Cyber Security Analyst Jobs in Winston-Salem, NC

Professional Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the future? If you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. **What you will do** As a Cyber Incident Responder within the Global Cybersecurity Operations Center, you will play a crucial role in investigating, proactively identifying threats, and actively defending the Volvo Group infrastructure against Advanced Persistent Threats. You will leverage your knowledge, technical skill set, and creativity, to analyze and correlate various disparate events across a diverse set of security-related logs and telemetry. In addition to finding evil, you will work to identify and address visibility and logging deficiencies within the network. You will be responsible for monitoring our systems, responding swiftly to security breaches, and implementing defense strategies to prevent future incidents. You will work on complex problems in which analysis of situations or data requires an in-depth evaluation of various factors. In addition to applied experience, you will bring excellent problem-solving, communication, and teamwork skills, along with agile ways of working, strong business insight, an inclusive leadership attitude, and a continuous learning focus to all that you do. This role requires a keen analytical mind and the ability to stay ahead of evolving cyber threats. Your expertise will be integral in maintaining our cybersecurity posture and ensuring the integrity and confidentiality of our information systems. In this role, you will be responsible for analyzing data, carrying out alert and incident response processes, conducting in-depth analysis of network and endpoint data, and incorporating threat intelligence to enhance detection and mitigation strategies. The Associate Cybersecurity Analyst will support a team that works the following hours within the Security Operations Center. Saturday and Sunday 10am-10:30pm Monday and Tuesday 8am- 4:30pm **Who are you?** Do you dream big? We do too, and we are excited to grow together. In this role, you will bring: + Bachelor's degree in Computer Science or a related 4-year technical degree + Minimum 4 years of experience in: incident response, cybersecurity investigations, response, and analysis. Experience in SOC, SIRT, or CSIRT capacities + One or more of the following certifications: GIAC Certified Intrusion Analyst, GCIH Certified Incident Handler, GCIA Certified Intrusion Analyst, CISSP + Experience in enterprise cybersecurity environment investigating targeted intrusions through complex network segments **What's in it for you?** We offer a solid package of compensation and benefits, plus you will enjoy: + Competitive medical, dental and vision insurance. + Generous paid time off including paid caregiver and parental leave policies. + Competitive matching retirement savings plans. + Working environment where your safety, health and wellbeing come first. + Focus on professional and personal development through Volvo Group University. + Programs that make today's challenging reality of combining work and personal life easier. **Ready for the next move?** Are you excited to bring your skills and disruptive ideas to the table? We can't wait to hear from you. Apply today! We value your data privacy and therefore do not accept applications via mail. **Who we are and what we believe in** Our focus on Inclusion, Diversity, and Equity allows each of us the opportunity to bring our full authentic self to work and thrive by providing a safe and supportive environment, free of harassment and discrimination. We are committed to removing the barriers to entry, which is why we ask that even if you feel you may not meet every qualification on the job description, please apply and let us decide. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Applying to this job offers you the opportunity to join **Volvo Group.** Every day, across the globe, our trucks, buses, engines, construction equipment, financial services, and solutions make modern life possible. We are almost 100,000 people empowered to shape the future landscape of efficient, safe and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents with sharp minds and passion across the group's leading brands and entities. **Group Digital & IT** is the hub for digital development within Volvo Group. Imagine yourself working with cutting-edge technologies in a global team, represented in more than 30 countries. We are dedicated to leading the way of tomorrow's transport solutions, guided by a strong customer mindset and high level of curiosity, both as individuals and as a team. Here, you will thrive in your career in an environment where your voice is heard and your ideas matter. Job Category: Information Technology Organization: Group Digital & IT Travel Required: Occasional Travel Requisition ID: 16894 **View All Jobs (********************************************* **Do we share the same aspirations?** Every day, Volvo Group products and services ensure that people have food on the table, children arrive safely at school and roads and buildings can be constructed. Looking ahead, we are committed to driving the transition to sustainable and safe transport, mobility and infrastructure solutions toward a net-zero society. Joining Volvo Group, you will work with some of the world's most iconic brands and be part of a global and leading industrial company that is harnessing automated driving, electromobility and connectivity. Our people are passionate about what they do, they aim for high performance and thrive on teamwork and learning. Everyday life at Volvo is defined by a climate of support, care and mutual respect. If you aspire to grow and make an impact, join us on our journey to create a better and more resilient society for the coming generations. **Nearest Major Market:** Greensboro

Sr. ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $118,560 - $171,253.33 a year

