Cyber security analyst jobs in Lexington, KY - 328 jobs

Job Title: Information Security Analyst Zip Code: 45040 Duration: 6 months Pay Rate: $33.33/hr. Keyword's: #Masonjobs; #InformationSecurityAnalystjobs; The IS Application Security Analyst will support the execution, planning, and administration of the Vulnerability Management function within Information Security (IS). The Vulnerability Management Analyst executes core processes in the vulnerability management program focused on vulnerability assessments, penetration testing and social engineering. Additionally, they will support the remediation of vulnerabilities resident within systems to minimize the organizations" potential attack surface for exploitation. The Analyst will provide oversight, drive, facilitate and coordinate the management of vulnerabilities across the enterprise. The Analyst must understand underlying application code approaches in order to effectively review and respond to application security scans. While technical involvement is required, this role is not intended to perform direct remediation. The Analyst will support automated scans and may provide post-development testing assistance to validate that vulnerability remediation efforts are appropriately tested. MAJOR DUTIES AND RESPONSIBILITIES * Monitor and analyze vulnerability assessment data to identify and communicate technical risks to the organization * Support the identification and impact classification for new vulnerabilities identified in the environment * Execute and support vulnerability assessments, penetration testing and social engineering activities * Provide the Information Security and IT Security team information on the emerging cyber threat landscape, including threat actor tactics, techniques, and procedures * Review and interpret application security scan results with an understanding of underlying code structures to provide effective feedback * Provide post-development testing support to ensure vulnerability remediation items are validated and tested appropriately * Facilitate vulnerability management processes by tracking and coordinating remediation efforts across multiple teams * Ensure timely closure of security gaps by working with application, infrastructure, and operations teams * Support IS in achieving the vision and strategic objectives of the vulnerability program * Conduct analysis, aggregate and report on vulnerability data from various scanning tools and platforms * Manage and utilize IS tools such as DLP, Code scanner, external security profile, etc. to analyze gaps in security controls * Participate in the IT SDLC program to ensure that security is included in project by default and by design * Develop strong working relationships with other departments and potentially clients across the organization to ensure a high degree of security compliance client satisfaction * Assist with regulatory and compliance requirements, contributing to security audits, assessments, attestations, certifications and client vulnerability inquires * Brief IS leadership on vulnerability assessment results and potential risks * Support leadership to identify capability gaps in vulnerability management services * Collaborate with cross-functional teams to improve security posture and embed security into existing IT and operational workflows * Continue self-development of knowledge, skills and abilities to better support execution of the Information Security (IS) function BASIC QUALIFICATIONS * Bachelor"s degree computer science, IT or equivalent * 3+ years of experience in IT or IS or Compliance * Experience with major standards such as: SOC 1-2, ISO 27001/2, PCI DSS, HITRUST, SANS, NIST * Demonstrated experience in implementing compliance frameworks for financial services organization or organizations with similar information security needs and requirements * Familiarity and understanding of broad range of IT hardware and software products * Strong project management skills * Excellent presentation, verbal communication, and written skills * Excellent analytical and problem-solving skills * Experience managing typical enterprise security and intrusion detection systems * Ability to work in a collaborative environment across business and technology teams * Ability to interpret application structures and code approaches at a high level in order to review and respond to scan results PREFERRED QUALIFICATIONS * Certified Information Systems Security Profession (CISSP), PCI DSS, Certified HIPAA Privacy Security Expert (CHPSE), Certified Information Security manager (CISM), Global Information Assurance Certification (GIAC), or related. * Experience or knowledge with healthcare or health insurance * Knowledge of CMS and HIPAA related vendor requirements * Working knowledge of Security SDLC tools Belcan is an equal opportunity employer. Your application and candidacy will not be considered based on race, colour, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.

What Makes a Honda, is Who makes a Honda Honda has a clear vision for the future, and it's a joyful one. We are looking for individuals with the skills, courage, persistence, and dreams that will help us reach our future-focused goals. At our core is innovation. Honda is constantly innovating and developing solutions to drive our business with record success. We strive to be a company that serves as a source of “power” that supports people around the world who are trying to do things based on their own initiative and that helps people expand their own potential. To this end, Honda strives to realize “the joy and freedom of mobility” by developing new technologies and an innovative approach to achieve a “zero environmental footprint.” We are looking for qualified individuals with diverse backgrounds, experiences, continuous improvement values, and a strong work ethic to join our team. If your goals and values align with Honda's, we want you to join our team to Bring the Future! The Honda Development and Manufacturing Production Engineering team is responsible for the operational technology security of the manufacturing environment. The OT Security Cyber Prevention Engineer works across multiple technical and business areas to develop, implement, and maintain procedures, standards, and controls to prevent the risk or impact of a cyber incident. The scope of this function covers manufacturing equipment hardware/firmware/ software, OT enterprise systems, data analysis and reporting, and collaboration with IT/business users to ensure secure operation across all HDMA locations and equipment. New equipment introduction - set OT standards for new equipment, integrate equipment into the OT network, confirm vulnerabilities, perform risk assessments, and visibility of equipment within the asset management system. Training - support the creation, administration and maintenance of OT specific training material. Policies/procedures/auditing - create, issue, maintain, and audit OT specific policies and procedures. Access control (physical + logical) - set and implement technical standards for equipment level physical access and control access to OT related systems and equipment. OT standard creation - support the development, implementation, and maintenance of technical standards for the OT equipment and networks Risk metric management/assessments - establish company OT risk metrics and corresponding assessments to determine OT risk, perform risk assessments, and establish tools for visibility and reporting. Sensing/industry benchmarking - research technical and business OT security industry benchmarks and generate recommendations for adjustments to internal tools or practices to stay in alignment. What differentiates Honda and makes us an employer of choice? Total Rewards: Competitive Base Salary (pay will be based on several variables that include, but not limited to geographic location, work experience, etc.) Regional Bonus (when applicable) Manager Lease Car Program (No Cost - Car, Maintenance, and Insurance included) Industry-leading Benefit Plans (Medical, Dental, Vision, Rx) Paid time off, including vacation, holidays, shutdown Company Paid Short-Term and Long-Term Disability 401K Plan with company match + additional contribution Relocation assistance (if eligible) Career Growth: Advancement Opportunities Career Mobility Education Reimbursement for Continued learning Training and Development Programs Additional Offerings: Lifestyle Account Childcare Reimbursement Account Elder Care Support Tuition Assistance & Student Loan Repayment Wellbeing Program Community Service and Engagement Programs Product Programs Honda is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.

