SIEM Splunk PowerShell Python Analyst
(Jobs in Madison, WI)
Requirement id 158533
Job title Analyst
Job location in Madison, WI
Skills required Data Classification, SIEM, Splunk, PowerShell Python
Open Date 22-Jun-2026
Close Date
Job type Contract
Duration 12 Months
Compensation DOE
Status requirement ---
Job interview type ---
Email Recruiter:coolsoft
Job Description Analyst: Data Classification, SIEM, Splunk, PowerShell Python
Start date :07/01/2026
End Date :06/30/2027
Submission deadline : 6/24/2026 4:00:00 PM
Client Info :DWD
Note:
*Interview Process: Teams with camera on.
*A Realtime Screenshot Photo of the candidate MUST be uploaded to candidates bid upon confirming the interview.
*Please see "DWD Realtime Photo Requirement & Instructions" document in the Attachments section of this posting for details.
*Onsite or Remote 100% remote in the state of WI.
Please ensure you attach the WI Cover Sheet (attached), a valid Right to Represent, and the candidates resume with full legal first name, and last name.
Withdrawn candidates will not be permitted to be replaced.
If you would like to use a sub vendor, only 1 level deep, please submit the Sub Vendor usage form.
Description:
This contractor position will assist other security staff with administration and monitoring of the user access in various environments consisting of Active Directory, 3rd party Active Directory tools, Mainframe Resource Access Control Facility (RACF), and legacy application access with the capability to support cloud and on-premises application services.
This contractor position will assist with designing, deploying, and managing role-based access controls.
This contractor position will also be responsible for entitlement review based on security best practices and remediation efforts to address review findings.
This contractor position will assist with designing and developing automated deprovisioning and remediation process.
Specific tasks include:
Account management activities such as activation, termination, deletions, and monitoring accounts that are no longer active, etc.
Assist with privileged and non-privileged accounts review based on security best practices. Provide recommendations to improve the accounts review process including tools and automation.
Remediate the findings from accounts review.
Design and develop automated deprovisioning and remediation process.
Assist in the implementation, management, and monitoring of role-based access control.
Create and maintain procedures to activate, deactivate, and update user records.
Work with application and compliance teams to manage and monitor system level access for user and system account agency wide.
Process security and change requests to ensure accurate and timely completion of user access creation, modification and deletions.
Analyze root cause and recommend resolutions for provisioning and de-provisioning activities in accordance with standards, policies and procedures.
Participate the security audits and provide necessary data for audits.
Provides recommendations to operational IT teams and business units on processes, controls, and objectives around information security activities, best practices, and process improvements.
Utilize Power Shell scripts for automating tasks.
Utilize Varonis tool to continuously monitor file access and user behavior to prevent data breaches, enforce the principle of least privilege, and automate remediation.
Utilize the SIEM tool such Spluck to monitor alerts, investigate security threats, and troubleshoot performance issues in real time.
Perform other duties as assigned.
Must haves:
Experience with Varonis datadvantage, DatAlerts, Data Classification.
Proficient in SIEM tool such as Splunk.
Fluent in one (or more) scripting languages (Power Shell, Python, etc.)
Nice-To-Haves:
Deep understanding of IAM principals, methodology, and solutions including access control (role-based and discretionary), authentication, authorization, provisioning, approvals, and workfl
Call502-379-4456 Ext 100for more details. Please provide Requirement id: 158533 while calling.
EOE Protected Veterans/Disability