IT Security Analyst

About Codeworks:

Codeworks has over 25 years of experience serving Fortune 1000 companies in Wisconsin as well as our client's national locations. Our recruiting team excels at evaluating, advising, and connecting IT professionals with new opportunities that will satisfy their expectations regarding income and opportunity for growth. At Codeworks, we're committed to diversity, equity, and inclusion in our workforce and beyond. We believe in equal opportunities and value the unique perspectives that every individual brings to our team. Join us in creating an inclusive, innovative, and collaborative workplace where your talents can thrive.

Codeworks is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws.

Top Skills & Experience Required:

• 6 years of experience in IT security and audit.
• Comprehensive knowledge of national and international security standards, including NIST, PCI, CJIS, CMS, ISO, SOX, HIPAA, HITECH, and other regulatory requirements.
• Experience conducting security assessments and reviews.
• Strong communication and collaboration skills, with the ability to work effectively in customer-facing roles.
  
  

Role Responsibilities:

• Monitor and provide guidance on information security issues related to agency systems and workflows, ensuring security controls are effective and aligned with policies.
• Support the Michigan Cyber Security, Risk, and Compliance Division Director in enterprise risk management efforts.
• Assess the effectiveness of enterprise data security policies, processes, and controls against established standards and recommend improvements.
• Assist state agencies with Michigan’s risk assessment process, identifying gaps in security controls and compliance requirements.
• Conduct security gap analyses on agency applications based on applicable laws, regulations, standards, and state policies.
• Advise agency teams on interpreting NIST controls and other regulatory security requirements.
• Act as a subject matter expert, providing guidance and mentorship within the Risk and Compliance Division.
• Enter information and complete risk assessments using Keylight for the State of Michigan.
• Support the implementation of Michigan’s MiSAP Risk Assessment processes.
• Contribute to the development of a Cyber Security Framework for the State of Michigan.
• Collaborate with the MCS Keylight team to improve MiSAP processes.
• Perform other cybersecurity-related tasks as assigned