Cyber security analyst jobs in Racine, WI

RELOCATION ASSISTANCE: Relocation assistance may be available CLEARANCE TYPE: Top SecretTRAVEL: Yes, 10% of the TimeDescriptionAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Northrop Grumman Mission Systems is seeking a Principal Industrial Security Analyst/CSSO in Rolling Meadows, IL to support multiple programs as it relates to all applicable classified federal, contractual, customer and company requirements. The responsibilities include, but are not limited to the following: supporting a fast-paced, high profile portfolio of classified programs; create, maintain and leverage working relationships with internal and external customers; develop, and administer security programs and procedures for classified or proprietary materials, documents, and equipment. Experience in program security, with knowledge of implementing a multi-disciplined security program (access control, personnel security, physical security, OPSEC etc.). Studies and implements federal security regulations that apply to company operations. Obtains rulings, interpretations, and acceptable deviations for compliance with regulations from government agencies. Prepares manuals outlining regulations, and establishes procedures for handling, storing, and keeping records, and for granting personnel and visitor's access to classified records and materials. Prepares transportation plans, courier approval requests, and classified shipments. Conducts security education classes and related briefings. Investigates security violations and prepares reports specifying preventive action to be taken. Working knowledge of DoD 5205.07 SAP Manual, ICD 705, ICD 704, and NISPOM. We are seeking a candidate with exceptional customer service and communication skills. The ideal individual will demonstrate the ability to work independently and see projects through to completion while maintaining flexibility to adapt to changing priorities and deadlines. A self-starter who thrives with minimal supervision, the candidate should be willing to work extended hours in a fast-paced, deadline-driven environment. Strong spoken and written communication skills, along with excellent organizational abilities, are essential for effective interactions. Proficiency in computer and desktop office software products is also required. Basic Qualifications: 5+ years of CPSO, CSSO, or relevant experience with Bachelors; or 3+ years with Masters; an additional 4 years of applicable work experience may be substituted for Bachelor's degree. Current Active Top Secret Clearance. US Citizenship Required. Ability to meet enhanced security requirements and obtain/maintain SAP eligibility and access. In-scope investigation (T5, T5R, SSBI, SBPR, PR) completed within the last 6 years or current enrollment in Continuous Evaluation (CE) program. Experience and knowledge of systems such as JADE, DISS or SIMS. Must be able to collaborate effectively with peers, program leadership, and customers. Preferred Qualifications: CDSE Intro to SAP course completion. ICD 705 training. Experience with customer high side networks to include CV2, CORE, CNET, JADE, etc. OPSEC program experience. Primary Level Salary Range: $89,900.00 - $134,900.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit *********************************** U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

We are looking for a skilled and motivated Cyber Security Engineer to join our team in Milwaukee, Wisconsin. In this role, you will play a pivotal part in safeguarding our organization's IT infrastructure and ensuring compliance with cybersecurity standards. The ideal candidate will possess strong technical expertise, excellent communication skills, and a collaborative mindset to effectively contribute to our innovative and supportive work environment. The role is hybrid to Milwaukee and applicants must be eligible to work in the U.S., no third-party candidates will be considered. Responsibilities: - Develop, implement, and maintain cybersecurity policies and procedures to protect digital assets. - Conduct regular cybersecurity audits and address findings to enhance security and ensure compliance with industry standards. - Collaborate with cross-functional teams to support IT initiatives and foster a cohesive working environment. - Communicate effectively with stakeholders, team members, and vendors to ensure alignment on project goals. - Identify and resolve cybersecurity and infrastructure issues using analytical and problem-solving skills. - Manage cybersecurity projects from planning to execution, ensuring deadlines and budgets are met. - Build and maintain strong relationships with vendors to guarantee high-quality service delivery. - Provide expertise in managing IT infrastructure, including networks, servers, and cloud services. - Monitor and configure firewall technologies, including Checkpoint and Cisco ASA, to enhance network security. - Administer Office 365 and Azure platforms while ensuring their security and functionality. Requirements - Proven experience in IT infrastructure management, including networks, servers, and cloud services. - Strong knowledge of cybersecurity strategies, best practices, and vulnerability assessments. - Proficiency in Windows Server and Client operating systems. - Expertise in networking concepts and terminology, as well as hardware management. - Hands-on experience with Office 365 and Azure administration. - Ability to lead long-term projects with guidance from senior IT staff. - Excellent verbal and written communication skills to convey technical concepts to non-technical stakeholders. - Strong collaboration and problem-solving abilities with a proactive approach to addressing challenges. Technology Doesn't Change the World, People Do. Robert Half is the world's first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles. Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app (https://www.roberthalf.com/us/en/mobile-app) and get 1-tap apply, notifications of AI-matched jobs, and much more. All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information. © 2025 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking "Apply Now," you're agreeing to Robert Half's Terms of Use (https://www.roberthalf.com/us/en/terms) .

We at Agap Technologies Inc. help our clients build successful businesses by enabling them to synergize state-of-the-art technology with exceptional talent. We offer a full suite of IT solutions and services, from custom software development to staffing. Our multidisciplinary team of experts in areas like data analysis, automation, personnel development and management, and project management helps us offer a unique set of tech-driven solutions and services that allow our clients to achieve their business objectives in the most efficient way possible. Our technical competence is further built upon by our high standards of professionalism, diligence, and ethics, which has enabled us to deliver top-notch services to our clients and exceed expectations every time. Job Description Our Training Features: · You will receive top quality instruction that is famous for Online IT training. · Trainees will receive immediate response to any training related queries, either technical or otherwise. We advise our trainees not to wait till the next class to seek answers to any technical issue. · Training sessions are conducted by real-time instructor with real-time examples. · Every training session is recorded and posted to the batch after each weekend class. · We are offering online training on Cyber Security. . Provide OPT Stem Ext.: Guidance and support for applying for the 24-month OPT STEM extension Help with OPT Employment letter: Help with drafting and obtaining OPT employment letters that meet USCIS requirements. · We provide training in technology of your choice. · Good online training virtual class room environment. · Highly qualified and experienced trainers. · Professional environment. · Special interview training · Training for skill enhancement. · Study material and Lab material provided. · E-Verified company. If you are interested or if you know anyone looking for a change, please feel free to call or email me for details or questions. I look forward to seeing resumes from you or your known and highly recommended candidates. Thanks Additional Information All your information will be kept confidential according to EEO guidelines.

This role is Hybrid, 3 Days a week on-site at the Northbrook, IL Office. Security Analyst is a key advisor in driving upgrades to UL's technical requirements, programs, processes to maintain UL as the highest quality provider for cybersecurity services. Remain up to date on all cybersecurity related topics. Perceived as both the customer's and internal security team's trusted advisor. Conduct advanced hardware penetration tests, hacking to identify issues in embedded products and software. Bachelor or University degree in a related discipline plus generally two years of directly related experience required. Experience with hardware vulnerability assessments, embedded systems testing, and RF security. What you'll experience working for ULS UL Solutions has been pioneering change since 1894 and we're still leading the way. From day one, we've blazed a trail protecting the planet and everyone on it. Our teams have influenced billions of products, plus services, software offerings and more. We break things, burn things and blow things up. All in the name of safety science. That's where you come in - because none of it could happen without you. It takes passion to protect people, problem-solving to safeguard personal data and conviction to make the world a more sustainable place. It takes bold ideas and brilliant minds to build a better world for future generations across the globe. This is more than a job. It's a calling. A passion to use our expertise and play our part in creating a more secure, sustainable world today - and tomorrow. As a member of our safety science community, you'll use your ideas, your energy and your ambition to innovate, challenge and ultimately, help create a safer world. Everyone here is unique. But we're also a global community, working together to help create a safer world. Join UL Solutions and you can connect with the brightest minds in the business, all bringing their distinct perspectives and diverse backgrounds together to deliver real change. Empowering our customers to keep the world safe means thinking ahead. It means investing in training and empowering our people to learn and innovate. At UL Solutions, we help build a better future - one where everyone benefits. Join UL Solutions to be at the center of safety. To learn more about us and the work we do, visit UL.com Total Rewards: We understand compensation is an important factor as you consider the next step in your career. The estimated salary range for this position is $75,000 to $90,000 and is based on multiple factors, including job-related knowledge/skills, experience, geographical location, as well as other factors. This position is eligible for annual bonus compensation with a target payout of 5% of the base salary. This position also provides health benefits such as medical, dental and vision; wellness benefits such as mental and financial health; and retirement savings (401K) commensurate with the standard rewards offered in each individual location or country. We also provide full-time employees with paid time off including vacation (15 days), holiday including floating holidays (12 days) and sick time off (72 hours). #LI-SG2 #LI-Hybrid Perform code review in customer offices or UL premises to analyze the evaluated product. Once the vulnerability analysis is done the engineer defines the test plan with the project leader. Perform software penetration testing for evaluation with regards to reverse engineering (static and dynamic) and protocol attacks. Perform hardware penetration testing, conduct hardware vulnerability assessments and embedded systems testing. Projects report writing in compliance with the laboratory and industry best practices rules. Contribute to the R&D team: attack tools development, new attack development, analysis tools. Security activities requires engineer to be at the-state-of-the-art. Research, development and the realization of innovative attacks on products under evaluation are tasks to be considered. Maintain/improve technical knowledge by attending educational workshops, reviewing professional publications, obtaining applicable certifications participating in professional societies and cross-departmental task forced.

