×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant Information Security IT Project Manager

Senior Compliance & Risk Specialist

Job in Olympia, Thurston County, Washington, 98502, USA
Listing for: State of Washington
Full Time position
Listed on 2026-02-28
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, Information Security, IT Project Manager
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Senior Compliance & Risk Specialist (IT Security-Senior Specialist)

WaTech:
Join an exciting team!

Washington Technology Solutions (WaTech) is a national leader in adopting new, innovative technologies that transform the way Washingtonians receive state services. We provide information technology oversight and central services for Washington state government, all of which makes this an exciting time to join our team of experienced IT professionals. As a part of this agency, you will have a unique opportunity to help advance the latest IT technologies and practices used by state government to meet the needs of Washingtonians.

About

the position

This position is a part of WaTech’s Office of Cybersecurity (OCS), which is focused on advancing the state’s leadership in cybersecurity across the public sector. OCS delivers core cybersecurity services, including the Security Operations Center (SOC), Computer Incident Response Team (CIRT), statewide security projects, and security policy and compliance oversight.

The Senior Compliance and Risk Specialist serves as a statewide subject matter expert in cybersecurity risk management and compliance. This role applies advanced knowledge of cybersecurity principles and practices to the most complex assignments, devises innovative methods to evaluate and mitigate risks, translates technical nuances for diverse audiences, and provides authoritative guidance to agency partners and staff. Through proactive risk management and collaborative support, this role safeguards Washington state’s information systems, supports secure digital services, ensures compliance with applicable state and federal requirements, and sustains public trust in government operations.

Responsibilities
  • Develop and execute a comprehensive cybersecurity risk assessment strategy across state agencies, applying nationally recognized frameworks, state policies and standards.
  • Leverage automation and analytics to monitor statewide progress, track remediation effectiveness, and provide real-time insights into evolving risk posture.
  • Identify, analyze and prioritize cybersecurity risks based on impact, likelihood and risk tolerance thresholds applying consistent statewide methodologies.
  • Provide agencies with forward-looking guidance on risk treatment options.
  • Aggregate and communicate statewide risk posture by consolidating agency-level risk assessments into centralized reports and dashboards.
  • Provide subject matter expertise to align Washington state IT security chapter policies and standards with national and federal frameworks.
  • Identify systemic barriers to effective risk remediation and champion statewide-level solutions that improve agency adoption and strengthen overall resilience.
  • Translate statewide cybersecurity policies and standards into practical, risk-informed guidance and tools.
  • Provide senior-level consultation to agency leaders on interpreting and applying policy, bridging the gap between compliance requirements and operational realities.
  • Continuously refine statewide reporting practices to incorporate new data sources, analytics and predictive insights that support forward-looking risk governance.
  • Foster a statewide community of practice among agency CISOs, CIOs, and risk managers to share knowledge, strengthen collaboration and drive consistent adoption of risk management practices.
Qualifications
  • Ten years of experience in information technology, including four years of recent experience in information security in each of these areas:
    • Leading or conducting statewide cybersecurity risk assessments, including application of NIST RMF, NIST SP 800-53, ISO 27005, or equivalent frameworks.
    • Assessing security threats and recommending mitigation strategies and compensating controls across diverse IT environments (cloud, hybrid, on-premises).
    • Cybersecurity compliance management, including interpreting, implementing or auditing IT security policies, standards and regulatory requirements (e.g., FISMA, HIPAA, CJIS, IRS Pub 1075).
    • Developing or operationalizing cybersecurity policies, standards or risk management frameworks.
  • A bachelor’s degree in computer science, business administration, information security,…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search