Cyber security analyst jobs in Tyler, TX

Cybersecurity Analyst - Level II / Senior (Deployment & Engineering Focus) Houston, TX Contract to Hire Sector: Oil & Gas We're hiring a seasoned, hands-on Cybersecurity Analyst (Level II or Senior) to drive the build-out and continuous improvement of our security tooling ecosystem. This is primarily an engineering and deployment role-not a SOC or pure incident-response position. You'll own the implementation, optimization, and maturation of critical security controls across the enterprise. What You'll Own Lead the deployment, configuration, tuning, and upgrade of core cybersecurity technologies Particular emphasis on Privileged Access Management (PAM) and Endpoint Detection & Response (EDR) platforms (experience here is highly valued) Identify gaps, propose solutions, and execute security infrastructure enhancements at a rapid pace Automate repetitive tasks, build integrations, and streamline processes wherever possible Partner with other security engineers, infrastructure teams, and application owners to embed security into the environment Provide occasional tier-3 escalation support for incidents when needed (not primary duty) What You Bring Proven track record deploying and managing enterprise security tools in real-world environments Deep hands-on experience with PAM and/or EDR solutions strongly preferred (e.g., CyberArk, BeyondTrust, Delinea, CrowdStrike, SentinelOne, Microsoft Defender, Carbon Black, etc.) Strong automation mindset-scripting (Python, PowerShell, Bash) and infrastructure-as-code experience is a big plus Ability to operate independently, prioritize ruthlessly, and deliver results in a fast-moving environment Adaptable and eager to work across a wide variety of security technologies SANS GIAC certifications (GSEC, GCIA, GNFA, GCIH, GMON, etc.) strongly preferred Degree not required-demonstrated capability is what matters If you live for building and hardening security controls, move fast, hate manual work, and want to see your deployments protect the enterprise in real time, we want to talk to you.

SUMMARY: The Cybersecurity Analyst is responsible for monitoring, documenting, and supporting the cybersecurity posture of the organizations's information technology systems. This role involves reviewing alerts, assisting in the maintenance of cybersecurity configurations, assessing weaknesses, vulnerabilities and escalating potential vulnerabilities or incidents to senior team members. The Cybersecurity Analyst also contributes to the documentation of cybersecurity events and helps ensure compliance with established cybersecurity policies and procedures. This role uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purpose of mitigating threats. ESSENTIAL DUTIES AND RESPONSIBILITIES: Provide timely detection, identification, and alerting on potential attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities Aid in the protection of the company's network and sensitive information using cyber defense tools for continual monitoring and analysis of systems to identify malicious activity including: Identifying cyber threat tactics and methods Identifying and correcting gaps in the company's cybersecurity posture Testing information systems for vulnerabilities Documenting and escalating incidents Analyzing network alerts from various sources within the enterprise and determining possible causes of such alerts Identifying and analyzing anomalies in network traffic or log data Monitoring risks and implementing cybersecurity systems to prevent attacks or breaches Responding to urgent cybersecurity events and incidents Reviewing events and incidents to understand root causes Monitoring reputation for hostile content directed towards organizational or partner interests Recommend procedures and/or changes to procedures necessary for good cyber hygiene Improve the overall cybersecurity posture of the organization's systems Determine the operational and safety impacts of cybersecurity lapses Prepare threat and target briefings and situational updates Monitor threat activities and prepare threat activity reports Manage and report on adversarial activities EDUCATION AND REQUIRED EXPERIENCE: A degree in business or technology is preferred (associate's or bachelors) 3-5 years of experience in IT security Experience with SIEM, intrusion detection (IDS) and intrusion prevention (IPS) systems preferred Basic scripting (Python, PowerShell, Bash) Experience with vulnerability management Experience with network packet analysis Experience with log analysis and log management Experience with Cloud Security Management interfaces Experience with enterprise authentication systems, such as directory services or identity management platforms Experience with Incident handling and response preferred Working knowledge or core cybersecurity concepts such as the CIA triad, encryption algorithms, and risk management processes Working knowledge of computer networking protocols including how traffic flows within a network Working knowledge of cybersecurity laws and regulations Working knowledge of cybersecurity threats, threat characteristics, and vulnerabilities, and threat hunting Ability to prioritize security requests according to urgency and established criteria Ability to organize information and alerts from multiple sources to create a holistic picture of cybersecurity threats General understanding of security frameworks (NIST, MITRE Attack) preferred Familiarity with the variations, similarities, and differences between IT and OT network environments Experience working on project teams and project management is preferred Intermediate understanding of Threat Intelligence research and methodologies Familiarity with adversarial TTPs SKILLS, QUALIFICATIONS, AND OTHER REQUIREMENTS: Demonstrate excellent communication (written, verbal and listening) and interpersonal skills Superior organizational skills and attention to detail Must possess a proven ability to deliver high-quality customer service Ability to triage and prioritize security related data quickly Ability to respond to work after hours and weekends as needed PHYSICAL DEMANDS: Requires sufficient personal mobility and physical reflexes, to permit the employee to function in a general office environment and accomplish tasks and duties as outlined above. WORK ENVIRONMENT: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment is usually quiet.

