CYBERSECURITY RISK ANALYST jobs in United States
cer-icon
Apply on Employer Site
company-logo

CITGO · 19 hours ago

CYBERSECURITY RISK ANALYST

positionHouston, TX
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
date8+ years exp

CITGO Petroleum Corporation is a recognized leader in the refining industry, operating under the CITGO brand. The Cybersecurity Risk Analyst is responsible for identifying and managing cybersecurity risks, conducting risk assessments, leading vulnerability management efforts, and ensuring compliance with industry regulations to enhance the organization’s security posture.

Oil and Gas
check
H1B Sponsor Likelynote

Responsibilities

Perform regular risk assessments of IT and OT systems, including networks, cloud platforms, IoT devices, and software, aligned with NIST and CIS Controls
Ensure compliance with security regulations (e.g., GDPR, CCPA, PCI DSS) and manage third-party risks
Lead vulnerability scans, penetration tests, and threat modeling
Assess and address vulnerabilities, prioritize patches, and adapt to new threats in collaboration with teams
Present risk reports to stakeholders, translating technical details into business impacts
Use methods like FAIR to prioritize risks and provide updates on risks, incidents, and mitigation efforts
Partner with governance and IT teams to develop and implement risk mitigation strategies aligned with security and business goals
Act as a key incident response team member, offering expertise during security incidents
Conduct post-incident evaluations, identify root causes, and participate in simulations to enhance response readiness
Contribute to developing and refining cybersecurity policies, standards, and procedures aligned with risk management strategies
Provide input on creating technical security standards supporting risk management goals
Ensure compliance with regulatory requirements through risk assessments, vulnerability management, and mitigation efforts
Support cybersecurity audits by providing documentation, reports, and evidence of remediation activities
Monitor KPIs to evaluate the effectiveness of risk and vulnerability management programs
Leverage metrics, automated tools, and dashboards to report on security posture and provide real-time insights
Evaluate risks tied to adopting emerging technologies (e.g., AI, blockchain) and integrate them securely
Develop strategies to address risks linked to digital transformation initiatives

Qualification

Cybersecurity frameworksVulnerability managementRisk assessmentPenetration testingThreat modelingCloud platformsIoT devicesData centersSecurity certificationsAnalytical skillsCommunication skillsProblem-solving skillsDocumentation skills

Required

Bachelor's Degree
8 years of job related experience
In-depth understanding of cybersecurity frameworks such as NIST, ISO 27001, and FAIR
Strong familiarity with IT and OT environments, including cloud platforms, IoT devices, data centers, and software applications
Expertise in vulnerability management processes, penetration testing, and threat modeling
Awareness of emerging technologies and their associated risks
Advanced analytical and problem-solving skills for assessing and prioritizing risks
Effective communication and presentation skills to translate technical risks into business impacts for stakeholders
Proficiency in creating detailed documentation, including risk reports, policies, and compliance evidence

Preferred

CISSP, CRISC or other security certifications

Benefits

Remote Work options available for eligible positions
9/80 Work Schedule Option (where applicable)
Annual Vacation Incentive (40-120 hours of additional pay) for Eligible Employees
Paid Vacation Time
Company-Paid Holidays
Caregiver Leave
Excellent 401(k) Match
Pension Plan
Company-Paid Sick Leave and Long-Term Disability
Medical, Dental, & Vision Plans; FSA and HSA options
Company-Paid Life Insurance for Active Employees
Healthy Rewards Program
Service Awards Program
Educational Assistance Plan
Dependent Children Scholarships
Reimbursement for Gym Membership
Employee Discount Programs
On-site Health Clinic (select locations)
On-site Cafeteria (select locations)
On-site Credit Union and ATM (Corporate office only)
On-site Fitness Center (select locations)

Company

CITGO

twittertwitter
Glassdoor3.7
company-logo
CITGO Petroleum Corporation is a recognized leader in the refining industry and operates under the well-known CITGO brand.
dateFounded in 1983
location
Houston, Texas, USA
people-size1001-5000 employees
web-link
https://www.citgo.com/Home.jsp

H1B Sponsorship

CITGO has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (3)
2024 (5)
2023 (5)
2022 (3)
2021 (5)
2020 (4)

Funding

Current Stage
Late Stage
Total Funding
$1.1B
2023-09-13Debt Financing· $1.1B

Leadership Team

leader-logo
Edgar Rincon
Executive VP and COO
linkedin
leader-logo
Angela Dubrevil
RAIL LOGISTICS COORDINATOR
linkedin

Recent News

Business Wire
Gold Reserve Provides Update in CITGO Sale Process: Multiple Parties Appeal Final Sale Order
2025-12-02
WSJ.com: Markets
Judge Backs Elliott’s $6 Billion Bid for Venezuela’s Citgo
2025-11-27
MarketScreener
Judge Backs Elliott's $6 Billion Bid for Venezuela's Citgo -- Commodities Roundup
2025-11-27
Company data provided by crunchbase