Security Analyst I
Cyber Security Analyst Job In Castle Shannon, PA
The Information Security Analyst, Identity Access Management Operations candidate will establish client, account, user, and service entitlements on provisioning systems.
Complete work with accuracy and within Service Level Agreements to meet established IAM Operations goals.
Responsibilities include execution of complex security administration of applications to establish access for new external/internal client users and maintain existing clients.
Identity and Access Management Onboarding and Adoption.
Facilitates discussions between stakeholders (technical and non-technical) to ensure a full understanding of security administration process, support requirements, workflow, and form design.
Follows security-related processes and provides assistance on security-related initiatives.
Responsibilities include execution of day-to-day security administration, completion of projects intended to improve operations, client satisfaction, and enforcement of appropriate standards and procedures for assigned operational area.
Top 3 skills:
Identity and Access Management end-to-end lifecycle, from access driven setup processes (Joiner, Mover, Leaver) to IAM compliance. Technical awareness to support development and implementation for IAM Onboardings and platforms
Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy
Ability to perform research, investigation on setup issues, and general inquiries. Must have solid written and verbal communication skills
3-5 years of experience in Information Security Analyst or related technology experience required
Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70 locations worldwide. As one of the largest IT staffing companies and the 2nd largest minority-owned staffing company in the U.S., Dexian was formed in 2023 through the merger of DISYS and Signature Consultants. Combining the best elements of its core companies, Dexian's platform connects talent, technology, and organizations to produce game-changing results that help everyone achieve their ambitions and goals.
Dexian's brands include Dexian DISYS, Dexian Signature Consultants, Dexian Government Solutions, Dexian Talent Development and Dexian IT Solutions. Visit ******************* to learn more.
Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.
Junior Cyber Security Analyst
Cyber Security Analyst Job In Pittsburgh, PA
We are Covestro. We are curious. We are courageous. We are colorful. We refine chemical material solutions with game-changing products. Let us empower you to push boundaries. Join us and our 18,000 colleagues now and together we will make the world a brighter place.
The global Cyber Defense Team at Covestro is looking for a Junior Cyber Security Analyst to join a matrixed organization that has its leadership in Germany. The team is organized into different areas of responsibility (e.g., endpoint security, cloud security, monitoring systems) and each employee is independently responsible for the assigned sub-area. Team members are expected to collaborate and support each other's areas and assist in monitoring and responding to the security events generated by those systems. The focus of this position is to help build an incident response framework and as well a framework for regular penetration testing for applications and platforms. Both areas will be supervised by senior experts, and we are looking for someone who has made first experiences in technical security issues and is willing to grow in a challenging environment.
Position is based in US (Pittsburgh), but responsibilities are global and include collaboration with Europe/Asia. Overseas travel may be required.
Major tasks and responsibilities
* Support Senior Cyber Security Analysts to detect weaknesses of Covestro applications and systems and build attack frameworks to penetrate the applications/systems
* Develop mitigation measures based on the result of the pen tests
* Improve and automate processes for the Cyber Security Incident Response Team at Covestro
* Fluency in scripting languages to build the attack frameworks and analysis tools
* Support the Cyber Defense team in regular monitoring activities
* In-depth analyses of L2/L3 security alarms by our SOC supplier
* Based on experiences automate incident response activities and implemented them. The possibilities of AI for decision-making should be considered
Basic Qualifications
* Bachelor's degree in computer science or closely related area required with 3+ years of IT cyber security experience/direct professional experience in IT security field
Preferred Qualifications
* Minimum of one relevant certificate (like Certified Incident Handler etc.)
Knowledge and Skills
* Motivated and analytical self-starter who can manage projects, report and stay organized.
* hands on experience in CERT teams.
* Basic knowledge of security processes (port-mapping, vulnerability identification and remediation, anomaly detection), platforms (networking, firewalls, proxies, cloud and LAN/WAN), risk categorization frameworks (NIST, ISO, IEC).
* Scripting experience (Python, PowerShell, regex etc.)
* Hands on experience in analyzing SIEM/EDR data sets.
* International travel required
#LI-Hybrid
YOUR APPLICATION
Are you as curious, courageous and colorful as we are? If so, we can offer you an exciting career opportunity. We look forward to receiving your application and resume. Become part of our team - apply now!
Equal Employment Opportunity: Hiring and advancement are based on job-related requirements and on an individual's qualifications to perform a job. All aspects of employment are carried out free of discrimination or harassment based on race, color, religion, sex (including pregnancy), national origin, age, disabilities, genetic information, veteran status, sexual orientation, gender identity/gender expression or any unlawful criterion, existing under applicable federal, state, or local law.
Contact Us
Info-Hotline: ***************
If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access this site as a result of your disability. To make a request, please call **************.
Cyber Security Analyst (2728)
Cyber Security Analyst Job In West Mifflin, PA
Navarro Research and Engineering is recruiting for a Cyber Security Analyst in West Mifflin, Pennsylvania. Navarro is a premier contractor providing high-quality technical services to DOE, NASA, and DOD. Navarro's success is based on our customer service focus and our well-known responsiveness and innovation. In all we do, either in corporate management or in our services to our clients, we seek for the most effective and efficient approaches to provide best value to our clients.
The Naval Nuclear Laboratory develops advanced naval nuclear propulsion technology for the safety and reliability of our Navy's submarine and aircraft fleet. Our company is looking for a Cybersecurity subcontractor professional to join our team. The subcontractor will be responsible for execution of all aspects of the National Institute of Standards and Technology (NIST) directives to support the Risk Management Framework (RMF). This includes assisting information system owners with development of System Security Plans (SSPs) and Security Assessment Reports (SARs) using the existing RSA Archer application on the Naval Nuclear Propulsion Network (NNPP Net) to support information system authorization. Additionally, the subcontractor will assist in the development of Plans of Action and Milestone (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies found during the information system authorization process.
Requirements
+ An active DOE Q or DoD Top Secret clearance.
+ At least four years of combined experience in the following roles; security control validator, security control assessor, Information System Security Officer (ISSO), or Information System Security Manager (ISSM)
+ At least two years of experience supporting development of information system security authorization packages in accordance with Risk Management Framework (NIST 800-37, 800-53, 800-53a)
+ At least two years of experience working with Federal Risk and Authorization Management Program (FedRAMP)
+ Security+ Certification
+ Experience with the RSA Archer application\
+ At least two years of experience working on IT security project teams.
+ At least one year of experience managing IT projects.
+ Knowledge of IT infrastructure and services (Data Centers, physical and virtual servers, local and wide area networking components, cloud Infrastructure/Platform/Software as a Service, etc.)
+ Knowledge of security policies such as NIST Special Publications, Security Technical Implementation Guides (STIGs), DOD Cloud Computing Security Resource Guide (SRG)
+ Knowledge of infrastructure security, endpoint protection, vulnerability management tools
+ Previous work authorizing information systems within a classified DoE or DoD environment.
+ Familiarity with NIST 800-171
+ Certified Information Systems Security Professional (CISSP) certification- Certificate of Cloud Security Knowledge (CCSK) certification
Benefits
+ Health Care Plan (Medical, Dental & Vision)
+ Retirement Plan (401k, IRA)
+ Life Insurance (Basic, Voluntary & AD&D)
+ Paid Time Off (Vacation, Sick & Public Holidays)
+ Short Term & Long-Term Disability
Annual Salary Range (based on full-time 40 hours per week)
Salary Range: $85,000 - $160,000 depending on education and years of experience.
In accordance with the Navarro Research and Engineering, Inc (Navarro) salary determination process, Navarro takes into consideration the level of assigned job duties and responsibilities and the candidate's education, training, and/or experience relative to internal peers and the external labor market. A candidate's salary history will not be used in compensation decisions.
