×
Register Here to Apply for Jobs or Post Jobs. X

Security Analyst

Job in Tuscaloosa, Tuscaloosa County, Alabama, 35485, USA
Listing for: Novalink Solutions LLC
Full Time position
Listed on 2026-07-10
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 75000 - 110000 USD Yearly USD 75000.00 110000.00 YEAR
Job Description & How to Apply Below

Madison, United States | Posted on 07/06/2026

Overview

Under the general supervision of the GRC Manager, this position serves as a Security Analyst responsible for supporting a wide range of compliance and cybersecurity functions across the Wisconsin Department of Correction (DOC). Core responsibilities include providing risk assessment and/or compliance support, leading audits, submitting findings, analyzing risks for specific areas, monitoring corrective actions, and drafting risk reports with metric charts and ongoing effort accountability.

The analyst will provide support in detecting, analyzing, and responding to cybersecurity threats, participating in forensic investigations, vulnerability management, cloud security initiatives, tabletop exercises, and security response procedures.

Responsibilities
  • Support cybersecurity policy execution, operational standards, and governance activities (60%)
    • Review policy, procedures, controls, and standards to ensure DOC and regulatory standards are met (A1).
    • Address compliance issues with IT security standards, identify deficiencies, and recommend control and risk mitigation measures (A2).
    • Review documentation to ensure it meets standards and applicable regulatory requirements (A3).
    • Assist with creation/revision of policy, process, and technical controls (A4).
    • Report on risks and mitigations, and follow up to verify adjustments (A5).
    • Interpret NIST or other standards to recommend and implement best practices (A6).
    • Contribute to maintenance and operationalization of information security policies, procedures, and response playbooks (A7).
    • Review new IT projects, systems, and vendor solutions for security risk, documenting and escalating concerns (A8).
    • Provide technical consulting and security recommendations aligned with DOC standards and DOA/DET architecture (A9).
    • Participate in enterprise-level risk assessments and contribute data to compliance, audit, or risk reporting needs (A10).
    • Assist in threat modeling exercises or tabletop simulations (A11).
  • Monitor, detect, respond to, and investigate cybersecurity threats across the DOC environment (20%)
    • Triage, analyze, and respond to cybersecurity alerts using current technologies and tools (B1).
    • Conduct forensic investigations into suspected security incidents, including phishing, account compromise, and endpoint breaches (B2).
    • Coordinate with internal teams and DOA/DET to contain, eradicate, and recover from security incidents (B3).
    • Analyze logs, threat intelligence, and user behavior to identify indicators of compromise and prevent recurrence (B4).
    • Document incident response actions and create post‑incident reports with recommended improvements (B5).
    • Participate in phishing mitigation, email threat response, and takedown coordination with third‑party providers (B6).
    • Assist in vulnerability validation and risk triage based on vendor and tool security recommendations (B7).
    • Support the tuning, configuration, and enhancement of security technologies used in DOC’s environment (B8).
    • Assist with employee forensics, HR/legal investigations, and eDiscovery requests through log and artifact analysis (B9).
    • Assist with continuous improvement of detection logic, alerts, and response workflows in current technologies and tools (B10).
  • Contribute to the configuration, deployment, and lifecycle management of security technologies (15%)
    • Collaborate with internal teams and DOA/DET to implement, monitor, and maintain endpoint security, network protection, and access control systems (C1).
    • Assist in the deployment or refinement of security technologies and tools (C2).
    • Test and validate new use cases or configurations in existing tools and platforms, reporting anomalies or conflicts (C3).
    • Maintain technical documentation and inventories related to security tooling, integrations, and metrics (C4).
  • Maintain current expertise in cybersecurity tools, trends, and techniques (5%)
    • Participate in professional development opportunities such as conferences, technical training, and webinars (D1).
    • Track emerging threats, vulnerabilities, and technology trends through vendor briefings, information sharing groups, and security communities (D2).
    • Contribute to internal…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary