Security Analyst
Novalink Solutions LLC
Job Description
Job Description
Under the general supervision of the GRC Manager, this position serves as a Security Analyst
responsible for supporting a wide range of compliance and cybersecurity functions across the
Wisconsin Department of Correction (DOC). Core responsibilities include providing risk assessment
and/or compliance support. Taking part in or leading audits, submitting findings, analyzing risks for
specific areas, monitoring corrective actions, and drafting risk reports with metric charts and
ongoing effort accountability. This position assesses, documents, and provides guidance to other IT
staff and non-IT areas on how to align IT operational and technology processes based on information
technology risk assessments and/or with regulatory compliance/audit functions. This position will
also provide support in detecting, analyzing, and responding to cybersecurity threats, participating in
forensic investigations, and contributing to ongoing vulnerability management efforts. The role may
also include supporting cloud security initiatives, assisting with tabletop exercises, and developing
security response procedures.
The incumbent will work collaboratively with internal stakeholders across DOC, as well as external
partners including the Department of Administration’s Division of Enterprise Technology
(DOA/DET). The role will utilize a variety of enterprise security tools and platforms.
This position may be assigned to focus areas such as incident response, phishing mitigation, threat
detection, security awareness, vulnerability scanning, or forensic analysis, depending on
organizational needs. The analyst will represent the DOC Information Security Section (ISS) team in
technical discussions, project work, and collaborative efforts to improve DOC’s cybersecurity
posture.
The position requires strong communication and problem-solving skills, the ability to work
independently on complex tasks, and a commitment to upholding the security and privacy standards
of DOC. Clients and collaborators include information technology (IT) staff, application developers,
infrastructure teams, business units, vendor, and external governmental partners. The work
environment is dynamic, requiring adaptability, initiative, and a proactive mindset.
This position shall comply with the Department’s administrative rules and the agency’s policies
and procedures including those related to the Department's overall Reentry philosophy of using
evidence-based strategies, practices and programs which target an offender’s individual
criminogenic needs and risk level.
TIME % GOALS AND WORKER ACTIVITIES
60% A. Support cybersecurity policy execution, operational standards, and
governance activities.
A1. Review policy, procedures, controls, and standards to ensure DOC and
regulatory standards are met.
A2. Address compliance issues with IT security standards; identifying deficiencies
and recommending control and risk mitigation measures.
A3. Review documentation to ensure it meets standards and applicable regulatory
requirements, standards, or industry best practices.
A4. Assist with the creation of new and updates to policy, process, and technical
controls to determine if they are sufficient and functioning as intended.
A5. Report on risks and mitigations as well as following up to verify that
adjustments were made.
A6. Interpret NIST or other standards to recommend and implement best practices.
A7. Contribute to the maintenance and operationalization of information security
policies, procedures, and response playbooks.
A8. Review new IT projects, systems, and vendor solutions for security risk,
documenting and escalating concerns as needed.
A9. Provide technical consulting and security recommendations aligned with DOC
standards and DOA/DET architecture.
A10. Participate in enterprise-level risk assessments and contribute data to
compliance, audit, or risk reporting needs.
A11. Assist in threat modeling exercises or tabletop simulations designed to
improve preparedness and resiliency.
20% B. Monitor, detect, respond to, and investigate cybersecurity threats across
DOC’s enterprise environment.
B1. Triage, analyze, and respond to cybersecurity alerts using current technologies
and tools.
B2. Conduct forensic investigations into suspected security incidents, including
phishing, account compromise, and endpoint breaches.
B3. Coordinate with internal teams and DOA/DET to contain, eradicate, and
recover from security incidents.
B4. Analyze logs, threat intelligence, and user behavior to identify indicators of
compromise (IOCs) and prevent recurrence.
B5. Document incident response actions and create post-incident reports with
recommended improvements.
B6. Participate in phishing mitigation, email threat response, and takedown
coordination with third-party providers.
B7. Assist in vulnerability validation and risk triage based on vendor and tool
security recommendations.
