CYBERSECURITY RISK ANALYST- post

💰 $8,960 - $14,336 (Est.) 📍 Houston 🕐 4 days ago

Job Description

CITGO PETROLEUM CORPORATION

CITGO Petroleum Corporation is a recognized leader in the refining industry and operates under the well-known CITGO brand. CITGO owns and operates three refineries located in Lake Charles, LA.; Lemont, IL.; and Corpus Christi, TX, and wholly and/or jointly owns 38 active terminals, six pipelines and three lubricants blending and packaging plants. With approximately 3,300 employees and a combined crude capacity of approximately 807,000 barrels-per-day (bpd), positions CITGO as one of the best-branded supplier companies in the industry.


At CITGO our people are our most important resource. Our core values are Safety, Integrity, Respect, Accountability, and Care.

Job Summary

The Cybersecurity Risk Analyst is responsible for identifying, assessing, and managing cybersecurity risks across the organization's IT and OT environments. This role involves conducting comprehensive risk assessments, leading vulnerability management efforts, and ensuring compliance with industry frameworks and regulations. The analyst will work closely with cross-functional teams to design and implement effective risk mitigation strategies, evaluate third-party risks, and support incident response and post-incident evaluations. By leveraging data-driven methods and tracking key performance indicators, the Cybersecurity Risk Analyst plays a critical role in enhancing the organization’s security posture and aligning cybersecurity efforts with business objectives.

Minimum Qualifications

Degree:

Bachelor's Degree

The minimum number of years of job related experience required by this job is:

8 years.

List any specialized training or unique skills required / preferred:

In-depth understanding of cybersecurity frameworks such as NIST, ISO 27001, and FAIR.
Strong familiarity with IT and OT environments, including cloud platforms, IoT devices, data centers, and software applications.
Expertise in vulnerability management processes, penetration testing, and threat modeling.
Awareness of emerging technologies and their associated risks.
Advanced analytical and problem-solving skills for assessing and prioritizing risks.
Effective communication and presentation skills to translate technical risks into business impacts for stakeholders.
Proficiency in creating detailed documentation, including risk reports, policies, and compliance evidence.
Preferred CISSP, CRISC or other security certifications.
Job Duties

1. Comprehensive Infrastructure Risk Assessment

Perform regular risk assessments of IT and OT systems, including networks, cloud platforms, IoT devices, and software, aligned with NIST and CIS Controls.
Ensure compliance with security regulations (e.g., GDPR, CCPA, PCI DSS) and manage third-party risks.

2. Vulnerability Management

Lead vulnerability scans, penetration tests, and threat modeling.
Assess and address vulnerabilities, prioritize patches, and adapt to new threats in collaboration with teams.

3. Risk Reporting & Communication

Present risk reports to stakeholders, translating technical details into business impacts.
Use methods like FAIR to prioritize risks and provide updates on risks, incidents, and mitigation efforts.

4. Collaboration on Risk Mitigation

Partner with governance and IT teams to develop and implement risk mitigation strategies aligned with security and business goals.

5. Incident Response & Risk Evaluation

Act as a key incident response team member, offering expertise during security incidents.
Conduct post-incident evaluations, identify root causes, and participate in simulations to enhance response readiness.
Job Duties II

6. Cybersecurity Framework & Policy Development

Contribute to developing and refining cybersecurity policies, standards, and procedures aligned with risk management strategies.
Provide input on creating technical security standards supporting risk management goals.

7. Regulatory Compliance and Audit Support

Ensure compliance with regulatory requirements through risk assessments, vulnerability management, and mitigation efforts.
Support cybersecurity audits by providing documentation, reports, and evidence of remediation activities.

8. KPI Tracking & Reporting

Monitor KPIs to evaluate the effectiveness of risk and vulnerability management programs.
Leverage metrics, automated tools, and dashboards to report on security posture and provide real-time insights.

9. Emerging Technology Risk Management

Evaluate risks tied to adopting emerging technologies (e.g., AI, blockchain) and integrate them securely.
Develop strategies to address risks linked to digital transformation initiatives.

Job duties displayed above are not all-inclusive, site-specific responsibilities may be assigned.


