Information security analyst jobs in Bettendorf, IA - 432 jobs

A prominent cybersecurity firm based in Chicago, Illinois is seeking a Principal Architect to serve as the technical authority for its main delivery platform. This role involves defining the platform's architectural vision while ensuring compliance with security standards and collaborating with various teams. The ideal candidate will have significant experience with C#, JavaScript, and secure architecture practices. In addition to competitive compensation ranging from $114,000 to $198,000 annually, the role offers flexibility in work location and a supportive company culture. #J-18808-Ljbffr

AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help enterprises deliver on the promise of digital transformation. AtAHEAD, we prioritize creating a culture of belonging, where all perspectives and voices are represented, valued, respected, and heard. We create spaces to empower everyone to speak up, make change, and drive the culture at AHEAD. We are an equal opportunity employer, and do not discriminate based on an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status, or any other protected characteristic under applicable law, whether actual or perceived. We embraceall candidatesthatwillcontribute to the diversification and enrichment of ideas andperspectives at AHEAD. Senior consultants are experienced experts in information security and/or information security governance or compliance. Successful candidates support the Security Practice in delivery, business development, and practice development. This senior consultant will specifically support the cyber advisory program which seeks to advise clients at various points of maturity and help design and improve their cyber security programs. While each client has a different starting point, most start with common infrastructure hardening and hygiene challenges. This senior consultant will be expected to confidently advise on remediation of discovered vulnerabilities. These vulnerabilities may range from common software vulnerabilities to general architecture concerns. The consultant must leverage previous experience to convey potential impacts and criticality of remediation. The senior consultant is not expected to have knowledge or experience with every vulnerability but must be able to use their knowledge and experience to research potential solutions. Communicating the impact and criticality of vulnerabilities and remediation is a critical part of this role. This requires the consultant to understand the client's environment, concerns, business drivers, and potential impact of remediation efforts. Finally, the consultant must be comfortable in acting as authority on recommendations. The senior consultant is often asked to review and sometimes create common security program documentation such as policies, risk registers, and other assessment documents. The ability to manage small teams is a requirement for success in this role. This program requires frequent evolution as the program must keep pace with changes in technology, techniques, and vulnerabilities. Because of this, this senior security consultant must be flexible, self-motivated, and willing to take on dynamic challenges. Responsibilities Client Delivery Facilitate sessions of strategy, roadmap, design, and planning workshops for service engagements Effectively communicate risk to stakeholders and work to drive security program success Ensure that customer expectations are appropriately set and managed Lead project engagement teams through the delivery of consulting service offerings Understand vulnerabilities and create remediation plans Break down risks or issues into manageable segments, identify the factors that contribute to risk and determine how best to approach the risk Creation and finalization of project deliverables, may perform peer review for collateral developed by others on a delivery team Presentation of deliverables to client executive management Act as the Engagement Lead on customer facing projects, when assigned Business Development Support business development pursuits through client discovery meetings Support sales opportunities throughout the sales cycle, including project scoping, proposal development, and presenting proposals to clients. Familiarity with AHEAD's enterprise service portfolio to identify opportunities for cross-practice collaboration Practice Development & Thought Leadership Maintain subject matter expertise in security domains and security solutions Participate in the development, enhancement, and standardization of AHEAD in-practice service offerings Own and/or enable more than one service capability Maintain a broad knowledge and understanding of current and future state IT trends, technologies, and standards Lend support and mentorship to others Requirements Undergraduate degree in Computer Sciences or Business Management is preferred, but not required Minimum of 2 years of information security leadership experience 7+ years technical work experience 2 professional and/or technical certifications, including industry-recognized certifications which align to AHEAD's Security service portfolio, or commensurate work experience (CISSP, CISM, SANS certs, etc.) Cybersecurity background (vulnerability management, various security controls such as EDR, firewalls, content filtering, etc.) Active directory experience (group policy and Intune experience) Securing windows servers and desktops (system hardening such as Microsoft Baseline/STIGS/CIS) Office 365 experience Common written policy understanding Excellent verbal and written communication skills Comfort in addressing groups of people in virtual or in-person settings Ability to solve complex, abstract problems Excellent interpersonal skills, good listener, ability to connect with different personalities Exhibit Executive presence with leadership characteristics Demonstrated experience as a technology change agent $165,000 - $195,000 a year Why AHEAD Through our daily work and internal groups like Moving Women AHEAD and RISE AHEAD, we value and benefit from diversity of people, ideas, experience, and everything in between. We fuel growth by stacking our office with top-notch technologies in a multi-million-dollar lab, by encouraging cross department training and development, sponsoring certifications and credentials for continued learning. USA Employment Benefits include Medical, Dental, and Vision Insurance 401(k) Paid company holidays Paid time off Paid parental and caregiver leave Plus more! See benefits for additional details. The compensation range indicated in this posting reflects the On-Target Earnings (“OTE”) for this role, which includes a base salary and any applicable target bonus amount. This OTE range may vary based on the candidate's relevant experience, qualifications, and geographic location. #J-18808-Ljbffr

The Principal Cloud Security Architect evaluates cloud architectures, identity models, permissions, and security controls across large-scale environments. This role focuses on identifying architectural risks, misconfigurations, and long‑term security design gaps. What You'll Do Assess cloud architectures (AWS, Azure, GCP) for security gaps Review IAM configurations, network segmentation, and resource policies Identify misconfigurations, privilege risks, and insecure patterns Summarize architectural flaws and provide structured mitigation guidance Validate alignment with security frameworks and best practices Support recurring assessments of cloud environments and deployment patterns What You Bring Must-Have: Deep experience in cloud security architecture Strong understanding of IAM, network design, and cloud service models Ability to document complex architectures in clear, structured form Nice-to-Have: Experience with multi-cloud, zero‑trust, or high‑compliance environments $40 - $80 an hour #J-18808-Ljbffr