Cyber Security Analyst with Top Secret Clearance
Cyber Security Analyst Job In West Mifflin, PA
Opportunity
The Cyber Security Analyst will be responsible for the implementation, administration, and maintenance of automated cyber security tools on the enterprise C-Cure system including vulnerability management (scanning, patching), system firewall/intrusion detection, anti-virus, audit logs, peripheral port security, security hardening, and security compliance. The current cyber security tools being used are Nessus (scanning), IBM BigFix (patching), McAfee (system firewall/intrusion detection), McAfee (anti-virus), IBM QRadar (audit logs), lvanti (peripheral port security), Microsoft Group Policy Management (security hardening), Microsoft SCAP (security compliance), Microsoft Active Directory (account management), and Microsoft Windows System Backups.
Provide cyber security maintenance of the enterprise C-Cure system.
Deploy hardware and software patches to the respective C-Cure test/development servers.
Remediate all vulnerabilities that have been identified by the Nessus scans and update them in RSA Archer.
Deploy system firewall, intrusion detection, and anti-virus to the enterprise C-C re system.
Collect and monitor audit logs on the enterprise C-Cure
Lock down peripheral ports on the enterprise C-Cure
Apply security hardening to the enterprise C-Cure system in accordance with applicable DISA STIGs and vendor hardening guides.
Perform SCAP scans of the enterprise C-Cure system.
Manage and monitor Microsoft Active Directory accounts.
Setup and monitor Microsoft Windows systems backups.
Qualifications
Clearance Required: Top Secret or DOE Q clearance required prior to consideration.
Experience Required:
Have training or knowledge in the following vulnerability management products (or equivalent):
1) Nessus (scanning)
2) IBM BigFix (patching)
3) RSA Archer (remediation tracking tool).
Have training or knowledge in administration and use of Microsoft Windows Server 2016/2019, Microsoft Windows 10, and Microsoft SQL Server 2016/2017
Have training or knowledge in the following cyber security products (or equivalent):
1) McAfee (system firewall, intrusion detection, anti virus)
2) Elasticsearch (audit logs)
3) lvanti (peripheral ports)
4) Microsoft Group Policy Management (security hardening)
5) Microsoft SCAP (security compliance)
Microsoft Active Directory (account management)
and 6) Microsoft Windows system backups.
Have training or knowledge of the following areas (or Buyer approved equivalent):
Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGS)
About IMG
Founded in 1987, IMG is a leading small business that exemplifies competence, integrity and follow-through. We consistently provide customer focused professional services, which ensures our company is recognized for continually exceeding expectations. We believe that at the core of our success stand our people. Our people have provided professional services in the Information Technology field for our customers with a commitment to customer satisfaction for over 35 years.
IMG Benefits:
Health, dental, vision, and life insurance
Short term and long term disability insurance
401(k) with generous company match
Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)
Personal leave plus paid federal holidays
Professional development and training assistance
IMG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Cyber Watch Desk Analyst
Cyber Security Analyst Job In Pittsburgh, PA
Full-time Description
New World. New Problems. New Solutions
.
Edgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime, as well as improve overall operations for our customers. Edgeworth Security takes a proactive stance on crime prevention and operational enhancement by applying artificial intelligence and military grade analytics used in our Command Center. We combine people, processes, and technology to actively secure, protect and improve the operations of our clients' people, property, and assets.
Position: Cyber Watch Desk Analyst
Location: Pittsburgh, Pennsylvania
Travel: None. This position is onsite, in-office.
Benefits:
Top-tier compensation
Full-time, non-exempt hourly with full benefits (medical, dental, vision, life insurance/AD&D/short-term and long-term disability, 401(k) matching)
Training & Education Assistance
Paid Time Off (PTO)
Overview: As a Cyber Watch Desk Analyst, you will be a crucial part of our cybersecurity operations, working to ensure the security and integrity of our digital infrastructure. You will monitor our systems, identify system faults, detect potential threats, and assist in incident response, playing a pivotal role in safeguarding our organization from cyberattacks.
Essential Job Function and Responsibilities:
Real-Time Monitoring:
Continuously monitor network traffic, security alerts, and event logs to detect suspicious or anomalous activities.
Utilize security information and event management (SIEM) tools to assess the security posture.
Threat Detection and Analysis:
Analyze security alerts and reports to identify potential security incidents and vulnerabilities.
Investigate, document, and categorize security events based on their severity and potential impact.
Incident Triage and Response:
Assist in the initial triage of security incidents by following predefined incident response procedures.
Collaborate with incident response teams to coordinate and execute response efforts.
Reporting and Documentation:
Prepare and maintain detailed incident reports, including a timeline of events, actions taken, and recommendations for improvements.
Maintain accurate records of incidents, investigations, and responses.
Threat Intelligence:
Stay informed about the latest cybersecurity threats, vulnerabilities, and attack methodologies.
Use threat intelligence to enhance threat detection and response capabilities.
Security Awareness and Communication:
Provide timely updates and information to relevant stakeholders, including management and incident response teams.
Foster a culture of security awareness by promoting best practices and sharing threat insights.
Continuous Improvement:
Identify opportunities to enhance the efficiency and effectiveness of monitoring and response processes.
Contribute to the development of playbooks and procedures for different types of incidents.
Compensation is targeted at $25 per hour based on experience and certifications.
What's in it for you? Why work for Edgeworth:
We are growing! We want all candidates and employees to know that we are excited about the positive improvements we're making and our ongoing efforts to enhance our culture and provide an environment that promotes both professional growth and work-life balance. Our expansion brings exciting opportunities for progress and innovation as we adapt to new challenges. By embracing change, implementing effective processes, and exploring new technologies, we're continually improving. Together, with a shared focus on our goals, we're building a successful, dynamic company where everyone can thrive.
We value our employees and are invested in personal and professional growth, learning new skills, challenging yourself, and growing your career while doing meaningful work.
We look forward to the possibility of you joining our team.
Employees are our greatest asset. Here at Edgeworth Security, we embrace diversity, equity, and inclusion, and always strive to be better than we were yesterday.
EOE/Minorities/Females/Vet/Disability/Sexual Orientation/Gender Identity Edgeworth Security is an Equal Opportunity Employer committed to hiring a diverse workforce.
Edgeworth Security utilizes e-Verify to check employment authorization.
Requirements
Bachelor's degree in computer science, Information Security, or a related field is preferred.
Relevant certifications like CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are a plus.
Previous experience in a cybersecurity, incident response, or security operations center (SOC) role is beneficial.
Knowledge of security information and event management (SIEM) tools and security incident response procedures.
Strong analytical skills, attention to detail, and the ability to work under pressure.
Excellent communication and teamwork skills.
Respond swiftly and effectively to tickets/incidents in a high-pressure, fast-paced environment.
Maintain situational awareness in environments with loud sounds, bright lighting, and occasional strobe effects.
Salary Description $25/hour
Senior Cyber Security Analyst - 1766997
Cyber Security Analyst Job In Pittsburgh, PA
Responsibilities of Senior Cyber Security Analyst:
Review and update the Detailed Architecture Diagram, Detailed Hardware/Software Inventory, and other system artifacts to determine the DoD IT type.
Develop the baseline set of impact values for medical devices.
Identify and document common controls in the Security Plan, obtaining supporting documentation for inherited controls.
Initiate the tailoring process in eMASS to modify the control set based on specific system conditions.
Add relevant supplemental security controls and mark irrelevant controls as "Not Applicable."
Identify security controls for ongoing monitoring.
Review site/organization change control policies and document the application of policies to specific controls.
Coordinate with the IV&V Team to clarify information required for SAP.
Lead the execution of self-assessment activities, assess NIST SP 800-53 Revision 4 controls, and document results in eMASS.
Provide support for remediation and mitigation efforts.
Create the Risk Assessment Report (RAR) and upload it into eMASS, along with all self-assessment results and artifacts documentation.
Coordinate with the ISSM to confirm the completion of the Security Authorization Package before eMASS submission.
Assist the program with status reports, white papers, weekly activity reports, and other ad hoc requirements.
Perform other job-related duties as assigned.
Qualifications for the Position:
Bachelor's Degree.