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret/SCI Public Trust/Other Required: None Job Family: Information Security Job Qualifications: Skills: Computer Security, Cybersecurity, Network Security, System Security, Wireless Technologies Certifications: None Experience: 5 + years of related experience US Citizenship Required: Yes Job Description: Own your opportunity to serve as a critical component of our nation's safety and security. Make an impact by using your expertise to protect our country from threats. Deliver solutions to complex problems as a Cyber Wireless Security Engineer at GDIT. Here, you'll tailor cutting-edge solutions to the unique requirements of our clients. With a career in cyber security and wireless technologies, you'll make the end user's experience your priority and we'll make your career growth ours. At GDIT, people are our differentiator. As a Cyber Wireless Security Engineer you will contribute to efforts in designing; developing; analyzing; troubleshooting; and documenting wireless network security infrastructure (ARUBA Systems). Performs problem isolation and resolution; monitors; tunes and sets standards for wired and wireless networks. Provide client consulting and training on the interfacing and use of the network security facilities. Plans and coordinates computer wireless network initiatives. Devise solutions to operational problems within the capacity and operational limitations of installed equipment. Provide internal consulting; technical guidance; information and support to application developers; computer operations; workstation support; company management and departmental clients. Works with and directs other network professionals as required to coordinate efforts resolve cross-team issues and communicate changes. Ensures that network operations are safe and efficient by monitoring network performance; coordinating planned maintenance; adjusting hardware components and responding to network connectivity issues related to firewall/VPN/SSL infrastructures. Responsible for evaluating current network security systems. HOW A CYBER WIRELESS SECURITY ENGINEER WILL MAKE AN IMPACT * Perform weekly plugin updates and CND vulnerability assessments within the enclave utilizing Tenable NESSUS Network Security Scanner and DISA STIGs on Management Network * Serves as the local expert for Wireless Computer Network Defense (CND) * Develop device configuration files from scratch and make modifications to existing configuration files to Wireless devices and WLAN systems. * Design; implement; and support WLANs by performing and documenting 802.11 wireless surveys * Experience using Air Magnet Survey and Spectrum Analyzer; analyzing collected RF data to determine cell boundaries; AP power settings; and noise and interference sources is preferred. Will determine AP placements and deploy APs; and perform post-implementation surveys in order to optimize WLAN performance. Preferable be owning his own tools. * Demonstrate hands on knowledge of Smart-Phone operating systems; security and wireless connectivity features. * Integrate knowledge of building construction; RF propagation and current hardware vendor limitations to create a design proposal. * Create and Validate accuracy of heat-maps. * Receive and analyze network alerts from various sources within the enclave and determine possible causes of such alerts-McAfee HBSS Admin background to include hands on experience with DLP * Coordinate with enclave CND staff to validate Wireless network alerts * Perform analysis of log files from a variety of sources within the enclave; to include individual host logs; network traffic logs; firewall logs; and intrusion detection system logs * Coordinates with higher authorities on events that involve actual or attempted intrusions; viruses; worms; hoaxes; etc. that occur on the enclaves * Maintain knowledge of applicable CND policies; regulations; and compliance documents specifically related to CND auditing * Implement and enforce CND policies and procedures reflecting applicable laws; policies; procedures; and regulations * Provide incident reports; summaries; and other situational awareness information to higher headquarters * Manage an incident (e.g.; coordinate documentation; work efforts; resource utilization within the organization) from inception to final remediation and after action reporting * Notify CND managers; CND incident responders; and other team members of suspected CND incidents and articulate the events history; status; and potential impact for WHAT YOU'LL NEED TO SUCCEED: ● Education: Bachelors degree in related degree or equivalent experience ● Required Experience: 5+ years of related experience ● Required Technical Skills: * ITIL Foundation certification preferred * Technical Administration and in depth experience with Wireless Networks * Is competent in most areas of information systems security; including policy; security standards; network; application; database and physical * Ability to make recommendations to security flaws in question * Familiar with requirements of DoD 8570.1 * Familiar with Network Access Control implementation and management ● Security Clearance Level: TS/SCI ● Location: On-Site (Fort Liberty, NC) ● US Citizenship Required GDIT IS YOUR PLACE: ● 401K with company match ● Comprehensive health and wellness packages ● Internal mobility team dedicated to helping you own your career ● Professional growth opportunities including paid education and certifications ● Cutting-edge technology you can learn from ● Rest and recharge with paid vacation and holidays The likely salary range for this position is $114,525 - $143,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: 10-25% Telecommuting Options: Onsite Work Location: USA NC Fort Liberty Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation's most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Link Solutions, Inc. delivers reliable and effective Information Technology services to government clients in support of critical mission needs. Delivering a broad range of Infrastructure Operations, Application Development, Cybersecurity, Virtualization, Cloud and Mobility services. Link is quality and compliance-focused, under our guiding philosophy “Mission First, Customer Always". If you're looking for a technology company that values innovation, with a vision toward the future of the technology landscape, look no further than Link Solutions! We are ISO 9001:2015, ISO 20000-1:2018, ISO 27001:2013 certified and appraised for CMMI ML3 for Services and Development. Link Solutions Inc. is seeking an Information Security Specialist (Intermediate and Senior Level) to join our team in support of the US Army's Network Enterprise Center at Fort Liberty, NC. Must be a US Citizen Secret Clearance required Non-remote (relocation incentive available) As an Information Security Specialist, you will use current information security technology disciplines and practices to ensure the confidentiality, integrity, and availability of government information assets. At Link Solutions, you'll help protect our national security while working on innovative projects that offer opportunities for advancement and growth. Become an integral part of a professionally diverse team while working at an industry-leading organization, where work/life balance and employees come first. This is a great opportunity that will allow you to work on innovative projects that offer advancement and growth while helping protect our national security. Intermediate Level Responsibilities: Provide Risk Management Framework, circuit/system accreditation, and certification policy services. Participate in the development or modification of the computer environment IA security program plans and requirements. Maintaining security policies and standards ensuring compliance throughout the organization. Develop procedures to ensure system users are aware of their IA responsibilities before granting access to DoD information systems Provide analytical support to identify possible security risks or violations. Ensure IA requirements are integrated into the Continuity of Operations Plan (COOP) for that system or DoD Component Ensure IA security requirements are appropriately identified in computer environment operation procedures and collect and maintain data needed to meet system IA reporting requirements. Work with system owners to close IAVMs/ICVMs and open plan of action and milestones (POA&Ms) in accordance with DoD instructions/directives. Senior Level Responsibilities: All Intermediate responsibilities. Provide daily supervision and direction to personnel across the Information Security team. Provide training and mentorship to Information Security Support Technicians, helping them develop their skills and knowledge. Manage, coordinate, and track work across the Information Security team. Maintain overall responsibility for the Information Security delivery team. Collect and review network utilization data for capacity and planning purposes. Assist in developing, implementing, testing, and maintaining disaster recovery plans. Support the development and delivery of training sessions to ensure staff understand Information Security resources. Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Qualifications US Citizen. Active DoD Secret Clearance. IAT Level II Certification equivalent or higher per DoD 8570/DoD 8140 (CompTIA Security+ CE, CCNA Security, GICSP, GSEC, SSCP, etc.). Baseline Certification is required within 6 months of hire. Intermediate Level: Four (4) years of IT experience, preferably within an Information Security environment. Experience with Juniper, Cisco, and Aruba networking equipment. Senior Level: Three (3+) years of experience providing daily supervision and direction to personnel across the network teams. Eight (8) years of IT experience, preferably within an Information Security environment. Preferred: IAT Level III Certification equivalent or higher per DoD 8570/DoD 8140 (CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, etc.). BA/BS degree in Engineering, Computer Science, Information Systems, or a related field. Microsoft environment certificate for Windows 10, Windows 11, or MS 365 Endpoint. Experience with Active Directory, Windows 10, Microsoft Office 365, iPhone, and remote desktop (Citrix). Experience with Knowledge Management or process creation. Experience providing quality service and support for mission-critical systems and VIP end users. Experience working in a Department of Defense (DoD) environment. Problem solver and troubleshooter who thrives in resolving complex problems. Strong self-starter requiring minimal supervision. Excellent communication skills (written and oral) and interpersonal skills. Excellent organizational skills, attention to detail, and ability to prioritize and manage multiple tasks. Additional Information This position is contingent upon the successful acquisition of the government contract and the completion of ongoing negotiations. We anticipate these processes will be completed within the next several weeks, at which time interviews and offers will be extended upon successful contract award. Link Solutions Inc. offers a competitive compensation and benefits package to include paid holidays, paid time off, medical, dental, vision, company-paid long and short-term disability, life insurance, referral bonuses, relocation reimbursement program, certification reimbursement program, retirement, and more. Link Solutions, Inc. is an EOE. AA/M/F/D/V. We participate in the E-Verify Employment Verification Program. All your information will be kept confidential according to EEO guidelines.

