Cyber Security Analyst jobs in Millbury, MA

Employee Type: Regular-Full time Union/Non: Join Our Enbridge Team as an Enterprise Security Sr Analyst! Are you ready to play a vital role in shaping and strengthening the security backbone of a dynamic organization? Then look no further as we have your next career opportunity! We're looking for a motivated professional to work closely with our internal operations teams and key operational sites. In this exciting position, you'll lead the charge on implementing critical security initiatives, finding opportunities for improvement, and supporting the ongoing maintenance of robust protective measures. If you're passionate about proactive problem-solving and making a real impact, this is your chance to be at the forefront of operational security excellence. What you will do: * Accountable for site-level assessments, reporting, and collaboration with partners to help strengthen existing programs and standards. * Engage in Executive Protection assignments as required. * Perform basic security maintenance and triage functions * Collect and provide security data for use in internal reporting and program tracking * Represent the Enterprise Security team in field operations and site-level engagements * Assist with implementation of recommendations from internal assessments and intelligence efforts * Support the development and coordination of security training initiatives * Active role supporting the planning, design and execution of security-related projects * Participate in on-site reviews / inspections and feedback processes to support continuous improvement of security protocols * Ensures security related drills are planned, scheduled and conducted * Support broader organizational efforts tied to risk mitigation and incident response * Support planning and execution of executive and personnel protection assignments * Maintains and develops working relationships with key partners, field operations personnel, service providers, and law enforcement. Who you are: You have: * 2-4 years of experience in security, law enforcement, prior military or a related operational role along with a bachelor's degree in a relevant field. * Strong problem solving and analytical thinking skills in addition to being a self-starter with the ability to navigate challenges and drive tasks to completion * A valid drivers license with an acceptable driving record that will be verified upon hire You can: * Effectively collaborate across teams and interact with external partners and collaborators when needed * Operate in a team-oriented environment and can contribute to cross-functional efforts You are: * An outstanding verbal and written communicator who is clear, confident and open to sharing ideas and supporting innovation * Familiar with applying risk-based security strategies in operational environments while having working knowledge of regulatory standards relevant to large-scale critical operations The following are considered assets: * Experience in field-based roles, especially in industrial or infrastructure related settings * General knowledge or experience conducting preventative maintenance of security equipment and systems Working Conditions: * Able to travel, sometimes on short notice, both domestically and internationally * Must be in excellent physical condition with the ability to handle high stress situations Physical Requirements include but are not limited to: Grasping, kneeling, light - moderate lifting (objects up to 20 pounds), reaching above shoulder, repetitive motion, typing, sitting, standing, visual requirement (able to see screens, detect color coding, read fine print), hearing requirement and the ability to sit at a computer for long periods of time. Mental Requirements (Both Field & Office) include but are not limited to: Ability to: understand, remember and apply oral and/or written instructions or other information, understand complex problems and collaborate/explore alternative solutions, organize thoughts and ideas into understandable terminology, organize and prioritize work schedule on a short-term basis, make decisions which have moderate impact on the immediate work unit and monitor impact outside this area, understand and follow basic instructions and guidelines, complete routine forms, compose letters, outlines, memoranda and basic reports and communicate with individuals via telephone. Company paid international relocation assistance is not offered for this role. #topemployer At Enbridge, we are dedicated to our core value of Inclusion. We are proud to be an Equal Opportunity Employer. We are committed to providing employment opportunities to all qualified individuals, without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, marital status, family status, veteran status, Indigenous status, disability, or any other reason protected by federal, state, or local law. Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting ********************. Information For Applicants: * Applications can be submitted via our online recruiting system only. * We appreciate your interest in working with us; however, only those applicants selected for interviews will be contacted. * Final candidates for this position may be required to undergo a security screening, including a criminal records check. To learn more about us, visit ****************

Basic Qualifications Requires a Bachelor's degree in Systems Engineering, or a related Science, Engineering or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience. Agile experience preferred. CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required. Responsibilities for this Position We are seeking a Systems Security Engineer who has experience in the design and development of NSA-certified Cybersecurity devices. Key Responsibilities: Design and develop specifications for mission-critical NSA-certified Cybersecurity devices Collaborate with software and validation engineering teams to deliver high-speed data solutions Develop real-time multi-threaded Embedded System architecture using Model-based Systems Engineering (MBSE) tools and techniques Analyze and maintain system security requirements throughout product development lifecycle Conduct trade studies, perform functional analysis, and design system security. Preferred Skills and Experiences: NSA approved Cryptography/Encryption Security requirements analysis Real-Time multi-threaded Embedded System architecture and development Model-based Systems Engineering (MBSE) CISSP certification or similar INCOSE ASEP, CSEP, or ESEP certification We value candidates who possess: Drive to expand knowledge and experience in designing complex systems Ability to define project scope, schedule, and expected results Initiative to complete assignments and ability to engage in technical direction and leadership Our Commitment to You: An exciting career path with opportunities for continuous learning and development Research-oriented work with award-winning teams Competitive benefits package ***Please note the person can be based out of our Dedham or Taunton, MA facilities. You will be onsite 100%. #CJ3 Salary Note This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled. Combined Salary Range USD $133,499.00 - USD $140,000.00 /Yr. Company Overview General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team! Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Up to $105K 25553 Pinnacle Partners is assisting our client in their search for an Information Security Analyst to join their team in the Marlborough, MA area. This successful resource will be responsible for developing and executing IT security strategies and initiatives. RESPONSIBILITIES: Deploy and administer Microsoft Purview to support data protection, classification, and governance Monitor and analyze security alerts and events to identify and respond to threats and vulnerabilities Review and update security policies to address threats and regulatory changes Oversee end-user security awareness programs to promote best practices and reduce risk Track and report key security metrics, incident trends, and compliance status to stakeholders REQUIREMENTS: Bachelor's degree in related field 2-5 years of experience in a Security role Working knowledge of infrastructure, networking protocols, and security frameworks PREFERRED SKILLS: Purview experience Familiarity with securing cloud environments Experience identifying and mitigating security incidents Working knowledge of vulnerability assessment tools Knowledge of security standards and frameworks such as ISO/IEC 27001, NIST CSF Understanding of Governance, RISK, and Compliance GRC frameworks TERMS: This is a direct hire opportunity with a salary up to $105K based on experience. They offer benefits including medical, dental, and vision coverage along with additional perks.