The JFG Information Security Engineering & Operations Analyst plays a key role in supporting JFG's Identity & Access Management (IAM), Cyber Threat Management, and Vulnerability Management services. This role helps support IAM services to provision, deprovision, and certify access to JFG systems. It also helps detect, analyze, hunt for, and report on cybersecurity events related to malware, network intrusion, and data loss protection and insider threat incidents. This role is also responsible for finding and reporting on internal and external vulnerabilities on JFG systems. This role will be supported by a Managed Detection & Response (MDR) services and Identity & Access Management Managed services. Occasional off-hour and weekend work will be expected. Very little (less than 5%) business travel is expected in this role. This role will be located in Racine, Wisconsin. Ability to come in-office would be required (working a hybrid schedule.) KEY RESPONSIBILITIES: * Detect, analyze, contain, and remediate threats and vulnerabilities across the JFG environment. * Operate and support vulnerability management, data loss protection, cybersecurity monitoring, cybersecurity incident response, intrusion analysis, root-cause-analysis (digital forensics), cyber-threat intelligence, and malware analysis technologies. * Lead and report on incidents involving malware, network intrusion, insider-threat, internal investigations and litigation support activities. * Incorporate Cyber Threat Intelligence into operational signal intelligence and reporting. * Proactively investigate JFG environment for threats based on Cyber Threat Intelligence and known threat methods and patterns (aka Threat Hunting). * Operate and support Identity Governance and Administration technologies to support timely on/off-boarding of people and regular access governance reviews to ensure appropriate access. * Support weekly/monthly/quarterly/annual operational metrics, reports and dashboards. * Assist with maintaining the Cybersecurity Incident Response Plan. * Collaborate on the continuous improvement of Information Security Operations processes, workflows, and procedures (e.g. RunBooks). * Automate repetitive tasks and drive efficiencies with measurable benchmarks to show progress. JOB REQUIREMENTS: * Associates degree in Information Security, Cybersecurity preferred * 0-2 years' experience * Types of certification preferred: Security+, CEH, SSCP * Experience with Python and PowerShell scripting languages for automation preferred * Good report writing and communication skills * Has a basic understanding of the Information Security platforms at JFG, common Information Security controls and frameworks, networking concepts and technologies, as well as Windows and Linux environments Come as you are. Johnson Financial Group supports and is committed to the principle of equal employment opportunity. We make all employment-related decisions without regard for an individual's race, color, religion, sex, sexual orientation, age, national origin, citizenship, disability, veteran status, or any other protected status as required by law.

This is a key role within General Imaging (GI) Ultrasound with a focus on vulnerability management and incident response capability. In this role you will work in a team to identify risks and communicate and track product vulnerabilities. GE HealthCare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world. Job Description Responsibilities Duties include (but are not limited to): * Technical ownership of product security feature deliverables, with the ability to gather and analyze data, develop architectural requirements and lead implementation efforts * Work closely with cross-functional teams in requirements gathering and software design Roles and Responsibilities * Scope and participate in hardware and software penetration tests, vulnerability identification and vulnerability risk assessment * Engage in incident response methods, lead incident response processes related to product cyber * Create and track meaningful metrics around product cyber risk and compensating controls * Create vulnerability and incident trend analysis to improve product design * Maintain cyber Bills of Material and conduct proactive vulnerability monitoring and assessment on cyber components * Engage and administer End of Life processes for digital products * Consult architects on security requirements and utilize best practices to meet requirements * Engage in application and domain-specific threat modeling and attack surface analysis/reduction * Respond promptly and in detail to customer-sponsored penetration tests * Provide guidance on automated testing tools and techniques * Discover and mitigate vulnerabilities in sensitive Critical Infrastructure/ Key Resource Domains (CI/KR) * Develop and design innovative cyber security solutions for unique and complex technologies * Work in partnership with government agencies, leading industry experts, and academia * Leverage traditional and non-traditional research methodologies to advance GE HealthCare's overall Cybersecurity practice * Assess and investigate specific threats in terms of severity and impact * Create detailed reports on vulnerabilities, bugs, and design flaws * Create IPS/IDS rules or other mitigations to protect vulnerable systems * Interact with global teams to promote consistency and maximize synergies across common software platforms * Able to join the team and gain mastery of the Ultrasound domain and contribute towards the development Software Infrastructure * Drive world-class quality in the development and support of products * Apply principles of SDLC and methodologies like Lean/Agile/XP, CI, Software and Product Security, Scalability, Documentation Practices, refactoring and Testing Techniques * Understand performance parameters and assess application performance * Proactively share information across the team, to the right audience with the appropriate level of detail and timeliness * Design, develop, implement, test and deploy subsystem/security solutions and apply in-depth knowledge of product related technologies, technology platforms, architectures, engineering design principles and advancements * In collaboration with principal engineers/architects and execution leaders, assist in the analysis, design and development of the product roadmap * Manage design evolution across multi-generation product releases * Perform design and code reviews, and provide feedback on product security Required Qualifications * Bachelor's degree in computer science or "STEM" Majors (Science, Technology, Engineering and Math) with minimum of 4 years of professional experience including Cyber Security * Certification in the Privacy, Security & Regulatory domain or related certification * Experience in object-oriented design methodology and various programming languages such as C/C++. Hands-on experience in C++ on Windows a plus. * Working knowledge in configuration management tools such as Perforce, GIT, ClearCase, etc... * Experience working with Windows API and application programming * Experience in software platform, advanced applications, user-interface design and/or systems engineering especially in the healthcare domain -preferably Ultrasound * Good skills in knowing how to debug software issues * Experience with multicore and multi-threaded software design and computing environment * Experience driving technical design reviews * Strong interpersonal skills, including creativity and curiosity with ability to effectively communicate, and influence across all organizational levels * Proven analytical and problem resolution skills * Demonstrated ability to work with and/or lead blended teams, including global teams * Experience setting up and maintaining automation in CI/CD workflow pipelines a plus Desired Characteristics Technical Expertise: * Familiarity with identifying, analyzing, and ethically exploiting the various classes of vulnerabilities that affect executable code * Strong knowledge of TCP/IP networking. Ability to use Wireshark to capture and analyze network traffic * Hands-on experience working with Windows and Linux based systems * Programming skills in one or more languages (we develop using Python, C, C++, CUDA, and others) * Ability to understand machine language, operating systems, common APIs, libraries, and runtime environments and how they interact with hardware, firmware, and binary code * Familiarity with digital electronics and microcontrollers. Exposure to SCADA/DCS systems or industrial technologies * Business Acumen: Able to translate vulnerability information into business risks relevant to our customers * Attention to detail with initiative to explore alternate technology and approaches to solving problems * Good understanding of workflow in the healthcare industry * Knowledge of ultrasound or demonstrated experience with development of medical device software * Experience with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance * Experience with secure coding principles; code signing and secure boot * Experience with penetration testing and ethical hacking * Knowledge of CI/CD and automation tools (Chef, Git, Jenkins) * Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML) * Knowledge of application risk identification and evaluation techniques, and knowledge of Cyber Security and related engineering functions * Experience securing applications within cloud platforms such as AWS, Azure, etc. * Must be willing to work onsite at least 3 days a week in Wauwatosa/Waukesha, Wisconsin * Self-starter, energizing, results oriented and able to multi-task; tenacious and organized * Ability to foresee obstacles, identify workarounds, leverage resources, rally teammates * Ability to influence and build consensus with other scrum teams and leadership * Demonstrates adaptability and openness to change, effectively navigating ambiguity and responding to evolving information, circumstances, and priorities * Exhibits clear and strategic thinking, translating complex strategies into actionable steps. Makes timely, informed decisions and communicates priorities with clarity and precision #LI-ONSITE #LI-WI #LI-RV1 We will not sponsor individuals for employment visas, now or in the future, for this job opening. Additional Information GE HealthCare offers a great work environment, professional development, challenging careers, and competitive compensation. GE HealthCare is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. GE HealthCare will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). While GE HealthCare does not currently require U.S. employees to be vaccinated against COVID-19, some GE HealthCare customers have vaccination mandates that may apply to certain GE HealthCare employees. Relocation Assistance Provided: No

