Cyber security analyst jobs in Grand Forks, ND - 126 jobs

-Bachelor's Degree in Computer Science or related field or equivalent experience and -Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or AWS certifications (or ability to obtain within 6 months -5-10 years of hands on experience in all technical security domains -Strong technical background and great understanding on emerging security trends -Background and style that elicits respect in the organization through management style, technical depth, customer service and results -Ability to influence others where there is no direct authority -Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile -Scripting, coding, or automation skills (Python, Perl, Java, .NET) -Ability to solution, plan, and deploy security technologies -Data analysis, Network, OS systems (Windows, Unix, Linux) Primary Responsibility #1 - Global security lead for information security technologies in CWT Work on datasets such as network packets, security device logs to identify any security vulnerabilities and gaps. Manage, maintain, and deploy global security services/tools to protect the environment, including vulnerability management, endpoint protection, and network protection technologies Evaluate, design, implement, monitor and support security infrastructure including IAM, IPS, SIEM, Endpoint agents, WAF's, DLP, WCF, and other tools or systems. Perform vulnerability testing, risk analyses and security assessments Create new ways to solve existing production security issues using security tool Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors Evaluates and develops secure solutions, based on approved security architectures. Analyses business impact and exposure, based on emerging security threats, vulnerabilities and risks Collaborates with colleagues and across departments to enhance security and efficiency Assist during internal and regulatory compliance audits, PCI, SOC2, etc. Cloud Security Access Broker, Mobile Security (iOS and Android) Knowledge in IDS, IPS, Firewall, Data Leak Prevention tools Primary Responsibility #2 - Assists in the incident investigations and response process Knowledge in programming using scripting tools and enterprise software development tools such as Java Stay abreast of the latest vulnerabilities and exploits Work with the Security Operation Center is develop solutions/configurations to address threats Participate in the on-call rotation for security services outages and incident escalations Ability to present security technologies, risks, solutions to management in business context Deliver technical reports and documentation on solutions and incidents Contributes to the development and maintenance of the CWT information security strategy

We are seeking an Information Security Analyst to help safeguard our technology infrastructure and support critical cybersecurity initiatives. In this role, you will collaborate with our Technology team, leadership, and vendors to strengthen security controls, support regulatory compliance (including GLBA), and help protect customer and business information. This position is ideal for a motivated person who thrives on critical thinking, collaboration, and staying ahead of emerging cybersecurity risks in a regulated environment. This position will be onsite in Rochester, MN. Key Responsibilities * Assist with implementing and maintaining security policies, procedures, and controls. * Perform reviews and hands-on testing of security controls and document results. * Develop and follow proactive procedures for the detection of and response to security breaches and risks. * Participate in security related initiatives by performing assigned tasks such as configuration, testing, and documentation. * Assist with maintaining cybersecurity tools, processes, and documentation to align with organizational needs. * Educate and advise technology staff on ongoing and emerging security matters and policies, including threats and industry trends. * Assist with ensuring company-wide alignment with regulatory standards and best practices * Support vendor management and project activities related to security and GLBA. * Assist with reviews of vendor security documentation and reports and help track and document vendor-related security and GLBA requirements. * Maintain current knowledge of existing and emerging security issues and evaluate solutions to protect against those threats. Education and Experience * High school diploma, GED, or equivalent; Bachelors degree in Computer Science or related field preferred * Four years' experience in information technology, including information infrastructure * Technology security experience preferred * Security Certifications: * Obtain within two years: GIAC Security Essentials Certification, Security+, or Network+ * Obtain within five years: Certified Information Systems Security Professional (CISSP) or Associate of ISC2 Compensation: $129,340 Benefits: The position is eligible for a full benefits package including: * Health insurance with HSA contribution * Dental insurance * Vision insurance * Up to 23 days of PTO annually * Seven paid holidays * Annual Profit Sharing Bonus * Four weeks of paid family leave * Up to 7.5% 401(k) employer match * Tuition reimbursement * Clothing allowance Think's culture empowers employees to provide the best financial care to customers every single day. Our professional compensation plan is passionate about quality of business outcomes and helping customers achieve peace of mind. We are not focused on quantity, as compensation is not directly related to the number of accounts opened or volume produced. At Think Bank, we're focused on delivering on the promise of being a great place to work, and one of the ways we accomplish this is by creating an environment where all employees feel they have the opportunity to achieve their goals. We value our differences - in thought, style, culture, ethnicity, and experience - and understand that diversity and inclusion are good for business and make our company stronger.

