Cyber security analyst jobs in Winston-Salem, NC - 1,214 jobs

Title: Security Analyst Duration: 1 year, contract to hire Environment: 5 Days onsite (NON NEGOTIABLE) Pay: $52-$65/hour W2 (NO C2C) ** Due to client requirements, US Citizen or Green Card Holders ONLY** Requirements: Minimum 7+ years of professional related experience Previous experience in financial services, banking, wealth management, credit card, or payment processing: preferably in enterprise level environment Lead and drive cybersecurity initiatives across a range of projects, balancing scope, priorities, and business needs while operating in a fast-paced, multi-tasking environment. Bring strong hands-on experience with Identity Governance and Administration (IGA) platforms such as SailPoint, Saviynt, Oracle Identity Governance (OIG), or ForgeRock, with the ability to identify and resolve access and security issues. Apply strong analytical skills to work with complex data, including writing SQL queries, Python, and shell scripts to extract, analyze, and validate information from databases and file systems. Design, build, and maintain meaningful dashboards and metrics that provide insight into security posture, performance, and operational effectiveness. Collaborate closely with IAM teams, business users, and leadership to remediate issues, improve processes, and support access governance objectives. Mentor and train junior analysts, helping to improve workflows, consistency, and overall team capability. Nice to have: 7+ years of experience with any IGA Platforms Responsibilities: This project focuses on reviewing user access on a daily basis to confirm it aligns with established controls and application requirements. The team works closely with application owners and business partners to address access issues, follow through on remediation, and escalate items when needed. Team members are supported and coached on the process to ensure work is completed accurately and consistently. Overall, the effort helps maintain strong access governance while keeping day-to-day operations running smoothly.

Direct Hire- Unable to sponsor any candidates now or in the future. NO THIRD PARTIES PLEASE. The Security Engineer oversees the Company's SIEM infrastructure and managing critical security components such as Web Application Firewall (WAF), Domain Management, and Certificate Management. This role collaborates extensively across teams to ensure robust security monitoring, incident response, and proactive threat detection. The role requires oversight of SIEM technologies, WAF management, DNS management, certificate lifecycle management, and incident response. The Experience and Skills You Bring: We are looking for a Security Engineer that is self-motivated and capable of applying their knowledge, experience, and potential to a variety of applications across the entire organization. Our continued success relies on the onboarding of team members that operate with a high degree of integrity and quality in everything they do. We are looking for an experienced engineers to spearhead the implementation of our exciting new ideas. You won't be just fixing bugs or maintaining existing codebase - you will be building exciting new features, analyzing metrics, building security automation tools, and making important technical and product decisions. Your Primary Duties and Responsibilities: o Continually monitor and adjust cybersecurity tools o Assisting in creating annual Security Awareness training program o Monitoring security tools, automation platforms, tracks for compliance to CIS standards and Google best practices o Managing centralized logs, security dashboard and Google security tools and monitors for suspicious events o Performing vulnerability tests, risk analyses and security assessments o Assisting with conducting/responding to internal and external security audits, and analyzing security breaches to determine root cause o Writing and maintaining corporate security policies o Training fellow employees in security awareness and procedures Minimum Qualifications: o 5+ years of experience in working with GCP or equivalent cloud platform specializing in security services, automation and compliance o Understanding of CICD tools including Docker, Kubernetes, Terraform, Ansible. o Experience working with Linux operating systems, Bash/Python scripting o Excellent interpersonal skills required to interact at all levels of the organization and effectively present informational training and respond to inquiries. o Unmatched communication skills, teamwork skills, and a strong attention to detail o Minimum Bachelor's degree in IT or Computer Science o 3+ years of cybersecurity, threat intelligence or IT security experience, with one or more of the following cyber-security functions; Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Vulnerability Management Preferred Qualifications: o Experience with CISSP, Google Cloud , Whitehat o CompTIA Security Professional certificates.

We are seeking a Cyber Security Analyst. This position provides 24x7 cybersecurity monitoring and analysis services for Department of Defense networks above the SECRET level. This includes performing real-time cyber threat intelligence analysis, correlating actionable security events, performing network traffic analysis using raw packet data, and participating in the coordination of resources during the incident response process. Review DoD and open source intelligence for threats and to identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs Utilize alerts from endpoints, IDS/IPS, netflow, and custom sensors to identify compromises on customer networks/endpoints Review massive log files, pivot between data sets, and correlate evidence for incident investigations Triage alerts to identify malicious actors on customer networks Report incidents to customers and USCYBERCOM Qualifications Bachelor's Degree and 4+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of a degree. Demonstrated understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements. Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings DoD 8570 IAT level II or higher certification such as CompTIA Security+ CE, ISC2 SSCP, SANS GSEC prior to starting. DoD 8570 CSSP-A level Certification such as CEH, CySA+, GCIA or other certification is required within 180 days of hire. Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain and an ability to think and work independently Bachelor's degree and less than 2+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of degree. Strong analytical and troubleshooting skills Willing to perform shift work Must be a US Citizen Must have an active DoD TOP Secret security w/ SCI clearance eligibility. Preferred Qualifications: CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization. Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs). Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements. Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, Full Packet Capture), and other attack artifacts in support of incident investigations. In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. ArcSight, Splunk, Nitro/McAfee Enterprise Security Manager, QRadar, LogLogic). Experience and proficiency with any of the following: Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics. Experience with malware analysis concepts and methods. Unix/Linux command line experience. Scripting and programming experience. Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings. Familiarity or experience in Intelligence Driven Defense and/or Cyber Kill Chain methodology. Existing 8570 CSSP Analyst Certifications (CEH), CySA+ etc. Clearance Level: TSSCI Certifications: IAT Level II Baseline Certification