Adjunct is responsible for instruction, course preparation, developing instructional materials, grading and assessment, and professional responsibilities as a member of the instructional team of a school or academic department. Responsibilities • Teach a minimum of one undergraduate level course • Prepare course materials such as syllabi homework assignments and handouts • Be prompt and accurate in the recording and reporting of student data • Support students' learning goals by: o Focusing on student learning outcomes o Taking into account the needs and abilities of the students o Becoming familiar with academic and social support o Making reasonable provisions to accommodate individual differences o Maintaining the academic integrity of the college o Making himself/herself available to assist student in achieving their learning goals Qualifications • Doctoral degree preferred (or an equivalent of highest attainable degree) • Previous collegiate teaching experience Maximum Salary USD $3,000.00/Course Minimum Salary USD $2,000.00/Course

SummaryThis is a key role within General Imaging (GI) Ultrasound with a focus on vulnerability management and incident response capability. In this role you will work in a team to identify risks and communicate and track product vulnerabilities. GE HealthCare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.Job DescriptionResponsibilities Duties include (but are not limited to): Technical ownership of product security feature deliverables, with the ability to gather and analyze data, develop architectural requirements and lead implementation efforts Work closely with cross-functional teams in requirements gathering and software design Roles and Responsibilities Scope and participate in hardware and software penetration tests, vulnerability identification and vulnerability risk assessment Engage in incident response methods, lead incident response processes related to product cyber Create and track meaningful metrics around product cyber risk and compensating controls Create vulnerability and incident trend analysis to improve product design Maintain cyber Bills of Material and conduct proactive vulnerability monitoring and assessment on cyber components Engage and administer End of Life processes for digital products Consult architects on security requirements and utilize best practices to meet requirements Engage in application and domain-specific threat modeling and attack surface analysis/reduction Respond promptly and in detail to customer-sponsored penetration tests Provide guidance on automated testing tools and techniques Discover and mitigate vulnerabilities in sensitive Critical Infrastructure/ Key Resource Domains (CI/KR) Develop and design innovative cyber security solutions for unique and complex technologies Work in partnership with government agencies, leading industry experts, and academia Leverage traditional and non-traditional research methodologies to advance GE HealthCare's overall Cybersecurity practice Assess and investigate specific threats in terms of severity and impact Create detailed reports on vulnerabilities, bugs, and design flaws Create IPS/IDS rules or other mitigations to protect vulnerable systems Interact with global teams to promote consistency and maximize synergies across common software platforms Able to join the team and gain mastery of the Ultrasound domain and contribute towards the development Software Infrastructure Drive world-class quality in the development and support of products Apply principles of SDLC and methodologies like Lean/Agile/XP, CI, Software and Product Security, Scalability, Documentation Practices, refactoring and Testing Techniques Understand performance parameters and assess application performance Proactively share information across the team, to the right audience with the appropriate level of detail and timeliness Design, develop, implement, test and deploy subsystem/security solutions and apply in-depth knowledge of product related technologies, technology platforms, architectures, engineering design principles and advancements In collaboration with principal engineers/architects and execution leaders, assist in the analysis, design and development of the product roadmap Manage design evolution across multi-generation product releases Perform design and code reviews, and provide feedback on product security Required Qualifications Bachelor's degree in computer science or “STEM” Majors (Science, Technology, Engineering and Math) with minimum of 4 years of professional experience including Cyber Security Certification in the Privacy, Security & Regulatory domain or related certification Experience in object-oriented design methodology and various programming languages such as C/C++. Hands-on experience in C++ on Windows a plus. Working knowledge in configuration management tools such as Perforce, GIT, ClearCase, etc... Experience working with Windows API and application programming Experience in software platform, advanced applications, user-interface design and/or systems engineering especially in the healthcare domain -preferably Ultrasound Good skills in knowing how to debug software issues Experience with multicore and multi-threaded software design and computing environment Experience driving technical design reviews Strong interpersonal skills, including creativity and curiosity with ability to effectively communicate, and influence across all organizational levels Proven analytical and problem resolution skills Demonstrated ability to work with and/or lead blended teams, including global teams Experience setting up and maintaining automation in CI/CD workflow pipelines a plus Desired Characteristics Technical Expertise: Familiarity with identifying, analyzing, and ethically exploiting the various classes of vulnerabilities that affect executable code Strong knowledge of TCP/IP networking. Ability to use Wireshark to capture and analyze network traffic Hands-on experience working with Windows and Linux based systems Programming skills in one or more languages (we develop using Python, C, C++, CUDA, and others) Ability to understand machine language, operating systems, common APIs, libraries, and runtime environments and how they interact with hardware, firmware, and binary code Familiarity with digital electronics and microcontrollers. Exposure to SCADA/DCS systems or industrial technologies Business Acumen: Able to translate vulnerability information into business risks relevant to our customers Attention to detail with initiative to explore alternate technology and approaches to solving problems Good understanding of workflow in the healthcare industry Knowledge of ultrasound or demonstrated experience with development of medical device software Experience with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance Experience with secure coding principles; code signing and secure boot Experience with penetration testing and ethical hacking Knowledge of CI/CD and automation tools (Chef, Git, Jenkins) Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML) Knowledge of application risk identification and evaluation techniques, and knowledge of Cyber Security and related engineering functions Experience securing applications within cloud platforms such as AWS, Azure, etc. Must be willing to work onsite at least 3 days a week in Wauwatosa/Waukesha, Wisconsin Self-starter, energizing, results oriented and able to multi-task; tenacious and organized Ability to foresee obstacles, identify workarounds, leverage resources, rally teammates Ability to influence and build consensus with other scrum teams and leadership Demonstrates adaptability and openness to change, effectively navigating ambiguity and responding to evolving information, circumstances, and priorities Exhibits clear and strategic thinking, translating complex strategies into actionable steps. Makes timely, informed decisions and communicates priorities with clarity and precision #LI-ONSITE #LI-WI #LI-RV1 We will not sponsor individuals for employment visas, now or in the future, for this job opening. Additional Information GE HealthCare offers a great work environment, professional development, challenging careers, and competitive compensation. GE HealthCare is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. GE HealthCare will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). While GE HealthCare does not currently require U.S. employees to be vaccinated against COVID-19, some GE HealthCare customers have vaccination mandates that may apply to certain GE HealthCare employees. Relocation Assistance Provided: No