XDIN subsidiary of ALTEN Group, includes 500 employees dedicated to the automotive engineering development. ALTEN is a Leader in Engineering & Information Technology system, and operates in over 21 countries (Europe, North America, Asia, Africa and Middle East) with more than 28,000 employees of which 88% are engineers. At XDIN, we are always looking for world-class talent to lead our global teams through commitment and dedication to our OEM and Tier I clients. We believe in quality support from concept through production, and delivering the best customer experience while at the same time attaining a great place to work! XDIN Offers Competitive wages, BOE. Major health, dental insurance benefits and vision savings plan. 401k, and basic life. Supplemental benefits such as short-term disability, accident, cancer and life insurance. Paid company holidays and earned time off. We place a high value on thought leadership. We want every employee to develop all the skills required to become an engineering and technology thought leader; contributing to the knowledge assets of our team and our clients. From day one, every consultant is trained and mentored to elevate their careers. Responsibilities: Performs network and application technical vulnerability assessments using vulnerability assessment tools. Performs penetration testing activities to detect vulnerabilities and attack chains. Utilizes penetration testing skills to conduct analyses to gather deeper situational awareness and provide greater security insight of the environment. Lead the Security Awareness efforts, including facilitating presentations on topics of relevance, evaluating and implementing awareness training Assist in network security efforts including Data Loss Prevention, Intrusion Prevention and SIEM analysis Test security measures including OS patches, system hardening, and application configuration Monitor, review and troubleshoot alerts Review, interpret and adapt customer, regulatory and corporate security and compliance requirements into technical design options Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements. Produce security policies, standards, and guidelines Perform security research Produce security risk advisories based on newly identified threats and risk assessment Assist in performing IT audit, third party evaluations, and risk assessment activities Requirements: Bachelor's degree in Information Technology, Computer Science or a related discipline Approximately 3 years' work experience in Information Security in an enterprise network (Internships and Co-Ops can be included) A recognized information security certification or accreditation such as Security+, CISSP, or CEH is a plus. Fundamental understanding of penetration testing techniques and technologies Fundamental understanding of application development security concepts such as OWASP Top 10 Vulnerabilities Fundamental understanding of Active Directory administration and Windows authentication Fundamental understanding of security technologies such as SIEM, IDS/IPS, Web filters, two-factor authentication, web application firewalls Fundamental understanding of Malware detection, analysis, exploitation, containment, and eradication techniques experience Experience with systems analysis including, but not limited to: Gathering requirements from stakeholders, Constructing RFP/RFQs, devising and planning proof-of-concepts, defining use and test cases, driving critical security infrastructure projects, creating cogent status reports for senior management, strong technical understanding of vulnerabilities, and how attackers can exploit vulnerabilities to compromise systems. Excellent verbal, written, and presentation skills; in particular, demonstrated ability to effectively communicate technical and business issues and solutions to multiple organizational levels internally and externally as needed Knowledge of security frameworks and governance such as NIST, ISO27000 series, HIPAA, GDPR, PCIDSS Solid analytical and problem solving skills; ability to think strategically and turn ideas into actions Familiarity with Project Management concepts. Familiarity with scripting languages such as Python Ability to work with little supervision and consistently deliver results The Location: This opportunity is based in Greensboro, NC.

The Cybersecurity Engineer ensures information assurance and compliance design, integration, implementation, modification, and coordination of the installation, testing, operation, and disposition of hardware and software systems. Functions may include conducting analysis, developing functional and technical requirements and specifications, documentation, monitoring the availability, serviceability, and recoverability of installed technology security systems, implementing cyber security procedures and tools, maintaining systems configuration, managing the installation and integration of system patches updates, and enhancements, and ensuring the rigorous application of information security/information assurance policies, principles, and practices. Responsibilities Safeguards information systems by identifying potential and actual security problems. Protects system by defining access privileges, control structures, and resources. Recognizes problems by identifying abnormalities, reporting violations and mitigate vulnerabilities. Implements security improvements by assessing current situation; evaluating trends; anticipating requirements. Determines security violations and inefficiencies by conducting periodic audits. Upgrade systems by implementing and maintaining security controls. Conduct routine system checks and security assessments; preparing performance reports; communicating system status. Maintains quality service by following organization standards. Assist in the development, maintenance and implementation of security procedures and protocols." Performs other duties as assigned. Qualifications EDUCATION: Required: Bachelor's Degree and/or equivalent experience (10 years experience in IT with 5 years in IT Security is needed for equivalent experience) EXPERIENCE: Required: 5 years LICENSURE/CERTIFICATION/REGISTRY/LISTING: Required: Certified Information Systems Security Professional (CISSP) - Obtain within 12 months.

Locus is a nimble, experienced consulting team specializing in information security, cloud computing, networking, and infrastructure. We have extensive experience delivering technology solutions in the Network, Cloud, and Security arenas to some of the largest companies in the world. Candidates are treated like unique individuals, not a commodity, and our career experts are committed to understanding all aspects of a candidate's wants and needs in order to find the best possible fit. We are laser-focused on winning together and supporting both our internal team and clients alike for long-term shared success. We take a full-service approach with our process, understanding our clients and candidates needs to find the right fit from a skillset and a cultural perspective. People are at the cornerstone of what we do, and we'd love to hear from you. Locus is currently searching for an Information Security Engineer for our client. This is a full time perm exempt role. SUMMARY: Responsible for protecting the organization's computers, networks, and data against threats, such as security breaches, computer viruses, or attacks by cyber criminals. This position oversees the planning, development, coordination, implementation, and management of all Information Security functions and measures to regulate access and usage of Customer Information Systems in accordance with established company policies, standards and procedures. The Information Security Manager regularly interfaces with other department heads in matters pertaining to information security awareness and keeps abreast of changes in regulatory and compliance issues, which affect all phases of information security and Customer. This position is also responsible for administration of corporate Business Continuity Program. ESSENTIAL JOB FUNCTIONS: Develops Information Security (IS) architecture/designs, plans, controls, processes, standards, policies, and procedures to ensure alignment with IS standards and overall IS security strategy Develop, implement, and manage security measures for information systems to regulate access to computer data files and prevent unauthorized modification, destruction, or disclosure of information Determines user requirements, plans projects, establishes priorities, and monitors progress Manages the evaluation and testing of hardware, firmware, and software for possible impact on systems security Maintains and monitors user access control for bank systems Coordinates with other managers to integrate IS project components with other projects including application delivery, network, server, and hosted solutions Manages and coordinates the enterprise Vendor Risk Management Program Manages and coordinates Corporate Business Continuity Program Communicate best practices and risks to Customer Perform a risk assessment of Customer's vulnerabilities in the cybersecurity landscape and develop Customer's risk appetite for Information Security Develop key risk indicators and dashboard metrics reporting to both the management team and the Board of Directors JOB REQUIREMENTS: Bachelor's Degree from an accredited university in the field of Audit, MIS, Computer Science or related field of study Prior Information Security experience at a Financial Services company Familiarity with Financial Services regulations Familiarity with Federal Financial Institution Examination Council (FFIEC) guidance Prior management experience Certified Secure Software Lifecycle Professional (CSSLP) and/or Certified Information Security Manager (CISM) certification KNOWLEDGE/SKILLS REQUIRED: Knowledge of financial services industry and all applicable regulations and industry standards Advanced ability to engineer security solutions Intermediate relationship management skills Intermediate knowledge of cybersecurity strategy management Advanced cybersecurity monitoring and reporting skills Advanced knowledge of security incident handling Advanced knowledge of security risk assessment methodologies Excellent customer service skills Strong verbal and written communication skills High level of attention to detail, with strong problem solving & organizational skills Ability to perform effectively in fast-paced environment PHYSICAL AND MENTAL QUALIFICATIONS: Standing, walking, bending and stooping required Must be able to sit at a desk for long periods of time and use a computer Must be able to occasionally move or lift up to 10 pounds May be asked to work supplemental hours periodically Limited travel required during and after business hours The above statements are intended to describe the general nature and level of work being performed by the incumbent assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and/or skills required of all personnel so classified. NOT A CONTRACT

