IT Compliance & Risk Analyst
Apply NowCompany: State of Wisconsin
Location: Madison, WI 53711
Description:
Introduction
Join our dedicated IT security team to lead and support efforts related to governance, risk and compliance. If you are looking to grow your career in a collaborative environment that values diverse perspectives, we invite you to apply for this newly created IT Compliance and Risk Analyst position.
The Department of Workforce Development (DWD) offers interesting and meaningful work with an employee-friendly and inclusive work environment, work-life balance, a casual office environment, flexibility, and many opportunities to grow your skills. Apply now to find out why there's so much to love about working for Wisconsin .
The person hired into this position may request to work up the majority of their work hours remotely within Wisconsin and will be required to report occasionally to our downtown Madison location ( 201 E. Washington Ave. ).
This recruitment may be used to fill future similar vacancies (permanent, project or Limited Term).
Position Summary
This position supports Department of Workforce Development and its partners in information security to governance, risk, and compliance (GRC) functions. Key responsibilities include:
Salary Information
Starting pay is between $93,600 and $104,603 per year, depending on qualifications, plus an exemplary benefits package :
Use this Total Rewards Calculator to see an estimate of the total value of our competitive benefits package!
The classification title for this position is IS Technical Services Specialist (schedule 07, range 33). A 12-month probationary period will be required This position is considered exempt under the Fair Labor Standards Act.
Pay will be set in accordance with the State Compensation Plan in effect at the time of appointment. Starting pay may vary for current state employees.
Job Details
Remote work: Employees with approved remote and hybrid-remote work arrangements are generally expected to work within the state of Wisconsin. High-speed internet access is required to meet the needs of remote work. Remote work options are subject to change.
Criminal histories: We also consider all qualified applicants with criminal histories, consistent with applicable federal, state and local law. Finalists for this position may be required to allow DWD to conduct a background check or other checks to determine whether the circumstances of any conviction may be related to the job being filled. This position has access to sensitive federal tax information; FBI fingerprinting will also be required.
Eligibility to work in United States: Applicants must be legally entitled to work in the United States (i.e. a US citizen or national or a lawful permanent resident) at the time of appointment. DWD does not sponsor visas and is not an eligible OPT employer for those with F1 visas. This is not a contract position. Any appointment made will be contingent on the applicant completing the I-9 upon hire.
Qualifications
Qualifications marked with an asterisk (*) below will be evaluated in the first step of the selection process. Additional qualifications may be evaluated in subsequent steps.
You need to have the following experience:
Any of the following experience would be nice to have:
How To Apply
Note: If you are viewing this posting on an external site, please visit Wisc.Jobs (search 16825) to complete your application.
To apply, click "Apply for Job" to start the application process. That will prompt you to access your existing account or create a new account. You will be asked to attach a resume and a letter of qualifications as part of the application process. It is important that these materials clearly illustrate how your qualifications relate to the qualifications of this job. Please review this additional guidance on developing your resume and letter of qualifications (including a template) as you prepare to apply.
Please see the Frequently Asked Questions for general Wisc.Jobs user information and technical assistance.
What happens next? A panel will review your application materials to determine your eligibility for further consideration in the selection process. The most qualified applicants will be invited to participate in the next step of the selection process, which is typically a virtual interview.
DWD values a diverse workforce and is an equal opportunity and affirmative action employer . Veterans, women, people of color, LGBTQIA+, and people with disabilities are encouraged to apply. We provide reasonable accommodations to applicants and employees with disabilities.
The State of Wisconsin offers a special program for qualified veterans with a 30% or greater service-connected disability. Email the HR contact listed in this announcement for information on how to apply under this provision. Current state employees are not eligible for non-competitive appointment.
Deadline to Apply
Application materials must be submitted by 11:59 PM (central standard time) on Monday, March 3, 2025.
Join our dedicated IT security team to lead and support efforts related to governance, risk and compliance. If you are looking to grow your career in a collaborative environment that values diverse perspectives, we invite you to apply for this newly created IT Compliance and Risk Analyst position.
The Department of Workforce Development (DWD) offers interesting and meaningful work with an employee-friendly and inclusive work environment, work-life balance, a casual office environment, flexibility, and many opportunities to grow your skills. Apply now to find out why there's so much to love about working for Wisconsin .
The person hired into this position may request to work up the majority of their work hours remotely within Wisconsin and will be required to report occasionally to our downtown Madison location ( 201 E. Washington Ave. ).
This recruitment may be used to fill future similar vacancies (permanent, project or Limited Term).
Position Summary
This position supports Department of Workforce Development and its partners in information security to governance, risk, and compliance (GRC) functions. Key responsibilities include:
- Responsible for maintaining a robust framework to manage Department-wide systems and data risks
- Support the execution of basic GRC tasks and projects
- Assist in all aspects of IT controls testing and risk management related functions
- Evaluate risk by leading security risk assessments efforts of for new and existing IT systems, third party solutions, and new cloud applications.
- Assess security controls, draft system security plans, and conduct ongoing monitoring of security measures to ensure compliance with industry standards and regulations.
- Assess information risks and addressing noncompliance issues to support informed decision-making
- Develop new or update existing security policies, standards, or specifications.