is onsite at the Corporate Headquarters located in Kenosha, WI. Who We Are: People know Snap-on for the quality of our products, but we know that it is the passion and character of our people that make our company a global leader. With our diverse talents and deep pride in the Snap-on family of brands, we drive innovation and create value. We work hard together. We grow together. We are one Snap-on team. Company-paid benefits include: Basic dental, Basic life, Basic accidental death and dismemberment coverage Short term and long-term disability, Employee Assistance Program Business travel accident insurance Other health education programs including smoking cessation, annual wellness screening and seasonal flu shot Market competitive compensation with Rewards for high performance and special skills Bonus, incentives, or sales commissions depending on position and level Base pay progression through lateral & promotional development on both managerial and technical career paths Paid time off, vacation and paid holidays Tuition Assistance Plan Employee Stock Purchase Plan - annual optional enrollment period Retirement programs including 401(k) Plan with matching employer contributions Job Opportunity: The Information Security Administrator will be responsible for providing advanced-level configuration, maintenance and support of network and security related systems. Role includes implementing and monitoring security protocols to maintain the integrity of corporate networks, assets, data and security related equipment. Responsibilities Configure, maintain and provide technical support for Security platforms and technologies (Firewalls, Proxy services, Data security, Intrusion detection systems, syslog's, NAC, SIEM solutions, End point protection, Web application firewalls, SOC, Vulnerability program management, Ethical hacking services and compliance requirements) Devise and execute strategies to improve the reliability and maturity levels of internal and external Security architectures and applications Partner with internal and external IT teams to conduct vulnerability assessments, audits, forensic investigations and execute remediations Responsible for security reviews and hardening of enterprise architecture - which includes network, business applications, integrations, data security and cloud deployments. Responsible for security related incident response, post-analysis and mitigation efforts Maintain security application portfolio and establish rules of engagement with infrastructure, application teams and external sites Create and maintain process and procedure documentation for Security Applications Collaboration and knowledge sharing with internal and external IT external teams, establish and cultivate associations with vital customers and vendor contacts Devise and develop a security dashboard incorporating relevant security and operational metrics Qualifications Several years (5+) of hands-on experience related to Information security In-depth knowledge on Security architecture, Security and network protocols, standards and compliance requirements Experience with deploying and managing cyber security solutions (detection, remediation, and prevention) and developing and administering an IT security program Knowledge of different type of attacks, techniques, threat vectors, attack paths, and how to formulate risk-based decision making in assessing vulnerabilities and remediation priorities Network security architecture concepts including topology, components, and principles Bachelor's degree in Computer Science, Information Systems/Technology, Computer Engineering, or applicable Professional work experience Excellent decision making, analytical, problem-solving, and organizational skills. Excellent communication and customer service skills Industry IT security certifications are desirable - CISSP, CISM, GIAC

SummaryThis is a key role within General Imaging (GI) Ultrasound with a focus on vulnerability management and incident response capability. In this role you will work in a team to identify risks and communicate and track product vulnerabilities. GE HealthCare is a leading global medical technology and digital solutions innovator. Our mission is to improve lives in the moments that matter. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.Job DescriptionResponsibilities Duties include (but are not limited to): Technical ownership of product security feature deliverables, with the ability to gather and analyze data, develop architectural requirements and lead implementation efforts Work closely with cross-functional teams in requirements gathering and software design Roles and Responsibilities Scope and participate in hardware and software penetration tests, vulnerability identification and vulnerability risk assessment Engage in incident response methods, lead incident response processes related to product cyber Create and track meaningful metrics around product cyber risk and compensating controls Create vulnerability and incident trend analysis to improve product design Maintain cyber Bills of Material and conduct proactive vulnerability monitoring and assessment on cyber components Engage and administer End of Life processes for digital products Consult architects on security requirements and utilize best practices to meet requirements Engage in application and domain-specific threat modeling and attack surface analysis/reduction Respond promptly and in detail to customer-sponsored penetration tests Provide guidance on automated testing tools and techniques Discover and mitigate vulnerabilities in sensitive Critical Infrastructure/ Key Resource Domains (CI/KR) Develop and design innovative cyber security solutions for unique and complex technologies Work in partnership with government agencies, leading industry experts, and academia Leverage traditional and non-traditional research methodologies to advance GE HealthCare's overall Cybersecurity practice Assess and investigate specific threats in terms of severity and impact Create detailed reports on vulnerabilities, bugs, and design flaws Create IPS/IDS rules or other mitigations to protect vulnerable systems Interact with global teams to promote consistency and maximize synergies across common software platforms Able to join the team and gain mastery of the Ultrasound domain and contribute towards the development Software Infrastructure Drive world-class quality in the development and support of products Apply principles of SDLC and methodologies like Lean/Agile/XP, CI, Software and Product Security, Scalability, Documentation Practices, refactoring and Testing Techniques Understand performance parameters and assess application performance Proactively share information across the team, to the right audience with the appropriate level of detail and timeliness Design, develop, implement, test and deploy subsystem/security solutions and apply in-depth knowledge of product related technologies, technology platforms, architectures, engineering design principles and advancements In collaboration with principal engineers/architects and execution leaders, assist in the analysis, design and development of the product roadmap Manage design evolution across multi-generation product releases Perform design and code reviews, and provide feedback on product security Required Qualifications Bachelor's degree in computer science or “STEM” Majors (Science, Technology, Engineering and Math) with minimum of 4 years of professional experience including Cyber Security Certification in the Privacy, Security & Regulatory domain or related certification Experience in object-oriented design methodology and various programming languages such as C/C++. Hands-on experience in C++ on Windows a plus. Working knowledge in configuration management tools such as Perforce, GIT, ClearCase, etc... Experience working with Windows API and application programming Experience in software platform, advanced applications, user-interface design and/or systems engineering especially in the healthcare domain -preferably Ultrasound Good skills in knowing how to debug software issues Experience with multicore and multi-threaded software design and computing environment Experience driving technical design reviews Strong interpersonal skills, including creativity and curiosity with ability to effectively communicate, and influence across all organizational levels Proven analytical and problem resolution skills Demonstrated ability to work with and/or lead blended teams, including global teams Experience setting up and maintaining automation in CI/CD workflow pipelines a plus Desired Characteristics Technical Expertise: Familiarity with identifying, analyzing, and ethically exploiting the various classes of vulnerabilities that affect executable code Strong knowledge of TCP/IP networking. Ability to use Wireshark to capture and analyze network traffic Hands-on experience working with Windows and Linux based systems Programming skills in one or more languages (we develop using Python, C, C++, CUDA, and others) Ability to understand machine language, operating systems, common APIs, libraries, and runtime environments and how they interact with hardware, firmware, and binary code Familiarity with digital electronics and microcontrollers. Exposure to SCADA/DCS systems or industrial technologies Business Acumen: Able to translate vulnerability information into business risks relevant to our customers Attention to detail with initiative to explore alternate technology and approaches to solving problems Good understanding of workflow in the healthcare industry Knowledge of ultrasound or demonstrated experience with development of medical device software Experience with cyber security framework (NIST 800-53, ISO 27001, IEC 62443, etc.) implementation and governance Experience with secure coding principles; code signing and secure boot Experience with penetration testing and ethical hacking Knowledge of CI/CD and automation tools (Chef, Git, Jenkins) Knowledge of Identity management and identity federation (SAML, Oauth, SCIM, XACML) Knowledge of application risk identification and evaluation techniques, and knowledge of Cyber Security and related engineering functions Experience securing applications within cloud platforms such as AWS, Azure, etc. Must be willing to work onsite at least 3 days a week in Wauwatosa/Waukesha, Wisconsin Self-starter, energizing, results oriented and able to multi-task; tenacious and organized Ability to foresee obstacles, identify workarounds, leverage resources, rally teammates Ability to influence and build consensus with other scrum teams and leadership Demonstrates adaptability and openness to change, effectively navigating ambiguity and responding to evolving information, circumstances, and priorities Exhibits clear and strategic thinking, translating complex strategies into actionable steps. Makes timely, informed decisions and communicates priorities with clarity and precision #LI-ONSITE #LI-WI #LI-RV1 We will not sponsor individuals for employment visas, now or in the future, for this job opening. Additional Information GE HealthCare offers a great work environment, professional development, challenging careers, and competitive compensation. GE HealthCare is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. GE HealthCare will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable). While GE HealthCare does not currently require U.S. employees to be vaccinated against COVID-19, some GE HealthCare customers have vaccination mandates that may apply to certain GE HealthCare employees. Relocation Assistance Provided: No