One of our client partners is seeking a Cyber Security Engineer who will will play a critical role in designing, implementing, and maintaining our security infrastructure, as well as developing and enforcing security policies and procedures. Title: Cyber Security Engineer Location: Midland, TX (This position requires onsite presence. Must be willing to relocate to Midland, TX. Applicants not willing to relocate will not be considered.) Our client is not seeking to sponsor at this time. NO C2C! General Responsibilities Develop and maintain security policies, procedures, and standards to ensure confidentiality, integrity, and availability of company data. Design and implement security solutions, including firewalls, intrusion detection/prevention systems, and other security tools. Conduct threat analysis and vulnerability assessments to identify and mitigate potential security risks. Lead incident response efforts, including containment, eradication, and recovery. Monitor security systems and logs to detect and respond to security incidents. Collaborate with other IT teams to ensure security is integrated into all aspects of the infrastructure. Research and evaluate new security technologies and solutions. Stay up to date on the latest security threats and vulnerabilities and provide security awareness training to employees. Minimum Qualifications Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. 5+ years of experience in cybersecurity engineering or a related role. Experience with security policy and procedure development. Proven ability to design and implement security solutions. Strong understanding of threat analysis and mitigation techniques, including incident response. Familiarity with industry standards such as NIST CSF and ISO 27001 Technical expertise in one or more of the following security tools and technologies: Firewall Management, Web Application Firewall (WAF), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Cloud Security (e.g., AWS, Azure, GCP), Security Information and Event Management (SIEM), Identity and Access Management (IAM), Privileged Access Management (PAM). Excellent communication and interpersonal skills. Strong analytical and problem-solving skills. Preferred Qualifications Related cybersecurity work experience in OT/Industrial Controls Systems (SCADA) environments. Relevant certifications such as CISSP, Security+, or equivalent experience.

Hiring: Cybersecurity Engineer Duration: 12 months contract About the Role We are seeking an experienced Lead Cybersecurity Engineer to join our dynamic team and drive secure-by-design principles across our cloud and application environments. In this role, you will collaborate closely with development teams to identify, assess, and remediate security vulnerabilities, ensuring robust protection across our AWS and Azure ecosystems. Key Responsibilities Lead Security by Design and integrate security throughout the SDLC. Perform security defect management - analyze, validate, and consult on issues found via tools like CodeQL, Rapid7, penetration tests, and bug bounty programs. Provide engineering consulting to developers, architects, and product teams on secure design and implementation best practices. Manage tool enablement and monitoring for automated vulnerability detection tools (CodeQL, Rapid7, etc.). Coordinate security testing and onboarding, including penetration testing and assurance assessments. Technical Skills Required: Application Security (OWASP, CWE/CVE, SANS 25) Enterprise Security Architecture, Threat Modeling, and Risk Analysis SDLC, DevSecOps, and API Security Cloud Security (AWS, Azure) SCA / SAST / DAST tools Hands-on development experience in Java, Python, .NET, or JavaScript Automation and scripting for security processes Security certifications preferred (CISSP, CCSP, GWAPT, GWEB, AWS Certified Security, etc.) Preferred: Web Services Security CSSLP, GISCP, or other advanced security certifications Experience integrating security technologies in enterprise environments #Cybersecurity #AWS #DevOps #Python #SDLC #IaC #SAST #DAST #CISSP #CCSP

One of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position. This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position. Job Description: Perform cloud assessments, web application penetration testing and mobile application testing Carry out reviews of security, network, applications, and cloud environments Plan/Design security activities with automation as the primary driver to align with the security strategy Ensure alignment of security controls, supporting services and related policies with regulations and industry-standard best practices Assist management with the improvement of policy/procedure to support Cloud Security Engineering Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends Experience required: Penetration Testing experience within Network, Application, Web Application or Mobile Applications Experience cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong experience with custom scripting (python, PowerShell, bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys etc. Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with using ServiceNow is a plus. We look forward to receiving your application!