Job Title: Cyber Security Analyst Overture Partners' client has an immediate need for Cyber Security Analyst. To secure an interview for this role, candidates must meet the following criteria: Must Haves: 3+ years in threat hunting, SOC analysis, or cyber threat intelligence Strong grasp of MITRE ATT&CK, kill chain models, and adversary tactics Hands-on experience with SIEM (e.g., CrowdStrike, Sentinel, QRadar) and EDR tools Familiarity with email protection platforms (e.g., Mimecast, Defender) Proficient in Python or PowerShell for scripting and automation Strong analytical and communication skills Preferred Certifications: Security+, CySA+, GSEC, CSA, or SC-200 What the Client Needs you to Do: Your primary responsibilities will include threat hunting, data analysis, and early detection of cyber threats to identify patterns, uncover hidden threats, and improve our overall security posture to protect the organization’s digital assets. Proactively hunt for threats across endpoints, networks, and cloud environments Analyze security telemetry from SIEM, EDR, and other sources to identify anomalies and IOCs Develop and fine-tune detection rules, alerts, and dashboards Conduct investigations into suspicious activity and generate detailed reports Work with threat intel to correlate findings and improve detection methodologies Support vulnerability management and remediation tracking Stay up-to-date with emerging threats and attack techniques

With 80,000 customers across 150 countries, UKG is the largest U.S.-based private software company in the world. And we're only getting started. Ready to bring your bold ideas and collaborative mindset to an organization that still has so much more to build and achieve? Read on. At UKG, you get more than just a job. You get to work with purpose. Our team of U Krewers are on a mission to inspire every organization to become a great place to work through our award-winning HR technology built for all. Here, we know that you're more than your work. That's why our benefits help you thrive personally and professionally, from wellness programs and tuition reimbursement to U Choose - a customizable expense reimbursement program that can be used for more than 200+ needs that best suit you and your family, from student loan repayment, to childcare, to pet insurance. Our inclusive culture, active and engaged employee resource groups, and caring leaders value every voice and support you in doing the best work of your career. If you're passionate about our purpose - people -then we can't wait to support whatever gives you purpose. We're united by purpose, inspired by you. **About the Team** As a Senior Security and Threat Monitoring Analyst, you will be part of UKG's Global Security Operations Center (GSOC) team investigating events of interest and incidents within UKG's FedRAMP authorized computing environments. **About the Role** You will facilitate and follow UKG's standard processes to investigate, contain, eradicate, and respond in a continued and unified effort to protect the confidentiality, integrity, and availability of UKG, our partners' and customers' data and services. You will be an escalation point for all incidents, analyzing, confirming, re-prioritizing if necessary and remediating those identified threats within the UKG FedRAMP authorized computing environments. You will leverage your skills, experience, and creativity to perform initial, forensically sound collection and analysis, methodologies to contain, eradicate, and recover from realized threats such as zero-day, ransomware, malware and other APT's. Additionally, you will be responsible for participating in incident response activities as part of the Cyber Incident Response Team (CIRT) or as the Cyber Incident Response Lead (CIRL), providing strong technical and environmental knowledge during the incident. You will lead efforts, post incident, in reporting and continuous improvement recommendations to enhance UKG's security posture through process development, tool rationalization, detection technique and automation enhancement opportunities and enablement/training possibilities. Due to the nature of the work, you are required to have occasional on-call duties on weekends and/or holidays. Additional work hours may also be required during an incident investigation. **Responsibilities:** - Review tickets escalated from junior analysts to confirm the priority, category and accuracy of the details and conditions. - Pivot to additional security tools to obtain and ascertain context or information and any other pertinent information to inform on the most effective and efficient mitigation/remediation actions. - Escalate tickets as required to GSOC Director for additional scrutiny and incident declaration. - Collaborate with UKG internal and external groups to develop and execute containment, eradication, and recovery strategies for lower priority incidents. - Identify, approve, and implement blocking, listing and other mechanisms to promote a robust security posture. - Participate in the Cyber Incident Response Plan (CIRP) process as part of the Cyber Incident Response Team (CIRT) or as the Cyber Incident Response Lead (CIRL) to lead and/or support mitigating and/or remediating critical incidents. - Participate in post-incident activities including coordinating and providing input within the requisite reports and identifying areas for continuous improvements within the GSOC enablement, processes or technology. - Provide mentoring and enablement of junior analysts globally to expand and extend UKG's GSOC capabilities and experiential capacities. **Basic Qualifications:** - Working professional with 4-6 years of relevant Security/SOC experience - 4-6 years of experience with common attack vectors on the network layer, different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks). - 4-6 years of experience with cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored) and cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks). - Working knowledge of FedRAMP requirements, processes and procedures - Bachelor's degree in computer science or a related discipline - CISSP, CCSP, GIAC or other relevant cyber security certifications **Preferred Qualifications:** - Knowledge of system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code). - Knowledge of cybersecurity, incident response methodologies, privacy principles, cyber threats, vulnerabilities, and detection methodologies and techniques for detecting intrusions. - Experience with Splunk, ServiceNow SIR, EDR solutions, email security tools, and cloud environments (GCP, Azure). - Knowledge and experience in reverse engineering to understand how an information asset works and analyzing system components to identify potential vulnerabilities. - Knowledge and experience in developing automations using scripting languages like Python and PowerShell to automate various tasks and improve accuracy, enhance task consistency, and increase scalability. - Knowledge and experience in conducting and participating in security audits and assessments. - Understanding and experience in developing and delivering relevant and value-add operational metrics to support and provide visibility into the GSOC program. - Knowledge of new and emerging cybersecurity technologies, threats, and threat vectors. - Knowledge and experience in designing, executing, and reporting threat hunting activities. - Knowledge and experience around offensive security (ethical hacking) techniques to identify and mitigate/remediate vulnerabilities in the UKG environment. - Knowledge and experience in cyber forensic procedures and how to extract information and generate reports in support of incident response and other advanced requirements. **Where we're going** UKG is on the cusp of something truly special. Worldwide, we already hold the #1 market share position for workforce management and the #2 position for human capital management. Tens of millions of frontline workers start and end their days with our software, with billions of shifts managed annually through UKG solutions today. Yet it's our AI-powered product portfolio designed to support customers of all sizes, industries, and geographies that will propel us into an even brighter tomorrow! Equal Opportunity Employer UKG is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, disability, religion, sex, age, national origin, veteran status, genetic information, and other legally protected categories. View The EEO Know Your Rights poster (https:****************************************************************************************** UKG participates in E-Verify. View the E-Verify posters here (https:************************************************************************************ . It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The pay range for this position is $99,800.00 to $143,450.00 USD, however, base pay offered may vary depending on skills, experience, job-related knowledge and location. This position is also eligible for a short-term incentive and a long-term incentive as part of total compensation. Information about UKG's comprehensive benefits can be reviewed on our careers site at https:******************* (https:*******************) It is the policy of Ultimate Software to promote and assure equal employment opportunity for all current and prospective Peeps without regard to race, color, religion, sex, age, disability, marital status, familial status, sexual orientation, pregnancy, genetic information, gender identity, gender expression, national origin, ancestry, citizenship status, veteran status, and any other legally protected status entitled to protection under federal, state, or local anti-discrimination laws. This policy governs all matters related to recruitment, advertising, and initial selection of employment. It shall also apply to all other aspects of employment, including, but not limited to, compensation, promotion, demotion, transfer, lay-offs, terminations, leave of absence, and training opportunities.

