Cyber security analyst jobs in Melbourne, FL

Lockheed Martin Space (LMS) is seeking a Classified Cybersecurity Information Systems Security Officer (ISSO) supporting the Fleet Ballistic Missile (FBM) program. This position is located in Cape Canaveral, FL. The selected candidate will conduct daily cybersecurity operations, to include auditing, creating information system authorization packages, and implementing cybersecurity requirements for both classified and unclassified information systems. The position requires a current Secret clearance and the ability to obtain a Top Secret security clearance. Key Responsibilities of this role include: • Carry out technical administration of an Information System in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF). • Upkeep, monitor, analyze, and respond to network and security events. • Document compliance actions within the approved compliance tracking system or develop a plan of actions and milestones (POA&M) with the Information Systems Security Manager (ISSM) to address non-compliance in the allotted time frame. • Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan. • Operate and maintain ACAS laptops and servers utilizing Tenable Security Center and Nessus Security scanner. • Audit various isolated and networked systems using vulnerability scanning and STIG analysis tools. Basic Qualifications • DoD Secret government security clearance with an investigation within the last 5 years and the ability to obtain and maintain a Top Secret clearance. • Knowledge of system hardening via implementation of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs). • Knowledge of security scanning tools such as SCAP, Evaluate-STIG and Tenable. • Appropriate DoD 8570 IAT II Certification. • Information System auditing experience. Desired skills • Experience with industry standard Information Assurance tools such as Splunk, Fortify, or SonarQube. • Proficiency in multiple platforms to include Windows, Linux/Unix, and Networking equipment. • Proficient writing technical documentation. • Experience with Navy Fleet Ballistic Missile (FBM) program. • Knowledge of NIST SP 800-37 Risk Management Framework (RMF), NIST SP 800-53 Security and Privacy Controls requirements, and NIST 800-171 Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations. • Knowledge of and experience developing, reviewing and maintaining RMF artifacts. Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics. The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration. * At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work. With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility. If this sounds like a culture you connect with, you're invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications. Other Important Information By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings. Ability to work remotely Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility. Work Schedule Information Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits. Security Clearance Information This position requires a government security clearance, you must be a US Citizen for consideration. Pay Rate: The annual base salary range for this position in California, Massachusetts, and New York (excluding most major metropolitan areas), Colorado, Hawaii, Illinois, Maryland, Minnesota, New Jersey, Vermont, Washington or Washington DC is $76,500 - $134,895. For states not referenced above, the salary range for this position will reflect the candidate's final work location. Please note that the salary information is a general guideline only. Lockheed Martin considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer. Benefits offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays. (Washington state applicants only) Non-represented full-time employees: accrue at least 10 hours per month of Paid Time Off (PTO) to be used for incidental absences and other reasons; receive at least 90 hours for holidays. Represented full time employees accrue 6.67 hours of Vacation per month; accrue up to 52 hours of sick leave annually; receive at least 96 hours for holidays. PTO, Vacation, sick leave, and holiday hours are prorated based on start date during the calendar year. This position is incentive plan eligible. Pay Rate: The annual base salary range for this position in most major metropolitan areas in California, Massachusetts, and New York is $88,000 - $152,490. For states not referenced above, the salary range for this position will reflect the candidate's final work location. Please note that the salary information is a general guideline only. Lockheed Martin considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer. Benefits offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays. This position is incentive plan eligible.

By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide. Cole Engineering Services (CESI), a By Light company, is recognized as a premier provider of modeling and simulation (M&S) training solutions to the Federal Government and industry. Since 2004, CESI has been at the forefront of developing, maintaining, and integrating simulation-based training, serious gaming, technical services, training and other support in live, virtual, constructive, and gaming (LVCG) domains. CESI also designs, builds and runs infrastructure, platforms, applications and processes that enable cyber training for the integrated multi-domain force. Our vision is to become a worldwide full spectrum LVCG and cyber training/analysis developer, integrator and services provider. Position Overview ***This position is 100% on-site located at our facility in Orlando, FL. Provide cybersecurity engineering support to DoD software application development activities through cybersecurity requirements definition, process enhancements and application security testing activities. Responsibilities Define cybersecurity requirements for software applications to meet program requirements and objectives. Provide recommendations to incorporate security engineering practices throughout the system development lifecycle. Perform assessments of cybersecurity requirement compliance using manual and automated software analysis tools and methods and present them to the customer as necessary. Perform assessments using adversarial tools, techniques, and methods against network-enabled applications and web applications to identify weaknesses, gaps, and vulnerabilities. Propose mitigation and countermeasures to reduce or eliminate software-level threats. Directly interface with the software development team to ensure software security engineering principles are applied throughout the system development lifecycle. An understanding of DoD acquisition processes and relevant cyber security processes, such as the Risk Management Framework (RMF) preferred. Required Experience/Qualifications Experience in software engineering, development and/or systems engineering throughout all phases of the system development lifecycle. Systems administration skills, experience with Linux, security settings, services, hardening of systems (STIGs, security policies); any shell scripting or Python a plus. System troubleshooting, recovery, and advisory in the event of unexpected adverse configuration changes. Knowledge of threat assessment and solutions to mitigate or eliminate such threats. Experience with offensive security tools and adversarial techniques and methods. Experience implementing software application solutions to comply with NIST SP 800-53 security controls. Compliance and vulnerability reporting and similar formal technical documentation skills. Experience working with Cyber Range Environments. Understanding of Risk and Compliance Frameworks. Bachelor's degree in computer science, Engineering, Cybersecurity, IT or related field required. Professional and / or military experience may be substituted in lieu of degree. Five years of work experience preferred. Security+ or SSCP certification required. Additional Certifications are a definite plus. This position requires certifications necessary to meet IAT Level II in accordance with DoD 8570 baseline certifications. IAT Level II certification is required immediately upon hire. Current certification status will be maintained by obtaining continuing education as specified by the certification authority. Special Requirements/Security Clearance Please note that pursuant to a government contract, this specific position requires U. S. Citizenship status with ability to obtain a SECRET to TOP SECRET security clearance. Security Clearance requirements will be specified in the Government's Task Order. This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. The above is intended to describe the general contents of and requirements for the performance of this job. Benefits Overview CESI recognizes that our strength is our people. We support every employee as an individual to build strong teams across the enterprise. Our benefit package includes: Medical, Dental & Vision Coverage Wellness Program 401(k) Matching Disability (Short Term & Long Term) Employee Assistance Program Life Insurance Education & Training Generous Leave Policy (11 Federal Holidays, PTO, Military Leave, Bereavement and Jury Duty) CESI is committed to principles of inclusion and equal employment opportunity. We foster a non-discriminatory, professional work environment for all our teams. We do not discriminate based on race, color, religion, sex, pregnancy, sexual orientation, gender identity, genetic information, national origin, age, marital status, disability, or veteran status.