At Children's Wisconsin, we believe kids deserve the best. Children's Wisconsin is a nationally recognized health system dedicated solely to the health and well-being of children. We provide primary care, specialty care, urgent care, emergency care, community health services, foster and adoption services, child and family counseling, child advocacy services and family resource centers. Our reputation draws patients and families from around the country. We offer a wide variety of rewarding career opportunities and are seeking individuals dedicated to helping us achieve our vision of the healthiest kids in the country. If you want to work for an organization that makes a difference for children and families, and encourages you to be at your best every day, please apply today. Please follow this link for a closer look at what it's like to work at Children's Wisconsin: *********************************** Children's Wisconsin is seeking a Senior Information Epic Security Analyst- to join our team! Location: Remote but must be local to Milwaukee What you will do: The IS Security Analyst-Epic will perform all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. Ensures that user community understands and adheres to necessary procedures to maintain security. Must be able to weigh business needs against security concerns and articulate issues to management. Primary EPIC security lead on Enterprise Information Security team responsible for management of Epic user records (EMP users, including background users) which includes the life cycle management of the records (creation, modification, inactivation) and auditing as appropriate. Collaborates with app analysts teams who manage the templates and sub templates. Participates in the development of workflows, system configuration, change documentation, optimization and support related to Epic security, while working with application teams to deploy functionality changes, new modules or departments, update security classes, modify provider records, conduct user analysis, and implement security enhancements. Leads and assists in the development of department and organization wide policies and procedures, while effectively communicating policies and procedures impacting Identity and Access management to end users, leadership, and peers to ensure compliant practices. Provides guidance on optimizing security build based on appropriate minimum necessary standards. Responsible for the on-going maintenance, testing, support and optimization of Epic user security and provider management, with focus on role based access. Epic certification is a requirement. Excellent organizational skills and ability to manage work load while assigned to multiple simultaneous projects with minimal supervision. Thorough understanding of user account administration in a network environment. Thorough understanding of security auditing principles. Familiarity with current common paradigms for violating system integrity. Top-tier security performance tuning skills and trouble-shooting required. Works closely with all levels of the organization to ensure that security is consistent with organizational security standards, information access requirements and business strategies. Coordinates with IS entities regarding technical considerations (user rights/privileges, system access) to ensure proper implementation and provides on-going support for all security operations. Works collaboratively with Internal Audit, Corporate Compliance, Human Resources and other departments on security related issues and projects. Works with cross-functional teams to perform reviews and tests of IS internal controls to ensure existing systems are operating as designed and contain adequate controls. Monitors and analyzes technology security and recommends appropriate IS policies, procedures and practices to strengthen security operations. Provides consultation regarding audit, regulatory and security management activities across IS functional areas. Coordinates the IS component of both internal and external audits, federal and state examinations. ESSENTIAL FUNCTIONS: Demonstrates behaviors outlined in the Core Competencies the Blue Kids Way to provide service excellence as a committed partner to children, families and co-workers. Recommends and maintains policies and procedures related to information security. Monitors the organization's overall security fabric. Assesses security needs and capabilities of the organization. Makes regular reports to management concerning security measures. Makes recommendations for improvement as required. Identifies and provides information security awareness training as appropriate. Identifies appropriate courses to enhance security capabilities and competencies of the organization. Works with management to perform and maintain risk assessments. Ensures organization compliance with the security sections of Federal and State statutes, including HIPAA, as well as regulatory requirements. Coordinates investigations into potential security infractions. Determines and designs appropriate tests for all aspects of information security. Activities may include attempted “cracking” of system security, review of audit trails and attempted theft of devices. Evaluates system effectiveness and makes change recommendations as necessary. Coordinates periodic reviews of system security by outside consultants, including vulnerability assessments, penetration tests, HIPAA reviews and PCI compliance. Works with IS teams to implement recommendations as appropriate. Monitors, evaluates and makes recommendations regarding perimeter security including prevention against attack, viruses, and other forms of malicious software. Monitors, evaluates and makes recommendations regarding email and Internet content filtering. Evaluates and makes recommendations regarding requested changes to perimeter security. Recommends policies and procedures for controlling remote access by employees, non-employees and vendors. Reviews and makes recommendations regarding security oriented software applications and workstation security, including patch management, user rights management, and operating system configuration. Keeps current on security issues through seminars, publications and self-education on an on-going basis. MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED: Requires bachelor's degree in computer science or related technology field. Master's degree preferred. Requires 7 years of relevant computer systems experience, preferably in a hospital or healthcare setting. Significant experience in IS security administration including compliance, audit, and information security management. Epic Security certification is a requirement. Professional certification (e.g. CISA, CISM or CISSP) preferred. Thorough understanding of risk analysis, disaster recovery and audit tracking. Familiarity with current common paradigms for violating system integrity. Must have excellent interpersonal skills to effectively communicate with all levels of hospital personnel, vendors and IS personnel. Must possess the ability to deliver clear, concise communications and presentations. Must be able to train others on key IS security concepts. Children's Wisconsin is an equal opportunity / affirmative action employer. We are committed to creating a diverse and inclusive environment for all employees. We treat everyone with dignity, respect, and fairness. We do not discriminate against any person on the basis of race, color, religion, sex, gender, gender identity and/or expression, sexual orientation, national origin, age, disability, veteran status, or any other status or condition protected by the law. Certifications/Licenses:

The Security Analyst- Pen Testing plays a critical role in facilitating continued growth and execution within our security practice. This highly skilled and detail-oriented Consultant will have deep knowledge in Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Hardware Penetration Testing. The ideal candidate will be responsible for identifying vulnerabilities across software and hardware systems, advising on remediation strategies, and communicating findings clearly to both technical and non-technical stakeholders. Primary Responsibilities: * Conduct in-depth SAST, DAST, and SCA assessments across a variety of application types (web, mobile, desktop, APIs). * Perform hardware penetration testing on embedded systems, IoT devices, and industrial control systems (ICS), including debug interface discovery, firmware extraction and analysis, and secure boot review. * Develop and maintain threat models, attack trees, and risk assessments for both software and hardware systems. * Identify and exploit vulnerabilities using both manual techniques and automated tools, simulating real-world attack scenarios. * Provide detailed technical reports and executive summaries tailored to different audiences, including developers, engineers, and leadership. * Collaborate with product and engineering teams to prioritize and remediate vulnerabilities, offering secure design and coding recommendations. * Participate in security architecture reviews and code reviews to identify potential weaknesses early in the development lifecycle. * Assist in the development and implementation of security testing methodologies, checklists, and standard operating procedures. * Conduct security tool evaluations and help integrate them into CI/CD pipelines for continuous security testing. * Lead or support red team/blue team exercises, tabletop simulations, and incident response drills. * Stay abreast of the latest security trends, vulnerabilities, and threat actor tactics, techniques, and procedures (TTPs). * Contribute to internal knowledge bases, training sessions, and technical workshops to upskill team members and clients. * Engage with clients to understand their security needs, define testing scopes, and deliver high-quality consulting services. * Ensure all testing activities comply with legal, ethical, and organizational guidelines, including responsible disclosure practices. * Develop and present organized report findings to technical audiences.