B8. Support the tuning, configuration, and enhancement of security technologies
used in DOC’s environment.
B9. Assist with employee forensics, HR/legal investigations, and eDiscovery
requests through log and artifact analysis.
B10. Assist with continuous improvement of detection logic, alerts, and response
workflows in current technologies and tools.
15% C. Contribute to the configuration, deployment, and lifecycle management
of security technologies.
C1. Collaborate with internal teams and DOA/DET to implement, monitor, and
maintain endpoint security, network protection, and access control systems.
C2. Assist in the deployment or refinement of security technologies and tools.
C3. Test and validate new use cases or configurations in existing tools and
platforms, reporting anomalies or conflicts.
C4. Maintain technical documentation and inventories related to security tooling,
integrations, and metrics.
5% D. Maintain current expertise in cybersecurity tools, trends, and techniques.
D1. Participate in professional development opportunities such as conferences,
technical training, and webinars.
D2. Track emerging threats, vulnerabilities, and technology trends through vendor
briefings, information sharing groups, and security communities.
D3. Contribute to internal knowledge sharing and cross-training within the
security team.
KNOWLEDGE, SKILLS AND ABILITIES
1. Experience in effective methods of written and oral communication, meeting facilitation, and
presenting to both technical and non-technical staff appropriate to audience and scenario
2. Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security
standards.
3. Experience with techniques used to establish and maintain effective working relationships
with peers and customers
4. Experience in development, approval, and implementation of security documents (policies,
standards, etc.)
5. Knowledge of information security risk activities to include risk assessments, risk registers,
and risk management
6. Knowledge of state and federal laws regarding information security (Ex.HIPAA Security
Rule) as well as experience with audit and compliance activities in conjunction with state and
federal partners/regulators such as, but not limited to, the WI Legislative Audit Bureau and
the U.S. Department of Justice
7. Experience and working knowledge of common security frameworks and control theories to
include current applicable NIST , CJIS, and ISO standards
8. Proficiency in triaging and analyzing cybersecurity alerts using enterprise technologies and
tools.
9. Strong knowledge of threat detection, incident response, and log analysis techniques.
10. Familiarity with phishing mitigation strategies and email threat analysis.
11. Working knowledge of vulnerability management practices, technologies, and tools.
12. Ability to analyze threat intelligence and apply it to strengthen detection and response
mechanisms.
13. Capability to tune and optimize SIEM rules and detection logic to reduce noise and improve
fidelity.
14. Excellent technical writing and documentation skills, including incident reports and playbook
development.
15. Ability to collaborate with cross-functional teams, including DOA/DET, infrastructure, and
development staff.
16. Commitment to continuous learning, professional development, and information sharing.
Top Skills & Years of Experience: At least 2 year's of experience required in the following:
- Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards.
- Experience and working knowledge of common security frameworks and control theories to include current applicable NIST, CJIS, and ISO standards
- Experience with creating and leading discussions around the implementation and artifact collection of NIST 800-53 controls
- Proficiency in triaging and analyzing cybersecurity alerts using enterprise technologies and tools.
- Familiarity with phishing mitigation strategies and email threat analysis.
- Incident Response Forensics and Remediation (i.e. Crowdstrike, Sandbox evaluation & detonation, Phish evaluation, Malicious Website and Malicious Intent Identification)
- Customer service as it pertains to security incident management and communication with end user about dangerous behavior.
- Excellent technical writing and documentation skills, including incident reports and playbook development.
- Ability to work independently and as part of a distributed team to achieve shared objectives.
Nice to have skills:
- Capability to tune and optimize SIEM rules and detection logic to reduce noise and improve fidelity.
- Strong interpersonal communication skills with the ability to explain complex topics to non-technical audiences.
- Experience working as a team member on projects to improve business needs.
- Experience supporting endpoint, network, and cloud-based security controls in large-scale environments.
- Demonstrated ability to adapt to emerging threats, technologies, and evolving operational needs.