The Lead Security Engineer position is part of the Information Technology team, reporting directly to the Manager, Information Security. The focus of this role is to design, implement, and maintain advanced security solutions that protect the confidentiality, integrity, and availability of Cirrus digital assets. This role requires deep technical expertise in Microsoft technologies, cybersecurity engineering, and enterprise security architecture, as well as the ability to mentor Security analysts and partner with IT teams on secure system design and operations. Duties and Responsibilities/Essential Functions Design, implement, and maintain enterprise security controls across Microsoft environments, including Azure, Entra ID (Azure AD), Microsoft 365, Microsoft Defender, and Windows Server platforms. Lead incident response activities, including investigation, containment, eradication, and recovery, as well as post-incident lessons learned. Analyze security events and alerts from IDS/IPS, SIEM, EDR/XDR, vulnerability scanners, and Microsoft security tools to identify and mitigate threats. Develop and implement security hardening baselines, patch management processes, and secure configuration standards for Microsoft platforms and hybrid environments. Collaborate with IT and business stakeholders to design secure solutions, ensuring security requirements are integrated into Windows, Active Directory/Entra ID, Azure, and Microsoft 365 systems. Conduct threat modeling and risk assessments, making recommendations for risk treatment and mitigation strategies. Oversee vulnerability management program, including regular assessments, prioritization, and remediation validation. Create strategies to mitigate risks and ensure compliance with relevant laws and regulations Focus on continuous improvement to stay updated on cybersecurity trends and emerging threats to enhance security measures. Provide mentorship and technical guidance to Information Security Analysts and IT staff. Assist in the development and enforcement of security policies, standards, and procedures, with specific emphasis on Microsoft platforms. Stay current with emerging threats, vulnerabilities, and security technologies; recommend improvements to strengthen the security posture Regular, reliable, and predictable attendance Qualifications: To perform this job successfully, an individual must be able to perform each essential function satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. Bachelor's degree in Information Security, Computer Science, Information Systems, or equivalent combination of education and experience. 7+ years of progressive experience in information security, engineering, or related IT disciplines. Advanced knowledge of Microsoft technologies, including Azure, Entra ID (Azure AD), Office 365, Microsoft Defender suite, and Windows Server. Experience with SIEM, SOAR, EDR/XDR, vulnerability management, and forensic analysis tools, preferably integrated with Microsoft Sentinel and Defender. Strong understanding of cloud platforms (Azure, AWS, Google Cloud) and securing hybrid infrastructures. Relevant security certifications preferred: CISSP, CISM, OSCP, GIAC (GCIA, GCIH, GPEN), Microsoft Certified: Azure Security Engineer Associate, Microsoft 365 Security Administrator Associate, or equivalent. Demonstrated expertise in incident response, malware analysis, and intrusion detection. Proficiency with scripting/automation languages (PowerShell, Python, etc.) to enhance security operations. In-depth knowledge of common frameworks and standards (NIST CSF, ISO 27001, CIS Controls, MITRE ATT&CK). Proven ability to design and implement Zero Trust and defense-in-depth strategies. Applies advanced knowledge of Microsoft security technologies and enterprise platforms to solve complex challenges. Mentors and guides team members, builds trust, and fosters a culture of continuous improvement Competencies To perform the job successfully, an individual should demonstrate the following competencies: Manages Complexity - Asks the right questions to accurately analyze situations, acquires data from multiple and diverse sources when solving problems, uncovers root causes to difficult problems, evaluates pros and cons, risks and benefits of different solution options. Situational Adaptability - Picks up on situation cues and adjusts in the moment. Readily adapts personal, interpersonal, and leadership behavior. Understands that different situations may call for different approaches. Can act differently depending on the circumstance. Optimizes Work Processes - Identifies and creates the processes necessary to get work done, Separates and combines activities into efficient workflow, Designs processes and procedures that allow managing from a distance, Seeks ways to improve processes, Collaborates: Builds partnerships and works collaboratively with others to meet shared objectives. Organizational Savvy: Maneuvers comfortably through complex policy, process, and people-related organizational dynamics. Directs Work: Provides direction, delegates, and removes obstacles to get work done. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this position. Duties, responsibilities and activities may change at any time with or without notice. Work beyond 40 hours per week may be required. Cirrus is dedicated to a drug free work environment promoting equal employment opportunity. Qualified applicants will receive consideration for employment without regard to race, sex, national origin, color, age, disability, religion, pregnancy, veteran status, marital and family status, sexual orientation, receipt of public assistance, genetic information or any other characteristic protected by applicable law. Our Benefits: Cirrus provides a range of exciting benefits, including: 401(k) Plan: Dollar-for-dollar match up to 5% after 90 days, with 100% vesting. Employer-Paid Coverages: Group term life, short- and long-term disability insurance. Comprehensive Health Coverage: Medical, vision, dental, with additional dependent coverage options. Free Health Tracking: With rewards for meeting health goals. Generous PTO: 120+ hours accrued within the first year. Employee Referral Bonus: For referring talented candidates. Career Development: Tuition reimbursement and professional growth opportunities. Exclusive Discounts: Access to partner and marketplace discounts. Community & Engagement: Company and employee clubs at various locations. These benefits are designed to support your well-being, growth, and enjoyment at Cirrus!

Title: Cyber Security Risk Expert IV Terms: 6 months contract with possible extension * Design, administer, and execute procedures for the identification, assessment, documentation, and communication of risks that could compromise Postal Service data and operations stemming from weaknesses in technology platforms, solution architectures, governance processes, and security capabilities, against industry standards and best practices. * Provide recommendations to improve and sustain the security of the enterprise's data and operations and document the organizational risk response plan (accept, mitigate, transfer, or avoid). * Monitor, report on, and validate, the status and efficacy of risk mitigation, transfer, or avoidance plans. Task description and/or any specific requirements: * Demonstrate expert-level knowledge and proficiency with ServiceNow (SNow) Vulnerability Response (VR) and generally associated modules, including but not limited to the following skills, abilities and knowledge: * General: Deep understanding of SNow platforms core functionalities and components, including forms, MID servers, tables, dashboards and access control lists (ACLs) * Scripting: Proficiency in rules and scripting (e.g., JavaScript), adequate to develop, test and deploy * Integrations: Proficiency to develop and troubleshoot VR integrations, including knowledge of APIs and service graph connectors * ]Dashboarding: Proficiency in designing and developing VR-focused dashboards and reports * Design and administer procedures within the organization to sustain the security of the organizations data and access to its technology and communication systems * Assess the risk of exposure of proprietary data through weaknesses in platforms, access procedures and forms of access, to the organizations systems and data contained within * Ability to review, collate, understand and present data, from various sources, to meet the remediation needs and expectations of the organization * Knowledge of automation coding, to automate data extrapolation, organization and dissemination, to meet the needs of the organization * Ability to review, investigate and assign cybersecurity vulnerabilities, for a variety of applications, systems and hardware, including cloud computing * Manage several projects/initiatives of various sizes, complexities and risks * Demonstrated proficiency in successfully evaluating and supporting documentation, validation and remediation processes required to ensure new and existing information technology (IT) systems meet the organization's vulnerability remediation expectations and requirements * Demonstrated ability to review and understand security blueprints, principles, models, designs, standards, and guidelines to ensure enterprise cybersecurity remediation support is consistent and beneficial to the organization * Experience with vulnerability remediation and remediation processes and efforts, as well as remediation tools * Ability to serve as subject matter expert (SME) for the USPS VRM process, including providing guidance to stakeholders, business units and new CISO resources, as necessary * Strong organizational skills and ability to build and maintain schedules and step-by-step action plans * Effective communication and collaboration skills to work with cross-functional teams, business units, stakeholders and IT professionals, and to conduct presentations to varying audiences and technical knowledge levels. Experience/Education: * A minimum of thirteen (13) to twenty (20) years relevant experience. * A degree from an accredited College/University in the applicable field of services is preferred. four additional years of relevant experience in lieu of a college degree is required. If the indiviual's degree is not in the applicable field then four additional years of related experience is required. * Works on high-visibility, or mission critical aspects of a given program, and performs all functional duties independently. * Oversees the efforts of direct reporting resources and/or be responsible for the efforts of all staff assigned to a specific job. * Note: Special credentials (licenses and/or certifications) may be required at the Task Order level on a case-specific basis. Pay Range: $45-$50/hr W2 About Seneca Resources: At Seneca Resources, we are more than just a staffing and consulting firm-we are a trusted career partner. With offices across the U.S. and clients ranging from Fortune 500 organizations to government agencies, we connect professionals with opportunities that drive meaningful impact and support long-term career growth. When you join Seneca, you gain a team committed to your success. We offer competitive compensation, comprehensive health, dental, and vision coverage, 401(k) plans, and continuous support throughout your assignment. Our recruiters and account managers invest in understanding your goals and placing you in roles aligned with your talents and ambitions. Seneca Resources is proud to be an Equal Opportunity Employer, dedicated to building a diverse and inclusive workplace where all qualified applicants are encouraged to apply.

