Remote Position / Must align CST Business Hour
Pay: $38.86/hour. W2 only.
Duration: 4.5 months with extensions based on client need and performance
Job Title: Cybersecurity Compliance Analyst
About The Role
We're looking for a skilled Cybersecurity Compliance Analyst who sits at the intersection of security policy, compliance, exception management, and IT operations. You'll be a key contributor to our compliance evaluation process - from intake to closure - while partnering with business units and IT teams to mitigate risk and ensure internal applications are in compliance with company policy and secure. You will also support the identification, tracking, and remediation of cybersecurity issues across the organization. This role ensures that identified risks, audit findings, and control gaps are properly documented, prioritized, and resolved within defined timelines. The Cybersecurity Compliance Analyst will apply a risk-based approach to security assessment, remediation, and compliance with an emphasis on securing applications. You enjoy work that involves teamwork, independent activities, and business engagement.
What you'll do
Support compliance evaluations. Contribute to the evidence-based, business user-driven Compliance Evaluation Process, with periodic sample reviews for compliance.
Maintain and enhance the cybersecurity issue and exception management process, ensuring consistent identification, tracking, and remediation of issues; Coordinate with control owners and technical teams to ensure timely remediation and accurate documentation of risk mitigation activities.
Support Cybersecurity Compliance through team collaboration, innovation, and independent research.
Identify opportunities to develop solutions that increase efficiencies.
Be an Advocate. Promote the global security program and cooperation across HPE business units.
Build and maintain dashboards and reporting for assessment inventory, aging, and closure rates for leadership and audit audiences.
Collaborate with GRC, Cybersecurity SMEs, IT, App owners to ensure Compliance Evaluation requests are appropriately scoped, documented, and assessed within agreed timelines.
Support internal and external audits by providing clear documentation of the compliance evaluation process and evidence of controls.
Contribute to security policy updates that reflect emerging risk patterns or operational realities surfaced through the evaluation process.
Required Qualifications
3+ years in an IT security, GRC, compliance, or similar role required.
Bachelor's degree required.
Solid understanding of core security frameworks (NIST CSF, ISO/IEC 27001/2, CIS Controls, or similar) and security best practices is required.
Experience assessing compliance of internal applications with internal cybersecurity policy is required.
Experience with ITSM or GRC platforms (e.g. ServiceNow, Jira, Archer, OneTrust) is strongly preferred.
By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at Privacy Policy
