Deputy Chief Information Security Officer - Career Executive

Position Summary The Deputy Chief Information Security Officer (DCISO), Deputy Director for the Bureau of Security, reports to the State CISO and is responsible for the daily operational management of the statewide security program. Serving as a strategic partner and operational counterpart to the CISO, the Deputy CISO executes the State's cybersecurity strategy through direct leadership of the Bureau of Security. This role enables the CISO to focus on statewide strategic planning and executive engagement by overseeing day-to-day security operations and program management. The Deputy CISO's primary role is to convert the CISO's vision and strategy into actionable plans and to build and operate a platform of automated, self-service enterprise security solutions and services. This includes overseeing security operations, managing incident response, leading compliance and audit activities, and ensuring security controls, NSA and CISA guidance are integrated into all technology projects and systems, both on-premises and in the cloud. The Deputy CISO is responsible for the direct management of Bureau staff, fostering a culture of excellence, collaboration, and innovation. This role ensures that security policies, standards, and procedures are effectively implemented, monitored, and maintained. The Deputy CISO will manage relationships with agency technical staff, vendors, and operational partners to ensure the seamless delivery of DET services and the robust protection against cyber threats. For more information, please view the full position description . Salary Information Starting hourly rate for the Information Technology Manager position will be between $45.23- $71.00 per hour, depending on qualifications and experience. This classification is assigned to pay schedule/range 70-01. A two-year trial period may be required. Current State employees will be compensated in accordance with the current State Compensation Plan. Job Details Due to the nature of the position, DOA will conduct fingerprinting and background checks on applicants prior to selection. DOA does not sponsor work visas and is not an eligible OPT (Optional Practical Training) employer for F-1 international students. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States, and to complete the required employment eligibility form upon hire. All employees are expected to live and work in Wisconsin. Interviews may be conducted onsite in Madison WI. Certain positions within this Department may allow remote/work from home flexibility for a portion of their work schedule, depending on the needs of the position and the work unit. This topic and any remote work flexibility that may be available will be discussed in more detail in the interview process.

Qualifications

Minimally qualified applicants will have experience all of the following:

• Directing enterprise cybersecurity operations and risk management programs , including the active integration of DevSecOps practices, "secure by default" and "secure by design" principles, and automated vulnerability mitigation into the System Development Life Cycle (SDLC) and modern infrastructure.
• Translating complex cybersecurity and risk-related concepts into clear, actionable information. Communicating cybersecurity and risk-related concepts to technical and nontechnical audiences at various levels, ranging from senior executives to technicians
• Directing incident response teams during major security events and coordinating all phases of the incident response lifecycle. This includes overseeing robust monitoring and containment capabilities , integrating tactical threat intelligence , and enforcing continuous cyber hygiene through rigorous vulnerability assessments, access reviews, and timely remediation tracking.
• Personnel supervision and management over lower-level supervisors and cross-functional technical teams such as conducting performance evaluations, allocating resources, reviewing/assigning work, leading/motivating staff, etc.)

How To Apply Apply online! To apply, click "Apply for Job" to start the application process. Then, you will access your existing account or to create a new account if you don't have an account. Once you are logged in, click "Apply for Job." Follow the steps outlined in the application process and submit your application. Please visit the Frequently Asked Questions section for general wisc.jobs user information and technical assistance. Your letter of qualifications and resume are very important parts of your application and are used during our evaluation process to determine your qualifications as they relate to the job. Please review instructions on developing your resume and letter of qualifications . Your cover letter is limited to a maximum of two (2) typed pages, single-spaced, no smaller than 10-point font, with 1-inch margins. Resumes should be limited to no more than two (2) pages (no format requirements). Pages more than the specified limits may not be evaluated. References are not necessary at this stage of the process. Submitted materials will be evaluated and the most qualified applicants will be invited to participate in the next step of the hiring process for available vacancies. Note: Current Career Executives or those with reinstatement eligibility to Career Executive status should complete the application process to apply. Deadline to Apply Applicant materials are due by 11:59pm CST on March 18, 2026. Apply tot his job Apply To this Job