Minimum of seven (7) years of relevant experience in cyber logistics.
Technical Training in Cyber Security, Information Assurance, Network Design, or Information Technology, coupled with 15 years of hands-on experience supporting network operations centers, Cyber Security Service Providers, or Cyber Red Teams within the DoD or Federal government. This should include expertise in three (3) of the following five (5) areas: Systems Requirements, Operational Requirements, Data Analysis, Test & Evaluation, and Training. Certification in IAT Level I / IAM Level I, II, III is required.
Knowledge of the DHA mission and environment.
Familiarity with DoD Networks and the orders process.
Proficiency in briefing Senior Leadership and General Officer / Flag Officer (GO/FO) leadership.
Strong knowledge of computer security principles and best practices.
Skillful with eMASS and the Risk Management Framework.
Proficient in developing briefing materials, administrative, and logistic support.
Advanced communication and presentation skills (verbal and written) enabling precise conveyance of information across all customer sections with proper enunciation of the English language.
Strong interpersonal, organizational, and critical thinking/problem-solving skills.
Flexibility, dependability, and ability to multitask with priorities.
Demonstrated skills in providing excellent customer service.
Proficiency in using Microsoft Office Suite.
Working knowledge of Combatant Command operations.
Skillful in building extended cyber security analytics.
Active DoD Secret clearance.
Security Analyst
Cyber Security Analyst Job In Frazer, PA
Artech Information Systems is the #1 Largest Women-Owned IT Staffing Company in the U.S. and an employer of choice for over 7,200 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications.
Job Title: Security Analyst
Location: Pittsburgh, PA/ Lake Mary, FL / Nashville, TN
Duration: 12 months contract with possible extension/ conversion FTE
Job Description:
Client is looking for a talented and self-motivated individual with strong technical skills and the ability to rapidly learn new technologies. We are looking for an exceptional candidate that shares our passion for delivering solutions to complex security problems, while maximizing productivity and minimizing employee friction. The candidate will contribute to IAMO Transformation program by aiding in the configuration and implementation of the new SailPoint LCM product. The candidate will perform business critical analysis to help with the implementation of application access requests and workflows across IAM. This role will support access provisioning, remediation for audit findings, workflow creation and modifications, and ensuring revocations and certifications are completed within the guidelines established by Corporate Policy. This position is critical to ensure Service Level Objectives and Internal project deadlines are met. The candidate will require increased technical and analytical skillsets and provide Sailpoint Product Support with a focus on:
• Experience with designing, developing, testing, implementing, and integrating IGA solutions involving SailPoint Identity Now (IIQ).
• Experience in SailPoint Identity IQ implementation and configuration for application on-boarding for access request and approval and access certifications
o Configuration of simple and advanced LCM workflows within SailPoint
o Creating and managing workgroups in SailPoint
o Configuration and management of most common direct connectors (i.e. Active Directory, LDAP, Mainframe, etc.)
o Creation of preventative and detective Segregation of Duty rules
o Experience with role-based access controls and configuring automate provisioning and deprovisioning.
• Train and mentor other team members on the use of the SailPoint Identity Now platform.
• Experience with identity lifecycle flows including leaver, joiner, and mover.
• Experience with consultative and complex technical deployment projects, managing various stakeholder relationships.
• Strong knowledge and experience with incident/problem management processes.
• Possess critical thinking skills.
• Strong functional knowledge of MS Office Suite software products, Jira, and Confluence.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
• Ensures integration end state protects information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss.
• Design and code rules, applications, workflows, custom tasks, custom connectors, UI pages and custom reports in SailPoint Identity Now.
• Develop working relationship with IT engineering resources to drive solution features adoption.
• Develop control adoption templates for IT resources to understand and implement connections required for the SailPoint Identity Now service.
• Review SailPoint IGA to ensure the solution is optimized for the highest level of service and establish an ongoing practice to perform periodic reviews.
• Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions.
• Design and maintain flowchart diagrams, process workflows and standard documentation required to sustain the SailPoint platform.
• Promote security policies, standards, and best practices across the organization.
• Supports and resolves system incidents, problems, and changes.
Qualifications
5 years of Sailpoint experience
-Will consider experience over degree
-Locations: Pittsburgh, Lake Mary or Nashville
-2000+ applications to be migrated into sailpoint
-Configure workflows
-Create/manage work groups
-Create duty rules
-Invisio, Confluence, Jira, Excel
Additional Information
All your information will be kept confidential according to EEO guidelines.
ICS Cyber Security Engineer
Cyber Security Analyst Job In Fernway, PA
Job Responsibilities: * In this position, the Industrial Control Systems (ICS) Cyber Security Administrator can expect to be assisting in the evaluation and implementation of network architecture and cyber security services and technologies in nuclear power plants around the world.
* The individual in this position will work as a member of the Cyber Security Engineering group and will be responsible for a variety of functions utilizing their understanding of cyber security practices and technologies.
* The candidate should have a background with implementing cyber security solutions on ICS, technical security audits, and general information technology & networking.
* An ideal candidate for this position would be expected to work at the direction of a lead engineer in the realm of cyber security and have comprehensive knowledge of several areas of specialization within the cyber security discipline and industrial control systems architecture.
* Candidates in this position are directly responsible for providing system build, configuration management, troubleshooting and verification/validation of security systems and industrial control networks.
* For multiple ongoing projects, providing network and system specification documentation deliverables to address cyber security vulnerabilities and the security controls necessary to mitigate the vulnerabilities to an acceptable level of risk.
* Participate in information sharing with internal and external customers including the delivery of presentation material, technical training, and knowledge transfer.
* Perform system administration, configuration management, network configuration, and virtual environment management.
* Engage in network security, including firewalls, data diodes, security information & event management devices, network intrusion detection devices and application of host-based security products from a centralized server and secure (hardened) configuration of system components.
Resolution of technical issues that arise during system design and implementation.
* Interface with system end users and customers as required to support meeting project technical objectives.
* Provide cost and schedule estimates as required.
* Travel up to 50%, typically when deploying systems to the field for installation and commissioning
Education:
Technical Bachelor's Degree in Engineering (Electrical or Computer) or Computer Science, Information Sciences and Technology, Cyber Security / Information Assurance, or similar.
Experience:
* 0-2 Years of Experience
* Knowledge of engineering principles and techniques
* Knowledge of security control frameworks such as NIST 800-53, 20 Critical Controls, ISO 27002, NEI 08-09 is helpful but not required
* Knowledge of Center for Internet Security Benchmarks and Application
* Excellent Verbal and written skills
* Network Device Configuration Knowledge / Experience
* Experience with virtualization technologies (VMware)
* Experience in industrial environments or industrial control systems a plus
* Skill in conducting system/server planning, management, and maintenance.
* Skill in correcting physical and technical problems that impact system/server performance
* Skill in troubleshooting failed system component (i.e., servers)
* Skill in identifying and anticipating system/server performance, availability, capacity, or configuration problems
What we need to see from you:
* Ability to be granted 10 CFR 73.56 Trustworthy and Reliable clearance
Certifications:
At least one of the following certifications is preferred but not required.
* GIAC Security Essentials Certification (GSEC) or equivalent
* Security+ Certification
* Network+ Certification
* Other related technical certifications showing areas of expertise from qualified and reputable vendors and certification agencies
Employment opportunities may require access to information which is subject to the export control regulations of the United States. Hiring decisions for such positions are required by law to be made in compliance with these regulations. Applicants for employment opportunities in other countries must be able to meet the comparable export control requirements of that country and of the United States.
Lead Analyst-Information Security ISSO
Cyber Security Analyst Job In Pittsburgh, PA
Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers.
Travel up to 10% nationally.
Additional Requirements as per contract/client: Must be a US Citizen.
Essential Duties and Responsibilities:
-Responsible for ensuring information security for an assigned area of Business / Project focusing on key areas of risk, outlined in the Information Security policy, under the direction of the Information Security management team.
- Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications.
