IT Business Systems Analyst II – "Cybersecurity & OT Risk"

IT Business Systems Analyst II – Cybersecurity & OT Risk

Location: Houston, TX (Onsite)

Duration: 12 Months (Contract)

Experience Level: Mid-Level

Position Overview

Join a leading energy and utilities company as an IT Business Systems Analyst II to operate at the intersection of cybersecurity, operations, and business enablement. This role is ideal for someone who excels at translating technical risks into meaningful business insights and helping teams make informed, practical decisions. 

You will work closely with business stakeholders, infrastructure teams, and Operational Technology (OT) environments to ensure cybersecurity practices support reliability, operational continuity, and business outcomes. This is not a gatekeeping role—your focus will be on clarity, enablement, and driving actionable outcomes.

Key Responsibilities

• Act as a trusted advisor and partner to business, IT, and OT stakeholders
• Translate cybersecurity risks (e.g., vulnerabilities, OT exposures) into clear business impact, recommendations, and decision options
• Support risk-based decision-making by outlining tradeoffs, remediation paths, and priorities
• Conduct and support security reviews across OT environments and hybrid IT/OT architectures
• Collaborate with engineering and operations teams to understand real-world system usage and constraints
• Assist in the secure integration of new assets, vendors, and acquisitions into existing environments
• Prioritize remediation activities based on operational impact and risk exposure
• Track remediation efforts, commitments, and timelines to ensure accountability
• Identify recurring risk patterns and systemic issues across environments
• Contribute to risk assessments, exception management, and cybersecurity documentation
• Gather, document, and translate security requirements into actionable guidance for non-security teams
• Develop clear risk summaries, reports, dashboards, and visualizations for leadership and stakeholders
• Standardize repeatable processes, templates, and frameworks to improve efficiency and consistency

Required Skills & Experience

• 6–10 years of experience as a Business Systems Analyst, Cybersecurity Analyst, or similar role
• Experience in one or more of the following domains:

           o Operational Technology (OT) / Industrial Control Systems (ICS)

           o Energy, gas, utilities, or critical infrastructure environments

           o IT infrastructure, networking, or systems administration

           o Cybersecurity, risk management, or vulnerability management

• Strong analytical and problem-solving skills with the ability to simplify complex technical topics
• Proven ability to communicate effectively with both technical and non-technical audiences
• Experience translating technical risks into business-relevant insights and recommendations
• Ability to work independently as a self-starter with minimal supervision
• Strong organizational and stakeholder management skills
• Experience creating concise, impactful reports, metrics, and risk analyses

Preferred Qualifications

• Experience working in hybrid IT/OT environments
• Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27001)
• Experience with vulnerability management tools and risk tracking platforms
• Exposure to incident response, threat modeling, or security architecture reviews

Key Traits for Success

• Curiosity and a strong learning mindset
• Ability to ask insightful questions and challenge assumptions
• Collaborative approach with a focus on enabling teams
• Strong attention to detail with a focus on clarity and impact

Work Environment

This is a full-time position with standard business hours (8 AM - 5 PM). The role offers the opportunity to work as a recognized expert within the organization while contributing to critical infrastructure operations in the energy sector.