Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Analyst

Novalink Solutions LLC

Job Description

Job Description

Under the general supervision of the GRC Manager, this position serves as a Security Analyst

responsible for supporting a wide range of compliance and cybersecurity functions across the

Wisconsin Department of Correction (DOC). Core responsibilities include providing risk assessment

and/or compliance support. Taking part in or leading audits, submitting findings, analyzing risks for

specific areas, monitoring corrective actions, and drafting risk reports with metric charts and

ongoing effort accountability. This position assesses, documents, and provides guidance to other IT

staff and non-IT areas on how to align IT operational and technology processes based on information

technology risk assessments and/or with regulatory compliance/audit functions. This position will

also provide support in detecting, analyzing, and responding to cybersecurity threats, participating in

forensic investigations, and contributing to ongoing vulnerability management efforts. The role may

also include supporting cloud security initiatives, assisting with tabletop exercises, and developing

security response procedures.

The incumbent will work collaboratively with internal stakeholders across DOC, as well as external

partners including the Department of Administration’s Division of Enterprise Technology

(DOA/DET). The role will utilize a variety of enterprise security tools and platforms.

This position may be assigned to focus areas such as incident response, phishing mitigation, threat

detection, security awareness, vulnerability scanning, or forensic analysis, depending on

organizational needs. The analyst will represent the DOC Information Security Section (ISS) team in

technical discussions, project work, and collaborative efforts to improve DOC’s cybersecurity

posture.

The position requires strong communication and problem-solving skills, the ability to work

independently on complex tasks, and a commitment to upholding the security and privacy standards

of DOC. Clients and collaborators include information technology (IT) staff, application developers,

infrastructure teams, business units, vendor, and external governmental partners. The work

environment is dynamic, requiring adaptability, initiative, and a proactive mindset.

This position shall comply with the Department’s administrative rules and the agency’s policies

and procedures including those related to the Department's overall Reentry philosophy of using

evidence-based strategies, practices and programs which target an offender’s individual

criminogenic needs and risk level.

TIME % GOALS AND WORKER ACTIVITIES

60% A. Support cybersecurity policy execution, operational standards, and

governance activities.

A1. Review policy, procedures, controls, and standards to ensure DOC and

regulatory standards are met.

A2. Address compliance issues with IT security standards; identifying deficiencies

and recommending control and risk mitigation measures.

A3. Review documentation to ensure it meets standards and applicable regulatory

requirements, standards, or industry best practices.

A4. Assist with the creation of new and updates to policy, process, and technical

controls to determine if they are sufficient and functioning as intended.

A5. Report on risks and mitigations as well as following up to verify that

adjustments were made.

A6. Interpret NIST or other standards to recommend and implement best practices.

A7. Contribute to the maintenance and operationalization of information security

policies, procedures, and response playbooks.

A8. Review new IT projects, systems, and vendor solutions for security risk,

documenting and escalating concerns as needed.

A9. Provide technical consulting and security recommendations aligned with DOC

standards and DOA/DET architecture.

A10. Participate in enterprise-level risk assessments and contribute data to

compliance, audit, or risk reporting needs.

A11. Assist in threat modeling exercises or tabletop simulations designed to

improve preparedness and resiliency.

20% B. Monitor, detect, respond to, and investigate cybersecurity threats across

DOC’s enterprise environment.

B1. Triage, analyze, and respond to cybersecurity alerts using current technologies

and tools.

B2. Conduct forensic investigations into suspected security incidents, including

phishing, account compromise, and endpoint breaches.

B3. Coordinate with internal teams and DOA/DET to contain, eradicate, and

recover from security incidents.

B4. Analyze logs, threat intelligence, and user behavior to identify indicators of

compromise (IOCs) and prevent recurrence.

B5. Document incident response actions and create post-incident reports with

recommended improvements.

B6. Participate in phishing mitigation, email threat response, and takedown

coordination with third-party providers.

B7. Assist in vulnerability validation and risk triage based on vendor and tool

security recommendations.

B8. Support the tuning, configuration, and enhancement of security technologies

used in DOC’s environment.

B9. Assist with employee forensics, HR/legal investigations, and eDiscovery

requests through log and artifact analysis.

B10. Assist with continuous improvement of detection logic, alerts, and response

workflows in current technologies and tools.

15% C. Contribute to the configuration, deployment, and lifecycle management

of security technologies.

C1. Collaborate with internal teams and DOA/DET to implement, monitor, and

maintain endpoint security, network protection, and access control systems.

C2. Assist in the deployment or refinement of security technologies and tools.

C3. Test and validate new use cases or configurations in existing tools and

platforms, reporting anomalies or conflicts.