- Ensure controls implementation for identified Information Security risks for business area of responsibility.
- Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements.
- Support audit and client engagements, coordinate the collection, review and submission of Information Security deliverables and coordinate the remediation of audit concerns.
- Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team.
- Promotion of Information Security awareness through various communication channels within the organization.
- Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets.
- Travel required up to 25%.
- Other duties as assigned.
Develop Plan of Action and Milestones (POA&M) as necessary
Manage exceptions to policies and procedures
Minimum Requirements
- Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required.
- Bachelor's Degree
- 7+ of security or technology related experience
- Works on complex issues where analysis of situations or data requires an in depth evaluation of variable factors.
- Exercises judgement in selecting methods, techniques, and evaluation criteria for obtaining results.
- Networks with key contacts outside own area of expertise.
- Develops solutions to a variety of complex problems.
- Work requires considerable judgment and initiative.
- Ability to communicate technical information in understandable business terms
- Excellent interpersonal skills, presentation skills, and verbal / written communication skills
- Strong customer service abilities required.
- Ability to work collaboratively with a broad range of staff. Skilled in Microsoft Office software including Word, Excel, Visio, MS Project, and PowerPoint
- Ability to perform comfortably in a fast-paced, deadline-oriented work environment
- Ability to execute many complex tasks simultaneously, and work as a team member as well as independently
Travel is up to 10%
At least one of the following certifications is REQUIRED: CISSP, CISA or CISM.
Experience with NIST 800-53 and HIPAA is REQUIRED.
Experience with Cloud providers, such as Azure and AWS.
Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS
Smartsheet experience preferred.
#LeadAnalyst #maxcorp #LI-JH1 #HighlightedJobs1224LI #HighlightedJobs1224FB #HighlightedJobs1224X
EEO Statement
Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status.
Pay Transparency
Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.
Minimum Salary
$
108,375.00
Maximum Salary
$
140,000.00
Information Security Analyst, Identity Access Management Operations
Cyber Security Analyst Job In Pittsburgh, PA
**Pittsburgh, PA** **Type:** Contract **Category:** Security **Industry:** Financial Services **Reference ID:** JN -012025-92342 **Shortcut:** ****************************** Nji9 + Description + Recommended Jobs **Description:** Join our dynamic team as an Information Security Analyst specializing in Identity Access Management Operations. You will play a crucial role in establishing and maintaining client, account, user, and service entitlements on provisioning systems. Your expertise will ensure the accuracy and efficiency of our security administration processes, contributing to the achievement of our IAM Operations goals.
_Due to client requirement, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance._
_Rate: $25 - $30 / hr. w2_
**Responsibilities:**
+ Execute complex security administration tasks for BNYM applications to establish and maintain user access.
+ Facilitate discussions between technical and non-technical stakeholders to ensure comprehensive understanding of security processes.
+ Perform reconciliation and governance oversight to maintain security standards.
+ Provide comprehensive administrative support for information security operations.
+ Follow and assist in the development of security-related processes and initiatives.
+ Support day-to-day security administration and contribute to projects aimed at improving operations and client satisfaction.
+ Stay informed about security practices, procedures, and standards across multiple platforms.
**Experience Requirements:**
+ 3-5 years of experience in Information Security Analyst or related technology roles
+ Experience in the securities or financial services industry is a plus, but not required
+ Identity and Access Management (IAM) lifecycle management
+ Data entry and management
+ Security administration for applications
+ Reconciliation and governance oversight
+ Advanced operations security support
+ Analytical skills for data collection and analysis
**Education Requirements:**
+ Bachelor's degree in computer science or a related discipline, or equivalent work experience
_Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range._
_W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality._
_Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact ********************._
_About Eliassen Group:_
_Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate._
_Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status._
_Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!_
Associate, Information Security Analyst I
Cyber Security Analyst Job In Pittsburgh, PA
At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere.
We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about.
We're seeking a future team member for the role of Associate, Information Security Analyst I to join our Information Security Division - Cyber Operations. This role is located in Pittsburgh, PA - HYBRID.
Click here to view our Information Security Division Career Brochure.
In this role, you'll make an impact in the following ways:
Support the effectiveness of security-related operations.
Provide programming support for an operational area in information security.
Support the basic operations of a security sub-component.
Execute day-to-day operational security components.
Assist in implementing new versions of security software for existing technologies and architectures.
Review and analyzes basic data and information for business systems security.
Assist in ensuring that security concerns are addressed and mitigated.
Format and provide data needed for information security reports.
Contribute to the achievement of team objectives.
To be successful in this role, we're seeking the following:
Bachelor's degree in computer science or a related discipline, or equivalent work experience required.
Entry level years of experience required, related internship experience is a plus.
At BNY, our culture speaks for itself. Here's a few of our awards:
America's Most Innovative Companies, Fortune, 2024
World's Most Admired Companies, Fortune 2024
Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024
Best Places to Work for Disability Inclusion, Disability: IN - 100% score, 2023-2024
“Most Just Companies”, Just Capital and CNBC, 2024
Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024
Bloomberg's Gender Equality Index (GEI), 2023
Our Benefits and Rewards:
BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.
BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.
Security Analyst
Cyber Security Analyst Job In Pittsburgh, PA
We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges.
In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India.
We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career.
Job Description
MUST HAVE:
Experience with implementing a vulnerability scanner
Familiarity with both Windows and Linux platforms
Experience with a log management system (Splunk, Elastic Search, etc)
General understanding of incident management systems
Experience patching operating systems/applications
Experience configuring operating systems/applications
Knows and applies the fundamental concepts, practices and procedures of IT security hardware, software, management software, and troubleshooting tools
Candidate should have a strong knowledge of IT security, including demonstrated knowledge of current security trends and issues
Ability to effectively and professionally communicate with customers and technical support staff at remote locations including team members in foreign countries; excellent verbal and written communication skills
Highly self-motivated and flexible
Manage priorities for timely completion of assignments
Strong analytical and problem-solving skills
Demonstrated success managing confidential/secure information with a high level of integrity
NICE TO HAVE:
Nessus experience
HP Service Manager
Additional Information
Good comm skills are a big priority
Duration: 3+ Months
LOCALS PREFERRED
Interview: Phone+F2F
Information Security Analyst
Cyber Security Analyst Job In Canonsburg, PA
Job Type: Full-time
Work Authorization: U.S. Citizen or Green Card
The A.C. Coy Company is currently seeking candidates for an Information Security Analyst role. This individual will serve as a main contact for compliance and security initiatives within the company. Our ideal candidate will have 5+ years of experience working in information security and specific experience in GRC and cybersecurity. CISSP is strongly preferred. Occasional travel to other office locations is required, but very rarely overnight.
Our client is offering an excellent salary and benefits package and strong career growth opportunities.
Responsibilities
Lead and manage security initiatives, compliance enforcement, and incident response in accordance with corporate policies and standards
Maintain and improve our ISMP /Process Documents, create and update process documentation, controls, and SOPs
Maintain security policy and procedure documentation, such as ISMP, according to changes in the business and security framework.
Develop and design necessary systems to maintain and improve the organization's security posture
Conduct log reviews and investigations and monitor/report on security systems such as the SIEM, IPS, and VM
Manage third-party risk management and security awareness program
Provide guidance on development and technology security strategy for the IT team
Mentor and grow our high-performing security team
Works closely with Incident Response Team to gather requirements and support their needs
Help maintain Security Operations Center (SOC) to improve incident response time with Network Technician(s)
Support in achieving organizational Objectives and Key Results (OKRs)
Track, analyze, and report threats, risks, vulnerabilities, and incident data as part of our data-driven security operation
Track and improve corporate security Key Performance Indicators (KPIs)
Brief associates and executives at annual reviews, lunch & learns, and training events on security awareness
Develop and sustain long-standing relationships with 3rd party vendors
Assist with RFP and other client requests for security and compliance confirmation documentation
Assist our stakeholders with aligning standard operating procedures, controls, monitoring, and reporting
Qualifications
Bachelor's degree in Computer Science, Information Systems, Information Security or a related field
5+ years experience in the working in information security and technology
Willingness to certify in Security+ and Network+ within first year of role placement is required
Preferred
CISSP certification
Some experience working in networking and server infrastructure
Experience in the commercial print industry preferred
Experience with C# development
Experience with SQL
Network & Infrastructure Palo Alto / Cisco Security Consultant - Location Negotiable
Cyber Security Analyst Job In Pittsburgh, PA
We Are Accenture Security helps organizations prepare, protect, detect, respond, and recover along with all points of the security lifecycle. Cybersecurity challenges are different for every business in every industry. Leveraging our global resources and advanced technologies, we create integrated, turnkey solutions tailored to our client's needs across their entire value chain. Whether we're defending against known cyberattacks, detecting and responding to the unknown, or running an entire security operations center, we will help companies build cyber resilience from within. We blend risk strategy digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle.
