Cybersecurity Assessor

Chameleon Integrated ServicesNew York, NY
Match Resume

About The Position

The Cybersecurity Assessor evaluates enterprise systems, networks, and applications to identify vulnerabilities, assess risks, and ensure compliance with security policies and regulatory standards. They provide actionable recommendations and collaborate with technical and business teams to strengthen security controls and reduce organizational risk.

Requirements

  • Expertise in GRC methodologies, security control auditing, and third-party risk assessments.
  • Proven ability to interpret federal compliance mandates (NIST SP 800-53, 800-37) and evaluate technical and administrative controls.
  • Strong competency in conducting "Security Impact Analyses" and managing Plan of Action and Milestones (POA&M) documentation.
  • 5+ years experience
  • CISA, CRISC, CGEIT, CISSP, CompTIA Security+, CCSK, CAP/ISC2 CGRC
  • GRC Platforms (Archer/ServiceNow)
  • Third-Party Risk Tools (OneTrust/Prevalent)
  • MS Excel (Advanced)
  • MS Power BI
  • MS Visio
  • JIRA
  • Microsoft Office Suite.

Responsibilities

  • Conduct security and compliance assessments across internal systems and third-party vendors, supporting adherence to organizational and regulatory requirements.
  • Evaluate the security practices of external service providers and assist with managing vendorrelated risks throughout the assessment of lifecycle.
  • Analyze assessment results, document findings, and support remediation efforts by tracking issues and helping teams prioritize corrective actions.
  • Work with business and technical stakeholders to clarify compliance requirements and support the resolution of identified risks within accepted thresholds.
  • Use risk management tools and reporting dashboards to maintain assessment documentation, track risk metrics, and contribute to security posture reporting.
  • Serve as a bridge between Business Analysts and Cybersecurity Engineers, translating compliance requirements into actionable remediation tasks while maintaining organizational risk thresholds.
  • Use industry-standard GRC platforms (e.g., Archer, ServiceNow) and Third-Party Risk tools (e.g., OneTrust, Prevalent) to centralize documentation and streamline assessment workflows.
  • Convert complex assessment findings into actionable insights with Power BI and Excel, maintaining dashboards that communicate enterprise security posture to stakeholders.
  • Perform daily RMF lifecycle control assessments, including evidence collection, walkthroughs, testing of technical/administrative controls, and POA&M tracking to ensure risk remains within tolerance.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Education Level

No Education Listed

Job Search Resources

Similar Cybersecurity Assessor job opportunities

Cybersecurity CMMC Lead Assessor
Cherry Bekaert Advisory
Cherry Bekaert Advisory • Atlanta, TX6d • Remote
Assessor
VOLUNTEERS OF AMERICA SOUTH CENTRAL LOUISIANA
VOLUNTEERS OF AMERICA SOUTH CENTRAL LOUISIANA • Lafayette, LA3d
Sr. Cybersecurity Engineer Security Controls Assessor Representative
KBR
KBR • Wright Patterson AFB, OH9d • Onsite
Sr. Cybersecurity Engineer Security Controls Assessor Representative
KBR, Inc.
KBR, Inc.10d • Onsite
Clinical Assessor
Renfrew Center of New Jersey LLC
Renfrew Center of New Jersey LLC • Paramus, NJ9d
Field Assessor
All Ways Caring HomeCare
All Ways Caring HomeCare • Tilton, IL3d • $20 - $22
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service