Bachelor's degree in Computer Science, Cybersecurity, or related field. 3+ years of experience in DevOps, Security Engineering, or related roles. 2-3 years of security experience. Overall, 6 years Strong understanding of CI/CD tools (e.g., Jenkins, Harness). Development knowledge on Java, Python, .Net, etc Experience with security tools (e.g., Veracode, GHAS, Orca). Proficiency in scripting languages (e.g., Python, Bash). Familiarity with containerization and orchestration (Docker, Kubernetes). Knowledge of cloud platforms (AWS, Azure, GCP) and their security features. Understanding of secure coding practices and application security principles. Knowledge of Infrastructure as Code (Terraform, Ansible).

• DevSecOps' expertise in building and supporting security solutions for Windows, Linux, above mentioned platforms, including services such as Enterprise Vulnerability Management, data protection, privacy and compliance, network protection. • Building and deploying security solutions using technologies such as Docker, Kubernetes, and GIT Hub. • Experience in low code environments such as Appian and Microsoft Power Platforms is mandatory. • Experience with Alteryx ETL and Workflow Designer platform is plus. • Experience with Identity and Access, Endpoint, Vulnerability management and other cybersecurity automation workflows. • Experience writing Automation scripts in Python and deploying them leveraging APIs. • Experience with AI enabled automation workflows. • Experience with Agile methodology and Atlassian tools including JIRA and Confluence. • Communicating with various audiences, including business leaders, engineers, clients, and team members, with excellent ability to convey information that is relevant to the audience. • Written communication for excellent documentation and reporting. • Outstanding teamwork across multidiscipline plan-build-run teams. • Applying your understanding and expertise with systems automation platforms and technologies. • Automating security controls, data, and processes to provide metrics and operational support. • Employing cloud-based APIs when suitable to integrate and orchestrate across various systems in the automation workflow. • Developing and delivering solutions using Agile methodology. “Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.”

For over 16 years, Trilyon has been at the forefront of providing comprehensive global workforce solutions and staffing services. Leveraging our extensive expertise across multiple domains such as Cloud technology, Salesforce, AI, Machine Learning, and Technical Writing, we consistently exceed expectations in catering to a wide range of requirements. Currently we are seeking a “Application Security Analyst” for one of our clients that is a leading multination corporation. Position: Application Security Analyst Duration: 12 month (Possible extension) Location: Plano TX (Hybrid) Interview process: 1st round virtual 2nd round onsite Job Description What we're looking for: We are seeking a skilled and proactive Application Security Analyst to integrate security practices into our DevOps processes. The ideal candidate will work closely with development and operations team to ensure secure software delivery pipelines, automate security controls, and foster a culture of shift left in the organization. What you'll be doing Design, implement, and maintain secure CI/CD pipelines. Integrate security tools (SAST, DAST, SCA, etc.) into development workflows. Collaborate with development and operations teams to remediate vulnerabilities. Automate security testing and compliance checks. Monitor and respond to security incidents in cloud and container environments. Develop and enforce security policies, standards, and procedures. Stay current with emerging security threats and DevSecOps best practices. Requirements: Qualifications/ What you bring (Must Haves) - Highlight Top 3-5 skills Bachelor's degree in Computer Science, Cybersecurity, or related field. 3+ years of experience in DevOps, Security Engineering, or related roles. 2-3 years of security experience. Overall, 6 years Strong understanding of CI/CD tools (e.g., Jenkins, Harness). Development knowledge on Java, Python, .Net, etc Experience with security tools (e.g., Veracode, GHAS, Orca). Proficiency in scripting languages (e.g., Python, Bash). Familiarity with containerization and orchestration (Docker, Kubernetes). Knowledge of cloud platforms (AWS, Azure, GCP) and their security features. Understanding of secure coding practices and application security principles. Knowledge of Infrastructure as Code (Terraform, Ansible). Regards Kush Deshmukh | Trilyon, Inc. P: ************ Fax: ************** E: ************************ | *********************** Equal Employment Opportunity Trilyon is an Equal Opportunity Employer, committed to fairness and respect for all individuals. We value diversity in age, disability, ethnicity, gender, gender identity, religion, and sexual orientation, believing it drives innovation and better service. Employment decisions are made impartially, without regard to any protected characteristic under federal, state, or local law. Our diverse team drives innovation, competitiveness, and creativity, enhancing our ability to effectively serve our clients and communities. This commitment to diversity makes us stronger and more adaptable.