Our client, a leading organization in the cybersecurity industry, is seeking a dedicated Cyber Security Analyst to join their team. As a Cyber Security Analyst, you will be an integral part of the Security Operations Center (SOC) supporting the organization's cybersecurity initiatives. The ideal candidate will demonstrate analytical thinking, proactive problem-solving skills, and excellent communication abilities, which will align successfully within the organization. **Job Title:** Cyber Security Analyst **Location:** Greensboro, NC **Pay Range:** **What's the Job?** + Monitor Security Operations Center (SOC) alert queues continuously and investigate detections to identify suspicious activities. + Rapidly analyze and respond to security breaches that could compromise sensitive organizational information. + Assess the nature and severity of security threats, determining appropriate actions to contain and mitigate risks. + Formulate temporary fixes to neutralize active threats, restore security posture, and ensure data integrity. + Handle true positive alerts and escalate incidents accordingly, ensuring swift resolution. **What's Needed?** + Typically 2 to 5 years of relevant cybersecurity experience. + Strong knowledge of SOC operations, threat detection, and incident response. + Experience in analyzing and mitigating security threats and breaches. + Familiarity with security tools, frameworks, and best practices. + Ability to work independently with minimal supervision, managing complex scenarios with confidence. **What's in it for me?** + Opportunity to work in a dynamic and innovative cybersecurity environment. + Engagement with cutting-edge security tools and technologies. + Chance to develop and enhance your cybersecurity skills and expertise. + Supportive team environment fostering professional growth. + Participation in ongoing security initiatives to strengthen organizational defenses. **Upon completion of waiting period consultants are eligible for:** + Medical and Prescription Drug Plans + Dental Plan + Vision Plan + Health Savings Account + Health Flexible Spending Account + Dependent Care Flexible Spending Account + Supplemental Life Insurance + Short Term and Long Term Disability Insurance + Business Travel Insurance + 401(k), Plus Match + Weekly Pay If this is a role that interests you and you'd like to learn more, click apply now and a recruiter will be in touch with you to discuss this great opportunity. We look forward to speaking with you! **About ManpowerGroup, Parent Company of: Manpower, Experis, Talent Solutions, and Jefferson Wells.** _ManpowerGroup (NYSE: MAN), the leading global workforce solutions company, helps organizations transform in a fast-changing world of work by sourcing, assessing, developing, and managing the talent that enables them to win. We develop innovative solutions for hundreds of thousands of organizations every year, providing them with skilled talent while finding meaningful, sustainable employment for millions of people across a wide range of industries and skills. Our expert family of brands -_ **_Manpower, Experis, Talent Solutions, and Jefferson Wells_** _-_ creates substantial value for candidates and clients across more than 75 countries and territories and has done so for over 70 years. We are recognized consistently for our diversity - as a best place to work for Women, Inclusion, Equality and Disability and in 2023 ManpowerGroup was named one of the World's Most Ethical Companies for the 14th year - all confirming our position as the brand of choice for in-demand talent. ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.

Ahold Delhaize USA, a division of global food retailer Ahold Delhaize, is part of the U.S. family of brands, which includes five leading omnichannel grocery brands - Food Lion, Giant Food, The GIANT Company, Hannaford and Stop & Shop. Our associates support the brands with a wide range of services, including Finance, Legal, Sustainability, Commercial, Digital and E-commerce, Technology and more. Co-op Program Overview: Get an insider view of the fast-changing grocery retail industry while developing relevant business, technical and leadership skills geared towards enhancing your career. This paid Co-op experience is an opportunity to help drive business results in an environment designed to promote and reward diversity, innovation and leadership. Our mission is to create impactful early talent programs that provide cohorts with meaningful project work, learning and development sessions, and mentorship opportunities. Applicants must be currently enrolled in a bachelor's or master's degree program. Applicants must be currently authorized to work in the United States on a full-time basis and be available from July 13, 2026 through December 4, 2026. We have a hybrid work environment that requires a minimum of three days a week in the office. Please submit your resume including your cumulative GPA. Transcripts may be requested at a future date. * Approximate 6-month Co-op session with competitive pay * Impactful project work to develop your skills/knowledge * Career assistance & mentoring in obtaining full time positions within ADUSA * Leadership speaker sessions and development activities * One-on-one mentoring in your area of interest * Involvement in group community service events * Networking and professional engagement opportunities * Access to online career development tools and resources * Opportunity to present project work to company leaders and gain executive visibility Department/Position Description: The Cybersecurity team is responsible for protecting our organization's systems, and data from internal and external threats. The team monitors network activity, manages security tools, responds to incidents, and ensures compliance with regulatory standards. We also implement proactive measures such as vulnerability assessments, threat intelligence, and employee training to reduce risk and maintain a strong security posture across the enterprise. The Co-op will support the Infrastructure Services team by assisting with day-to-day operations, documentation, and project-related tasks. During their session, they will gain hands-on experience with enterprise systems, collaborate across departments, and develop a deeper understanding of IT service delivery in a large-scale environment. Qualifications: * Currently pursuing a degree in Cybersecurity, Information Technology, Computer Science, or a related field. * Familiarity with basic cybersecurity concepts such as threat detection, network security, and vulnerability management through coursework or labs. * Exposure to tools or platforms like Wireshark, Splunk, or basic scripting for security automation is a plus. * Strong attention to detail and analytical thinking, especially when reviewing logs or identifying anomalies. * Excellent communication skills and a collaborative mindset, with a willingness to learn in a fast-paced, security-focused environment. Individual cohort pay rates vary based on location, academic year, and position. ME/NC/PA/SC Salary Range: $20.90 - $35.70 IL/MA/MD Salary Range: $22.80 - $37.30 #LI-SS2 #LI-hybrid At Ahold Delhaize USA, we provide services to one of the largest portfolios of grocery companies in the nation, and we're actively seeking top talent. Our team shares a common motivation to drive change, take ownership and enable our brands to better care for their customers. We thrive on supporting great local grocery brands and their strategies. Our associates are the heartbeat of our organization. We are committed to offering a welcoming work environment where all associates can succeed and thrive. Guided by our values of courage, care, teamwork, integrity (and even a little humor), we are dedicated to being a great place to work. We believe in collaboration, curiosity, and continuous learning in all that we think, create and do. While building a culture where personal and professional growth are just as important as business growth, we invest in our people, empowering them to learn, grow and deliver at all levels of the business.

