Overview
On Site
Hybrid
USD 35.00 per hour
Full Time
Skills
IBM Rational DOORS
CISA
CISSP
Information Systems
ISACA
Security+
Cyber Security
Auditing
Collaboration
Workflow
Splunk
IronPort
Vulnerability Management
PCI DSS
Communication
Analytical Skill
Training
Public Sector
IT Security
Policies and Procedures
Data Security
Risk Assessment
Cloud Computing
Artificial Intelligence
Use Cases
Risk Management
Management
Data Governance
Privacy
Software Security
Lifecycle Management
Legal
Regulatory Compliance
Educate
Incident Management
Documentation
Leadership
ROOT
Security Controls
Reporting
Network
SPAM
Malware Analysis
IT Management
Job Details
Date Posted: 07/24/2025
Hiring Organization: Rose International
Position Number: 485996
Industry: Government/Staffing
Job Title: Security Analyst
Job Location: Madison, WI, USA, 53703
Work Model: Hybrid
Work Model Details: 2-3 days Onsite
Shift: 8-5
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 11
Min Hourly Rate($): 35.00
Max Hourly Rate($): 37.00
Must Have Skills/Attributes: CISA, CISSP, Cloud Foundry, CRISC, Security, Splunk
Experience Desired: Prior experience in public-sector compliance or multi-agency single tenan (5 yrs)
Preferred Certifications/Licenses: CISA, CISSP or CRISC or Security+
**C2C is not available**
Job Description
Candidates must be Wisconsin residents or willing to relocate to Wisconsin prior to starting the role at their own expense. This is a hybrid position, so on-site work is required some days (likely 2-3 days) based on project and operational demands. Remote work is allowed and encouraged when possible. Public parking options are available nearby, public transportation is a half-block away, bike racks are available just outside of our doors. Commuting expenses are not covered by Client.
Preferred Certification:
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC), or Security+
Required Experience & Skills:
Experience in cybersecurity compliance, audit coordination, or related risk management roles (5+ Years)
Experience managing IT security review processes, IT security exception workflows, and developing security policies or procedures (5+ Years)
Experience creating and automating reports from industry standard IT security tools (e.g., Splunk, IronPort, Tenable, Cloudflare) (5+ Years)
Experience coordinating vulnerability management programs and application security lifecycle oversight(5+ Years)
Proven ability to coordinate complex risk assessments and compliance activities
Strong knowledge of IT Security Incident Response planning and preparation
Strong knowledge of PCI DSS standards and SAQ preparation.
Strong knowledge of NIST-based frameworks and government security standards.
Strong knowledge of both direct and indirect AI-related risks (i.e., "AI as a default")
Strong understanding of data governance and privacy protection practices.
Experience collaborating with cross-functional IT teams and program area staff, external auditors, and regulatory agencies.
Excellent communication and analytical skills, with ability to translate complex IT security related topics for diverse often non-technical audiences.
Demonstrated ability to develop and deliver effective training programs.
Preferred Experience & Skills:
Prior experience in public-sector compliance or multi-agency single tenant environments
Responsibilities:
Develop, implement, maintain, and monitor adherence to IT security or compliance policies and procedures, including data protection regulations or internal security policies, ensuring alignment with industry standards and regulatory requirements
Conduct regular scans and coordinate risk assessments to identify potential security threats and vulnerabilities within IT systems, including those related to use of cloud-hosted solutions, AI use cases, and emerging technology integrations
Develop and implement risk mitigation strategies while collaborating with partner agencies or managed service providers and internal technical teams to identify and address identified vulnerabilities, security, and compliance gaps
Maintain a risk register and ensure that all identified risks are documented, assessed, and addressed promptly
Oversee data governance activities to protect sensitive data and ensure compliance with privacy and security requirements
Support application security governance, including lifecycle management, secure design guidance, and vendor compliance reviews
Coordinate with legal and regulatory bodies to stay updated on compliance requirements and ensure organizational alignment
Assist in the development and maintenance of IT incident response plans and procedures. Test and evaluate existing IT incident response plans for effectiveness
Educate IT staff, and non-IT staff as appropriate, on IT incident response procedures providing clear actionable steps to assist staff in a timely resolution
Participate in incident response activities, including investigation, documentation, and notification or status updates of ongoing security incidents
Create and maintain post-mortem documentation or tracking of resolved incidents, tracking patterns, and informing IT or agency leadership on incident impact, root cause, and steps taken to avoid subsequent incidents.
