evaluate vulnerabilities, assess risks, and recommend security controls to protect against cyber threats, fraud, and compliance issues. They work with IT teams, management, and stakeholders to ensure security measures align with business objectives and regulatory requirements. This job often requires knowledge of cybersecurity frameworks, risk management methodologies, and relevant industry standards.

What are the key skills and qualifications needed to thrive in the Security Risk Assessment position, and why are they important?

To thrive in Security Risk Assessment, a strong background in risk analysis, information security principles, and regulatory compliance is essential, often supported by a degree in cybersecurity or related fields. Familiarity with risk assessment tools, frameworks like NIST or ISO 27001, and certifications such as CISSP or CISA are highly valued. Exceptional attention to detail, analytical thinking, and effective communication skills set top professionals apart in this role. These competencies enable accurate identification of potential security threats and development of strategic mitigation plans, which are crucial for safeguarding organizational assets.

What are some common challenges faced in a Security Risk Assessment role?

Professionals in Security Risk Assessment often face the challenge of keeping up with constantly evolving cyber threats and adapting assessment methodologies accordingly. Balancing thorough analysis with the need to provide timely recommendations can be demanding, especially when collaborating with multiple departments or stakeholders. Additionally, communicating complex risk findings to non-technical audiences requires both clarity and diplomacy. Overcoming these challenges is critical for delivering actionable insights that drive effective security decision-making and protect organizational assets.

What are the most commonly searched types of Security Risk Assessment jobs in Oregon? The most popular types of Security Risk Assessment jobs in Oregon are:
What are popular job titles related to Security Risk Assessment jobs in Oregon? For Security Risk Assessment jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Security Risk Assessment jobs in Oregon look for? The top searched job categories for Security Risk Assessment jobs in Oregon are:
AI Security Engineer

AI Security Engineer

InvoiceCloud

OR โ€ข On-site

Other

Posted 29 days ago


Job description

Job Details:

We are seeking a highly skilled and results-oriented AI Security Engineer to support the Cybersecurity, Engineering, and Data Science organizations. This role plays a critical part in advancing InvoiceCloud's AI-first strategy by ensuring that AI/ML and generative AI systems are secure, resilient, compliant, and aligned with business objectives.

This is role operates as a subject matter expert in AI security. The ideal candidate brings deep expertise in application security, AI/ML risk, and cloud-native security engineering, and serves as a trusted partner to Engineering, Product, DevSecOps, Legal/Privacy, and Security Operations. Success requires strong ownership, structured problem solving, cross-functional collaboration, and the ability to balance risk reduction with business velocity.

Success Profile:

This role is anchored in our company's core competencies-These competencies reflect the mindsets and behaviors that define success in this role. We outline how each competency translates into real-world actions and outcomes specific to this role.

Results Driven

  • Leads AI Security Architecture & Secure Design initiatives by designing and implementing lifecycle security controls across data ingestion, training, evaluation, deployment, and monitoring environments to measurably reduce AI-specific risk while maintaining product velocity.
  • Conducts structured Threat Modeling & Risk Assessment exercises for generative AI, RAG, and agent-based systems, evaluating risks such as prompt injection, data poisoning, model extraction, model inversion, abuse/misuse, and data leakage, and mapping findings to OWASP Top 10 for LLM Applications, MITRE ATLAS, and NIST AI RMF to drive remediation through engineering teams.
  • Defines and operationalizes Monitoring, Detection & Incident Response capabilities for AI systems by implementing prompt and output telemetry, tool-call logging, anomaly detection, and AI-specific incident response playbooks integrated into SIEM/SOC workflows.
  • Delivers measurable outcomes aligned to 30-, 150-, and 210-day milestones, including secure reference architectures, hardened AI environments, integrated security controls, and executive-ready reporting on AI risk reduction and posture maturity.ย 

Takes Ownership

  • Establishes and formalizes AI Governance, Privacy & Third-Party Risk requirements by defining security expectations for AI use cases, third-party models, vendor integrations, and sensitive data usage, embedding controls into SDLC, procurement, and engineering standards.
  • Drives Cross-Functional Collaboration & Enablement by partnering with Engineering, Data Science, DevSecOps, Product, Legal/Privacy, and SOC teams to align on risk appetite, escalation paths, and secure design guardrails while raising AI security maturity across the organization.
  • Inventories current and planned AI/ML initiatives, documents system architectures and sensitive-data touchpoints, and implements a structured AI security intake and risk-rating process that ensures accountability and transparency.
  • Develops and communicates forward-looking 6- and 12-month AI security maturation plans that align technical priorities with business goals and clearly articulate risk trends, metrics, and investment needs to Security leadership and the CISO.ย 

Drives Efficiency

  • Integrates Secure MLOps / MLSecOps controls into AI delivery pipelines, including secure model registries, artifact signing and provenance validation, dependency scanning, secrets management, CI/CD guardrails, and hardened training and inference environments across AWS and Azure.
  • Builds and scales AI Security Testing & Red Teaming workflows by creating repeatable adversarial evaluation plans for jailbreaks, model evasion, prompt injection, and data exfiltration scenarios, ensuring security controls remain effective over time.
  • Develops automated regression test harnesses to continuously validate AI security protections as models, prompts, and dependencies evolve, reducing manual effort and improving coverage.
  • Establishes a sustainable AI security operating rhythm that includes intake reviews, threat modeling checkpoints, remediation tracking, and structured monitoring ownership to bring consistency and order to AI risk managementย 

Innovative

  • Advances AI Security Testing & Red Teaming capabilities through adversarial experimentation and multi-dimensional analysis, proactively identifying emerging AI threat patterns before production impact.
  • Leverages AI and automation to strengthen testing coverage, automate regression validation, enhance anomaly detection logic, and improve the scalability of AI security monitoring and response.
  • Continuously evaluates emerging AI security research, tooling advancements, and regulatory developments, translating insights into adaptive defensive controls that support InvoiceCloud's AI-first strategy while enabling responsible innovation.ย 

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, Engineering, Data Science, or related field (or equivalent practical experience).
  • 5+ years of experience in security engineering, application/product security, cloud security, or DevSecOps.
  • 2+ years of experience building or securing AI/ML systems (including LLM-based applications) in production environments.
  • Strong understanding of AI/ML threats and defenses, including prompt injection, data poisoning, model extraction, model inversion, adversarial inputs, data leakage, and abuse/misuse scenarios.
  • Experience integrating security into CI/CD and MLOps pipelines.
  • Proficiency with cloud platforms (AWS and Azure), container security, IAM, network segmentation, key management, and secrets management.
  • Familiarity with industry guidance such as OWASP GenAI/Top 10 for LLM Applications, MITRE ATLAS, and/or NIST AI RMF preferred.
  • Relevant certifications such as CISSP, CSSLP, CCSP, Azure Security certifications, or GIAC certifications preferred.