Hi All, *** Greetings from My3tech *** Role: Data Security Analyst 2 Duration: 6+ Months Minimum Qualifications Years Skills / Experience 3 Experience in a GRC, cybersecurity, or compliance role 3 Hands-on experience with GRC platforms (Diligent preferred) Strong understanding of NIST CSF 2.0, HIPAA, and state-level frameworks (Texas Cybersecurity Framework) Experience designing workflows and notifications within GRC tools Excellent communication and stakeholder engagement skills Preferred Qualifications Years Skills / Experience Familiarity with risk management methodologies Certifications such as CISA, CRISC, CISSP, or CGRC

Job Title: Application Security Analyst Project Duration: 12+ months will extend and/or be a temp to perm. Requirements Qualifications/ What you bring (Must Haves) - We're looking for diverse, talented team members who want to Dream. Do. Grow. with us. What we're looking for We are seeking a skilled and proactive Application Security Analyst to integrate security practices into our DevOps processes. The ideal candidate will work closely with development and operations team to ensure secure software delivery pipelines, automate security controls, and foster a culture of shift left in the organization. What you'll be doing • Design, implement, and maintain secure CI/CD pipelines. • Integrate security tools (SAST, DAST, SCA, etc.) into development workflows. • Collaborate with development and operations teams to remediate vulnerabilities. • Automate security testing and compliance checks. • Monitor and respond to security incidents in cloud and container environments. • Develop and enforce security policies, standards, and procedures. • Stay current with emerging security threats and DevSecOps best practices. Highlight Top 3-5 skills • Bachelor's degree in Computer Science, Cybersecurity, or related field. • 3+ years of experience in DevOps, Security Engineering, or related roles. 2-3 years of security experience. Overall, 6 years • Strong understanding of CI/CD tools (e.g., Jenkins, Harness). • Development knowledge on Java, Python, .Net, etc • Experience with security tools (e.g., Veracode, GHAS, Orca). • Proficiency in scripting languages (e.g., Python, Bash). • Familiarity with containerization and orchestration (Docker, Kubernetes). • Knowledge of cloud platforms (AWS, Azure, GCP) and their security features. • Understanding of secure coding practices and application security principles.

