Harris County
Cybersecurity Analyst - Governance, Risk, Compliance (GRC)
This job is now closed
Job Description
- Req#: 5017539
Assist in the development, maintenance, and enforcement of security policies, standards, and procedures.
Participate in the creation and management of the organization’s information security governance framework.
Monitor the effectiveness of cybersecurity controls and propose improvements.
Conduct risk assessments for systems, vendors, and processes to identify vulnerabilities and areas of non-compliance.
Maintain a risk register and track remediation efforts for identified risks.
Support business units in developing risk mitigation strategies and action plans.
Ensure compliance with industry standards, regulatory requirements, and frameworks (e.g., NIST CSF, ISO 27001, HIPAA, PCI-DSS, CJIS, GDPR).
Assist with internal and external audits, including evidence collection and audit readiness.
Develop and maintain metrics and dashboards to report on compliance status and risk posture to stakeholders.
Conduct due diligence and security assessments for third-party vendors and service providers.
Maintain documentation and track remediation efforts related to vendor risk management.
Contribute to the development of security awareness training materials.
Promote cybersecurity awareness across the organization to foster a culture of security.
Monitor emerging cybersecurity threats, trends, and regulatory changes.
Recommend and implement improvements to the GRC program in alignment with industry best practices.
A High School Diploma or GED accompanied by a recognized cybersecurity certification (e.g., Security+, SSCP, or equivalent),
a Bachelor’s degree in a related field such as Cybersecurity, Information Technology, or Information Systems.
2–5 years of experience in Governance, Risk, and Compliance (GRC), cybersecurity, IT audit, or risk management.
Hands-on experience with GRC tools (e.g., Archer, ServiceNow GRC, MetricStream).
Familiarity with security and privacy regulations and frameworks (e.g., NIST, ISO, GDPR, HIPAA, SOC 2).
Strong analytical, organizational, and problem-solving skills.
Ability to communicate effectively with technical and non-technical audiences.
Knowledge of cybersecurity principles, risk management practices, and regulatory environments.
Proficient in Microsoft Office 365, including Excel, PowerPoint, and SharePoint.
Ability to work independently and collaboratively in a fast-paced environment.
Industry certifications such as CISSP, CISA, CRISC, Security+, or ISO 27001 Lead Implementer/Auditor are highly desirable.
Demonstrated passion for cybersecurity, risk reduction, and continuous professional development.
Strong attention to detail with an emphasis on accuracy and quality.
Excellent communication and interpersonal skills with a collaborative, team-oriented approach.
406 Caroline St., Houston, TX 77002
8 hours/day
Hybrid (3 days onsite, 2 WFH)
About Harris County and Universal Services:
Harris County is the third largest and most diverse county in the nation, with a population of more than 4.7 million. Harris County Commissioners Court, the County’s governing body, directs a budget of more than $4 billion providing essential services including flood control, infrastructure, healthcare, housing, and justice administration.
Harris County Universal Services (HCUS) is the enterprise IT solutions center for the departments and offices of Harris County, providing Information Technology, Public Safety and Justice Technologies, 311 Constituent Engagement Services, Fleet Services, and Records and Information Governance Services.
HCUS is transforming the way the County does business and seeking a Cybersecurity Analyst - Governance, Risk, & Compliance (GRC) to join our team. Now is a great time to join Universal Services as we enhance critical services to Harris County residents and internal customers!
Key Responsibilities:
Governance
Risk Management
Compliance
Third-Party Risk
Training & Awareness
Continuous Improvement
Harris County is an Equal Opportunity Employer
https://hrrm.harriscountytx.gov/Pages/EqualEmploymentOpportunityPlan.aspx
If you need special services or accommodations, please call (713) 274-5445 or email ADACoordinator@bmd.hctx.net .
This position is subject to a criminal history check. Only relevant convictions will be considered and, even when considered, may not automatically disqualify the candidate.Education:
OR
Experience:
Skills and Competencies
NOTE : Qualifying education, experience, knowledge and skills must be documented on your job application. You may attach a resume to the application as supporting documentation but ONLY information stated on the application will be used for consideration. See Resume will not be accepted for qualifications.
Location:
Work Schedule:
Work Arrangement:
Employment may be contingent on passing a drug screen and meeting other standards.
Due to a high volume of applications positions may close prior to the advertised closing date or at the discretion of the Hiring Department.About the company
Office of Commissioner Tom S. Ramsey, P.E.
Notice
Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.
Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.
An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.