Conduct risk assessments for AI tools, GPTs, and automation use cases using NIST AI RMF-aligned evaluation frameworks. Review AI tool submissions for security, privacy, and compliance risks; escalate issues as needed. Support the development and maintenance of Worthington's AI Registry and related workflows. Assist with OneTrust implementation, including configuring intake workflows, registry fields, risk scoring logic, and documentation capture. Monitor open reviews and ensure timely follow-up with stakeholders (business leads, vendors, legal, cybersecurity, etc.). Collaborate on creating and maintaining cybersecurity content within AI governance documentation, registry systems, playbooks, risk scoring models, and OneTrust survey templates. Represent Cyber in AI governance meetings (e.g., Governance Group, Triage Team) as a contributing member (non-approving role). Support importing and mapping third-party vendors in OneTrust and help manage third-party risk review processes. Assist in building and maintaining the Third-Party Risk Management (TPRM) governance program, including policies, workflows, and response tracking. Draft and maintain Cyber-owned components of AI risk assessments, playbooks, and frameworks in partnership with Cyber and Governance leads. Pay Range: 55-70/hr We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements - 3-10 years of experience in cybersecurity, risk management, compliance, or privacy. - Familiarity with AI-related risk domains - Knowledge of NIST frameworks - Experience with OneTrust

Responsibility for information cyber security analysis & response with the mission of protecting the firm from internet attacks / threat actors. Lead initiatives and the implementation of capabilities in order to advance the Cyber Threat program Enhance and distribute security incident response and escalation procedures to ensure timely and effective handling of security events and alerts Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements. A solid understanding of Penetration Testing, Vulnerability Management, Threat Vector Analysis, Intrusion Detection and Prevention, Incident Management and Response, Web Application Security, Risk Assessment and Mitigation methodologies, and Counter Threat Operations. Qualifications Cyber Security Analyst/Implementation Specialist - need someone that has broad cyber security knowledge that can not only recommend solutions, but more importantly also has experience implementing/managing those solutions. MUST HAVE JAVA DEVELOPMENT BACKGROUND Need solid remediation experience - how to remediate vulnerabilities in a web application CISSP certification is nice to have, not mandatory Additional Information Job Status: Contract to Hire Eligibility: EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

The Columbus Regional Airport Authority manages and operates passenger-focused John Glenn Columbus International Airport (CMH), cargo-focused Rickenbacker International Airport (LCK), and general aviation airport Bolton Field (TZR). We are a diverse group of committed and talented professionals who show up every day to take CRAA to new heights. Although our roles are as diverse as we are - from Custodial Services to Customer Service, from Accounting to Airport Police, from HVAC to Human Resources - we have one common goal: connect Ohio with the world. Our organization is in constant motion, moving people and cargo 365 days a year. With our core values of Accountability, Innovation and Respect guiding us, we each do our part to contribute to our organization, the aviation industry, local businesses, and the economy. We create experiences for passengers, we create opportunities for businesses, and we create economic growth for Columbus. Trust and respect are the foundation of our culture. We invite new ideas. We encourage innovation. We are inclusive and welcoming. We are empowered to enact positive change. Your “Take Off” will be successful by doing the following with excellence: Must be able to report in-person to the office daily, with one day from home. Assists in monitoring and analyzing security events and incidents using various security tools and technologies. Collaborates with the Security Operations Center in the assessment, triage, and response to potential cyber security incidents. Partners with the Service Delivery team in the assessment and remediation of software patching and security configuration baseline deviations across the desktop and infrastructure estate. Assists in the performance of regular security audits and assessments. This may involve evaluating technical controls, processes, and documentation. Conducts initial investigations and assessments of potential security threats to critical infrastructure assets and systems. Utilizes frameworks such as NIST Risk Management Framework (RMF) to assess risk posture. Assists in the implementation and configuration of security controls to meet regulatory requirements and industry best practices. This may include network segmentation, encryption, access controls, and intrusion detection/prevention systems. Participates in the development and delivery of cyber security awareness training programs to educate employees about their roles and responsibilities in protecting critical infrastructure assets and sensitive information. Participates in projects and identifies solutions to support improvement and growth. Performs related work as required. Your “Landing” will be smooth if you meet the following requirements: Bachelor's Degree in Cyber Security or Forensic Analyst, or a related field, preferred, Minimum of three (3) years of experience in a cyber security role. Or equivalent education and years of experience Strong knowledge of security principles and technologies Knowledge of security incident response procedures and tools such as SIEM's, VMS, Endpoint Security Management Must possess and maintain a valid Ohio driver's license, in good standing Salary range for this position is $80,000.00 - $90,000.00. The offered salary is evaluated using internal equity, job knowledge, skills, experience, and other key factors. Able to pass a pre-employment drug test, which includes testing for marijuana (medical marijuana cards are not acceptable) The Columbus Regional Airport Authority is an equal opportunity employer and does not discriminate in hiring or terms and conditions of employment because of an individual's race, color, religion, gender, age, national origin, veteran status, disability, and all other groups or classes protected by applicable federal, state or local laws. The Authority does not tolerate violence or drug use in the workplace.