Innova Solutions is immediately hiring a Solution Architect - Cloud Permanent Duration: Fulltime As a Solution Architect - Cloud, you will: Solution Architect to lead the modernization of a legacy healthcare platform used for eligibility screening patients for disability benefits/coordinating for submission applications in SSA, appeals processing in the US healthcare domain. The role requires defining the target architecture, creating a robust migration strategy, and ensuring security, compliance, and scalability in the solution design. This is an onsite role at the client location in the USA, requiring close coordination with client business teams, operations, and enterprise architects. Proven experience as a Solution Architect on large-scale enterprise modernization projects, preferably in the healthcare domain. Strong understanding of US healthcare processes, especially related to disability eligibility screening and benefit determination. Hands-on experience designing solutions on D365+Powerplatform+Azure. Strong understanding of cloud-native architecture principles, data flows, and integration patterns. Should have strong knowledge on SQL and Microsoft shop like visual studio. Establish the integration strategy between internal modules and external systems via secure APIs and Azure services. · Design data flow, entity modeling, and component architecture, ensuring adherence to industry and organizational security standards. Azure Well-Architected Framework and Microsoft Cloud Adoption Framework (CAF). Should have experience in migration of Legacy projects to cloud platform Familiarity with architecture governance processes and working with enterprise architecture teams. Incorporate security by design principles across the architecture: Ensure the platform meets HIPAA, HITECH, and other relevant US healthcare compliance standards. Developing solution architecture artifacts: HLDs, LLDs, integration diagrams, security models. Document detailed solution blueprints, technical specifications, and integration design documents Candidate must have skills: 10 to 15 years of experience in IT operations or production support, with at least 5 years in a leadership role. Strong understanding of Best benefits process. Familiarity with Azure Well-Architected Framework and Microsoft Cloud Adoption Framework (CAF) Solid knowledge of databases (SQL/Oracle), APIs, and Azure Cloud platform. Experience with DevSecOps and CI/CD pipelines in regulated environments. ITIL certification is a plus. Good to have skills: Experience with Best Benefits Background in Agile/DevOps environments. Strong analytical, communication, and crisis management skills. Qualified candidates should APPLY NOW for immediate consideration! Please hit APPLY to provide the required information, and we will be back in touch as soon as possible. We are currently interviewing to fill this and other similar positions. If this role is not a fit for you, we do offer a referral bonus program for referrals that we successfully place with our clients, subject to program guidelines. ASK ME HOW. Thank you! Kiran Vajrala Manager PAY RANGE AND BENEFITS: Pay Range: $106,000 - 124,500$ Per Year Pay range offered to a successful candidate will be based on several factors, including the candidate's education, work experience, work location, specific job duties, certifications, etc. Benefits: Innova Solutions offers benefits( based on eligibility) that include the following: Medical & pharmacy coverage, Dental/vision insurance, 401(k), Health saving account (HSA) and Flexible spending account (FSA), Life Insurance, Pet Insurance, Short term and Long term Disability, Accident & Critical illness coverage, Pre-paid legal & ID theft protection, Sick time, and other types of paid leaves (as required by law), Employee Assistance Program (EAP). ABOUT INNOVA SOLUTIONS: Founded in 1998 and headquartered in Atlanta, Georgia, Innova Solutions employs approximately 50,000 professionals worldwide and reports an annual revenue approaching $3 Billion. Through our global delivery centers across North America, Asia, and Europe, we deliver strategic technology and business transformation solutions to our clients, enabling them to operate as leaders within their fields. Recent Recognitions: Named One of America's Best Employers for New Grads by Forbes (2024 Named One of the Best Companies to Work For by U.S. News & World Report (Private Companies List, 2024-2025) One of the Largest IT Staffing Firms in the US - Ranked #3 by Staffing Industry Analysts (SIA, 2024) One of the Largest Staffing Firms in the US - Ranked #13 by Staffing Industry Analysts (SIA, 2024; includes Innova Solutions, Volt, & HireGenics) Named One of the Top Ten Private Companies in Atlanta by the Atlanta Business Chronicle (2023) One of the Largest Certified Minority Business Enterprises (MBEs) in the United States (NMSDC, 2024) AWS Advanced Tier Services Partner with 100+ certifications Website: ******************************** Innova Solutions is an Equal Opportunity Employer and prohibits any kind of unlawful discrimination and harassment. Innova Solutions is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment on the basis of race, color, religion or belief, national origin, citizenship, social or ethnic origin, sex, age, physical or mental disability, veteran status, marital status, domestic partner status, sexual orientation, or any other status protected by the statutes, rules, and regulations in the locations where it operates. If you are an individual with a disability and need a reasonable accommodation to assist with your job search or application for employment, please contact us at ********************** or **************. Please indicate the specifics of the assistance needed. Innova Solutions encourages all interested and qualified candidates to apply for employment opportunities. Innova Solutions (HireGenics/Volt) does not discriminate against applicants based on citizenship status, immigration status, or national origin, in accordance with 8 U.S.C. § 1324b.The company will consider for employment qualified applicants with arrest and conviction records in a manner that complies with the San Francisco Fair Chance Ordinance, the Los Angeles Fair Chance Initiative for Hiring Ordinance, and other applicable laws. Thank You! Team Innova Solutions Job ID: 1003555 Scottsdale , Arizona Job Type: Contract Added - 07/30/25 #J-18808-Ljbffr

Senior Physical Security Consultant Chicago, IL. WEC Energy Group is one of the nation's largest electric generation and distribution and natural gas delivery holding companies serving 4.7 million customers across the Midwest. We are committed to providing clean, reliable, and affordable energy in an environmentally sustainable manner. Customers are the heart of our business, and we work every day to help grow and support communities where we provide vital energy services. As a Fortune 500 company, we value and develop our employees who are making a difference in a mission that matters. We don't just offer a job; we provide fulfilling careers where safety and well-being are paramount. Join our team and experience first‑hand our commitment to your success. We offer competitive pay and benefits to recognize your hard work and dedication. If you're talented, energetic and ready for a career with a future, we want you on our team. We are powered by a diverse and inclusive workforce fueled by the pride in what we do. If you're driven by the passion to change lives, this is the place for you. WBS, a subsidiary of WEC Energy Group, is seeking a Senior Physical Security Consultant in our Chicago, Illinois location. Job Summary The Physical Security Consultant (Senior) is responsible for identifying security gaps, concerns, threats, and/or risks and follow internal procedures and protocol to elevate or resolve issues as appropriate, such as conducting investigations or sharing threat intelligence with appropriate members of the organization. Specific functional areas include, but are not limited to, enterprise protection, operational integration, intelligence, investigations, situational awareness and security projection. This position is the primary interface for the business and operations to share information and coordinate security‑related activities and requirements. Physical Security Consultants are expected to develop and maintain relationships with key internal and external stakeholders such as contract security personnel, local law enforcement, and internal business areas who work closely with security. Job Responsibilities Provides security protection services, consulting services and advisory support to the business and operations to reduce risks, maximize workforce safety, and protect property Leads investigations in close support and coordination with cybersecurity, HR, ethics, and/or external law enforcement as appropriate Follows policy and procedures to elevate security matters, file reports, collect evidence, and maintain relevant databases or information in security systems Executes company policies and procedures for the physical security program aligned with the overarching enterprise security model and best practice standards and ensure compliance with applicable industry standards and regulations (e.g. NERC CIP, TSA) Provides work direction, site training, policy and process training, and maintains relationships with contract security personnel Maintains an understanding of the application of security technology to the company's processes to mitigate risk Develops and maintains relationships and represents the company with local law enforcement, other security‑related external agency stakeholders and the broader intelligence community Responds to crises or urgent situations to mitigate immediate and potential threats. Uses mitigation, preparedness, and response and recovery approaches, as needed, to maximize survival of life, preservation of property and operational assets Participates in internal and external emergency response and business continuity planning exercises Analyzes intelligence to identify trends and determine risks Foster a culture that promotes security as an integral part of safety. Maintains key performance and process metrics to evaluate the efficiency and effectiveness of processes, procedures, and systems The Senior Physical Security Consultant performs all duties of a Physical Security Consultant, usually in a lead role Minimum Qualifications Physical Security Consultant - Minimum 2- 4 years of physical security work experience in law enforcement, investigations or intelligence in a civilian or military organization required. Senior Physical Security Consultant - Minimum 4 -7 years of physical security work experience in law enforcement, investigations or intelligence in a civilian or military organization required. Preferred experience with or understanding of nation state threats to critical infrastructure. It requires some out-of-state travel and is subject to 24 hour call out. Preferred Qualifications A Bachelor's degree in Criminal Justice, Police Science, Security Management or Business Administration is preferred. A combination of associate degree, military, law enforcement or professional physical security experience and physical security certification (CPP, PSP) or certificates (enterprise security risk management, security risk assessment, workplace violence prevention, executive protection, etc) will be considered Preferred experience with or understanding of nation state threats to critical infrastructure Project and Contract Management experience (Threat Assessments, CCTV System Installation, etc.) Familiarity with the City of Chicago Neighborhoods and Streets, in addition to the Urban areas #J-18808-Ljbffr