Discover. Achieve. Succeed. #BeHere This job is REMOTE. FTE: 1.000000 Standard Hours: 40.00 Shift: 1st shift flexible 7 am to 5pm Shift Details: Holidays: Weekends: Froedtert ThedaCare Health, Inc., a leading healthcare system located in Eastern Wisconsin, is seeking a Cybersecurity GRC Analyst, Training & Awareness professional to join the Cybersecurity Governance, Risk Management, and Compliance (GRC) team. This role is critical in promoting a robust security culture across the organization by designing, managing, and improving cybersecurity training and awareness programs. The successful candidate will focus on cybersecurity awareness, phishing program operations, cybersecurity training, and GRC concepts while fostering cultural engagement and workforce behavioral change through creative and innovative initiatives. You will partner with cross-functional teams to address cybersecurity risks in clinical and non-clinical environments, ensure regulatory compliance, and contribute to the harmonization of cybersecurity programs across the Froedtert ThedaCare ecosystem. Position Responsibilities: Training and Awareness Program Management: * Develop, implement, enhance, and manage a comprehensive Cybersecurity Training and Awareness framework tailored to healthcare's unique risks and regulatory landscape (e.g., HIPAA, PCI DSS, and Joint Commission requirements). * Design role-based training for diverse audiences, including clinicians, administrative staff, IT teams, and executives. * Continuously refine training materials to incorporate emerging threats, organizational changes, and stakeholder feedback. Phishing Program Operations: * Build, enhance, and execute a dynamic, reality-based phishing simulation program, addressing sector-specific threats such as ransomware and patient data phishing schemes. * Analyze simulation metrics and provide actionable insights to improve employee awareness and reduce risks. * Develop and maintain educational material to support cybersecurity initiatives and training activities. * Deliver targeted follow-up training for individuals or teams with repeated simulation failures. Creative Engagement and Communications: * Develop multimedia content, including videos, infographics, and gamified training, to drive engagement and retention. * Design and execute large-scale security awareness campaigns, ensuring alignment with cultural transformation goals. * Partner with leadership to create impactful security messaging and content tailored to high-risk roles. Regulatory and Compliance Integration: * Ensure training programs align with healthcare-specific regulations and standards, including HIPAA, PCI DSS, and Joint Commission requirements. * Collaborate with Compliance and Legal teams to embed security awareness into broader compliance initiatives. * Provide support for audits and regulatory reviews by showcasing training program effectiveness. Metrics, Reporting, and Continuous Improvement: * Develop and maintain KPIs and dashboards to measure the success of training programs and awareness initiatives. * Conduct quarterly and annual program reviews to identify opportunities for innovation and enhancement. * Prepare reports and presentations for leadership to highlight program impact and align with organizational goals. Collaboration and Change Management: * Partner with IT, Risk Management, and Clinical Operations teams to ensure training initiatives integrate seamlessly across the organization. * Lead security awareness efforts during organizational transitions, such as the Froedtert-ThedaCare merger, ensuring program consistency and harmonization. * Act as a trusted advisor to business units, translating complex cybersecurity topics into actionable guidance. Risk and Compliance Integration: * Assist with routine GRC activities, such as monitoring risk registers, supporting audit preparation, and reviewing policy exception requests. * Collaborate with the Risk Management team to align training efforts with identified risk scenarios, ensuring targeted mitigation strategies. Policy and Procedure Maintenance: * Support the documentation and dissemination of cybersecurity policies, standards, and procedures. * Assist in the lifecycle management of GRC documentation, ensuring alignment with training content and awareness initiatives. EXPERIENCE DESCRIPTION: 1 - 3 years of experience in a related field. 3 or more years of experience in a related field is preferred. At least three years of experience in Cybersecurity training, GRC, or a related role within healthcare or similarly regulated industries preferred Proven track record managing phishing simulation programs and security training platforms (e.g., KnowBe4, LMS). Experience creating and executing large-scale awareness campaigns using multimedia tools EDUCATION DESCRIPTION: BA in Computer Science or related field is required or equivalent acquired through combination of education and experience. Bachelor's degree in Information Security, Computer Science, Communications, or a related field is preferred. Relevant certifications (e.g., CISSP, CISM, CISA, or GIAC) are a plus. SPECIAL SKILLS DESCRIPTION: Technical Expertise: * In-depth knowledge of healthcare regulations and cybersecurity frameworks, including HIPAA, HITECH, NIST CSF, and HITRUST. * Proficiency with phishing simulation platforms (e.g., KnowBe4) and LMS tools. * Familiarity with behavioral analytics and metrics for tracking training effectiveness. Creative and Communication Skills * Exceptional written and verbal communication skills, with the ability to craft messaging for technical and non-technical audiences. * Experience creating multimedia content (e.g., video editing, graphic design) for awareness campaigns. * Public speaking skills and confidence in presenting to diverse audiences. Analytical and Strategic Thinking * Strong problem-solving and critical-thinking skills for addressing complex training needs. * Experience developing data-driven strategies to improve training program impact and employee behavior. Collaboration and Leadership: * Demonstrated ability to collaborate across diverse teams and levels of leadership. * Self-starter with the ability to work independently and drive initiatives in a matrixed organization. * Proven ability to manage multiple projects with competing priorities. Preferred Qualifications * Experience in large healthcare systems or regulated industries. * Familiarity with change management and integration strategies during mergers or acquisitions. * Experience with gamified training methods or VR/AR-based security awareness tools Compensation, Benefits & Perks at Froedtert Health Pay is expected to be between: (expressed as hourly) $37.95 - $64.92. Final compensation is based on experience and will be discussed with you by the recruiter during the interview process. Froedtert Health Offers a variety of perks & benefits to staff, depending on your role you may be eligible for the following: * Paid time off * Growth opportunity- Career Pathways & Career Tuition Assistance, CEU opportunities * Academic Partnership with the Medical College of Wisconsin * Referral bonuses * Retirement plan - 403b * Medical, Dental, Vision, Life Insurance, Short & Long Term Disability, Free Workplace Clinics * Employee Assistance Programs, Adoption Assistance, Healthy Contributions, Care@Work, Moving Assistance, Discounts on gym memberships, travel and other work life benefits available The Froedtert & the Medical College of Wisconsin regional health network is a partnership between Froedtert Health and the Medical College of Wisconsin supporting a shared mission of patient care, innovation, medical research and education. Our health network operates eastern Wisconsin's only academic medical center and adult Level I Trauma center engaged in thousands of clinical trials and studies. The Froedtert & MCW health network, which includes ten hospitals, nearly 2,000 physicians and more than 45 health centers and clinics draw patients from throughout the Midwest and the nation. We are proud to be an Equal Opportunity Employer who values and maintains an environment that attracts, recruits, engages and retains a diverse workforce. We welcome protected veterans to share their priority consideration status with us at ************. We maintain a drug-free workplace and perform pre-employment substance abuse testing. During your application and interview process, if you have a need that requires an accommodation, please contact us at ************. We will attempt to fulfill all reasonable accommodation requests.

The Product Security Engineer for Manufacturing Execution System (MES) software applications is responsible for ensuring security integrity throughout the software development lifecycle in the electronics manufacturing domain. This role combines technical software security expertise with manufacturing domain knowledge to protect critical production systems and data. This role focuses on **software product security** (experience with CICD, thread modeling, and coloration with team during development) rather than operations and IT security. This person makes sure the MES product _itself_ is built secure before shipping. At Panasonic Connect, we connect the power of people and technology to change work, advance society and help connect to tomorrow. Empathy, results, relentlessness and teamwork are the foundations of the Panasonic Connect Culture. Our mission is to elevate the employee experience by empowering individuals to use their voice and have a positive impact on our business. Watch this video (************************************************* to learn about Panasonic Connect and see how we connect talent to opportunity. Come join our journey! **Responsibilities** **General** + Responsible for security aspects of MES software applications in electronics manufacturing environment + Works directly with the development team to ensure security is built into all aspects of the software + Influences security design decisions across the application portfolio **Security Assessment and Testing** - Conduct vulnerability assessments and penetration testing on MES applications - Identify and document security vulnerabilities and recommend remediation strategies - Implement and maintain security testing tools and methodologies **Security Architecture and Design** - Help design and implement secure architecture for manufacturing software systems - Perform security-focused code and design reviews to identify potential vulnerabilities - Develop security standards and guidelines for the development team - Evaluate and recommend security tools and technologies appropriate for manufacturing environments **Security Implementation and Remediation** - Collaborate with developers to implement security controls and fix vulnerabilities - Lead security incident response for software-related security events - Stay current with emerging threats and security trends in manufacturing technology - Provide security training and guidance to the development team **Compliance and Governance** - Support security compliance activities and risk assessments - Document security processes and controls for audit purposes - Monitor and report on security metrics and KPIs **Qualifications** Education and Experience + Bachelor's degree in Computer Science, Information Security, or related field + 5+ years of experience in software security, with at least 2 years focused on industrial or manufacturing applications + Strong understanding of secure coding practices and common security vulnerabilities (OWASP Top 10) + Experience with secure software development lifecycle (SSDLC) practices + Relevant security certifications (CISSP, CEH, CSSLP, Security+) _preferred_ + Knowledge of industrial security standards (IEC 62443, NIST 800-82) _preferred_ Key Competencies + Drives change through implementation of security best practices + Strong analytical skills and attention to detailpreferred + Excellent communication skills and ability to explain security concepts to varied audiences + Collaborative approach to working with development teams + Proactive identification and mitigation of security risks + Adaptability and continuous learning mindset Other Requirements: + Travel is required 15%-25% for security assessments and industry events + Experience with security assessment tools (Nessus, Snyk, Black duck, Fortify etc.) + Knowledge of network security, authentication protocols, and encryption technologies + Familiarity with electronics manufacturing processes and systems **What We Offer:** + High Performance Culture + A focus on Diversity, Equity and Inclusion + Teamwork and Collaboration + Rewards and Recognition + Learning & Development Opportunities Across Multiple Business Units + Competitive compensation packages + Hybrid work model + Comprehensive benefits + Paid Parental Care Leave + Educational Assistance + Volunteer time off + Total Well Being Program + Employee Referral Program _Panasonic is proud to be an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity, sex, sexual orientation, national origin, disability status, protected veteran status, and any other characteristic protected by law or company policy. All qualified individuals are required to perform the essential functions of the job with or without reasonable accommodation. Pre-employment drug testing is required for safety sensitive positions or as may otherwise be required by contract or law. Due to the high volume of responses, we will only be able to respond to candidates of interest. All candidates must have valid authorization to work in the U.S. Thank you for your interest in Panasonic Corporation of North America._ + \#LI-BP1 + **The salary range below is just one component of Panasonic Connect's total package. Actual compensation varies depending on the individual's knowledge, skills, and experience. This role may be eligible for discretionary bonuses and incentives.** **Salary Range** $110,000- $140,000 + Bonus REQ-151866