Project Details: Under the general supervision of the GRC Manager, this position serves as a Security Analyst responsible for supporting a wide range of compliance and cybersecurity functions across the Wisconsin Department of Correction (DOC). Core responsibilities include providing risk assessment and/or compliance support. Taking part in or leading audits, submitting findings, analyzing risks for specific areas, monitoring corrective actions, and drafting risk reports with metric charts and ongoing effort accountability. This position assesses, documents, and provides guidance to other IT staff and non-IT areas on how to align IT operational and technology processes based on information technology risk assessments and/or with regulatory compliance/audit functions. This position will also provide support in detecting, analyzing, and responding to cybersecurity threats, participating in forensic investigations, and contributing to ongoing vulnerability management efforts. The role may also include supporting cloud security initiatives, assisting with tabletop exercises, and developing security response procedures.
$30 per hour
...the Oracle Government, Defense & Intelligence team supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work with the GDI Performance Management team to ensure documentation, processes and policies up to date...SuggestedHourly payTemporary workInternshipFlexible hours$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching...SuggestedHourly payContract workFor contractorsWork experience placementRemote work$90.23k
...our team, and together we will make a difference and change the world. Job Description CDM Smith is seeking a Senior Financial Analyst to join our Corporate FP&A Team! This role supports financial planning and analysis projects and initiatives for the enterprise,...SuggestedH1b$77.2k - $96.5k
Qualifications: ~ Bachelor’s degree in business, Accounting, MIS, Finance, or related field ~3+ years supporting or implementing Oracle EBS R12 and/or Oracle Cloud Financials ~ Hands-on experience with Order-to-Cash (O2C) and/or Procure-to-Pay (P2P) processes ~...SuggestedFull timeShift work- An insurance company in Montpelier is seeking an Associate Actuary to lead and collaborate on transactions and support financial initiatives. The successful candidate will enhance actuarial models and communicate findings to various stakeholders. Ideal applicants have ...Suggested
- ...A leading insurance provider is seeking a Senior Actuarial Analyst to develop and support a robust pricing and reserving framework. The role requires leadership in projects and advanced analytics, with opportunities for training and mentoring. Ideal candidates should have...Remote workFlexible hours
$115k - $145k
...Overview As an experienced Analyst, you will play a central role at Cornerstone Research. You will work in case teams that range in... ...manipulation of financial markets, evaluation of fair merger prices, securities litigation, claims in consumer finance, anticompetitive...Full timeWork experience placementLocal area- ...opportunities be, too? The Opportunity This role is Detroit Hybrid preferred; however, remote option possible. The Senior Actuarial Analyst is responsible for developing and supporting a robust reserving framework at Ally Insurance. The Senior Actuarial Analyst will be...Permanent employmentWork experience placementRemote workFlexible hours
$129.3k - $177.8k
Become a part of our caring community The Actuary, Analytics/Forecasting analyzes and forecasts financial, economic, and other data to provide accurate and timely information for strategic and operational decisions. Establishes metrics, provides data analyses, and works...Bi-weekly payFull timeTemporary workApprenticeshipWork experience placementRemote workWork from homeHome officeShift work- A healthcare company is seeking an Actuary, specializing in Analytics and Forecasting, located in Montpelier, Vermont. This role involves analyzing financial data, collaborating with stakeholders for actionable insights, and advising executives on significant issues. Qualifications...Remote work
$121.88k - $178.75k
Come join one of America’s fastest-growing insurance companies. Since 1848, National Life Group has aimed to keep our promises, providing families with stability in good times and in bad. Throughout that history, we have provided peace of mind to those families as they...Hourly payWork at officeFlexible hours$105k - $130k
...mission of creating opportunities for people where they live, learn, and work. CampusGuard, a Nelnet company, provides information security and privacy consulting and compliance services primarily for campus-based organizations including higher education institutions,...Temporary workFixed term contractLocal areaRemote workWork from homeHome office$50 - $60 per hour
DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor. We're currently expanding into an exciting new area – teaching...Hourly payContract workFor contractorsWork experience placementRemote work$100k - $160k