Title: AI & IT Solutions Analyst Reports to: Director of Information Technology Department: Information Technology Classification: Salary (Exempt) Division: Corporate Date Conditions: Full-Time, 100% on site JOB SUMMARY: The AI & IT Solutions Analyst plays a critical, foundational role in designing, deploying, and supporting the company's enterprise AI ecosystem. This includes establishing secure environments for AI, developing retrieval-based tools, integrating corporate data sources, implementing governance and monitoring, and supporting AI adoption across all departments. The position directly supports the enterprise AI roadmap, beginning in 2026, and ensures that W.R. MEADOWS can safely utilize AI to improve productivity, operations, quality, research, decision-making, and customer value - while protecting intellectual property, formulations, and confidential data. KEY RESPONSIBILITIES: AI Architecture & Infrastructure (Tier 1, Tier 2, Tier 3) - Assist in designing and implementing secure AI environments across multiple tiers, including productivity AI, internal confidential AI applications, and highly isolated R&D AI systems. - Configure secure access controls, data boundaries, isolated environments, and protected compute spaces for sensitive workloads. - Establish and maintain AI infrastructure components required for retrieval, automation, and departmental use cases. Retrieval-Augmented Generation (RAG) & Data Engineering - Build and maintain retrieval pipelines that enable AI tools to securely access company policies, SOPs, QC data, operational documents, and R&D information as permitted. - Integrate structured and unstructured data from internal systems such as ERP, WMS, SharePoint/document libraries, R&D repositories, QC systems, CRM, and file-based storage. - Prepare, clean, transform, and index data needed for AI-assisted workflows. - Maintain vector search, embeddings, or similar retrieval strategies depending on chosen platform. AI Application & Workflow Development - Develop internal AI-powered tools that enhance decision-making, automate tasks, support data lookup, and streamline quality, engineering, HR, operations, R&D, and customer service workflows. - Prototype and test new AI use cases, helping departments understand and apply AI safely and effectively. - Contribute to tool deployment, feedback cycles, and ongoing iteration. Governance, Security & Compliance - Support enterprise AI governance, including data classification, access control, risk evaluation, and documentation. - Implement monitoring, performance tracking, safety controls, and audit logs appropriate to the chosen AI technologies. - Ensure confidential and proprietary information (formulations, research data, manufacturing processes) is protected within the designated AI environments. - Assist with training on safe, compliant AI usage across the organization. Cross-Department Support & Adoption - Work with internal departments (QC, Engineering, R&D, HR, Logistics, Customer Service, etc.) to identify high-value use cases and help implement AI capabilities. - Provide guidance, demonstrations, and user training as AI tools are deployed. - Troubleshoot AI-related issues including data integration, retrieval accuracy, and workflow automation. POSITION REQUIREMENTS: Required Qualifications - Bachelor's degree in Computer Science, Information Systems, Data Science, Engineering, or equivalent experience. - Experience working with modern AI technologies, large language models, and AI application frameworks. - Experience with RAG concepts, vector search, embeddings, or related retrieval methods. - Hands-on experience with APIs, automation platforms, and scripting (Python preferred but not required). - Familiarity with cloud or on-premises environments for secure data storage and compute. - Understanding of enterprise data protection, access control, and governance principles. - Strong analytical ability and excellent communication skills. Preferred Qualifications - Experience in manufacturing or scientific/technical environments. - Familiarity with enterprise systems relevant to W.R. MEADOWS (ERP, WMS, QC tools, formulation systems). - Experience implementing secure or restricted-access systems. - Prior involvement in AI governance, data pipelines, or model evaluation. Key Competencies - Ability to translate business needs into technical AI solutions. - High level of discretion and commitment to protecting intellectual property. - Strong collaboration skills across departments. - Ability to work independently, managing complex AI and data workloads. - Willingness to stay current with rapidly evolving AI technologies. WORK CONDITIONS - Full-time - Occasional after-hours support may be required. - Travel may be required. - May involve moderate physical tasks (e.g., equipment setup or evaluation). - Participation in meetings, testing sessions, and hands-on implementations.

At TruStage, we're on a mission to make a brighter financial future accessible to everyone. We put people first, and work hand in hand with employees and customers to create a diverse and inclusive environment. Passionate about building insurance and financial services solutions, we push the boundaries of what's possible. We need you to help us shape what's next. You'll be encouraged to share your experiences, ideas and skills to help others take control of their financial future. Join a team that has received numerous awards for being a top place to work: TruStage awards and recognition Job Summary Under the guidance of Information Security leadership, the Information Security Analyst supports TruStage's cybersecurity program by delivering integrated threat intelligence and digital forensic services. This hands-on role is responsible for reviewing and analyzing incoming threat intelligence to assess risk and potential impact to the organization, applying best practices to inform proactive defense strategies. The analyst plays a critical role in the incident response lifecycle by investigating escalated threats-such as malware infections, phishing attempts, or unauthorized access-through structured processes that include detection, containment, eradication, recovery, and root cause analysis. Responsibilities also include conducting forensic investigations, performing advanced data collections, and executing eDiscovery requests. The analyst may be called upon to support investigations led by Legal, Human Resources, or other internal stakeholders, ensuring evidence integrity and alignment with regulatory and organizational standards. The ideal candidate will have experience using tools such as Magnet Forensics Axiom Cyber, Splunk, Microsoft Defender, and the MITRE ATT&CK framework to detect, investigate, and respond to complex security incidents. This role requires a strong analytical mindset, attention to detail, and the ability to work collaboratively across teams to enhance the organization's security posture. Excellent verbal and written communication skills are essential, as the analyst will be expected to clearly document findings, articulate technical concepts to non-technical stakeholders, and contribute to incident reports, threat briefings, and cross-functional discussions. Job Responsibilities: Support Information Security Leadership regarding all aspects of the information security program, with minimal supervision. Responsibilities include facilitating the identification of risks throughout the organization, developing, reporting and monitoring formats on risk management issues and developing methodologies for the assessment of risks throughout the organization. Continuously monitor the internal and external landscape for relevant events, risks, and threats related to malicious code, vulnerabilities, and potential attacks. Coordinate and ensure cybersecurity related alerts and incidents are prioritized and responded to at all hours of the day. Remain current with emerging threats and share knowledge with colleagues to improve incident response processes. Participate in the creation and execution of tabletop exercises designed to identify gaps, improve skills, enhance communication and engage with key stakeholders. Review reports from tabletop exercises, vulnerability scans and penetration testing to identify weaknesses or gaps in existing security controls and provide recommendations where appropriate. Lead coordination, consultation, and assessment efforts to track and remediate events and alerts, directs response to related incidents, internal or external audits, and / or control assessments. Identify, report, and assist in resolving privacy, compliance or security violations and control gaps. Lead feedback with other IT teams to protect data from compliance, privacy or security compromise. Contribute to the strategic direction of the Information Security team to develop new capabilities, process efficiencies and goals. Participate in the development, review, ongoing maintenance and development of security policies, standards, processes, procedures and requirements to facilitate the establishment of common administrative controls for the delivery of security capabilities. Security Awareness: Develop content for organization wide and targeted security awareness training. Present relevant information security topics through a variety of forums depending on the audience. The above statement of duties is not intended to be all inclusive and other duties will be assigned from time to time. The above statement of duties is not intended to be all inclusive and other duties will be assigned from time to time. Job Requirements: Bachelor's degree in computer science, information systems or related field, or equivalent combination of education and/or related professional work experience. 5 or more years of demonstrated proficiency with an information security audit, assessment, engineering or architecture focus or comparable, professional experience. Proven ability to clearly and effectively communicate business and technical information, both verbally and in writing. Aptitude for speaking or communicating to varied groups of business and technical professionals. Experience in presenting technical material to a nontechnical audience and to senior management. Established skills and experience in the development of security policies, standards or other governance practices. Demonstrated relationship management and consulting skills, including ability to effectively influence and negotiate. Proven ability to provide high quality customer service. Financial Services industry experience strongly preferred. Experience with law enforcement preferred Experience with forensics preferred #LI-SW If you're ready to help make a difference, apply today. A resume is required to apply. TruStage may process applicant information using an Artificial Intelligence (AI) tool. This tool automatically generates a screening score based on how well applicant information matches the requirements and qualifications for the position. TruStage recruiters use the screening score as a guide to further evaluate candidates; the score is one component of an application review and does not automatically determine whether a candidate moves forward. Candidates may choose to opt out of this process. Compensation may vary based on the job level, your geographic work location, position incentive plan and exemption status. Base Salary Range: $97,800.00 - $146,800.00 At TruStage, we believe a sound, inclusive benefits program is of vital importance, along with a flexible workplace that allows for work-life balance, career growth and retirement assistance. In addition to your base pay, your position may be eligible for an annual incentive (bonus) plan. Additional benefits available to eligible employees include medical, dental, vision, employee assistance program, life insurance, disability plans, parental leave, paid time off, 401k, and tuition reimbursement, just to name a few. Beyond pay and benefits, we also recognize that flexibility, including working in a place you prefer, is essential to caring for our employees. We will continue to strive to offer flexibility and invest in technology and other tools that will make hybrid working normal rather than an exception, so that when “life happens,” you can focus on what's most important. Accommodation request TruStage is a place where everyone can bring their best self and thrive. If you need application or interview process accommodations, please contact the accessibility department.

