.svg)
Ashburn Consulting
Information Security Risk Assessor
Join Ashburn Consulting as an Information Security Risk Assessor in Rockville, MD. Leverage ServiceNow GRC for risk assessments and compliance. 4-5 years experience required.
Mid-Level
ServiceNow Role Type:
ServiceNow Modules:
Governance, Risk, and Compliance
ServiceNow Certifications (nice to have):
Job description
Posted on:
July 9, 2025
Ashburn Consulting is seeking an Information Security Risk Assessor to support the Montgomery County Government Office of Technology and Enterprise Business Solutions (TEBS). The role involves conducting risk assessments, reviewing internal controls, and evaluating third-party security attestations to promote risk-informed decision-making and ensure alignment with security policies and regulatory requirements.
Requirements
- Conducting structured risk assessments, reviewing internal controls, evaluating third-party security attestations, and supporting vulnerability and compliance activities.
- Collaborating with cross-functional teams to enhance the County's overall risk posture and ensure adherence to internal policies and external compliance mandates.
- Using ServiceNow GRC functionality to support workflow management, risk tracking, and reporting.
Benefits
- Equal Opportunity Employer/Veterans/Disabled
- An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status
Requirements Summary
4-5 years of experience in Information Security Risk Assessment or related field, with certifications such as CISSP, CRISC, or CISA