Information System Security Officer Kegman Inc. is a Woman-Owned/Service-Disabled Veteran-Owned Small Business headquartered in Melbourne FL that provides engineering and technical support services to U.S. Government clients. We are seeking an Information System Security Officer (ISSO) to join our team at Patrick Space Force Base in Melbourne, FL. NOTE: This is not a remote/telework job. This job requires the selected applicant to have an active U.S. Government-issued security clearance at time of hire and, therefore, requires U.S. citizenship. The ISSO will be involved in all aspects of cybersecurity operations and will partner with program/site leads as well as government staff and mission partners to maintain an effective information security program. This position will document, implement, and assess security controls to perform system monitoring and compliance assessment activities. In addition, this ISSO will provide Risk Management Framework (RMF) support. Responsibilities Work as part of an integrated team to develop and maintain RMF body of evidence documentation (example: System Security Plan, Security Controls Traceability Matrix, Plan of Action and Milestones, ATO's) using Microsoft products such as Word, Excel, PowerPoint, and Visio. Maintain repositories of all body of evidence documentation for systems under your purview and ensure they are accessible only to properly authorized individuals. Develop and execute security control assessment procedures to verify conformance with control requirements as part of ongoing continuous monitoring and authorization assessment activities. Work in close coordination with system administrators and other cyber team members to ensure systems are operated, maintained, and disposed of in accordance with applicable security policies and procedures and notify the ISSM when changes occur that might impact system authorization posture. Support the CISO, PM, ISSM or ISO in maintaining current authorization to operate, and approval to connect, and in implementing corrective actions identified in the plan of action and milestones. Coordinates, with the CISO, PM, ISSM and AO staffs, development of an IS Configuration Management strategy and monitor any proposed or actual changes to the system and its environment. Ensure all security-related vulnerabilities and deficiencies are documented in the Plan of Action and Milestones (POA&M). Ensure integration of cybersecurity into, and throughout the lifecycle of the IT, on behalf of the ISSM and ISO. Ensure the development and implementation of an effective information security education, training, and awareness program. Ensure configuration management policies and procedures for authorizing use of hardware/software on a system are followed and coordinate any additions, changes or modifications to hardware, software, or firmware with the ISSO/ISSM prior to the addition, change or modification. Ensure software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides (STIG)/security requirement guides). Reports security incidents or vulnerabilities to the CISO/ISSM/wing cybersecurity office according to AFI 17-203, Cyber Incident Handling. Basic Qualifications Experience working in information assurance or cybersecurity roles supporting classified DoD environments Working knowledge of NIST 800-53 controls and RMF Experience analyzing and interpreting outputs of various endpoint security, vulnerability, and enumeration tools (example: Tenable Nessus, Security Center, SolarWinds, EndPoint Security Solutions, Vulnerator, SCAP Compliance Checker) Preferred Qualifications Strong interpersonal and written/oral communication skills to coordinate with program/site leads as well as government staff and mission partners Experience working on/with Government contracts Detail-oriented team member who can consistently meet deadlines and is able to work independently as needed Able to multi-task and work with a diverse work group of vendors, executive managers, subcontractors, consultants, and other professionals. Education Bachelor's degree in Cybersecurity or other related field and 3+ years of experience, or Master's degree Or DoD 8570 IAM Level I (Security+) or higher baseline certification (CISSP preferred) OTHER: U.S. citizenship required. Must pass a pre-employment drug test. Must have a fully adjudicated (not an interim) U.S. Government-issued security clearance at time of hire. Kegman Inc. is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Kegman will abide by the requirements of 41 CFR 60741.5(a). This regulation prohibits discrimination against qualified individuals on the basis of disability and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified individuals with disabilities. Please be aware many of our positions require an active security clearance. Security clearances are be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment that requires a security clearance will be subject to government security investigation(s) and must meet and maintain eligibility requirements for access to classified information. By submitting your résumé for this position, you understand and agree that Kegman may share your résumé, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions. Kegman maintains a drug-free workplace and performs pre-employment substance abuse testing where permitted by law.

Job DescriptionInformation System Security Officer Kegman Inc. is a Woman-Owned/Service-Disabled Veteran-Owned Small Business headquartered in Melbourne FL that provides engineering and technical support services to U.S. Government clients. We are seeking an Information System Security Officer (ISSO) to join our team at Patrick Space Force Base in Melbourne, FL. NOTE: This is not a remote/telework job. This job requires the selected applicant to have an active U.S. Government-issued security clearance at time of hire and, therefore, requires U.S. citizenship. The ISSO will be involved in all aspects of cybersecurity operations and will partner with program/site leads as well as government staff and mission partners to maintain an effective information security program. This position will document, implement, and assess security controls to perform system monitoring and compliance assessment activities. In addition, this ISSO will provide Risk Management Framework (RMF) support. Responsibilities Work as part of an integrated team to develop and maintain RMF body of evidence documentation (example: System Security Plan, Security Controls Traceability Matrix, Plan of Action and Milestones, ATO's) using Microsoft products such as Word, Excel, PowerPoint, and Visio. Maintain repositories of all body of evidence documentation for systems under your purview and ensure they are accessible only to properly authorized individuals. Develop and execute security control assessment procedures to verify conformance with control requirements as part of ongoing continuous monitoring and authorization assessment activities. Work in close coordination with system administrators and other cyber team members to ensure systems are operated, maintained, and disposed of in accordance with applicable security policies and procedures and notify the ISSM when changes occur that might impact system authorization posture. Support the CISO, PM, ISSM or ISO in maintaining current authorization to operate, and approval to connect, and in implementing corrective actions identified in the plan of action and milestones. Coordinates, with the CISO, PM, ISSM and AO staffs, development of an IS Configuration Management strategy and monitor any proposed or actual changes to the system and its environment. Ensure all security-related vulnerabilities and deficiencies are documented in the Plan of Action and Milestones (POA&M). Ensure integration of cybersecurity into, and throughout the lifecycle of the IT, on behalf of the ISSM and ISO. Ensure the development and implementation of an effective information security education, training, and awareness program. Ensure configuration management policies and procedures for authorizing use of hardware/software on a system are followed and coordinate any additions, changes or modifications to hardware, software, or firmware with the ISSO/ISSM prior to the addition, change or modification. Ensure software, hardware, and firmware complies with appropriate security configuration guidelines (e.g., security technical implementation guides (STIG)/security requirement guides). Reports security incidents or vulnerabilities to the CISO/ISSM/wing cybersecurity office according to AFI 17-203, Cyber Incident Handling. Basic Qualifications Experience working in information assurance or cybersecurity roles supporting classified DoD environments Working knowledge of NIST 800-53 controls and RMF Experience analyzing and interpreting outputs of various endpoint security, vulnerability, and enumeration tools (example: Tenable Nessus, Security Center, SolarWinds, EndPoint Security Solutions, Vulnerator, SCAP Compliance Checker) Preferred Qualifications Strong interpersonal and written/oral communication skills to coordinate with program/site leads as well as government staff and mission partners Experience working on/with Government contracts Detail-oriented team member who can consistently meet deadlines and is able to work independently as needed Able to multi-task and work with a diverse work group of vendors, executive managers, subcontractors, consultants, and other professionals. Education Bachelor's degree in Cybersecurity or other related field and 3+ years of experience, or Master's degree Or DoD 8570 IAM Level I (Security+) or higher baseline certification (CISSP preferred) OTHER: U.S. citizenship required. Must pass a pre-employment drug test. Must have a fully adjudicated (not an interim) U.S. Government-issued security clearance at time of hire. Kegman Inc. is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law. Kegman will abide by the requirements of 41 CFR 60741.5(a). This regulation prohibits discrimination against qualified individuals on the basis of disability and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified individuals with disabilities. Please be aware many of our positions require an active security clearance. Security clearances are be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment that requires a security clearance will be subject to government security investigation(s) and must meet and maintain eligibility requirements for access to classified information. By submitting your résumé for this position, you understand and agree that Kegman may share your résumé, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions. Kegman maintains a drug-free workplace and performs pre-employment substance abuse testing where permitted by law. Powered by JazzHR ZCZlLO6KZF

