Business Consultant

IT Business Consultant (Cybersecurity Compliance Analyst)

Key Details

• Job Title: IT Business Consultant
• Location: Spring, TX 77389
• Work Arrangement: 100% Onsite
• Employment Type: W2 only (not open to C2C, 1099, or H1B)
• Duration: 6-month contract
• Compensation: $24/hr. – $27/hr.

Role Overvi

ewThe IT Business Consultant (Cybersecurity Compliance Analyst) operates at the intersection of cybersecurity policy, compliance, risk management, and IT operations. This role is responsible for supporting the full compliance evaluation lifecycle—from intake through closure—ensuring internal applications and processes align with organizational security policies and standard

s.The ideal candidate brings a risk-based approach to compliance assessments, strong collaboration skills, and the ability to manage multiple priorities in a fast-paced environment. This individual will work closely with business stakeholders, IT teams, and cybersecurity professionals to mitigate risk and strengthen the organization’s security postur

e.

Key Responsibili

• tiesSupport compliance evaluations through an evidence-based, business-driven pro
• cessAssess internal applications for adherence to cybersecurity policies and identify remediation act
• ionsApply risk-based methodologies to security assessments, remediation, and exception manage
• mentCollaborate with GRC teams, cybersecurity SMEs, IT teams, and application owners to ensure proper scoping, documentation, and timely completion of evaluat
• ionsBuild and maintain reporting dashboards for compliance metrics, including inventory tracking, aging, and closure r
• atesSupport internal and external audits by providing clear documentation and evidence of control effective
• nessIdentify and implement process improvements to increase efficiency and consist
• encyContribute to updates and enhancements of cybersecurity policies based on emerging risks and operational insi
• ghtsPromote awareness and adoption of the organization’s cybersecurity program across business u

nits

Qualific

• ationsMinimum of 3 years of experience in IT security, governance, risk and compliance (GRC), compliance, or IT oper
• ationsStrong understanding of industry-standard security frameworks, incl
• uding:NIST Cybersecurity Framework
• (CSF)ISO/IEC 27001
• /27002CIS Co
• ntrolsExperience assessing internal applications for compliance with cybersecurity po
• liciesHands-on experience with ITSM or GRC platforms (e.g., ServiceNow, Jira, Archer, One
• Trust)Strong analytical, problem-solving, and critical thinking
• skillsExcellent organizational and prioritization skills with the ability to manage a high volume of re
• questsEffective verbal and written communication
• skillsAbility to collaborate with and influence stakeholders across multiple levels of the organi

zation

Preferred Qualif

• icationsFamiliarity with cloud security concepts (AWS, Azure,
• or GCP)Experience working in modern DevOps envi
• ronmentsRelevant professional certifications (e.g., CISSP, CISM
• , CRISC)Background in regulated industries such as financial services, healthcare, or go
• vernmentExperience developing dashboards and reporting using tools such as Power BI, Tableau, o

r Splunk

C

• ore SkillsCompliance and risk
• assessmentBusiness analysis and stakeholder
• engagementSecurity policy and control
• validationGRC platforms
• and toolsProcess improvement and op
• timizationData analysis and