The IT Network/Security Analyst is responsible for safeguarding and supporting the organization's IT infrastructure by blending network operations expertise with cybersecurity best practices. This hybrid role ensures both the reliability of network services and the protection of data across enterprise systems and cloud services. The analyst will monitor, analyze, and respond to incidents while maintaining the performance, availability, and security of network systems in a dynamic threat landscape. Duties and Responsibilities: Network Operations & Monitoring Monitor and support daily network operations, ensuring uptime, availability, and performance across routers, switches, firewalls, VPN's, and other network components. Continuously monitor network traffic and performance metrics, using NMS (Network Management Systems), IDS/IPS, and SIEM tools to identify anomalies, outages, or threats. Collaborate with customers to optimize configurations and resolve connectivity issues impacting business operations. Travel as required (up to 25%) to support field locations. Incident Response & Troubleshooting Investigate, contain, and remediate cybersecurity incidents involving network components (e.g., DDoS attacks, unauthorized access, malware propagation). Perform root cause analysis on network-related issues and security events to reduce recurrence and improve resilience. Participate in on-call rotations for critical incident response. Network Security Administration Configure and maintain network devices i.e. firewalls, routers, switches, access points with an emphasis on security hardening and policy enforcement. Implement and support network segmentation, access controls, and VPN technologies to protect sensitive data. Oversee security patching and firmware upgrades across network infrastructure. Vulnerability & Compliance Management Conduct vulnerability assessments and penetration testing on network systems, tracking and remediating identified weaknesses. Support compliance with frameworks such as NIST or CIS as they apply to both network and security operations. Assist with periodic audits, reporting findings, and driving corrective actions. Threat Intelligence & Reporting Stay up to date on evolving attack vectors, especially those targeting enterprise networks. Leverage threat intelligence to proactively adjust network defenses. Produce operational dashboards and executive-level reports detailing network health, incidents, and security posture. Collaboration & Training Work closely with IT infrastructure, Security Architect, and Application teams to integrate security into network design and operations. Provide guidance and training to IT staff and end-users on secure network practices, phishing awareness, and incident reporting. Knowledge, skills, and abilities: Technical Knowledge Strong foundation in networking protocols (TCP/IP, BGP, OSPF, VLANs, DNS, DHCP) and enterprise network architectures. Hands-on experience with network monitoring and analysis tools (e.g., Wireshark, SolarWinds, Nmap, Nessus). Familiarity with security technologies such as SIEM (Splunk, ELK) a plus. Hands-on experience with enterprise network firewalls and network equipment. Experience with enterprise endpoint protection. Understanding of threat detection, DDoS mitigation, VPNs, and secure remote access. Familiarity of compliance requirements Sarbanes-Oxley Act of 2002 (SOX) as they apply to both network and security operations. Skills Proficiency in troubleshooting complex network and security issues in enterprise environments. Strong analytical mindset with the ability to distinguish between performance-related issues and security threats. Clear communication skills for cross-team collaboration and reporting to both technical and non-technical audiences. Effective multitasking and prioritization in 24/7 operations environments. Abilities Ability to balance proactive network performance management with rapid cyber threat response. Commitment to continuous learning in both network operations and cybersecurity trends. Adaptability to shifting operational demands and evolving attack landscapes. Strong teamwork skills with the discretion to handle sensitive information responsibly. Education and Experience Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field (or equivalent practical experience) preferred. 3-5 years of combined experience in network operations and cybersecurity, with at least 2 years in a security-focused network role preferred. Relevant certifications highly desirable, such as: Network-focused: CCNA, CCNP, CompTIA Network+ Security-focused: CISSP, CompTIA Security+, CEH, GIAC (GCIA, GCIH) Equal Opportunity Employer Prospective employees will receive consideration without discrimination because of race, color, religion, marital status, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran status, disability, or genetic information.

Akkodis is seeking a Application Security Engineer (Hybrid)) for a contract job in Location: Austin, TX Job Title: Application Security Engineer Duration: 6 months Pay range: Pay Range: $58/hr - $60/hr on W2 The rate may be negotiable based on experience, education, geographic location, and other factors. Perform manual web application and mobile penetration testing. Identify, validate, and prioritize vulnerabilities, delivering actionable remediation and migration recommendations. Conduct code assisted reviews, architecture assessments, and threat modeling exercises. Research emerging vulnerabilities, exploit techniques, and security technologies to proactively improve defenses. Develop and deliver clear, comprehensive reports and presentations for technical and non-technical audiences. Assess and secure applications and services that incorporate AI/ML models or LLM-based functionality. Evaluate AI system components (data inges4on, model APIs, inference endpoints) for security and privacy risks. Job Requirements: 6+ years of experience as an Application Security Engineer, Principal Security Consultant, or Senior Penetration Tester in an enterprise environment. Proven experience manually testing web applications and performing enterprise-level penetration testing. Strong understanding of Web and Mobile application security testing, methodologies, and common vulnerabilities. Proficiency in at least one scripting language (Python, Perl, Ruby, PHP) and one programming language (Java, Objective-C). Proficiency with Mac OS X or UNIX Linux systems. General understanding of secure network architecture and design, including segmentation, ACLs, and secure communication protocols. General knowledge of common web technology stacks (LAMP, LEMP, MEAN, etc.) and their associated security considerations. General understanding of AWS services (EC2, S3, KMS, RDS) and security best practices relevant to those services. Ability to explain basic networking concepts (routing, load balancing, SSLTLS, TCPIP) to support secure application architecture reviews. Ability to ascertain and clearly articulate the size and scope of security assessments and penetration testing engagements. Solid understanding of the OWASP Top 10 and CWE Top 25 vulnerabilities (e.g., XXE, XSS, SQLi, SSRF). Strong communication skills both written and verbal with the ability to convey complex technical issues to diverse audiences. Demonstrated passion for continuous learning, vulnerability research, and staying ahead of evolving threat landscapes