Role -Business Analyst/ Information Security Governance Analyst Project Overview: We are seeking an analyst with experience in governance of security products, authentication, authorization, and access management with business analysis background. These resources will support the SaaS initiatives Contractor's Role: As a member of Governance team you will play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Experience level: Level 3 Qualifications - Bachelor's degree in computer science, audit or a related discipline and experience in information security, or an equivalent combination of education and work experience. - Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. - 5 -6 years of experience in the Information Security or Audit role. - Strong collaboration skills and a analytical ability - Knowledge of SOX methodology implementation for applications & Internal & External Audit executions Requirements Nice to Haves: - Knowledge on Obsidian Remediation Tasks & Responsibilities - Drive governance and risk framework around applications using authentication and authorization - Define and respond to risks surrounding the business functions and the security capabilities - Define and respond to audits from internal and external parties - Knowledge of control execution and design - Collect and maintain evidence of control testing - Collect and maintain evidence of application attestation to standards

Job Description Support the Information security governance, risk management and compliance program, focusing on compliance and assurance. Facilitate the compliance and assurance program, by performing assurance assessments to ensure Alliant Credit Union (ACU) is compliant with regulatory and legal obligations. Help maintain the technical control library ensure assessments align securing ACU. Facilitate IT issue management by working with employees on scheduling calls and going over the issue and resolution. Essential Responsibilities Responsible to facilitate the compliance and assurance assessments and issue management via a GRC tool Conduct assurance assessment, including control test of design (ToD) and test of operating effectiveness (TOE) activities Provide recommendations on improving compliance-related processes and/or procedures and identify opportunities for ITGC/security compliance control automation Facilitate group and individual meetings, ensure that each meeting is organized and aligned and schedule walkthrough agenda addressing any issue that arise and and guiding towards actionable outcomes Assist internal and external audit teams to address inquiries Participate in InfoSec projects as assigned by management such as the review of documents Education Minimum- 4 Year Bachelors Degree in Computer Science, Information Security or Related Years of Experience Minimum - 2 Years Governance, Risk Management, Compliance within a financial institution or Security Compliance or Related In Lieu of Education 5 Years Governance, Risk Management, Compliance within a financial institution License/Certifications/Training Preferred: Compliance, Risk Management, or Governance certifications: CRISC, CISM or CISA Compensation & Benefits: Typical hiring range: $57,500 - $89,500 Annually. Actual compensation will be determined using factors such as experience, skills & knowledge. Additional Compensation: Annual performance bonus Benefits: Alliant provides a benefits package including health care, vision, dental, and 401k with employer match. Additional Benefits: Work from home up to 3 days a week Paid parental leave Employee discount programs Time off including paid personal and sick days 11 paid holidays Education reimbursement *Note that eligibility and cost of benefits can vary depending on the number of regularly scheduled hours, and job status such as regular full-time, regular part-time, or temporary employment. Adhere to and ensure compliance of all business transactions with policy and process of the Bank Secrecy Act. Ensures compliance with all applicable state and federal laws, company procedures and policies. Maintains integrity and ethics in all actions and conversations with or regarding credit union members and their accounts; complies with Privacy Act directives. The responsibilities listed do not contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this position. Duties, responsibilities and activities may change at any time with or without notice.

Join our global Cyber team as a Wordings Analyst supporting the Global Cyber Wordings Manager in the strategic development and governance of our Cyber and Tech policy suite, including Liberty Cyber Resolution and Liberty Tech Resolution. This role is a hands-on business enabler: you will help translate complex legal and regulatory requirements into clear, market-ready wordings, maintain our global clause library, support manuscript negotiations, and produce practical tools that empower underwriters and strengthen broker confidence. It's an excellent opportunity for an early-career insurance wordings or legal professional to build expertise in a fast-moving, global specialty line and make a visible impact on growth, innovation, and client experience. Key responsibilities: Wording library and drafting support Maintain and expand the global wording library centered on Liberty Cyber Resolution and Liberty Tech Resolution, including endorsements, exclusions, and guidance notes. Redline and prepare first drafts of standard clauses and endorsements; ensure consistency with definitions, coverage intent, and plain-language standards. Track version control, change logs, approvals, and archiving; Assist with localization for different jurisdictions, coordinating translations and filing documentation with Legal/Compliance. Commercial enablement Build practical tools (playbooks, FAQs, objection-handling guides, coverage summaries) to help regional teams position our products and close deals efficiently. Prepare broker/client comparison decks and battlecards; support pitches, RFP/RFI responses, and manuscript negotiations with clause comparisons and recommended alternatives. Triage wording queries from regions; track SLAs and referral approvals per the global governance framework. Partner closely with Underwriting, Product, Global Cyber Engagement, Claims, Legal/Compliance, and regional leaders to deliver accurate, timely support and uphold governance standards. Regulatory and legal stewardship Monitor and synthesize global regulatory and market developments (e.g., Lloyd's cyber war/systemic guidance, GDPR, DORA, NIS2, sanctions) into succinct briefs and recommended wording actions. Maintain audit-ready documentation; assist with regulatory filings or attestations where required. Claims partnership and feedback loop Collaborate with Claims to capture lessons from disputes and litigation trends; draft guidance notes and propose clarifications to improve coverage certainty. Support coverage position letters and documentation packs with research, citations, and clause histories. Innovation and product development support Help draft prototype wordings for new propositions Check alignment between underlying policy wordings and reinsurance treaty/facultative clauses. Administer wording management tools, ensuring robust version control, approval workflows, and usage analytics. Build dashboards and trackers for adoption of standard forms, deviation rates, SLA performance, disputes, and audit findings; provide monthly reporting to stakeholders. Qualifications Bachelor's degree in business, economics, or other quantitative field. Minimum 3 years, typically 4 years or more of relevant work experience. 2 - 5 years of experience in insurance wordings, legal/paralegal support, underwriting support, or product documentation; cyber specialty experience preferred. Strong drafting, redlining, and proofreading skills with a plain-language mindset and exceptional attention to detail. Working knowledge of insurance policy structures, endorsements, exclusions, and coverage interpretation; familiarity with cyber war/systemic language, sanctions, and privacy regulations is advantageous. Research and synthesis skills to translate complex regulatory/legal topics into practical guidance and actionable updates. Proficiency with MS Word (advanced track changes/redlining), Excel (trackers and dashboards), PowerPoint (training/pitch materials), and document/enablement tools. Collaborative, service-oriented approach; comfortable operating in a global matrix and meeting defined SLAs. Curiosity about cybersecurity risks and the incident response ecosystem; willingness to learn common threat scenarios to inform practical drafting. About Us Pay Philosophy: The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role. At Liberty Mutual, our goal is to create a workplace where everyone feels valued, supported, and can thrive. We build an environment that welcomes a wide range of perspectives and experiences, with inclusion embedded in every aspect of our culture and reflected in everyday interactions. This comes to life through comprehensive benefits, workplace flexibility, professional development opportunities, and a host of opportunities provided through our Employee Resource Groups. Each employee plays a role in creating our inclusive culture, which supports every individual to do their best work. Together, we cultivate a community where everyone can make a meaningful impact for our business, our customers, and the communities we serve. We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: *********************** Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law. Fair Chance Notices California Los Angeles Incorporated Los Angeles Unincorporated Philadelphia San Francisco We can recommend jobs specifically for you! Click here to get started.