By Light Professional IT Services LLC readies warfighters and federal agencies with technology and systems engineered to connect, protect, and prepare individuals and teams for whatever comes next. Headquartered in McLean, VA, By Light supports defense, civilian, and commercial IT customers worldwide. Cole Engineering Services (CESI), a By Light company, is recognized as a premier provider of modeling and simulation (M&S) training solutions to the Federal Government and industry. Since 2004, CESI has been at the forefront of developing, maintaining, and integrating simulation-based training, serious gaming, technical services, training and other support in live, virtual, constructive, and gaming (LVCG) domains. CESI also designs, builds and runs infrastructure, platforms, applications and processes that enable cyber training for the integrated multi-domain force. Our vision is to become a worldwide full spectrum LVCG and cyber training/analysis developer, integrator and services provider. Position Overview * This position is 100% on-site located at our facility in Orlando, FL. Provide cybersecurity engineering support to DoD software application development activities through cybersecurity requirements definition, process enhancements and application security testing activities. Responsibilities * Define cybersecurity requirements for software applications to meet program requirements and objectives. * Provide recommendations to incorporate security engineering practices throughout the system development lifecycle. * Perform assessments of cybersecurity requirement compliance using manual and automated software analysis tools and methods and present them to the customer as necessary. * Perform assessments using adversarial tools, techniques, and methods against network-enabled applications and web applications to identify weaknesses, gaps, and vulnerabilities. * Propose mitigation and countermeasures to reduce or eliminate software-level threats. * Directly interface with the software development team to ensure software security engineering principles are applied throughout the system development lifecycle. * An understanding of DoD acquisition processes and relevant cyber security processes, such as the Risk Management Framework (RMF) preferred. Required Experience/Qualifications * Experience in software engineering, development and/or systems engineering throughout all phases of the system development lifecycle. * Systems administration skills, experience with Linux, security settings, services, hardening of systems (STIGs, security policies); any shell scripting or Python a plus. * System troubleshooting, recovery, and advisory in the event of unexpected adverse configuration changes. * Knowledge of threat assessment and solutions to mitigate or eliminate such threats. * Experience with offensive security tools and adversarial techniques and methods. * Experience implementing software application solutions to comply with NIST SP 800-53 security controls. * Compliance and vulnerability reporting and similar formal technical documentation skills. * Experience working with Cyber Range Environments. * Understanding of Risk and Compliance Frameworks. * Bachelor's degree in computer science, Engineering, Cybersecurity, IT or related field required. Professional and / or military experience may be substituted in lieu of degree. * Five years of work experience preferred. Security+ or SSCP certification required. Additional Certifications are a definite plus. * This position requires certifications necessary to meet IAT Level II in accordance with DoD 8570 baseline certifications. IAT Level II certification is required immediately upon hire. * Current certification status will be maintained by obtaining continuing education as specified by the certification authority. Special Requirements/Security Clearance Please note that pursuant to a government contract, this specific position requires U. S. Citizenship status with ability to obtain a SECRET to TOP SECRET security clearance. Security Clearance requirements will be specified in the Government's Task Order. This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee. The above is intended to describe the general contents of and requirements for the performance of this job. Benefits Overview CESI recognizes that our strength is our people. We support every employee as an individual to build strong teams across the enterprise. Our benefit package includes: * Medical, Dental & Vision Coverage * Wellness Program * 401(k) Matching * Disability (Short Term & Long Term) * Employee Assistance Program * Life Insurance * Education & Training * Generous Leave Policy (11 Federal Holidays, PTO, Military Leave, Bereavement and Jury Duty) CESI is committed to principles of inclusion and equal employment opportunity. We foster a non-discriminatory, professional work environment for all our teams. We do not discriminate based on race, color, religion, sex, pregnancy, sexual orientation, gender identity, genetic information, national origin, age, marital status, disability, or veteran status.

The Cybersecurity Specialist will be responsible to implement and execute risk management processes by utilizing National Institute of Standards and Technology (NIST) 800 series special publications, Federal Information Processing Standards (FIPS), and Federal Information Security Modernization Act (FISMA) compliance frameworks. The Cybersecurity Specialist will work in a collaborative unified team environment to monitor, evaluate, and manage the risk posture of systems' authorization boundary to safeguard information systems by leveraging robust understanding of NIST Risk Management Framework (RMF). This position will involve working closely with the organization's IT teams to identify vulnerabilities, conduct security control assessments, perform risk analysis and assessments, develop security strategies for mitigating and resolving findings, provide cybersecurity compliance guidance to IT teams and ensure systems remain compliant with federal standards and regulations. Key Responsibilities: * Cybersecurity support managing Authorization Packages (AP) to include Privacy Analysis, System Categorizations, Risk Assessment Reports (RAR), System Security Plan (SSP), and general Assessment and Authorization (A&A) oversight to obtain or maintain a system's Authorization to Operate (ATO) * Focal point for enterprise SSPs managing the security posture by supporting Information System Owners (ISO) and Information System Security Officials (ISSO) with RMF responsibilities * Develop and maintain accurate and effective Plans of Action & Milestones (POA&Ms) as part of continuous monitoring for implementing cybersecurity improvements * Collaborate with Information System Administrators (ISA) and various Engineering teams to integrate security measures into new and existing information systems and major applications * Stay up to date on general information technology innovations and emerging threats and security technologies to continuously improve security posture. Required Qualifications: * Bachelor's or Master's degree in Cybersecurity, Management of Information Technology, or a related field. * 10 years of experience in information security or related roles. * Experience with networking ports and protocols, architecture of networked and standalone systems, functionality of various operating systems, cloud computing environments and common security tools. * Ability to develop information system topology diagrams and Concept of Operations documentation * Knowledge with federal standards such as NIST, FISMA and FIPS * Exposure to FedRAMP program and standards * Experience with Security Control Audits * Proficient with MS Office * Experience with IT projects in a traditional waterfall or Agile framework * Relevant certifications (e.g., CompTIA Network+, Security+, CySA+) are a plus. * Position is hybrid remote, and candidate must be within commute distance to Kennedy Space Center. Hybrid remote status is at the discretion of the customer and may change to on-premises support If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares. Original Posting: November 21, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range: Pay Range $85,150.00 - $153,925.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Department Description: At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance these exciting experiences. The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence. The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to: Secure the Magic by protecting information systems and platforms. Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests. Strengthen the business through optimizing execution, application, and technology used to protect the Company. Innovate by investing in core capabilities to enhance operational efficiency. Team Description: The Security Research and Testing (SRT) team specializes in simulating real-world cyberattacks to uncover vulnerabilities and evaluate the effectiveness of Disney Experiences (DX) and Disney Corporate (Corp) technology systems' security measures. By mimicking tactics used by malicious actors, the SRT team provides critical insights into potential weaknesses. They work closely with both technology and business teams across DX and Corp to analyze findings, strengthen security policies, and recommend targeted improvements to address gaps in infrastructure, processes, and training, ensuring a robust and resilient security posture. Responsibilities of the Role: We are hiring! We need a Security Engineer - Security Assurance to join our Disney Experience (DX) Security Research & Testing (SRT) Team! Responsibilities Evaluate system and application configurations to identify security misconfigurations. Conduct compliance checks against security standards: CIS Benchmarks, NIST, and TWDC policies. Review firewall, server, and endpoint configurations to ensure alignment with security policies. Analyze configurations to identify potential vulnerabilities such as open ports, weak encryption, or default credentials. Use automated tools and scripts to detect misconfigurations and vulnerabilities. Perform manual and automated testing of security settings on systems, applications, and networks. Simulate attacks or misuses to test the resilience of configurations. Document findings in detailed reports, including identified issues, potential impacts, and remediation recommendations. Communicate results to stakeholders, including technical and non-technical audiences. Provide recommendations to address misconfigurations and improve security posture. Work with IT teams to implement fixes and validate corrective actions. Assist in developing and maintaining security configuration baselines and standards. Proactively recommend adjustments to configurations to mitigate risks. Must Haves: Minimum of 3+ years of related IT security testing experience such as Penetration Testing, Adversarial Testing, Red Team Testing Experience conducting comprehensive cyber security testing of technology solutions within large-scale, complex, and dynamic IT environments. Proficient in system hardening testing for operating systems (Windows, Linux, mac OS). Experience with Cloud Solutions (Azure, GCP, AWS) and Software as a Service (SaaS) solution. Knowledge of network devices (routers, switches, firewalls) and their secure configurations, and configuration management & auditing tools. Understanding of security frameworks and standards (NIST, CIS, etc.) Nice to Haves: OffSec or other advanced security testing certifications Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.) Security accreditation (e.g., CISSP, GCIH, CISM, GSEC, CEH, etc.) Education: Bachelor's degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience #DISNEYTECH Job Posting Segment: Enterprise Technology Job Posting Primary Business: Corporate Global Information Security Primary Job Posting Category: Security Engineering Employment Type: Full time Primary City, State, Region, Postal Code: Orlando, FL, USA Alternate City, State, Region, Postal Code: Date Posted: 2025-11-19

