1

Security Risk Assessment Jobs (NOW HIRING)

An information system security risk assessment should also be performed in compliance with SEC501.09 and SEC520.00 using the risk assessment template: ( 1.Appeals and Rulings 2.FACSYS 3.Fraud ...

Conduct security risk assessments for technologies, business initiatives, vendors, and emerging risks. * Maintain Security-owned risks within the enterprise risk management program. * Facilitate risk ...

$141K/yr

Risk Assessment Analyst The Opportunity: Cyber threats are everywhere, and the constantly evolving ... As an information security risk specialist on our team, you'll work with industry partners to ...

next page

Showing results 1-20

Security Risk Assessment information

See salary details

$10

$50

$69

How much do security risk assessment jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for security risk assessment in the United States is $50.41, according to ZipRecruiter salary data. Most workers in this role earn between $40.87 and $60.10 per hour, depending on experience, location, and employer.

What is a Security Risk Assessment job?

A Security Risk Assessment job involves identifying, analyzing, and mitigating potential security threats to an organization's systems, data, and operations. Professionals in this role evaluate vulnerabilities, assess risks, and recommend security controls to protect against cyber threats, fraud, and compliance issues. They work with IT teams, management, and stakeholders to ensure security measures align with business objectives and regulatory requirements. This job often requires knowledge of cybersecurity frameworks, risk management methodologies, and relevant industry standards.

What are the key skills and qualifications needed to thrive in the Security Risk Assessment position, and why are they important?

To thrive in Security Risk Assessment, a strong background in risk analysis, information security principles, and regulatory compliance is essential, often supported by a degree in cybersecurity or related fields. Familiarity with risk assessment tools, frameworks like NIST or ISO 27001, and certifications such as CISSP or CISA are highly valued. Exceptional attention to detail, analytical thinking, and effective communication skills set top professionals apart in this role. These competencies enable accurate identification of potential security threats and development of strategic mitigation plans, which are crucial for safeguarding organizational assets.

What are some common challenges faced in a Security Risk Assessment role?

Professionals in Security Risk Assessment often face the challenge of keeping up with constantly evolving cyber threats and adapting assessment methodologies accordingly. Balancing thorough analysis with the need to provide timely recommendations can be demanding, especially when collaborating with multiple departments or stakeholders. Additionally, communicating complex risk findings to non-technical audiences requires both clarity and diplomacy. Overcoming these challenges is critical for delivering actionable insights that drive effective security decision-making and protect organizational assets.

More about Security Risk Assessment jobs
What cities are hiring for Security Risk Assessment jobs? Cities with the most Security Risk Assessment job openings:
What are the most commonly searched types of Security Risk Assessment jobs? The most popular types of Security Risk Assessment jobs are:
What states have the most Security Risk Assessment jobs? States with the most job openings for Security Risk Assessment jobs include:
What job categories do people searching Security Risk Assessment jobs look for? The top searched job categories for Security Risk Assessment jobs are:
Risk Assessor

Risk Assessor

rose international

Richmond, VA โ€ข On-site

Contractor

Posted 19 days ago


Job description

Company Description
http://www.roseit.com/AboutRose.html
Job Description
Risk Assessor
Duration: 6+ Months
Location - Richmond VA
Interview Type - In Person Only
Rate - Best in Market
Job Description -
**LOCAL candidates STRONGLY preferred**
The qualified candidate will join a team that is responsible for the assessment of information systems that are supported by multiple operating systems, databases, and software development technologies.
TAX seeks an experienced risk assessor in Richmond, VA. The qualified candidate will join a team that is responsible for the assessment of information systems that are supported by multiple operating systems, databases, and software development technologies. The candidate will assist agency personnel in performing risk assessments in accordance with Commonwealth and Agency procedures as well as identify opportunities for improvement. The underlying information infrastructure includes Linux, UNIX, and Windows operating systems; Oracle and Microsoft SQL Server databases, and multiple software development languages that include PowerBuilder, Java, .NET, etc. to name a few.
The IT Risk Assessor is responsible for assisting with meeting security and compliance requirements per state and federal standards. The risk assessor will review information system security controls and evaluate their efficacy in mitigating associated risk. The risk assessor will work closely with system owners, data owners, and system administrators to conduct interviews and review technical information. The assessor will provide an executive summary of the assessment along with a completed VITA Risk Assessment Template for each system evaluated.
An information system security risk assessment should also be performed in compliance with SEC501.09 and SEC520.00 using the risk assessment template:
(http://vita.virginia.gov/uploadedFiles/VITA_Main_Public/Library/PSGs/Word_versions/Risk_Assessment_Template.xlsx).
1.Appeals and Rulings
2.FACSYS
3.Fraud Identity Theft
4. Legislative Impact Tracking
5. Peachtree
6. TAXi (SharePoint)
7. Teleplan
8. Audit Workbench
9. AppZilla (Team Foundation Server)
10. eFile
11. Keylight
12. Remit
13. Verint - VoIP, Informacast, Teleplan
14. Report Manager
Required:
โ€ข 2+ years of experience conducting IT risk assessments
โ€ข Apply strong knowledge of analyzing system security controls implementation and efficacy
โ€ข Demonstrated experience working as a member of a core team as well as an individual with minimal supervision
โ€ข Possess strong attention to detail and ability to communicate effectively written and verbally
โ€ข Work with tools to support the IT Security program as well as provide assistance to the corporate information security governance & risk teams as needed. Core tools supported by this role will be Vulnerability scanning and analysis, Intrusion Detection/Prevention System (IPS/IDS), Security Event Logging, Firewalls and other network security technologies, as well as additional security tools added to augment TAX's IT Security program.
โ€ข Evaluate the day-to-day operations implemented to protect the integrity, confidentiality, and availability of information assets and technology infrastructures of the organization.
โ€ข Requires the ability to lift no more than 50 lbs
Required/Desired Skills -
Perform risk assessment Required 2 Years
Knowledge of SEC501 security standard Required 2 Years
Knowledge of IRS Pub 1075 and CIS benchmarks Nice to have 2 Years
Experience creating technical documentation and reports Highly desired 2 Years
Familiar with various technologies such as: programming languages - Java, .NET; infrastructure - Windows, Linux, UNIX, MS SQL, and Oracle, Desired 3 Years
Possess strong attention to detail and ability to communicate effectively written and verbally Required 2 Years
Apply knowledge of analyzing system security controls implementation and efficacy in evaluating risk Required 2 Years
Demonstrated experience working as a member of a core team as well as an individual with minimal supervision Highly desired 2 Years
Thanks and Regards
Ankit Bhardwaj
Sr.Technical Recruiter

Rose International, Inc.
Phone: (636) 812-4000, Ext.: 6785 / Fax: (636) 812-0078
Qualifications
Additional Information
All your information will be kept confidential according to EEO guidelines.