OSC EdgeTech, LLC is seeking a talented Cyber Security Analyst to join the team. OSC EdgeTech is a wholly owned subsidiary of Cook Inlet Region, Inc. (CIRI), an Alaska Native Corporation proudly owned by over 9,400 Shareholders. OSC EdgeTech was created to deliver agile, responsive IT solutions to meet the evolving needs of federal and defense customers. As an SBA-certified 8(a) entity with a Facility Clearance (FCL), OSC EdgeTech streamlines the acquisition process while maintaining the trusted quality, security, and innovation that define OSC Edge. Cook Inlet Region, Inc., also known as CIRI, is one of 12 land-based Alaska Native regional corporations created pursuant to the Alaska Native Claims Settlement Act (ANCSA). CIRI's regional boundaries roughly follow the traditional Dena'ina territory of Southcentral Alaska. CIRI was incorporated on June 8, 1972, and is owned today by a diverse group of more than 9,500 Shareholders who live in Alaska and throughout the world. OSC EdgeTech offers excellent benefits for eligible employees. Benefits include paid holidays, paid time off, 401K with employer match, dental, vision, health insurance plans, as well as life and disability benefits. Position Overview The Cyber Security Analyst will contribute to the Cyber mission by conducting vulnerability scans, reviewing security alerts and incidents, and assessing technical compliance in accordance with DoD and Federal requirements. This position will utilize Cyber security tools, including ACAS, eMASS, HBSS, and Microsoft 365 Defender, to support vulnerability management, POA&M management, threat detection, and other Cyber tasks as required. Additionally, this position will collaborate with other Cyber analysts to develop programmatic actions and minimize security risks. Major Activities Conduct vulnerability scans of IT assets as requested from tickets or as directed by Cybersecurity Manager. Apply knowledge of monitoring, analyzing, detecting, and responding to Cyber events and incidents within information systems and networks. Advise on an integrated, dynamic Cyber defense and leverage Cybersecurity solutions to deliver Cybersecurity operational services, including intrusion detection and prevention, situational awareness of network intrusions, security events, and data spillage, and incident response actions. Assess IT assets for cybersecurity compliance in accordance with DISA STIGs requirements. Develop POA&Ms to track any Overdue vulnerabilities or STIG deviations Review and investigate security alerts and incidents from Microsoft 365 Defender Utilize eMASS to maintain and update POA&M status Review device compliance status from HBSS Work with other NEC Operations team members to remediate and mitigate security vulnerabilities. Review the latest Cybersecurity intelligence information and provide recommendations to improve the Cybersecurity posture. Perform other duties as appropriate and as assigned. Knowledge/Skills/Abilities Experience analyzing log files, firewall logs, and IDS Logs to identify possible threats to network security, and to perform command and control functions in response to incidents. If not 8570 certified at contract start must be within six months. Experience in Host Based Security Systems (HBSS), ACAS vulnerability scanning software, knowledge of and experience with Security Information and Events Manager (SIEM) analysis and administration, as well as Information Assurance Vulnerability Alert (IAVA) management. Excellent verbal, written and interpersonal communication skills, excellent organizational and multi-tasking skills. Great analytical, critical thinking and problem-solving abilities. Superior presentation and negotiation skills. Strong management and organizational skills. Adaptable and capable of working in fast-paced environments. Proficient in Microsoft Word, Excel, PowerPoint, and SharePoint Required Qualifications Bachelor's degree in IT, Cyber Security or related field or seven years of IT work experience Demonstrated work experience as Cyber Security Analyst in DoD or Federal government environments Two or more years' experience performing vulnerability scans using Tenable SecurityCenter (Tenable.sc) or ACAS Must possess appropriate DISA ESS certifications and experience. Must be DoD 8570 certified at IAT Level 3 or higher (e.g., CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, or CCSP) Must be US citizen Must possess active secret security clearance or higher Must be able to pass pre-employment background check Preferred Qualifications Bachelor's degree in IT, IM, or Cyber Security ACAS certification obtained within the last three (3) years, preferred HBSS Administrator certification obtained within the last three (3) years, preferred E-Verify: OSC EdgeTech participates in E-Verify. We will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee's Form I-9 to confirm work authorization. Reasonable Accommodation: OSC EdgeTech, LLC will provide reasonable accommodations, according to applicable state and federal laws, to all qualified individuals with physical or mental disabilities. In compliance with the ADA Amendments Act (ADAAA), if you have a disability and would like to request an accommodation in order to apply for a position with OSC EdgeTech, LLC or any of its subsidiaries, please email *******************.

ManTech seeks a motivated, career and customer-oriented **Cyber Security Analyst** to join our team in **Crane, Indiana.** This is an onsite position. As a core member, you will assist in the research & design, engineering, integration, testing, training, logistics, laboratory research, field engineering, and acquisition and operations analysis in support of a variety of Navy and Marine Corps programs and projects with a focus on defensive cyber technologies, mission assurance, and resilience capabilities for the tactical network environment. Your effort will go towards dramatically increasing the warfighter's effectiveness. If you enjoy working on a highly collaborative and dynamic team and want to make a difference for the warfighter, then we would love to have you on our team! **Responsibilities include but are not limited to:** + Review and evaluate System Security Plans (SSPs), System Security Authorization Agreements (SSAAs), systems and networks diagrams, Security Requirements Traceability Matrices (SRTMs), Risk Assessments, and associated Information Systems (IS) Certification and Accreditation (C&A) documents in accordance with Department of Defense (DoD), Intelligence Community (IC), National and Agency standards + Observe, evaluate, and document IS security certification testing and prepare Security Certification Test Reports (SCTRs) with findings and recommendations regarding systems; Approval To Operate (ATO) + Inspect systems, networks, sites for compliance to InfoSec standards and policies + Additional duties include producing periodic progress reports, preparing various forms of correspondence concerning deficiencies and statuses of SSPs/SSAAs, maintaining and reporting statistics on personal C&A efforts + Knowledge of DoD, IC, and National Security Policies, Regulations, Directives, and Instructions **Minimum Qualifications:** + High School Diploma + Knowledge of commonly used concepts, practices, and procedures within the particular field + 1+ years of experience in the field or in a related area + Hands-on experience with networking technologies such as routers, switches, firewalls, and VPNs **Preferred Qualifications:** + Bachelors Degree + Familiarity with network vulnerability scanners, web scanners, and database scanners is a plus + Knowledge of cloud computing concepts and technologies + CISSP, CISM, CCNA, CASP, or equivalent. **Clearance Requirements:** + Must have a current and active TS/SCI clearance **Physical Requirements:** + The person in this position must be able to remain in a stationary position 50% of the time. + Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentations MANTECH International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation. If you need a reasonable accommodation to apply for a position with MANTECH, please email us at ******************* and provide your name and contact information.