Established in 1991, Collabera is one of the fastest growing end-to-end information technology services and solutions companies globally. As a half a billion dollar IT company, Collabera's client-centric business model, commitment to service excellence and Global Delivery Model enables its global 2000 and leading mid-market clients to deliver successfully in an increasingly competitive marketplace. With over 8200 IT professionals globally, Collabera provides value-added onsite, offsite and offshore technology services and solutions to premier corporations. Over the past few years, Collabera has been awarded numerous accolades and Industry recognitions including. Collabera awarded Best Staffing Company to work for in 2012 by SIA. (hyperlink here) Collabera listed in GS 100 - recognized for excellence and maturity Collabera named among the Top 500 Diversity Owned Businesses Collabera listed in GS 100 & ranked among top 10 service providers Collabera was ranked: 32 in the Top 100 Large Businesses in the U.S 18 in Top 500 Diversity Owned Businesses in the U.S 3 in the Top 100 Diversity Owned Businesses in New Jersey 3 in the Top 100 Privately-held Businesses in New Jersey 66th on FinTech 100 35th among top private companies in New Jersey *********************************************** Collabera recognizes true potential of human capital and provides people the right opportunities for growth and professional excellence. Collabera offers a full range of benefits to its employees including paid vacations, holidays, personal days, Medical, Dental and Vision insurance, 401K retirement savings plan, Life Insurance, Disability Insurance. Job Description Position Details: Job Title - Information Security Analyst Duration - 3 Months (with a possibility of an extension) Location - Eagan , MN - 55123 Qualifications Primary Objective Perform in the delivery and development of processes and services which support best practices in information security and risk management for Client enterprise. Knowledge, Skills & Behaviors • 2+ years related information security risk management experience • 3+ years related information technology experience • Preferred industry-related certifications: GSEC, CISSP, CISA, CISM, ITIL • Preferred exposure in SOC2, ISO 27000, risk assessment methodologies, Shared Assessments, ITIL practices, and GRC • Demonstrate results in planning and delivering complex projects on time • Maintain focus and manage multiple efforts concurrently • Perform independently to expectations while being collaborative and maintaining alignment with the team • Work effectively with all levels of the organization including subject matter experts, stakeholders, and leadership • Strong written and verbal communication skills to include executive audiences • Apply tactical and strategic methods appropriately • Effective negotiation and influence • Focused on supporting the customer, the team, and the business • Strong collaboration and problem-solving skills Major Areas of Accountability • Operate as a key contributor to the Vendor Risk Management processes. • Interface with subject matter experts, peers and stakeholders; and business or technology leaders across the Client enterprise. • Demonstrate subject matter expertise on information security best practices and Client security posture focused on performing due diligence for vendor assurance inquiries and attestations. • Assist in initiatives to evaluate and provide input on the effectiveness of processes and solutions, and to determine or support a course of action. Track and report on mitigation progress. • Contribute to the strategic and tactical development of information security, risk management and compliance initiatives, to include policy and standards development, solution development, security awareness and training, and other information security initiatives as assigned. • Track, verify and collect data points for reporting and metrics on identified services to identify gaps and inform leadership. • Serve as a subject matter expert in information technology operations, information security and risk management practices, global legal and regulatory requirements, and other applicable security and privacy trends and practices. • Participate as a member of a team for Vendor Risk Management • Contribute to and achieve business and departmental goals and objectives • Deliver processes and services consistently and accurately • Accept feedback and flex to address tactical needs • Report on status of initiatives to all levels in the organization • Work across the organization to contribute to departmental initiatives and programs Education • Prefer 4 year (Bachelor's) Degree in a technology related field Additional Information To know more about this opportunity or to schedule an interview, Please Contact: Neha Kalia *************************** ************

SAIC accepts applications on an ongoing basis and there is no deadline. SAIC is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives. We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.5 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom. SAIC is looking for an Information Systems Security Officer (ISSO). The ISSO's primary function is working within classified areas supporting US Space Force / Space Development Agency (SDA) / Battle Management Command, Control, and Communications (BMC3) mission areas. The position will provide “day-to-day” support for Collateral and Sensitive Compartmented Information (SCI) activities. This position is in Grand Forks, ND. Performance shall include: Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents. Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners. Possess a high degree of originality, creativity, initiative requiring minimal supervision. Review, prepare, and update RMF accreditation packages. Notify customers when changes occur that might affect RMF accreditation/certification. Perform RMF self-inspections, provide security coordination and review of all system test plans. Identify RMF vulnerabilities and implement countermeasures. Conduct security surveys and gather pertinent security documentation for inclusion into system accreditation packages. Coordinate, prepare, and track RMF inspections, reports, and responses. Maintain RMF security records. Prepare reports on the status of security safeguards applied to information systems. Ensure RMF authorized information systems are operated, maintained, and disposed of in accordance with security policies and practices. Perform ISSO duties in support of in-house and external customers. Assist SDA and other government agencies with Cyber Test & Evaluation (CT&E) efforts. Maintain Information Systems security postures IAW the RMF Authorization. Collect and analyze security scans and audit logs. Perform vulnerability management. Perform Continuous Monitoring of RMF authorized information systems in classified environments. 5-9 years total related experience. Extensive knowledge of Assured Compliance Assessment Solution (ACAS) and Splunk. Systems Administrator (Sys Ad) experience. Education: Bachelor's degree or equivalent additional experience (4 years). Certifications: Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 2 within 6 months on the date of hire. Security Clearance: Top Secret (SCI eligible) required.