The Information Assurance Principal Analyst/Program Lead will provide leadership, oversight, and operational management for the Joint Operation Planning and Execution System (JOPES) and the Transportation Visualizer (TransViz) Functional Management Support contract. This individual will act as the primary liaison between TeAM, government officials, and all contract stakeholders, ensuring the coordination, integration, and execution of all program activities in accordance with DoD and USTRANSCOM expectations. The Information Assurance Principal Analyst/Program Lead will be responsible for meeting all performance, schedule, and quality objectives as outlined in the contract's scope. Mission Objectives - The primary objective of this project is to support the operational effectiveness and mission readiness of the JOPES and TransViz platforms at Scott Air Force Base. As a critical contract team member, the Information Assurance Principal Analyst/Program Lead ensures seamless functional management, stakeholder coordination, and compliance with all contractual and security requirements while facilitating process improvements and the timely delivery of program services. This position supports USTRANSCOM and associated DoD agencies by optimizing system capabilities and user experience in support of national defense objectives. Position Responsibility Summary Serve as the principal point of contact (POC) for all programmatic, technical, and contractual matters, representing TeAM in communications with government officials and stakeholders. Serve as a Liaison for all meetings & events, coordinating & scheduling all course training for teams, and attending reviews of the program. Lead, supervise, and coordinate activities of the project team-overseeing System Administrators and the Database Administrator-to fulfill contract objectives. Ensure timely and accurate reporting of program performance, deliverables, metrics, and compliance with DoD security, safety, and operational requirements. Manage risks, mitigate issues, and implement corrective actions to maintain project schedule and instill quality control. Oversee and ensure workforce compliance with all mandatory security, safety, and DoD-mandated annual training, including but not limited to OPSEC, Antiterrorism Level I, CUI, and Emergency Operations. Develop and implement process improvements, leveraging industry best practices (e.g., ITIL) to enhance JOPES/TransViz functionality and user satisfaction. Foster a culture of open communication and collaboration across stakeholders, promoting continuous improvement in program delivery. Ensure all support activities are conducted on-site in compliance with established guidelines and within the designated geographic radius.

Job Description This is a hybrid position requiring 3 days in office at our Middleton, WI office location. #LI-Hybrid At CapSpecialty, we are a specialty underwriting company being driven by well-informed, entrepreneurial and proactive employees. Come join our exciting company where you can really make an impact, and each individual's unique skills and talents are recognized and valued. You will find an accessible leadership team that welcomes opinions and ideas. We owe much of our success to our collaborative environment and set of three guiding principles rooted in customer-centricity, employee excellence and corporate culture. We offer competitive compensation and benefits packages - including an innovative open vacation plan, generous paid sick and parental leave, fully vested matching 401k, company-paid group term life insurance and short- & long-term disability plans, professional and educational growth opportunities, flexible and casual work environment, and recognition for exceptional performance. Please see our full list of Total Rewards here. CapSpecialty is seeking an Information Security Analyst who will support our organization's cybersecurity operations. The analyst will assist in monitoring systems, investigating alerts, managing access controls, and supporting compliance efforts. This role includes exposure to Identity & Access Management (“IAM”) and other key areas of information security. Duties/Responsibilities: Conduct investigations into and properly document security incidents, including evaluating incident impact and recommending corrective actions to management. Collate security metrics and generate reports from the security systems as needed. Support managing accounts and permissions in IAM systems, including recommending improvements to identity governance where appropriate. Perform tasks as assigned to meet any audit requests. Help maintain IAM documentation and workflows. Help maintain and promote security policies, procedures, and training materials. Oversee assigned components of the security awareness programs, and track employee participation including following up on training completion. This may include reporting compliance metrics to leadership. Manage the physical security program, providing recommendations for updates as needed. Keep up to date and current on security trends. Other related duties and initiatives, as assigned. Supervisory Responsibilities: None. Core Competencies: Proven ability to deal well with ambiguity, prioritize tasks, resolve issues and deliver measurable results in an agile, fast-paced environment. Excellent oral and written communication skills. Ability to manage difficult customer situations, elicit customer feedback, analyze and resolve customer issues. Excellent analytical, problem solving, collaboration and time-management skills. A high level of integrity and commitment to confidentiality. Must be highly self-motivated requiring minimal direction. Have a passion for Information Security and a desire to advance personal growth through continuing professional education, self-study, and pursuit of technical certifications. Education and Experience: Associate's degree in computer science or equivalent. 1+ years of relevant experience in IT with exposure to cybersecurity practices, technologies, and methodologies is preferred. Basic understanding of security principles, threats, and controls is desirable. Familiarity with IAM concepts and tools (i.e. Active Directory, Okta, Azure AD) is a plus but not required. Familiarity with security controls and technologies desired (i.e. firewall, SIEM, DLP, WAF, and IPS.). Physical Demands Prolonged periods of sitting at a desk and working on a computer. May be required to lift up to 15 pounds at times. CapSpecialty is a leading provider of specialty insurance and bonds for small- to mid-sized businesses in the U.S., offering casualty, professional liability, surety and fidelity products in all 50 states and the District of Columbia. By working with select partners through a limited distribution model, CapSpecialty's creative, hard-working team provides personalized service and cultivates mutually successful partnerships to deliver positive results. CapSpecialty is an operating subsidiary of Berkshire Hathaway, and its carriers have an A ("Excellent") rating from A.M. Best, writing both admitted and non-admitted policies. For more information, please visit CapSpecialty.com. Apply today! Equal Employment Opportunity Employer Powered by ExactHire:184950

Established in 1991, Collabera has been a leader in IT staffing for over 22 years and is one of the largest diversity IT staffing firms in the industry. As a half a billion dollar IT company, with more than 9,000 professionals across 30+ offices, Collabera offers comprehensive, cost-effective IT staffing & IT Services. We provide services to Fortune 500 and mid-size companies to meet their talent needs with high quality IT resources through Staff Augmentation, Global Talent Management, Value Added Services through CLASS (Competency Leveraged Advanced Staffing & Solutions) Permanent Placement Services and Vendor Management Programs. Collabera recognizes true potential of human capital and provides people the right opportunities for growth and professional excellence. Job Description Location: 100 Abbott Park Road, Lake County, Abbott Park, IL 60064 Duration: 6+ months (could go beyond) Roles: • Network Directory and Infrastructure Services Administration. • Knowledge of domain administration and troubleshooting, Active Directory, MS FIM, Exchange, MS Office365 and supporting technologies, MS Azure, NPS, Federation and SQL Server administration required. Responsibilities: • Provide technical Level III problem isolation and resolution for a Global Active Directory Network. • Configures and performs advanced diagnostics on infrastructure components and cloud based applications. • Understands and repairs Domain infrastructure including DNS, DHCP, ADLDS, ADFS and FIM Sync. • Understands and can configure/install Win Server 2008r2/2012r2 technologies for domain controllers and Radius Authentication servers. • Repair and recover from hardware or software failures. • Rotate on-call and must be available to work a varied shift schedule in a 7x24 hour operations center environment. • Initiate major outage communication technical bridges as requested. • Apply fix procedures as instructed for repetitive events as instructed and coordinate with impacted constituencies. Competencies: • Superior knowledge of Active Directory overall and its administrative components. • Perform domain administration for 61,000+ workstations including domain controllers, NPS, Win 2003/2008R2/2012 server hardware, dynamic host configuration protocol (DHCP), domain name servers (DNS) configuration integrated with active directory, desktop configuration and end user support. • Candidate will have worked in an AD environment that has done acquisition and divestiture work, Candidate will have worked with products such as ADMT, and ADLDS and the roles they play in M&A activities such as management of active directory structure in creation, administration of organizational units (OU), containers and sub containers throughout the domain from geographic to organizational standards, while setting policies and permissions. • Candidate should have expert knowledge of Federation protocols including OAuth, SAML, WSFed, and a deep understanding of the IDP and SP roles associated with Federation environments. • Candidate will have worked with Office 365 from an Identity standpoint and have an understanding of Azure Active Directory Sync and Identity Federation for Cloud services. • Expertise should include attribute mapping and troubleshooting as well as rule sets associated with AADSync. • Candidate must be able to correctly configure servers and clients for all services. • Can isolate and repair most DNS and IP service problems. • Understands and uses the appropriate tools in all instances during problem isolation and repair. • Possesses an in depth understanding of communications technologies and can isolate and resolve most infrastructure issues. Qualifications • Associates Degree Minimum, prefer Computer Science or technology area or telecommunications science business minor • Three (3) to six (6) months of specialized technical courses in Win and Active Directory technology's typically provided by vendors, technical societies, or equivalent experience. Additional Information To know more about this position, please contact: Himanshu Prajapat ************ **********************************