Global Resource Solutions, Inc. (GRS) is seeking an enthusiastic, motivated, detail orientated, and talented individual for the position of Information System Security Officer III. Job Descriptio n: Summary: The ISSO III's primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Essential Duties & Responsibilities: Review, prepare, and update AIS authorization packages Notify customer when changes occur that might affect AIS authorization Perform AIS self-inspections, provide security coordination and review of all system test plans Identify AIS vulnerabilities and implement countermeasures Represent the customer on various technical review and inspection teams Conduct security surveys at subordinate facilities and gather pertinent security documentation for inclusion into system authorization packages Coordinate, prepare, and track AIS inspections, reports, and responses Maintain AIS security records and prepare Co-Utilization Agreements for network nodes operating in government facilities Prepare reports on the status of security safeguards applied to computer systems Ensure AIS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices Perform ISSO duties in support of in-house and external customers Assist Department of Defense, National Agency and Contractor organizations with the development of assessment and authorization (A&A) efforts Review, track, and conduct AIS training Provide leadership, mentoring, and quality assurance for Team Members Requirement: Five (5) to Seven (7) years related experience Bachelor's Degree in a related area or equivalent experience (Four (4) years) Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 2 within 6 months of the date of hire. Security Requirements: Current Top Secret Clearance with SCI Eligibility Eligibility for access to Special Access Programs Willingness to submit to a Counterintelligence Polygraph Skills: Ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners Working knowledge of Microsoft Office (Word, PowerPoint, and Excel) Possess a high degree of originality, creativity, initiative requiring minimal supervision Must be familiar with security policy/manuals and the appropriate DCIDs/JAFANs and other guiding policy documents Requires travel within the organizational geographic Area of Responsibility (AOR) (note - could be extensive, and will include both air and ground transportation) Must be able to lift up to 50lbs Physical Requirements : This position requires employees to be willing and able to: sit, bend, reach, stoop, squat, stand, and walk. Communication: Excellent customer service via phone and face to face conversation, excellent written and oral command of English. GRS is an Equal Opportunity Employer. GRS will continue to abide by obligations under VEVRRA and Section 503 physical or mental disability, protected veteran status, or any other characteristics that are protected by law.

We are looking for a highly experienced and motivated Senior Security Analyst who is passionate about advanced security monitoring, detection engineering, and threat hunting. As a Senior Security Analyst at DigitalOcean, you will lead and own critical aspects of our security monitoring program, shaping how we detect, respond to, and prevent threats. You will leverage deep expertise to engineer sophisticated detection capabilities, develop comprehensive metrics to measure program effectiveness, and drive continuous improvement across alerting and response functions. You will be a trusted member of Infrastructure Security and will collaborate closely with other cross-functional teams to close detection gaps and elevate the organization's overall security posture. What You'll Be Doing: Lead real-time monitoring, triage, and analysis of complex security events, providing verifiable assessments of threats and incident severity. Engineer advanced detection use cases, leveraging deep knowledge of adversary TTPs to design and implement scalable alerting solutions. Develop, track, and report on key metrics for security monitoring effectiveness and incident response performance, using data to drive improvements. Own and evolve the security monitoring program strategy, ensuring alignment with evolving threat landscapes and business priorities. Perform proactive threat hunting and hypothesis-driven investigations to uncover hidden or emerging threats within DigitalOcean's environments. Mentor and guide lower level analysts, reviewing escalated incidents and providing technical leadership during incident response. Coordinate threat analysis using historical data and architecture diagrams to identify attack vectors. Collaborate with Security and engineering teams to close monitoring gaps and improve overall security. Optimize security tools and processes to reduce false positives, improve detection fidelity, and automate response workflows where appropriate. Lead the creation and maintenance of detailed playbooks, runbooks, and documentation to standardize detection and response efforts. What We'll Expect From You: 5+ years of hands-on experience with SIEM platforms and endpoint detection tools, with proven impact on security monitoring programs. Demonstrated expertise in engineering and tuning complex detection rules and alerting logic across diverse environments. Deep understanding of network and endpoint security, attack methodologies, threat actor tactics, and mitigation strategies. Experience in proactive threat hunting, vulnerability management, and coordinating with red teams or penetration testers. Proven leadership in driving security program initiatives, setting metrics, and influencing cross-team security strategy. Excellent communication skills for technical documentation, incident reporting, and mentoring less experienced analysts. Proven experience with scripting and query languages (Python, Bash, SQL) to automate detection and response workflows. Demonstrated proficiency with operating systems like Linux, Windows, and mac OS. Why You'll Like Working for DigitalOcean: We innovate with purpose. You'll be a part of a cutting-edge technology company with an upward trajectory, who are proud to simplify cloud and AI so builders can spend more time creating software that changes the world. As a member of the team, you will be a Shark who thinks big, bold, and scrappy, like an owner with a bias for action and a powerful sense of responsibility for customers, products, employees, and decisions. We prioritize career development. At DO, you'll do the best work of your career. You will work with some of the smartest and most interesting people in the industry. We are a high-performance organization that will always challenge you to think big. Our organizational development team will provide you with resources to ensure you keep growing. We provide employees with reimbursement for relevant conferences, training, and education. All employees have access to LinkedIn Learning's 10,000+ courses to support their continued growth and development. We care about your well-being. Regardless of your location, we will provide you with a competitive array of benefits to support you from our Employee Assistance Program to Local Employee Meetups to flexible time off policy, to name a few. While the philosophy around our benefits is the same worldwide, specific benefits may vary based on local regulations and preferences. We reward our employees. The salary range for this position is $90,000 - $125,000 based on market data, relevant years of experience, and skills. You may qualify for a bonus in addition to base salary; bonus amounts are determined based on company and individual performance. We also provide equity compensation to eligible employees, including equity grants upon hire and the option to participate in our Employee Stock Purchase Program. We value diversity and inclusion. We are an equal-opportunity employer, and recognize that diversity of thought and background builds stronger teams and products to serve our customers. We approach diversity and inclusion seriously and thoughtfully. We do not discriminate on the basis of race, religion, color, ancestry, national origin, caste, sex, sexual orientation, gender, gender identity or expression, age, disability, medical condition, pregnancy, genetic makeup, marital status, or military service. *This is a remote role. #LI-Remote #LI-SK1