Overall Assignment Description: The CND Analyst will perform actions to protect, monitor, detect, analyze and respond to unauthorized activity within assigned information systems and computer networks. Duties include: Employs Cybersecurity capabilities and deliberate actions to respond to a CND alert or emerging situational awareness/threat. Serves as an expert on CND requirements and compliance to such requirements by using IA tools and techniques to perform compliance analysis and correlation, tracking and remediation, coordination and escalating CND non-compliance. Provides technical analysis and sustainment support for the enterprise for IA tools and applications, and assists with the application of Defense-In-Depth signatures and perimeter defense controls to diminish network threats Skills and Experience: Required: Must possess a current DOD Top Secret Clearance and be eligible for SCI and IT-1 access at time of proposal submission Five (5) years of relevant experience or related formal education Two (2) years of experience performing root cause analysis of cybersecurity events and incidents Two (2) years of experience analyzing network traffic and/or system logs DOD Approved 8570/8140 Baseline Certification : Category IAT Level II DOD Approved 8570/8140 CSSP Certification : CSSP-IR Must possess written and verbal skills to appropriately document and brief Cybersecurity Incidents Working knowledge of at least two cybersecurity areas: Firewall IDS/IPS Host based antivirus Vulnerability Management JETS RFQ SP4709-24-Q-0002 DLA Cyber Emergency Response Team (CERT) Cyber Security Service Provider (CSSP) Support Forensics Malware Analysis Device Hardening Understanding of Defense-in-Depth Ability to build and read scripts in languages such as Perl, Bash, Powershell, Ruby, Python

The Information Security Specialist works with the IT security team to ensure the security of court systems and serve as a security resource to courts within the Sixth Circuit for their governance and compliance program. The major responsibilities and duties include the following: In coordination with the Circuit IT Security Officer (ITSO), respond to emergent threats, assist court units in the circuit, and track and report progress. Assist in identifying, prioritizing, and coordinating the protection of critical cyber infrastructure and key resources. Provide guidance and assistance in implementing and maintaining business objectives (i.e. security scorecard, CIS controls, assessments, internal audit controls, security data calls). Manage information security projects (or security-related aspects of other IT projects). Coordinate and lead IT staff and court users to identify, plan, and implement initiatives and projects. Prepare and present reports and training. Develop and maintain a documentation template repository; modernize and maintain the circuit's data repository. Review and advise courts on documentation requirements. Assist the Circuit ITSO in performing, analyzing, and archiving SWOT and other gap analyses to ensure compliance with required frameworks, controls, and assessment. Manage CIS controls self-assessment too; provide guidance and assistance to courts on documentation, program management, etc. Assist the Circuit ITSO in creating, tracking, and maintaining KPIs. Prepare scheduled data points and KPIs for use in reports to circuit-wide executives and other Judiciary stakeholders. Research custom solutions for courts as needed. Qualifications Required: Four years of experience in information security systems. Experience with cybersecurity compliance programs. Strong communication and interpersonal skills; excellent customer service skills. Detailed, organized, and self-driven. Ability to work under pressure and within the constraints of conflicting deadlines. Proactive, problem-solving approach. Ability to respond effectively in critical situations. Ability to work independently and in a team environment. Ability to travel (25% - 50%). Preferred: Bachelor's degree in computer science or related field. Related cybersecurity or IT project management certifications. Related experience in a court, government agency, or equivalent environment. Total Rewards & Work/Life Balance Compensation*: $87,791 - $142,732 (CL 29) (*Salary commensurate with qualifications) Benefits: Employer subsidized health and life insurance plans. Dental and vision insurance plans. Flexible spending accounts for health care, dependent care, and commuter expenses. Eligibility for Public Service Loan Forgiveness Program and mass transit subsidies. On-site fitness center. Federal retirement entails a pension plan (FERS-FRAE) and employer-matching Thrift Savings Plan (similar to a 401K). Retirees may carry insurance plans into retirement while paying the same premiums as employees. Visit ********************************* to learn more about the Judiciary's competitive benefits. Work/Life: Annual time off - 13 vacation days, 13 sick leave days, and 11 paid holidays. Vacation days increase to 20 days after three years and to 26 days after fifteen years. Hybrid telework schedule may be available. Conditions of Employment Travel for this position is required. The selected candidate is provisionally hired pending results of background investigation/check and fingerprinting. This position is subject to updated background investigations every five years. Applicants selected for an interview must complete the Optional Background Information section on the Judiciary's application. Employees are required to adhere to the Judicial Code of Conduct for Judicial Employees . Electronic Fund Transfer for payroll direct deposit is required. Positions with the U.S. Courts are at-will, excepted service appointments, and may be terminated with or without cause by the Court. For citizenship requirements and additional information about careers in the Judiciary, visit ************************* The Court reserves the right to modify the conditions of this announcement, or to withdraw the announcement for any reason without notice. How To Apply Please submit a single PDF application packet, including (1) a cover letter addressing your qualifications and experience in relation to the job duties and how you learned of the position, (2) a current resume, to the Director of Human Resources via the Resume button on our online application system. Position is open until filled; preference given to applications received by January 5, 2026. Virtual interviews available. The United States Court of Appeals for the Sixth Circuit is an equal opportunity employer. For a reasonable accommodation during the recruitment process, contact Human Resources at **************.

Established in 1991, Collabera is one of the fastest growing end-to-end information technology services and solutions companies globally. As a half a billion dollar IT company, Collabera's client-centric business model, commitment to service excellence and Global Delivery Model enables its global 2000 and leading mid-market clients to deliver successfully in an increasingly competitive marketplace. With over 8200 IT professionals globally, Collabera provides value-added onsite, offsite and offshore technology services and solutions to premier corporations. Over the past few years, Collabera has been awarded numerous accolades and Industry recognitions including. Collabera recognizes true potential of human capital and provides people the right opportunities for growth and professional excellence. Collabera offers a full range of benefits to its employees including paid vacations, holidays, personal days, Medical, Dental and Vision insurance, 401K retirement savings plan, Life Insurance, Disability Insurance. Location: Columbus, IN 47201 Job Title: Sr. IT Compliance and Risk Management Analyst Duration: 6 months (Contract to Hire) Job description: •Responsible for the execution of compliance audits. Reviews procedures and corresponding evidence to determine whether or not internal controls are being properly applied. •Leads or executes compliance audits and risk assessments within established control areas. •Tests and documents more complex computer system records for information system integrity and transaction accuracy; reports discrepancies. •Prepares less complex audit plans or assists with more complex plans. •Prepares formal written reports to communicate audit results to management, and makes recommendations as appropriate; defines compliance issues and identifies root causes for review by manager. •May provide technical guidance to contract audit staff to ensure that audit objectives are met. •May coach and mentor less experienced analysts. Qualifications • Bachelors Degree Required: PCI (Payment Card Industry)- this is a higher level position and only looking for PCI SME (Subject Matter Expert) experience. • Must Have IT Compliance Experience with PCI Management Side experience • This manager is looking for a candidate that has seasoned PCI Experience on is a subject matter ex]pert and worked with the management side if PCI with the ability to set the right type of internal controls. Additional Information If interested please contact: Himanshu Prajapat ************ himanshu.prajapat(@)collabera.com