Do you have the deep functional and technical experience to help implement security solutions that align with our clients' business objectives? Do you have the expertise to design and deliver solutions for establishing system user's credentials, and processes for applying those credentials to access enterprise systems and applications?
If so, read on and apply, Accenture's more than 2000 security professionals deliver holistic and proactive security solutions in 47 countries, and we'd love to discuss our open Infrastructure and Network Security roles with you.
We are currently seeking professionals for our Cloud and Infrastructure Security practice with extensive experience in the following:
Job Description
Network and Infrastructure Security professionals develop and deliver solutions for organizations to contain and protect valuable company assets within their environment. Create new or develop existing security architecture solutions and implement quality work met with client expectations. A professional at this position level within Accenture has the following responsibilities:
Adapts existing methods and procedures to create possible alternative solutions to moderately complex problems. Design, configure, manage and troubleshoot a variety of network firewall technologies. Understands the strategic direction set by senior management as it relates to team goals. Uses considerable judgment to determine solution and seeks guidance on complex problems. Primary upward interaction is with direct supervisor. May interact with peers and/or management levels at a client and/or within Accenture. Determines methods and procedures on new assignments with guidance. Decisions often impact the team in which they reside. Manages small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture.
Our consultants assist clients with the identification and evaluation of holistic security gaps focusing from an infrastructure and network security perspective. They also anticipate security requirements and identify sound security controls for applications, systems, processes and organizations. Our managers can easily work with non-security teams to integrate security controls on projects.
We are currently searching for consultants for our Security Technology practice with prior experience in the following areas: network security, firewall administration, security policy assessments, and firewall deployments and migrations.
Key Responsibilities may include:
* Assist developing integrated security solutions involving network firewall products that support client daily operations.
* Serve as technical lead delivering architecture resolutions against stringent timelines.
* Troubleshoot network devices, various platforms, databases, Windows and/or UNIX systems in Infrastructure and/or cloud environments.
* Involvement in technical security assessments for Accenture's clients (e.g., network, security architecture, security policy assessments)
* Aid to a strong client relationship through interactions with client personnel
* Report and update project progress and client expectations to the engagement team
Qualification
Basic Qualifications:
* 2+ years firewall administration (preferably Palo Alto or Cisco)
* 2 or more of the following including the above:
* 2+ years of working with firewall tools performing deployment, configuration, policy management and administering firewall operations.
* 2+ years conducting security work in enterprise infrastructure or cloud environments (Hybrid, AWS, Azure, GCP experience preferred)
* 2+ years working with any of the following: intrusion detection systems, remote access VPN technologies, vulnerability assessment tools, event and log analysis solutions and/or configuration and change management systems.
* 2+ years understanding of network fundamentals (e.g., router or switch administration, IP subnets, routing protocols, network tools experience preferred)
* 2+ years of hands-on experience with Palo Alto Network, Zscaler, Fortinet, Cisco, and/or Netskope (SASE, Firewalls, Edge Security, and Zero Trust)
* Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)
* Travel will be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements.
Preferred Skill Requirements:
* Hands-on experience with Zscaler, Fortinet, Cisco, and/or Netskope (SASE, Firewalls, Edge Security)
* Firewall deployments, migrations, configuration and administration
* Experience with Next-Gen Firewalls, Global Protect, SASE, ZIA, ZPA, Forti Manager and/or Netskope DLP
* Creating and establishing Customer Access Nodes
* Utilizing Network, Server, Security profiles
* Experience with Palo Alto Networks tools (e.g., Threat Prevention, Wildfire, URL Filtering, Cortex Data Lake)
* Understanding of emerging security topics, methods, and frameworks (e.g., Zero Trust, Macro/Micro Segmentation, etc.)
* Understanding of security compliance frameworks (e.g., PCI DSS, HIPAA, NIST, SOX, etc.)
* Project firewall deployment and migration delivery experience
* RFP/RFI Response Knowledge (ability to work and support proposal efforts)
* Cyber Security experience in complex global enterprise and or Govt. environment a plus
Professional Skill Requirements:
* Proven success in contributing to a team-oriented environment.
* Proven ability to work creatively and analytically in a problem-solving environment.
* Desire to work in an information systems environment.
* Excellent leadership, communication (written and oral) and interpersonal skills
Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired in California, Colorado, District of Columbia, Illinois, Maryland, Minnesota, New York or Washington as set forth below.
We accept applications on an on-going basis and there is no fixed deadline to apply.
Information on benefits is here.
Role Location Annual Salary Range
California $63,800 to $205,800
Colorado $63,800 to $177,800
District of Columbia $68,000 to $189,300
Illinois $59,100 to $177,800
Minnesota $63,800 to $177,800
Maryland $59,100 to $164,600
New York $59,100 to $205,800
Washington $68,000 to $189,300
#LI-NA
Locations
Security Engineer - Test/Deploy Cloud Controls
Cyber Security Analyst Job In Pittsburgh, PA
Position OverviewAt PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company's success. As a Software Engineer within PNC's Technology organization, you will be based in Pittsburgh, PA; Cleveland, OH; Birmingham, AL or Dallas, TX. The position is primarily based in a PNC location. Responsibilities require time in the office or in the field on a regular basis. Some responsibilities may be performed remotely, at the manager's discretion.
**PNC will not provide sponsorship for employment visas or participate in STEM OPT for this position**
As a Senior Security Engineer, you will be embedded in the Cloud Security Team and will build and deploy innovative security controls that protect public cloud workloads that are in alignment with regulatory standards. You will work on a highly innovative/collaborative team that works diligently to automate and bake security into public cloud workloads. You will utilize Cloud Service Provider's native Cloud Native Application Protection Platform (CNAPP) tools as well as Palo Alto Prisma Cloud to posture assess PNC's public cloud workloads. Familiarity and willingness to develop expertise in utilizing Prisma Cloud as the source of truth for public cloud resource compliance is a must for this position.
Having a strong ability to collaborate and problem solve within the Cloud Security team and with our partners and stakeholders is critical. You will work closely with Prisma Cloud and PNC's Security as Code (SAC) pipeline to test and deploy security controls that ensure PNC workloads are secure by default. You will interact and engage with PNC's Fusion Center, which is our SOC, to understand potential vulnerabilities and work to codify these controls.
In addition, you will engage with our Cloud Product team and Infrastructure as Code (IAC) teams as we shift our security controls to the left into the IAC pipeline and Integrated Developer Environments (IDE). Being able to effectively communicate verbally and in writing is critical to interacting and engaging our stakeholders and internal customers. You will be a vital part of the Cloud Security team's mission to secure PNC's cloud workloads.
Responsibilities
· Test security controls in lower environments for Azure resources and AWS services
· Validate security control effectiveness and promote to production workloads
· Work within agile team and proactively participate in planning sessions
· Engineer and Configure Palo Alto Prisma Cloud to effectively analyze and assess cloud workloads for compliance
· Write RQL queries to implement new policies to check for resource drift.
