Cybersecurity Compliance Analyst

Job Title: Cybersecurity Compliance Analyst

Duration: 5 Months

Location : Spring. TX

Job Description

We are seeking a Cybersecurity Compliance Analyst to support security compliance initiatives risk assessments and governance activities across internal applications and IT environments. This role sits at the intersection of cybersecurity compliance IT operations and risk management ensuring that business applications and processes align with organizational security policies and industry best practices.

The ideal candidate will have experience performing compliance assessments managing security exceptions collaborating with stakeholders and supporting audit readiness. This position requires strong analytical skills attention to detail and the ability to work effectively with cross-functional teams.

Responsibilities

• Support cybersecurity compliance evaluations from intake through remediation and closure.
• Conduct evidence-based compliance assessments of internal applications and systems.
• Partner with business units application owners IT teams and security stakeholders to identify and mitigate risks.
• Review security exceptions and compensating controls using a risk-based approach.
• Build and maintain dashboards and reporting metrics related to compliance assessments aging and remediation status.
• Support internal and external audits by providing documentation evidence and process details.
• Collaborate with Governance Risk and Compliance (GRC) teams to ensure assessments are properly scoped and completed within established timelines.
• Identify opportunities to improve compliance processes automation and operational efficiency.
• Contribute to updates of cybersecurity policies standards and procedures.
• Promote security awareness and encourage adherence to organizational security requirements.

Required Qualifications

• 3 years of experience in Cybersecurity Information Security GRC Compliance Risk Management or IT Operations.
• Strong understanding of security frameworks such as NIST CSF ISO 27001/27002 CIS Controls or similar.
• Experience assessing compliance of internal applications against cybersecurity policies and standards.
• Experience working with ITSM or GRC platforms such as ServiceNow Jira Archer or OneTrust.
• Knowledge of risk assessment methodologies and security control evaluation.
• Strong analytical problem-solving and organizational skills.
• Excellent verbal and written communication skills.
• Ability to manage multiple priorities while maintaining high-quality deliverables.
• Experience collaborating with technical and business stakeholders across all levels of the organization.

Preferred Qualifications

• Familiarity with cloud security concepts across AWS Azure or GCP.
• Experience supporting DevOps or modern cloud-based environments.
• Professional certifications such as Security CISSP CISA CRISC or similar.
• Experience in regulated industries such as healthcare financial services or government.
• Experience developing dashboards and reporting using Power BI Tableau or Splunk.

Key Skills

• Vendor Compliance Assessment
• Compliance Assessment
• Risk Assessment
• Security Frameworks (NIST ISO 27001 CIS)
• Governance Risk & Compliance (GRC)
• Security Policy Management
• Compensating Controls
• IT Audit Support
• Stakeholder Management
• Business Analysis
• Process Improvement
• ServiceNow Jira Archer OneTrust
• Dashboard Reporting (Power BI Tableau Splunk)
• Analytical & Problem-Solving Skills
• Documentation & Communication Skills