Analyze incident trends to recommend improvements to security controls and processes
Utilize enterprise and agency resources for security monitoring and reporting of risk levels, network activity, email threat detection (e.g., spam, malware, phishing)
Produce executive-level risk and security reports for IT leadership and other key stakeholders
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Hiring Organization: Rose International
Position Number: 485996
Industry: Government/Staffing
Job Title: Security Analyst
Job Location: Madison, WI, USA, 53703
Work Model: Hybrid
Work Model Details: 2-3 days Onsite
Shift: 8-5
Employment Type: Temporary
FT/PT: Full-Time
Estimated Duration (In months): 11
Min Hourly Rate($): 35.00
Max Hourly Rate($): 37.00
Must Have Skills/Attributes: CISA, CISSP, Cloud Foundry, CRISC, Security, Splunk
Experience Desired: Prior experience in public-sector compliance or multi-agency single tenan (5 yrs)
Preferred Certifications/Licenses: CISA, CISSP or CRISC or Security+
**C2C is not available**
Job Description
Candidates must be Wisconsin residents or willing to relocate to Wisconsin prior to starting the role at their own expense. This is a hybrid position, so on-site work is required some days (likely 2-3 days) based on project and operational demands. Remote work is allowed and encouraged when possible. Public parking options are available nearby, public transportation is a half-block away, bike racks are available just outside of our doors. Commuting expenses are not covered by Client.
Preferred Certification:
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC), or Security+
Required Experience & Skills:
Experience in cybersecurity compliance, audit coordination, or related risk management roles (5+ Years)
Experience managing IT security review processes, IT security exception workflows, and developing security policies or procedures (5+ Years)
Experience creating and automating reports from industry standard IT security tools (e.g., Splunk, IronPort, Tenable, Cloudflare) (5+ Years)
Experience coordinating vulnerability management programs and application security lifecycle oversight(5+ Years)
Proven ability to coordinate complex risk assessments and compliance activities
Strong knowledge of IT Security Incident Response planning and preparation
Strong knowledge of PCI DSS standards and SAQ preparation.
Strong knowledge of NIST-based frameworks and government security standards.
Strong knowledge of both direct and indirect AI-related risks (i.e., "AI as a default")
Strong understanding of data governance and privacy protection practices.
Experience collaborating with cross-functional IT teams and program area staff, external auditors, and regulatory agencies.
Excellent communication and analytical skills, with ability to translate complex IT security related topics for diverse often non-technical audiences.
Demonstrated ability to develop and deliver effective training programs.
Preferred Experience & Skills:
Prior experience in public-sector compliance or multi-agency single tenant environments
Responsibilities:
Develop, implement, maintain, and monitor adherence to IT security or compliance policies and procedures, including data protection regulations or internal security policies, ensuring alignment with industry standards and regulatory requirements
Conduct regular scans and coordinate risk assessments to identify potential security threats and vulnerabilities within IT systems, including those related to use of cloud-hosted solutions, AI use cases, and emerging technology integrations
Develop and implement risk mitigation strategies while collaborating with partner agencies or managed service providers and internal technical teams to identify and address identified vulnerabilities, security, and compliance gaps
Maintain a risk register and ensure that all identified risks are documented, assessed, and addressed promptly
Oversee data governance activities to protect sensitive data and ensure compliance with privacy and security requirements
Support application security governance, including lifecycle management, secure design guidance, and vendor compliance reviews
Coordinate with legal and regulatory bodies to stay updated on compliance requirements and ensure organizational alignment
Assist in the development and maintenance of IT incident response plans and procedures. Test and evaluate existing IT incident response plans for effectiveness
Educate IT staff, and non-IT staff as appropriate, on IT incident response procedures providing clear actionable steps to assist staff in a timely resolution
Participate in incident response activities, including investigation, documentation, and notification or status updates of ongoing security incidents
Create and maintain post-mortem documentation or tracking of resolved incidents, tracking patterns, and informing IT or agency leadership on incident impact, root cause, and steps taken to avoid subsequent incidents.
Analyze incident trends to recommend improvements to security controls and processes
Utilize enterprise and agency resources for security monitoring and reporting of risk levels, network activity, email threat detection (e.g., spam, malware, phishing)
Produce executive-level risk and security reports for IT leadership and other key stakeholders
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client's business needs and requirements.**
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.