Type: Contract Duration: 3 months Job description: • Conduct dynamic application security testing using both manual and automated testing tools. • Review test results from tools • Ensure that automated tests are completed successfully • Configure tools as required to be successful in evaluating VERA (Vendor remote access) applications • Identify and remove any false positives from automated testing tool reports • Triage & Disposition results and enforce a Bug Bar • Verify/validate defect fixes • Provide application security consulting SME Support to developers • Assist developers with understanding of security defects and risk • Assist in defining acceptable solution to fix defects • Communicate Security risk to ISCs and ORCs to document security issues and controls for security planning purposes • Help maintain Security Coding Standards and Bug Bar as required • Assist in the Development of standards as required • Provide training • Stay up to speed on 3rd party (inside and outside Wells Fargo) known security vulnerabilities • Develop and review malicious use cases/threat models • Maintain a broad understanding of security technologies and products • Actively participate on improving the security culture and education throughout the organization Qualifications Required skills: • 5+ years of experience in security applications and systems • Minimum of 5 years of Information Security Engineer/Consultant experience with application penetration testing. • Minimum of 5 years of demonstrated experience with automated penetration tools • Minimum of 5 years of demonstrated experience with manual penetration testing tools • Demonstrated experience with creating and communication of reports regarding web application vulnerabilities to various level of personnel within a large organization Desired skills: • Advanced Information Security technical skills • Ability to manage complex issues and develop solutions • Excellent verbal and written communication skills • Knowledge and understanding of application or software security such as: web application penetration testing, secure code review, secure static code analysis • Knowledge and understanding of banking or financial services industry • Experience working in a large enterprise environment • Strong analytical skills with high attention to detail and accuracy • Knowledge and understanding of information security industry standards and government regulations • Ability to manage multiple and competing priorities • Ability to work with limited supervision • Ability to take on a high level of responsibility, initiative, and accountability • Good attention to detail and accuracy skills • Strong collaboration and partnering skills • Demonstrated experience developing and reviewing malicious use cases/threat models Job expectations • Ability to work weekends and holidays as needed or scheduled Candidate will be required to work onsite at certain facilities in these cities: MN-Minneapolis; AZ-Chandler; NC-Charlotte;NC-Winston Salem; CA - San Francisco Additional Information All your information will be kept confidential according to EEO guidelines. **Please let me know if you might someone to refer or if you are interested for the role. **Please reply with an updated copy of your resume and preferred time for a call. **You can call me back at ************ .

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Manager, Application security Engineer to join our Global Technology & Knowledge group which is part of the KPMG International organization. Responsibilities: * Collaborate with development teams to incorporate security best practices and principles into application design and development * Conduct manual and automated source code reviews to identify security vulnerabilities in software applications * Perform application threat modeling to identify potential security weaknesses and risks in software architecture * Identify, track and remediate vulnerabilities in applications and related infrastructure using security testing tools * Work closely with Development, DevOps, and Infrastructure teams to automate security checks and ensure secure coding practices are followed * Support security architects to generate and maintain regular reports on security posture of applications and infrastructure, including metrics, KPIs, vulnerabilities status, and more Qualifications: * Minimum four years of recent experience with relevant application development and information technology (IT) security experience * Bachelor's degree from an accredited college or university in computer science, information technology or engineering or relevant work experience; professional certifications in information technology security * Minimum four years of recent work experience writing production-level code in any programming language and/or developer frameworks, such as C#, ASP.NET, MVC, Python, Ruby, Go, and more; minimum four years of recent work experience identifying and mitigating security issues in software and knowledge of best practice secure code development * Experience or knowledge of security tools such as GitHub Advanced Security, Fortify, Fortify On-Demand, Mend, Qualys, Visual Studio Team Suite, Microsoft Defender for Cloud, and more * Proven communication skills and high attention to detail; experience in designing, analyzing and conducting threat model assessments of enterprise software and services; experience in penetration testing or red team operations preferred * Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa) KPMG complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, the firm is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year the firm publishes a calendar of holidays to be observed during the year and provides two firmwide breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at "Benefits & How We Work". Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** California Salary Range: $101200 - $215100 KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site). KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