...Job Summary The Security Solutions Advisor is responsible for the acquisition of net-new security business within a given territory. They will proactively leverage SHI data, alongside partner information, to identify and generate sales opportunities and meetings with...Work experience placementFlexible hours$74.1k - $148.3k
...Job Description Oracle Cloud Infrastructure (OCI) is growing rapidly, and we are looking for a financial analyst to support our Supply Chain organization. This role focuses on financial planning, forecasting, and close support for global supply chain costs supporting...Temporary workFlexible hours$98k - $125k
...The Sr Program Financial Analyst demonstrates deep expertise in contract financial management. They lead and administer overall budget... ...dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions...Contract workWork experience placementFor subcontractorH1bWork at officeRemote work$84.5k - $187k
Job Description As OCI’s power portfolio evolves beyond traditional grid procurement into onsite generation, renewable PPAs, battery storage, and hedging structures, this role will be at the center of modeling those emerging commercial arrangements and quantifying their...Contract workTemporary workLocal areaFlexible hours$84.5k - $187k
...Job Description Principal Financial Analyst to support Capital expenditure for Oracle Cloud Infrastructure Oracle Cloud Infrastructure (OCI) is growing rapidly, and we are looking for a financial leader to support our capital expenditure and Supply Chain organization...Temporary workFlexible hours$80.2k - $111.3k
...responders, shapes incident response governance, and influences broader security architecture and operations based on emerging threats and... ...technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality, and...Contract workWork experience placementWork at office$67.7k - $90.27k
...AI-powered world, connecting people, data, and applications through our expansive fiber network and connected ecosystem. We enable secure, high-performance connectivity across cloud, edge, and AI workloads for enterprises, governments, and communities. At Lumen, you...Temporary workRemote work- Job Summary This job performs financial and business related research and analysis such as the preparation of forecasts and/or analysis of financial reports, records and trends; develops and maintains spreadsheets and databases to facilitate analysis and reporting; and...Work at officeLocal area
- At Verint, we believe customer engagement is the core of every global brand. Our mission is to help organizations elevate Customer Experience (CX) and increase workforce productivity by delivering CX Automation. We hire innovators with the passion, creativity, and drive...Local areaShift work
$86.4k
...Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company’s Handbook of Privacy Policies and Practices and Information Security Policy....For contractorsWork at officeLocal area$37.75 per hour
Patrol Officer Montpelier Police Department The Montpelier Police Department is seeking applications for the position of patrol officer. The Montpelier Police Department is a premier Vermont law enforcement agency that provides professional policing services to...Hourly payPermanent employmentWork experience placementShift work$60k - $75k
...address their most significant and complex challenges in science, security and sustainability. Our people apply undaunted curiosity,... ...and Amentum (Company) and is seeking an energetic, responsible analyst to join the team. In this role, you will coordinate and support...Hourly payContract workSecond jobWork at officeLocal areaRemote work$121.88k - $178.75k
Come join one of America’s fastest-growing insurance companies. Since 1848, National Life Group has aimed to keep our promises, providing families with stability in good times and in bad. Throughout that history, we have provided peace of mind to those families as they ...Hourly payFull timeWork at officeFlexible hours$95.63k - $140.25k
...innovative life and annuity products that enhance customer experience and support business growth. The role blends actuarial and business analyst responsibilities, working across illustration, policy administration, and ancillary systems to resolve complex issues using...Hourly payFull timeContract work- ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ...outcomes that matter at a national scale. The Junior CIC Analyst supports 24x7 Command and Incident Center operations by executing...Minimum wageFull timeContract workTemporary workWork experience placementRemote workShift workNight shift
$75k - $85k
...products that work with how providers run and grow their business. About the Role We’re looking for a highly motivated and curious Analyst, Strategic Growth to join our team. This role will support critical business initiatives aimed at accelerating growth, improving...Full timeWork at officeLocal areaImmediate startRemote workFlexible hours- ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ..., and receipt of authorization to proceed. The Patching Analyst position provides enterprise-level patch tracking, compliance reporting...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Analyst. Be the first to apply!