LyondellBasell is a leader in the global chemical industry creating solutions for everyday sustainable living. With a nearly 70-year legacy that includes a Nobel Prize in Chemistry and our proprietary MoReTec recycling technology, LYB is enabling a more sustainable future for generations to come. LYB develops high-quality and innovative products for applications ranging from sustainable transportation and food safety to clean water and quality healthcare. LYB places high priority on diversity, equity and inclusion and is Advancing Good with an emphasis on our planet, the communities where we operate and our future workforce. We're addressing the global challenges of ending plastic waste, taking climate action, and supporting a thriving society, while generating value for our customers, investors, and society.Come Join an Inclusive Team The BISO provides tactical direction to regional and local sites to identify and mitigate digital risks and prevent, detect, and remediate cyber security threats. This improves the overall company-wide security posture. This role is a hands-on role that ensures the subject matter expertise, and processes for the effective execution of global cybersecurity program in the OT environments. The BISO supports the computing systems of the site's Business and Manufacturing environments and coordinates changes, provides security and ensures optimum reliability, availability, integrity and confidentiality. This role acts locally as the main focal point for the business and manufacturing organization and supports the center-led business systems security in the region. Work-life balance is offered consistent with LyondellBasell's Flexible Work Policies.A Day in the Life Oversee the operation of regional and local IT and ICS computing systems and security software including hardware and software lifecycle (Firewall, Anti Malware, Patch and Asset Management[PM1.1][bd VD1.2], etc.). Ensure that all regional sites' networks and systems comply with Corporate and Industry[PM2.1][bd VD2.2] standards; Contribute to internal documentation and standards (build documents, operational excellence, Disaster Recovery, Business Continuity, security whitepapers, Technical Designs) Help to validate the translation of the company policies from English into the local language (spoken by the BISOs as their first language) as optional if they have the capabilities. Advise or consult on OT changes initiated by IT and Site Management. Participate in Purdue Level 2 and 3 monitoring[KJL3.1], including the review, validation and reporting of security metrics. Assist in Operational Excellence audit support, Site Vulnerability Assessments and Cyber Process Hazard Analysis. Facilitate forensics investigations and incident follow-up. Support the design, implementation and documentation of (security) OT and M&A projects and initiatives. Ensure effective regional security awareness program implementation and training. Improve overall cyber resilience to the next level of maturity and effectiveness according with the defined BSS roadmap. Regularly analyze LyondellBasell's intrusion protection processes and lead efforts to improve it through automation, integration, and aggregation. Provide information protection expertise to IT operational teams to ensure systems are properly protected and monitored by design. Communicate threats appropriately. Profile new and emerging threats to the IT landscape and drive changes needed in response. Serve as a member to the event response team, providing mentoring to other team members as needed, while performing Level 2 support. Contribute ideas to the future state technology roadmap ensuring effective investments are made to enable scale, quality, and maintenance and overall cost effectiveness. Assist in setting technical direction and strategy for ICS systems architecture and security. Understand the security vulnerability management process and be able to conduct vulnerability assessments for the IT and ICS infrastructure, including mitigation and patch testing. You Bring This Value Bachelor's degree in an appropriate field, or equivalent professional 6-8 years of technical experience Support for LyondellBasell's Diversity, Equity, and Inclusion (DEI) strategy and values. Exceptional communication and advocacy skills, both verbal and written, with the ability to express complex and technical issues in clear and concise language Ability to collaborate and communicate effectively with both business-oriented and technology-oriented personnel Working knowledge of one or more of these technologies: Microsoft Windows, Active Directory architecture & management, Group Policies, network topology, Anti Malware, SQLServer Database Management, virtualization, Manufacturing Execution Systems. Ability to perform field work for site assessments including visiting control rooms, rail yards, network closets, offices, and inspections of external perimeter fencing in a variety of physical locations - requiring walking for extended distances, walking over uneven terrain, and wearing protective equipment (PPE) Preferred Qualifications: Experience in information security, information technology (IT), or operational technology (OT) Experience developing and refining risk based, defense-in-depth security architectures based on established frameworks such as NIST, ISO27001 or IEC62443 Working knowledge of plant ICS systems (i.e. Modbus, OPC, AspenTech, OSI PI, Sample Manager, PAS Alarm Management, Honeywell, DeltaV, Yokogawa, Siemens, Schneider, etc.) Practical knowledge of different message distribution techniques to ensure end users understand and apply the behavioral changes necessary to reduce the 'human factors' risk Detailed understanding of manufacturing and business systems Ability to work with minimal supervision with demonstrated mentoring skills Ability to travel as required, up to 10% Competencies Build PartnershipsDrive InnovationGrow CapabilitiesPromote InclusionMotivational FitTechnical SkillsDeliver ResultsLearn more about our benefits: Benefits/Health & Welfare | LyondellBasell Stay Connected! Visit our LYB Website Follow us on LinkedIn and Instagram Like us on Facebook Subscribe to our YouTube channel LyondellBasell is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, disability, age, veteran status, and other legally protected characteristics. The US EEO is the Law poster is available here.LYB is committed to providing reasonable accommodations for qualified individuals with disabilities. If you need assistance or an accommodation related to LYB's recruiting process, please email us at ***************. Applicants must be at least 18 years old.LyondellBasell does not accept or retain unsolicited résumés or phone calls and/or respond to them or to any third party representing job seekers.Privacy Statement: For information regarding how LyondellBasell processes your personal data, please read our Privacy Statement. Regulatory Disclosure The compensation and reference to benefits for this role is listed on this posting in compliance with applicable law. Please note that the compensation and benefits listed below are only applicable for U.S. payroll offers. The anticipated salary range for this position is $111,360.00 - $167,040.00 . The selected candidate's compensation will be determined based on their skills, experience, and qualifications.