ThreatLocker is a leader in endpoint protection technologies, providing enterprise-level cybersecurity tools to improve the security of servers and endpoints. The ThreatLocker platform with Application Allowlisting, Ringfencing™, Storage Control, Elevation Control, Endpoint Network Control, Configuration Management, and Operational Alert solutions are leading the cybersecurity market toward a more secure approach of blocking the exploits of application vulnerabilities. POSITION OVERVIEW As a Security Analyst specializing in endpoint protection, you will be essential in defending client and internal systems from evolving cyber threats. Duties involve log analysis in response to alerts, classifying suspicious activity, handling alert queues, and providing detailed threat briefings to affected customers. Thrive in high-pressure settings, actively identifying and mitigating a wide range of cyber threats within client environments. Conduct advanced cybersecurity investigations leveraging big data analytics to identify and mitigate complex threats. Clearly communicate investigation results and remediation actions to customers, ensuring transparency around known threats. Manage the end-to-end lifecycle of ThreatLocker Detect incidents, including detection, investigation, triage, and coordinated response actions. Continuously stay informed on emerging cybersecurity threats, tactics, and techniques to enhance threat detection and risk mitigation capabilities. REQUIRED QUALIFICATIONS CompTIA Security+ CompTIA Network+; preferred CompTIA CYSA+; preferred Security Blue Team Level 1; preferred Familiarity with SIEM (Security Information and Event Management) systems. Strong analytical and problem-solving skills. Experience working with the Windows Operating System. Ability to adapt and thrive in a fast-paced environment. Experience working with the Windows Operating System. Ability to adapt and thrive in a fast-paced environment. Proficiency in scripting languages such as PowerShell and Batch. Familiarity with the MITRE ATT&CK framework. WORKING CONDITIONS The duties described below are representative of those encountered while performing the essential functions of this position. If necessary, reasonable accommodation may be requested and will be evaluated for its relationship to the essential functions that must be performed. Job will generally be performed in an office environment but may require travel to visit company offices and/or property locations. While performing duties of this job, would occasionally require to stand, walk, sit, reach with hands and arms, climb or balance, stoop or kneel, talk and hear, and use fingers and hands to feel objects and tools. Must occasionally lift and/or move up to 25 pounds. Specific vision abilities required include close vision, distance vision, depth perceptions, and the ability to adjust focus A background check and drug/substance screening are required after a conditional offer. Employment will proceed only upon receiving clear results from both. ThreatLocker also conducts randomized drug and substance testing approximately every 60 days, in line with the same screening standards.

Seneca Global Services, LLC is part of the Seneca Nation Group (SNG) portfolio of companies. SNG is Seneca Holdings' federal government contracting business that meets the mission-critical needs of federal civilian, defense, and intelligence community customers. Our portfolio comprises multiple subsidiaries that participate in the Small Business Administration 8(a) program. To learn more about SNG, visit the website and follow us on LinkedIn. At Seneca, our team of talented individuals is what makes us successful. To support our team, we provide a balanced mix of benefits and programs. Your total rewards package includes competitive pay, benefits, and perks, flexible work-life balance, professional development opportunities, and performance and recognition programs. We offer a comprehensive benefits package that includes medical, dental, vision, life, and disability, voluntary benefit programs (critical illness, hospital, and accident), health savings and flexible spending accounts, and retirement 401K plan. One of our fundamental principles at Seneca Holdings is to offer competitive health and welfare benefits to our team members, providing coverage and care for you and your family. Full-time employees working at least 30 hours a week on a regular basis are eligible to participate in our benefits and paid leave programs. We pride ourselves on our collaborative work environment and culture, which embraces our mission of providing financial and non-financial benefits back to the members of the Seneca Nation. Seneca Global Services, LLC seeks a highly motivated Information Systems Security Officer (ISSO) to join our Orlando-based technical team supporting the National Cyber Range Complex (NCRC). The NCRC plays a critical role in enhancing the resilience of DoD systems and the effectiveness of U.S. cyber operations by delivering full-spectrum test and evaluation, workforce training, and mission rehearsal events. As the NCRC continues to evolve as a best-of-breed cyber range, the ISSO will contribute directly to ensuring secure facilities, tools, and expertise for some of the most demanding test, training, and mission rehearsal requirements in the Department of Defense. As a key member of the cybersecurity team, the ISSO will act as a security liaison across multiple domains-including physical, personnel, information, cyber, operations, Anti-Terrorism/Force Protection, law enforcement, communications, and technical security-while working closely with the Information Systems Security Manager (ISSM) to ensure compliance, readiness, and secure mission execution. Responsibilities include, but are not limited to: Provide direct support to the ISSM on activities such as Assessment & Authorization (A&A), execution of Continuous Monitoring Plans, and facilitation of Security Controls Assessments. Administer and monitor Risk Management Framework (RMF) steps and activities throughout the system lifecycle to maintain an appropriate security posture. Implement cybersecurity programs, policies, and procedures for assigned systems. Maintain working knowledge of current and upcoming events, system functions, policies, safeguards, and security measures. Serve as a subject matter expert (SME) in DoD, DIA, and RMF core concepts and processes. Coordinate with applicable stakeholders across the enterprise to ensure security compliance and readiness. Maintain Authorization to Operate (ATO) packages for assigned systems within the designated A&A System of Record (e.g., eMASS, XACTA 360, Keystone). Review and analyze audit logs (e.g., Splunk, Windows EVTX, Linux syslogs) to detect potential anomalies or threats. Perform validation checks to ensure CM-approved software and antivirus definitions are installed on assigned systems. Conduct compliance/vulnerability scans and manual checks to identify and mitigate risks. Execute ISSO-specific tasks as outlined in program security plans. Implement account management processes, issuing credentials, and enforcing least-privilege principles. Deliver cybersecurity education, training, and awareness to system users as required by the ISSM Basic Qualifications: Active Top Secret clearance with SCI eligibility. Bachelor's degree in Cybersecurity, Information Systems, or related discipline, and/or 8+ years of relevant experience (additional experience may substitute for degree). Minimum of 5 years of extensive experience in cybersecurity, information assurance, and RMF processes. DoD 8570.0 and DoDD 8140.01 IAT Level II certification or higher. At least 2 years of experience conducting IT application, system, or network reviews and providing DoD cybersecurity policy and technical guidance. Desired Skills: Certification aligned to DoDM 8140.03 / DoD Cyberspace Workforce Framework. Familiarity or background with some of the following technologies: Zero-trust requirements / concepts. VMWare (vSphere, vCenter, NSX, ESXi) RHEL (Ansible, Kubernetes, StackRox, OpenShift) AWS / Azure cloud technologies and containerization F5 BIG-IP, Cisco networking, and distributed technologies STIG and IAVA implementation NetApp storage technologies Dell Blade Servers Equal Opportunity Statement: Seneca Holdings provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex/gender, sexual orientation, national origin, age, disability, marital status, genetic information and/or predisposing genetic characteristics, victim of domestic violence status, veteran status, or other protected class status. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leave of absence, compensation and training. The Company also prohibits retaliation against any employee who exercises his or her rights under applicable anti-discrimination laws. Notwithstanding the foregoing, the Company does give hiring preference to Seneca or Native individuals. Veterans with expertise in these areas are highly encouraged to apply.