is located at our Headquarters location in Bismarck, ND.** is open to varying levels, based on experience.** Assists in maintaining the enterprise network made up of routers, switches, and firewalls. Work independently, as well as being a member of a highly skilled team of network and security experts. Receive, interpret, and analyze alerts from network devices like routers, switches, and firewalls, based on network packet captures, logs, network flow data, and other relevant sources. Monitor network performance and takes necessary corrective action to troubleshoot and perform problem resolution. A critical resource within the Information Services & Telecommunications (IST) Compliance group and primarily assists in the IST division's efforts to ensure compliance with the North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP) Standards. **ESSENTIAL DUTIES** This position is assigned to work in an area of specialization. The areas of specialization are as follows: + Route/Switch + Voice Network + Wireless + Firewall General Duties + Assist with installation and maintenance of network hardware such as routers, switches, voice network, and wireless equipment. + Assist with the implementation of security devices, such as firewalls, intrusion detection, and prevention devices that include access control lists. + Assist with supporting network administration through monitoring tools, protocol analyzers, and trending tools. + Assists with scheduled maintenance and provide network stability and security through device code upgrades. + Assists in Network build out, network switching, DNS, DHCP, radius, and SolarWinds + Assists in maintaining documentation. + Perform other duties as assigned. Route/Switch + Assist to build, configure, and deploy network switches and network routers under direction of more senior team members. + Assist with advanced Data Center routing and switching including but not limited to Policy Based Routing, Application based routing and stretched networks. + Assist with applying and troubleshooting IP and port-based access lists. + Assist in configuring, implementing and maintaining Quality of Service "QOS". Wireless Network + Assist in configuration, installation and maintenance of wireless network servers, wireless network controllers, and end point equipment. + Assist in troubleshooting wireless network issues, including but not limited to signal strength, driver and compatibility issues, and interference issues. + Work with more senior staff members to understand wireless networking concepts, security, and technologies. Voice Network + Assist in configuration, installation and maintenance of voice network servers, voice network routers, cell phones, and iPad equipment. + Assist in the implementation of equipment, software, security devices such as Call Manager, Call Routing, Phones, Cellphones, VPN's, Voice and Data Carrier, and Cubes Devices that include Access Control lists, as directed by more experienced team members. + Assist in supporting and maintaining voice network through monitoring tools, protocol analyzers, and trending tools, under the direction of more experienced team members. + Assist with troubleshooting and scheduled maintenance of voice network equipment. Firewall + Assist more experienced team members in configuring Zone Based and Policy Based Firewall rules and routing. + Assist more experienced team members in configuring Zone Based and Policy Based routing. + Assist more experienced team members with troubleshooting firewall related issues, including but not limited to routing, blocking network traffic, and allowing network traffic. + Configure, maintain, and deploy firewalls under the direction of more experienced team members. + Assist more experienced team members to build and maintain VPNs. + Assist more experienced team members in reviewing Firewall logs. Reporting any anomalies to more experienced team members. **MINIMUM QUALIFICATIONS** + Bachelor's degree in computer science, computer engineering, or a related discipline; or + Associate's degree in computer science or a related discipline and 2 years of experience in network administration, planning, and configuration; or + High school diploma or equivalent (HSED or GED) and 4 years of experience in network administration, planning, and configuration. + May be required to drive a motor vehicle and fly in a Cooperative or commercial aircraft. + A valid driver's license. **This position is identified as a Critical Infrastructure Protection (CIP) related position, which may allow physical and/or logical access to Bulk Electric System (BES) cyber related assets or systems. This position may allow access to privileged information relating to such assets or systems. This position will be required to strictly adhere to all Basin Electric policies, procedures, and programs applicable to the Critical Infrastructure Protection (CIP) requirements.** **PHYSICAL AND ENVIRONMENTAL DEMANDS** This position requires the ability to remain in a stationary position and to move about the office building, occasional reaching below and above shoulder level, constant use of keyboard/computer and other office productivity machinery, bending, kneeling, lifting/carrying up to 10 pounds, and pushing/pulling up to 20 pounds. This position requires the ability to communicate and must be able to clearly exchange accurate information. It also requires finger dexterity and hand coordination. This position spends over 50 percent of the day working at a desk. This position frequently works around chemicals, and occasionally in conditions of dirt/dust, fumes, cold, vibration, noise, poor ventilation, and confined areas, and at heights up to 25 feet. **KEY SKILLS** + Knowledge of techniques for hardware and software engineering, and configuration and production support. + Experience with Local Area Network/Wide Area Network (LAN/WAN) and multi-platform environments. + Ability to demonstrate excellent written and verbal communication skills. + Proficient with personal computers and Microsoft Word, Outlook, and Excel. + Ability to develop plans, procedures and goals; present information to others; and work under stress to complete projects within deadlines. Basin Electric wants all interested and qualified candidates to apply for employment opportunities. If you are an applicant with a disability who is unable to use our online tools to search and apply for jobs, or who needs other assistance or accommodations, please contact us at ************. Please indicate the specifics of the assistance needed or provide your contact information, and a Basin Electric Human Resources representative will contact you. Basin Electric is an Equal Employment Opportunity Employer regarding race, color, religion, sex, sexual orientation, gender identity, national origin, disability, and veterans status.

Patterson isn't just a place to work, it's a partner that cares about your success. One of the distinguishing marks of our company is the talented people who embrace the people-first, always advancing, and results-driven culture. Professional growth abounds in this motivating environment. We value the diverse talents and experiences our employees bring to Patterson and believe that they build a stronger and successful organization. Job Description: The Application Senior Security Analyst leads the implementation and maintenance of network and application security systems to protect Patterson's information assets. This role drives technical support, incident response, and ensures alignment with security and project goals. The analyst develops and enhances the application security program using industry best practices and frameworks. Expertise in secure coding, static and dynamic code analysis, and vulnerability remediation is essential. The candidate integrates security controls into CI/CD pipelines using SecDevOps methodologies. Responsibilities include tool integration, policy enforcement, and continuous monitoring. Collaboration across DevOps, compliance, risk, and audit teams ensures enterprise-wide security alignment. A methodical approach to assessing and triaging security findings is critical for success. Essential Functions To perform this job successfully, an employee must be able to perform each essential function satisfactorily, with or without reasonable accommodation. To request a reasonable accommodation, notify Human Resources or the manager who oversees the position. Perform application security triage, oversee issue resolution, and track remediation metrics Oversees the maintenance, support, and delivery of associated security platforms Drives continuous improvements in acting on alerts, service requests, and incidents Integrates best practices to proactively analyze and monitor systems and applications for system and security related issues Considered subject matter expert in assigned platforms and keeps up-to-date knowledge to drive improvements Strong mentor with the ability to work with junior team members and provide leadership and training on new tools or projects Provide support and ongoing input in the evolution of the application security program Ensure the application security tool set is optimized, tuned, and maintained Collaborate with Devs and Ops teams to embed security into CI/CD pipelines and SecDevOps workflows Perform security testing to include SAST, DAST, SCA, Container, APIs, IaC, Secrets Interact with Infrastructure, DevOps, and application owners to ensure alignment with Patterson's roadmaps Prioritize workload depending on business direction, compliance, and / or security requirements Embedded in the SDLC process for all major applications, working with DevOps, SecDevOps, Developers, QA, Principal Architects, Security Champions, Actively participate and / or lead weekly meetings with application team leads and security champions Track and manage identified vulnerabilities through resolution, ensuring timely remediation and documentation. Oversee the planning, execution, and follow-up of penetration tests conducted by internal teams and external security partners. Additional functions In addition to the essential functions listed above, the incumbent may perform the following additional functions. Experience with .Net, C#, Javascript, Angular and related languages Familiarity with AzureDevOPs (ADO), Package Management, SBOM, TFS and / or VSTS Familiarity with major cloud platforms, including Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP) General knowledge of Application Security frameworks such as BSIMM, OWASP SAMM / ASVS, NIST, etc Experience with Thick Clients, Web Apps, Cloud Solutions, SPA, Web Services, MVC, APIs, etc Familiar with Azure DevOps Pipelines for automated build, test and deployment workflows Ability to support and manage Azure services including Azure Container Apps (ACA), Azure Kubernetes Service (AKS), and Azure Artifacts Familiarity with software supply chain security processes, including vulnerability scanning, artifact integrity validation, and dependency risk management Experience implementing and maintaining gating workflows in CI/CD pipelines to enforce security and compliance checks prior to deployment Experience communicating security concerns and issues to non-technical audiences Proficient in assessing microservices and APIs for security flaws using automated and manual testing techniques. Familiar with key application security tools such as BurpSuite, HCL AppScan, Veracode, Qualsys WAS, Micro Focus WebInspect, Checkmarx, Mend.io (White Source), DevTools, Fiddler, Owasp Zap, Metasploit, BeeF, SQLMap, Postman, etc Experience with Swagger, SOAPUI, Visual Studio Required Qualifications Bachelor's Degree with an emphasis in security, technology, or engineering or equivalent work experience At least 4 years work experience in information technology, cyber security, or information security Preferred Qualifications Security industry certification desired This person must be located within a commutable distance to Mendota Heights, MN or Loveland, CO. This will be 2 days in the office hybrid model. What's In It For You We provide competitive benefits, unique incentive programs and rewards for our eligible employees: Full Medical, Dental, and Vision benefits and an integrated Wellness Program. 401(k) Match Retirement Savings Plan. Paid Time Off (PTO). Holiday Pay & Floating Holidays. Volunteer Time Off (VTO). Educational Assistance Program. Full Paid Parental and Adoption Leave. LifeWorks (Employee Assistance Program). Patterson Perks Program. The potential compensation range for this role is below. The final offer amount could exceed this range, based on various factors such as candidate location (geographical labor market), experience, and skills. $94,100.00 - $117,700.00EEO Statement Patterson provides equal employment opportunities to applicants and employees without regard to race; color; sex; gender identity; sexual orientation; religious practices and observances; national origin; pregnancy, childbirth, or other related medical conditions; status as a protected veteran or spouse/family member of a protected veteran; or disability.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