Job Description At OneStudyTeam (a Reify Health company), we specialize in speeding up clinical trials and increasing the chance of new therapies being approved with the ultimate goal of improving patient outcomes. Our cloud-based platform, StudyTeam, brings research site workflows online and enables sites, sponsors, and other key stakeholders to work together more effectively. StudyTeam is trusted by the largest global biopharmaceutical companies, used in over 6,000 research sites, and is available in over 100 countries. Join us in our mission to advance clinical research and improve patient care. One mission. One team. That's OneStudyTeam. We are seeking a Senior Security Compliance Analyst with expertise in Governance, Risk, and Compliance (GRC) to support and enhance our security and compliance programs within the healthcare industry. This role is critical in ensuring adherence to industry regulations, responding to customer audits, and maintaining compliance with ISO 27001, HIPAA, and other security frameworks. The ideal candidate will be a detail-oriented compliance expert who can navigate complex regulatory environments, assist with internal/external audits, and drive continuous improvement in security governance. What You'll Be Working On Audit & Compliance Management Lead and support customer security audits, responding to security questionnaires and demonstrating compliance with security frameworks. Prepare, coordinate, and manage ISO 27001 audits, including evidence collection, control implementation, and auditor engagement. Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory requirements applicable to healthcare data security. Develop and maintain policies, procedures, and security documentation to meet regulatory and contractual obligations. Perform gap analyses and risk assessments to identify and remediate compliance risks. Governance & Risk Management Manage and improve security governance frameworks, ensuring alignment with industry best practices and business objectives. Conduct third-party vendor risk assessments, ensuring compliance with security policies and contractual obligations. Monitor security controls, ensuring effectiveness and continuous improvement in alignment with security frameworks. Support security awareness training initiatives, ensuring employees understand compliance responsibilities. Regulatory & Framework Support Stay current on ISO 27001, HIPAA, NIST 800-53, and other relevant standards, translating them into actionable security controls. Assist in defining security metrics and reporting on compliance status and risk posture to leadership. Work closely with legal, security, IT, and business teams to align compliance requirements with security operations. What You'll Bring to OneStudyTeam 8+ years of experience in GRC, compliance, risk management, or IT audit, with a focus on ISO 27001, HIPAA, and HITRUST. Experience leading ISO 27001 audits, including ISMS implementation and external audit coordination. Strong understanding of NIST CSF, SOC 2, GDPR, and other security frameworks. Hands-on experience with customer security audits, including responding to security questionnaires and managing security assessments. Ability to perform risk assessments, policy reviews, and compliance gap analyses. Familiarity with GRC tools (e.g., OneTrust, LogicGate, Archer, Vanta, Drata) is a plus. Previous experience working with Microsoft Excel or Google Sheets is required Previous experience working with Jira is required Certifications (Preferred): ISO 27001 Lead Auditor/Implementer, CISSP, CISM, CISA, HITRUST CCSFP, CRISC. We value diversity and believe the unique contributions each of us brings drives our success. We do not discriminate on the basis of race, sex, religion, color, national origin, gender identity, age, marital status, veteran status, or disability status. Note: OneStudyTeam is unable to sponsor work visas at this time. If you are a non-U.S. resident applicant, please note that OneStudyTeam works with a Professional Employer Organization. As a condition of employment, you will abide by all organizational security and privacy policies. This organization participates in E-Verify (E-Verify's Right to Work guidance can be found here).

We are seeking a detail-oriented and highly skilled Security Analyst to join our team in Boston and shape the future of Cybersecurity. As a Security Analyst at 7AI, you will leverage your expertise of the security landscape to review and analyze AI Agent investigations, ensuring accuracy and completeness, ultimately helping to build our multi-agent platform. You will be integral in building and maintaining the reliability of our AI Agents, working in tandem with Engineering and Product to inform our roadmap as we build. If you want to build the next generation of Cybersecurity and put AI in the hands of defenders, please apply below. Key Responsibilities: Review and validate alerts and investigations completed by the AI Agents for accuracy and completeness. Collaborate with the Engineering and Product teams to provide feedback and assist in optimizing the AI platform. Develop internal playbooks, standard operating procedures and tools that will guide the AI Agents to perform quality investigations. Stay current with emerging cybersecurity trends, vulnerabilities, and new attack techniques, especially the field of AI-driven attacks. Investigate flagged security incidents, analyzing potential threats and confirming the findings generated by AI. Recommend mitigation strategies and remediation steps to train the AI to reduce the threat surface. Correlate findings from multiple sources, including network logs, endpoint data, and threat intelligence, to validate AI-generated reports. Assist with ongoing threat monitoring, triage, and prioritization of security incidents. Required Qualifications: 4+ years of experience in a Security Analyst or similar role within the cybersecurity field. Hands-on experience with incident response for Cloud and Identity alerts, and at least two of Email, EDR, Threat Intel and Networking alerts. Strong understanding of security monitoring tools and techniques (SIEM, IDS/IPS, IDP, etc.). Experience analyzing and investigating security alerts from multiple sources, including intrusion detection systems, network monitoring tools, and endpoint protection platforms. Familiarity with the latest cybersecurity threats, attack vectors, and vulnerabilities. Strong analytical and problem-solving skills, with the ability to verify AI-driven analysis and make independent security decisions. Scripting experience with languages such as Python Data querying experience with SIEM technologies (SPL, KQL, FQL, SQL, etc).