Here are the incentives we offer:

Remote Work options available for eligible positions
Options are department and/or location specific
9/80 Work Schedule Option (where applicable)
Annual Vacation Incentive (40-120 hours of additional pay) for Eligible Employees
Paid Vacation Time
Company-Paid Holidays
Caregiver Leave
Excellent 401(k) Match
Pension Plan
Company-Paid Sick Leave and Long-Term Disability
Medical, Dental, & Vision Plans; FSA and HSA options
Company-Paid Life Insurance for Active Employees
Healthy Rewards Program
Service Awards Program
Educational Assistance Plan
Dependent Children Scholarships
Reimbursement for Gym Membership
Employee Discount Programs
On-site Health Clinic (select locations)
On-site Cafeteria (select locations)
On-site Credit Union and ATM (Corporate office only)
On-site Fitness Center (select locations)


PLEASE NOTE ALL JOBS DO NOT QUALIFY FOR ALL PERKS


All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, ****** orientation, gender identity, national origin, or disability.

Requisition ID - 1129

💡 Quick Summary

Seeking a career-building opportunity? The CYBERSECURITY RISK ANALYST- post position is now open for candidates interested in the IT Engineer & Developer Jobs sector. This role in Houston offers a professional environment and growth potential.

Requirement Snapshot: Candidates should possess basic communication skills, a proactive attitude, and the ability to work in a team. Experience in IT Engineer & Developer Jobs is a plus.

Sponsored

Job Details

Company Name: CITGO Petroleum Corporation

Frequently Asked Questions

Click the Apply Now button on this page, login or register for free on CallCenterJob.co.in, fill in your name, mobile number, city, and experience, then submit your application. The recruiter will contact you directly.
The expected salary for CYBERSECURITY RISK ANALYST- post in Houston is $8,960 - $14,336 (Est.) per month. Actual compensation may vary based on experience and negotiation.
No, CYBERSECURITY RISK ANALYST- post is an on-site position based in Houston. Candidates must be able to commute or relocate to this location.
Basic communication skills, a proactive attitude, and the ability to work in a team are required for CYBERSECURITY RISK ANALYST- post. Previous experience in IT Engineer & Developer Jobs is a plus. Freshers may also apply depending on the employer's requirements.
Yes, CallCenterJob.co.in is completely free for job seekers. Never pay money to apply for any job. If anyone asks for payment to process your application, report it immediately using the "Report this Job" button.

Similar Openings

  • Lead Civil Engineer

    Bring your curiosity and determination to make a positive impact on the future of transport, and we’ll help you on your journey. Join our team of globally connected specialists to help solve complex transport challenges and experience groundbreaking ...

    Full Time / Part Time

    Salary Estimated: 18K to 21K

    Palmerston North, Manawatu-Wanganui

    July 10, 2026


    Apply Now

  • Roading Transport Engineer

    We are seeking an experienced traffic engineering professional to lead Council's traffic services function and drive safety, connectivity, and performance across Whanganui's transport network. As our subject matter expert, you will manage contracts f...

    Full Time / Part Time

    Salary Estimated: 21K to 34K

    Whanganui, Manawatu-Wanganui

    July 10, 2026


    Apply Now

  • Team Leader - Field Service

    Join us in pioneering breakthroughs in healthcare. For everyone. Everywhere. Sustainably. Take the next step in your career and lead an experienced field service team dedicated to delivering excellence in medical imaging. As Team Leader, you’ll play ...

    Full Time / Part Time

    Salary Estimated: 20K to 32K

    Palmerston North, Manawatu-Wanganui

    July 10, 2026


    Apply Now

  • Expression of Interest – Aviation Training Systems - Systems Engineer

    Expression of Interest – Aviation Training Systems - Systems Engineer Beca Applied Technologies are engaged across multiple market segments primarily defence and national security, but also across aviation, information security, software, and transpo...

    Full Time / Part Time

    Salary Estimated: 19K to 26K

    Palmerston North, Manawatu-Wanganui

    July 10, 2026


    Apply Now

  • Programme Delivery Lead

    We are seeking an experienced programme delivery specialist to lead procurement, contract management, and capital project delivery across Council's transportation programme. As our subject matter expert, you will provide technical leadership in how w...

    Full Time / Part Time

    Salary Estimated: 23K to 30K

    Whanganui, Manawatu-Wanganui

    July 9, 2026


    Apply Now

  • Planning Engineer

    PLANNING ENGINEER The Top Energy Group operates throughout the Far North delivering geothermal electricity generation and electricity network operations. Our purpose is to provide affordable and sustainable energy for Far North consumers, which we ar...

    Full Time / Part Time

    Salary Estimated: 20K to 27K

    Whangarei, Northland

    July 9, 2026


    Apply Now