Cybersecurity Risk Analyst (chevron)
Job posting number: #241325 (Ref:R000061719)
Job Description
Total Number of Openings
7The Cybersecurity Risk Analyst position is responsible for assessing risks, analyzing cyber threats, and assisting in preventing cyber-attacks before they occur. They provide guidance on tools to measure and manage risk, identify/mitigate threats, and protect against unauthorized disclosure of confidential information. The Cybersecurity Risk Analyst's duties include assessing the adequacy of security strategies, adherence to security guardrails and calculating the impact of adverse events or threats. Ideal candidates will assist in ensuring effective execution of cybersecurity strategies and our risk management framework by managing relationships with key stakeholders, verifying that IT risks are appropriately mitigated, as well as providing periodic updates on the state of compliance.Advise leadership on cybersecurity initiatives that supports the latest trends in IT & OT security, risk, and controls.
Maintain cybersecurity documentation including Business Continuity and Disaster Recovery Plans
Facilitate risk assessment exercises, perform compliance and risk monitoring/validation, and other compliance assurance exercises as required.
Lead awareness and training for the information technology risk program elements to ensure responsibilities are understood and executed.
Coordinate external and internal assurance or advisory audits, representing information technology throughout the lifecycle of the audit (from planning through remediation strategy).
Monitor, track, and report mitigation and resolution of IT risks.
Facilitate compliance of all equipment utilized in the Process Control Network (PCN)/Operational Technology (OT) and Demilitarized Zone (DMZ), including timely remediation of critical vulnerabilities.
Support and integrate IT standards into the PCN environment.
Serve as site representative for internal and external cyber initiatives.
Serve as Process Advisor for the Operations Technology Incident Response Process (OTIRP)
Chevron participates in E-Verify in certain locations as required by law.