Were a growing bank that recognizes and values talented people. Were consistently recognized both nationally and locally as a Top Place to Work and our team members are as important to us as our core values. What You'll Do: Reviews system logs and real time alerts for the Banks infrastructure to identify trends, investigate abnormalities, and report exceptions to the Banks Information Security Program. Participates in the Information Security Committee and creates meeting dashboards. Coordinates the Banks User Access Program for all systems both on premise and those hosted by third parties including but not limited to the initial set up of users, ongoing reviews, and removal of users due to terminations/separations. Monitors the Banks IT related accepted risks for adding, updating, and removing accepted risks based on changes in technology and vulnerabilities. Assists with the initial configuration review of third party hosted systems to determine compliance with the Banks policies and procedures. Gathers industry alerts and information from information security focused groups (Financial Services Information Sharing and Analysis Center, the FDIC, etc.) to alert the Information Security Committee of the potential threats and recommends action steps commensurate with the risk level. Monitors the configuration of bank wide applications to verify they meet the standards required by the Information Security Program. Updates the Information Security Program and corresponding cybersecurity policies, procedures, and controls annually based on regulatory changes, feedback from the Information Security Committee, and the results of audits and assessments. Coordinates the scheduled reviews of systems logs to verify appropriate system changes and employee access rights to verify alignment with job responsibilities. Performs scans on internal devices to identify vulnerabilities and provide guidance to system administrators for remedial actions. Analyzes the integrity of changes made to the Banks network through the Patch Management program, Change Management Program, user access changes, and system modification forms. Develops and conducts information security training for employees to make them aware of the Banks information security policies and procedures. Monitors team members adherence to the Banks Information Security Program through clean desk audits, phishing testing, and other testing outlined in the Information Security Testing Program. Research, implement, and maintain an information security framework through ongoing compliance monitoring of the framework. Develops and coordinates information security training for customers through the Banks statements and social media platforms. Assists with the Banks responses to potential cybercrime activity and data breaches according to the Banks Incident Response Policy. Assists customers with recovering from fraudulent transactions by identifying the recovery steps necessary based on the transaction type and coordinating the follow up with other departments as needed. Completes or participates in the preparation of risk assessments that are performed for new critical technologies, applications, or devices that are implemented, revised, and/or installed. Works with Information Services and system administrators to select appropriate technology vendors that support regulatory and best practice requirements and researches information security tools. Enforces the Banks record retention program for electronic documents and classifies these records in accordance with the Banks Classification of Information Policy. Supports the Risk Management Department with risk management related tasks as required. Performs all duties consistent with applicable Federal and State laws and regulations as well as Bank Policies Performs other related duties as assigned Exceeds customer expectations by following the guidelines outlined in the Customer Experience Program This position is Hybrid once you have assimilated into the team (1 day onsite per week) Requirements: Five or more years experience in the information security field, preferably in the banking industry; and Bachelors degree (B.A.) with a focus on business and/or technology; or Equivalent combination of education and experience. Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), and/or Certified Information Security Manager (CISM) designation(s) are preferred, but not required.

SourcePro Search is conducting a search for a Information Security Analyst. As Information Security Analyst (ISA), reporting to the Director of Information Technology and working closely with the Chief Information Officer, this position will be responsible for the administration, implementation, and oversight of the Firm's Information Security Management Systems (ISMS) to effectively safeguard all data stored on premises and in the cloud. They will be responsible for ongoing development and improvement of an extensive security strategy for the Firm. The security professional will suggest tools and techniques to achieve security goals and to record the process related to gathering and maturing Threat Intelligence. The Information Security Analyst will work in collaboration with the Network team to offer support for security tools and technologies such as firewall, proxy server, remote access, and others. They will research and investigate the potential impact of new threats and exploits to improve detection and response capabilities. This person will work closely with senior IT management on information security-centric initiatives related to compliance, risk management, and data privacy and protection strategies for the organization, in alignment with relevant laws, regulations, and industry standards. Additionally, this role will coordinate security related responses to prospective client requests for proposals (RFPs), as well as audits for existing clients. ESSENTIAL FUNCTIONS: • Participates in the development, risk assessment, communications, status reporting, and execution of, enterprise-wide information security, compliance, risk, and privacy strategies. • Administers and monitors security platforms Firm-wide and lias with third party providers to coordinate response to security events and vulnerability assessments • Responsible for updating and revision of Information Security policies and SOPs; works with CIO and Data Protection Committee to ensure policies meet business requirements and align with US federal, state, and UK regulations. • Assesses existing IT policies, guidelines, procedures and standards to discover security related gaps and create or align firm documentation, as necessary. • Coordinates vendor engagements for IT Risk Assessments to identify, assess, and remediate threats internally and with 3rd party vendors. • Collaborates on the development or selection of regular Information Security and Compliance training to all employees and assists in delivery and auditing of compliance training. • With the CIO and Director of IT, participates in and helps direct the Firm's incident response efforts when system compromise or information loss is suspected, in an effort to minimize any negative impact. • Supports the ongoing administration, design and use of network segmentation tools and underlying concepts. • Supports development of testing and evaluation plans, including cyber test activities. • Works with third party vendors to plan for and execute penetration testing. • Ensures that security controls are integrated into new systems and applications. • Assists with other projects and initiatives at the direction of the CIO and Director of IT. QUALIFICATIONS: • Bachelor's degree in computer science, Information Security, Information Technology or related field. • Minimum of three (3) years of work experience in the field of information security and compliance, or equivalent combination of education and work experience. • Experience working with a variety of automation tools, firewall systems, and other technologies used in cybersecurity. • Sound professionalism with incident response events. • Exceptional oral and written communication skills and the ability to articulate highly technical information for real world business impact at a senior management level. • Strong time management, prioritization, problem-solving, and organizational skills, and the ability to work effectively in a high-pressure environment. • Strong interpersonal skills and ability to work effectively with diverse levels of constituencies. • Flexibility and capacity to respond calmly, efficiently, and effectively in stressful situations. • Able to meet set deadlines and work effectively under pressure. • Ability to maintain confidentiality of matters and other Firm business information. ****************************

Job Description Come make your mark with Watermark! 🎖️ FOUNDED BY USAF VETERANS in 2007, we are proud to be a Service-Disabled Veteran Owned Small Business. 🌎 SUBJECT MATTER EXPERTS specializing in security and risk management. We’re intimately familiar with DOD security programs and mission requirements. ⭐ OUR CORE VALUES drive every action we take as a company. We strive to exhibit PERSPECTIVE, PASSION, COMMUNICATION, INTEGRITY AND ETHICS, and BALANCE in all we do. 💲 COMPETITIVE BENEFITS PACKAGE to address our employees’ physical, mental, emotional, and financial well-being. This includes 100% employer- paid medical insurance, ample paid leave, a free employee assistance program, and a competitive 401k savings plan. At Watermark, our people come first! Information Systems Security Officer III The ISSO is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO. The position shall have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system. This also will include physical and environmental protection, personnel security, incident handling, and security training and awareness. It will be required to work in close coordination with the ISSM and ISO in monitoring the information system(s) and its environment of operation to include developing and updating the authorization documentation, implementing configuration management across authorization boundaries. This will include assessing the security impact of those changes and making recommendation to the ISSM. The primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. In this role you will… Assist the ISSM in meeting their duties and responsibilities Prepare, review, and update authorization packages Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media Notify ISSM when changes occur that might affect the authorization determination of the information system(s) Conduct periodic reviews of information systems to ensure compliance with the security authorization package Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly Ensure all IS security-related documentation is current and accessible to properly authorized individuals Ensure audit records are collected, reviewed, and documented (to include any anomalies) Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them Prepare reports on the status of security safeguards applied to computer systems Perform ISSO duties in support of in-house and external customers Conduct continuous monitoring activities for authorization boundaries under your preview Assist Department of Defense, National Agency and Contractor organizations with the development of assessment and authorization (A&A) efforts Experience Requirements: 5-7 years related experience Prior performance in roles such as System, Network Administrator or ISSO Education Requirements: Bachelor’s degree or equivalent experience (4 years) Certification Requirements: Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level II or Information Assurance Manager II within 6 months of the date of hire. Security Clearance Requirements: Current Top Secret Clearance with SCI Eligibility Eligibility for access to Special Access Program Information Willingness to submit to a Counterintelligence polygraph Other Requirements: Must have expert knowledge of DoD, National and applicable service and agency security policy, manuals and standards. Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners Reports to a physical location which occasionally requires the ability to traverse between buildings May require sedentary work at least 50% of the time Must be able to regularly list up to 50 lbs Ability to manage stress with a high degree of maturity/professionalism Demonstrated critical thinking and leadership skills and the ability to work well with others Effective verbal and written communication skills All Level I & Level II positions - candidate should possess some Special Access Program (SAP) experience All Level III positions -candidate should possess 2+ years of Special Access Program (SAP) experience The anticipated compensation range for this position is $98,345 - $133,055. M ultiple considerations are taken into account when determining the final salary/hour rate, including but not limited to, Contract Wage Determination, education and certifications, relevant work experience, related skills and competencies, as well as Federal Government Contract Labor categories. Central to Watermark’s employment philosophy is the wellbeing of our employees which is why we offer a robust benefits package and wellness program alongside of annual base compensation. Watermark Risk Management International, LLC is an equal opportunity and affirmative action employer and does not discriminate on the basis of race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, retaliation, parental status, military service, or other non-merit factors. Watermark Risk Management International, LLC is a federal contractor and is therefore subject to any federal vaccine mandates or other customer vaccination requirements. Powered by JazzHR qur Ya4nS5g

