Information Security Compliance Analyst, 26-E-09, Chicago

Illinois Attorney GeneralChicago, IL
Onsite

About The Position

Under the direction of the Chief Information Security Officer, the Information Security Compliance Analyst will assist with the examination of internal IT controls, evaluate the design and operational effectiveness of deployed systems and capabilities, document risk exposure, and work collaboratively across the organization to prioritize, draw focus, and track risk remediation commitments. The Information Security Compliance Analyst will help the organization develop and maintain the overall IT Risk Register, and document and track remediation plans and priorities. They will also assist in developing and publishing the monthly Information Security Key Performance Indicators (KPI) and performance metrics. The Information Security Compliance Analyst will directly participate in the IT Change Management process and will assist with the review and approval of system configuration changes prior to implementation. In addition to regular audit testing, the Information Security Compliance Analyst will assist with internal and external information security testing processes used to identify network, system, and application vulnerabilities. They will also assist with identified security risks and facilitate the periodic update and communication of changes to the organizations Information Security policies, practices, and standards.

Requirements

  • Bachelor’s degree in Computer Science, Information Systems, Cybersecurity or related technical field.
  • A minimum of one year of professional work experience as an IT Auditor or related experience or an equivalent combination of training, education, and/or experience.
  • Ability to effectively coordinate, prioritize, and collaborate.
  • Outstanding written and verbal communication skills.
  • Attendance and the ability to maintain satisfactory working relationships with OAG employees and the general public is an essential function of this position.

Nice To Haves

  • Experience and knowledge in applying Information Security Frameworks such NIST CSF or CIS.
  • Experience and knowledge in Data Classification and Privacy concepts.

Responsibilities

  • Assist with the examination of internal IT controls.
  • Evaluate the design and operational effectiveness of deployed systems and capabilities.
  • Document risk exposure.
  • Work collaboratively across the organization to prioritize, draw focus, and track risk remediation commitments.
  • Help the organization develop and maintain the overall IT Risk Register.
  • Document and track remediation plans and priorities.
  • Assist in developing and publishing the monthly Information Security Key Performance Indicators (KPI) and performance metrics.
  • Directly participate in the IT Change Management process.
  • Assist with the review and approval of system configuration changes prior to implementation.
  • Assist with internal and external information security testing processes used to identify network, system, and application vulnerabilities.
  • Assist with identified security risks.
  • Facilitate the periodic update and communication of changes to the organizations Information Security policies, practices, and standards.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service