- Participate in cybersecurity incident response activities.
- Participate in internal and external security-related audits.
- Provide expert technical support in design, development, and implementation of security controls.
Salary Information
Starting pay is between $93,600 and $104,603 per year, depending on qualifications, plus an exemplary benefits package :
- Generous paid time off , including at least 3 1/2 weeks of vacation/personal time, nine paid holidays, and ample sick time that rolls over each year with no cap.
- Excellent and affordable health insurance options (starting at $42/month for single and $104/month for family coverage).
- Other great insurance options (dental, vision, life, and more).
- A top-notch retirement program and optional tax advantaged 457 retirement savings plan.
- A Well Wisconsin program, offering wellness tools and rewards to employees and spouses.
- A free and confidential employee assistance program that offers employees and their household members tools, resources, and professional consultation services.
Use this Total Rewards Calculator to see an estimate of the total value of our competitive benefits package!
The classification title for this position is IS Technical Services Specialist (schedule 07, range 33). A 12-month probationary period will be required This position is considered exempt under the Fair Labor Standards Act.
Pay will be set in accordance with the State Compensation Plan in effect at the time of appointment. Starting pay may vary for current state employees.
Job Details
Remote work: Employees with approved remote and hybrid-remote work arrangements are generally expected to work within the state of Wisconsin. High-speed internet access is required to meet the needs of remote work. Remote work options are subject to change.
Criminal histories: We also consider all qualified applicants with criminal histories, consistent with applicable federal, state and local law. Finalists for this position may be required to allow DWD to conduct a background check or other checks to determine whether the circumstances of any conviction may be related to the job being filled. This position has access to sensitive federal tax information; FBI fingerprinting will also be required.
Eligibility to work in United States: Applicants must be legally entitled to work in the United States (i.e. a US citizen or national or a lawful permanent resident) at the time of appointment. DWD does not sponsor visas and is not an eligible OPT employer for those with F1 visas. This is not a contract position. Any appointment made will be contingent on the applicant completing the I-9 upon hire.
Qualifications
Qualifications marked with an asterisk (*) below will be evaluated in the first step of the selection process. Additional qualifications may be evaluated in subsequent steps.
You need to have the following experience:
- *Applying cyber security frameworks and standards related to National Institute of Standards & Technology, Internal Revenue Service, Social Security Administration, and other regulatory compliance requirements (e.g. NIST 800-53 Rev. 5, IRS Publication 1075, and SSA Technical System Security Requirements, ISO 27001, CIS Critical Security Controls, COBIT).
- *Conducting audits, performing risk assessments, developing system security plans, and reporting on compliance and IT security control effectiveness.
- *Evaluating security controls, security data, and network security protocols.
- *Using security monitoring tools, such as SIEM (e.g., Splunk, QRadar, LogRhythm), IDS/IPS, and vulnerability scanners.
- Communicating and collaborating with others to achieve business objectives.
Any of the following experience would be nice to have:
- *Applying a wide range of security technical concepts and technologies such as application security, secure coding concepts, endpoint security, edge technologies, logging/monitoring, malware defenses, vulnerability assessment, patch management, and incident response.
- *Working with various regulations or compliance requirements such as LAB, IRS FTI, SSA, Federal/State Privacy laws.
- *Performing the security assessment for a cloud service/application such as a Software-as-a-Service (SaaS), including activities such as Consensus Assessments Initiative Questionnaires (CAIQ) and SOC II type 2 reports.
- Performing gap analysis between security controls and a compliance framework and developing remediation strategies based on results.
How To Apply
Note: If you are viewing this posting on an external site, please visit Wisc.Jobs (search 16825) to complete your application.
To apply, click "Apply for Job" to start the application process. That will prompt you to access your existing account or create a new account. You will be asked to attach a resume and a letter of qualifications as part of the application process. It is important that these materials clearly illustrate how your qualifications relate to the qualifications of this job. Please review this additional guidance on developing your resume and letter of qualifications (including a template) as you prepare to apply.
Please see the Frequently Asked Questions for general Wisc.Jobs user information and technical assistance.
- Technical issues: if you encounter issues submitting your on-line application (e.g. signing in or uploading a resume), please email the Wisc.Jobs Help Desk at wiscjobs@wisconsin.gov or call (608) 267-1012 (Monday - Friday, 7:45am - 4:30pm).
- Position questions: if you have questions about the position or this recruitment (e.g. projected start date, skills needed, etc.), please email Lisa at LKBJobs@dwd.wisconsin.gov or call (608) 266-9310.
What happens next? A panel will review your application materials to determine your eligibility for further consideration in the selection process. The most qualified applicants will be invited to participate in the next step of the selection process, which is typically a virtual interview.
DWD values a diverse workforce and is an equal opportunity and affirmative action employer . Veterans, women, people of color, LGBTQIA+, and people with disabilities are encouraged to apply. We provide reasonable accommodations to applicants and employees with disabilities.
The State of Wisconsin offers a special program for qualified veterans with a 30% or greater service-connected disability. Email the HR contact listed in this announcement for information on how to apply under this provision. Current state employees are not eligible for non-competitive appointment.
Deadline to Apply
Application materials must be submitted by 11:59 PM (central standard time) on Monday, March 3, 2025.