Experienced IT Security Analyst

Madison Gas & Electric is adding an Experienced Security Analyst to join our Security Operations team and help protect the systems that support safe, reliable service for our customers and community. You'll work alongside a collaborative group of security and IT professionals to investigate incidents, manage vulnerabilities, and improve detection and response capabilities that support MG&E's mission. If you value meaningful work, continuous improvement, and protecting essential services, this role is for you.

Responsible for assessing, investigating, and responding to security events and incidents while also helping design and implement security controls across business applications and infrastructure. This role applies strong analytical skills to identify security risks, support compliance requirements, and improve the organization's security posture. The position works collaboratively with IT and business partners to deliver practical, timely security solutions that align with operational and business needs.

Note: This is not an all-inclusive listing.

Monitoring & Incident Response

• Respond to security events and incidents, including triage, containment, and remediation.
• Develop and continuously refine detection logic, alerting rules, and response playbooks.
• Leverage automation and scripting to improve response efficiency and consistency.
• Develop and maintain security operations and response documentation.
• Participate in incident response and disaster recovery exercises and tabletop drills.

Security Technology & Tools Support

• Support enterprise security tools such as SIEM, SOAR, EDR, NDR, and vulnerability scanners.
• Configure, tune, and monitor security technologies for effectiveness.
• Troubleshoot integrations, data quality issues, and tool functionality.
• Assist with onboarding and integration of new security technologies.

Threat & Vulnerability Management

• Conduct vulnerability scans and risk analysis to prioritize and validate security weaknesses.
• Partner with IT to continuously track and remediate identified vulnerabilities.
• Monitor threat intelligence sources to determine relevance and improve detection capabilities.
• Participate in threat hunting activities to identify IOCs, emerging threats, and control gaps.

Governance, Risk, & Compliance

• Configure and monitor compliance with security policies, standards, and procedures.
• Support compliance monitoring and interpretation of evolving regulatory requirements.
• Implement and manage the operation of security controls and safeguards.
• Collaborate with stakeholders to address audit findings and implement corrective actions.
• Support coordination of human risk and security awareness program initiatives.

Collaboration

• Collaborate with IT, engineering, and business teams to develop and support secure solutions.
• Provide backup support for user access administration.

Note: These are in addition to MGE core competencies.

• Manages Complexity - Applies analytical thinking to evaluate technical and business risks; effectively interprets multiple data sources and regulatory requirements to develop sound security solutions.
• Communicates Effectively - Clearly conveys technical information to both technical and non-technical stakeholders; prepares thorough documentation; facilitates productive discussions regarding security decisions.
• Instills Trust - Gains credibility through professionalism, integrity, and consistent adherence to security and ethical standards.
• Drives Results - Focuses on delivering practical, timely security solutions that support business objectives while maintaining compliance and risk standards.
• Develops Talent - Provides guidance and knowledge sharing to less experienced team members; supports continuous learning within the security function.

• Incident response and security alert investigation.
• Vulnerability management processes and tools.
• Scripting and automation experience (e.g., Python, PowerShell) to improve security operations.
• Experience with enterprise security technologies (e.g., SIEM, AV/EDR, NDR, IAM, scanners).
• Working knowledge of Windows environments and Active Directory.
• Strong analytical and problem-solving skills; high attention to detail and accuracy.
• Effective organizational and time-management skills; ability to manage multiple priorities.
• Strong written and verbal communication skills.
• Ability to facilitate discussions regarding security control design and implementation.
• Demonstrated ability to work collaboratively in a team-oriented environment.
• API integration configuration and support experience preferred.
• SOAR or security automation platforms preferred.
• Cloud security tooling experience preferred.
• Linux operating system expertise preferred.

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related field OR
• Associate's degree with equivalent experience.

• Two to five years of progressive experience in a cybersecurity role.
• Hands-on experience responding to cybersecurity events and incidents.
• Demonstrated experience with administering or managing security tools and technology.

This hybrid role is based at our Madison, WI headquarters. While three days onsite is the minimum, team collaboration and business needs may require additional in-office presence.

Pre-employment will require satisfactory completion of a background check and drug screen.

We are an AA/EOE employer and consider all qualified candidates without regard to protected status.