Glocomms is partnered with an integral financial services corporation seeking a Security Engineer focused on Privileged Access & Automation to design and maintain secure authentication, authorization, and secrets management systems across on-prem and cloud environments. This role focuses on privileged access management, security architecture, and automation, leveraging AI-based capabilities to ensure operational integrity and compliance. Responsibilities Implement and manage privileged access systems (CyberArk, HashiCorp Vault) and secrets lifecycle management. Design and support authentication/authorization frameworks (Active Directory, oAuth 2.0, OIDC, AWS IAM, PKI, certificates). Maintain operational integrity through patching, version control, upgrades, troubleshooting, and break-fixes. Apply security as code principles using Terraform, Ansible, Jenkins pipelines, and CI/CD deployments. Develop automation scripts in Go, Bash, Python, PowerShell for secure integrations. Integrate AI-based security capabilities for detection, remediation, and automated workflows. Collaborate cross-functionally with engineering, cloud, and compliance teams; participate in 24x7 operational support. Qualifications 5+ years in security engineering, architecture, or operations within complex environments. Hands-on experience with CyberArk, HashiCorp Vault, PKI, and privileged access methodologies. Strong knowledge of Active Directory, Kerberos, LDAPS, oAuth 2.0, OIDC, and AWS IAM. Familiarity with Kubernetes security, HSMs, and cloud ecosystems. Proficiency in Go, Bash, Python, PowerShell; experience with Terraform, Ansible, Jenkins. Understanding of security architecture principles, confidentiality, integrity, availability, and compliance frameworks. Exposure to AI-enabled security tools and automation strategies preferred. This is a hybrid role requiring 3 days per week onsite in Dallas, TX. Candidates must be fully authorized to work in the United States. Unfortunately, visa sponsorship is not available for this role. Applications must include candidate's full name (first and last) and contact information in order to be considered.

The Senior InfoSec GRC Analyst is responsible for driving the development, implementation, communication, and maintenance of technology policies, standards, and procedures that are aligned to industry standards and regulatory requirements. This role ensures that technology processes adhere to regulatory requirements, manage risks effectively, and establish strong governance practices. The position also develops and implements controls, monitors compliance, and supports risk management activities. Responsibilities: Lead the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines. Continuously evaluate and update cybersecurity and IT policies to ensure they remain current and effective. Ensure policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Collaborate with cross-functional teams, including IT, legal, compliance, and business stakeholders, to ensure cybersecurity policies align with organizational objectives. Translate complex information and documentation into clear and simple concepts for end-users. Provide specialized expertise to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommend actionable solutions to mitigate risks and strengthen overall security posture. Stay informed about the latest cybersecurity threats, trends, and best practices. Maintain accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses. Benchmark policies against industry standards and best practices. Develop and implement governance frameworks for cybersecurity policy management. Monitor key performance indicators, conduct gap analyses and risk assessments, and implement frameworks as needed. Test and monitor the effectiveness of controls. Establish feedback loops and analyze metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats. Lead and support internal and external audits and assessments of cybersecurity policies and practices. Ensure identified audit and assessment findings and actions are tracked to closure. Maintain comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicate policy requirements and updates to relevant stakeholders. Identify opportunities for innovation and improvement in cybersecurity policies and practices. Propose mitigation strategies and verify the effectiveness of remediation plans. Requirements: Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field (preferred). Minimum of six (6)+ years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field. Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust). Proficiency with data analysis and reporting tools (e.g., Excel, Power BI). Relevant certifications such as CISM and/or CISA (highly desirable). Strong knowledge of regulatory frameworks (NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Understanding of risk management concepts, control frameworks, and compliance auditing. Ability to provide consultation and recommendations to management. Strong communication skills with the ability to present effectively to both technical and non-technical audiences.

