Information security analyst jobs in Farmington Hills, MI - 83 jobs

Information Security Specialist | The Shyft Group, Inc. | Novi, MI Regular Employee | Salary Non-Exempt What you'll do: The IT Security Specialist is responsible for designing, implementing, and maintaining the organization's cybersecurity infrastructure across information technology, operational technology, and cloud environments. This position plays a vital role in safeguarding corporate systems, networks, and information by monitoring emerging threats and vulnerabilities. The individual in this role will work collaboratively with all departments across Aebi Schmidt Group to assess risk, coordinate vulnerability remediation, and develop defensible architectures to protect our assets. The IT Security Specialist will apply technical expertise to implement and manage security tools, automate key processes, and support incident response activities to minimize business impact and maintain continuity of operations. This position requires strong analytical and problem-solving skills, a comprehensive understanding of cybersecurity principles and technologies, and the ability to communicate effectively with both technical and non-technical stakeholders. Key responsibilities * Design, implement, and manage cybersecurity solutions across endpoints, networks, cloud, and identity management systems * Conduct vulnerability assessments and coordinate remediation efforts across IT and DevOps teams * Monitor, triage, and manage alerts from cybersecurity related tools and services * Leverage cybersecurity related tools and benchmarks to harden and build defensible IT systems and resources * Participate in incident response efforts including triage, containment, eradication, and post-incident efforts * Perform risk assessments on new technologies, vendors, and IT system changes * Automate repetitive tasks using Python, Bash, PowerShell, Terraform, or equivalent scripting languages What you need to be successful: * Bachelor's degree in computer science, information systems, cybersecurity, or related field * Relevant cybersecurity certifications such as CompTIA's Security+ * 5+ years of hands-on experience in cybersecurity or infrastructure security role * 3 - 5 years of experience in cloud technologies such as AWS and Azure * Strong understanding of networking and security protocols, firewalls, VPN's, SIEM, EDR/XDR, and vulnerability management * Knowledge of IAM concepts; idP, MFA, SSO, SAML/OAuth2, and the access policies that control them * Working knowledge of scripting or automation languages such as Python, PowerShell, or equivalent * Industry leading certifications such as CISSP, CEH, GICSP, or GSEC * Exposure to compliance standards such as ISO 27001, NIST, and PCI DSS * Experience with CI/CD pipelines or DevSecOps methodologies * Familiarity with the MITRE ATT&CK framework and threat hunting * Implement and manage OT cybersecurity controls across plant floor networks, control systems, and IT infrastructure * Data management and discovery tools such as Purview or other data loss prevention technologies Why The Shyft Group? Our people are our greatest asset, and your success is our success! That's why we provide comprehensive benefits that support your health, financial security, and work-life balance-so you can thrive both personally and professionally. * Health & Wellness: Medical, Dental, Vision, HSA/FSA, Wellness Plan * Financial Security: 401(k) with match, Disability, Life Insurance * Work/Life & Growth: Educational Reimbursement, EAP, Dependent Care At The Shyft Group, we don't just offer benefits-we invest in your well-being. Join us and experience the difference! Who we are: The Shyft Group is the North American leader in specialty vehicles, including last-mile delivery vans, work trucks, and motorhome chassis. Our 10 brands- Utilimaster, Blue Arc, Royal Truck Body, DuraMag, Magnum, Strobes-R-Us, Spartan RV Chassis, Red Diamond, Builtmore, and Independent Truck Upfitters- are powered by 3,000+ team members across the U.S. and Canada. Backed by 50 years of innovation and a supportive, entrepreneurial culture, we're leading the way in electrification and proudly ranked among Fortune's 100 Fastest Growing Companies. Equal Employment Opportunity (EEO) The Shyft Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, genetic information, status as a protected veteran or status as a qualified individual with a disability, or any other characteristic protected by applicable federal, state, or local law. If you have a disability and would like to request an accommodation in order to apply, please email us at *************************. The Shyft Group is an E-Verify Employer Shyft uses E-Verify, which is an online system operated by the U.S. Department of Homeland Security in partnership with the Social Security Administration to verify employment eligibility and validate social security numbers. Through participation in the E-Verify program, information entered on Form I-9 will be provided and compared to information available at both of these agencies. See posters for more details. E-Verify Notice U.S. Right to Work Notice.