The Information Security Analyst Identifies security risks and exposures, determine the causes of security violations, and configuring systems to optimize notification of future incidents. The Security Analyst Integrates appropriate systems and logs into the enterprise security incident and event management system to effectively monitor and detect various people and enterprise asset activity. The Information Security Analyst works under the direction of the Information Security Director on the IT Security Operations Team. This is a hybrid job, must be located in Saint Paul MN Responsibilities • Investigates and analyzes security events to evaluate risk, prioritizing findings based on internal and external information. • Configures and maintains SIEM platform, including areas such as source feeds, alerts, alarms, and API integrations. • Configures and maintains EDR/antivirus. • Configures and maintains vulnerability management platform, including areas such as vulnerability scanning, remediation, and mitigation as well as impact and risk analysis. • Communicates security concerns to the business stakeholders to collectively develop and execute an appropriate remediation/mitigation plan. • Interacts with security risk and compliance group, adjacent IT departments, and business units as needed to ensure compliance with IT Security goals and policies. • When needed, assists in administration of other security tools (Data Loss Prevention, Email Security/Spam Filter, End User Training, Mobile Device Management). • Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and evolving attacks and threat vectors. General Job Responsibilities: • Ability to work in a team environment and independently as required • Contributes to project planning and scheduling. • Normally receives minimal instructions on routine work and detailed instructions on new assignments. • Participate in Architecture design reviews and other technical governance forums across the organization representing the security team across multiple projects. • Be on call and available after business hours, would require working Holidays and weekends if major security incident occurs. • Establish and maintain pertinent policies, standards, and procedures • Perform duties in compliance with applicable regulations and standards such as Sarbanes Oxley Act, FDA Quality System, and ISO (International Organization for Standardization) Works on routine assignments per written procedures, where ability to recognize deviation from accepted practice is required. • Contributes to the overall operations and to the achievement of departmental goals • Perform job specific tasks in compliance with applicable Regulations, International Standards, and WuXi AppTec Policies and Standard Operating Procedures. • Understanding of Good Laboratory Practices and Good Manufacturing Practices • Other duties as assigned Qualifications • Degree in Cyber Security, Management Information Systems, Information Security or equivalent work experience o Minimum 2 years prior experience in a Cyber Security • In depth knowledge of LogRhythm SIEM platform or other SIEM platforms, which includes configuring and maintaining API integrations and source feeds, alerts and alarms • In depth knowledge in Qualys Vulnerability Management System, which includes configuring and maintaining • In depth knowledge in Cisco AMP Anti-Virus software, which includes configuring and maintaining • Knowledge of ISO/IEC 27001 standards. • Strong technical acumen with a solid understanding of security technologies and network architecture • Strong verbal and written communication skills • Independent driver of self-development and continuous learning • Knowledge of information security technology, design, research techniques, administration, operating standards, and quality control methods. • Basic understanding of LAN/WAN technologies and protocols, FTP, Active Directory, VPN technologies (MPLS, IPSEC, etc.), IIS and other network services. • Experience in a large, formal vulnerability program. • General knowledge of cloud, wireless network and mobile security. • Team-oriented and skilled in working within a collaborative environment. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability This job description does not state or imply that the above are the only duties and responsibilities assigned to this position. Employees holding this position will be required to perform any other job-related duties as requested by Management.

The Lead Security Engineer position is part of the Information Technology team, reporting directly to the Manager, Information Security. The focus of this role is to design, implement, and maintain advanced security solutions that protect the confidentiality, integrity, and availability of Cirrus digital assets. This role requires deep technical expertise in Microsoft technologies, cybersecurity engineering, and enterprise security architecture, as well as the ability to mentor Security analysts and partner with IT teams on secure system design and operations. Duties and Responsibilities/Essential Functions Design, implement, and maintain enterprise security controls across Microsoft environments, including Azure, Entra ID (Azure AD), Microsoft 365, Microsoft Defender, and Windows Server platforms. Lead incident response activities, including investigation, containment, eradication, and recovery, as well as post-incident lessons learned. Analyze security events and alerts from IDS/IPS, SIEM, EDR/XDR, vulnerability scanners, and Microsoft security tools to identify and mitigate threats. Develop and implement security hardening baselines, patch management processes, and secure configuration standards for Microsoft platforms and hybrid environments. Collaborate with IT and business stakeholders to design secure solutions, ensuring security requirements are integrated into Windows, Active Directory/Entra ID, Azure, and Microsoft 365 systems. Conduct threat modeling and risk assessments, making recommendations for risk treatment and mitigation strategies. Oversee vulnerability management program, including regular assessments, prioritization, and remediation validation. Create strategies to mitigate risks and ensure compliance with relevant laws and regulations Focus on continuous improvement to stay updated on cybersecurity trends and emerging threats to enhance security measures. Provide mentorship and technical guidance to Information Security Analysts and IT staff. Assist in the development and enforcement of security policies, standards, and procedures, with specific emphasis on Microsoft platforms. Stay current with emerging threats, vulnerabilities, and security technologies; recommend improvements to strengthen the security posture Regular, reliable, and predictable attendance Qualifications: To perform this job successfully, an individual must be able to perform each essential function satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. Bachelor's degree in Information Security, Computer Science, Information Systems, or equivalent combination of education and experience. 7+ years of progressive experience in information security, engineering, or related IT disciplines. Advanced knowledge of Microsoft technologies, including Azure, Entra ID (Azure AD), Office 365, Microsoft Defender suite, and Windows Server. Experience with SIEM, SOAR, EDR/XDR, vulnerability management, and forensic analysis tools, preferably integrated with Microsoft Sentinel and Defender. Strong understanding of cloud platforms (Azure, AWS, Google Cloud) and securing hybrid infrastructures. Relevant security certifications preferred: CISSP, CISM, OSCP, GIAC (GCIA, GCIH, GPEN), Microsoft Certified: Azure Security Engineer Associate, Microsoft 365 Security Administrator Associate, or equivalent. Demonstrated expertise in incident response, malware analysis, and intrusion detection. Proficiency with scripting/automation languages (PowerShell, Python, etc.) to enhance security operations. In-depth knowledge of common frameworks and standards (NIST CSF, ISO 27001, CIS Controls, MITRE ATT&CK). Proven ability to design and implement Zero Trust and defense-in-depth strategies. Applies advanced knowledge of Microsoft security technologies and enterprise platforms to solve complex challenges. Mentors and guides team members, builds trust, and fosters a culture of continuous improvement Competencies To perform the job successfully, an individual should demonstrate the following competencies: Manages Complexity - Asks the right questions to accurately analyze situations, acquires data from multiple and diverse sources when solving problems, uncovers root causes to difficult problems, evaluates pros and cons, risks and benefits of different solution options. Situational Adaptability - Picks up on situation cues and adjusts in the moment. Readily adapts personal, interpersonal, and leadership behavior. Understands that different situations may call for different approaches. Can act differently depending on the circumstance. Optimizes Work Processes - Identifies and creates the processes necessary to get work done, Separates and combines activities into efficient workflow, Designs processes and procedures that allow managing from a distance, Seeks ways to improve processes, Collaborates: Builds partnerships and works collaboratively with others to meet shared objectives. Organizational Savvy: Maneuvers comfortably through complex policy, process, and people-related organizational dynamics. Directs Work: Provides direction, delegates, and removes obstacles to get work done. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this position. Duties, responsibilities and activities may change at any time with or without notice. Work beyond 40 hours per week may be required. Cirrus is dedicated to a drug free work environment promoting equal employment opportunity. Qualified applicants will receive consideration for employment without regard to race, sex, national origin, color, age, disability, religion, pregnancy, veteran status, marital and family status, sexual orientation, receipt of public assistance, genetic information or any other characteristic protected by applicable law. Our Benefits: Cirrus provides a range of exciting benefits, including: 401(k) Plan: Dollar-for-dollar match up to 5% after 90 days, with 100% vesting. Employer-Paid Coverages: Group term life, short- and long-term disability insurance. Comprehensive Health Coverage: Medical, vision, dental, with additional dependent coverage options. Free Health Tracking: With rewards for meeting health goals. Generous PTO: 120+ hours accrued within the first year. Employee Referral Bonus: For referring talented candidates. Career Development: Tuition reimbursement and professional growth opportunities. Exclusive Discounts: Access to partner and marketplace discounts. Community & Engagement: Company and employee clubs at various locations. These benefits are designed to support your well-being, growth, and enjoyment at Cirrus!

GardaWorld Security Services is Now Hiring a Surveillance Security Officer! Ready to suit up as a Surveillance Security Guard? What matters most about a role like this is your sharp eye, capturing every detail as you scan a series of screens. Tell us about your strong observation skills with attention to detail. As a Security Officer - Surveillance, you will be the person spotting threats before they escalate in environments such as a security operations centers, call centers, parking gatehouses, etc. What's in it for you: * Site Location: Cottage Grove, 53527 * Set schedule: Days/shifts vary * Competitive hourly wage of $23 / Hour (DailyPay is available for GardaWorld employees!) * A comprehensive benefits package including medical, dental, and vision insurance plans, a 401(k) retirement savings plan with employer matching contributions, paid time off (PTO) policy, paid holidays, disability coverage, and life insurance options * Career growth opportunities at GardaWorld * Uniform provided at no cost Responsibilities of Surveillance Security Guard * Monitor security systems to detect any suspicious activity * Document observed events and incidents, writing detailed reports * Respond quickly to incidents or potential threats * Conduct regular patrols to ensure the safety of the premises * Control access to secure areas and verify the identities of visitors * Analyze security systems to identify potential vulnerabilities or malfunctions * Collaborate with law enforcement in case of serious situations or emergencies * Ensure the safety and protection of individuals and property Qualifications of a Surveillance Security Guard * Must be 21 years or older * Must have SOC, GSOC or PSOC experience * Be authorized to work in the U.S. * Be able to provide documentation of High School Diploma or GED * Be able to ace (and pass) an extensive screening process * Strong report writing skills * Sharp visual activity and exceptional concentration skills * Strong proficiency with technology * If you have Security, Military, Law Enforcement experience - even better! * You have a state license if required In the United States, GardaWorld Security remains the only guarding security company to be Certified by Great Place to Work. Apply today - this could be more than a job! 26% of our corporate employees started as frontline workers. If you're ambitious with an entrepreneurial spirit - someone who wants to be a GardaWorld Ambassador - a promising career awaits you! GardaWorld Security is a global champion in sophisticated and tailored security solutions, employing and training highly skilled and dedicated professionals across the globe. Not the job for you? Make sure to check out all our jobs! We also have tactical, concierge, and even casual roles available. Employment is contingent on the successful completion of a background check and drug screening to be conducted after an offer of employment is extended. It is the policy of GardaWorld Security Services to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, veteran status, or disability in accordance with applicable federal laws. In addition, GardaWorld Security Services complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment including, but not limited to hiring, placement, assignment, promotion, termination, layoffs, recalls, transfers, leaves of absence, compensation, and training. It is also the policy of GardaWorld Security Services not to honor requests that employees be assigned on the basis of sex or any other classification protected by law, unless such request is based on a bona fide occupational qualification for that assignment. Wisconsin License # 16156-62 Qualifications Education

This role will be part of the Cyber Security Operations team within CWT's Global Security and Risk department at our Minnetonka office. You will support the global operations by participating in the security incident response program and identifying vulnerabilities via standard penetration testing assessments and identifying threats posing a genuine risk to CWT. This information will enable CWT to proactively adjust its defensive posture. We are seeking an individual to be part of the team, to help as it grows with maturity. The team will carry out or coordinate (third parties) penetration testing across a number of environments including infrastructure, web app, and mobile platforms. In addition, you will collect and distribute Cyber Threat Intelligence as it relates to CWT. The role offers some exciting opportunities including the potential to develop your talents and skills, and investigating in more detail vulnerabilities and techniques that could be used against CWT. - Ability to create investigation results into a report - Ability to influence others where there is no direct authority - Data analysis, Network, OS systems (Windows, Unix, Linux) - Strong technical background and great understanding on emerging security trends - Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile - Red Team experience or experience of using Open Source and COTS for penetration testing which could include Nmap, Nessus, Metasploit, Kali Linux, Burp Suite Pro and similar - Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH - Experience in at least one development language e.g. Java, C, C# or similar - A good understanding of Cloud based architectures primarily AWS - Bachelor's Degree in Computer Science or related field or equivalent experience - Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or equivalent - AWS certifications (or ability to obtain within 6 months - Entry to junior level, 1-2 years of hands on Penetration Testing of web applications and infrastructure experience - 2-4 years of hands on cyber security operations, threat analysis, and/or incident response - Good appreciation of other security roles such as intelligence, vulnerability and patch management, Risk, auditing, Awareness and Security Architecture - A good understanding of the OSI stack and the various protocols from layer 1 - 7 including SNMP, HTTP, VPN, 802.11. - Social engineering engagement experience (i.e. phishing) - Excellent communication skills with the ability to communicate at a technical and business user level

Senior Cyber Security Analyst - 180000L1) Primary Responsibility #1 - Global security lead for information security technologies in CWT Work on datasets such as network packets, security device logs to identify any security vulnerabilities and gaps. Manage, maintain, and deploy global security services/tools to protect the environment, including vulnerability management, endpoint protection, and network protection technologies Evaluate, design, implement, monitor and support security infrastructure including IAM, IPS, SIEM, Endpoint agents, WAF's, DLP, WCF, and other tools or systems. Perform vulnerability testing, risk analyses and security assessments Create new ways to solve existing production security issues using security tool Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors Evaluates and develops secure solutions, based on approved security architectures. Analyses business impact and exposure, based on emerging security threats, vulnerabilities and risks Collaborates with colleagues and across departments to enhance security and efficiency Assist during internal and regulatory compliance audits, PCI, SOC2, etc. Cloud Security Access Broker, Mobile Security (iOS and Android) Knowledge in IDS, IPS, Firewall, Data Leak Prevention tools Primary Responsibility #2 - Assists in the incident investigations and response process Knowledge in programming using scripting tools and enterprise software development tools such as Java Stay abreast of the latest vulnerabilities and exploits Work with the Security Operation Center is develop solutions/configurations to address threats Participate in the on-call rotation for security services outages and incident escalations Ability to present security technologies, risks, solutions to management in business context Deliver technical reports and documentation on solutions and incidents Contributes to the development and maintenance of the CWT information security strategy Qualifications -Bachelor's Degree in Computer Science or related field or equivalent experience and-Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or AWS certifications (or ability to obtain within 6 months-5-10 years of hands on experience in all technical security domains-Strong technical background and great understanding on emerging security trends-Background and style that elicits respect in the organization through management style, technical depth, customer service and results-Ability to influence others where there is no direct authority-Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile-Scripting, coding, or automation skills (Python, Perl, Java, . NET)-Ability to solution, plan, and deploy security technologies-Data analysis, Network, OS systems (Windows, Unix, Linux) Primary Location: MinnetonkaEmployment type: StandardJob Family: Information TechnologyScope: GlobalTravel: Yes, 5 % of the TimeShift: Day JobOrganization: P&T_Security & RiskExperience Level: 1 to 3 years Job Posting: Feb 12, 2018 As an Equal Opportunity Employer/Affirmative Action employer, the organization will not discriminate in its employment practices due to an applicant's race, color, religion, sex, national origin, veteran status, disability status, sexual orientation, gender identity or any other federal, state or local protected class

Job Description We are seeking an Information Security Analyst to help safeguard our technology infrastructure and support critical cybersecurity initiatives. In this role, you will collaborate with our Technology team, leadership, and vendors to strengthen security controls, support regulatory compliance (including GLBA), and help protect customer and business information. This position is ideal for a motivated person who thrives on critical thinking, collaboration, and staying ahead of emerging cybersecurity risks in a regulated environment. This position will be onsite in Rochester, MN. Key Responsibilities Assist with implementing and maintaining security policies, procedures, and controls. Perform reviews and hands-on testing of security controls and document results. Develop and follow proactive procedures for the detection of and response to security breaches and risks. Participate in security related initiatives by performing assigned tasks such as configuration, testing, and documentation. Assist with maintaining cybersecurity tools, processes, and documentation to align with organizational needs. Educate and advise technology staff on ongoing and emerging security matters and policies, including threats and industry trends. Assist with ensuring company-wide alignment with regulatory standards and best practices Support vendor management and project activities related to security and GLBA. Assist with reviews of vendor security documentation and reports and help track and document vendor-related security and GLBA requirements. Maintain current knowledge of existing and emerging security issues and evaluate solutions to protect against those threats. Education and Experience High school diploma, GED, or equivalent; Bachelors degree in Computer Science or related field preferred Four years' experience in information technology, including information infrastructure Technology security experience preferred Security Certifications: Obtain within two years: GIAC Security Essentials Certification, Security+, or Network+ Obtain within five years: Certified Information Systems Security Professional (CISSP) or Associate of ISC2 Compensation: $129,340 Benefits: The position is eligible for a full benefits package including: Health insurance with HSA contribution Dental insurance Vision insurance Up to 23 days of PTO annually Seven paid holidays Annual Profit Sharing Bonus Four weeks of paid family leave Up to 7.5% 401(k) employer match Tuition reimbursement Clothing allowance Think's culture empowers employees to provide the best financial care to customers every single day. Our professional compensation plan is passionate about quality of business outcomes and helping customers achieve peace of mind. We are not focused on quantity, as compensation is not directly related to the number of accounts opened or volume produced. At Think Bank, we're focused on delivering on the promise of being a great place to work, and one of the ways we accomplish this is by creating an environment where all employees feel they have the opportunity to achieve their goals. We value our differences - in thought, style, culture, ethnicity, and experience - and understand that diversity and inclusion are good for business and make our company stronger. Powered by ExactHire:190294

Established in 1991, Collabera has been a leader in IT staffing for over 22 years and is one of the largest diversity IT staffing firms in the industry. As a half a billion dollar IT company, with more than 9,000 professionals across 30+ offices, Collabera offers comprehensive, cost-effective IT staffing & IT Services. We provide services to Fortune 500 and mid-size companies to meet their talent needs with high quality IT resources through Staff Augmentation, Global Talent Management, Value Added Services through CLASS (Competency Leveraged Advanced Staffing & Solutions) Permanent Placement Services and Vendor Management Programs. Job Description Position Details: Job Title - Information Security Analyst Duration - 3 Months (with a possibility of an extension) Location - Eagan , MN - 55123 Qualifications Primary Objective Perform in the delivery and development of processes and services which support best practices in information security and risk management for Client enterprise. Knowledge, Skills & Behaviors • 2+ years related information security risk management experience • 3+ years related information technology experience • Preferred industry-related certifications: GSEC, CISSP, CISA, CISM, ITIL • Preferred exposure in SOC2, ISO 27000, risk assessment methodologies, Shared Assessments, ITIL practices, and GRC • Demonstrate results in planning and delivering complex projects on time • Maintain focus and manage multiple efforts concurrently • Perform independently to expectations while being collaborative and maintaining alignment with the team • Work effectively with all levels of the organization including subject matter experts, stakeholders, and leadership • Strong written and verbal communication skills to include executive audiences • Apply tactical and strategic methods appropriately • Effective negotiation and influence • Focused on supporting the customer, the team, and the business • Strong collaboration and problem-solving skills Major Areas of Accountability • Operate as a key contributor to the Vendor Risk Management processes. • Interface with subject matter experts, peers and stakeholders; and business or technology leaders across the Client enterprise. • Demonstrate subject matter expertise on information security best practices and Client security posture focused on performing due diligence for vendor assurance inquiries and attestations. • Assist in initiatives to evaluate and provide input on the effectiveness of processes and solutions, and to determine or support a course of action. Track and report on mitigation progress. • Contribute to the strategic and tactical development of information security, risk management and compliance initiatives, to include policy and standards development, solution development, security awareness and training, and other information security initiatives as assigned. • Track, verify and collect data points for reporting and metrics on identified services to identify gaps and inform leadership. • Serve as a subject matter expert in information technology operations, information security and risk management practices, global legal and regulatory requirements, and other applicable security and privacy trends and practices. • Participate as a member of a team for Vendor Risk Management • Contribute to and achieve business and departmental goals and objectives • Deliver processes and services consistently and accurately • Accept feedback and flex to address tactical needs • Report on status of initiatives to all levels in the organization • Work across the organization to contribute to departmental initiatives and programs Education • Prefer 4 year (Bachelor's) Degree in a technology related field If you are interested please contact NEHA KALIA (Technical Recruiter) at ************ and email an updated copy of your resume (preferably WORD format) to *************************** Additional InformationIf you are interested please contact NEHA KALIA (Technical Recruiter) at ************ and email an updated copy of your resume (preferably WORD format) to ***************************

SAIC is looking for an Information Systems Security Officer (ISSO). The ISSO's primary function is working within classified areas supporting US Space Force / Space Development Agency (SDA) / Battle Management Command, Control, and Communications (BMC3) mission areas. The position will provide "day-to-day" support for Collateral and Sensitive Compartmented Information (SCI) activities. This position is in Grand Forks, ND. **Performance shall include:** + Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents. + Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners. + Possess a high degree of originality, creativity, initiative requiring minimal supervision. + Review, prepare, and update RMF accreditation packages. + Notify customers when changes occur that might affect RMF accreditation/certification. + Perform RMF self-inspections, provide security coordination and review of all system test plans. + Identify RMF vulnerabilities and implement countermeasures. + Conduct security surveys and gather pertinent security documentation for inclusion into system accreditation packages. + Coordinate, prepare, and track RMF inspections, reports, and responses. + Maintain RMF security records. + Prepare reports on the status of security safeguards applied to information systems. + Ensure RMF authorized information systems are operated, maintained, and disposed of in accordance with security policies and practices. + Perform ISSO duties in support of in-house and external customers. + Assist SDA and other government agencies with Cyber Test & Evaluation (CT&E) efforts. + Maintain Information Systems security postures IAW the RMF Authorization. + Collect and analyze security scans and audit logs. + Perform vulnerability management. + Perform Continuous Monitoring of RMF authorized information systems in classified environments. **Qualifications** Qualifications - External + 5-9 years total related experience. + Extensive knowledge of Assured Compliance Assessment Solution (ACAS) and Splunk. + Systems Administrator (Sys Ad) experience. **Education:** + Bachelor's degree or equivalent additional experience (4 years). **Certifications:** + Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance + Technician Level 2 within 6 months on the date of hire. **Security Clearance:** + Top Secret (SCI eligible) required. REQNUMBER: 2511612 SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

The Information Security Analyst Identifies security risks and exposures, determine the causes of security violations, and configuring systems to optimize notification of future incidents. The Security Analyst Integrates appropriate systems and logs into the enterprise security incident and event management system to effectively monitor and detect various people and enterprise asset activity. The Information Security Analyst works under the direction of the Information Security Director on the IT Security Operations Team. This is a hybrid job, must be located in Saint Paul MN Responsibilities * Investigates and analyzes security events to evaluate risk, prioritizing findings based on internal and external information. • Configures and maintains SIEM platform, including areas such as source feeds, alerts, alarms, and API integrations.• Configures and maintains EDR/antivirus.• Configures and maintains vulnerability management platform, including areas such as vulnerability scanning, remediation, and mitigation as well as impact and risk analysis.• Communicates security concerns to the business stakeholders to collectively develop and execute an appropriate remediation/mitigation plan.• Interacts with security risk and compliance group, adjacent IT departments, and business units as needed to ensure compliance with IT Security goals and policies.• When needed, assists in administration of other security tools (Data Loss Prevention, Email Security/Spam Filter, End User Training, Mobile Device Management).• Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and evolving attacks and threat vectors. General Job Responsibilities:• Ability to work in a team environment and independently as required • Contributes to project planning and scheduling.• Normally receives minimal instructions on routine work and detailed instructions on new assignments. • Participate in Architecture design reviews and other technical governance forums across the organization representing the security team across multiple projects.• Be on call and available after business hours, would require working Holidays and weekends if major security incident occurs.• Establish and maintain pertinent policies, standards, and procedures • Perform duties in compliance with applicable regulations and standards such as Sarbanes Oxley Act, FDA Quality System, and ISO (International Organization for Standardization) Works on routine assignments per written procedures, where ability to recognize deviation from accepted practice is required. • Contributes to the overall operations and to the achievement of departmental goals • Perform job specific tasks in compliance with applicable Regulations, International Standards, and WuXi AppTec Policies and Standard Operating Procedures. • Understanding of Good Laboratory Practices and Good Manufacturing Practices • Other duties as assigned Qualifications * Degree in Cyber Security, Management Information Systems, Information Security or equivalent work experienceo Minimum 2 years prior experience in a Cyber Security• In depth knowledge of LogRhythm SIEM platform or other SIEM platforms, which includes configuring and maintaining API integrations and source feeds, alerts and alarms• In depth knowledge in Qualys Vulnerability Management System, which includes configuring and maintaining• In depth knowledge in Cisco AMP Anti-Virus software, which includes configuring and maintaining• Knowledge of ISO/IEC 27001 standards.• Strong technical acumen with a solid understanding of security technologies and network architecture• Strong verbal and written communication skills• Independent driver of self-development and continuous learning• Knowledge of information security technology, design, research techniques, administration, operating standards, and quality control methods.• Basic understanding of LAN/WAN technologies and protocols, FTP, Active Directory, VPN technologies (MPLS, IPSEC, etc.), IIS and other network services.• Experience in a large, formal vulnerability program.• General knowledge of cloud, wireless network and mobile security.• Team-oriented and skilled in working within a collaborative environment. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability This job description does not state or imply that the above are the only duties and responsibilities assigned to this position. Employees holding this position will be required to perform any other job-related duties as requested by Management.