Role: Information Security Systems Engineer III Pay Rate: $40.00-50.00/hr on W2 Temp to Hire We are searching for talented and experienced Security Engineering professionals to join the Mission Networks Enterprise Security Team as a Level 3 Information Security Systems Engineer (ISSE). •This position is ONSITE at Client offices located in Melbourne, Florida •This role may require weekend, after-hours, or on-call rotations to meet program requirements and/or ongoing program support. •This position may require limited travel in an emergency •This position requires the ability to obtain FAA Public Trust Suitability Security Clearance: Must be able to obtain a Public Trust Key Responsibilities: •Develop and enforce security policies, procedures, and measures in alignment with the program's cybersecurity strategies. •Design, implement, and manage security solutions, including but not limited to firewalls, intrusion detection systems, endpoint protection, and encryption tools. •Develop, maintain and publish technical documentation in accordance with Client Systems Engineering processes. •Act as a Security Support Engineer for State, Federal and commercial customers. •Provide technical guidance and support to less experienced team members. •Stay abreast of the latest security trends, threats, and control technologies. •This position will require weekend, after hours, and on-call support to meet program requirements. Qualifications & Education: •BS/BA (or equivalent) degree in Computer Science, IT Security or STEM related field. o Five or more years of experience in Information Security, Network Engineering, or System Administration •In lieu of a bachelor's degree, a candidate must have ten plus years of Security network or system engineering experience. •Strong understanding of system administration including Windows and Linux operating systems. •Strong knowledge of Cisco network infrastructure, including LAN/WAN, VPNs, routers, and switches. •Strong project engineering experience in security-related environments. •Excellent analytical and problem-solving skills. •Effective communication and interpersonal skills. •Experience with security frameworks (NIST SP800-53, NIST SP800-171, ISO 27001, or FISMA) and risk management methodologies. •The candidate must have the ability to obtain a FAA Public Trust, GSA clearance and Standard Public Trust. PREFERRED TECHNICAL SKILLS •Experience administering Next Generation Firewalls (NGFW) (Fortinet, Cisco, or Palo Alto). •Experience mitigating DDoS floods with on-premise and cloud-based solutions. •Experience deploying Intrusion Detection/Prevention System configurations and providing technical support. •Experience administering Security Information and Event Management (SIEM) infrastructure. •Data Loss Prevention systems configuration, deployment and technical support (Varonis and Manage Engine Audit Plus). •Experience with deployment and administration of Enterprise host intrusion and detections systems (Carbon Black or Sentinel One preferred) Preferred Certifications: •CISSP (Certified Information Systems Security Professional) •CCNA (Cisco Certified Network Associate)

Visual System Engineer II participates in all aspects of the production and integration of visual systems and 3D databases and models on designated projects to meet customer requirements. The work pertains primarily to the research, design, development, testing, valuation,implementation, and maintenance of visual system products. The position requires working under supervision and reports to a manager. Responsibilities 1 Responsible for analysis, design, development, integration, and unit testing for the visual system.Provides expert judgment on: a. fundamentals and principles of professional engineering; b. computer hardware, systems software, and computer system architecture and integration; and c. mathematics, including calculus, probability, statistics, discrete structures, and modern algebra. 2 Participates in all aspects of the production and integration of visual systems and 3D databases and models on designated projects to meet customer requirements. 3 Responsible for various aspects of synthetic environment design and construction. 4 Ability to plan and execute complex, multi-faceted projects within established financial and time constraints. 5 Ability to plan and execute complex, multi-faceted projects within established financial and time constraints. 6 Ability to evaluate computer technology to meet requirements of scene generation with respect to frame rate, memory and disk space. 7 Able to work in a fast-paced production environment with ability to handle multiple competing tasks and demands simultaneously. 8 Able to travel to customer locations to support contractual commitments including data collection, program reviews, development, installation, integration, and testing. 9 Support installation efforts that will require travel CONUS and OCONUS. 10 Review project tasks against schedules and provides status reports. 11 Work as part of a project team. 12 Implementation and application of sound configuration management processes. T asks 1 Provide the development and testing of visual system content including terrain databases, three dimensional models, andanimations to ensure they conform to program requirements. 2 Provide technical support for visual and sensor synthetic natural environment design and development to ensure successful integration and performance. 3 Define synthetic natural environment content requirements and advise project teams on alternatives to achieve training effective visual cues in the environment model. 4 Facilitate and develop Acceptance Testing Procedures for customer acceptance. 5 Support design documentation development. Education Completion of a full course of study in an accredited college or university leading to a Bachelor's or higher degree in engineering, engineering technology, physics, electro-optics, mathematics, or computer science or a related field. Substitutions: Four (4) years of professional experience can be substituted for two (2) years of the educational requirements. * US Government security clearance is required and candidate must be eligible. * Candidate must be able to obtain a US passport. Qualifications Experience 5 years experience in visual systems engineering or game development and integration of complex training simulation systems. 1 Show a strong understanding of military training systems, general training simulation technology, terrain data base modeling systems, terrain data base formats for visual/sensor simulation, geographic information systems, and/or the use of mapping, charting, geodesy, and imagery (MCG&I) source data. 2 Must possess established experience in synthetic environment generation, including terrain and model development in a variety of formats and tool sets for visual/sensor simulation; 3 Must possess experience in military training systems and general training simulation technology; 4 Must possess an understanding of the defense procurement process; 5 Must possess an established understanding of sensor technologies such as infrared, image intensification, television, and radar and practical experience in how those technologies are simulated/stimulated and correlated into simulation systems. 6 Knowledge of the moving model generation process along with the required database formats. 7 Knowledge of the terrain database generation process along with the required correlated database formats to support SAF and sensor simulation. 8 Knowledge of visual and sensor simulation system design, development, analysis, and test and evaluation for training systems. Additional Information All your information will be kept confidential according to EEO guidelines.