· Provide technical support to remediate alerts in Prisma Cloud
· Enable key stakeholders with access to Prisma Cloud to utilize licensed components to full effectiveness
· Continuous learning environment - Our team does not stand still, a growth mindset that is continuously seeking new and better ways to solve security challenges is a must.
· Assess, implement, automate, and document security solutions and processes for Microsoft Azure and AWS
· Provide analysis of workloads to ensure alignment with operational security requirements in order to go to production.
· Work closely with Cloud Security Product Owner to refine backlog tickets and define priority and sizing
· Automate and orchestrate the process of Cloud software deployment (CI/CD) to integrate enterprise security standards, policies, configurations, and architectures, for applications, platforms, and infrastructure
· Assist DevOps team members with the development and operationalization of security, and access Cloud requirements
· Ability to work on multiple projects in parallel, ensuring security best practices are utilized across all stages of application development as well as applications deployed to production
Preferred Skills:
· Thorough understanding of AWS and Azure public cloud products & services.
· Experience in applying security controls as code to public cloud workloads in Azure and AWS.
· Experience in automating security controls that respond to misconfigurations of expected cloud resource settings.
· Creating innovative solutions to meet PNC's technical security needs.
· Proficient in one or more scripting languages such as Python, Powershell, Bash, etc.
· Expertise with Git, including branching workflows.
· Experience with testing security controls in non-prod environments to ensure the effectiveness of the control.
· Strong written and verbal communications skills.
· Process and detail oriented.
· Demonstrate willingness to actively participate in planning sessions and take ownership of assigned tasks.
· Ability to “think outside the box” when considering options to address security controls at scale and across multiple cloud service providers.
· Familiarity and understanding of basic SQL or KQL queries.
Preferred Certifications:
· Azure Fundamentals - AZ-900
· Azure Security Engineer Associate - AZ-500
· AWS Cloud Security EngineerJob Description
Provides subject matter expertise when applying security concepts. Leverages technical knowledge and industry experience to design, build, and maintain technology solutions. Responsible for deliverables related to project timelines.
Responsible for working with architecture to take high level architectural designs and determine the specifics around implementation details (ex: sizing) integration details, onboarding and operationalization.
Evaluates patches, updates, and ongoing maintenance. Determines impacts to existing solutions when new standards are implemented. Utilizes change control and other governance processes to ensure alignment of solutions .
Develops detailed implementation, configuration, design, and engineering documentation. Build and implement solutions.
Works with operational partners to enable transition and day-to-day supportability.
Provides engineering support to existing technology in a production environment and collaborating with other groups as required. Seeks opportunities to grow a broad knowledge base to complement specific subject matter expertise.
PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:
Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.
Qualifications
Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and required certifications/licensures needed to be successful in this position.
Preferred SkillsAccess Control (AC), Building Architecture, Customer Solutions, Disaster Recovery Planning, Information Security, Network Security, Physical Security, Risk Assessments, Security TechnologiesCompetenciesAnalytical Thinking, Effective Communications, Information Security Management, Information Security Technologies, IT Environment, IT Standards, Procedures & Policies, IT Systems Management, Network and Internet Security, Problem Solving, Technical TroubleshootingWork ExperienceRoles at this level typically require a university / college degree, with 5+ years of industry-relevant experience. Specific certifications are often required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.EducationBachelorsCertificationsNo Required Certification(s) LicensesNo Required License(s) BenefitsPNC offers a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives.In addition, PNC generally provides the following paid time off, depending on your eligibility: maternity and/or parental leave; up to 11 paid holidays each year; 8 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.
To learn more about these and other programs, including benefits for full time and part-time employees, visit Your PNC Total Rewards.
Disability Accommodations Statement
If an accommodation is required to participate in the application process, please contact us via email at AccommodationRequest@pnc.com. Please include “accommodation request” in the subject line title and be sure to include your name, the job ID, and your preferred method of contact in the body of the email. Emails not related to accommodation requests will not receive responses. Applicants may also call ************ and say "Workday" for accommodation assistance. All information provided will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
At PNC we foster an inclusive and accessible workplace. We provide reasonable accommodations to employment applicants and qualified individuals with a disability who need an accommodation to perform the essential functions of their positions.
Equal Employment Opportunity (EEO)
PNC provides equal employment opportunity to qualified persons regardless of race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, veteran status, or other categories protected by law.
California Residents
Refer to the California Consumer Privacy Act Privacy Notice to gain understanding of how PNC may use or disclose your personal information in our hiring practices.
Electronic Security Engineer
Cyber Security Analyst Job In Pittsburgh, PA
Embark on a trailblazing career in Security Technology with Allied Universal Technology Services, a global leader in security technology that's transforming the security industry. We integrate state-of-the-art technology with physical security to protect our clients and communities, harnessing tools like electronic access control, video surveillance, and alarm monitoring, alongside emergent innovations such as robotics, drones, and augmented technology. As a valued team member, you'll be part of a diverse and dynamic workforce that thrives on innovation and inclusivity. We offer a wide spectrum of job opportunities for both stability and growth across various roles, including service and installation technicians, engineers, and project managers. At Allied Universal , we don't just embrace change; we drive it, creating a culture where diversity fosters innovation and forges caring connections. Join us and help set new benchmarks in the security industry while advancing your career. Enjoy comprehensive benefits for most full-time positions, including medical, dental, and vision coverage, life insurance, retirement plans, employee assistance programs, and exclusive perks.
Job Description
Allied Universal Technology Services is looking to hire an Applications Engineer. The Applications Engineer is responsible for software-specific support of our installation team to include the integration / interface of multiple disparate software applications into fully functioning solutions. This position will be responsible for all levels of system head-end commissioning, upgrades, and advanced diagnostics to achieve the defined functionality of systems operation. The Applications Engineer should be capable of utilizing existing SDK's and/or API's to ensure the desired level of integration and should be capable to perform customized integration between software applications. The Applications Engineer's schedule will be coordinated by Operations and Project Managers to be effectively and efficiently utilized.
RESPONSIBILITIES:
Capable of advanced integration between disparate electronic security systems
LAN & Network configurations experience include wireless communications system.
Perform system diagnostic and troubleshooting duties to ensure a fully functioning system
Work with Project Managers, End Users and Technician team to provide assistance in regards to the software systems
Troubleshoot project issues and engage appropriate resources as needed.
Escalate significant issues to management team as needed.
Work with the Project Management team to coordinate project and work schedules to ensure project efficiencies
Work with Operations Manager to schedule and maintain appropriate licensing and software trainings for professional development
Take the lead in End User Software training
QUALIFICATIONS:
A high school diploma or equivalent required; a BA/BS Degree preferred
In-depth knowledge of industry-leading security system and equipment providers
Certification with major enterprise level security/access control systems preferred
Decision-making and problem-solving ability
Ability to read and understand advanced technical information and documentation
Proficient with MS Office Suite (Excel, Outlook, PowerPoint, Project, SharePoint and Word)
Excellent verbal and written communication skills
Ability to establish and maintain effective working relationships with both internal and external customers
Must be detail-oriented and organized
Strong analytical and problem-solving capabilities
Strong time management skills
Self-motivated with the ability to motivate and influence others
Must be able to manage multiple tasks while meeting strict deadlines
Possess excellent follow-up skills
Certifications in the following Software platforms are preferred
AMAG
Idemia (Biometrics)
BENEFITS:
Medical, dental, vision, basic life, AD&D, and disability insurance
Enrollment in our company's 401 (k) or Supplemental Income Plan, subject to eligibility requirements
Eight paid holidays annually, five sick days, and four personal days
Vacation time offered at an accrual rate of 3.08 hours biweekly. Unused vacation is only paid out where required by law.
Closing
Allied Universal is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race/ethnicity, age, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, protected veteran status or relationship/association with a protected veteran, or any other basis or characteristic protected by law. For more information: ***********
If you have any questions regarding Equal Employment Opportunity, Affirmative Action, Diversity and Inclusion, have difficulty using the online system and require an alternate method to apply, or require an accommodation at any time during the recruitment and/or employment process, please contact our local Human Resources department. To find an office near you, please visit: ***********/offices.