The CISO has enterprise-wide leadership responsibility for establishing and maintaining information security policies and standards, executing IT risk management processes, guiding efforts to identify, detect, and respond to security threats, and maintaining the confidentiality, integrity, and availability of University information resources. The CISO will: Develop and implement a strategic, long-term information security strategy to ensure that UNC Greensboro's information resources are adequately protected. Lead the development of comprehensive information security policies, procedures, standards, and guidelines, and oversee their approval, dissemination, and maintenance. Ensure that the information security management program enforces compliance with applicable policies, laws, regulations, and contractual requirements. Lead efforts to monitor and maintain compliance with FERPA , HIPAA , GLBA , PCI , DMCA , GDPR , and other applicable laws and regulations, as well as University and UNC System policies. Work to strike an optimal balance between the necessity for business and pedagogical functionality with the need for security, safety and data privacy in all aspects of University operations. Identify, evaluate, and report on information security risks, program developments, and improvement projects to the executive committees and the Board of Trustees, and provide subject matter expertise on security standards and best practices. Work with senior leaders across the university to identify and assess IT risks, establish risk tolerance, navigate risk acceptance processes, monitor remediation efforts, and implement mitigating and compensating controls necessary to reduce IT risks to acceptable levels. Act as the champion for the enterprise information security program and foster a security-aware culture through creative and effective efforts towards ongoing Security Awareness Training & Education ( SATE ). Develop, mentor, lead, and manage a high-performing cross-functional team of information security, risk, and compliance professionals. Be an active participant and take a leadership role in relevant councils, committees, and working groups in areas related to IT Governance, Information Security, Data Governance, Identity & Access, and Privacy. Supervise all aspects of security operations for the daily defense of the University, including monitoring, detection, investigation, and response to attacks, vulnerabilities, and emergent threats. Oversee the evaluation, selection, and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive. Partner with enterprise architects, infrastructure engineers, and application development teams to ensure that UNCG technologies are developed and maintained according to security policies, frameworks, and guidelines. Supervise efforts to satisfy regulatory requirements, including execution of internal and external IT audit activities and implementation of remediation actions. Develop business-focused metrics to measure the effectiveness of the information security program, and work to increase the maturity of the program over time. Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate postures in response to the changing threat landscape. Liaise with law enforcement and other advisory bodies as necessary to ensure that the organization maintains a strong security posture. Oversee incident response planning and the investigation of security breaches, and assist with any associated disciplinary, public relations, and legal matters. Oversee and lead the creation, communication, and implementation of a process for managing vendor risk and other third-party risk. Minimum Qualifications Bachelor's Degree or higher with a major in computer science, information technology, business or public administration, or related disciplines; OR equivalent combination of education and/or experience Deep expertise and technical knowledge in the information security and risk management domains 10+ years of experience managing an information security area, program, or office with a proven track record of creating and maintaining information security practices and/or services Demonstrated recent experience and achievements with managing and prospering a comprehensive information security program, including well-known IT and information security standards (i.e. ISO 27001/2, COBIT ), auditable compliance, policy governance, data management, and risk management Ability to effectively communicate security concepts and strategies and influence best-practice adoption to a wide variety of audiences Knowledge of Higher Education policies and best practices in regard to FERPA , HIPAA , FISMA , GLBA , and other regulations Strong customer service ethic Demonstrated recent experience in a senior leadership role with accountability to executive management Outstanding communication abilities, both written and verbal Work Environment Inside - c

Cyber Operations Specialist Embark on a cutting-edge journey by joining our world-leading team as a Cyber Operations Specialist. Your prowess in cybersecurity will take center stage in safeguarding vital information and ensuring the security of our nation. Become a key player in fortifying our digital assets and upholding the confidentiality of sensitive information. In this role, you will be at the forefront of detecting and preventing cyber threats, implementing advanced security measures, and collaborating with a highly skilled team across diverse systems to ensure the organization achieves its mission with unparalleled technological prowess. Requirements: Attend a 55-week paid training program to gain skills and certifications in computer systems, network security, network traffic analysis, digital forensics, network security devices, communication network operations, and cyber operations. Advanced certifications require additional full funded training programs. Benefits: Comprehensive Healthcare, Vision, and Dental plans. 30 days paid vacation. 90 days paid paternity and maternity vacation. Comprehensive wellness programs including fitness facility access, nutrition consulting, curated fitness plans, and more. Housing, clothing, and relocation allowance. Tuition assistance. Student loan repayment. Flexible retirement and pension plans. Pay and Promotion: Entry pay and promotions vary based on education level and qualifications. Hiring bonus opportunities available. Specialty bonuses available depending on qualifications and position. Guaranteed promotion opportunities. Additional Career Opportunities: Upon successful completion of first term contract, you are guaranteed up to 5 interviews with your choice 1,200 industry leading organizations including Charter Communications, Tesla, and Raytheon. Similar Career Fields Include: Information Security Analyst, Network and Systems Administrator, and Cyber Defense Analyst. About Our Organization: The U.S. Army is wealth of possibilities for your future - whether you are looking to build a meaningful career, continue your education, or start a family, the Army is committed to helping you build the future you are looking for and improve yourself in the process. Be All You Can Be. Now Hiring Full and Part Time Positions. ***Click apply for an Interview***

Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the future? If you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. What you will do As a Cyber Defense Threat Specialist within the Global Cybersecurity Operations Center (CSOC) Analyst you will play a crucial role as a key technical expert responsible for managing and responding to advanced cyber threats, conducting in-depth investigations, and supporting the overall security posture of The Volvo Group. This role combines hands-on technical expertise with leadership and mentoring responsibilities, ensuring effective threat detection, incident response, and continuous improvement of SOC capabilities. The role includes the following responsibility: * Analyze and respond to complex security incidents and alerts generated by SOC tools (e.g., SIEM, EDR, IDS/IPS) * Investigate and resolve escalated incidents from Level 1 and Level 2 analysts, ensuring swift containment and remediation * Lead investigations into cybersecurity incidents, including malware infections, data breaches, and insider threats * Perform digital forensics to collect, analyze, and preserve evidence for legal or compliance requirements * Provide incident reports with detailed root cause analyses and actionable recommendations * Use threat intelligence to identify patterns and indicators of compromise (IOCs) relevant to the organization * Work closely with junior analysts to provide guidance, training, and mentorship, fostering a culture of growth and knowledge-sharing * Collaborate with IT, cybersecurity, and business stakeholder teams to implement and improve security controls * Support the continuous improvement of SOC processes, tools, and technologies to enhance efficiency and effectiveness. * Identify gaps in detection and response capabilities and recommend improvements to SOC leadership. In this role, you will be responsible for analyzing data, carrying out alert and incident response processes, conducting in-depth analysis of network and endpoint data, and incorporating threat intelligence to enhance detection and mitigation strategies. The Associate Cybersecurity Analyst will support a team that works the following hours within the Security Operations Center. Saturday and Sunday 10am-10:30pm Monday and Tuesday 8am- 4:30pm Who are you? Do you dream big? We do too, and we are excited to grow together. In this role, you will bring: * Bachelor's degree in Computer Science or a related 4-year technical degree * Minimum 7 years of experience in supporting cyber defense operations in highly complex enterprise networks. Experience in SOC, SIRT, or CSIRT capacities * One or more of the following certifications: GIAC Certified Intrusion Analyst, GCIH Certified Incident Handler, GCIA Certified Intrusion Analyst, CISSP * Experience in enterprise cybersecurity environment investigating targeted intrusions through complex network segments * Expert understanding of Advanced Persistent Threat (APT), Cybercrime, and Hacktivist tactics, techniques, and procedures (TTPs) * Subject Matter Expert in cybersecurity principles, threat lifecycle management, incident management * Comprehensive knowledge of various operating systems (Windows, OS X, Linux), network protocols, and application layer protocols * Demonstratable experience in scripting languages (may include Powershell, Python, PERL, etc.) * Understanding of the Cyber Kill Chain methodology, the NIST framework, the MITRE ATT&CK framework, and SANS Critical Security controls * Working knowledge in modern cryptographic algorithms and systems * Experience working with and tuning signatures, rules, signatures, and security technologies (IDS/IPS, SIEM, Sandboxing tools, EDR, email security platforms, user behavior analytics * Network design knowledge including security architecture * Strong analytical and technical skills in network defense operations including experience with incident handling (detection, analysis, triage) * Conceptual understanding of cyber threat hunting * Prior experience and ability analyzing cybersecurity events to determine true positives and false positives. Including cybersecurity alert triage, incident investigation, implementing countermeasures, and managing incident response * Previous experience with SIEM platforms and log aggregation systems that perform collection, analysis, correlation, and alerting * Ability to develop rules, filters, views, signatures, countermeasures, and other cyber defense platforms as well as the ability to support analysis and detection continual improvement * Knowledge of new and emerging cybersecurity technologies * Ability to create technical documents as well as stakeholder sitreps and briefing documents Preferred Qualifications: * Deep Cybersecurity Operations Center experience in the following: intelligence driven detection, security principles, threat lifecycle management, incident management, digital forensics and investigations, network monitoring, endpoint monitoring, OT security principles * CSOC Process Management experience, to include: process and procedure management, CSOC initiative management, continual operational improvement * Preferred certifications: CISSP, GCIH, GCIA, Linux+, CCNA, CCNP * Ability to demonstrate analytical skills, technical knowledge, and practical application of cyber and information security principles to both business leaders/key stakeholders as well as technical teams and SMEs * Demonstrated knowledge in cyber defense policies, procedures, and regulations * Knowledge of cyber vulnerability management processes * Knowledge of common user and system authentication and authorization mechanisms What's in it for you? We offer a solid package of compensation and benefits, plus you will enjoy: * Competitive medical, dental and vision insurance. * Generous paid time off including paid caregiver and parental leave policies. * Competitive matching retirement savings plans. * Working environment where your safety, health and wellbeing come first. * Focus on professional and personal development through Volvo Group University. * Programs that make today's challenging reality of combining work and personal life easier. Ready for the next move? Are you excited to bring your skills and disruptive ideas to the table? We can't wait to hear from you. Apply today! We value your data privacy and therefore do not accept applications via mail. Who we are and what we believe in Our focus on Inclusion, Diversity, and Equity allows each of us the opportunity to bring our full authentic self to work and thrive by providing a safe and supportive environment, free of harassment and discrimination. We are committed to removing the barriers to entry, which is why we ask that even if you feel you may not meet every qualification on the job description, please apply and let us decide. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Applying to this job offers you the opportunity to join Volvo Group. Every day, across the globe, our trucks, buses, engines, construction equipment, financial services, and solutions make modern life possible. We are almost 100,000 people empowered to shape the future landscape of efficient, safe and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents with sharp minds and passion across the group's leading brands and entities. Group Digital & IT is the hub for digital development within Volvo Group. Imagine yourself working with cutting-edge technologies in a global team, represented in more than 30 countries. We are dedicated to leading the way of tomorrow's transport solutions, guided by a strong customer mindset and high level of curiosity, both as individuals and as a team. Here, you will thrive in your career in an environment where your voice is heard and your ideas matter.

ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $92,213.33 - $125,146.66 a year

Link Solutions, Inc. delivers reliable and effective Information Technology services to government clients in support of critical mission needs. Delivering a broad range of Infrastructure Operations, Application Development, Cybersecurity, Virtualization, Cloud and Mobility services. Link is quality and compliance-focused, under our guiding philosophy "Mission First, Customer Always". If you're looking for a technology company that values innovation, with a vision toward the future of the technology landscape, look no further than Link Solutions! We are ISO 9001:2015, ISO 20000-1:2018, ISO 27001:2013 certified and appraised for CMMI ML3 for Services and Development. Link Solutions Inc. is seeking an Information Security Specialist (Intermediate and Senior Level) to join our team in support of the US Army's Network Enterprise Center at Fort Liberty, NC. * Must be a US Citizen * Secret Clearance required * Non-remote (relocation incentive available) As an Information Security Specialist, you will use current information security technology disciplines and practices to ensure the confidentiality, integrity, and availability of government information assets. At Link Solutions, you'll help protect our national security while working on innovative projects that offer opportunities for advancement and growth. Become an integral part of a professionally diverse team while working at an industry-leading organization, where work/life balance and employees come first. This is a great opportunity that will allow you to work on innovative projects that offer advancement and growth while helping protect our national security. Intermediate Level Responsibilities: * Provide Risk Management Framework, circuit/system accreditation, and certification policy services. * Participate in the development or modification of the computer environment IA security program plans and requirements. * Maintaining security policies and standards ensuring compliance throughout the organization. * Develop procedures to ensure system users are aware of their IA responsibilities before granting access to DoD information systems * Provide analytical support to identify possible security risks or violations. * Ensure IA requirements are integrated into the Continuity of Operations Plan (COOP) for that system or DoD Component * Ensure IA security requirements are appropriately identified in computer environment operation procedures and collect and maintain data needed to meet system IA reporting requirements. * Work with system owners to close IAVMs/ICVMs and open plan of action and milestones (POA&Ms) in accordance with DoD instructions/directives. Senior Level Responsibilities: * All Intermediate responsibilities. * Provide daily supervision and direction to personnel across the Information Security team. * Provide training and mentorship to Information Security Support Technicians, helping them develop their skills and knowledge. * Manage, coordinate, and track work across the Information Security team. * Maintain overall responsibility for the Information Security delivery team. * Collect and review network utilization data for capacity and planning purposes. * Assist in developing, implementing, testing, and maintaining disaster recovery plans. * Support the development and delivery of training sessions to ensure staff understand Information Security resources. Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Qualifications * US Citizen. * Active DoD Secret Clearance. * IAT Level II Certification equivalent or higher per DoD 8570/DoD 8140 (CompTIA Security+ CE, CCNA Security, GICSP, GSEC, SSCP, etc.). * Baseline Certification is required within 6 months of hire. Intermediate Level: * Four (4) years of IT experience, preferably within an Information Security environment. * Experience with Juniper, Cisco, and Aruba networking equipment. Senior Level: * Three (3+) years of experience providing daily supervision and direction to personnel across the network teams. * Eight (8) years of IT experience, preferably within an Information Security environment. Preferred: * IAT Level III Certification equivalent or higher per DoD 8570/DoD 8140 (CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, etc.). * BA/BS degree in Engineering, Computer Science, Information Systems, or a related field. * Microsoft environment certificate for Windows 10, Windows 11, or MS 365 Endpoint. * Experience with Active Directory, Windows 10, Microsoft Office 365, iPhone, and remote desktop (Citrix). * Experience with Knowledge Management or process creation. * Experience providing quality service and support for mission-critical systems and VIP end users. * Experience working in a Department of Defense (DoD) environment. * Problem solver and troubleshooter who thrives in resolving complex problems. * Strong self-starter requiring minimal supervision. * Excellent communication skills (written and oral) and interpersonal skills. * Excellent organizational skills, attention to detail, and ability to prioritize and manage multiple tasks. Additional Information This position is contingent upon the successful acquisition of the government contract and the completion of ongoing negotiations. We anticipate these processes will be completed within the next several weeks, at which time interviews and offers will be extended upon successful contract award. Link Solutions Inc. offers a competitive compensation and benefits package to include paid holidays, paid time off, medical, dental, vision, company-paid long and short-term disability, life insurance, referral bonuses, relocation reimbursement program, certification reimbursement program, retirement, and more. Link Solutions, Inc. is an EOE. AA/M/F/D/V. We participate in the E-Verify Employment Verification Program. All your information will be kept confidential according to EEO guidelines.