GCI embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry. At GCI, we solve the hard problems. As a Cyber Security Analyst, a typical day will include the following duties: Cyber Security vulnerability analyst to help identify, analyze, and mitigate cyber vulnerabilities across networks and systems. Key Responsibilities Collaborate with other cyber defense teams to maintain continuous situational awareness of current and emerging cyber threats. Analyze data to identify and prioritize vulnerabilities and weaknesses in our systems and networks Provided detailed remediation and mitigation plans, track via Key Performance Indicators (KPIs) Conduct research on threat actors, malware, exploit methods, and vulnerabilities to stay up-to-date on current cyber threats. Develop and maintain cyber threat reports and presentations for both technical and non-technical audiences. Provide input on the implementation of processes, procedures, and technological solutions to mature our operational program and team cadence. Respond to internal team and stakeholder inquires on vulnerabilities and related topics. Collaborate with peers to identify and address cyber gaps and develop solutions to address cyber needs. Conduct proactive data gathering to better understand the political, economic, and behavioral aspects of threats, cyber activities, and threat actors. Assist with threat data enrichment, curation, automation, and dissemination within a threat intelligence platform. Required Qualifications: Bachelor's degree or six additional years of relevant experience 8+ years of experience in cybersecurity, vulnerability management, or a related field Strong analytical and problem-solving skills Excellent communication and collaboration abilities Strong understanding of types of vulnerabilities, network attacks, and current industry threats Experience with data analysis and data-driven decision making Familiarity with threat intelligence platforms and tools Ability to travel locally and nationally as needed Desired Qualifications: Degree in Computer Science, Information Systems, Engineering, Cybersecurity, or related field Certifications in cybersecurity or related field (e.g. CISSP, CEH) Experience with vulnerability management tools and platforms Strong understanding or risk management principles and practices Experience with process improvement and implementation Experience with tools including: Confluence, ServiceNow, JIRA, Tableau, PowerBI, Excel Salary Range $145,000 - $189000 *A candidate must be a US Citizen and requires an active/current TS/SCI with Polygraph clearance. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Akira Technologies is seeking a Cyber Analyst team member who is responsible for the analysis of all technology devices which may include Operational Technology (OT) and Industrial Control Systems (ICS) as well as on-premises and cloud enterprise networks. This includes analysis of device communication, forensic analysis of Windows or Linux systems and servers, timeline analysis of activity on these endpoints, user permission and authentication audits, log analysis, and malware identification/triage. This role supports a government client in the following locations five days a week: Norfolk, VA. Active Secret clearance or higher is also required for this role. An ideal candidate for this position will be a proactive self-starter who has experience with system administration, Windows and Linux operating systems (OS) mechanics including filesystem structures, disk and memory forensics, cyber aware Operational Technology or Control Systems operators, commonly used mechanisms for maintaining security persistence, privilege escalation, and lateral data movement, operating system log analysis, and triaging suspicious file artifacts for unusual behavior. This role requires a familiarity with what routine OS activities and common software/user behavior looks like in the context of forensic artifacts or timelines. Analysts should also be familiar with common categories and formats of host-based indicators of compromise (IOCs) and how/where they can be leveraged to identify known-bad files/activity on an endpoint. Candidate will utilize the Cyber Kill Chain and synthesize the entire attack life cycle along with creating detailed reports on how impacts may or have occurred. Job Responsibilities Support SOC team in operating and performing duties in a Security Operations Center (SOC) to provide a secure environment that facilitates monitoring, incident response, malware analysis, and threat hunting activities. Develop and utilize analytics on the security information and event management (SIEM) platform to monitor for security alerts and coordinate vulnerability assessments and artifact collection across servers and network devices. Asses Security Technical Implementation Guides (STIGs) compliance and completion. Utilize asset mapping tools to verify connected inventory. Handle Information Assurance Vulnerability Management (IVAM) notifications. Evaluate network structures and device configurations for security risks, offering recommendations based on best practices, and gather data to identify and respond to network intrusions. Analyze network traffic and system logs to identify malicious activities, vulnerabilities exploited, and methods used, and develop processes to enhance SOC response and efficiency. Conduct comprehensive technical analyses of computer evidence, research and integrate new security tools into the SOC, and synthesize findings into reports for both technical and non-technical audiences. Job Qualifications Active Secret security clearance or higher. At least 3 years, (Journeyman), or applicable 1 to 2 years (Junior) of experience in security operations, demonstrating analytical duties and preforming host or network security analysis. Proficient in analyzing cyber-attacks, with a deep understanding of attack classifications, stages, system/application vulnerabilities, and compliance with Department of Defense (DoD) policies and procedures. Applied knowledge of network topologies, protocols (e.g., TCP/IP, ICMP, HTTP/S, DNS, SSH, SMTP, SMB), and experience with tools like Palo Alto, Elastic SIEM, Cribl, Splunk, VMware, Security Center. Capable of attack reconstruction based on network traffic, integrating Threat Intelligence, and familiar with MITRE ATT&CK framework, with the ability to collaborate effectively across multiple locations. Preferred Skill Sets Knowledge of Operational Technology (OT) or Industrial Control Systems (ICS) Strong analytical and troubleshooting skills Able to provide expert content development in Splunk Enterprise Security using tstats and data models Understands how to utilize knowledge of latest threats and attack vectors to develop correlation rules for continuous monitoring on various security appliances Experience in other tools and protocols as applicable such as Nessus, Endgame, CrowdStrike, Gray Noise, Shodan, Bacnet, MODBus, SCADA systems, and PCAP Review logs to determine if relevant data is present to accelerate against data models to work with existing use cases Familiar with the operations and functions of Nessus or security center management Can assist and provide technical input to research, discover, implement hardware and software Understands importance and fundamentals of logistics and evidence handling Certified Ethical Hacker (CEH), GIAC Certified Incident Handler (GCIH), or relevant IT technology certification Salary Range: $75,000 to $100,000 Akira's pay range for this position considers various factors including skills, years of experience, training, licenses, certifications, alignment with market data, and internal equity in the organization. This pay range estimate is a general guideline only and not a guarantee of compensation or salary, which Akira believes to be done in good faith in compliance with local laws. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. It is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. General Description of Benefits Akira offers its employees multiple options for medical plans (some with Health Savings Account), dental plans, and vision coverage, and a 401(k) plan with employer match. To promote work/life balance, Akira offers paid time off, including vacation and sick time, holidays, paid parental leave, military leave, bereavement leave, and jury duty leave. We also offer short and long-term disability benefits to protect employee income in the event of sickness or injury, life insurance, accidental death and dismemberment insurance, and critical illness insurance. Akira also offers tuition, training, and certification reimbursement for professional development and career advancement. Akira regularly reviews our total rewards package to ensure our offerings remain competitive and reflect the values and needs expressed by our employees. About Akira Technologies Akira strives to meet and exceed the mission and objectives of US federal agencies. As a leading small business cloud modernization and data analytics services provider, we deliver trusted and highly differentiated solutions and technologies that serve the needs of our customers and citizens. Akira serves as a valued partner to essential government agencies across the intelligence, cyber, defense, civilian, and health markets. Every day, our employees deliver transformational outcomes, solving the most daunting challenges facing our customers. Akira is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ****************** We have been retained for providing recruiting assistance, for direct hires, by one of the world-leading information technology consulting, services, and business process outsourcing organization that envisioned and pioneered the adoption of the flexible global business practices that today enable companies to operate more efficiently and produce more value. Job Description Position Title : Network Sniffer Analysis Location : Mclean, VA Length : Full time / Permanent Position Work Status : US Citizen/ Green Card Holder/ EAD (GC) Required Skills • Strong data analysis ability with sniffer, packet, net flow data. • Perform sniffer data analysis to identify traffic profile among servers supporting specific business applications. • Familiar Opnet AppMapper or similar tool that helps identifies application dependency to map between the application and infrastructure components. Technologies Sniffer, Net flow, Gigamon, InfiniStream, Opnet AppMapper, Infoblox .., Software Application If you are qualified, available, planning to make a change, and have an interest in this or other projects with E*Pro, I would like to coordinate a time to talk with you at your earliest convenience. Please forward a recent version of your resume to my email address at [email protected] and the best time/day to follow up with you for discussion. Sincerely Yours, Ranjit Technical Recruiter | E*Pro Inc., Work: ************ x (234) Email: [email protected] E*Pro Inc. | 1000 Route 9 North, Suite 303 | Woodbridge Township, NJ 07095 Additional Information All your information will be kept confidential according to EEO guidelines.