Requisition ID 2025-1330811
Cyber Security Analyst with Top Secret Clearance
Cyber Security Analyst Job In West Mifflin, PA
Opportunity
The Cyber Security Analyst will be responsible for the implementation, administration, and maintenance of automated cyber security tools on the enterprise C-Cure system including vulnerability management (scanning, patching), system firewall/intrusion detection, anti-virus, audit logs, peripheral port security, security hardening, and security compliance. The current cyber security tools being used are Nessus (scanning), IBM BigFix (patching), McAfee (system firewall/intrusion detection), McAfee (anti-virus), IBM QRadar (audit logs), lvanti (peripheral port security), Microsoft Group Policy Management (security hardening), Microsoft SCAP (security compliance), Microsoft Active Directory (account management), and Microsoft Windows System Backups.
Provide cyber security maintenance of the enterprise C-Cure system.
Deploy hardware and software patches to the respective C-Cure test/development servers.
Remediate all vulnerabilities that have been identified by the Nessus scans and update them in RSA Archer.
Deploy system firewall, intrusion detection, and anti-virus to the enterprise C-C re system.
Collect and monitor audit logs on the enterprise C-Cure
Lock down peripheral ports on the enterprise C-Cure
Apply security hardening to the enterprise C-Cure system in accordance with applicable DISA STIGs and vendor hardening guides.
Perform SCAP scans of the enterprise C-Cure system.
Manage and monitor Microsoft Active Directory accounts.
Setup and monitor Microsoft Windows systems backups.
Qualifications
Clearance Required: Top Secret or DOE Q clearance required prior to consideration.
Experience Required:
Have training or knowledge in the following vulnerability management products (or equivalent):
1) Nessus (scanning)
2) IBM BigFix (patching)
3) RSA Archer (remediation tracking tool).
Have training or knowledge in administration and use of Microsoft Windows Server 2016/2019, Microsoft Windows 10, and Microsoft SQL Server 2016/2017
Have training or knowledge in the following cyber security products (or equivalent):
1) McAfee (system firewall, intrusion detection, anti virus)
2) Elasticsearch (audit logs)
3) lvanti (peripheral ports)
4) Microsoft Group Policy Management (security hardening)
5) Microsoft SCAP (security compliance)
Microsoft Active Directory (account management)
and 6) Microsoft Windows system backups.
Have training or knowledge of the following areas (or Buyer approved equivalent):
Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGS)
About IMG
Founded in 1987, IMG is a leading small business that exemplifies competence, integrity and follow-through. We consistently provide customer focused professional services, which ensures our company is recognized for continually exceeding expectations. We believe that at the core of our success stand our people. Our people have provided professional services in the Information Technology field for our customers with a commitment to customer satisfaction for over 35 years.
IMG Benefits:
Health, dental, vision, and life insurance
Short term and long term disability insurance
401(k) with generous company match
Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)
Personal leave plus paid federal holidays
Professional development and training assistance
IMG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
ICS - Cyber Security Senior Engineer
Cyber Security Analyst Job In Fernway, PA
Are you interested in being part of an innovative team that supports Westinghouse's mission to provide clean energy solutions? At Westinghouse, we recognize that our employees are our most valuable asset and we seek to identify, attract and recruit the most qualified talent while recognizing and encouraging the value of diversity in the global workplace.
ICS Cyber Security Senior Engineer / Analyst
Job Responsibilities:
* This position will be filled as OT/IT Cyber Security Senior Engineer/Analyst. depending on experience & education*
In this position, the industrial Control Systems (ICS) Cyber Security Engineer / Analyst can expect to be responsible for assisting in the evaluation and implementation of network architecture and cyber security services and technologies in nuclear power plants around the world. The individual in this position will work as a member of the Distributed Control & Information System Platform & Cyber Security group and will be responsible for a variety of functions utilizing their understanding of cyber security practices and technologies. The candidate should have a thorough background and experience in information assurance/cyber security application to ICS, technical security audit, and general information technology & networking.
An ideal candidate for this position would be expected to provide technical advice and leadership in the realm of cyber security and have comprehensive knowledge of several areas of specialization within the cyber security discipline and industrial control systems architecture. Candidates in this position are directly responsible for providing technical leadership for engineering design, build, configuration, and testing of security systems and industrial control networks.
* Contribute to project team efforts as the network architecture/cyber security engineer both in the office onsite and at nuclear power generation sites
* Conduct moderately complex network architecture & cyber security analysis, product configuration, integration testing and troubleshoot difficult problems
* Create asset lists including software and firmware details in support of Cyber security assessments
* For multiple ongoing projects, provide network and system specification documentation deliverables to address cybersecurity vulnerabilities and the security controls necessary to mitigate the vulnerabilities to an acceptable level of risk.
* Author technical documentation including product configuration/implementation guides, requirements traceability, test plans, test procedures, test reports, and user administration guides
* Participate in information sharing with internal and external customers including the delivery of presentation material, technical training, and knowledge transfer
* Identify and assist in the development of new business opportunities including input to project proposals and associated technical descriptions when bidding on new projects
* Interpret cyber security program policy and support procedure development
* Perform system administration, network configuration, and virtual environment management (Windows Server and client system administration setup and support expertise)
* Participate in control systems master planning efforts focused on Ovation control system security including application of host-based security products from a centralized server and secure (hardened) configuration of system components
* Application of Network security including firewalls, data diodes, security information & event management, network intrusion detection
* Travel up to 25%, typically when deploying systems to the field for installation and commissioning
Education:
Technical Bachelor's Degree in Engineering (Electrical or Computer) or Computer Science, Information Sciences and Technology, Cyber Security / Information Assurance, or similar
Experience/Requirements:
* Ability to be granted 10 CFR 73.56 Trustworthy and Reliable clearance.
* Minimum of 4 (Prefer 8-10) years of professional experience (engineering, administration, and security of IT/OT)
* Experience performing requirements management or security audit/assessments
* Experience with common PLC, Scada, DCS platforms (i.e., Emerson Ovation)
* Experience working in an industrial Operational Technology Environment
* Knowledge of engineering principles and techniques
* Knowledge in areas such as network design, Windows Domain setup expertise, security and group policy setup
* Experience with security control frameworks such as NIST 800-53, 20 Critical Controls, ISO 27002, NEI 08-09
* High level of experience in troubleshooting system integration issues, and working with cyber security, network, and virtualization technologies to implement comprehensive solutions
* Experience in industrial environments or industrial control systems a plus
Certifications:
At least one of the following security certifications from a nationally recognized organization is preferred but not required.
* GIAC Security Essentials Certification (GSEC) or equivalent
* GIAC Systems and Network Auditor (GSNA), ISACA Certified Information Systems Auditor (CISA) or equivalent
* Cisco Certified Network Associate: (CCNA)
* Cisco Security Certification: (CCNP)
* ISC2 Certified Information Systems Security Professional (CISSP)
* Other related technical certifications showing areas of expertise from qualified and reputable vendors and certification agencies
Why Westinghouse?
Westinghouse Electric Company is the global nuclear energy industry's first choice for safe, clean, and efficient energy solutions. We enable our delivery of this vision by living our value system:
* Safety and Quality
* Integrity and Trust
* Customer Focus and Innovation
* Speed and Passion to Win
* Teamwork and Accountability
Westinghouse offers competitive benefits to all our employees around the globe to keep them healthy and enhance their well-being. In the U.S. the following are representative of what we offer:
* Competitive Salary
* Comprehensive Health, Wellness and Income Protection Benefits
* 401(k) Savings Plan with Company Match
* Paid Vacations and Holidays
* Opportunities for Flexible Work Arrangements
* Educational Reimbursement Program
* Employee Referral Program
While our Global Headquarters are located in Cranberry Township, PA, we have over 9,000 employees working at locations in 19 different countries. You can learn more by visiting
Information Security Analyst
Cyber Security Analyst Job In Canonsburg, PA
Job Type: Full-time
Work Authorization: U.S. Citizen or Green Card
The A.C. Coy Company is currently seeking candidates for an Information Security Analyst role. This individual will serve as a main contact for compliance and security initiatives within the company. Our ideal candidate will have 5+ years of experience working in information security and specific experience in GRC and cybersecurity. CISSP is strongly preferred. Occasional travel to other office locations is required, but very rarely overnight.