C4. Maintain technical documentation and inventories related to security tooling,

integrations, and metrics.

5% D. Maintain current expertise in cybersecurity tools, trends, and techniques.

D1. Participate in professional development opportunities such as conferences,

technical training, and webinars.

D2. Track emerging threats, vulnerabilities, and technology trends through vendor

briefings, information sharing groups, and security communities.

D3. Contribute to internal knowledge sharing and cross-training within the

security team.

KNOWLEDGE, SKILLS AND ABILITIES

1. Experience in effective methods of written and oral communication, meeting facilitation, and

presenting to both technical and non-technical staff appropriate to audience and scenario

2. Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security

standards.

3. Experience with techniques used to establish and maintain effective working relationships

with peers and customers

4. Experience in development, approval, and implementation of security documents (policies,

standards, etc.)

5. Knowledge of information security risk activities to include risk assessments, risk registers,

and risk management

6. Knowledge of state and federal laws regarding information security (Ex.HIPAA Security

Rule) as well as experience with audit and compliance activities in conjunction with state and

federal partners/regulators such as, but not limited to, the WI Legislative Audit Bureau and

the U.S. Department of Justice

7. Experience and working knowledge of common security frameworks and control theories to

include current applicable NIST , CJIS, and ISO standards

8. Proficiency in triaging and analyzing cybersecurity alerts using enterprise technologies and

tools.

9. Strong knowledge of threat detection, incident response, and log analysis techniques.

10. Familiarity with phishing mitigation strategies and email threat analysis.

11. Working knowledge of vulnerability management practices, technologies, and tools.

12. Ability to analyze threat intelligence and apply it to strengthen detection and response

mechanisms.

13. Capability to tune and optimize SIEM rules and detection logic to reduce noise and improve

fidelity.

14. Excellent technical writing and documentation skills, including incident reports and playbook

development.

15. Ability to collaborate with cross-functional teams, including DOA/DET, infrastructure, and

development staff.

16. Commitment to continuous learning, professional development, and information sharing.

Requirements

Top Skills & Years of Experience: At least 2 year's of experience required in the following:

- Understanding of NIST Cybersecurity Framework, NIST RMF, and other common security standards.

- Experience and working knowledge of common security frameworks and control theories to include current applicable NIST, CJIS, and ISO standards

- Experience with creating and leading discussions around the implementation and artifact collection of NIST 800-53 controls

- Proficiency in triaging and analyzing cybersecurity alerts using enterprise technologies and tools.

- Familiarity with phishing mitigation strategies and email threat analysis.

- Incident Response Forensics and Remediation (i.e. Crowdstrike, Sandbox evaluation & detonation, Phish evaluation, Malicious Website and Malicious Intent Identification)

- Customer service as it pertains to security incident management and communication with end user about dangerous behavior.

- Excellent technical writing and documentation skills, including incident reports and playbook development.

- Ability to work independently and as part of a distributed team to achieve shared objectives.

Nice to have skills:

- Capability to tune and optimize SIEM rules and detection logic to reduce noise and improve fidelity.

- Strong interpersonal communication skills with the ability to explain complex topics to non-technical audiences.

- Experience working as a team member on projects to improve business needs.

- Experience supporting endpoint, network, and cloud-based security controls in large-scale environments.

- Demonstrated ability to adapt to emerging threats, technologies, and evolving operational needs.

Project Details: Under the general supervision of the GRC Manager, this position serves as a Security Analyst responsible for supporting a wide range of compliance and cybersecurity functions across the Wisconsin Department of Correction (DOC). Core responsibilities include providing risk assessment and/or compliance support. Taking part in or leading audits, submitting findings, analyzing risks for specific areas, monitoring corrective actions, and drafting risk reports with metric charts and ongoing effort accountability. This position assesses, documents, and provides guidance to other IT staff and non-IT areas on how to align IT operational and technology processes based on information technology risk assessments and/or with regulatory compliance/audit functions. This position will also provide support in detecting, analyzing, and responding to cybersecurity threats, participating in forensic investigations, and contributing to ongoing vulnerability management efforts. The role may also include supporting cloud security initiatives, assisting with tabletop exercises, and developing security response procedures.

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the Security Analyst in Websterville, VT vacancy
  • $30 per hour

     ...the Oracle Government, Defense & Intelligence team supporting Federal Compliance and Federal Sales Teams. The Information Security Compliance Analyst is expected to work with the GDI Performance Management team to ensure documentation, processes and policies up to date... 
    Suggested
    Hourly pay
    Temporary work
    Internship
    Flexible hours

    Oracle

    East Montpelier, VT
    1 day ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Suggested
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Barre, VT
    more than 2 months ago
  • $90.23k

     ...our team, and together we will make a difference and change the world. Job Description CDM Smith is seeking a Senior Financial Analyst to join our Corporate FP&A Team! This role supports financial planning and analysis projects and initiatives for the enterprise,... 
    Suggested
    H1b

    CDM Smith

    Barre, VT
    1 day ago
  • $77.2k - $96.5k

    Qualifications: ~ Bachelor’s degree in business, Accounting, MIS, Finance, or related field ~3+ years supporting or implementing Oracle EBS R12 and/or Oracle Cloud Financials ~ Hands-on experience with Order-to-Cash (O2C) and/or Procure-to-Pay (P2P) processes ~...
    Suggested
    Full time
    Shift work

    World Wide Technology

    Barre, VT
    2 days ago
  • An insurance company in Montpelier is seeking an Associate Actuary to lead and collaborate on transactions and support financial initiatives. The successful candidate will enhance actuarial models and communicate findings to various stakeholders. Ideal applicants have ...
    Suggested

    National Life Group

    Montpelier, VT
    4 days ago
  •  ...A leading insurance provider is seeking a Senior Actuarial Analyst to develop and support a robust pricing and reserving framework. The role requires leadership in projects and advanced analytics, with opportunities for training and mentoring. Ideal candidates should have... 
    Remote work
    Flexible hours

    Ally

    Montpelier, VT
    4 days ago
  • $115k - $145k

     ...Overview As an experienced Analyst, you will play a central role at Cornerstone Research. You will work in case teams that range in...  ...manipulation of financial markets, evaluation of fair merger prices, securities litigation, claims in consumer finance, anticompetitive... 
    Full time
    Work experience placement
    Local area

    Cornerstone Research

    Barre, VT
    4 days ago
  •  ...opportunities be, too? The Opportunity This role is Detroit Hybrid preferred; however, remote option possible. The Senior Actuarial Analyst is responsible for developing and supporting a robust reserving framework at Ally Insurance. The Senior Actuarial Analyst will be... 
    Permanent employment
    Work experience placement
    Remote work
    Flexible hours

    Ally

    Montpelier, VT
    3 days ago
  • $129.3k - $177.8k

    Become a part of our caring community The Actuary, Analytics/Forecasting analyzes and forecasts financial, economic, and other data to provide accurate and timely information for strategic and operational decisions. Establishes metrics, provides data analyses, and works...
    Bi-weekly pay
    Full time
    Temporary work
    Apprenticeship
    Work experience placement
    Remote work
    Work from home
    Home office
    Shift work

    Humana

    Montpelier, VT
    4 days ago
  • A healthcare company is seeking an Actuary, specializing in Analytics and Forecasting, located in Montpelier, Vermont. This role involves analyzing financial data, collaborating with stakeholders for actionable insights, and advising executives on significant issues. Qualifications...
    Remote work

    Humana

    Montpelier, VT
    4 days ago
  • $121.88k - $178.75k

    Come join one of America’s fastest-growing insurance companies. Since 1848, National Life Group has aimed to keep our promises, providing families with stability in good times and in bad. Throughout that history, we have provided peace of mind to those families as they...
    Hourly pay
    Work at office
    Flexible hours

    National Life Group

    Montpelier, VT
    17 hours ago
  • $105k - $130k

     ...mission of creating opportunities for people where they live, learn, and work. CampusGuard, a Nelnet company, provides information security and privacy consulting and compliance services primarily for campus-based organizations including higher education institutions,... 
    Temporary work
    Fixed term contract
    Local area
    Remote work
    Work from home
    Home office

    Nelnet

    East Montpelier, VT
    4 days ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Montpelier, VT
    more than 2 months ago
  • $100k - $160k

     ...Job Summary The Security Solutions Advisor is responsible for the acquisition of net-new security business within a given territory. They will proactively leverage SHI data, alongside partner information, to identify and generate sales opportunities and meetings with... 
    Work experience placement
    Flexible hours

    SHI GmbH

    Montpelier, VT
    17 hours ago
  • $74.1k - $148.3k

     ...Job Description Oracle Cloud Infrastructure (OCI) is growing rapidly, and we are looking for a financial analyst to support our Supply Chain organization. This role focuses on financial planning, forecasting, and close support for global supply chain costs supporting... 
    Temporary work
    Flexible hours

    Oracle

    East Montpelier, VT
    4 days ago
  • $98k - $125k

     ...The Sr Program Financial Analyst demonstrates deep expertise in contract financial management. They lead and administer overall budget...  ...dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions... 
    Contract work
    Work experience placement
    For subcontractor
    H1b
    Work at office
    Remote work

    SMX Corporation

    East Montpelier, VT
    1 day ago
  • $84.5k - $187k

    Job Description As OCI’s power portfolio evolves beyond traditional grid procurement into onsite generation, renewable PPAs, battery storage, and hedging structures, this role will be at the center of modeling those emerging commercial arrangements and quantifying their...
    Contract work
    Temporary work
    Local area
    Flexible hours

    Oracle

    East Montpelier, VT
    4 days ago
  • $84.5k - $187k

     ...Job Description Principal Financial Analyst to support Capital expenditure for Oracle Cloud Infrastructure Oracle Cloud Infrastructure (OCI) is growing rapidly, and we are looking for a financial leader to support our capital expenditure and Supply Chain organization... 
    Temporary work
    Flexible hours

    Oracle

    East Montpelier, VT
    1 day ago
  • $80.2k - $111.3k

     ...responders, shapes incident response governance, and influences broader security architecture and operations based on emerging threats and...  ...technical and procedural coaching to incident handlers and SOC analysts, elevating investigative techniques, documentation quality, and... 
    Contract work
    Work experience placement
    Work at office

    ASM Research, An Accenture Federal Services Company

    East Montpelier, VT
    1 day ago
  • $67.7k - $90.27k

     ...AI-powered world, connecting people, data, and applications through our expansive fiber network and connected ecosystem. We enable secure, high-performance connectivity across cloud, edge, and AI workloads for enterprises, governments, and communities. At Lumen, you... 
    Temporary work
    Remote work

    Lumen Inc

    East Montpelier, VT
    2 days ago
  • Job Summary This job performs financial and business related research and analysis such as the preparation of forecasts and/or analysis of financial reports, records and trends; develops and maintains spreadsheets and databases to facilitate analysis and reporting; and...
    Work at office
    Local area

    Highmark Health

    Montpelier, VT
    17 hours ago
  • At Verint, we believe customer engagement is the core of every global brand. Our mission is to help organizations elevate Customer Experience (CX) and increase workforce productivity by delivering CX Automation. We hire innovators with the passion, creativity, and drive...
    Local area
    Shift work

    Verint Systems

    East Montpelier, VT
    6 days ago
  • $86.4k

     ...Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company’s Handbook of Privacy Policies and Practices and Information Security Policy.... 
    For contractors
    Work at office
    Local area

    Highmark Health

    East Montpelier, VT
    1 day ago
  • $37.75 per hour

    Patrol Officer Montpelier Police Department The Montpelier Police Department is seeking applications for the position of patrol officer. The Montpelier Police Department is a premier Vermont law enforcement agency that provides professional policing services to...
    Hourly pay
    Permanent employment
    Work experience placement
    Shift work

    City of Montpelier, VT

    Montpelier, VT
    2 days ago
  • $60k - $75k

     ...address their most significant and complex challenges in science, security and sustainability. Our people apply undaunted curiosity,...  ...and Amentum (Company) and is seeking an energetic, responsible analyst to join the team. In this role, you will coordinate and support... 
    Hourly pay
    Contract work
    Second job
    Work at office
    Local area
    Remote work

    Amentum

    East Montpelier, VT
    4 days ago
  • $121.88k - $178.75k

    Come join one of America’s fastest-growing insurance companies. Since 1848, National Life Group has aimed to keep our promises, providing families with stability in good times and in bad. Throughout that history, we have provided peace of mind to those families as they ...
    Hourly pay
    Full time
    Work at office
    Flexible hours

    National Life Insurance Company

    Montpelier, VT
    1 day ago
  • $95.63k - $140.25k

     ...innovative life and annuity products that enhance customer experience and support business growth. The role blends actuarial and business analyst responsibilities, working across illustration, policy administration, and ancillary systems to resolve complex issues using... 
    Hourly pay
    Full time
    Contract work

    National Life Insurance Company

    Montpelier, VT
    1 day ago
  •  ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ...outcomes that matter at a national scale. The Junior CIC Analyst supports 24x7 Command and Incident Center operations by executing... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work
    Shift work
    Night shift

    Maximus

    Barre, VT
    4 days ago
  • $75k - $85k

     ...products that work with how providers run and grow their business.  About the Role We’re looking for a highly motivated and curious Analyst, Strategic Growth to join our team. This role will support critical business initiatives aimed at accelerating growth, improving... 
    Full time
    Work at office
    Local area
    Immediate start
    Remote work
    Flexible hours

    EverCommerce

    Barre, VT
    17 hours ago
  •  ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ..., and receipt of authorization to proceed. The Patching Analyst position provides enterprise-level patch tracking, compliance reporting... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work

    Maximus

    Barre, VT
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Analyst. Be the first to apply!