Responsibilities and Qualifications RESPONSIBILITIES Serve as a cybersecurity SME, providing support for ESS and EKC system assessments. Fully versed in the general tenets of the DoD's authorization process, including relevant cybersecurity policies, procedures, and processes. Support the DoD cybersecurity process by serving as a SME for ESS and/or EKC systems undergoing authorization. Design, develop, and implement cybersecurity measures into systems, delivering comprehensive cybersecurity assessment documentation. Understand and apply security controls identified in NIST 800-53 to the process of assessing and authorizing DLA ESS and EKC systems. Determine the severity value of identified vulnerabilities and assess their potential impact on the system's current or future authorization status. Perform key functions related to security control selection, implementation, and documentation. Collaborate closely with the Information Systems Security Manager (ISSM) on complex system details. Monitor and control communications at key internal boundaries among subsystems and provide system-wide common controls that meet or exceed the requirements of constituent subsystems. Lead the development, integration, and testing processes to deliver and deploy production-ready systems that meet business requirements and project schedules. Work closely with product management to translate business requirements into technical solutions, architecture design, level of effort, and project schedule. Design architecture and establish best practices to produce efficient and effective system operations while minimizing refactoring and rework. Provide support for the Security Technical Implementation Guides (STIGs) process and develop and submit cybersecurity documentation as required. Ensure the implementation of DoD STIG compliance for ESS/EKC systems/applications and maintain compliance with required DoD STIGs. Support reviews associated with STIGs, cyber assessments, and continuous monitoring activities. REQUIRED QUALIFICATIONS Experience: Five (5) years of relevant C&A experience MF and NIST C&A experience DOD cybersecurity experience Certifications: (One of the following) CGRC/CAP CASP+ CCSP SSCP Security+ GSEC CISM CISSO FITSP-M GCIA GCSA GCIH GSLC GICSP CISSP-ISSMP CISSP Clearance: Must possess a Secret security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). Overview We are seeking a Senior System Security / Cybersecurity Analyst to join our team supporting DLA Integrated Electronic Security Systems (IESS) and Electronic Key Control (EKC). TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers. We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays. Visit us at ***************** Apply now to explore jobs with us! The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation. By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP". As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration. Additional Job Information WORK ENVIRONMENT AND PHYSICAL DEMANDS The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Location: Columbus, OH Type of environment: On Site Noise level: Medium Work schedule: Schedule is day shift Monday - Friday. May be requested to work evenings and weekends to meet program and contract needs. Amount of Travel: Less than 10% PHYSICAL DEMANDS The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus. WORK AUTHORIZATION/SECURITY CLEARANCE U.S. Citizen Secret security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). OTHER INFORMATION Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment. EQUAL EMPLOYMENT OPPORTUNITY In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, sexual orientation, gender identity, protected veteran status, national origin, disability, age, genetic information, or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment. TekSynap is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please contact *************** for assistance.

IS ON-SITE AT OUR CINCINNATI, OHIO OFFICE ** At Danis, we don't just build projects-we build trust. Since 1916, our reputation has been defined by integrity, innovation, and a relentless commitment to delivering exceptional results. We approach every challenge with a problem-solving mindset, combining precision, creativity, and collaboration to bring our clients' visions to life. We know that our people are the foundation of our success. That's why we invest heavily in their growth. Through Danis University, employees have access to more than 45 specialized training programs designed to support continuous learning and career advancement. Join us and become part of a team that values your expertise, supports work-life balance, and empowers you to thrive professionally. One of the ways we protect that success is through a strong cybersecurity foundation-led by dedicated professionals who stay ahead of emerging threats. As an Information Security Analyst, you'll serve as a key defender of our digital environment. Your mission: safeguard sensitive data, neutralize threats, and ensure we stay a step ahead of cyber risks. You'll monitor, investigate, and respond to security events while shaping our company's cybersecurity roadmap. This is a collaborative role, working closely with IT and departments across the organization to elevate our security posture and build a culture of cyber resilience. This position reports to the CIO. Why Join Danis? Make an Impact: Lead healthcare projects that support medical professionals and improve patient care. Your work will have a lasting, positive effect on communities. Competitive Compensation: Enjoy annual merit increases and bonuses. Comprehensive Benefits: Health and dental insurance for you and your family, as well as life insurance, disability coverage, and supplemental insurance options. Secure Your Future: 401K plan and profit-sharing opportunities. Work-Life Balance: Generous PTO and vacation time, because we value your time outside of work. Give Back: Participate in our “Constructing Hope” program to contribute to meaningful community outreach projects. Career Development: Access 45+ training programs through Danis University to enhance your skills and grow your career. What You'll Bring Bachelor's degree in Cybersecurity, Information Technology, or a related field. 3+ years of hands-on experience in cybersecurity or a related discipline. Working knowledge of security frameworks (e.g., NIST, ISO 27001). Proficiency with security tools (e.g., SIEM, EDR, vulnerability scanners). Strong analytical and investigative mindset. Clear, confident communication and collaboration skills. Experience managing cross-functional projects and navigating complex security challenges. Responsibilities Your Impact: Strategic Leadership Help shape and enforce cybersecurity policies, procedures, and standards grounded in industry best practices. Lead the development and execution of our cybersecurity roadmap-including threat detection, incident response, and endpoint security initiatives. Governance, Risk, & Compliance Conduct routine risk assessments and internal audits to identify vulnerabilities and gaps. Ensure regulatory compliance (e.g., NIST, Ohio Data Protection Act). Maintain and test incident response plans; brief leadership on cybersecurity risks and metrics. Training & Awareness Drive cybersecurity awareness through engaging education initiatives. Oversee new hire onboarding for required cyber training. Facilitate tabletop exercises to simulate and prepare for real-world scenarios. Threat Detection & Response Continuously monitor systems for suspicious activity or breaches. Respond swiftly to security incidents and ensure thorough documentation. Engage in proactive threat hunting and analysis to detect emerging risks. Vulnerability & Risk Management Lead regular system assessments and vulnerability scans. Ensure robust network segmentation, firewall health, and secure backups. Security Architecture & Tools Oversee the deployment and management of critical security tools. Integrate cybersecurity solutions into enterprise infrastructure in collaboration with IT. Evaluate and enhance our security technology stack. Collaboration & Communication Build trusted partnerships across IT and the broader organization to strengthen security culture. Support business continuity and disaster recovery planning with department leads. Manage vendor risk and ensure third-party compliance with internal standards. Preferred Skills Familiarity with enterprise systems and platforms (e.g., ERP, CRM). Deep expertise in endpoint protection, network monitoring, and DLP tools. Calm, strategic approach to crisis management. Qualifications Working Environment: Onsite Role: This position is based fully onsite, allowing for close collaboration with IT peers and business units. Being embedded within the organization supports real-time incident response and hands-on access to systems and infrastructure. Team-Oriented Culture: You'll be part of a collaborative and supportive IT team that values knowledge sharing, proactive problem-solving, and continuous improvement. Security-First Mindset: You'll work in an environment where cybersecurity is a top priority, supported by leadership and embraced across departments. Dynamic and Evolving: The role operates in a fast-paced environment where adaptability is essential. You'll encounter evolving threats, shifting technologies, and the need to respond quickly and effectively. Professional Development: Ongoing learning is encouraged through access to training, certifications, and internal resources that support your growth in cybersecurity. Modern Tools & Infrastructure: You'll work with enterprise-grade security tools and platforms and have opportunities to recommend and implement improvements to our technology stack. EEO Statement Danis is an Equal Opportunity Employer. Danis does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit and business need. Please, no agency calls. Unsolicited resumes from agencies will be considered property of Danis, with no obligation for fees. #LI-ONSITE