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Top Secret RTX BBN has an immediate need for Information Systems Security Officer (ISSO). The role of the ISSO is to bridge the gap between high level security policies/requirements and technical/operational implementation of those requirements. Candidates should have in-depth understanding of the cybersecurity policies and procedures for government sector information systems and sufficient technical knowledge and experience to implement them. The ISSO will work closely and effectively with the ISSM/ISSE and Sponsor IT managers on all aspects of their development and implementation programs as they progress through their Agile management processes. The ISSO will provide guidance, standards, and oversight to the development teams as they work towards accreditation and then to keep accredited. The candidate will provide input to A&A process activities and related documentation such as systems concept of operations, system security design, implementation plans, operational procedures, and maintenance training materials. What You Will Do Responsibilities include, but are not limited to: * The Information Systems Security Officer (ISSO) will assist the Information System Security Manage (ISSM) to provide oversight for the information systems security control methods, mitigations, and tools throughout a systems' lifecycle in compliance with U.S. Department of Defense (DoD) security laws, regulations and guidelines. The ISSO will participate in projects, guide and counsel internal customers, assist in developing and maintaining cross-security enclave processes and standards, and provide training and guidance on tools and methods to other members of the cybersecurity team. * Primarily responsible for system compliance, auditing, security plan development and delivering information systems security education and awareness. * Assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions. * Routinely collaborates with the facility security team, program personnel, and government representatives. * Perform security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.) * Assist in overseeing and managing the patch management process and execution across all RTX BBN security programs. Collaborate with peer ISSMs/ISSE and Corporate equivalents for alignment and sharing of best practices. * Develop, update, and/or review RMF documentation to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP). Qualifications You Must Have * Bachelor's Degree with 5 years of experience managing and implementing security program requirements in a classified R&D environment, or an advanced degree with 3 years of experience working in Industrial Security, Information Assurance/Cyber, Special Programs, military or government information security programs an additional 5 years of related experience in lieu of degree Active and transferable Top Secret U.S. government security clearance is required prior to start date. * Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM). * Certifications equivalent to or exceeding DoD 8570.01-M IAM Level II functional and baseline certification requirements. * Knowledge and/or experience with STIGs, SCAP, Splunk or other system hardening and compliance, vulnerability assessment, and/or SIEM tools. * Ability to obtain access to Special Access Programs. * Must have Top Secret clearance and the ability to obtain a TS/SCI CI Poly Clearance * Security + Note: U.S. citizenship is required, as only U.S. citizens are authorized to access information under this program/contract. Qualifications We Prefer - Familiar with all, Expert in some * Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF) * Experience working in DoD classified operating environments. * Experience with various information system security tools that address vulnerability analysis and mitigation. * Experience interpreting, implementing, and assessing DISA STIGs. * Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication * Desired certifications: CISM, CISSP. What We Offer Whether you're just starting out on your career journey or are an experienced professional, we offer a robust total rewards package with compensation; healthcare, wellness, retirement, and work/life benefits; career development and recognition programs. Some of the benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care. * Relocation Assistance available * This position is Onsite at our Cambridge, MA Location To help you achieve your goals, BBN will provide: * A strong leadership team well-versed in government R&D. * A collaborative and collegial environment to push state-of-the-art research. * Business development, programmatic, contracting, finance, and HR support The salary range for this role is 90,000 USD - 182,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Top Secret RTX BBN has an immediate need for Information Systems Security Officer (ISSO). The role of the ISSO is to bridge the gap between high level security policies/requirements and technical/operational implementation of those requirements. Candidates should have in-depth understanding of the cybersecurity policies and procedures for government sector information systems and sufficient technical knowledge and experience to implement them. The ISSO will work closely and effectively with the ISSM/ISSE and Sponsor IT managers on all aspects of their development and implementation programs as they progress through their Agile management processes. The ISSO will provide guidance, standards, and oversight to the development teams as they work towards accreditation and then to keep accredited. The candidate will provide input to A&A process activities and related documentation such as systems concept of operations, system security design, implementation plans, operational procedures, and maintenance training materials. What You Will Do Responsibilities include, but are not limited to: The Information Systems Security Officer (ISSO) will assist the Information System Security Manage (ISSM) to provide oversight for the information systems security control methods, mitigations, and tools throughout a systems' lifecycle in compliance with U.S. Department of Defense (DoD) security laws, regulations and guidelines. The ISSO will participate in projects, guide and counsel internal customers, assist in developing and maintaining cross-security enclave processes and standards, and provide training and guidance on tools and methods to other members of the cybersecurity team. Primarily responsible for system compliance, auditing, security plan development and delivering information systems security education and awareness. Assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions. Routinely collaborates with the facility security team, program personnel, and government representatives. Perform security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.) Assist in overseeing and managing the patch management process and execution across all RTX BBN security programs. Collaborate with peer ISSMs/ISSE and Corporate equivalents for alignment and sharing of best practices. Develop, update, and/or review RMF documentation to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP). Qualifications You Must Have Bachelor's Degree with 5 years of experience managing and implementing security program requirements in a classified R&D environment, or an advanced degree with 3 years of experience working in Industrial Security, Information Assurance/Cyber, Special Programs, military or government information security programs an additional 5 years of related experience in lieu of degree Active and transferable Top Secret U.S. government security clearance is required prior to start date. Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM). Certifications equivalent to or exceeding DoD 8570.01-M IAM Level II functional and baseline certification requirements. Knowledge and/or experience with STIGs, SCAP, Splunk or other system hardening and compliance, vulnerability assessment, and/or SIEM tools. Ability to obtain access to Special Access Programs. Must have Top Secret clearance and the ability to obtain a TS/SCI CI Poly Clearance Security + Note: U.S. citizenship is required, as only U.S. citizens are authorized to access information under this program/contract. Qualifications We Prefer - Familiar with all, Expert in some Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF) Experience working in DoD classified operating environments. Experience with various information system security tools that address vulnerability analysis and mitigation. Experience interpreting, implementing, and assessing DISA STIGs. Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication Desired certifications: CISM, CISSP. What We Offer Whether you're just starting out on your career journey or are an experienced professional, we offer a robust total rewards package with compensation; healthcare, wellness, retirement, and work/life benefits; career development and recognition programs. Some of the benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care. • Relocation Assistance available • This position is Onsite at our Cambridge, MA Location To help you achieve your goals, BBN will provide: A strong leadership team well-versed in government R&D. A collaborative and collegial environment to push state-of-the-art research. Business development, programmatic, contracting, finance, and HR support The salary range for this role is 90,000 USD - 182,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

gTANGIBLE Corporation (gTC), ****************** is a S corporation and a registered Government contractor that provides services and solutions in: National Security Programs Professional, Administrative, and Management Support Mission and Warfighter Support We are a Service Disabled Veteran Owned Small Business (SDVOSB) and the founder has years of successful experience in the Government contracting arena. Our leadership team is an exceptional group of Government contracting professionals. gTANGIBLE is in the process of identifying candidates for the following position. Requisition Type: Contingent (Open) Position Status: Full Time Position Title: Information Systems Security Officer (ISSO) III Location: Bedford, MA Security Clearance Level: Top Secret/SCI, SAP Information eligible, consent for Counterintelligence polygraph Duties and Responsibilities The Air Force (AF) Special Access Program (SAP) Security Support Services (SSS) assists the AF cognizant security authority in oversight of enhanced National Security Objectives supporting AF SAP interests through active and integrated security operations, processes, mechanisms, and management. This support provides multi- disciplinary security support, including specialized analytical/program protection support, while being responsive and flexible to dynamic SAP security situations. The ISSO is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO. The position shall have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system. This also will include physical and environmental protection, personnel security, incident handling, and security training and awareness. It will be required to work in close coordination with the ISSM and ISO in monitoring the information system(s) and its environment of operation to include developing and updating the authorization documentation, implementing configuration management across authorization boundaries. This will include assessing the security impact of those changes and making recommendation to the ISSM. The primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Departments efforts. The position will provide "day-to-day" support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Duties include the following: Develop physical or logical topologies for a system. Assist the ISSM in meeting their duties and responsibilities. Prepare, review, and update authorization packages. Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media. Conduct periodic reviews of information systems to ensure compliance with the security authorization package. Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change. Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly. Ensure all IS security-related documentation is current and accessible to properly authorized individuals. Ensure audit records are collected, reviewed, and documented (to include any anomalies). Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties. Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans. Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them. Prepare reports on the status of security safeguards applied to computer systems. Perform ISSO duties in support of in-house and external customers. Conduct continuous monitoring activities for authorization boundaries under your preview. Assist Department of Defense, National Agency and Contractor organizations with all RMF efforts. Knowledge and Qualifications Bachelors degree and 5-7 years of related experience or 9-11 years of related experience without a degree. Experience must include developing RMF packages or body of evidence. Prior performance in roles such as System, Network Administrator or ISSO. Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level II or Information Assurance Manager II within 6 months of the date of hire. Must be able to regularly lift up to 50 lbs. Minimum of 2 years of SAP experience required. Prior Air Force experience a plus. Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws.

