IT Security Consultant - Remote, OH

IT Security Consultant - Remote, OH

Join to apply for the IT Security Consultant - Remote, OH role at Ocean Blue Solutions Inc.

3 days ago: be among the first 25 applicants.

Submission Due Date: 11/18/2025

Client: State of Ohio

Interview: Central Ohio candidate in person; others via Teams.

Location: Central Ohio resident onsite full-time; others remote.

IT Security Resource (ITC
1): This security specialist works with the agency CISO, Risk Manager, and Privacy Officer to perform the security analysis and other assigned security/risk tasks.

The IT Consultant 1 is a tenured-level professional responsible for identifying, analyzing, and mitigating complex IT risks across the organization's technology infrastructure. This role involves strategic planning, cross-functional leadership, and subject matter expertise in IT risk management. The IT Consultant 1 will be a part of the Ohio Department of Medicaid IT Risk and Security that works closely with leadership and external partners to ensure regulatory compliance, enhance the organization's cybersecurity posture, and support enterprise-wide risk and audit initiatives.

• Lead complex IT risk assessments and threat modeling activities across systems and applications.
• Analyze trends and emerging risks to proactively recommend strategic mitigations.
• Develop and oversee implementation of advanced risk mitigation strategies.
• Monitor risk programs and revise controls based on performance metrics and audit outcomes.
• Ensure enterprise-wide compliance with federal and state regulations, including HIPAA, IRS Pub. 1075, NIST 800-53, MARS-E, and ISO standards.
• Support policy lifecycle management and contribute to enterprise GRC strategy.
• Provide leadership in incident response and post-incident reviews.
• Collaborate with internal teams on root cause analysis and long-term remediation planning.
• Review, update, and validate system security documentation for critical systems.
• Ensure alignment with internal risk policies, external contractual requirements, and frameworks such as NIST and CIS.
• Serve as a key liaison to auditors and regulatory assessors.
• Oversee evidence collection, audit response documentation, and control testing coordination.
• Lead the creation and revision of organizational IT security policies.
• Recommend and draft policy enhancements based on risk assessment results, audit findings, and regulatory changes.
• Prepare and deliver executive-level reporting on risk posture, findings, and recommendations.
• Maintain thorough documentation aligned with organizational and audit standards.
• Represent IT risk in executive discussions, technical project meetings, and external partner engagements.
• Coach and mentor junior staff, IT and business personnel.

Education: Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field is required.

Master’s degree: Preferred.

Experience: Minimum of 7 to 10 years in IT risk management, cybersecurity, or information assurance.

Demonstrated success leading cross-functional projects and managing compliance for large systems. Experience in Health and Human Services or Healthcare business preferred.

Certifications (Preferred): CISA, CISSP, CRISC, CISM, CGEIT, or similar credentials.

Technical

Skills:

Expertise in risk frameworks (NIST 800-53, MARS-E, ISO 27001), vulnerability management, system security plans, and audit lifecycle management.

Analytical

Skills:

Exceptional critical thinking, data analysis, and risk prioritization abilities.

Communication

Skills:

Strong verbal and written communication skills with the ability to tailor information to different audiences, including executives.

Interpersonal

Skills:

Demonstrated ability to collaborate across teams, influence without authority, and drive organizational change.

Mid-Senior level

Full-time

Information Technology

IT Services and IT Consulting

Referrals increase your chances of interviewing at Ocean Blue Solutions Inc by 2x.

Apply BELOW