Full-time Description We are seeking a proactive and detail-oriented Information Security Analyst to join our team and help safeguard our organization's digital assets. This role is critical in identifying vulnerabilities, responding to threats, and ensuring compliance with security policies and regulations. The ideal candidate will have a strong technical background, analytical mindset, and a passion for cybersecurity. Key Responsibilities: Monitor and analyze security alerts from various systems (SIEM, IDS/IPS, firewalls, etc.) Conduct vulnerability assessments and penetration testing; recommend remediation strategies Investigate security incidents and breaches, perform root cause analysis, and document findings Develop and maintain security policies, standards, and procedures Support compliance efforts (e.g., SOC, ISO 9001) and internal audits Collaborate with IT and business units to implement secure solutions and mitigate risks Manage identity and access controls, including privileged access management Stay current with emerging threats, vulnerabilities, and regulatory changes Requirements Qualifications: Bachelor's degree in computer science, Information Security, or related field (or equivalent experience) 2+ years of experience in cybersecurity or IT security operations Familiarity with security frameworks (e.g., SOC, NIST, CIS, ISO 9001) Hands-on experience with security tools (e.g., Splunk, Sentinel, CrowdStrike, Palo Alto) Strong understanding of network protocols, operating systems, and cloud security Relevant certifications preferred: CISSP, CISM, CEH, Security+ Preferred Skills: Experience with incident response and digital forensics Knowledge of scripting languages (Python, PowerShell) for automation Ability to work independently and in cross-functional teams Excellent communication and documentation skills.

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

About Us: Niterra North America, Inc., established in 1936 and formerly known as NGK Spark Plugs(U.S.A.), Inc., is a global leader in spark plug and oxygen sensor technology and quality. With a legacy of innovation and excellence, Niterra is evolving its business portfolio, leveraging core ceramic technologies to venture beyond traditional domains. The company is committed to developing solutions that address social issues and promote sustainability. About the Role: The ideal candidate must possess an enthusiastic and growth minded personality which will enable them to thrive in a dynamic environment. The candidate must be passionate about Cyber Security and possess strong technical knowledge in Security Domain. The Sr. Cyber Security analyst will serve as subject matter expert in various functions within the SecOps team utilizing solutions such as SIEM, EDR, VM, Firewall, Email Security, etc. The team member must be a team player who is eager to contribute to company success and meeting objectives. Essential Duties: Adhere to all company policies and procedures, which include IATF, ISO, ISMS, QMS, TISAX and Safety related policies. Investigate security incidents and perform in-depth analysis to identify security threats and perform remediations. Deploy/implement security tools to protect company assets. Review logs to detect anomalies which may lead to security breaches. Serve as point of contact for assigned security vendors responsible for managed services and handle escalations. Subject matter expert on vulnerability management to identify vulnerabilities and performin remediation. Conduct/assist with performing penetration testing to identify security weaknesses and offer solutions to address identified gaps. Participate/lead global incident response activities. Subject matter experts on various security functions such as endpoint security, EDR, MDR, Firewall, Email Security, Spam filtering, PAM, etc. Leverage automation to streamline workflow to increase efficiency and productivity. Review, create or document standard operating procedures. Perform periodic user access reviews and governance. Assist with internal/external audits and implement security controls based on audit findings. Experience, Education and Certification: 5 plus years of experience in SecOps functions including but not limited to Incident response, EDR, MDR, Email security, Endpoint Security, IAM, Firewall, etc. Bachelor's degree in computer science or related field Industry standard information security certifications (CompTIA Security +, Network +, CASP+, CISSP, GCIA, Digital Forensic, Ethical hacking, etc.) are a plus. In-depth knowledge of TCP/IP networking, Routing, etc. Experienced in Security functions including Firewall, IDS/IPS, Email Security, Endpoint Security, SIEM, EDR, Vulnerability Scanning, etc. Experience with proactive threat hunting exercise. Experience in leading security investigation and incident response and capable of documenting/conducting RCA in support of investigations. Familiar with NIST CSF and other security controls/guidelines for incident response Knowledge of Malware, ransomware behaviors and techniques Ability to coordinate, gain trust of business stakeholders and maintain third party vendor relationships. Able to work under pressure in critical circumstances. Why Work for Niterra? Comprehensive Health Benefits: Medical, dental, vision, and life insurance Financial Security: Short-term and long-term disability coverage Retirement Savings: 401(k) plan with a generous company match of up to 6% Time Off: Generous paid time off, including vacation, sick leave, and holidays Work-Life Balance: Paid maternity and paternity leave