RELOCATION ASSISTANCE: Relocation assistance may be available CLEARANCE TYPE: SecretTRAVEL: Yes, 25% of the TimeDescriptionAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Northrop Grumman Aeronautics Sector (NGAS) is seeking a Principal Industrial Security Analyst (ISA3) to join our team of qualified, diverse individuals in Melbourne, Florida. The selected candidate will have the responsibility of developing and administering security programs and procedures for classified or proprietary materials, documents, and equipment in a fast-paced, high-profile portfolio of programs. In this role, the selected candidate will: Study and implement federal security regulations that apply to company operations Obtain rulings, interpretations, and acceptable deviations for compliance with regulations from government agencies Manage program security compliance and operations across multiple functions including PHYSEC, COMSEC, PERSEC, Contract Security, Investigations, and Document Control Management Prepare manuals outlining regulations, and establishes procedures for handling, storing, and keeping records, and for granting personnel and visitors access to restricted records and materials Ensure adherence to contractual guidance for classified programs and cleared facilities in accordance with the Security Statements of Work, DD Form 254, DoD Contract Security Classification Specifications guidance Conduct security education classes and security audits Investigate security violations and prepare reports specifying preventive action to be taken This position will be 1st shift, 9/80 work schedule with every other Friday off, phenomenal learning opportunities, exposure to a wide variety of projects and customers, and a very friendly team environment. We are looking for self-motivated, proactive, and goal-oriented people to help us grow our services and become even better at what we do. Our Leaders at Northrop Grumman live our values daily and encourage our teams to do the same. We do the right thing: upholding the highest ethical standards and facilitating a safe and respectful environment that attracts, retains, and inspires a diverse and engaged team. We do what we promise: holding yourself and others accountable to meet predictable and balanced results. We commit to shared success: operating as OneNG and removing barriers for our teams. Finally, We pioneer setting a vision that shapes the future and inspires others. Basic Qualifications: 5 Years with Bachelors; 3 Years with Masters; 1 Year with PhD OR an additional 4 Years of Industrial Security or related experience will be considered in lieu of a degree Candidate must be a US Citizen Must have Active U.S. Government Secret security clearance with in-scope investigation (T5, T5R, SSBI, SBPR, PR) completed within the last 6 years or current enrollment in Continuous Evaluation (CE) program Ability to meet enhanced security requirements and obtain/maintain SAP eligibility and access Knowledge of the Department of Defense Manual 5205.07; 32 CFR Part 17 National Industrial Security Program Operating Manual (NISPOM) Preferred Qualifications: Bachelor's Degree Active Top-Secret clearance with ability to obtain and maintain SAP access Strong leadership skills to include: Self-starter with minimal supervision, high ethical standards, organized and efficient at time management Strong interpersonal skills to communicate effectively, ability to manage multiple tasks simultaneously, make decisions in the midst of ambiguity and meet deadlines Experience with Supply Chain Security process and procedures Highly organized with ability to manage multiple priorities and time sensitive deliverables Primary Level Salary Range: $81,400.00 - $122,000.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit *********************************** U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

Description:Lockheed Martin Space (LMS) is seeking a Classified Cybersecurity Information Systems Security Officer (ISSO) supporting the Fleet Ballistic Missile (FBM) program. This position is located in Cape Canaveral, FL. The selected candidate will conduct daily cybersecurity operations, to include auditing, creating information system authorization packages, and implementing cybersecurity requirements for both classified and unclassified information systems. The position requires a current Secret clearance and the ability to obtain a Top Secret security clearance. Key Responsibilities of this role include: * Carry out technical administration of an Information System in accordance with internal LM and customer security requirements, primarily Risk Management Framework (RMF). * Upkeep, monitor, analyze, and respond to network and security events. * Document compliance actions within the approved compliance tracking system or develop a plan of actions and milestones (POA&M) with the Information Systems Security Manager (ISSM) to address non-compliance in the allotted time frame. * Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan. * Operate and maintain ACAS laptops and servers utilizing Tenable Security Center and Nessus Security scanner. * Audit various isolated and networked systems using vulnerability scanning and STIG analysis tools. Basic Qualifications: * DoD Secret government security clearance with an investigation within the last 5 years and the ability to obtain and maintain a Top Secret clearance. * Knowledge of system hardening via implementation of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs). * Knowledge of security scanning tools such as SCAP, Evaluate-STIG and Tenable. * Appropriate DoD 8570 IAT II Certification. * Information System auditing experience. Desired Skills: * Experience with industry standard Information Assurance tools such as Splunk, Fortify, or SonarQube. * Proficiency in multiple platforms to include Windows, Linux/Unix, and Networking equipment. * Proficient writing technical documentation. * Experience with Navy Fleet Ballistic Missile (FBM) program. * Knowledge of NIST SP 800-37 Risk Management Framework (RMF), NIST SP 800-53 Security and Privacy Controls requirements, and NIST 800-171 Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations. * Knowledge of and experience developing, reviewing and maintaining RMF artifacts. Security Clearance Statement: This position requires a government security clearance, you must be a US Citizen for consideration. Clearance Level: Top Secret Other Important Information You Should Know Expression of Interest: By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings. Ability to Work Remotely: Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility. Work Schedules: Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits. Schedule for this Position: 9x80 every other Friday off Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics. The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration. At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work. With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility. If this sounds like a culture you connect with, you're invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications. Experience Level: Experienced Professional Business Unit: SPACE Relocation Available: No Career Area: Cyber Security Type: Full-Time Shift: First

The Cybersecurity Specialist will be responsible to implement and execute risk management processes by utilizing National Institute of Standards and Technology (NIST) 800 series special publications, Federal Information Processing Standards (FIPS), and Federal Information Security Modernization Act (FISMA) compliance frameworks. The Cybersecurity Specialist will work in a collaborative unified team environment to monitor, evaluate, and manage the risk posture of systems' authorization boundary to safeguard information systems by leveraging robust understanding of NIST Risk Management Framework (RMF). This position will involve working closely with the organization's IT teams to identify vulnerabilities, conduct security control assessments, perform risk analysis and assessments, develop security strategies for mitigating and resolving findings, provide cybersecurity compliance guidance to IT teams and ensure systems remain compliant with federal standards and regulations. **Key Responsibilities:** + Cybersecurity support managing Authorization Packages (AP) to include Privacy Analysis, System Categorizations, Risk Assessment Reports (RAR), System Security Plan (SSP), and general Assessment and Authorization (A&A) oversight to obtain or maintain a system's Authorization to Operate (ATO) + Focal point for enterprise SSPs managing the security posture by supporting Information System Owners (ISO) and Information System Security Officials (ISSO) with RMF responsibilities + Develop and maintain accurate and effective Plans of Action & Milestones (POA&Ms) as part of continuous monitoring for implementing cybersecurity improvements + Collaborate with Information System Administrators (ISA) and various Engineering teams to integrate security measures into new and existing information systems and major applications + Stay up to date on general information technology innovations and emerging threats and security technologies to continuously improve security posture. **Required Qualifications:** + Bachelor's or Master's degree in Cybersecurity, Management of Information Technology, or a related field. + 10 years of experience in information security or related roles. + Experience with networking ports and protocols, architecture of networked and standalone systems, functionality of various operating systems, cloud computing environments and common security tools. + Ability to develop information system topology diagrams and Concept of Operations documentation + Knowledge with federal standards such as NIST, FISMA and FIPS + Exposure to FedRAMP program and standards + Experience with Security Control Audits + Proficient with MS Office + Experience with IT projects in a traditional waterfall or Agile framework + Relevant certifications (e.g., CompTIA Network+, Security+, CySA+) are a plus. + Position is hybrid remote, and candidate must be within commute distance to Kennedy Space Center. Hybrid remote status is at the discretion of the customer and may change to on-premises support If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares. **Original Posting:** November 21, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. **Pay Range:** Pay Range $85,150.00 - $153,925.00 The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. **About Leidos** Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit ************** . **Pay and Benefits** Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at **************/careers/pay-benefits . **Securing Your Data** Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at ***************************** . If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission (******************************* . **Commitment to Non-Discrimination** All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. \#Remote REQNUMBER: R-00170919 All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

