Programmer 3

Location : Lansing, Michigan

Work Arrangement : Hybrid

Position Type : Contract

Interview Mode : In-person

Position Summary

Join a collaborative team of IT professionals dedicated to supporting state-level mission-critical goals. This role focuses on the administration, development, and enhancement of the enterprise Web-based Governance, Risk, and Compliance (GRC) tool, Navex IRM (formerly Keylight) . You will be instrumental in implementing new functionality, troubleshooting complex issues, and driving automation initiatives that support Michigan Cyber Security and the Enterprise Project Management Office.

Key Responsibilities

• GRC Administration : Serve as the primary developer and administrator for the Navex IRM tool, ensuring system stability and performance.
• Automation Leadership : Lead initiatives to automate security accreditation processes, including workflow routing, evidence collection, and control reviews.
• API & Scripting : Develop and maintain Python API modules and automation scripts to import / update compliance controls and integrate CMDB, vulnerability data, and audit evidence.
• Security Framework Integration : Design unified security control frameworks aligned with CJIS v6.0, IRS 1075, PCI (SAQ A, SAQ A-EP), and ARC-AMPE standards.
• Data Integration : Utilize RESTful APIs to ingest and export structured data (JSON, CSV) and maintain centralized Azure Repos for source control and documentation.
• Cross-Functional Collaboration : Partner with the Office of the Chief Technology Officer and Internal Audit teams to design tailored automation solutions for security and compliance.
• Support & Maintenance : Analyze GRC incidents to identify root causes, coordinate with vendor support for upgrades, and maintain system documentation via SharePoint.

Required Skills & Qualifications

Preferred Experience