Security Risk & Governance Consultant/Cyber Risk & Operations Analyst

This role is ideal for someone who thrives at the intersection of people, technology, and operations. You will help teams understand cybersecurity risks, make informed decisions, and enable secure, reliable business operations. Rather than acting as a gatekeeper, you will serve as a trusted advisor who translates technical security concerns into practical business outcomes. Key Responsibilities Partner with business, infrastructure, engineering, and OT teams to understand operational environments and security needs. Translate cybersecurity risks, vulnerabilities, and OT exposures into clear business impacts, remediation options, and risk-based recommendations. Support risk-informed decision-making by outlining trade-offs, priorities, and remediation strategies. Conduct and support security reviews of OT environments and hybrid IT/OT architectures. Assist with the secure integration of new assets, vendors, and acquisitions into existing environments. Prioritize remediation efforts based on operational impact, risk, and business objectives. Track remediation activities, commitments, and timelines while identifying recurring issues and systemic risks. Contribute to risk assessments, exception reviews, security documentation, and governance activities. Gather and document security requirements in a manner that is easily understood by both technical and non-technical stakeholders. Develop executive-level summaries, risk reports, dashboards, and visualizations to communicate key security insights. Drive process improvements by creating standardized workflows, templates, and best practices. Qualifications Experience in one or more of the following areas: Operational Technology (OT), Industrial Control Systems (ICS), or industrial environments Energy, gas, utilities, or critical infrastructure sectors IT infrastructure, networking, or systems administration Cybersecurity, risk management, or vulnerability management Strong analytical and problem-solving skills with the ability to simplify complex technical concepts. Excellent communication and stakeholder management skills across technical and business audiences. Self-motivated with the ability to work independently and collaborate across multiple teams. Curious, proactive, and driven to understand root causes and operational realities. Experience creating reports, metrics, dashboards, and executive-level analyses that clearly communicate risk and business impact.