We're seeking a Cyber Network Defense Analyst (CND) to support the Intelligence, Surveillance, Reconnaissance (ISR) Wing Security Office and the Distributed Common Ground System (DCGS) Processing, Exploitation, Dissemination (PED) Operations Center (DPOC). Job Responsibilities: Performs forensic analysis of digital information and gathers and handles evidence. Identifies network computer intrusion evidence and perpetrators. Investigates computer fraud or other electronic crimes, crack files and system passwords, detects steganography and recovers deleted, fragmented and corrupted data from digital media of all types. Ensures chain of custody and control procedures, documents procedures and findings in a manner suitable for courtroom presentation and prepares comprehensive written notes and reports. May be required to testify in court as expert witnesses. Required Skills and Experience: BA/BS 3+ years of network operations experience Active TS/SCI CompTIA Security+ CompTIA Cybersecurity Analyst (CYSA) Shift work required Preferred Skills and Experience: Working knowledge of AF DCGS and AF ISR operations is desired Spectrum is proud of our diverse workforce and diligently committed to remaining an Equal Opportunity Employer. Spectrum governs all employment related decisions without regard to an individual's race, color, sex, religion, national origin, age, disability, veteran status or any other protected classification. [EEO/AA/Protected Veterans/Individuals with Disability employer]. Work schedule: 10-hour rotational shift work. Rotations are quarterly between day and mid shifts and monthly between weekday and weekend shifts.

Established in 1991, Collabera is one of the fastest growing end-to-end information technology services and solutions companies globally. As a half a billion dollar IT company, Collabera's client-centric business model, commitment to service excellence and Global Delivery Model enables its global 2000 and leading mid-market clients to deliver successfully in an increasingly competitive marketplace. With over 8200 IT professionals globally, Collabera provides value-added onsite, offsite and offshore technology services and solutions to premier corporations. Over the past few years, Collabera has been awarded numerous accolades and Industry recognitions including. Collabera awarded Best Staffing Company to work for in 2012 by SIA. (hyperlink here) Collabera listed in GS 100 - recognized for excellence and maturity Collabera named among the Top 500 Diversity Owned Businesses Collabera listed in GS 100 & ranked among top 10 service providers Collabera was ranked: 32 in the Top 100 Large Businesses in the U.S 18 in Top 500 Diversity Owned Businesses in the U.S 3 in the Top 100 Diversity Owned Businesses in New Jersey 3 in the Top 100 Privately-held Businesses in New Jersey 66th on FinTech 100 35th among top private companies in New Jersey *********************************************** Collabera recognizes true potential of human capital and provides people the right opportunities for growth and professional excellence. Collabera offers a full range of benefits to its employees including paid vacations, holidays, personal days, Medical, Dental and Vision insurance, 401K retirement savings plan, Life Insurance, Disability Insurance. Job Description Work Location: Durham NC 27703 Job Title: Network Security Analyst Duration: 24 Months Roles & Responsibilities: • Primary job responsibility will be to perform Intrusion Detection Sensor Threat Analysis. • Support for any one of McAfee IDS, Sourcefire IDS, Cisco IDS, Tipping Point IDS, Enterasys IDS, Juniper IDP and Fortinet IDS strongly desired. • The Operations team supports 24x7 and an off shift work schedule may be required. Qualifications IDS/IPS "Network analyst jobs" ; "Network security" ; "firewall analyst"; "network security position"; "network engineer"; "security engineer" Additional Information Should you have any questions, please feel free to call: ************ Aditika Sithta