Sonoma Consulting is one of the fastest growing national IT Consulting and Executive Search company in the United States, which was founded in 2011 by Mark McGee, the President and CEO. Sonoma Consulting has two business divisions - IT Consulting Services & Executive Search to serve its 150 national clients which range from entrepreneurial start-ups to Global Fortune 500. Job Description Position Profile: Our client is seeking a Senior Information Security Engineer for its Information Technology team in Glenview, IL. The Senior Information Security Engineer works with members of Information Security, Infrastructure Technology and Business Systems teams to design and manage appropriate security measures for the protection of corporate information assets. The Senior Information Security Engineer is responsible for the complex and detailed technical work necessary to establish and maintain information security systems such as firewalls and intrusion prevention systems. In addition, the Senior Information Security Engineer redesigns and reengineers internal information handling processes so that information is appropriately protected from a wide variety of problems including unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability. This position occasionally requires some weekend and evening work as well as off-hours for on-call support rotation. Qualifications Responsibilities: The Senior Information Security Engineer's responsibilities include: Assessing, building, and supporting security solutions and controls including: SEIM, network firewalls, ACLs, IPS, internet content filtering, Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs), and logical access controls Researching and deploying new technologies Performing internal security audits and monitoring systems to ensure that appropriate access levels are maintained Preparing for and responding to security incidents Serving as an internal Information Security consultant to the organization Communicating threats and countermeasures to management and staff to promote security awareness and compliance throughout the organization Developing and/or maintaining BCP/DR plans for security systems and participating in tests • Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations Qualifications: The candidates will have: Strong interpersonal, communication, and leadership skills, including the ability to effectively communicate to both technical and non-technical audiences, in both a one on one as well as in a group environment An intimate knowledge of the TCP/IP networking protocol suite Strong understanding of LAN/WAN technologies; experience configuring FTP services, DNS and SMTP architectures. Experience with network protocol analysis Three or more years of experience in the design and deployment of network security and operating system solutions and information security infrastructure elements such as Firewalls, VPN, DMZ, Security Event Monitoring systems, IDS/IPS, and Directory Services. Strong understanding of common network and system exploits and vulnerabilities. Excellent analytical and problem solving skills. Ability to troubleshoot complex networks and design network security solutions A solid understanding and work experience with virtualization technologies and host operating systems, including Windows and Linux Experience with Digital Certificates, SSL, IPSEC, and other encryption technologies. A strong understanding of authentication and authorization methodologies, including knowledge of network authentication protocols including TACACS and RADIUS. Experience with scripting languages Experience with security auditing tools such as COPS, Tripwire, Nessus, etc. Additional Information All your information will be kept confidential according to EEO guidelines.

Hourly Pay Range: $41.64 - $64.54 - The hourly pay rate offered is determined by a candidate's expertise and years of experience, among other factors. Security Engineer III Hourly Pay Range: $41.64 - $64.54. The hourly pay rate offered is determined by a candidate's expertise and years of experience, among other factors. Location: 4901 Searle Parkway, Skokie IL (flexible) Full Time Hours: Monday-Friday, 8am - 4:30pm (general hours) Hybrid Schedule - mostly remote work after initial onsite period Job Summary: As the Security Engineer III at Endeavor Health, you will be responsible for enhancing Cybersecurity and safeguarding the organization's data and resources primarily through remote work. This role involves documenting, and refining security procedures, conducting system reviews to ensure compliance with security requirements, execute risk management and governance tasks, or leading security incident response activities. The Security Engineer III will also design and implement security policies for various devices and systems, oversee security for internal and external systems, and mentor junior staff. Candidates should be proficient in using advanced security tools. Responsibilities extend to participating in compliance audits, managing cybersecurity projects, and ensuring alignment with HIPAA, other applicable laws and regulations and/or standards. This mostly remote role may include a 24/7 on-call rotation and requires strong leadership, project management, and communication skills. To be successful in this role, you will be expected to stay up to date on the latest solutions and technologies and advocate for the adoption of industry best practices. What you will do: Document and refine procedures and techniques used by the Information Security and other teams. Measure and report organization's security capabilities using automated and manual tools. Research and test security tools pertaining to tactical or strategic plans. Perform activities as outlined in the security incident management procedure. Review logs from security tools, including IPS/IDS, secure email gateway, data loss prevention system, content proxy, vulnerability assessment tools, antivirus, etc. May visit specific sites to identify cyber security vulnerabilities and report on findings. Socializes strategies, standards, policies, procedures, communications, and awareness efforts with business partners. Participates in reviews of new or existing systems to ensure security requirements are satisfied, prior to implementation, including Risk Assessment. Assists with system-wide compliance of the HIPAA Security and Privacy rules and other appropriate standards, audit requirements, works with internal audit staff to conduct regular tests and audits. Assists with external security assessments and penetration tests, and other activities. Designs policies as required for security devices, including IPS/IDS, antivirus, and vulnerability management tools. May oversee internal or external systems security (i.e., cloud services). Lead security incident response activities. Mentor and train junior staff on the effective use and management of security tools. Design comprehensive security measures, integrating new technologies and methodologies. Manage multiple cybersecurity projects. Expert in one or more specialized areas. Proficient in the use of 4 or more advanced security tools and mastery in at least one tool. What you will need: Education: Bachelor's degree required (Master's degree preferred) Certifications: at least one industry standard certification within security. Experience: Minimum eight (8) years combined IT/ Cybersecurity experience. Previous experience with ability to lead, support, and document two applications. Previous experience leading security initiatives. Previous healthcare IT experience. Unique or Preferred Skills: Demonstrated in-depth knowledge of information security principles, practices, and solutions. Demonstrated understanding of advanced security protocols and standards Leadership and project management skills. Experience with desktop, server, network, and application security teams. Proven communication, customer service, and organizational skills. Experience with common security testing methods and tool sets such as email security, data loss prevention (DLP), IDS/IPS, EDR, anti-malware, and proxy tools. Previous experience with HIPAA, ITIL, NIST, and Project Management. Benefits: Premium pay for eligible employees Career Pathways to Promote Professional Growth and Development Various Medical, Dental, Pet and Vision options Tuition Reimbursement Free Parking Wellness Program Savings Plan Health Savings Account Options Retirement Options with Company Match Paid Time Off and Holiday Pay Community Involvement Opportunities Endeavor Health is a fully integrated healthcare delivery system committed to providing access to quality, vibrant, community-connected care, serving an area of more than 4.2 million residents across six northeast Illinois counties. Our more than 25,000 team members and more than 6,000 physicians aim to deliver transformative patient experiences and expert care close to home across more than 300 ambulatory locations and eight acute care hospitals - Edward (Naperville), Elmhurst, Evanston, Glenbrook (Glenview), Highland Park, Northwest Community (Arlington Heights) Skokie and Swedish (Chicago) - all recognized as Magnet hospitals for nursing excellence. For more information, visit *********************** When you work for Endeavor Health, you will be part of an organization that encourages its employees to achieve career goals and maximize their professional potential. Please explore our website (*********************** to better understand how Endeavor Health delivers on its mission to “help everyone in our communities be their best”. Endeavor Health is committed to working with and providing reasonable accommodation to individuals with disabilities. Please refer to the main career page for more information. Diversity, equity and inclusion is at the core of who we are; being there for our patients and each other with compassion, respect and empathy. We believe that our strength resides in our differences and in connecting our best to provide community-connected healthcare for all. EOE: Race/Color/Sex/Sexual Orientation/ Gender Identity/Religion/National Origin/Disability/Vets, VEVRRA Federal Contractor.