The Cybersecurity Engineer ensures information assurance and compliance design, integration, implementation, modification, and coordination of the installation, testing, operation, and disposition of hardware and software systems. Functions may include conducting analysis, developing functional and technical requirements and specifications, documentation, monitoring the availability, serviceability, and recoverability of installed technology security systems, implementing cyber security procedures and tools, maintaining systems configuration, managing the installation and integration of system patches updates, and enhancements, and ensuring the rigorous application of information security/information assurance policies, principles, and practices. Safeguards information systems by identifying potential and actual security problems. Protects system by defining access privileges, control structures, and resources. Recognizes problems by identifying abnormalities, reporting violations and mitigate vulnerabilities. Implements security improvements by assessing current situation; evaluating trends; anticipating requirements. Determines security violations and inefficiencies by conducting periodic audits. Upgrade systems by implementing and maintaining security controls. Conduct routine system checks and security assessments; preparing performance reports; communicating system status. Maintains quality service by following organization standards. Assist in the development, maintenance and implementation of security procedures and protocols." Performs other duties as assigned. EDUCATION: Required: Bachelor's Degree and/or equivalent experience (10 years experience in IT with 5 years in IT Security is needed for equivalent experience) EXPERIENCE: Required: 5 years LICENSURE/CERTIFICATION/REGISTRY/LISTING: Required: Certified Information Systems Security Professional (CISSP) - Obtain within 12 months. Equal Opportunity Employer At Cone Health, we strive to create a welcoming atmosphere that celebrates a diverse and unique workforce. We believe in offering equal opportunities for employment to all applicants and employees, regardless of their race, religion, age, sex, sexual orientation, gender identity, veteran's status, ethnicity, national origin, disability, color, or any other characteristic protected by law. Our hiring and employment choices are based on each individual's qualifications, skills and performance. We believe that by embracing the diversity of our team, we can better serve our patients, communities and each other.

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret/SCI Public Trust/Other Required: None Job Family: Information Security Job Qualifications: Skills: Cybersecurity, Information Security, Security Tools, System Security Certifications: None Experience: 3 + years of related experience US Citizenship Required: Yes : YOUR IMPACT Own your opportunity to serve as a critical component of our nation's safety and security. Make an impact by using your expertise to protect our country from threats. JOB DESCRIPTION Transform technology into opportunity as an Information Security Analyst with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you'll be at the forefront of innovation and play a meaningful part in improving how agencies operate. At GDIT, people are our differentiator. As an Information Security Analyst, you will help ensure today is safe and tomorrow is smarter. Our work depends on TS/SCI cleared Information Security Analysts joining our team to support our intelligence customer at Fort Liberty, NC. HOW AN INFORMATION SECURITY ANALYST WILL MAKE AN IMPACT The Information Assurance Analyst is primarily responsible for incident handling, incident response, intrusion analysis, threat hunting, digital forensic analysis, vulnerability scanning, Data Loss Prevention (DLP). * Tracks and handles cyber security incidents/events from initial detection to final resolution; coordinates with appropriate parties to investigate and maintain communications. * Collaborates with specialty teams to investigate and resolve complex problems. * Troubleshoots security tools on the network to ensure successful operation, compatibility with other applications, and minimal impact to the users. * Ensures ACAS vulnerability scanning mechanisms are operational and providing relevant results to the vulnerability management and admin teams. * Performs Information Systems Security Officer (ISSO) duties, and acts as the POC between parent organization and cyber security teams. * Conducts change requests, software authorizations, static code analysis, account reviews, and other Assessment & Authorization (A&A) tasks as required. * Acts as a central point of contact for all inquiries potentially regarding cyber security, and if necessary, redirects to the appropriate entities. WHAT YOU'LL NEED TO SUCCEED EDUCATION * Associate Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience. * 8570 Certification REQUIRED EXPERIENCE: * 3+ years of related experience in data security administration. REQUIRED TECHNICAL SKILLS: * Minimum IAT II: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, SSCP * Within 6 months of hire - CSSP Incident Responder (IR): CEH, CFR, CCNA Cyber Ops, CCNA-Security, CHFI, CySA+, GCFA, GCIH, SCYBER * Preferred certifications: GCIH, GCFA, GCIA, GNFA, Linux+, CCNA R&S, Splunk Power User SECURITY CLEARANCE: TS/SCI (Required) REQUIRED SKILLS AND ABILITIES: * Proficient at navigating Windows 10/Server 2012/Server 2016 operating systems to perform intrusion analysis and systems maintenance * Proficient at navigating Linux: Ubuntu/RHEL 6/7/8 to facilitate cyber security engineering and systems maintenance * Basic scripting skills using Windows command-line, PowerShell, or BASH * Understanding of network ports, protocols, and services * Intrusion analysis via HBSS, Splunk or other SIEM tools, Windows Event Logging, Open Source Intelligence (OSINT) sources * Incident investigations via McAfee HBSS suite, SolarWinds, Cisco ISE, Cylance, Splunk, Phantom, StealthWatch, WireShark, ForeScout, ACAS, PowerShell, command-line tools * Build and maintain ACAS infrastructure; analyze vulnerability scan results and provide recommendations for remediation PREFERRED SKILLS: * Strong desire to learn new skills, techniques, tactics, and procedures to improve knowledge and existing processes * Must be able to multi-task and adapt to changing priorities in highly stressful situations * Highly resilient and motivated to investigate unfamiliar and anomalous problems in a robust OPTEMPO environment, including follow-through to complete resolution * Critical thinking skills required to apply and correlate data from multiple sources to solve complex problems * Strong ability to quickly and clearly articulate operational impacts of cyber security incidents/events to leadership * Ability to communicate efficiently and precisely to target audience, as well as build strong rapport with other teams Location: On Company Site US Citizenship Required GDIT IS YOUR PLACE: ● 401K with company match ● Comprehensive health and wellness packages ● Internal mobility team dedicated to helping you own your career ● Professional growth opportunities including paid education and certifications ● Cutting-edge technology you can learn from ● Rest and recharge with paid vacation and holidays The likely salary range for this position is $76,500 - $103,500. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: 25-50% Telecommuting Options: Onsite Work Location: USA NC Fort Liberty Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation's most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Type: Contract Duration: 3 months Job description: • Conduct dynamic application security testing using both manual and automated testing tools. • Review test results from tools • Ensure that automated tests are completed successfully • Configure tools as required to be successful in evaluating VERA (Vendor remote access) applications • Identify and remove any false positives from automated testing tool reports • Triage & Disposition results and enforce a Bug Bar • Verify/validate defect fixes • Provide application security consulting SME Support to developers • Assist developers with understanding of security defects and risk • Assist in defining acceptable solution to fix defects • Communicate Security risk to ISCs and ORCs to document security issues and controls for security planning purposes • Help maintain Security Coding Standards and Bug Bar as required • Assist in the Development of standards as required • Provide training • Stay up to speed on 3rd party (inside and outside Wells Fargo) known security vulnerabilities • Develop and review malicious use cases/threat models • Maintain a broad understanding of security technologies and products • Actively participate on improving the security culture and education throughout the organization Qualifications Required skills: • 5+ years of experience in security applications and systems • Minimum of 5 years of Information Security Engineer/Consultant experience with application penetration testing. • Minimum of 5 years of demonstrated experience with automated penetration tools • Minimum of 5 years of demonstrated experience with manual penetration testing tools • Demonstrated experience with creating and communication of reports regarding web application vulnerabilities to various level of personnel within a large organization Desired skills: • Advanced Information Security technical skills • Ability to manage complex issues and develop solutions • Excellent verbal and written communication skills • Knowledge and understanding of application or software security such as: web application penetration testing, secure code review, secure static code analysis • Knowledge and understanding of banking or financial services industry • Experience working in a large enterprise environment • Strong analytical skills with high attention to detail and accuracy • Knowledge and understanding of information security industry standards and government regulations • Ability to manage multiple and competing priorities • Ability to work with limited supervision • Ability to take on a high level of responsibility, initiative, and accountability • Good attention to detail and accuracy skills • Strong collaboration and partnering skills • Demonstrated experience developing and reviewing malicious use cases/threat models Job expectations • Ability to work weekends and holidays as needed or scheduled Candidate will be required to work onsite at certain facilities in these cities: MN-Minneapolis; AZ-Chandler; NC-Charlotte;NC-Winston Salem; CA - San Francisco Additional Information All your information will be kept confidential according to EEO guidelines. **Please let me know if you might someone to refer or if you are interested for the role. **Please reply with an updated copy of your resume and preferred time for a call. **You can call me back at ************.