We are seeking a highly skilled Security Engineer with hands-on experience working with Transmit Security's Mosaic SaaS Tool and Flex ID. The ideal candidate will be responsible for designing and implementing seamless and secure identity journeys, leveraging state-of-the-art Passwordless and frictionless authentication capabilities. Key Responsibilities Design and implement identity user journeys using Transmit Security's Mosaic SaaS Tool. Deploy and configure Flex ID to enable passwordless, frictionless identity experiences. Collaborate with security architects, developers, and product teams to integrate authentication flows into web and mobile applications. Ensure robust identity and access management (IAM) implementations using industry best practices. Leverage protocols and standards such as SSO, MFA, OAuth2, OpenID Connect, and SAML to orchestrate secure identity flows. Monitor, troubleshoot, and optimize identity workflows for performance and security. Document technical solutions and provide knowledge transfer to internal teams. Required Qualifications ✅ Proven experience building and optimizing authentication workflows with Transmit Security's Mosaic platform. ✅ Hands-on expertise with Flex ID for enabling passwordless and frictionless identity verification. ✅ Strong understanding of IAM concepts, including SSO, MFA, identity federation, and orchestration. ✅ Demonstrated ability to work in cross-functional teams, solving complex technical problems collaboratively. ✅ Experience with identity protocols: OAuth2, OIDC, SAML, etc. ✅ Strong communication and documentation skills. Preferred Qualifications Experience integrating identity services with CI/CD pipelines or DevOps environments. Familiarity with customer identity and access management (CIAM) and privacy regulations (e.g., GDPR, CCPA). Background in cybersecurity, software engineering, or cloud architecture.

AI Security Engineer (Generative AI Focused) Plano, Texas, United States Contract We're looking for an experienced AI Security Engineer to join us, someone skilled in both artificial intelligence (AI) and cybersecurity. This role focuses on ensuring the security and integrity of AI systems and applications. Requirements Qualifications to be Successful: Strong understanding of AI technologies and security vulnerabilities. Experience with machine learning, neural networks, and AI methodologies. Knowledge of cybersecurity principles, frameworks, and standards. Proficiency in Python or R, common languages used in AI. Minimum Qualifications: Bachelor's degree in computer science, information security, or related field (advanced degree preferred). 3+ years of cybersecurity experience, with a focus on securing AI systems. Strong understanding of machine learning techniques, algorithms, and AI frameworks. Familiarity with cybersecurity standards, regulations, and compliance requirements. Hands-on experience with security tools and technologies. Proficiency in programming languages used in AI development. Excellent analytical, communication, and interpersonal skills. Relevant certifications such as CISSP, CISM, CEH, or GIAC are beneficial. Experience with cloud computing and containerization technologies is desirable. Thanks, Vikas. ************************

3 month contract to hire Rate: $55-60/hr Salary: $100-120k/yr The right candidate will address daily tasks and routine processes for IT security. This position will be responsible for assessing IT security incidents and applying the necessary technical troubleshooting steps to resolve the issue. The Security Analyst will also be responsible for monitoring suspicious or malicious activity in the company IT infrastructure and addressing security risk and incidents. Essential Duties and Responsibilities include the following. Other duties may be assigned. · Active Directory Management o Domain controller maintenance and troubleshooting o ADCS (Active Directory Certificate Services) · Active Directory Federation Services o ADFS Server maintenance and troubleshooting o Work with IT Operations and Development teams with ADFS authentication · DNS (Domain Name Service) o Creation and management of DNS records o Management of F5 DNS VIPs and pools · Active Directory Sites and Services o Management of sites and subnets · Active Directory Domains and Trusts o Management of domain trust configuration · Group Policy Management o Troubleshooting and cleanup of GPOs · Patching Operations o Patching research and preparation § Research the risk and value of each patch and report the "company" risk rating based on all layers of security in our environment § Validate that all applications for IT security are functioning as designed and intended at the conclusion of patching o SCCM (System Center Configuration Manager) o Work with the SCCM administrators to address all patching issues and confirm that patching has been configured correctly · Forensic Operations o Security Monitoring § Monitor security alerts and tools for signs of compromise or malicious behavior § Monitoring network alerts and traffic for DDoS attacks · Forensic Investigation o Investigate the root cause of compromise incidents or exploited vulnerabilities o Investigate infrastructure weaknesses and report on malicious activity or potential risk · Project Operations o Assist with delegated duties for all security projects o Partner with other security or IT operations team members for deployments or maintenance · Conducts all business in a professional and ethical manner to serve customers and increase the goodwill and profit of the company · Ability to participate in a weekly call rotation · IT Operations o Monitor and assist with any and all IT operational emergencies to keep business applications operational · On-Call Responsibilities o Respond and escalate all IT security incidents as needed · Mentoring and Training o .Responsible for the mentoring of Security Administrators · Ability to travel overnight Qualifications Education and/or Experience · High school diploma or general education degree (GED) · One to four years' experience in an IT related field · Knowledge of IT Security Operations and Forensic Operations · Experience with computer networks · Experience with project management and delegation · Business communication and collaboration skills · Documentation skills · Ability to work well within a team, and work alone to accomplish tasks independently · Ability to interpret research into solutions to actual problems · Customer Service skills · Ability to apply common sense understanding to carry out instructions furnished in written oral form or via DRH applications · Proficiency with MS Office and email