Mindlance is a national recruiting company which partners with many of the leading employers across the country. Feel free to check us out at ************************* Job Title: Cyber Security Analyst Duration: 12 Months Location: Oakbrook Terrace, IL Job Description: Responsible for planning, designing, and implementing a process for cyber security monitoring, incident detection, and incident response. 1-3 yrs of experience and a Bachelor's degree in IT systems or a related discipline. Position Requirements: - Configuration and administration of logging aggregation and security event monitoring tools (like Industrial Defender, Splunk, etc.) - Configuration and maintenance of performance monitoring tools (like Solarwinds, Uptime, CA Spectrum, etc.) o Understands and can configure tools and endpoint systems to use SNMP for monitoring - General IT Support (application patching, client updates, remote access and administration tools) - General Networking knowledge (IP Networking, OSI Stack, etc.) Additional Information Thanks & Regards' ___________________________________________________________________________ Vikram Bhalla | Team Recruitment | Mindlance, Inc. | W: ************ All your information will be kept confidential according to EEO guidelines.

Information Security Analyst STATUS: Full time DEPARTMENT: Information Security Office DIVISION: Information Technology CLASSIFICATION: Exempt UNION: Non-Union REPORTS TO: Senior Director Information Security PLACEMENT: Professional staff, S11 HIRING RANGE: $70,689 - 79,526 Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The student population at the college is diverse in ethnicity, gender, language, age and background. Joliet Junior College is an AA/EO employer and strongly encourages applications from candidates who would enhance the diversity of its staff. POSITION SUMMARY The Information Security Analyst is responsible for protecting the college's information systems and data by monitoring, analyzing, and responding to security incidents and threats. This role supports compliance with regulatory requirements (e.g., CIRCIA, HIPAA, GLBA), enhances operational efficiency, and contributes to the continual improvement of security processes and documentation. The analyst will also detect opportunities to develop and maintain security documentation, including knowledgebase articles, and manage security-related tickets from stakeholders. ESSENTIAL JOB DUTIES AND KEY RESPONSIBILITIES 1. Incident Management: Monitor, triage, and respond to cybersecurity threats and incidents across network, application, identity, and cloud layers. 2. Vulnerability Management: Participate in vulnerability assessments and penetration testing to identify and remediate security weaknesses. 3. Security Operations: Manage and maintain security tools (e.g., SIEM, IDS/IPS, vulnerability scanners), ensuring daily monitoring and compliance. 4. Facilitate the integration of SOC/Managed Security Services activities with the broader Information Security team, ensuring consistent application of ITIL processes such as Incident Management, Problem Management, and Event Management. 5. Identity Management: Support Office 365 email account management tasks, including user permissions, credential hand-offs, mailbox access provisioning, and coordination with identity and access management processes." 6. Compliance & Risk Management: Assist in legal and regulatory compliance efforts; conduct risk assessments and support audit activities. 7. Service Request Management: Handle, triage, and manage tier 2 level and up security-related tickets and requests from stakeholders, ensuring timely resolution and escalation as needed. 8. Knowledge Management: Detect opportunities to develop, improve, and maintain security documentation, including knowledgebase articles and process guides. 9. Process Improvement: Assist with the development and continual improvement of security-related processes, automation initiatives, and reporting tools. 10. Cloud Support: Support secure cloud infrastructure through systems auditing and account lifecycle management. 11. Collaboration & Training: Collaborate with IT and academic departments to ensure secure deployment of new technologies; provide security awareness training to staff and students. 12. Reporting: Prepare and present reports on security incidents, vulnerabilities, compliance status, and process improvements to leadership. 13. Professional Development: Stay current with emerging security threats, trends, best practices, and ITIL service management principles. 14. Perform related duties as assigned. MINIMUM QUALIFICATIONS 1. Bachelor's degree in Computer Science or a closely related field, OR an Associate's degree combined with 2 or more years of experience in information security or IT operations. 2. Understanding of cybersecurity principles, tools, and compliance frameworks. 3. Experience with Microsoft Azure, Active Directory, and security monitoring tools. 4. Experience in information security and/or IT risk management with a focus on security performance and reliability. 5. Familiarity multiple risk management concepts, frameworks, and standards (CSC, NIST, ISO, COBIT). 6. Excellent analytical, communication, documentation, and collaboration skills. 7. Possesses relevant industry certifications such as CEH, CISA, CCET, Network+, Security+, CySa+, or Microsoft SC-900, demonstrating foundational and specialized knowledge in cybersecurity. 8. Demonstrated understanding of the NIST Cybersecurity framework and auditing security controls identified in NIST800-171 and NIST SP800-53A. 9. Knowledgeable on ITIL process management. 10. Ability to establish and maintain cooperative and effective working relationships with other members of the college and community, displaying cultural competence as well as emotional intelligence. 11. Demonstrated commitment to the college's core values of respect and inclusion, sustainability, integrity, collaboration, humor and well-being, innovation and quality. PREFERRED QUALIFICATIONS 1. Experience in higher education or public sector environments. 2. English and Spanish verbal and written communication proficiency. 3. Demonstrated multicultural competence. PHYSICAL DEMANDS 1. Normal office physical demands. 2. Ability to travel between campus locations and to and from community events. 3. Ability to travel in state and nationally. WORKING CONDITIONS 1. Duties are performed indoors in the usual office and/or outdoor environment. BENEFITS Click on the link for information about JJC's Benefits: Non-Union Support Staff, Professional, Administrative Full Time/Part Time: Full time Union (If Applicable): Scheduled Hours: 40

blue Stone Executive Search has been retained by our client, a multi billion dollar global organization, a world leader in their vertical, with a dedication to cutting-edge technology and work/family balance, to search for a motivated and energetic IT Leader to direct and manage their Information Security objectives on a company-wide basis. Job Description As the Manager of Information Security, you will be responsible for the development and execution of a comprehensive company wide information security strategy. The Information Security Manager will build and work with appropriate internal staff to deploy an information security awareness program to support compliance with information security policy, standards, procedures, and best practices. The Information Security Manager will develop needed security policies while working with appropriate HR and Legal teams on final version approval and distribution. You will also be expected to participate in information security response and provide audit/compliance and forensic activities for the company, as needed. As the Information Security Manager, you will implement proactive processes and technologies to monitor the company internal and external network environment for potential threats with appropriate response processes. You will also evaluate new technology that the company would use in execution of the information security strategy using both quantitative and qualitative methods. The Information Security Manager will also help to create a policy for the company and design and implement necessary tools to protect company data on employee owned devices. Qualifications Experience and familiarity with control and security frameworks such as COSO, COBiT, and ISO Candidate has one or more current CISSP, CISM, CISA certifications Two to five years security leadership experience required Bachelor's degree in related field preferred Solid understanding of information technology and information security including; firewalls, VPN's, penetration testing and other security devices with an emphasis on network security Experience with management and administration with firewall technologies from Cisco and other firewall manufacturers Knowledge in developing and socializing security policies and processes Demonstrated ability to create information security strategy and execution plans Knowledge of intrusion detection and prevention solutions and experience implementing them in a corporate environment Excellent interpersonal skills with the ability to communicate with technical and non-technical contacts Must be highly organized and detail oriented Exceptional analytical and problem solving skills Excellent written and verbal communication skills Ability to manage multiple priorities to deliver results Additional InformationblueStone Executive Search successfully finds and secures the top talent within targeted industries. As executive search professionals, the advice we impart and the solutions we provide can have a significant impact on the businesses, careers and lives of others. We recognize these responsibilities and take them seriously. We value long-term relationships above short-term gain. We are continually seeking exceptional talent with the highest standards of professionalism. E-mail resumes to [email protected] and phone ************.