Department Description: At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance these exciting experiences. The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence. The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to: * Secure the Magic by protecting information systems and platforms. * Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests. * Strengthen the business through optimizing execution, application, and technology used to protect the Company. * Innovate by investing in core capabilities to enhance operational efficiency. Team Description: The Security Research and Testing (SRT) team specializes in simulating real-world cyberattacks to uncover vulnerabilities and evaluate the effectiveness of Disney Experiences (DX) and Disney Corporate (Corp) technology systems' security measures. By mimicking tactics used by malicious actors, the SRT team provides critical insights into potential weaknesses. They work closely with both technology and business teams across DX and Corp to analyze findings, strengthen security policies, and recommend targeted improvements to address gaps in infrastructure, processes, and training, ensuring a robust and resilient security posture. Responsibilities of the Role: We are hiring! We need a Security Engineer - Security Assurance to join our Disney Experience (DX) Security Research & Testing (SRT) Team! Responsibilities * Evaluate system and application configurations to identify security misconfigurations. * Conduct compliance checks against security standards: CIS Benchmarks, NIST, and TWDC policies. * Review firewall, server, and endpoint configurations to ensure alignment with security policies. * Analyze configurations to identify potential vulnerabilities such as open ports, weak encryption, or default credentials. * Use automated tools and scripts to detect misconfigurations and vulnerabilities. * Perform manual and automated testing of security settings on systems, applications, and networks. * Simulate attacks or misuses to test the resilience of configurations. * Document findings in detailed reports, including identified issues, potential impacts, and remediation recommendations. * Communicate results to stakeholders, including technical and non-technical audiences. * Provide recommendations to address misconfigurations and improve security posture. * Work with IT teams to implement fixes and validate corrective actions. * Assist in developing and maintaining security configuration baselines and standards. * Proactively recommend adjustments to configurations to mitigate risks. Must Haves: * Minimum of 3+ years of related IT security testing experience such as Penetration Testing, Adversarial Testing, Red Team Testing * Experience conducting comprehensive cyber security testing of technology solutions within large-scale, complex, and dynamic IT environments. * Proficient in system hardening testing for operating systems (Windows, Linux, mac OS). * Experience with Cloud Solutions (Azure, GCP, AWS) and Software as a Service (SaaS) solution. * Knowledge of network devices (routers, switches, firewalls) and their secure configurations, and configuration management & auditing tools. * Understanding of security frameworks and standards (NIST, CIS, etc.) Nice to Haves: * OffSec or other advanced security testing certifications * Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.) * Security accreditation (e.g., CISSP, GCIH, CISM, GSEC, CEH, etc.) Education: * Bachelor's degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience #DISNEYTECH About The Walt Disney Company (Corporate): At Disney Corporate you can see how the businesses behind the Company's powerful brands come together to create the most innovative, far-reaching and admired entertainment company in the world. As a member of a corporate team, you'll work with world-class leaders driving the strategies that keep The Walt Disney Company at the leading edge of entertainment. See and be seen by other innovative thinkers as you enable the greatest storytellers in the world to create memories for millions of families around the globe. About The Walt Disney Company: The Walt Disney Company, together with its subsidiaries and affiliates, is a leading diversified international family entertainment and media enterprise that includes three core business segments: Disney Entertainment, ESPN, and Disney Experiences. From humble beginnings as a cartoon studio in the 1920s to its preeminent name in the entertainment industry today, Disney proudly continues its legacy of creating world-class stories and experiences for every member of the family. Disney's stories, characters and experiences reach consumers and guests from every corner of the globe. With operations in more than 40 countries, our employees and cast members work together to create entertainment experiences that are both universally and locally cherished. This position is with Disney Worldwide Services, Inc., which is part of a business we call The Walt Disney Company (Corporate). Disney Worldwide Services, Inc. is an equal opportunity employer. Applicants will receive consideration for employment without regard to race, religion, color, sex, sexual orientation, gender, gender identity, gender expression, national origin, ancestry, age, marital status, military or veteran status, medical condition, genetic information or disability, or any other basis prohibited by federal, state or local law. Disney champions a business environment where ideas and decisions from all people help us grow, innovate, create the best stories and be relevant in a constantly evolving world. Apply Now Apply Later Current Employees Apply via My Disney Career Explore Location

Systems security engineering methods, practices and technologies to the architecture, design, development, evaluation and integration of systems and networks to maintain system security. Throughout the lifecycle of system, works closely with customers to ensure that the security protection needs, concerns and requirements are defined and implemented with appropriate fidelity and rigor, early, and in a sustainable manner that will allow for the security authorization of the system of interest. Works with systems developers or commercial product vendors in the design and evaluation of state-of-the-art secure systems, networks, and database products using methods such as encryption technology, vulnerability analysis and security management. Responsible for integration of multiple methods into a cohesive system security perimeter and environment while implementing the policies and procedures necessary to monitor and maintain such an environment. Prepares certification and accreditation documentation, using multiple industry standards such as DITSCAP, NIACAP, DCID 6/3, common criteria, and NIST 800-37, to achieve security authorization of supported systems. Represents program security needs, concerns and requirements at customer meetings. Responsibilities: Lead the development and implementation of program protection throughout the System Development Lifecycle. Key tasks include Assessing systems for Critical Program Information Conducting trade studies Developing program protection requirements Implementing security architectures Assessing threats via attack/countermeasure analysis Conducting Verification and Validation activities. Serve as a SME in the area of program protection Draft Program Protection Plans (PPPs), Cybersecurity Strategies, Security Classification Guides (SCGs), and Program Protection Plans Interact with customer to define program protection requirements, solutions, trades, costs, implementation, system impacts, and effectiveness Utilize Risk Management Framework (RMF) accreditation and authorization (A&A) processes to include RMF steps 1-4 (categorization, controls selection, control implementation, security assessment) and standard body of evidence (BoE) package development. A&A package processing RMF accreditation of Platform IT (PIT) systems NSA Type 1 Certification of cryptographic high assurance devices Experience with NSA High Assurance products and IASRD and SERD requirements Support security engineering activities, including basis of estimate development, requirements development, design, test, configuration management and maintenance of information systems and data Assist program security in the development of policies and procedures for emerging security technologies Support the evaluation, qualification, testing and delivery of security architecture improvement, obsolescence replacement and vulnerability response projects Provide Security Testing and Verification Work is to be accomplished 100% onsite, in a lab environment Required Skills: Bachelor's Degree and a minimum of 12 years of prior relevant ISSE experience. Graduate Degree and a minimum of 10 years of prior related experience. In lieu of a degree, minimum of 16 years of prior related experience. Minimum of Collateral Secret security clearance required Professional experience with RMF (Risk Management Framework) required Must be able to obtain and maintain a DOD 8140 certification (or NIST 800-181), appropriate for the position within 6-months of start Preferred Additional Skills: Experience in configuration and use of cyber defense and vulnerability assessment tools such as ACAS and SCC. Active TS/SCI Clearance is highly desired

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Northrop Grumman Aeronautics Systems has an opening for a Mission Assurance Engineer to join our team of qualified, diverse individuals. This position will be onsite in Melbourne, FL. You will directly support the Mission Assurance Program Manager (MAPM) by executing and overseeing quality first technical support, independent of Engineering, through early intervention. Support a program and mission assurance team during the Engineering Manufacture and Development (EMD) phase. Deliver focused efforts in design review, nonconforming material processing, incoming material, production control, product evaluation and reliability, manufacturing, flight operations, research and development as they apply to the mission assurance statement of work. Prepare malfunction and corrective action reports while holding manufacturing accountable for root cause and corrective action deliverables. Review all necessary product and system documentation to ensure process compliance and requirement needs are met. Work closely with program partners to validate flow of requirements. Plan and develop the required processes to identify potential product performance impacts as early as possible. Deliver product development engagement through oversight of processes, procedures and standard adherence to ensure that product design continuously meets customer requirements. Oversee product qualification testing and provide guidance when needed. Provide program integration testing oversight via test procedure review, test witnessing, troubleshooting and buy off. Execute functions through compliance review of Supplier Data Requirements Lists, Acceptance Test Procedures, Qualification Test Procedures, Supplier Statement of Work, Program Specifications. Perform audits to identify deficiencies, nonconformances, and negative performance trends and failures. High level organizational skills to support concurrent taskings along with strong computer skills with a high level of proficiency in Microsoft Office Suite. **Responsibilities:** + Support inspection, software and supplier quality teams to drive quality into the design to ensure robust verification and validation processes. + Participate in root cause and corrective action (RCCA) investigations to address non-conformances, ensuring effective resolution and continuous improvement. + Develop non-conformance processing skills to initiate, disposition and collaborate with internal and external customers. + Build fact based decision points through daily/weekly metrics and reviews. + Support product qualification through execution of AS9100 FAI process. + Partner with manufacturing operations to ensure quality standards are met. **Qualifications:** + Bachelor's Degree in a Science, Technology, Engineering or Mathematics (STEM) discipline + 2 years of work experience in design review and modeling tools, such as NX + Experience in AS9100 nonconforming material processing + Knowledge of Lean Six Sigma and Root Cause Analysis processes. + As a condition of employment, the candidate must have an active Secret or inactive Secret clearance with an investigation within the last 10 years, and the ability to obtain and maintain an active Top-Secret clearance per business needs. **Preferred Qualifications:** + Experience in Engineering, Manufacturing, Change Management + Aerospace, Electrical or Mechanical Engineering background + Active DoD Top Secret clearance Primary Level Salary Range: $77,200.00 - $115,800.00 The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business. The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates. Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit *********************************** U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