Network Security AnalystLOCATIONReston, VA 20190CLEARANCETS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARYWe are looking for a detail-oriented and proactive Network Security Analyst to join our cybersecurity team. In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks, responding to incidents, and implementing measures to safeguard sensitive information. Collaborating with cross-functional teams, you will play a key role in enhancing the organization's overall network security posture. The ideal candidate is passionate about cybersecurity, thrives in a dynamic environment, and is committed to staying ahead of emerging threats and technologies. *** Please note that our job openings are dynamic and can open or close quickly (much faster than we can publish). If you do not see an opening you are looking for, know that we see almost all types of positons. We strive to keep our listings up to date, but please consider submitting your current resume. Our team will work with you to identify the most recent opportunities that align with your skillset and career goals. We look forward to you joining our family. *** SIMILAR CAREER TITLESCybersecurity Analyst, Information Security Analyst, Security Operations Center (SOC) Analyst, Network Defense Analyst, Threat Intelligence Analyst, IT Security Specialist, Vulnerability Analyst, Incident Response Analyst, Security Monitoring Analyst, Cyber Defense Analyst, Infrastructure Security Analyst, etc.DEGREE (Level Desired) Bachelor's DegreeALTERNATE EXPERIENCEGeneral comment on degrees: Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some contracts give 4-5 years experience credit for a Bachelor's Degree. Some contracts give 2 years experience credit for a Master's Degree. We will work with you to find the right fit.POSITION RESPONSIBILITIES Monitor network traffic for anomalies Investigate and resolve security incidents Maintain and update security systems Generate and analyze security reports Assist in developing incident response plans Ensure adherence to security policies REQUIRED SKILLS Proficiency in monitoring tools like IDS/IPS Strong analytical and problem-solving skills Understanding of network protocols (TCP/IP, DNS) Knowledge of malware analysis tools Ability to interpret security logs Familiarity with vulnerability scanning tools DESIRED SKILLS Experience with advanced threat detection Knowledge of forensics methodologies Understanding of regulatory frameworks (e.g., GDPR, HIPAA) Experience with SOC workflows Familiarity with automation and scripting Knowledge of threat intelligence platforms PLUG IN to CYMERTEK - And design your future... YOUR FOREVER CAREER STARTS HERE Are you looking for more than just a job? Join a company where employees are treated like family, and your career is built to last. We are a growing small business and a trusted federal contractor offering full scope consulting services in information technology, cybersecurity, and analyst workforce development. At our company, you come first. We're committed to creating an environment where you'll thrive professionally and personally. We provide meaningful, challenging work using cutting-edge technologies while investing in your growth and success. With direct access to company leadership, a laid-back and inclusive atmosphere, and exceptional work-life balance, you'll feel valued every day. We also believe in taking care of our family - both yours and ours. Our benefits are phenomenal, family-friendly, and designed with your well-being in mind. From employee and family events to career-long support, we create a community you'll never want to leave. Ready to make your next move the best one? Join us and experience the difference. BENEFITS Excellent Salaries Flexible Work Schedule Cafeteria Style Benefits 10% - 401k Matching (Vested Immediately) Additional 401k Profit Sharing 30 days Paid Leave/Holiday (No Use or Lose!) The day off for your birthday Medical/Dental/Vision - 100% employee coverage. ($1200 allowance - or a bonus) HSA/FSA AFLAC Long Term/Short Term Disability - 100% employee coverage. No cost to you. Life Insurance - 100% employee coverage. No cost to you. Additional Discretionary Life Insurance Paid Training No long, wordy reviews with tons of paperwork!!! Referral bonus program with recurring annual payments HOW TO APPLY Email us at ***************** or apply today: **************** Want to see what our employees think? Click here . EQUAL OPPORTUNITY EMPLOYER STATEMENT Cymertek is proud to be an Equal Opportunity Employer committed to fostering an inclusive and diverse workplace. We embrace and celebrate differences in our employees, recognizing that a diverse workforce enhances our creativity, innovation, and overall success. At Cymertek, employment decisions are made based on merit, qualifications, and business needs without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable laws. We believe in creating an environment where all individuals are treated with respect and dignity, and where opportunities for professional growth and advancement are accessible to everyone, regardless of background or identity.

Job DescriptionDescription: Client Solution Architects (CSA) is currently seeking an Information Systems Security Analyst to support a program at Dahlgren, VA. This role is contingent on award. For nearly 50 years, CSA has delivered integrated technology and operational support services to meet the defense and federal sector's most complex enterprise needs. Working from operations centers and shipyards to training sites and program offices, CSA deploys experienced teams, innovative tools and proven processes to advance federal missions. How Role will make an impact: Cybersecurity Expertise: Cybersecurity principles, threats, vulnerabilities, and risk management processes Encryption algorithms (e.g., Internet Protocol Security (IPSEC), Advanced Encryption Standard (AES), General Routing Encapsulation (GRE), Internet Key Exchange (IKE), Message Digest 5 (MD5), Secure Hash Algorithm (SHA), Triple Data Encryption Algorithm (3DES) Data backup and recovery concepts and tools Disaster recovery and continuity of operations planning Host/network access control mechanisms (e.g., Access Control Lists (ACLs) Incident response and handling methodologies Intrusion detection methodologies and techniques Network traffic analysis methods Network protocols (Transmission Control Protocol /Internet Protocol (TCP/IP), and Open System Interconnection (OSI) model System and application security threats and vulnerabilities (e.g., buffer overflow, cross-site scripting, SQL injection) Security architecture concepts and enterprise architecture reference models National and international cybersecurity laws, regulations, policies, and ethics Current and emerging threats and threat vectors Enterprise incident response program, roles, and responsibilities Penetration testing principles, tools, and techniques Technical Proficiency: Computer networking concepts, protocols, and security methodologies System performance and availability monitoring System software and organizational design standards (e.g., International Organization of Standardization (ISO) guidelines) System life cycle management principles, including software security and usability System/server administration and systems engineering concepts and methods Server and client operating systems Network security architecture concepts (topology, protocols, defense-indepth) Network systems management principles and tools Basic system administration, network, and operating system hardening techniques Cloud computing service and deployment models (SaaS, IaaS, PaaS) Cloud security strategy and architecture Data security standards Personally Identifiable Information (PII), Payment Card Information (PCI), Protected Health Information (PHI)) Leadership and Management: Information security program management and project management principles Resource management principles and techniques Risk management processes (assessment and mitigation) Secure acquisitions (e.g., Contracting duties, secure procurement, supply chain risk management) Information technology (IT) supply chain security and risk management Applicable laws, statutes, Presidential Directives, and guidelines related to cybersecurity and privacy Organizational risk tolerance and risk management approach Critical IT procurement requirements Requirements: What you'll need to have to join our award-winning team: Clearance: Must possess and maintain an active Secret Clearance Four (4) years of experience in Cybersecurity. Certification: IAT Level II

