Wisconsin DHS Security Control Analyst Evidence & Interviews Lead
Share
Job Location:
Madison, OH - USA
Monthly Salary:
Not Disclosed
Posted on:
5 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Summary:
The Security Control Analyst is responsible for coordinating interviews managing evidence requests validating documentation accuracy and ensuring continuous alignment with control requirements. This role involves drafting and refining evidence request lists tracking submissions conducting SME interviews performing artifact reviews and providing recommendations to the Lead Assessor. The analyst will also assist in writing SAR sections preparing crosswalks pre-packaging questionnaires and validating evidence against expectations.
The Security Control Analyst is responsible for coordinating interviews managing evidence requests validating documentation accuracy and ensuring continuous alignment with control requirements. This role involves drafting and refining evidence request lists tracking submissions conducting SME interviews performing artifact reviews and providing recommendations to the Lead Assessor. The analyst will also assist in writing SAR sections preparing crosswalks pre-packaging questionnaires and validating evidence against expectations.
Location:Madison Wisconsin United States
Responsibilities:
- Draft and refine evidence request lists aligned to each control family.
- Track evidence submissions clarifications and follow-ups.
- Conduct SME interviews with system owners architects developers and network teams.
- Perform artifact reviews (policies configurations SSP inputs change records).
- Provide pass/partial/fail recommendation to Lead Assessor.
- Assist in writing SAR sections ensuring clarity and consistency.
- Prepare crosswalks between evidence and control evaluation.
- Reduce staff burden by pre-packaging questionnaires.
- Validate that required evidence meets expectations.
- Draft and refine evidence request lists aligned to each control family.
- Track evidence submissions clarifications and follow-ups.
- Conduct SME interviews with system owners architects developers and network teams.
- Perform artifact reviews (policies configurations SSP inputs change records).
- Provide pass/partial/fail recommendation to Lead Assessor.
- Assist in writing SAR sections ensuring clarity and consistency.
- Prepare crosswalks between evidence and control evaluation.
- Reduce staff burden by pre-packaging questionnaires.
- Validate that required evidence meets expectations.
Required Skills & Certifications:
- Experience performing control-based assessments against NIST 800-53.
- Ability to interpret technical artifacts (configs logs audit trails).
- Excellent documentation skills.
- Strong interviewing and communication skills.
- Familiarity with GRC platforms and structured evidence management.
- ISO 27001 Lead Auditor OR CISA OR Security - minimum.
- Experience performing control-based assessments against NIST 800-53.
- Ability to interpret technical artifacts (configs logs audit trails).
- Excellent documentation skills.
- Strong interviewing and communication skills.
- Familiarity with GRC platforms and structured evidence management.
- ISO 27001 Lead Auditor OR CISA OR Security - minimum.
Preferred Skills & Certifications:
- CISSP Associate CAP or CCSK.
- CISSP Associate CAP or CCSK.
Special Considerations:
- None specified.
- None specified.
Scheduling:
- Not specified.
- Not specified.
Key Skills
- Council
- Downstream
- Laboratory
- Bakery
- Corporate Development
