If you are interested in this position:
Download the skills matrix using the button below and fill it out.
Email us and attach the completed skills form and your most recent resume to us at:
firstname.lastname@example.org Please include '7445WI Skills Form' and your name in the subject line.
Wisconsin Department of Workforce Development (DWD)
Phone, Web, and/or in-person
Note: The contractor will have to come into the DWD office located in Madison, WI to get their workstations and necessary orientation training, which is expected to last no more than two weeks.
Note:After training is complete, the contractor must have the capability to work remotely for the foreseeable future.
Note: DWD will determines when it is safe for staff to work in the DWD Office located in Madison, WI. It is expected that staff will resume pre-COVID-19 in-office work as directed by DWD management.
Our client is looking for a Security Analyst to assist in meeting critical needs in the Automation Security unit due to increased workload arising from Department's response to COVID-19 pandemic.
This contractor position will assist other security staff with administration and monitoring of computer security for all applications, including support for the agency's recently increased staff tum-over/replacement workload.
Security activities include designing and performing risk assessments, recommending risk treatment, continuously improving Risk Management governance processes, ensuring risks are properly evaluated, mitigated where possible, and communicated to the appropriate level of management. This contractor position will require the candidate to work with various stakeholders, including IT and various business units. This role may also conduct incident response investigations to ensure appropriate reporting and corrective actions are taken.
5 years of experience in the following:
Experience in Technical Writing and Documentation
MS Office products
Ability to perform vulnerability assessments and penetration testing using manual testing techniques, scripts, commercial and open-source tools such as Tenable.
Collaborate with information security, information technology and business stakeholders as required to mitigate information security risks.
Collaborate with information security, information technology and business stakeholders as required to respond to information security incident.
Experience developing, implementing, maintaining, and maturing an information security risk management program.
Experience in conducting security threat analysis, assessment, and mitigation.
Experience in performing annual security risk assessments.
Experience maintaining and maturing security policy and standards, security awareness program, and information security incident response plan.
Experience presenting information to stakeholders including non-technical staff.
Experience with Software as a Service or other cloud-based services.
Familiar with industry standard security best practices and vulnerability management processes including compliance reporting.
Knowledge with prioritizing remediation activities with operational teams through risk ratings of vulnerabilities and assets.
Strong knowledge of industry standards regarding vulnerability management, including Common Vulnerabilities and Exposures (CVE), Common Vulnerability Scoring System (CVSS) and Open Web Application Security Project (OWASP).
Strong knowledge of technology and security topics including network security, wireless security, application security, infrastructure hardening, security baselines, and web server and database security.
Working experience with industry frameworks (NIST, CSF, ISO, COBIT, etc.)
4 years of experience in the following:
Operating system administration (e.g., monitoring, process control, threads, upgrades and patching)
Scripting – Winbatch, VBScript, AutoIT, PowerShell, DOS Batch, etc.