Posting Type Non-Student Position Title Security Analyst Position Number TECH10 Description of Responsibilities and Duties Additional responsibilities include, but are not limited to: * Monitor cybersecurity software used in the environment. * Investigate incoming alerts and escalate as necessary. * Investigate suspicious email reports. * Review incoming incident response hotline calls. * Threat hunting within the environment to prevent security incidents. * Perform vulnerability scans in the environment. Research solutions to vulnerabilities and work alongside system owners and techs to remediate vulnerabilities. * Create Threat Assessments to aid in evaluating risks posed by vulnerabilities or potential threats based on research of upcoming trends and intelligence feeds. * Work with other team members to create and execute Security Awareness Training and Testing for the university. * Assist with maintaining email filtering systems and, release emails when deemed safe. * Assist with reviewing and remediating items found during audits, both internal and external. * Develop and support cybersecurity environments for the university. * All other duties as assigned. School/Department Information The University of North Carolina School of the Arts (UNCSA) is a top-ranked creative and performing arts conservatory in Winston-Salem, North Carolina. It was founded in 1963 as America's first public arts conservatory. UNCSA provides gifted emerging artists with the experience, knowledge, and skills needed to excel in their disciplines and in their lives, and it serves and enriches the cultural and economic prosperity of the people of North Carolina and the nation. UNCSA is the state's unique professional school for the performing, visual, and moving image arts, training students at the high school, undergraduate, and master's levels for professional careers in the arts. UNCSA Information Technologies (IT) department's mission is to lead, serve, and support the school as it embraces and encourages integration of information technology in all aspects of campus life where it is appropriate and in alignment with UNCSA's mission. UNCSA's IT department is responsible for centralized IT management. Description of Work The Cybersecurity Analyst is responsible for ensuring effective integration of Information Technology systems and services with the Information Security Program and Information Security Policy. The Cybersecurity Analyst is primarily responsible for protecting Founders from cyberattacks. This involves researching upcoming IT trends, reviewing suspicious activities, reporting security breaches, and educating employees on cybersecurity. Work Schedule and Hours Monday-Friday 8am - 5pm and other hours as necessary Required Qualifications Master's degree or a Bachelor's degree and 0-2 years of experience, or an equivalent combination of training and experience. Preferred Qualifications * Bachelor's degree in computer science or a related field is preferred. * CompTIA Security + Certification preferred. Knowledge, Skills and Abilities The Cybersecurity Analyst must have the ability to analyze, research, and resolve questions, and possess the ability to learn quickly and adjust to technological changes. The ideal candidate must have the following skills & qualifications: * Excellent communication, documentation skills, and the ability to understand and explain technical details to technical and non-technical audiences are required to be successful. * Ability to effectively communicate on complex issues with a high level of effectiveness. * The ability to work in a team, present a trustworthy image, and deal effectively with others is required. * Must be a self-starter with the ability to manage multiple work assignments and priorities with urgent deadlines, maintain excellent service delivery, while working with a fast-paced team. * Strong data analysis, research, analytical, and testing skills. * Able to work independently without significant supervision. Physical Demands Classification Code Classification Title IT Security Professional I Posting Detail Information Posting Number Open Date 10/23/2025 Close Date Salary $28 an hour Recruitment Range Open Until Filled Yes Special Instructions to Applicants This is a TEMPORARY position. The University of North Carolina School of the Arts is an equal opportunity employer and all qualified applicants are welcome to apply without regard to age, color, disability, gender, genetic information, national origin, race, religion, sex, sexual orientation, or veteran status. The application must be completed in full detail (including work history) for your qualifications to be considered. Failure to complete the application process as required by state regulations will result in your application being rejected for the vacancy and you will not be considered for the position. The UNCSA participates in E-Verify. Federal law requires all employers to verify the identity and employment eligibility of all persons hired to work in the United States. Final candidates are subject to criminal background checks. EEO Contact Information Applicants needing assistance with the application process are asked to contact: ******************

XDIN subsidiary of ALTEN Group, includes 500 employees dedicated to the automotive engineering development. ALTEN is a Leader in Engineering & Information Technology system, and operates in over 21 countries (Europe, North America, Asia, Africa and Middle East) with more than 28,000 employees of which 88% are engineers. At XDIN, we are always looking for world-class talent to lead our global teams through commitment and dedication to our OEM and Tier I clients. We believe in quality support from concept through production, and delivering the best customer experience while at the same time attaining a great place to work! XDIN Offers Competitive wages, BOE. Major health, dental insurance benefits and vision savings plan. 401k, and basic life. Supplemental benefits such as short-term disability, accident, cancer and life insurance. Paid company holidays and earned time off. We place a high value on thought leadership. We want every employee to develop all the skills required to become an engineering and technology thought leader; contributing to the knowledge assets of our team and our clients. From day one, every consultant is trained and mentored to elevate their careers. Responsibilities: Performs network and application technical vulnerability assessments using vulnerability assessment tools. Performs penetration testing activities to detect vulnerabilities and attack chains. Utilizes penetration testing skills to conduct analyses to gather deeper situational awareness and provide greater security insight of the environment. Lead the Security Awareness efforts, including facilitating presentations on topics of relevance, evaluating and implementing awareness training Assist in network security efforts including Data Loss Prevention, Intrusion Prevention and SIEM analysis Test security measures including OS patches, system hardening, and application configuration Monitor, review and troubleshoot alerts Review, interpret and adapt customer, regulatory and corporate security and compliance requirements into technical design options Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements. Produce security policies, standards, and guidelines Perform security research Produce security risk advisories based on newly identified threats and risk assessment Assist in performing IT audit, third party evaluations, and risk assessment activities Requirements: Bachelor's degree in Information Technology, Computer Science or a related discipline Approximately 3 years' work experience in Information Security in an enterprise network (Internships and Co-Ops can be included) A recognized information security certification or accreditation such as Security+, CISSP, or CEH is a plus. Fundamental understanding of penetration testing techniques and technologies Fundamental understanding of application development security concepts such as OWASP Top 10 Vulnerabilities Fundamental understanding of Active Directory administration and Windows authentication Fundamental understanding of security technologies such as SIEM, IDS/IPS, Web filters, two-factor authentication, web application firewalls Fundamental understanding of Malware detection, analysis, exploitation, containment, and eradication techniques experience Experience with systems analysis including, but not limited to: Gathering requirements from stakeholders, Constructing RFP/RFQs, devising and planning proof-of-concepts, defining use and test cases, driving critical security infrastructure projects, creating cogent status reports for senior management, strong technical understanding of vulnerabilities, and how attackers can exploit vulnerabilities to compromise systems. Excellent verbal, written, and presentation skills; in particular, demonstrated ability to effectively communicate technical and business issues and solutions to multiple organizational levels internally and externally as needed Knowledge of security frameworks and governance such as NIST, ISO27000 series, HIPAA, GDPR, PCIDSS Solid analytical and problem solving skills; ability to think strategically and turn ideas into actions Familiarity with Project Management concepts. Familiarity with scripting languages such as Python Ability to work with little supervision and consistently deliver results The Location: This opportunity is based in Greensboro, NC.

