Risk/ Security Controls Assessment and Remediation Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Peraton · 2 hours ago

Risk/ Security Controls Assessment and Remediation Manager

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$80K/yr - $128K/yr
date5+ years exp

Peraton is a next-generation national security company that drives missions of consequence spanning the globe. They are seeking a Risk/Security Controls Assessment and Remediation Manager to lead security control assessments, validate remediation actions, and ensure compliance with cybersecurity regulations.

Information TechnologyRobotics
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead security control assessments across systems, applications, and infrastructure
Evaluate the effectiveness of technical, administrative, and operational security controls
Identify control gaps, weaknesses, and residual risk
Develop, track, and manage remediation plans in coordination with system owners
Prioritize remediation efforts based on risk, impact, and business context
Validate remediation actions and confirm control effectiveness post-fix
Maintain risk registers, control assessment documentation, and remediation evidence
Support internal and external audits, assessments, and regulatory inquiries
Communicate risk posture, trends, and remediation status to leadership
Work with stakeholders to continuously improve assessment and remediation processes and methodologies
Stay current on emerging threats and incorporate lessons learned into recommendations to policies, procedures, and cybersecurity systems and network modifications
Prepare reports and brief CSOC Manager, infrastructure stakeholders and corporate management on requests
Contribute to the development and periodic review of security policies, standards, and control procedures
Provide advisory support to system owners and project teams during system design or major changes
Participate in tabletop exercises, risk workshops, and threat modeling sessions as a controls SME
Support onboarding and training of staff on control assessment and remediation processes
Assist with defining control metrics, KPIs, and maturity indicators
Review and provide input on third-party risk assessments and vendor security reviews
Support merger, acquisition, organizational role changes or system onboarding activities from a risk and controls perspective
Track emerging threats, regulatory changes, and framework updates to inform assessment strategy
Mentor junior risk analysts or assessment team members
Support executive reporting and briefings on risk trends and remediation progress

Qualification

Cybersecurity complianceRisk managementVulnerability assessmentCybersecurity standardsRemediation workflowsProject managementAnalytical skillsStakeholder engagementTraining supportThird-party risk assessmentEmerging threats trackingProblem-solving skillsCross-functional leadershipCommunication skillsMentoring

Required

U.S. Citizenship Required
Must have the ability to obtain / maintain a DOE L Level or DOE Secret clearance
Degree in computer science, engineering, cybersecurity, information technology, risk management or related field
5 years of experience with BS/BA; 3 years with MS/MA
Experience in cybersecurity compliance, analyst, governance, or risk management roles
Understanding of industry cybersecurity standards such as FISMA, NIST 800 series, ISO 27001 and regulatory compliance requirements
Experience with vulnerability assessment, enterprise risk assessments, and remediation workflows
Ability to analyze scan results and control findings to determine true risk to the organization
Experience creating and managing POA&Ms or remediation plans
Familiarity with patch management and configuration remediation processes
Ability to lead cross-functional remediation efforts without direct authority
Experience coordinating with engineering, IT, security, and compliance teams
Strong project management and prioritization skills
Strong analytical and problem-solving skills

Preferred

Hold technical and/or cybersecurity certification such as CISSP, GIAC GSEC, GIAC GCIH, CISA SSCP, CompTIA Security+
A master's degree in computer science, engineering, cybersecurity, information technology, or related field

Benefits

Medical
Dental
Vision
Life
Health savings account
Short/long term disability
EAP
Parental leave
401(k)
Paid time off (PTO) for vacation
Company paid holidays

Company

Peraton

twittertwitter
Glassdoor3.6
company-logo
Peraton Fearlessly solving the toughest national security challenges.
dateFounded in 1992
location
Woodbridge, New Jersey, USA
people-size10001+ employees
web-link
https://www.peraton.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Thomas Terjesen
Chief Information Officer
linkedin

Recent News

MarketScreener
Two bidders vie to be project manager of massive FAA US air traffic overhaul
2025-09-25
Benzinga.com
Snowflake Partners With Peraton, Builds AI Fraud Detection Tools To Protect Taxpayer Dollars
2025-09-17
NDTV
Donald Trump's Golden Dome Still Shrouded In Mystery, Even For Its Builders
2025-08-15
Company data provided by crunchbase