**Description:** Lockheed Martin Space \(LMS\) is seeking a Classified Cybersecurity Information Systems Security Officer \(ISSO\) supporting the Fleet Ballistic Missile \(FBM\) program\. This position is located in Cape Canaveral, FL\. The selected candidate will conduct daily cybersecurity operations, to include auditing, creating information system authorization packages, and implementing cybersecurity requirements for both classified and unclassified information systems\. **The position requires a current Secret clearance and the ability to obtain a Top Secret security clearance\.** Key Responsibilities of this role include: - Carry out technical administration of an Information System in accordance with internal LM and customer security requirements, primarily Risk Management Framework \(RMF\)\. - Upkeep, monitor, analyze, and respond to network and security events\. - Document compliance actions within the approved compliance tracking system or develop a plan of actions and milestones \(POA&M\) with the Information Systems Security Manager \(ISSM\) to address non\-compliance in the allotted time frame\. - Ensure systems are operated, maintained, and disposed of in accordance with internal security policies and practices outlined in the security plan\. - Operate and maintain ACAS laptops and servers utilizing Tenable Security Center and Nessus Security scanner\. - Audit various isolated and networked systems using vulnerability scanning and STIG analysis tools\. **Basic Qualifications:** - DoD Secret government security clearance with an investigation within the last 5 years and the ability to obtain and maintain a Top Secret clearance\. - Knowledge of system hardening via implementation of the Defense Information Systems Agency \(DISA\) Security Technical Implementation Guides \(STIGs\)\. - Knowledge of security scanning tools such as SCAP, Evaluate\-STIG and Tenable\. - Appropriate DoD 8570 IAT II Certification\. - Information System auditing experience\. **Desired Skills:** - Experience with industry standard Information Assurance tools such as Splunk, Fortify, or SonarQube\. - Proficiency in multiple platforms to include Windows, Linux/Unix, and Networking equipment\. - Proficient writing technical documentation\. - Experience with Navy Fleet Ballistic Missile \(FBM\) program\. - Knowledge of NIST SP 800\-37 Risk Management Framework \(RMF\), NIST SP 800\-53 Security and Privacy Controls requirements, and NIST 800\-171 Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations\. - Knowledge of and experience developing, reviewing and maintaining RMF artifacts\. **Security Clearance Statement:** This position requires a government security clearance, you must be a US Citizen for consideration\. **Clearance Level:** Top Secret **Other Important Information You Should Know** **Expression of Interest:** By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match\. Should this match be identified you may be contacted for this and future openings\. **Ability to Work Remotely:** Onsite Full\-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility\. **Work Schedules:** Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees\. Schedules range from standard 40 hours over a five day work week while others may be condensed\. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits\. **Schedule for this Position:** 9x80 every other Friday off **Lockheed Martin is an equal opportunity employer\. Qualified candidates will be considered without regard to legally protected characteristics\.** **The application window will close in 90 days; applicants are encouraged to apply within 5 \- 30 days of the requisition posting date in order to receive optimal consideration\.** At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges\. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work\. With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility\. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work\. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility\. If this sounds like a culture you connect with, you're invited to apply for this role\. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs , and apply for roles that align with your qualifications\. **Experience Level:** Experienced Professional **Business Unit:** SPACE **Relocation Available:** No **Career Area:** Cyber Security **Type:** Full\-Time **Shift:** First

**Department Description:** At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance these exciting experiences. The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence. The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to: + Secure the Magic by protecting information systems and platforms. + Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests. + Strengthen the business through optimizing execution, application, and technology used to protect the Company. + Innovate by investing in core capabilities to enhance operational efficiency. **Team Description:** The Security Research and Testing (SRT) team specializes in simulating real-world cyberattacks to uncover vulnerabilities and evaluate the effectiveness of Disney Experiences (DX) and Disney Corporate (Corp) technology systems' security measures. By mimicking tactics used by malicious actors, the SRT team provides critical insights into potential weaknesses. They work closely with both technology and business teams across DX and Corp to analyze findings, strengthen security policies, and recommend targeted improvements to address gaps in infrastructure, processes, and training, ensuring a robust and resilient security posture. **Responsibilities of the Role:** We are hiring! We need a **Security Engineer - Security Assurance** to join our Disney Experience (DX) Security Research & Testing (SRT) Team! _Responsibilities_ + Evaluate system and application configurations to identify security misconfigurations. + Conduct compliance checks against security standards: CIS Benchmarks, NIST, and TWDC policies. + Review firewall, server, and endpoint configurations to ensure alignment with security policies. + Analyze configurations to identify potential vulnerabilities such as open ports, weak encryption, or default credentials. + Use automated tools and scripts to detect misconfigurations and vulnerabilities. + Perform manual and automated testing of security settings on systems, applications, and networks. + Simulate attacks or misuses to test the resilience of configurations. + Document findings in detailed reports, including identified issues, potential impacts, and remediation recommendations. + Communicate results to stakeholders, including technical and non-technical audiences. + Provide recommendations to address misconfigurations and improve security posture. + Work with IT teams to implement fixes and validate corrective actions. + Assist in developing and maintaining security configuration baselines and standards. + Proactively recommend adjustments to configurations to mitigate risks. **Must Haves:** + Minimum of 3+ years of related IT security testing experience such as Penetration Testing, Adversarial Testing, Red Team Testing + Experience conducting comprehensive cyber security testing of technology solutions within large-scale, complex, and dynamic IT environments. + Proficient in system hardening testing for operating systems (Windows, Linux, mac OS). + Experience with Cloud Solutions (Azure, GCP, AWS) and Software as a Service (SaaS) solution. + Knowledge of network devices (routers, switches, firewalls) and their secure configurations, and configuration management & auditing tools. + Understanding of security frameworks and standards (NIST, CIS, etc.) **Nice to Haves:** + OffSec or other advanced security testing certifications + Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.) + Security accreditation (e.g., CISSP, GCIH, CISM, GSEC, CEH, etc.) **Education:** + Bachelor's degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience \#DISNEYTECH **Job ID:** 10131041 **Location:** Orlando,Florida **Job Posting Company:** The Walt Disney Company (Corporate) The Walt Disney Company and its Affiliated Companies are Equal Employment Opportunity employers and welcome all job seekers including individuals with disabilities and veterans with disabilities. If you have a disability and believe you need a reasonable accommodation in order to search for a job opening or apply for a position, email Candidate.Accommodations@Disney.com with your request. This email address is not for general employment inquiries or correspondence. We will only respond to those requests that are related to the accessibility of the online application system due to a disability.