Our client is offering an excellent salary and benefits package and strong career growth opportunities.
Responsibilities
Lead and manage security initiatives, compliance enforcement, and incident response in accordance with corporate policies and standards
Maintain and improve our ISMP /Process Documents, create and update process documentation, controls, and SOPs
Maintain security policy and procedure documentation, such as ISMP, according to changes in the business and security framework.
Develop and design necessary systems to maintain and improve the organization's security posture
Conduct log reviews and investigations and monitor/report on security systems such as the SIEM, IPS, and VM
Manage third-party risk management and security awareness program
Provide guidance on development and technology security strategy for the IT team
Mentor and grow our high-performing security team
Works closely with Incident Response Team to gather requirements and support their needs
Help maintain Security Operations Center (SOC) to improve incident response time with Network Technician(s)
Support in achieving organizational Objectives and Key Results (OKRs)
Track, analyze, and report threats, risks, vulnerabilities, and incident data as part of our data-driven security operation
Track and improve corporate security Key Performance Indicators (KPIs)
Brief associates and executives at annual reviews, lunch & learns, and training events on security awareness
Develop and sustain long-standing relationships with 3rd party vendors
Assist with RFP and other client requests for security and compliance confirmation documentation
Assist our stakeholders with aligning standard operating procedures, controls, monitoring, and reporting
Qualifications
Required
Bachelor's degree in Computer Science, Information Systems, Information Security or a related field
5+ years experience in the working in information security and technology
Willingness to certify in Security+ and Network+ within first year of role placement is required
Preferred
CISSP certification
Some experience working in networking and server infrastructure
Experience in the commercial print industry preferred
Experience with C# development
Experience with SQL
Network & Infrastructure Palo Alto / Cisco Security Consultant - Location Negotiable
Cyber Security Analyst Job In Pittsburgh, PA
We Are Accenture Security helps organizations prepare, protect, detect, respond, and recover along with all points of the security lifecycle. Cybersecurity challenges are different for every business in every industry. Leveraging our global resources and advanced technologies, we create integrated, turnkey solutions tailored to our client's needs across their entire value chain. Whether we're defending against known cyberattacks, detecting and responding to the unknown, or running an entire security operations center, we will help companies build cyber resilience from within. We blend risk strategy digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle.
Do you have the deep functional and technical experience to help implement security solutions that align with our clients' business objectives? Do you have the expertise to design and deliver solutions for establishing system user's credentials, and processes for applying those credentials to access enterprise systems and applications?
If so, read on and apply, Accenture's more than 2000 security professionals deliver holistic and proactive security solutions in 47 countries, and we'd love to discuss our open Infrastructure and Network Security roles with you.
We are currently seeking professionals for our Cloud and Infrastructure Security practice with extensive experience in the following:
Job Description
Network and Infrastructure Security professionals develop and deliver solutions for organizations to contain and protect valuable company assets within their environment. Create new or develop existing security architecture solutions and implement quality work met with client expectations. A professional at this position level within Accenture has the following responsibilities:Adapts existing methods and procedures to create possible alternative solutions to moderately complex problems. Design, configure, manage and troubleshoot a variety of network firewall technologies. Understands the strategic direction set by senior management as it relates to team goals. Uses considerable judgment to determine solution and seeks guidance on complex problems. Primary upward interaction is with direct supervisor. May interact with peers and/or management levels at a client and/or within Accenture. Determines methods and procedures on new assignments with guidance. Decisions often impact the team in which they reside. Manages small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture.
Our consultants assist clients with the identification and evaluation of holistic security gaps focusing from an infrastructure and network security perspective. They also anticipate security requirements and identify sound security controls for applications, systems, processes and organizations. Our managers can easily work with non-security teams to integrate security controls on projects.
We are currently searching for consultants for our Security Technology practice with prior experience in the following areas: network security, firewall administration, security policy assessments, and firewall deployments and migrations.
Key Responsibilities may include:
+ Assist developing integrated security solutions involving network firewall products that support client daily operations.
+ Serve as technical lead delivering architecture resolutions against stringent timelines.
+ Troubleshoot network devices, various platforms, databases, Windows and/or UNIX systems in Infrastructure and/or cloud environments.
+ Involvement in technical security assessments for Accenture's clients (e.g., network, security architecture, security policy assessments)
+ Aid to a strong client relationship through interactions with client personnel
+ Report and update project progress and client expectations to the engagement team
Basic Qualifications:
+ 2+ years firewall administration (preferably Palo Alto or Cisco)
+ 2 or more of the following including the above:
+ 2+ years of working with firewall tools performing deployment, configuration, policy management and administering firewall operations.
+ 2+ years conducting security work in enterprise infrastructure or cloud environments (Hybrid, AWS, Azure, GCP experience preferred)
+ 2+ years working with any of the following: intrusion detection systems, remote access VPN technologies, vulnerability assessment tools, event and log analysis solutions and/or configuration and change management systems.
+ 2+ years understanding of network fundamentals (e.g., router or switch administration, IP subnets, routing protocols, network tools experience preferred)
+ 2+ years of hands-on experience with Palo Alto Network, Zscaler, Fortinet, Cisco, and/or Netskope (SASE, Firewalls, Edge Security, and Zero Trust)
+ Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience)
+ Travel will be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements.
Preferred Skill Requirements:
+ Hands-on experience with Zscaler, Fortinet, Cisco, and/or Netskope (SASE, Firewalls, Edge Security)
+ Firewall deployments, migrations, configuration and administration
+ Experience with Next-Gen Firewalls, Global Protect, SASE, ZIA, ZPA, Forti Manager and/or Netskope DLP
+ Creating and establishing Customer Access Nodes
+ Utilizing Network, Server, Security profiles
+ Experience with Palo Alto Networks tools (e.g., Threat Prevention, Wildfire, URL Filtering, Cortex Data Lake)
+ Understanding of emerging security topics, methods, and frameworks (e.g., Zero Trust, Macro/Micro Segmentation, etc.)
+ Understanding of security compliance frameworks (e.g., PCI DSS, HIPAA, NIST, SOX, etc.)
+ Project firewall deployment and migration delivery experience
+ RFP/RFI Response Knowledge (ability to work and support proposal efforts)
+ Cyber Security experience in complex global enterprise and or Govt. environment a plus
Professional Skill Requirements:
+ Proven success in contributing to a team-oriented environment.
+ Proven ability to work creatively and analytically in a problem-solving environment.
+ Desire to work in an information systems environment.
+ Excellent leadership, communication (written and oral) and interpersonal skills
Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired in California, Colorado, District of Columbia, Illinois, Maryland, Minnesota, New York or Washington as set forth below.We accept applications on an on-going basis and there is no fixed deadline to apply.
Information on benefits is here. (************************************************************
Role Location Annual Salary Range
California $63,800 to $205,800
Colorado $63,800 to $177,800
District of Columbia $68,000 to $189,300
Illinois $59,100 to $177,800
Minnesota $63,800 to $177,800
Maryland $59,100 to $164,600
New York $59,100 to $205,800
Washington $68,000 to $189,300
#LI-NA
What We Believe
We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.
Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here (***********************************************************************
Equal Employment Opportunity Statement
Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Accenture is committed to providing veteran employment opportunities to our service men and women.
For details, view a copy of the Accenture Equal Employment Opportunity and Affirmative Action Policy Statement (********************************************************************************************************************************************** .
Requesting An Accommodation
Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.
If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at ****************, send us an email (************************************************* or speak with your recruiter.
Other Employment Statements
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.