Cybersecurity Risk & Compliance Analyst - $43 CTC - HYBRID (WI Resident/Relocate to Wisconsin)

Job Description:

CHANDRA TECHNOLOGIES INC is committed to providing some of the most competitive rates in the industry for qualified consultants. For candidates with current or prior experience with the State of Wisconsin experience and all required skills outlined in the job posting, we offer up to 98.5% of the client bill rate on CTC basis, ensuring a very low margin (under $1). Please be advised that client administrative fees will be deducted if applicable. Our payment terms are Net 30, and we guarantee payment within that period of Net 30, regardless of the client's payment status to us.

***Crop to Crop resumes are accepted

Location Requirement: Onsite or Remote? Candidates MUST be WI residents or willing to relocate to WI prior to starting the role at their own expense. This is a hybrid position, so on-site work is required some days (likely 2-3 days) based on project and operational demands.

The IT Security, Compliance, & Risk Coordinator serves as the lead facilitator for agency cybersecurity compliance, audit readiness, and risk oversight ensuring alignment with state IT policies and standards, PCI DSS, and industry recognized frameworks. This role helps to guide agency IT security policy and procedure development, oversee audit responses, coordinates IT solution security review intake processes, manages the agency IT vulnerability management program, triages IT security exception requests and initiates review workflows, and maintains systems documentation such as risk registers and security review assessments.

Regularly performing complex risk assessments related to cloud-hosted solutions (e.g., SaaS, PaaS, IaaS), Artificial Intelligence (AI) technology and AI use cases, agency data governance and privacy protections, and application security governance; the IT Security, Compliance, & Risk Coordinator acts as a key liaison to external partners and collaborates closely with internal IT teams, division leadership, program staff, regulatory agencies, and vendors to strengthen the agency s security and compliance posture.

This IT Security, Compliance, & Risk Coordinator champions a security and compliance minded culture daily and plays an integral role in promoting agency-wide IT security and risk awareness.

Required Skills:

• 5+ years of experience in cybersecurity compliance, audit coordination, or related risk management roles.
• Experience managing IT security review processes, IT security exception workflows, and developing security policies or procedures.
• Experience creating and automating reports from industry standard IT security tools (e.g., Splunk, IronPort, Tenable, Cloudflare).
• Experience coordinating vulnerability management programs and application security lifecycle oversight.
• Proven ability to coordinate complex risk assessments and compliance activities
• Strong knowledge of IT Security Incident Response planning and preparation
• Strong knowledge of PCI DSS standards and SAQ preparation.
• Strong knowledge of NIST-based frameworks and government security standards.
• Strong knowledge of both direct and indirect AI-related risks (i.e., AI as a default )
• Strong understanding of data governance and privacy protection practices.
• Experience collaborating with cross-functional IT teams and program area staff, external auditors, and regulatory agencies.
• Excellent communication and analytical skills, with ability to translate complex IT security related topics for diverse often non-technical audiences.
  Demonstrated ability to develop and deliver effective training programs

Desired Skills:

• Prior experience in public-sector compliance or multi-agency single tenant environments.
• Industry certifications such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC), or Security+