The company is looking for an amazingly talented Networking Security Analyst to join our team! In this role you will get to support the continuous monitoring and risk mitigation of sensitive networks and systems in accordance with DoD cybersecurity policies, procedures, and best practices. What You'll Be Doing: Risk Mitigation of sensitive networks and systems Configure, scan, monitor, report PCAP collection What Required Skills You'll Bring: 1+ years' experience supporting the continuous monitoring and risk mitigation of sensitive networks and systems in accordance with DoD cybersecurity policies, procedures, and best practices Experience with configuring, scanning, monitoring, alerting and reporting security tools. Active TS/SCI Clearance Must be willing to travel 15%- OCONUS and CONUS locations What Desired Skills You'll Bring: Experience with PCAP collection. Experience as a SOC analyst. Certification such as CISSP, CSA, Sec+, CySA+, GCWN, GCED or CEH Minimum Clearance Required to Start: Top Secret SCI This position is part of our Federal Solutions team. Our Federal Solutions segment delivers resources to our US government customers that ensure the success of missions around the globe. Our employees drive the state of the art as they provide services and solutions in the areas of defense, security, intelligence, infrastructure, and environmental. We promote a culture of excellence and close-knit teams that take pride in delivering, protecting, and sustaining our nation's most critical assets, from Earth to cyberspace. Throughout the company, our people are anticipating what's next to deliver the solutions our customers need now. We value our employees and want our employees to take care of their overall wellbeing, which is why we offer best-in-class benefits such as medical, dental, vision, paid time off, 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle! The company is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status. We truly invest and care about our employee's wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the quest-APPLY TODAY!

IS PENDING CONTRACT AWARD Mission Objectives The Information Systems Security Analyst advances the cybersecurity posture, compliance, and Authorization to Operate (ATO) status of complex DoD information systems within a dynamic mission environment. This position serves as a key technical lead for Risk Management Framework (RMF) Assessment & Authorization and enterprise cyber defense operations, ensuring all DoD networks, systems, and data are consistently protected in accordance with federal regulations and best practices. Position Responsibility Summary RMF Assessment & Authorization (A&A): Advise and assist the ISSM/ISSO in executing all phases of the RMF process for command systems. Develop Security Assessment Plans (SAP), conduct security categorization reviews, and maintain/update RMF artifacts (e.g., System Security Plans, Security Assessment Reports, Plan of Action & Milestones [POA&Ms], Risk Acceptance Recommendation Reports, Residual Risk Statements). Prepare comprehensive Security Authorization Packages for Authorizing Officials. Conduct security control assessments, vulnerability analyses, remediation reporting, and maintain accurate tracking of status and documentation. Continuous Monitoring, Vulnerability & Compliance: Execute recurring inspections, technical reviews, and audits of system/network controls. Ensure compliance with DoD RMF, NIST SP 800-53, NIST SP 800-171, DISA STIGs, and DFARS ************. Review, document, and enhance IA protective and corrective measures; maintain vulnerability remediation and asset management (VRAM) records. Support and track site visits, inspections, system accreditations, and implement corrective actions based on network scan analysis. Incident Response, Reporting, & Escalation: Monitor network/system activity and logs for threats and anomalies. Lead or support incident response: containment, remediation, analysis, and reporting/escalation to appropriate authorities. Ensure reporting of cyber incidents and support compliance with DoD notification and investigative protocols. Security Integration & Design: Embed security engineering principles into all network, system, and application design and configuration changes. Provide technical recommendations for system hardening and mitigation of emerging threats. Contribute to secure acquisitions, IT supply chain risk management, and assessments of new or emerging technologies for security impact. Program Documentation & Communication: Prepare and maintain technical documentation, status reports, executive briefings, and CDRL deliverables (SAP, SAR, POA&M, etc.). Participate in cybersecurity meetings, provide technical consultation to leadership, and prepare minutes/trip reports when required. Functional & Mission Support: Translate business and operational requirements into actionable cybersecurity solutions. Promote continuous process improvement, develop SOPs, and ensure security architecture aligns with mission objectives.

Artech Information Systems is the #12 Largest IT Staffing Company in the U.S. and an employer of choice for over 7,000 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications. At the forefront of the staffing industry, Artech is a minority and women-owned business enterprise (MWBE) committed to maximizing global workforce solutions on behalf of its clients. Artech's deep heritage, proven expertise and insightful market intelligence has secured long-term partnerships with Fortune 500 and government clients seeking world-class professional resources. Job Description The position is within the Information Security Identity and Access Management (IAM) team. This position will be responsible for user provisioning of application & infrastructure access as well as application account management; working knowledge of platform provisioning (groups/roles/accounts/permissions), this includes understanding of platform or application meta-data, or fine grained entitlement details. They need to identify risks and work out possible solutions with the customer and inform management as necessary, while handling tasks assigned to them with little or no supervision. They are expected to identify task inefficiencies and provide ideas for solutions, including the ability to assist with the automation of manual and semi-manual processes via development and scripting. Qualifications Strong understanding of Identity and Access Management (IAM) concepts • Provisioning access to applications and infrastructure platforms within our SLA. • Handling of miscellaneous support requests. • 24/7 on call support on rotational basis. • Handle deployment related activities which is often after hours and/or weekends. • Incorporating process changes and updates into the Standard Operation Procedures. • Troubleshoot application/platform access issues and escalate to Tier 3 Support as necessary. • Training other staff on provisioning and daily tasks. • The gathering of requirements and testing for new application integration into Identity Management Solution. • 3 - 5 years of experience with business application or infrastructure support on the following platforms: Windows, UNIX (Solaris, Linux, AIX), Web Technologies (WebLogic, Web Methods, Apache, Tomcat, MQ, IIS, etc). • 3 - 5 years of collective experience with databases (Sybase, DB2, SQL Server, Oracle) and security (firewall, AD, TAM, LDAP, certificate). • Experience providing direct support to IT business application and related infrastructure teams in a complex multi-platform operating environment • 3 - 5 years of strong Java, J2EE development experience, including Java frameworks such as Spring MVC, JSF, Struts, etc. Basic Requirements: • Bachelor's degree in Engineering, Computer Science, Information Technology, related field or equivalent work experience. • Experience working in a fast paced team environment and managing priorities with minimal supervision • Strong organizational skills and the ability to multitask; can set priorities and follow a timeline • Excellent written and oral communications • Proficiency with Microsoft Excel skills, with strong excel analytical experience. • Strong familiarity / experience with MS Office tools, Visio and SharePoint • Strong interpersonal and communication skills, up to and including executive • Experience using analytical and problem solving skills • Experience negotiating effectively and facilitating conflict resolution Preferred Skills: • 3 - 5 years of application development or support coupled with infrastructure experience. • 3 - 5 years of prior working experience in automating manual and semi-automatic processes via scripting languages such as PowerShell, Perl or Python. • Strong IT systems troubleshooting analysis abilities • Experience with SailPoint IdentityIQ Suite • Experience with CyberArk Application Identity Manager or other Password Management utility. • CISSP certification a plus • J2EE certification a plus Additional Information If you are interested, Please contact Siva Kumar ************