AYR Global IT Solutions is a national staffing firm focused on cloud, cyber security, web application services, ERP, and BI implementations by providing proven and experienced consultants to our clients. Our competitive, transparent pricing model and industry experience make us a top choice of Global System Integrators and enterprise customers with federal and commercial projects supported nationwide. Job Role: Data and System Security Engineer Location: Lincolnshire, IL Duration: 6+ Months Qualifications Job Description: Data and System Security engineer Experience with data encryption management solutions, such as Vormteric and CloudLink Experience with PKI management solutions, such as ADCS and External providers Investigative and analytical problem solving skills Customer service/support experience Additional Skills:PKI Knowledge of encryption management technologies, such as Vormetric, CloudLink. Additional Information If anyone might be intersted please send resumes to kmarsh@ayrglobal (dot) com or you can reach me direct at **************

RELOCATION ASSISTANCE: Relocation assistance may be available CLEARANCE TYPE: SAPTRAVEL: Yes, 10% of the TimeDescriptionAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. We are seeking capable, talented, and motivated team-contributors at our Northrop Grumman Rolling Meadows site. Our products range from advanced sensing technologies to state-of-the-art targeting and tracking systems that are deployed in Electro-Optical Infrared (EOIR) and Radio Frequency Electronic Warfare (RFEW) systems. These systems are designed, developed, built, integrated, and tested by the capable folks at our company to protect the lives of US and Allied warfighters in present and future conflicts. Enjoy a culture where your voice is valued and start contributing to our team of passionate professionals providing real-life solutions to our world's biggest challenges. We take pride in creating purposeful work and allowing our employees to grow and achieve their goals every day by Defining Possible. With our competitive pay and comprehensive benefits, we have the right opportunities to fit your life and launch your career today. If you are interested in consideration to be included as a part of this team, we would invite you to apply. Northrop Grumman Mission Systems Sector (NGMS) is seeking a Staff Systems Security Engineer to join our Systems Security Engineering team. The Security Engineering team is cross-disciplinary across the security domain; encompassing embedded Systems Engineering, Cybersecurity, Software Security and Anti-Tamper Engineering. Roles & Responsibilities: · Design/develop system architectures and generate system designs to be implemented in a cost-effective manner. Implement and ensure compliance with government policies (e.g., JSIG, DAAPM, NIST 800-53, CNSSI 1253, DODI 5200.39, etc.) by reviewing process tailoring needs and approving documented procedures. Guide and monitor technical documentation/publication to document trades studies, system designs, analysis, and results related to a systems security posture such as identifying Critical Program Information (CPI) and creation of Anti-Tamper Plans Develop an understanding of system interfaces and how to protect them. Assist with the definition of key capabilities and performance requirements. Adapt production and development products to meet unique customer needs and support the development of system security functions. Collaborate with security engineering team(s), across a portfolio of programs, through the duration of program execution to solve issues and to prepare for requirements sell off. Support technical work products developed by the larger engineering team in support of major milestone deliveries (e.g.: SRR, SVR, PDR, CDR, TRR, PRR). Authoring technical documentation such as white papers, proposal technical volumes, and program milestone briefings. Collaborate with security engineering team(s), across a portfolio of programs, through the duration of program execution to solve issues and to prepare for requirements sell off. Other duties may include technical leadership, business capture activities, interfacing with industry partners and the USG. This position will be full-time, on-site at our Rolling Meadows, IL location. This position is contingent upon Funding/Contract award, special access program and acquiring and maintaining the necessary US Government security clearance per customers' requirements prior to start. Basic Qualifications for a Staff Systems Security Engineer: Bachelor's degree in Electrical Engineering, Software Engineering, Computer Engineering, Computer Science, Cybersecurity, or related technical fields with 12+years of related experience, a Master's degree in Electrical Engineering, Software Engineering, Computer Engineering, Computer Science, Cybersecurity, or related technical fields with 10+ years of related experience or a PhD in Electrical Engineering, Software Engineering, Computer Engineering, Computer Science, Cybersecurity, or related technical fields with 7+ years of related experience. 3 years of cumulative experience on DoD based platforms and/or systems regarding the application of Cybersecurity RMF or Anti-Tamper with competencies in security threat analysis, systems architecture, engineering design, requirements derivation, validation, and verification. Must have demonstrated experience in leading teams to solve technical problems, including decomposition, root cause analysis, solution development, implementation and monitoring Experience contributing to and/or making technical presentations to internal and external customers. Ability to obtain and maintain a minimum of a Secret Clearance with additional customer specified clearance prior to start. Preferred Qualifications for a Staff Systems Security Engineer: Advanced degrees in Electrical Engineering, Software Engineering, Computer Engineering, Computer Science, Cybersecurity, or related technical fields. Experience with design verification testing, reverse engineering, embedded software development, Cybersecurity, or Anti-Tamper Possess a DoD 8140 certification, e.g. CompTIA Security+, CISSP, or similar. Experience with proposals and creating basis of estimates (BOEs) Primary Level Salary Range: $163,200.00 - $244,800.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit *********************************** U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

Sonoma Consulting is one of the fastest growing national IT Consulting and Executive Search company in the United States, which was founded in 2011 by Mark McGee, the President and CEO. Sonoma Consulting has two business divisions - IT Consulting Services & Executive Search to serve its 150 national clients which range from entrepreneurial start-ups to Global Fortune 500. Job Description: The Senior Information Security Engineer works with members of Information Security, Infrastructure Technology and Business Systems teams to design and manage appropriate security measures for the protection of corporate information assets. The Senior Information Security Engineer is responsible for the complex and detailed technical work necessary to establish and maintain information security systems such as firewalls and intrusion prevention systems. In addition, the Senior Information Security Engineer redesigns and reengineers internal information handling processes so that information is appropriately protected from a wide variety of problems including unauthorized disclosure, unauthorized use, inappropriate modification, premature deletion, and unavailability. This position occasionally requires some weekend and evening work as well as off-hours for on-call support rotation. Description: •The Senior Information Security Engineer's responsibilities include: • Assessing, building, and supporting security solutions and controls including: SEIM, network firewalls, ACLs, IPS, internet content filtering, Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs), and logical access controls • Researching and deploying new technologies • Performing internal security audits and monitoring systems to ensure that appropriate access levels are maintained • Preparing for and responding to security incidents • Serving as an internal Information Security consultant to the organization • Communicating threats and countermeasures to management and staff to promote security awareness and compliance throughout the organization • Developing and/or maintaining BCP/DR plans for security systems and participating in tests • Collaborating with IS management, legal, human resources and law enforcement agencies to manage security vulnerabilities or investigations Qualifications Qualifications: • The idea candidates will have: • Strong interpersonal, communication, and leadership skills, including the ability to effectively communicate to both technical and non-technical audiences, in both a one on one as well as in a group environment • An intimate knowledge of the TCP/IP networking protocol suite • Strong understanding of LAN/WAN technologies; experience configuring FTP services, DNS and SMTP architectures. • Experience with network protocol analysis • Three or more years of experience in the design and deployment of network security and operating system solutions and information security infrastructure elements such as Firewalls, VPN, DMZ, Security Event Monitoring systems, IDS/IPS, and Directory Services. • Strong understanding of common network and system exploits and vulnerabilities. • Excellent analytical and problem solving skills. Ability to troubleshoot complex networks and design network security solutions • A solid understanding and work experience with virtualization technologies and host operating systems, including Windows and Linux • Experience with Digital Certificates, SSL, IPSEC, and other encryption technologies. • A strong understanding of authentication and authorization methodologies, including knowledge of network authentication protocols including TACACS and RADIUS. • Experience with scripting languages • Experience with security auditing tools such as COPS, Tripwire, Nessus, etc. • BS in a Technology related field or an equivalent work experience The following experience and certifications are a plus: • Technical Certifications such as CCNA, CCNP, CCSA, CCSE, SANS GIAC series • Professional Certifications such as CISSP • An understanding of application security and OWASP • Experience designing and developing security countermeasures for Web and e-commerce environments. Additional Information Titles: Security Engineer, Information Security Engineer, Senior Security Engineer, Security Consultant, Security Manager Skills :Identity and Access Management, web application firewalls(WAF), vulnerability scanners, penetration tests, incident response, Active Directory group policies(GPOs