Required Experience * Monitor network resources for security issues. * Monitor a Security Information and Event Management (SIEM)system to enhance the overall cybersecurity of CHFS: Data Collection, Event Correlations, Incident Detection, Investigation and Analysis, Response and Mitigation, Tuning and Optimization, Compliance Monitoring * Investigate security breaches and other cybersecurity incidents. * Develop an audit to determine whether information systems are protected, controlled, and provide value to the organization. * Conduct audit follow-up to evaluate whether risks have been sufficiently addressed. * Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs. * Communicate audit progress, findings, results, and recommendations to stakeholders. * Document security breaches and assess the damage they cause. * Work with the security team to perform tests and uncover network vulnerabilities. * Fix detected vulnerabilities to maintain a high-security standard * Develop cabinet-wide best practices for IT security. * Help colleagues install security software and understand information security management. * Research security enhancements and make recommendations to management. * Stay up to date on information technology trends and security standards. * Maintain and update relevant system and process documentation and develop ad-hoc reports as needed. * Assist in the development of security tool requirements, trials, and evaluations, as well as security operations procedures and processes. * Provide off-hours support on an infrequent, but as-needed basis. * Work trouble tickets in the ticketing system * Conduct meetings and work closely with system owners and departmental leads in all business areas where ePHI and other confidential system data is found. * Assist with continuous monitoring activities documenting within the eGRC tool whether security and other related activities are consistently performed. * Perform various support activities for other projects including obtaining information and documentation to demonstrate policies, procedures, and operational processes that adhere to various regulations, policies, standards, and other compliance requirements. * Collaborate with OATS Departmental and other cross-agency staff to disseminate and engage appropriate OATS Security Teams for any new projects, tasks, and/or initiatives. * Lead and coordinate any special projects and/or tasks as directed by management. * Prepare reports for management. Preferred Education & Experience: Bachelor's degree in computer science, Software Engineering, or a related field (equivalent professional experience may be considered for substitution for the required degree on an exception basis). Candidates with one or more of the following certifications is a plus: * Offensive Security Certified Professional (OSCP) * Offensive Security Defensive Analysis (OSDA)* * Cybersecurity Analyst (CySA+) * CompTIA Security+ * CompTIA Advanced Security Practitioner (CASP+ * CompTIA Pen Test+ * Certified Network Defender (CND) * GIAC Security Essentials (GSEC) * System Security Certified Practitioner (SSCP) Knowledge, Skills & Abilities. This is a partial listing of the necessary knowledge, skills, and abilities required to perform the job successfully. It is not an exhaustive list. * Ability to set the tone for the organization and motivate management and team. * Understanding of information security regulations, including the Federal Information Security Management Act (FISMA), Federal Risk and Authorization Management Program (FedRAMP), ISO 27001, COBIT NIST, and ITIL. * Maintaining security, assessing and evaluating security, and doing security incident forensic work. Knowledge of vendors and their products including: * Experience with Government agencies, particularly the Department of Defense (DoD) on information security matters. Experience with Government Classified systems and the associated security requirements. * Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; and participating in professional organizations. * Proficiency in Microsoft Office Suite (Word, Excel, Outlook, etc.) * Innovative and creative mindset * Basic network security knowledge (general principles) * Excellent documentation and communication skills. * Ability to organize tasks into milestones and successfully execute to project completion. * Can work independently with little direct supervision. * General cyber-security understanding Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details. Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide. Employee Type: Contract Remote: Yes Location: Frankfort, KY, US Job Type: Date Posted: January 7, 2026 Pay Range: $35 - $43 per hour Similar Jobs * Information Security Analyst * Information Security Data Analyst * Information Systems Security Officer * Information Systems Analyst * Application Security Analyst

The Information Security Specialist supports the planning, implementation, and operation of StarPlus Energy's global and local security management systems. This position ensures compliance with international and Korean security regulations, establishes physical and IT infrastructure security systems, and coordinates with both corporate headquarters and Korean government authorities to prevent information leaks and respond to potential security threats. This position reports to the Information Security Manager. Roles & Responsibilities: Plan, develop, and operate corporate information security systems for facility and IT infrastructure protection Establish incident response procedures and maintain readiness against internal and external security threats Develop and operate the site's physical security management system, including access control, CCTV, and intrusion detection system Manage and oversee external security service providers (e.g., physical security guards, monitoring services, and system maintenance vendors) to sure proper performance and contract compliance Support vendor performance evaluations, documentation, and corrective actions when service issues arise Define and enforce information protection policies and procedures to ensure consistent implementation across the organization Establish and operate a security management framework for Korean National Core Technology (KNCT) compliance Assign protection grades, define and manage secure communication systems, and safeguard all data and documentation related to KNCT Coordinate and conduct security education and training for employees Develop and maintain incident response systems to address potential data or technology leakage Support internal and external security audits and inspections from Korean government and SDI Headquarters Perform security infrastructure vulnerability assessments and implement corrective actions as needed Prepare technical report, standard operating procedures (SOPs), and other documentation required for compliance and audit response Perform other position related duties as assigned

