Lead Information Security Analyst - Governance, Risk, & Compliance (GRC)

Harris County, TX

$90K — $120K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • High school diploma or GED equivalency required.
  • Five years of experience in Information Security, IT, Computer Science, or IT Risk Management.
  • Familiarity with IT Risk Management projects.
  • Strong communication skills with the ability to convey risks to stakeholders.
  • Proven ability to build interdepartmental relationships.

Responsibilities

  • Conduct security risk assessments for various IT environments.
  • Perform vendor security assessments to enhance governance.
  • Serve as a Cloud Security SME, focusing on Microsoft Azure.
  • Stay informed about cybersecurity threats and recommend mitigation strategies.
  • Oversee project activities ensuring timely completion of tasks.

Benefits

  • Medical, dental, and vision coverage.
  • Generous paid time off including vacation and personal leave.
  • Retirement savings plan opportunities.
  • Employee assistance program and wellness benefits.
  • Professional development opportunities.
Full Job Description
Salary: Depends on Qualifications
Location : Houston, TX
Job Type: Regular Full-time
Job Number: 16922
Department: Universal Services
Opening Date: 07/13/2026
Closing Date: 8/13/2026 11:59 PM Central
Max Number of Applicants: 100

Position Description
Job Summary:

The Information Security Lead will ensure cybersecurity risks and threats are proactively identified and addressed to maintain the protection of Harris County's information systems, critical assets, and network security infrastructure.
Duties and Responsibilities:
  • Conduct information security risk assessments and facilitate reviews of cloud, hybrid cloud, and on-premises IT solutions and infrastructure.
  • Perform third-party vendor security risk assessments to support governance efforts.
  • Serve as a subject matter expert (SME) on Cloud Security, with an emphasis on Microsoft Azure.
  • Stay updated on cybersecurity threats and vulnerabilities and provide recommendations for mitigation, particularly within Microsoft Azure cloud security.
  • Utilize security controls to enhance security posture and research emerging threats relevant to cloud and hybrid cloud operations.
  • Assess and prioritize information security risks, ensuring compliance with regulatory requirements and information security policies.
  • Oversee assigned project activities to ensure timely completion.
  • Develop remediation plans and proactively track progress, presenting cybersecurity risks and gaps to stakeholders.
  • Provide design input, implementation, and maintenance of enterprise-wide security solutions to address cybersecurity needs.
  • Work on high-complexity projects requiring in-depth knowledge across multiple technical areas and business segments.
  • Communicate security vulnerabilities and risks to key stakeholders and consult on remediation efforts.
  • Develop documentation to support cybersecurity operations, including:
      • Communications
      • Job aids
      • Educational/training materials
      • Architecture diagrams
      • Technical reference guides
      • Procedures
      • Strategy/technology roadmaps
      • Request for Proposal/Offers (RFP/RFOs)
      • Statement of Work (SOW)
      • Metrics and reports
      • Project plans
      • Executive presentations
  • Coach and mentor junior-level technical staff.
  • Participate in Cybersecurity Incident Response Team (CIRT) investigations and response activities.
  • Perform other duties as assigned.

Requirements
Education:
  • High school diploma or GED equivalency from an accredited educational institution.

Experience:
  • Five (5) years of experience in Information Security, IT, Computer Science, or IT Risk Management

Knowledge, Skills, & Abilities:
  • Designing, implementing, and executing IT Risk Management projects.
  • Building and maintaining strong interdepartmental relationships.
  • Effectively communicating security risks and controls to stakeholders and leadership.
  • Passion for cybersecurity, a self-starter mentality, and ability to work in a team environment.

NOTE: Qualifying education, experience, knowledge and skills must be documented in your job application. You may attach a resume to the application as supporting documentation but ONLY information stated on the application will be used for consideration. "See Resume" will not be accepted for qualifications.

Preferences
Education:
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience).

Certifications:
  • Industry certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or GIAC Certified Incident Handler (GCIH) credentials.