Job Posting Title: Cloud Security Engineer - SRE We are seeking a skilled and motivated Cloud Security Engineer - SRE to join our dynamic team. The ideal candidate will possess a strong technical background in systems administration, cloud computing, and infrastructure as code, with a particular focus on solution engineering/site reliability. This role will involve collaborating with cross-functional teams to enhance our security posture and streamline processes through automation. Technical Skills • Programming and Scripting: Strong proficiency in languages like Python, Go, Bash, or Ruby. SREs often need to write automation scripts and build tooling. • Systems Administration: Deep understanding of operating systems (Linux/Unix), file systems, processes, and system configurations. • Infrastructure as Code (IaC): Experience with IaC tools like Terraform, Ansible, or Chef to manage infrastructure. • Cloud Computing: Knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, including services like EC2, S3, Kubernetes, and serverless functions. • Containers and Orchestration: Expertise in containerization (Docker) and container orchestration (Kubernetes, OpenShift). • Networking: Understanding of networking concepts, including DNS, firewalls, load balancing, and VPNs. • Monitoring and Observability: Experience with monitoring and observability tools like Prometheus, Grafana, Datadog, or New Relic. Ability to set up and maintain monitoring dashboards, alerts, and logs. • Continuous Integration/Continuous Deployment (CI/CD): Familiarity with CI/CD tools like Jenkins, GitLab CI, GitHub Actions, or CircleCI. • A strong understanding of HashiCorp Vault and Terraform will make you stand out. 2. Problem-Solving and Troubleshooting • Incident Management: Ability to manage and respond to incidents, perform root cause analysis, and implement post-mortem reviews. • Automation: Focus on automating repetitive tasks to improve efficiency and reduce human error. • Performance Tuning: Skills in identifying and resolving performance bottlenecks in systems and applications. 3. Collaboration and Communication • Teamwork: Ability to work closely with cross-functional teams, including software engineers, product managers, and DevOps teams. • Documentation: Skill in creating clear and comprehensive documentation for systems, processes, and incident reports. • Communication: Effective communication skills for interacting with stakeholders and explaining technical concepts to non-technical audiences. 4. Reliability and Scalability • Service-Level Objectives (SLOs) and Service-Level Agreements (SLAs): Understanding of setting, monitoring, and maintaining SLOs and SLAs for system reliability. • Scalability: Knowledge of best practices for designing and scaling systems to handle increased loads and demands. • Redundancy and Resilience: Experience in designing systems with redundancy and fault tolerance to minimize downtime. 5. Security and Compliance • Security Best Practices: Understanding of security principles, such as access control, data encryption, and secure coding practices. • Compliance: Familiarity with compliance standards like GDPR, HIPAA, or PCI-DSS, depending on the industry. Minimum Job Qualifications: • Bachelor degree in business or equivalent work experience • 10 years of previous program leadership and/or relevant consulting experience • Knowledge of and demonstrated experience in program management framework, knowledge groups & life cycle • 5+ years' experience in driving large scale data center consolidation efforts • Minimum 5 years' experience with matrix management of cross-functional processes and teams • Proficient with Project Management tools

An exciting opportunity for an experienced Cloud Security Engineer to join a global SaaS company, in a hyper growth stage. This is a crucial customer-facing role where you will be instrumental in designing, implementing, and securing complex cloud environments for clients across Google Cloud Platform (GCP), Microsoft Azure, and Amazon Web Services (AWS). Key Responsibilities: Cloud Security Operations Perform penetration testing activities Network Security Expertise Firewall & WAF Management SaaS Security Best Practice SIEM Integration & Optimization Customer Engagement & Presentation Requirements: 8+ years of cybersecurity experience 4+ years cloud security engineering Strong expertise with Google Cloud Platform (GCP) Strong practical experience with Microsoft Azure and AWS Expertise in SaaS applications Demonstrable experience with firewall management and WAFs Hands-on experience with SIEM platforms CISSP Certified