Job DescriptionDescription: The ISSO is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO. The position shall have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system. This also will include physical and environmental protection, personnel security, incident handling, and security training and awareness. It will be required to work in close coordination with the ISSM and ISO in monitoring the information system(s) and its environment of operation to include developing and updating the authorization documentation, implementing configuration management across authorization boundaries. This will include assessing the security impact of those changes and making recommendation to the ISSM. The primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Departments efforts. The position will provide "day-to-day" support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Performance shall include: Develop physical or logical topologies for a system Assist the ISSM in meeting their duties and responsibilities Prepare, review, and update authorization packages Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media Conduct periodic reviews of information systems to ensure compliance with the security authorization package Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly Ensure all IS security-related documentation is current and accessible to properly authorized individuals Ensure audit records are collected, reviewed, and documented (to include any anomalies) Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them Prepare reports on the status of security safeguards applied to computer systems Perform ISSO duties in support of in-house and external customers Conduct continuous monitoring activities for authorization boundaries under your preview Assist Department of Defense, National Agency and Contractor organizations with all RMF efforts Requirements: Experience: 5 - 7 years related experience Prior performance in roles such as System, Network Administrator or ISSO Education: Bachelor’s degree or equivalent experience (4 years) Certifications: Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level II or Information Assurance Manager II within 6 months of the date of hire Security Clearance: Current Top-Secret Clearance with SCI Eligibility Eligibility for access to Special Access Program Information Willingness to submit to a Counterintelligence polygraph Other Requirements: Must be able to regularly lift up to 50 lbs

Basic Qualifications Requires a Bachelor's degree in Systems Engineering, or a related Science, Engineering or Mathematics field. Also requires 5+ years of job-related experience, or a Master's degree plus 3 years of job-related experience. Agile experience preferred. CLEARANCE REQUIREMENTS: Department of Defense Secret security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required. Responsibilities for this Position We are seeking a Systems Security Engineer who has experience in the design and development of NSA-certified Cybersecurity devices. Key Responsibilities: Design and develop specifications for mission-critical NSA-certified Cybersecurity devices Develop real-time multi-threaded Embedded System architecture using Model-based Systems Engineering (MBSE) tools and techniques Collaborate with software and validation engineering teams to deliver high-speed data solutions Analyze and maintain system security requirements throughout product development lifecycle Conduct trade studies, perform functional analysis, and design system security. Preferred Skills and Experiences: NSA approved Cryptography/Encryption Security requirements analysis Real-Time multi-threaded Embedded System architecture and development Model-based Systems Engineering (MBSE) CISSP certification or similar INCOSE ASEP, CSEP, or ESEP certification We value candidates who possess: Drive to expand knowledge and experience in designing complex systems Ability to define project scope, schedule, and expected results Initiative to complete assignments and ability to engage in technical direction and leadership Our Commitment to You: An exciting career path with opportunities for continuous learning and development Research-oriented work with award-winning teams Competitive benefits package #CJ3 Salary Note This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled. Combined Salary Range USD $133,499.00 - USD $140,000.00 /Yr. Company Overview General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team! Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Secret At Raytheon, the foundation of everything we do is rooted in our values and a higher calling - to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today's mission and stay ahead of tomorrow's threat. Our team solves tough, meaningful problems that create a safer, more secure world. Our cybersecurity team is seeking a Senior Information Systems Security Officer (ISSO) to support our team 100% onsite at our facility in Woburn, Massachusetts. The successful candidate will interface with the Information Systems Security Manager (ISSM) to ensure adherence with NIST Special Publications, customer directives, and company policies as applicable all NISPOM Chapter 8, DAAPM, JSIG policies. What You Will Do * Assessing and monitoring system compliance, auditing, security plan development and delivering information systems security education and awareness. * Investigating information system security violations and help prepare reports specifying corrective and preventative actions. * Reviewing and approving (within authority) configuration management requests. * Conducting technical and administrative assessments. * Integrating new cybersecurity processes, procedures, and tools. * Support the creation, review and update of cybersecurity documentation and other technical writing. Qualifications You Must Have * Typically requires a University Degree or equivalent experience and minimum 5 years prior relevant experience, or an Advanced Degree in a related field and minimum 3 years' experience. * Current IAM Level I certification (Security+ or other). * Relevant Experience Considered in any combination: * Cybersecurity, systems security or hardening * Information Technology * Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA * Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics) * Physical security/security, policework/criminal justice, investigations, or Border Patrol * Project or program management, office management, senior administration, or account management Qualifications We Prefer * Experience working in DoD classified operating and/or laboratory environments. * Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc. * Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry. * Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF). * Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT). * Familiarity with large multi-facility networks including various complex components, including Windows and Linux environments. * Experience interpreting, implementing, and assessing DISA STIGs. * Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication. What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation. Relocation Non-Eligible - Relocation assistance not available Please consider the following role type definition as you apply for this role: * Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products. We are RTX #LI-Onsite The salary range for this role is 82,000 USD - 164,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Secret At Raytheon, the foundation of everything we do is rooted in our values and a higher calling - to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today's mission and stay ahead of tomorrow's threat. Our team solves tough, meaningful problems that create a safer, more secure world. Our cybersecurity team is seeking a Senior Information Systems Security Officer (ISSO) to support our team 100% onsite at our facility in Woburn, Massachusetts. The successful candidate will interface with the Information Systems Security Manager (ISSM) to ensure adherence with NIST Special Publications, customer directives, and company policies as applicable all NISPOM Chapter 8, DAAPM, JSIG policies. What You Will Do Assessing and monitoring system compliance, auditing, security plan development and delivering information systems security education and awareness. Investigating information system security violations and help prepare reports specifying corrective and preventative actions. Reviewing and approving (within authority) configuration management requests. Conducting technical and administrative assessments. Integrating new cybersecurity processes, procedures, and tools. Support the creation, review and update of cybersecurity documentation and other technical writing. Qualifications You Must Have Typically requires a University Degree or equivalent experience and minimum 5 years prior relevant experience, or an Advanced Degree in a related field and minimum 3 years' experience. Current IAM Level I certification (Security+ or other). Relevant Experience Considered in any combination: Cybersecurity, systems security or hardening Information Technology Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics) Physical security/security, policework/criminal justice, investigations, or Border Patrol Project or program management, office management, senior administration, or account management Qualifications We Prefer Experience working in DoD classified operating and/or laboratory environments. Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc. Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry. Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF). Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT). Familiarity with large multi-facility networks including various complex components, including Windows and Linux environments. Experience interpreting, implementing, and assessing DISA STIGs. Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication. What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation. Relocation Non-Eligible - Relocation assistance not available Please consider the following role type definition as you apply for this role: Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products. We are RTX #LI-Onsite The salary range for this role is 82,000 USD - 164,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms