Information security analyst jobs in Columbia, SC

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. Coinbase stores more digital currency than any company in the world, making us a top tier target on the internet. Security is core to our mission and has been a key competitive differentiator for us as we scale worldwide. Essential to scaling is building and running a security compliance program that reflects how we protect the data and assets in our care, to open the doors with customers, regulators, auditors, and other external stakeholders. If you love working with fast moving companies to grow and scale security compliance engines and create positive change across the business, we'd like to speak with you about joining our team. Coinbase is looking for a Security Compliance Senior Analyst to drive the second line of defense IT SOX initiatives and help mature the IT SOX program. *What you'll be doing (ie. job duties):* * Lead Security and IT initiatives to support the SOX roadmap and advance program maturity * Assist with SOX planning activities, including scoping of IT systems and creating training material to owners in preparation for SOX audit * Lead security control gap assessments over SOX control environment, recommend remediation plans and track through completion * Assess SOX implications of new products, update relevant controls, and communicate requirements to product organization and other stakeholders * Provide ongoing reporting to stakeholders and leadership on above responsibilities and communicate progress and escalations management * Perform SOX audit and control impact analysis as a result of security and technology incidents and partner with owning teams on control uplift activities * Build close relationships with stakeholder teams including Security, IT, Infrastructure, Engineering, Data, and Finance to advise on SOX requirements and ensure excellence in control ownership * Create and improve SOX procedural documentation, including process documentation, data flow diagrams, and uplifting templates * Work closely with internal and external auditors to educate them about a complex technology control environment * Oversee quality of audit initiatives, identify and analyze process gaps, provide guidance and expertise to team members * Develop creative solutions to prove risk mitigation and solve for complex audit problems faced by the crypto industry * Identify opportunities to address systemic program challenges, recommend solutions and drive efficiency through AI and automation *What we look for in you (ie. job requirements):* * Minimum of 5+ years of security/IT compliance or equivalent experience * Strong knowledge and hands-on experience in Internal Controls over Financial Reporting, SOX 404 frameworks, and testing to support compliance * Prior experience at a big 4 accounting firm * Experience leading compliance initiatives from start to finish * Proven understanding and audit experience of cloud technologies, AWS preferred * Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with minimal supervision * Strong oral and written communication skills * Ability to multitask, direct cross functional work, and hold others accountable to committed deadlines in a fast paced environment * Ability to communicate with technical / non-technical stakeholders to align on shared outcomes * Experience in Financial services, Big Tech, or FinTech *Nice to haves:* * BA or BS in a technical field or equivalent experience * Security certifications e.g. CISA, CISSP, CISM or other relevant certifications * Experience auditing in Crypto space Position ID: P73675 \#LI-Remote *Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility**+ benefits (including medical, dental, vision and 401(k)). Pay Range: $167,280-$196,800 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. You will help the team establish, lead and execute multi-year roadmaps that improve research efficiency and quality across the team, and drive improvements to stakeholder management across a broad range of intelligence requirements. **Required Skills:** Detection & Response Security Engineer, Threat Intelligence Responsibilities: 1. Influence and align the team's vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects 2. Build, cultivate, and maintain impactful relationships with intelligence stakeholders to identify and facilitate solutions to increase the impact of the team's work 3. Refine operational metrics, key performance indicators, and service level objectives to measure Intelligence research and services 4. Lead cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions 5. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 6. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 7. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 8. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems **Minimum Qualifications:** Minimum Qualifications: 9. 8+ years threat intelligence experience 10. B.S. or M.S. in Computer Science or related field, or equivalent experience 11. Be a technical and process subject matter expert regarding Security Operations and Threat Intelligence services 12. Experience developing and delivering information on threats, incidents and program status for leadership 13. Expertise with campaign tracking techniques and converting tracking results to long term countermeasures 14. Expertise with threat modeling frameworks, such as Diamond Model or/and MITRE ATT&CK framework 15. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 16. Proven track record of managing and executing on short term and long term projects 17. Ability to work with a team spanning multiple locations/time zones 18. Ability to prioritize and execute tasks with minimal direction or oversight 19. Ability to think critically and qualify assessments with solid communications skills 20. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 21. Experience recruiting, building, and leading technical teams, including performance management 22. Experience close collaborating with incident responders on incident investigations 23. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems 24. Familiarity with malware analysis or network traffic analysis 25. Familiarity with nation-state, sophisticated criminal, or supply chain threats 26. Familiarity with file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 27. Experience in one or more query languages such as SQL 28. Experience authoring production code for threat intelligence tooling 29. Experience conducting large scale data analysis 30. Experience working across the broader security community **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

ASK IT consulting is an equal opportunity employer, which is a global staffing, consulting and technology solutions company, offering industry-specific solutions to fortune 500 clients and worldwide corporations. We have openings for Security Analyst for one of our client in Columbia, SC. Job Description Position: Security Analyst Location: Columbia, SC 29210 Duration: 12 Months Position Description: Previous experience as a principle level object oriented developer with in depth knowledge of software development security principles. In depth knowledge of the Windows kernel and developing Windows based device drivers. You will assist in the design, develop, and implementation of systems security for our existing production systems (Primarily Windows Based). Requirements: • Bachelor's degree in computer science or related discipline, Master's degree preferred. • 5+ years of professional software development experience. More is better. • Strong knowledge and skills in Windows databases, optimizing queries, SQL Injection attacks, OWASP Top 10 remediation techniques, and ensuring sensitive data is secure in use, transit and at rest. • Strong knowledge and skills in Windows internals, debugging and reverse engineering. • Strong knowledge of Windows Security such as Token / Privileges /SID /ACLs /Group Policy /Active Directory. • Demonstrated ability to design software and systems solutions, securely. • Ability to work collaboratively in a small close-knit team and have good communication skills. • Security expertise. Experience building secure code, penetration testing, and reverse engineering malware. • Experience with Windbg, ollydbg, metaspolit, wireshark, burp suite, and other security tools. • MS Visual Studio, XML, XHTML, ASP.NET, C++, J#, etc. • Experience building and securing Enterprise software products. • Have worked in an Agile development environment with Scrum. • Solid understanding of industry best practices for securing systems, secure systems design, security testing, and implementation. Skills: • Software development Reverse Engineering • Application Security • burp suite • information security principles and practices • Malware • metaspolit • ollydbg Yes • optimizing queries • OWASP Top 10 remediation techniques • Penetration Testing • Security - Knowledge in networking, databases, systems and Web operations • Security Information Architecture • SQL Injection attacks • Windbg • Windows - SID • Windows Security - Privileges • Windows Security - Token • Windows Security - ACL • Windows Security - Group Policy • wireshark • IT Security • Active Directory • Information Security • Security Program evaluation • Experience with UNIX, Windows, Linux, MacOS, Cisco, Juniper, web apps, databases, strong authentication, operating systems and network security protocols and procedures. • Network security • Windows • Agile/Scrum Methodology • C/C++ • J# • Visual Studio • XHTML • XML Additional Information Ask IT Consulting Inc.| 33 Peachtree St., Suite 100 |Holtsville, NY 11742 Website: **********************

REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE): 6 years information security experience Excellent written skills; Proven work experience in process improvement Ability to identify processes that must be in place for an IT organization to be efficient Extensive knowledge of IRS Pub 1075, NIST 800-53, ITIL, and CJIS Process Management ITIL Business Analysis experience to include data flow diagrams, requirements specifications, use case scenarios, and acceptance testing. Ability to work with security technicians to develop detailed procedures; Ability to quickly grasp complex technical concepts and make them easily understandable in both text and diagrams/flow charts Ability to deliver high quality documentation with attention to detail. REQUIRED EDUCATION: Bachelor's Degree in a relevant field of work or equivalent work experience. Additional Information All your information will be kept confidential according to EEO guidelines.

JOB DESCRIPTION: SCOPE OF THE PROJECT: THE POSITION WILL WORK AS A SECURITY ARCHITECT WITHIN THE DIVISION OF INFORMATION SECURITY AND WILL ASSIST WITH THE IMPLEMENTATION, INTEGRATION, AND OPERATIONALIZING SECURITY TECHNOLOGIES. THIS POSITION REQUIRES EXPERIENCE IN INFORMATION SECURITY ARCHITECTURE AND SOLUTION DESIGN TO ASSIST IN THE STRATEGIC PLANNING, DESIGNING, AND IMPLEMENTATION OF NEW SYSTEMS AND CHANGES IN CURRENT SYSTEMS IN A SECURE MANNER. THIS POSITION IS EXPECTED TO BE NEEDED FOR 12 MONTHS WITH THE POSSIBILITY OF EXTENSION. DAILY DUTIES / RESPONSIBILITIES: • LOGGING AND EVENT MANAGEMENT - ENSURING THAT APPROPRIATE SECURITY LOGS ARE INGESTED INTO THE SIEM AND/OR LOG AGGRIGATION PLATFORM AND PROPERLY PARSED TO SUPPORT SECURITY OPERATIONS • RESPONSIBLE FOR PLANNING, DESIGNING, DEVELOPMENT AND IMPLEMENTATION OF ENTERPRISE SECURITY ARCHITECTURE SOLUTIONS THAT ALIGN WITH BUSINESS GOALS AND RISK TOLERANCE. LEVERAGING STATE APPROVED PROCESSES AND TECHNOLOGIES WHEREVER POSSIBLE. • LEAD PROCESS DEFINITION, REDESIGN AND/OR TECHNOLOGY INNOVATION OF SECURITY ARCHITECTURE, TO ENSURE DIS SOLUTIONS SUPPORT SECURE DELIVERY OF ENTERPRISE BUSINESS ARCHITECTURE AND SERVICES. • DESIGN, DEPLOY AND MANAGE COUNTERMEASURES TO KNOWN SECURITY THREATS AND DEVELOP PREVENTATIVE MITIGATION STRATEGIES FOR NEW AND EMERGENT THREATS TO ENTERPRISE DATA, NETWORKS AND ASSOCIATED SERVICES. • ENSURE, VALIDATE AND MEASURE THE CONSISTENT APPLICATION OF PROTECTIVE MEASURES THROUGHOUT THE ENTERPRISE BUSINESS APPLICATION AND INFRASTRUCTURE SUPPORT ENVIRONMENTS. TAKE APPROPRIATE ACTION TO PROTECT STATE DATA AND TECHNOLOGY SERVICES. Requirements REQUIRED SKILLS (RANK IN ORDER OF IMPORTANCE): • CYBER SECURITY AWARENESS AND UNDERSTANDING • EXPERIENCE WITH LINUX, WINDOWS, NETWORK SECURITY PROTOCOLS AND PROCEDURES • EXPERT UNDERSTANDING OF ACCESS CONTROL, LOGGING AND REPORTING SYSTEMS PREFERRED SKILLS (RANK IN ORDER OF IMPORTANCE): • SIEM MANAGEMENT • INTRUSION PREVENTION SYSTEMS (IPS) • SECURITY FRAMEWORKS: NIST, CSF, CJIS, IRS 1075, CMS MARS-E • APPLICATION SECURITY (APPSEC) REQUIRED EDUCATION/CERTIFICATIONS: • BACHELOR'S DEGREE IN AN INFORMATION TECHNOLOGY OR INFORMATION SECURITY RELATED FIELD • SIX YEARS OF RELEVANT WORK EXPERIENCE MAY BE SUBSTITUTED IN LIEU OF EDUCATION • THREE YEARS OF EXPERIENCE IN SUPPORTING LARGE IT ENVIRONMENTS AND/OR SYSTEM DEPLOYMENTS PREFERRED EDUCATION/CERTIFICATIONS: • GSEC • GCED BenefitsHealth Insurance Sick Leave

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Security Analyst Years of Exp: 10+Years Contract Type: C2C\/W2 Duration: 12+ Months Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense. Summary We are seeking an experienced Security Analyst \/ Senior ISSO to oversee and actively participate in the day\-to\-day security and compliance operations of complex information systems. The ideal candidate will lead the establishment, implementation, and enhancement of Information Systems Security and Compliance efforts based on State\/Agency Policy, Standards, and Regulatory Guidance such as FISMA, NIST, CMS MARS\-E, HIPAA, and other applicable frameworks. Key Responsibilities · Serve as a senior cybersecurity consultant to leadership, business units, partners, and vendors. · Lead and manage security and compliance programs, including CMS MARS\-E, ARC\-AMPE, or other FISMA RMF\-compliant programs. · Develop and maintain System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related audit\/assessment activities. · Integrate RMF\/A&A tasks into the System Development Life Cycle (SDLC). · Perform architectural reviews, risk analysis, and security assessments for network design, information flow, system access, firewall rules, baseline configuration, and vulnerability management. · Audit internal systems and third\-party\/vendor systems for compliance and security controls. · Review and provide security input on contracts, data usage agreements, and related documentation. · Act as a primary point of contact for external audits and assessments. · Utilize tools such as Microsoft Office Suite, ticketing systems, eGRC platforms (e.g., Archer), Bizagi, Atlassian, and other relevant tools for documentation and reporting. · Collaborate with stakeholders to recommend and implement security and compliance risk mitigation measures. Required Skills · Strong knowledge of FISMA, NIST, CMS MARS\-E, and HIPAA Security and Privacy requirements. · 5+ years of experience working with or auditing Windows, Linux, Databases (Relational and Non\-Relational), Networking Infrastructure, and Web\-based Applications. · Experience in FISMA\-compliant programs. · Hands\-on experience with eGRC systems. · Health IT experience preferred. · Relevant Information Security certifications required (ISC², ISACA, SANS GIAC, or equivalent). · Strong communication and collaboration skills with both technical and non\-technical stakeholders. · Ability to multitask, prioritize, and work effectively in a results\-oriented environment. · Proficiency in Microsoft Office (Word, Excel, PowerPoint, Visio) with attention to detail and consistency in documentation. Preferred Skills · BS degree in Computer Science or a related discipline, or 10+ years of relevant experience. · Prior ITIL experience in Information Security Management. · Experience with Cloud security and vendor management. "}}],"is Mobile":false,"iframe":"true","job Type":"Contract","apply Name":"Apply Now","zsoid":"666380550","FontFamily":"Verdana, Geneva, sans\-serif","job OtherDetails":[{"field Label":"Industry","uitype":2,"value":"IT Services"},{"field Label":"Work Experience","uitype":2,"value":"5+ years"},{"field Label":"Salary","uitype":1,"value":"$60\/hr\-$70\/hr"},{"field Label":"City","uitype":1,"value":"Columbia"},{"field Label":"State\/Province","uitype":1,"value":"South Carolina"},{"field Label":"Zip\/Postal Code","uitype":1,"value":"29207"}],"header Name":"IT \- SCDHHS \- Security Analyst \- Consultant","widget Id":"**********00072311","is JobBoard":"false","user Id":"**********00202003","attach Arr":[],"custom Template":"3","is CandidateLoginEnabled":true,"job Id":"**********20200160","FontSize":"12","google IndexUrl":"https:\/\/seu\-usa.zohorecruit.com\/recruit\/ViewJob.na?digest=kJX@DGU@qbph5QFEcbCUnujVwTnyUDgtTRND9nfkTb0\-&embedsource=Google","location":"Columbia","embedsource":"CareerSite","indeed CallBackUrl":"https:\/\/recruit.zoho.com\/recruit\/JBApplyAuth.do","logo Id":"6zqn0ecd06046e4b149a3a6a61797510edd99"}

**Duration: 12 months contract (with possible extension)** **What types of staffing challenges or headaches have you experienced in the past?** + Child support systems related experience + Clear communications + Experienced technical or project management skills **Scope of the project:** + The PACSS Project is responsible for developing, implementing, and maintaining a federally mandated Child Support Enforcement System (CSES) that will provide comprehensive support to the operation of South Carolina's Child Support Enforcement (CSE) program. **Daily duties / responsibilities:** + This information security analyst position is responsible for assisting with preparation for an IRS Safeguards Review by coordinating and assisting with the Agency's technical and administrative compliance to IRS Publication 1075. **Primary Responsibilities** + Review the Agency's implementation of CAPs and provide expert advice on the effectiveness of CAP implementations and Safeguard Review readiness of evidence and artifacts. + Review the Agency's SSR, SSPs and SSAs for compliance with Pub 1075 and provide expert advice and assistance towards Safeguard Review readiness of security control implementation, evidence, and artifacts. + Identify relevant IRS SCSEMs, evaluate the Agency's compliance with relevant SCSEMs, and provide technical advice and assistance remediating non-compliance. + Coordinate Safeguard Review preparation, by planning, coordinating, reporting, and communicating using the Agency's project management methods. + Coordinate and assist with follow-up to the Safeguard Review, including development of CAPS to resolve findings. **Other responsibilities include:** + Provide expert opinion for proposed technical solutions for agency applications and IT infrastructure activities regarding requirements from IRS Pub 1075. + Research potential technical solutions for bringing agency applications and infrastructure into Pub 1075 compliance. **Required Skills** Ranked in order of Importance: + 5 years' Expert level security analyst skills and experience + 3+ years' Participation in preparation for at least one IRS Safeguard Review at a state agency + IRS SCSEM technical expertise and experience + Ability to use MS Office, SharePoint, and Microsoft Teams tools effectively. + Ability to communicate (orally and written) effectively with technical, non-technical staff, customers/stakeholders (State and Federal) and executives. + 3+ years of experience with IRS Pub 1075 (Rev. 11-2021) + Knowledge of industry standards (e.g. ISO, IEEE) **Preferred Skills** **Ranked in order of importance:** + Preference will be given to experience related to Child Support Enforcement system design and developed and/or knowledge of the Child Support Enforcement program's mission and objectives + Experience with Federal or State Regulatory Compliance: Experience working with federal or state regulatory frameworks, particularly those involving data security, privacy, and audit readiness, such as FISMA, NIST, or IRS Publication 1075 + Technical Documentation and Audit Support: Demonstrated ability to develop and maintain technical documentation for audits, safeguard reviews, and security assessments, including policy and procedure documentation aligned with IRS and state agency standards. **Required education:** + BS Degree **About US Tech Solutions:** US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit *********************** (*********************************** . US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Job Title: Security Analyst - Consultant Scope of the project: Enhance the security posture of the Department of Motor Vehicles to protect sensitive citizen data and ensure the integrity of motor vehicle licensing and titling systems. Key duties and Responsibilities Champion DevSecOps through Security Automation: Leverage your full-stack development expertise to design, implement, and maintain security tools and automation. This includes building scripts to automate critical tasks like data security checks, vulnerability scanning, and user access control, streamlining security processes and improving overall efficiency. Monitor and analyze security events: You'll be responsible for monitoring security information and event management (SIEM) tools to identify potential threats and suspicious activity. Along with determine security gaps in these controls to improve overall security posture. This will also involve analyzing logs, investigating alerts, and using your knowledge of security frameworks (NIST, CIS, CISA) to assess risk. Support secure application development: You'll collaborate with developers to ensure secure coding practices are followed throughout the Software Development Lifecycle (SDLC). This might involve code reviews, threat modeling, and providing guidance on secure development principles. Investigate and respond to security incidents: In the event of a security breach, you'll be part of the incident response team, helping to identify the root cause, mitigate damage, and implement recovery procedures. Document security procedures and best practices: You'll develop clear and concise documentation for security policies, procedures, and best practices. This may involve creating training materials or user guides to ensure everyone understands their role in maintaining security. Provide on-call support when needed and other related duties as required. Required Skills (rank in order of importance): Exceptional communication and interpersonal skills, with a proven ability to deliver exceptional customer service through training and documentation. 5 years of Expert level experience with C#, Python, Powershell, or Rust (is a plus) Understanding of secure by design principles. 1 year of Understanding of automation principles, including the use of AI, ML, and scripting, to streamline security tasks 3 years of Understanding of the Software Development Lifecycle (SDLC) and DevSecOps principles to integrate security considerations throughout the application development process. 3 years of Proficiency in CLOUD SECURITY principles, including identity and access management, data security, and compliance. Education Requirement A bachelor's degree in information technology systems, computer science, cybersecurity, or a related field. Relevant experience may be substituted for the degree on a year-for-year basis Preferred Skills 1 Year of Experience with SIEM (Security Information and Event Management) tools, including configuration, tuning, threat hunting, and alert creation. 1 Year of In-depth knowledge of security frameworks, including NIST, CIS, and CISA, and their application in a hybrid environment. Solid understanding of incident response processes and experience in implementing them effectively. Advanced understanding of security controls, including their configuration and implementation in hybrid environments. 1 Year of Expertise in data classification and DLP (Data Loss Prevention) configuration to safeguard sensitive information. Preferred Certifications: Not required, however we prioritize applicants who have: Certified Incident Handler (GCIH) Certified Computer Security Incident Handler (CSIH) EC-Council Certified Incident Handler (ECIH) EC-Council Certified Network Defender (CND) GIAC Critical Infrastructure Protection (GCIP) GIAC Defensible Security Architecture (GDSA) Benefits at IntelliBee Long-Term Stability: Join us on a multi-year opportunities with room to grow. Comprehensive Health Coverage: Access quality healthcare benefits to keep you and your family well. Future Planning: Enroll in our 401(k) program and invest in your financial security. GC Assistance: We support immediate Green Card processing, if required. Please apply on our secured job site at <> or email [email protected]

Job Description Security Analyst Years of Exp: 10+Years Contract Type: C2C/W2 Duration: 12+ Months Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense. Summary We are seeking an experienced Security Analyst / Senior ISSO to oversee and actively participate in the day-to-day security and compliance operations of complex information systems. The ideal candidate will lead the establishment, implementation, and enhancement of Information Systems Security and Compliance efforts based on State/Agency Policy, Standards, and Regulatory Guidance such as FISMA, NIST, CMS MARS-E, HIPAA, and other applicable frameworks. Key Responsibilities · Serve as a senior cybersecurity consultant to leadership, business units, partners, and vendors. · Lead and manage security and compliance programs, including CMS MARS-E, ARC-AMPE, or other FISMA RMF-compliant programs. · Develop and maintain System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related audit/assessment activities. · Integrate RMF/A&A tasks into the System Development Life Cycle (SDLC). · Perform architectural reviews, risk analysis, and security assessments for network design, information flow, system access, firewall rules, baseline configuration, and vulnerability management. · Audit internal systems and third-party/vendor systems for compliance and security controls. · Review and provide security input on contracts, data usage agreements, and related documentation. · Act as a primary point of contact for external audits and assessments. · Utilize tools such as Microsoft Office Suite, ticketing systems, eGRC platforms (e.g., Archer), Bizagi, Atlassian, and other relevant tools for documentation and reporting. · Collaborate with stakeholders to recommend and implement security and compliance risk mitigation measures. Required Skills · Strong knowledge of FISMA, NIST, CMS MARS-E, and HIPAA Security and Privacy requirements. · 5+ years of experience working with or auditing Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure, and Web-based Applications. · Experience in FISMA-compliant programs. · Hands-on experience with eGRC systems. · Health IT experience preferred. · Relevant Information Security certifications required (ISC², ISACA, SANS GIAC, or equivalent). · Strong communication and collaboration skills with both technical and non-technical stakeholders. · Ability to multitask, prioritize, and work effectively in a results-oriented environment. · Proficiency in Microsoft Office (Word, Excel, PowerPoint, Visio) with attention to detail and consistency in documentation. Preferred Skills · BS degree in Computer Science or a related discipline, or 10+ years of relevant experience. · Prior ITIL experience in Information Security Management. · Experience with Cloud security and vendor management.

It's fun to work in a company where people truly BELIEVE in what they're doing! We're committed to bringing passion and customer focus to the business. The IT Security Analyst will support the Company's ability to protect the confidentiality, integrity, and availability of its physical and information assets by establishing, monitoring, and enforcing system access controls and security solutions. Responsibilities: Installs, administers, and maintains security software and solutions, including endpoint security, data loss prevention, security event management (SIEM), IPS/IDS, and other security products. Monitors enterprise network for security-related issues and suggests remediation. Responds to requests, provides assistance/technical support, and troubleshoots/resolves problems in a timely manner. Maintains open communication with users regarding questions, problems, project status, and deadlines. Oversees physical security controls, including security badges and camera systems. Reviews security logs daily. Analyzes, responds to, and remediates security incidents or suspicious activity. Qualifications: Associate's degree in a computer-related field or an equivalent combination of education, training, and experience Security+ certification required; CCNA: Security and CySA+ certifications desired. At least two (2) years experience in hands-on IT Security. Experience working with firewalls, SIEMs, IPS/IDS, TCP/IP, anti-virus, end point protection, DLP, Web Proxy, VPN, public key infrastructure, email filtering, and/or encryption solutions preferred.

We are from US IT Solutions, an ISO Certified, E-Verify, WMBE Certified organization established in 2005 in CA. O ur company is serving various State, Local and County Departments for over 10 years. USITSOL has been helping clients innovate across all phases of the application lifecycle for over a decade. Some of our prestigious clients are State of CA, State of OR, State of FL, State of NC, State of GA, State of CO, State of VA, State of AR, State of MI, State of OH, State of IL, State of MO, State of MS, California State University, Sacramento Area Sanitation Department, SMUD, Sound Transit, LA Superior Courts, District of Columbia, UMAS, University of Central Florida and Hennepin County and many more. Job Description Technical Knowledge: Hands on experience with any or all of the following technologies would be considered a desirable for this position: • IBM System 390/zSeries • Linux and Windows servers • Network Firewalls, Intrusion Prevention Systems (IPS) , Switching and Routing Infrastructure • Security Information and Event Management (SIEM) solutions • Identity and Access Management (IAM) solutions General Duties and Responsibilities: 1. Perform detailed architectural reviews and risk analysis of security related requests in order to make sound decision making recommendations, such as: a. Network Design and Information Flow b. System and Data Access Requests and Reviews c. Review Firewall Rule Requests (Ports, Protocols and Services) d. Configuration Management Deviation Requests e. Vulnerability Management 2. Assist in the design, development, implementation and/or ongoing maturation of SCDHHS security and compliance efforts. 3. Audit and Assess internal agency systems as well as business partner/service provider information system security controls. 4. Utilize Microsoft Office software suite, System Center Service Manager (Ticketing system) eGRC system, Bizagi, Atlassian and other products to document and report on information gathered during Audit and Assessment activities or other OIA efforts. 5. Participate in third-party audits and/or assessments of agency and business partner systems 6. Collaborate with agency leadership, business partners and other parties/stakeholders to provide recommendations for security and compliance risk mitigation efforts. Qualifications Required Knowledge/Skills: 1. Must have a strong working knowledge of FISMA, NIST, CMS MARS-E and HIPAA Security and Privacy. 2. 5+ years of experience in I.T. working with and/or auditing IBM System 390/zSeries, Windows, Linux, networking infrastructure and web-based applications. 3. ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required. 4. Ability to work independently and as a member of a team. 5. Ability to collaborate and coordinate with multiple teams and vendors. 6. Ability to multitask and prioritize tasks effectively in order to meet deadlines. 7. Experience and training with eGRC solutions. 8. Ability to engage diverse audiences of varying technical and non-technical skill-levels to ensure effective alignment of technical requirements to business objectives. 9. Ability to collaborate and coordinate efforts amongst multiple teams and vendors in fulfillment of SCDHHS OIA initiatives. 10. Ability to multitask and prioritize tasks effectively in order to meet deadlines in a results-oriented environment. 11. Must have intermediate to advanced skills in Microsoft Office products (Word, Excel, PowerPoint, Visio) to include working with templates and style guidelines for branding consistency. 12. Keen attention to detail while maintaining the ability to see the big picture. 13. Ability to absorb, retain and communicate complex processes. 14. Ability to accept changes and constructive criticism and remain flexible in dealing with leadership and teams of varying technical and business knowledge. 1. BS degree in computer science or similar discipline Additional Information Preferred Requirements/Skills: 1. BS degree in computer science or similar discipline. 2. Prior experience working within a FISMA compliant program. 3. Prior experience in working with any eGRC systems. 4. Prior Health Information Technology experience. 5. Prior ITIL experience in the area of Information Security Management. REQUIRED EDUCATION/CERTIFICATIONS: 1. ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required. PREFERRED EDUCATION/CERTIFICATIONS: nformation will be kept confidential according to EEO guidelines.

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

The Instagram Security Ecosystems team is seeking a product-focused security engineer interesting in enabling Instagram product teams to develop features with a focus on security and user safety. You will be relied upon to directly work with Instagram engineers, hardening both product features and our protective frameworks that make life harder for bad actors on the Instagram platform. **Required Skills:** Product Security Engineer, Instagram Responsibilities: 1. Threat Modeling and Security Architecture: Work directly with product managers and technical leads on threat models and security architecture for novel Instagram features or products 2. Security Reviews: Perform manual design and implementation reviews of web, mobile, and native code 3. Developer Guidance: Provide guidance and education to developers that help prevent the authoring of vulnerabilities 4. Automated Analysis and Secure Frameworks: Work with other security teams to improve Instagram's static and dynamic analysis and frameworks to scale coverage 5. Bug Bounty: Help provide technical guidance to our world class bug bounty program and independent security researchers 6. Industry Impact: Push the industry forward through conference talks and open source projects to contribute broadly to security for the world **Minimum Qualifications:** Minimum Qualifications: 7. B.S. or M.S. in Computer Science, Cybersecurity, or related field, or equivalent experience 8. 8+ years of experience finding vulnerabilities in interpreted languages (Python, PHP) 9. Extensive, proven experience in threat modeling and secure systems design 10. Experience with exploiting common security vulnerabilities **Preferred Qualifications:** Preferred Qualifications: 11. Product software engineering or product management experience 12. Experience in security consulting or other leadership-facing security advisory roles 13. Familiarity with cybersecurity investigations, abuse operations, and/or security incident response 14. Contributions to the security community (public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

ASK IT consulting is an equal opportunity employer, which is a global staffing, consulting and technology solutions company, offering industry-specific solutions to fortune 500 clients and worldwide corporations. We have openings for Security Analyst for one of our client in Columbia SC Job Description Looking for a CA, familiar with setting up and maintaining a C&A framework ..from scratch. 10+ years of experience of Information Assurance (IA) experience that includes obtaining and managing NIST-800 or DIACAP security certification and accreditation (C&A) of systems, networks, and sites. • Broad knowledge of NIST and Federal Information Security Management Act (FISMA) and the associated reporting requirements • Develop pre-briefs and post-briefs for senior level officials. • Reviewing and maintaining of certification plans and accreditations documentation, performing security, analyses and risk/vulnerability assessments, conducting security tests and evaluations, and the coordination of certification and accreditation activity for project teams • Strong Information assurance skills • Working in a constantly changing threat environment • Managing and leading efforts in the review, application and maintenance of information assurance policies and procedures • Must have experience working with FSO and DAA and writing Plan of action and Milestones (POA&M) and the importance of tracking these to completion. Additional Information Ask IT Consulting Inc.| 33 Peachtree St., Suite 100 |Holtsville, NY 11742 Website: **********************

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Security Analyst - Consultant (Information Systems Security Officer - ISSO) Years of Exp: 10+Years Contract Type: C2C\/W2 Duration: 12+ Months Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense. Summary We are seeking an experienced Senior ISSO \/ Security Analyst to oversee and actively participate in the day\-to\-day security and compliance requirements of complex information systems. The successful candidate will lead the implementation and enhancement of information systems security and compliance efforts based on industry standards and regulatory guidance such as FISMA, NIST, CMS MARS\-E, and HIPAA. Key Responsibilities · Serve as a cybersecurity consultant to leadership, business units, partners, and vendors. · Lead the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and other assessment and authorization artifacts. · Integrate RMF\/A&A tasks into the System Development Life Cycle (SDLC) as part of roles such as ISSO, Information Security Architect, or Security Control Assessor. · Perform security assessments for cloud services and vendor systems. · Conduct detailed architectural reviews and risk analysis for network design, system\/data access, firewall rules, vulnerability management, and baseline deviations. · Audit and assess internal systems and third\-party partners' information security controls. · Review contracts, business associate agreements, data usage\/sharing agreements, and other security\-related documents. · Act as primary point of contact for third\-party audits and assessments. · Collaborate with multiple teams to provide security and compliance recommendations. Required Skills 5+ years of IT experience with IBM System 390\/zSeries, Windows, Linux, databases (relational and non\-relational), networking infrastructure, and web applications. Prior experience in FISMA\-compliant programs. Experience with eGRC systems. Health IT experience. Certifications: ISC(2), ISACA, SANS GIAC, or equivalent required. Strong knowledge of FISMA, NIST, CMS MARS\-E, and HIPAA Security\/Privacy. Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio). Ability to work independently and collaboratively, manage multiple priorities, and engage diverse technical and non\-technical audiences. Preferred Skills · BS degree in Computer Science or a related discipline, or 10+ years of relevant experience. · Prior ITIL experience in Information Security Management. · Hands\-on experience with eGRC tools and security management frameworks. Requirements "}}],"is Mobile":false,"iframe":"true","job Type":"Contract","apply Name":"Apply Now","zsoid":"666380550","FontFamily":"Verdana, Geneva, sans\-serif","job OtherDetails":[{"field Label":"Industry","uitype":2,"value":"IT Services"},{"field Label":"Work Experience","uitype":2,"value":"5+ years"},{"field Label":"Salary","uitype":1,"value":"$50\/hr\-$60\/hr"},{"field Label":"City","uitype":1,"value":"Columbia"},{"field Label":"State\/Province","uitype":1,"value":"South Carolina"},{"field Label":"Zip\/Postal Code","uitype":1,"value":"29228"}],"header Name":"IT \- SCDHHS \- Security Analyst - Consultant","widget Id":"**********00072311","is JobBoard":"false","user Id":"**********00202003","attach Arr":[],"custom Template":"3","is CandidateLoginEnabled":true,"job Id":"**********20176095","FontSize":"12","google IndexUrl":"https:\/\/seu\-usa.zohorecruit.com\/recruit\/ViewJob.na?digest=kJX@DGU@qbph5QFEcbCUnqKvTLLwCc75yiAuq2FxPKM\-&embedsource=Google","location":"Columbia","embedsource":"CareerSite","indeed CallBackUrl":"https:\/\/recruit.zoho.com\/recruit\/JBApplyAuth.do","logo Id":"6zqn0ecd06046e4b149a3a6a61797510edd99"}

Job Description Security Analyst - Consultant (Information Systems Security Officer - ISSO) Years of Exp: 10+Years Contract Type: C2C/W2 Duration: 12+ Months Candidate MUST be a SC resident or willing to relocate to SC prior to starting the role at their own expense. Summary We are seeking an experienced Senior ISSO / Security Analyst to oversee and actively participate in the day-to-day security and compliance requirements of complex information systems. The successful candidate will lead the implementation and enhancement of information systems security and compliance efforts based on industry standards and regulatory guidance such as FISMA, NIST, CMS MARS-E, and HIPAA. Key Responsibilities · Serve as a cybersecurity consultant to leadership, business units, partners, and vendors. · Lead the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and other assessment and authorization artifacts. · Integrate RMF/A&A tasks into the System Development Life Cycle (SDLC) as part of roles such as ISSO, Information Security Architect, or Security Control Assessor. · Perform security assessments for cloud services and vendor systems. · Conduct detailed architectural reviews and risk analysis for network design, system/data access, firewall rules, vulnerability management, and baseline deviations. · Audit and assess internal systems and third-party partners' information security controls. · Review contracts, business associate agreements, data usage/sharing agreements, and other security-related documents. · Act as primary point of contact for third-party audits and assessments. · Collaborate with multiple teams to provide security and compliance recommendations. Required Skills 5+ years of IT experience with IBM System 390/zSeries, Windows, Linux, databases (relational and non-relational), networking infrastructure, and web applications. Prior experience in FISMA-compliant programs. Experience with eGRC systems. Health IT experience. Certifications: ISC(2), ISACA, SANS GIAC, or equivalent required. Strong knowledge of FISMA, NIST, CMS MARS-E, and HIPAA Security/Privacy. Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint, Visio). Ability to work independently and collaboratively, manage multiple priorities, and engage diverse technical and non-technical audiences. Preferred Skills · BS degree in Computer Science or a related discipline, or 10+ years of relevant experience. · Prior ITIL experience in Information Security Management. · Hands-on experience with eGRC tools and security management frameworks. Requirements

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************