We are seeking an experienced Quality Assurance Analyst to test updates to our client's website and other interactive deliverables. Primary responsibilities include executing test plans, updating test reports, writing bug defects, verifying fixes, and testing pages and emails on supported environments. Job Description Interview mode: Phone and Skype (On site interview may be required) We can submit C2C consultants JD: OBJECTIVES: • Reports to the Head of Security Strategy & Architecture • Provides leadership and guidance to the regional IT organization on cyber and information security and risk management activities, education, and solutions • Contributes to defining global security strategy and architecture processes • Defines and establishes regional security processes based on global security strategy and architecture, with a focus on practices for Vulnerability Management, Systems Development Lifecycle, Information Security Processes including risk based Architecture design. • Directs a regional approach for the implementation of global IT security standards and methodologies • Provides input to global security operations such as incident response, monitoring, trend identification, and security posture and remediation ACCOUNTABILITIES: • Reports to the Head of Security Strategy & Architecture on plans and status of relevant projects, including the regional security strategy and implementation initiatives • Contributes to the design, development, and deployment of global security strategy and architecture concepts • Cooperates with regional teams in understanding global security strategy and architecture requirements • Conducts periodic review of security-related SDLC processes and stage gates • Incorporates cyber security and IT risk management into regional activities • Be the subject matter expert in security and assessments, including vulnerability management processes, vendor security reviews, penetration testing, and application security • Conducts follow-ups on any identified corrective actions • Functions as an advisor to system owners, security program managers and others in all matter (technical and otherwise) involving IT security and continuity • Directs or delegates level 3 support services for the region • Manages the relationship between IT security and regional business executives and business managers • Provides recommendations in planning of programs and projects in the area of cyber security • Reviews and manages budget and reports financial and event status to Head of Security Strategy & Architecture EDUCATION, BEHAVIOURAL COMPETENCIES AND SKILLS: Required: • Bachelor's Degree (business administration, risk management, information security, Management Information Systems (MIS), Computer Science or related IT field) or high school degree • 7+ years IT experience • 5+ years of work experience in developing, implementing and managing security solutions • 3+ years of work experience in designing and architecture security strategy and solutions • Demonstrated leadership role in working with C-Suite executives and the Board • Experience with implementing and operating security programs in a global environment, with a focus in Germany and European countries • Hands-on experience with the development of security strategy and frameworks, architectural methodologies, and service delivery • Project management experience including full lifecycle implementation • Proven ability to analyze a wide variety of data and make calculated, risk-based decisions • Ability to communicate ideas and data both verbally and written in a persuasive and appropriate manner • Ability to assess strengths and weaknesses of staff members and provide suggestions for improvement • Ability to write and speak in the English language Desired: • In-depth pharmaceutical industry and drug development experience • Experience with validated systems LICENSES/CERTIFICATIONS: • Information security certification (CISSP, CISM, CISA, GIAC, CEH, CCSK) TRAVEL REQUIREMENTS: • Access to transportation to attend meetings • Ability to fly to meetings regionally and globally • Willingness to travel up to 25-50%. Location: Deerfield, IL. Duration: 1 Year+ Additional Information All your information will be kept confidential according to EEO guidelines. Please call @ ************ Ext 183

About Rethink First Rethink First is a leading behavioral health technology company working to make mental wellness, education, and support accessible and scalable. Through our suite of cloud-based platforms-including RethinkEd, RethinkCare, and RethinkBH-we serve educators, employers, and providers with tools that deliver measurable, inclusive outcomes. We're on a mission to make behavioral health more effective, equitable, and human-and we're looking for a creative visionary to help lead that charge. About the Role We are building a modern, cloud-forward security program grounded in Cyber Resilience, Application Security, and Security Assurance. As our Manager, Information Security, you will be the operational and execution leader for our Security Assurance function while helping shape key processes across SecOps and AppSec. This role is ideal for someone who thrives in a high-growth SaaS environment, collaborates well cross-functionally, and wants to help mature a security program that must support HIPAA, SOC 2 Type II, HITRUST, and a broad healthcare customer base. You will own the day-to-day execution of GRC, Audit Readiness, Evidence Collection, Policy Management, TPRM, and Client Trust-and must have hands-on experience implementing or operating Vanta as a centralized compliance automation platform. You will serve as a multiplier for the Sr Director, creating repeatable processes, driving deadlines, maturing documentation, and ensuring audit-ready control operation across Azure, M365, and our SaaS product ecosystem. Key Responsibilities Security Assurance Leadership (Primary Responsibility - 60%) Lead the end-to-end Security Assurance function across SOC 2, HIPAA, HITRUST, and regulatory frameworks. Act as the program manager for all audits, coordinating with Legal, HR, Engineering, Product, and Infrastructure to maintain year-round audit readiness. Own the implementation, configuration, optimization, and continuous operation of Vanta, including: Control mapping and ownership assignments Evidence collection workflows Vendor risk management modules Client Trust functionality (best answers, trust portal, knowledge base) Build and maintain an audit calendar, evidence repository, and standardized evidence collection playbooks. Drive development and continuous maintenance of security policies, standards, and procedures. Operate the Third-Party Risk Management process, including vendor classification (Tier 1/BAA), questionnaire review, residual risk scoring, and contract security review. Respond to customer security questionnaires, RFPs, and client audit requests with clarity, accuracy, and speed. Cyber Resilience & SecOps Leadership (25%) While not a hands-on SecOps role, you will: Partner with the SecOps Engineers to build daily operational cadence across alerts, incidents, vulnerability management, and hygiene controls. Ensure controls monitored by Tenable, Microsoft Defender, Sentinel, and other platforms produce audit-ready evidence. Help design operational dashboards and KPIs for incident response, vulnerability SLAs, and hygiene metrics. Validate operational controls for compliance frameworks (MFA, SSO, logging, monitoring, access reviews, backups, endpoint security, network protections, etc.). Application Security Collaboration (15%) Work with Engineering, Architecture, and DevOps teams to ensure Product and AppSec controls align with SOC 2 and HITRUST expectations. Contribute to secure SDLC processes, risk assessments for new features, and remediation tracking for vulnerabilities and findings. Validate that security requirements are integrated into CI/CD workflows where appropriate. Required Qualifications 7+ years of progressive experience in Information Security, with at least 3+ years in a governance, compliance, or Security Assurance leadership role. Direct experience implementing or operating Vanta (must be hands-on). Strong experience supporting and maturing SOC 2 Type II, HIPAA Security Rule, and HITRUST programs in a SaaS environment. Deep understanding of Microsoft Azure security architecture, including Entra ID, RBAC, Conditional Access, Defender for Cloud, Sentinel, and workload identities. Clear understanding of audit control design, evidence, and auditor expectations. Experience building vendor risk programs, reviewing DPAs and BAAs, and performing vendor due diligence. Excellent writing skills for policies, procedures, client responses, and audit documentation. Demonstrated ability to lead complex projects with multiple stakeholders and tight deadlines. Strong communication and relationship-building skills across technical and non-technical teams. Preferred Qualifications Experience in healthcare SaaS or other regulated industries. Hands-on experience with: Vanta Vendor Risk + Trust Center Microsoft Purview (DLP, Information Protection) Azure DevOps or GitHub governance Tenable, Defender, or other vulnerability platforms Jira/Confluence Certifications such as CISA, CISSP, HCISPP, HITRUST CCSFP, or similar. Experience working with offshore teams. Benefits: Generous health, dental, & vision benefits package Flexible paid time off 11 paid company holidays 401k + matching Parental leave Access to our award-winning RethinkCare platform supporting neurodiversity in the workplace through parental success, professional resilience, and personal wellbeing. Location: Remote opportunities are available to candidates who reside in the following states: AL, AZ, CT, FL, GA, HI, IA, IL, IN, KY, LA, MD, MA, MI, MN, MO, MT, NC, NE, NH, NJ, NV, OH, OR, PA, RI, TN, TX, VA, WA, WI, WY Our commitment to an inclusive workplace RethinkFirst is an equal opportunity employer and is committed to providing a workplace free from harassment and discrimination. We celebrate the unique differences of our employees because that is what drives curiosity, innovation, and the success of our business. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. Accommodations are available for applicants with disabilities. JazzHR Privacy Policy JazzHR Terms of Use California Privacy Notice #remote