Experience:
  • Strong understanding of IT infrastructure and network security principles.
  • Experience with cloud security (AWS, Azure, or GCP).
  • Knowledge of scripting languages (Python, PowerShell, etc.) for automation.

General Information
Location:
  • 406 Caroline St., Houston, Tx 77002

Work Schedule:
  • 8 hours/day

Work Arrangement:
  • Hybrid (3 days onsite, 2 days WFH)
  • Working Conditions:
  • May require occasional evening or weekend work during major incidents or upgrades.

Employment may be contingent on passing a drug screen and meeting other standards.

Due to a high volume of applications positions may close prior to the advertised closing date or at the discretion of the Hiring Department.

HARRIS COUNTY EMPLOYEE BENEFITS

Harris County offers a highly competitive benefits program, featuring a comprehensive group health plan and defined benefit retirement plan.
The following benefits are offered only to Harris County employees in regular (full-time) positions:
Health & Wellness Benefits
  • Medical Coverage
  • Dental Coverage
  • Vision Coverage
  • Wellness Plan
  • Life Insurance
  • Long-Term Disability (LTD) Insurance
  • Employee Assistance Program (EAP)
  • Healthcare Flexible Spending Account
  • Dependent Care Flexible Spending Account

Paid Time Off (PTO)
  • Ten (10) days of vacation leave per year (accrual rate increases after 5 years of service)
  • Eleven (11) County-observed holidays
  • One (1) floating holiday per year
  • Paid Parental Leave*
  • Sick Leave

Retirement Savings Benefit
  • 457 Deferred Compensation Plan

The following benefits are available to Harris County employees in full-time and select part-time positions:
  • Professional learning & development opportunities
  • Retirement pension (TCDRS defined benefit plan)
  • Flexible work schedule*
  • METRO RideSponsor Program*


* Participation may vary by County department. The employee benefits plans of Harris County are extended to all eligible participants across various departments with the exception of the Harris County Community Supervision and Corrections Department, for which the cited Health & Wellness Benefits are administered through the State of Texas.
In accordance with the Harris County Personnel Regulations, group health and related benefits are subject to amendment or discontinuance at any time. Harris County Commissioners Court reserves the right to make benefit modifications on the County's behalf as needed.
For plan details, visit the Harris County Benefits & Wellness website:
01

Which of the following best describes your highest level of education completed as it relates to this position?Qualifying information must be documented in the Education section of your application.
  • High School or GED diploma
  • Associate Degree
  • Bachelor's Degree
  • Master's Degree or higher
  • None of the above

02

If you selected a college degree in response to the previous question, which of the following best describes your major?
  • Cybersecurity
  • Computer Science
  • Information Technology
  • Other Related Field
  • Unrelated Field
  • N/A; No Degree

03

Please describe your educational background including level of education completed, area of study and completed major and minor programs.
04

Which of the following industry certifications do you currently hold? Select all that apply:
  • CompTIA Security+
  • Certified Information Systems Security Professional (CISSP)
  • Certified Ethical Hacker (CEH)
  • GIAC Certified Incident Handler (GCIH) credentials
  • N/A; None of the above

05

Which of the following best describes your verifiable experience in Information Security, IT, Computer Science, or IT Risk Management?(To be considered, qualifying experience must be documented in your application's employment history)
  • Less than five (5) years
  • Five (5) years but less than six (6) years
  • Six (6) years but less than seven (7) years
  • Seven (7) years or more
  • I do not have this experience

06

Please provide the dates of employment during which you obtained experience working in Information Security, IT, Computer Science, or IT Risk Management. Provide the month and year that began and ended the experience ( Example: "January 2020 - December 2025" ) If this experience is not clearly documented in the Work Experience section, your application will be disqualified. If you do not have this experience, type "N/A" in the space provided.
Required Question

Similar Jobs

More Jobs at Harris County, TX

More Information Technology Jobs

Find similar Lead Information Security Analyst - Governance, Risk, & Compliance (GRC) jobs: