MUST BE WI RESIDENT - REMOTE SECURITY ANALYST 2

The State of Wisconsin DOC is looking for a Security Analyst II.

Top Skills & Years of Experience: At least 1 year of experience required in the following:

• Working knowledge of vulnerability management practices, technologies, and tools.
• Proficiency in triaging and analyzing cybersecurity alerts using enterprise technologies and tools.
• Familiarity with phishing mitigation strategies and email threat analysis.
• Incident Response Forensics and Remediation (i.e. Crowdstrike, Sandbox evaluation & detonation, Phish evaluation, Malicious Website and Malicious Intent Identification)
• Customer service as it pertains to security incident management and communication with end user about dangerous behavior.
• Excellent technical writing and documentation skills, including incident reports and playbook development.
• Ability to work independently and as part of a distributed team to achieve shared objectives.

Nice to have skills

• Capability to tune and optimize SIEM rules and detection logic to reduce noise and improve fidelity.
• Strong interpersonal communication skills with the ability to explain complex topics to non-technical audiences.
• Experience working as a team member on projects to improve business needs.
• Experience supporting endpoint, network, and cloud-based security controls in large-scale environments.
• Demonstrated ability to adapt to emerging threats, technologies, and evolving operational needs.

Project Details: Under the general supervision of the GRC Manager, this position serves as a Security Analyst responsible for supporting a wide range of cybersecurity functions across the Wisconsin Department of Correction (DOC). Core responsibilities include detecting, analyzing, and responding to cybersecurity threats, participating in forensic investigations, and contributing to ongoing vulnerability management efforts. The role may also include supporting cloud security initiatives, assisting with tabletop exercises, and developing security response procedures.

Interview Process: Teams Call with video and audio.

Hybrid Remote: Remote daily work with the ability to report to Madison Office for training or when required for emergency situations. Must be a WI resident. No relocation allowed. Position will be 100% remote after training.