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Manager, Cloud and Security Engineer to join our Global Information Technology (GT&K) Group which is part of KPMG International organization. Responsibilities: * Provide support of the services operated by the Secure Connectivity Chapter such as Azure Networking, Palo Alto Technologies, Software-Defined Wide Area Network (SD-WAN), Squid and IBM Security Access Manager (ISAM) Proxies, Infoblox, Network Micro segmentation and Terraform including regular on-call support at the weekends during the normal working hours for the region using a follow-the-sun handover process between regions * Identify and implement continual improvements to the services operated by the Secure Connectivity Chapter (Azure Networking, Palo Alto Technologies, SD-WAN, Squid and ISAM Proxies, Infoblox, Network Micro segmentation, and Terraform) * Accountable for ensuring adherence to guidelines and best practices by colleagues in the tier two support teams, improving operational stability as a result * Responsible for technical expertise in any projects they are assigned to, with a particular focus on ensuring any product delivered by a project is reliable and supportable by the Chapter * Liable for assessing our vendors/suppliers continually for their suitability in providing services pertaining to the Chapter's responsibilities Qualifications: * Minimum five years of recent relevant experience in information technology, with minimum three years of recent experience working in complex network environments; minimum three years of recent experience implementing and supporting firewall solutions within medium to large, complex organizations such as Azure Networking, Palo Alto Technologies, SD-WAN, Squid and ISAM Proxies, Infoblox, Network Micro segmentation, and Terraform * Bachelor's degree from an accredited college/university or relevant work experience * Knowledge and hands-on experience with Azure Networking (Application Gateway, Web Application Firewall, Private Link, NAT Gateway, and more) * Firewall and network management qualifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), Cisco Certified Network Professional (CCNP) Security, Check Point Certified Security Expert (CCSE), or Fortinet Network Security Expert (FNSE) or equivalent skill level * Strong understanding of Palo Alto Networks security technologies including Wildfire, Antivirus (AV)/Threat Prevention, URL filtering, User-ID and Panorama; strong understanding of Palo Alto Networks security technologies including Wildfire, AV/Threat Prevention, URL filtering, User-ID, and Panorama KPMG complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, the firm is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year the firm publishes a calendar of holidays to be observed during the year and provides two firmwide breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at "Benefits & How We Work". Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site). KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Cyber Operations Specialist Embark on a cutting-edge journey by joining our world-leading team as a Cyber Operations Specialist. Your prowess in cybersecurity will take center stage in safeguarding vital information and ensuring the security of our nation. Become a key player in fortifying our digital assets and upholding the confidentiality of sensitive information. In this role, you will be at the forefront of detecting and preventing cyber threats, implementing advanced security measures, and collaborating with a highly skilled team across diverse systems to ensure the organization achieves its mission with unparalleled technological prowess. Requirements: Attend a 55-week paid training program to gain skills and certifications in computer systems, network security, network traffic analysis, digital forensics, network security devices, communication network operations, and cyber operations. Advanced certifications require additional full funded training programs. Benefits: Comprehensive Healthcare, Vision, and Dental plans. 30 days paid vacation. 90 days paid paternity and maternity vacation. Comprehensive wellness programs including fitness facility access, nutrition consulting, curated fitness plans, and more. Housing, clothing, and relocation allowance. Tuition assistance. Student loan repayment. Flexible retirement and pension plans. Pay and Promotion: Entry pay and promotions vary based on education level and qualifications. Hiring bonus opportunities available. Specialty bonuses available depending on qualifications and position. Guaranteed promotion opportunities. Additional Career Opportunities: Upon successful completion of first term contract, you are guaranteed up to 5 interviews with your choice 1,200 industry leading organizations including Charter Communications, Tesla, and Raytheon. Similar Career Fields Include: Information Security Analyst, Network and Systems Administrator, and Cyber Defense Analyst. About Our Organization: The U.S. Army is wealth of possibilities for your future - whether you are looking to build a meaningful career, continue your education, or start a family, the Army is committed to helping you build the future you are looking for and improve yourself in the process. Be All You Can Be. Now Hiring Full and Part Time Positions. ***Click apply for an Interview***