Resource will work as an Information Security Analyst responsible for auditing and monitoring systems containing confidential information. This position is also responsible for helping the organization manage its risks by monitoring the organization's IT systems for inefficiencies, inaccuracies, mismanagement, etc. Tasks will include assisting with the configuration of data, application, network, and IAAM logs; assisting with log reporting tools; and monitoring systems for security problems. The position participates in all aspects of the technology audit and monitoring including the planning, control analysis, testing, issue development, and reporting phases. This position will also participate in all federal and state audits against DCS technology systems. Employee works in an Information Technology Division of a State Agency, the Department of Child Services (DCS -IT) under the guidance of the Security Manager. The essential functions of this role are as follows: • Monitors and keep supervisor informed of status of information security and confidentiality conditions, including problem areas and recommended enhancement; • Interfaces with user customers to understand their security needs and implement procedures to accommodate them including training and assessment. • Assists with preparing for security audits (e.g. IRS, SSA, OCSE, FBI, SBOA) and remediating any findings; assists with creating and submitting reports relevant to security audits. • Develop information security policies and standards for protection of information systems in compliance with state and federal requirements (e.g. IRS, SSA, OCSE, FBI, IOT) and guidelines (e.g. NIST SP 800 -53). • Develops Standard Operating Procedures (SOP) for implementing security polices; • Recommends appropriate security safeguards to be included during development of new information technology systems and legacy systems; • Ensures maximum utilization of computer hardware and software features to secure automated systems and associated data; • Develops and implements procedures for use of information security management software; • Proposes information security software enhancements; • Performs periodic audits to assure security policies and standards are being followed and are effective. • Develops recommendations for enhancements and generates reports where necessary; • Keeps abreast of new laws and changes affecting privacy standards, network security, cloud security, remote access, and physical security; • Mentors and provides guidance to new or other staff as needed; • Performs related duties as assigned. • Assist on other task as assigned. Thorough knowledge of information security management tools, policies, and standards of information security procedures; • Thorough knowledge of state and federal legislation and regulatory laws pertaining to information system security and privacy; • Thorough knowledge of software vulnerabilities, vulnerabilities scanning tools, and vulnerabilities remediation; • Familiarity with domain structures, user authentication, and digital signatures; • Ability to develop and maintain information security standards; • Ability to understand and apply complex computer logic to work; • Ability to work effectively with a wide range of information technologists, including systems administrators, technical support, application development, end users and management; • Experience in assessing security needs of teams and assist in their security training. • Ability to communicate effectively both orally and in writing; • Ability to be a team member as well as a team leader depending on the situation; • Degree in information security or technology preferred; • Security certification preferred (e.g. CISSP). • Network Admin experience preferred. Supervisory Responsibilities/Direct Reports: This role does not provide direct supervision to direct reports. Required / Desired Skills Skill Required / Desired Amount of Experience To be effectively with wide range of information technologists, including systems administrators, technical support, application development, end users Required 3 Years Network Admin experience Required 3 Years Security certification (e.g. CISSP, CRISC) Required 3 Years Ability to develop and maintain information security standards; Required 1 Years Ability to understand and apply complex computer logic to work Required 1 Years Degree in information security or technology Required 1 Years Familiar with cybersecurity security framework (e.g. NIST, ISO, SOC 2, CIS, Cobit, etc.) Required Computer security compliance and auditing experience Required IRS, SSA computer security compliance and audit experience Required HIPAA experience Required

3M has a long-standing reputation as a company committed to innovation. We provide the freedom to explore and encourage curiosity and creativity. We gain new insight from diverse thinking, and take risks on new ideas. Here, you can apply your talent in bold ways that matter. : JOB DESCRIPTION: What You'll Do As a key member of the IT Security Compliance team, reporting to the Team Lead - Security Compliance, you will: * Execute day-to-day cybersecurity risk, compliance, and assurance activities. * Support global cybersecurity certifications including ISO 27001 and ISO 27017, evaluating control effectiveness and reviewing evidence of controls. * Assist in achieving ISO 27001 certification by identifying risks and implementing controls. * Maintain and continuously improve 3M's Information Security Management System (ISMS). * Create, update, and manage ISMS documentation, reports, and audit records. * Act as Subject Matter Expert (SME) for PCI DSS, advising stakeholders, conducting internal assessments, and driving PCI DSS v4.0.1 reviews, gap assessments, and control evaluations. * Provide high-level knowledge support on other frameworks and standards including NIST, SOX, SWIFT, and TISAX. * Deliver timely written reports, metrics, and updates to cybersecurity management. * Collaborate and communicate effectively across teams and with stakeholders. What We're Looking For * Education: Bachelor's degree with a minimum of 4 years of experience in Information Security, GRC, or related roles. * Certifications (preferred): ISO 27001 Lead Auditor/Implementer, PCI ISA, CISA, CISM, CRISC, or equivalent. * Skills & Knowledge: * Strong knowledge of information security risk standards, frameworks, and methodologies. * Experience working with GRC tools such as OneTrust, Archer (or similar). * Excellent written and verbal communication skills. * Ability to manage multiple priorities and adapt to evolving business needs. Learn more about 3M's creative solutions to the world's problems at ********** or on Instagram, Facebook, and LinkedIn @3M. Safety is a core value at 3M. All employees are expected to contribute to a strong Environmental Health and Safety (EHS) culture by following safety policies, identifying hazards, and engaging in continuous improvement. Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly. 3M Global Terms of Use and Privacy Statement Carefully read these Terms of Use before using this website. Your access to and use of this website and application for a job at 3M are conditioned on your acceptance and compliance with these terms. Please access the linked document by clicking here, select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Job Description . Must live in the Indianapolis area. Pay: $42.70/hour In this role you will: • Monitor and keep supervisor informed of status of information security and confidentiality conditions, including problem areas and recommended enhancement • Interface with user customers to understand their security needs and implement procedures to accommodate them including training and assessment • Assist with preparing for security audits (e.g. IRS, SSA, OCSE, FBI, SBOA) and remediating any findings; assist with creating and submitting reports relevant to security audits • Develop information security policies and standards for protection of information systems in compliance with state and federal requirements (e.g. IRS, SSA, OCSE, FBI, IOT) and guidelines (e.g. NIST SP 800-53) • Develop Standard Operating Procedures (SOP) for implementing security polices • Recommend appropriate security safeguards to be included during development of new information technology systems and legacy systems • Ensure maximum utilization of computer hardware and software features to secure automated systems and associated data • Develop and implement procedures for use of information security management software • Propose information security software enhancements • Perform periodic audits to assure security policies and standards are being followed and are effective • Develop recommendations for enhancements and generates reports where necessary • Keep abreast of new laws and changes affecting privacy standards, network security, cloud security, remote access, and physical security

Title: Information Security SME/Developer with .NET development Duration : 5 Months contract (High possibility of Extension) Interview Type: Both iLinc Web Cam and In Person Interview Skills Required Experience working in Microsoft Identity Integration Server (MIIS) 2003 Required 2 Years Experience with Identity Lifecycle Manager (ILM) 2007 Required 2 Years Experience with Forefront Identity Manager (FIM) 2010 including design and implementation Required 2 Years Experience and strong development skills in the MS Metadirectory Services Namespace in C# Required 2 Years .NET development experience Required 5 Years Thanks Naimesh Solanki Sr. Technical Recruiter Phone: ************ x 6578 Qualifications Experience working in Microsoft Identity Integration Server (MIIS) 2003 Required 2 Years Experience with Identity Lifecycle Manager (ILM) 2007 Required 2 Years Experience with Forefront Identity Manager (FIM) 2010 including design and implementation Required 2 Years Experience and strong development skills in the MS Metadirectory Services Namespace in C# Required 2 Years Additional Information All your information will be kept confidential according to EEO guidelines.

Join a team dedicated to making a real difference in the lives of our community. Our Mission at Friendship Village of Dublin is “To care for, engage, and inspire our community to reimagine and maximize quality of life at every age” . At Friendship Village our Values Drive us to RISE to any Occasion Values: Respect Integrity and Innovation Stewardship Excellence We are seeking a Information Security & Systems Analyst to contribute to our mission by: The Entry to Mid-Level System Analyst performs security, compliance and administration of systems and is responsible for the design, installation and management, configuration and reliable operation of security/compliance mechanisms, systems and policies that protect the computer network and information systems against cyber events. Participate in research and development to continuously improve and keep up with the IT business needs of the organization. Actively resolve problems and issues with computer and server systems to limit work disruptions within the company. Essential Duties: Design, install and manage security mechanisms that protect the computer network and information systems against threats including but not limited to hackers, breaches, viruses and spyware. Educate and provide awareness to users regarding security policies and procedures as well as threats. Develop and maintain security policies and guidelines around information classification, system integrity, incident response and user access. Monitor, audit and review systems for and identify violations or attempted violations of security procedures, processes and access. Plan and implement appropriate measures to safeguard data from accidental or unauthorized modification, destruction or disclosure. Respond to incidents, investigate potential incidents and recommend enhancements to close potential security gaps and serve as a backup to other members of the Technology department. Responsible for post breach/data loss activities including but not limited preservation of evidence, review of data to determine scope and support of legal and other processes. Participate in supporting efforts, making sure all networks, systems, applications, servers, technology tools and related equipment problems are resolved in a timely manner with limited disruptions. Monitor performance and maintain systems according to requirements. Ensure security through access controls, backups and firewalls. Recommend when to upgrade systems with new releases and models. Timely completion of IT Projects. All other duties as assigned. Information Security & Systems Analyst Responsibilities: Safeguard and help prevent cyber-attacks: Implement industry best practices for cyber security. Be up to date about the latest security trends and newest security technology. Assist other technical support staff in identifying and implementing appropriate security safeguards, including patch applications and anti-malware strategies. Operate, administer and monitor network and host-based intrusion detection/prevention systems. Ensure ongoing compliance with industry standards for information security: Participating in risk assessments to identify potential security threats Conducting employee training on security policies and responsibilities Auditing IT systems to ensure compliance with regulations. Reporting security breaches to management for prompt resolution. Collaborating with vendors to ensure proper data handling security measures. Monitoring compliance with state and federal data privacy and security regulations. Developing policies and procedures for maintaining data security. Monitor and report on devices and networks including: Maintain, configure, secure and provide reliable operation of computers systems, network servers, and virtualization. Network switch and firewall health Internet traffic and usage metrics Design and install network devices and systems (including maintaining current software versions on all network equipment) Demonstrates ability to independently troubleshoot and diagnose network, telephone, Internet, Wi-Fi, network. Assists with work order requests: Helps the IT Team meet service levels of quality and responsiveness: Satisfaction goal of 90% 2-business-day response time (resolution time dependent on issue SLA) Creates, updates and closes tickets in incident management system. Qualifications: • Bachelor's degree in computer science, programming, or a related field or equivalent industry experience. • 2-4 Years of Security or Systems Analyst experience REQUIRED NON TECHNICAL QUALIFICATIONS • Must have the ability to work under pressure, without constant direction and to react in a positive and spontaneous manner to the needs of residents, staff, visitors, and vendors. • Must be able to independently handle multiple simultaneous tasks, following specific instructions carefully and general instructions completely. • Excellent communication skills • Resourcefulness and problem-solving aptitude • Self-starter mentality willing to make constant improvements in the technical support process. • Takes pride and ownership of the support role. • Excellent customer service and communication skills • Ability to assess resident and staff complaints and resolve disputes in a friendly professional manner. REQUIRED TECHNICAL QULAIFICATION • Strong understanding of cybersecurity tools, concepts and best practices. • Knowledge of information security frameworks (e.g.,HIPAA, NIST) and relevant regulations. • Knowledge of Windows Operating Systems - Desktop (10 and 11) and Server (2016+) • Windows desktop device configuration, management, and operation. • IOS Device configuration, management, and operation. • Networking Concepts and basic troubleshooting (DNS, DHCP, IP Addressing). • Switching and Routing Concepts (basic troubleshooting and configuration). • Meraki Network and Camera Equipment • VOIP/PBX • Demonstrated working in a helpdesk ticketing environment.