Role: Risk and Governance Analyst
Location: Oklahoma City, OK
Pay Rate Range: $44.00 - $63.00/hour
**Onsite requirement -Must be authorized to work in the United States now, and in the future, without assistance.
Overview
We're seeking a seasoned professional with a strong background in risk analysis, cybersecurity, and physical security. This individual will be responsible for identifying, evaluating, and mitigating enterprise-level risks across a broad organizational landscape. The role involves close collaboration with multiple departments to enhance overall security posture and support governance, compliance, and audit efforts.
Key Responsibilities
- Conduct in-depth assessments of cyber and physical security risks.
- Contribute to the development and refinement of corporate security policies, controls, and risk methodologies.
- Analyze systems and infrastructure to identify vulnerabilities and recommend architectural control enhancements.
- Prepare comprehensive reports detailing risk findings, mitigation strategies, and progress updates.
- Track and manage issues via risk registers, ensuring timely resolution and communication with stakeholders.
- Collect, analyze, and report on system access patterns and audit trail data.
- Support internal and third-party audit initiatives, providing necessary documentation and insights.
- Collaborate with IT and operational technology teams on secure system designs and upgrades.
- Deliver security awareness content and assist in employee training efforts.
- Serve as an advisor to governance teams and leadership regarding best practices and evolving risks.
- Recommend process improvements that align with risk frameworks and business goals.
Required Skills & Experience
- Strong understanding of both IT and OT security environments.
- Hands-on experience conducting risk assessments and implementing mitigations.
- Familiarity with frameworks such as NIST, SOX, NERC, COBIT, ISO, ITIL, etc.
- Ability to analyze, synthesize, and present technical information to both technical and non-technical audiences.
- Experience working with SDLC and supporting secure application development practices.
- Effective communicator with experience presenting findings to leadership or governance teams.
- Highly organized with the ability to manage multiple complex projects in a fast-paced environment.
Preferred Qualifications
- Bachelor’s degree in a related field or equivalent experience (minimum 8 years)
- 4+ years in a dedicated role focused on risk management, security governance, or cybersecurity
- Certifications such as CISSP, CISM, or CRISC strongly preferred
Work Environment
- Office-based or hybrid; remote options may be considered
- Occasional travel may be required
- Role may involve extended hours to support projects or deadlines
Why choose Addison IT?
· Pay: We negotiate high salaries using U.S. Bureau of Labor Statistics
· Benefits & Bonuses: You are eligible for medical, dental, vision insurance benefits, 401K, and monetary bonuses
· Permanent Employment: Many of Addison’s job openings lead to potential permanent employment
· Connections: You connect directly with hiring managers from renowned organizations
· Options: You are presented with multiple employment options near your home
· Professional Development: You are provided hiring process advice, resume revision, and employment term negotiation
IND 005-010
Addison Group is an Equal Opportunity Employer. Addison Group provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Addison Group complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. Reasonable accommodation is available for qualified individuals with disabilities, upon request.