Locus is a nimble, experienced consulting team specializing in information security, cloud computing, networking, and infrastructure. We have extensive experience delivering technology solutions in the Network, Cloud, and Security arenas to some of the largest companies in the world. Candidates are treated like unique individuals, not a commodity, and our career experts are committed to understanding all aspects of a candidate's wants and needs in order to find the best possible fit. We are laser-focused on winning together and supporting both our internal team and clients alike for long-term shared success. We take a full-service approach with our process, understanding our clients and candidates needs to find the right fit from a skillset and a cultural perspective. People are at the cornerstone of what we do, and we'd love to hear from you. Locus is currently searching for an Information Security Engineer for our client. This is a full time perm exempt role. SUMMARY: Responsible for protecting the organization's computers, networks, and data against threats, such as security breaches, computer viruses, or attacks by cyber criminals. This position oversees the planning, development, coordination, implementation, and management of all Information Security functions and measures to regulate access and usage of Customer Information Systems in accordance with established company policies, standards and procedures. The Information Security Manager regularly interfaces with other department heads in matters pertaining to information security awareness and keeps abreast of changes in regulatory and compliance issues, which affect all phases of information security and Customer. This position is also responsible for administration of corporate Business Continuity Program. ESSENTIAL JOB FUNCTIONS: Develops Information Security (IS) architecture/designs, plans, controls, processes, standards, policies, and procedures to ensure alignment with IS standards and overall IS security strategy Develop, implement, and manage security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information Determines user requirements, plans projects, establishes priorities, and monitors progress Manages the evaluation and testing of hardware, firmware, and software for possible impact on systems security Maintains and monitors user access control for bank systems Coordinates with other managers to integrate IS project components with other projects including application delivery, network, server, and hosted solutions Manages and coordinates the enterprise Vendor Risk Management Program Manages and coordinates Corporate Business Continuity Program Communicate best practices and risks to Customer Perform a risk assessment of Customer's vulnerabilities in the cybersecurity landscape and develop Customer's risk appetite for Information Security Develop key risk indicators and dashboard metrics reporting to both the management team and the Board of Directors JOB REQUIREMENTS: Bachelor's Degree from an accredited university in the field of Audit, MIS, Computer Science or related field of study Prior Information Security experience at a Financial Services company Familiarity with Financial Services regulations Familiarity with Federal Financial Institution Examination Council (FFIEC) guidance Prior management experience Certified Secure Software Lifecycle Professional (CSSLP) and/or Certified Information Security Manager (CISM) certification KNOWLEDGE/SKILLS REQUIRED: Knowledge of financial services industry and all applicable regulations and industry standards Advanced ability to engineer security solutions Intermediate relationship management skills Intermediate knowledge of cybersecurity strategy management Advanced cybersecurity monitoring and reporting skills Advanced knowledge of security incident handling Advanced knowledge of security risk assessment methodologies Excellent customer service skills Strong verbal and written communication skills High level of attention to detail, with strong problem solving & organizational skills Ability to perform effectively in fast-paced environment PHYSICAL AND MENTAL QUALIFICATIONS: Standing, walking, bending and stooping required Must be able to sit at a desk for long periods of time and use a computer Must be able to occasionally move or lift up to 10 pounds May be asked to work supplemental hours periodically Limited travel required during and after business hours The above statements are intended to describe the general nature and level of work being performed by the incumbent assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and/or skills required of all personnel so classified. NOT A CONTRACT

Type: Contract Duration: 3 months Job description: • Conduct dynamic application security testing using both manual and automated testing tools. • Review test results from tools • Ensure that automated tests are completed successfully • Configure tools as required to be successful in evaluating VERA (Vendor remote access) applications • Identify and remove any false positives from automated testing tool reports • Triage & Disposition results and enforce a Bug Bar • Verify/validate defect fixes • Provide application security consulting SME Support to developers • Assist developers with understanding of security defects and risk • Assist in defining acceptable solution to fix defects • Communicate Security risk to ISCs and ORCs to document security issues and controls for security planning purposes • Help maintain Security Coding Standards and Bug Bar as required • Assist in the Development of standards as required • Provide training • Stay up to speed on 3rd party (inside and outside Wells Fargo) known security vulnerabilities • Develop and review malicious use cases/threat models • Maintain a broad understanding of security technologies and products • Actively participate on improving the security culture and education throughout the organization Qualifications Required skills: • 5+ years of experience in security applications and systems • Minimum of 5 years of Information Security Engineer/Consultant experience with application penetration testing. • Minimum of 5 years of demonstrated experience with automated penetration tools • Minimum of 5 years of demonstrated experience with manual penetration testing tools • Demonstrated experience with creating and communication of reports regarding web application vulnerabilities to various level of personnel within a large organization Desired skills: • Advanced Information Security technical skills • Ability to manage complex issues and develop solutions • Excellent verbal and written communication skills • Knowledge and understanding of application or software security such as: web application penetration testing, secure code review, secure static code analysis • Knowledge and understanding of banking or financial services industry • Experience working in a large enterprise environment • Strong analytical skills with high attention to detail and accuracy • Knowledge and understanding of information security industry standards and government regulations • Ability to manage multiple and competing priorities • Ability to work with limited supervision • Ability to take on a high level of responsibility, initiative, and accountability • Good attention to detail and accuracy skills • Strong collaboration and partnering skills • Demonstrated experience developing and reviewing malicious use cases/threat models Job expectations • Ability to work weekends and holidays as needed or scheduled Candidate will be required to work onsite at certain facilities in these cities: MN-Minneapolis; AZ-Chandler; NC-Charlotte;NC-Winston Salem; CA - San Francisco Additional Information All your information will be kept confidential according to EEO guidelines. **Please let me know if you might someone to refer or if you are interested for the role. **Please reply with an updated copy of your resume and preferred time for a call. **You can call me back at ************ .