About Us: Niterra North America, Inc., established in 1936 and formerly known as NGK Spark Plugs(U.S.A.), Inc., is a global leader in spark plug and oxygen sensor technology and quality. With a legacy of innovation and excellence, Niterra is evolving its business portfolio, leveraging core ceramic technologies to venture beyond traditional domains. The company is committed to developing solutions that address social issues and promote sustainability. About the Role: The ideal candidate must possess an enthusiastic and growth minded personality which will enable them to thrive in a dynamic environment. The candidate must be passionate about Cyber Security and possess strong technical knowledge in Security Domain. The Sr. Cyber Security analyst will serve as subject matter expert in various functions within the SecOps team utilizing solutions such as SIEM, EDR, VM, Firewall, Email Security, etc. The team member must be a team player who is eager to contribute to company success and meeting objectives. Essential Duties: * Adhere to all company policies and procedures, which include IATF, ISO, ISMS, QMS, TISAX and Safety related policies. * Investigate security incidents and perform in-depth analysis to identify security threats and perform remediations. * Deploy/implement security tools to protect company assets. * Review logs to detect anomalies which may lead to security breaches. * Serve as point of contact for assigned security vendors responsible for managed services and handle escalations. * Subject matter expert on vulnerability management to identify vulnerabilities and performin remediation. * Conduct/assist with performing penetration testing to identify security weaknesses and offer solutions to address identified gaps. * Participate/lead global incident response activities. * Subject matter experts on various security functions such as endpoint security, EDR, MDR, Firewall, Email Security, Spam filtering, PAM, etc. * Leverage automation to streamline workflow to increase efficiency and productivity. * Review, create or document standard operating procedures. * Perform periodic user access reviews and governance. * Assist with internal/external audits and implement security controls based on audit findings. Experience, Education and Certification: * 5 plus years of experience in SecOps functions including but not limited to Incident response, EDR, MDR, Email security, Endpoint Security, IAM, Firewall, etc. * Bachelor's degree in computer science or related field * Industry standard information security certifications (CompTIA Security +, Network +, CASP+, CISSP, GCIA, Digital Forensic, Ethical hacking, etc.) are a plus. * In-depth knowledge of TCP/IP networking, Routing, etc. * Experienced in Security functions including Firewall, IDS/IPS, Email Security, Endpoint Security, SIEM, EDR, Vulnerability Scanning, etc. * Experience with proactive threat hunting exercise. * Experience in leading security investigation and incident response and capable of documenting/conducting RCA in support of investigations. * Familiar with NIST CSF and other security controls/guidelines for incident response * Knowledge of Malware, ransomware behaviors and techniques * Ability to coordinate, gain trust of business stakeholders and maintain third party vendor relationships. * Able to work under pressure in critical circumstances. Why Work for Niterra? * Comprehensive Health Benefits: Medical, dental, vision, and life insurance * Financial Security: Short-term and long-term disability coverage * Retirement Savings: 401(k) plan with a generous company match of up to 6% * Time Off: Generous paid time off, including vacation, sick leave, and holidays * Work-Life Balance: Paid maternity and paternity leave

ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: [email protected] #CJ $92,213.33 - $125,146.66 a year We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

How to Apply For questions about this position or to request a reasonable accommodation during the application process, email [email protected]

The Application Security product manager is looking for an Application Security Analyst who will be responsible for working with application development team to analyze application code vulnerabilities and involved in running security scans which include but not limited to SAST, DAST, IAST, Mobile, and ad-hoc dynamic testing. Also, Analyst will play role in extending WAF deployment for large number of applications. The candidate will play a key role in a major cybersecurity transformation initiative of “Shift left and Secure Early” as well as implementing additional security controls in SDLC. The role entails taking responsibility of analyzing security vulnerabilities and capability to provide mitigation solutions to fix issues by writing secure code, providing guidance to application teams, and coordinating with cross functional teams across the platform. Key responsibilities: Hands-on experience working with DevSecOps pipeline using CICD automation tools like Jenkins, TeamCity, GitLab, GitHub Action, Checkmarx, GitHub Advance Security, BurpSuite, and open-source tools. Implement Application Cyber Security Controls/Policies and standards developed by Application Security Program. Lead deployment of WAF for existing and new applications Ability to demo security vulnerability to application teams. Drive application security issues to a resolution. Provide a clear guidance to application teams during vulnerability mitigation effort Conduct application security assessment using standard Stellantis application security tools Collect and report status on application security assessments including milestones, deliverables, timing, tasks, risk areas, and status Categorize and recommend assessment strategies for existing and new application development Coach development and supplier teams on application security Develop user training material and conduct training sessions

Computech Corporation provides IT and consulting services to various customers across the globe. We are a Minority Certified Company with over 15 years of industry experience. Our global delivery model and proven track record enable companies to realize improved business efficiency and increased profitability. Job Description As an Information Security Product Manager, you will work with highly skilled engineers, key business decision makers, and IT leadership. You will define the future direction for our technical security services and bring about the realization of that vision. You will work with vendors and the ecosystem, to help us stay abreast in new security technologies and to identify what capabilities to invest in. Qualifications Top 3 Skills required • Design, architecture, and implementation of centralized security technology solutions at large enterprises - 5 years • Operations experience in identity management, key management, or other security domains - 3 years • Leadership role in the development or delivery of information security services - 3 years Background Required • In depth knowledge of key information security domains, including authentication, authorization, access control, and encryption • Demonstrated experience in designing and implementing enterprise class security solutions • Familiarity with agile and waterfall development methodologies • Ability to translate the information security domain to IT and business domains, as well as communicate complex technologies in a clear and concise manner Preferences • Security operations experience, such as identity management or key management. • Previous leadership experience, either through leading teams and/or initiatives • Success in large corporate environments Role and Responsibilities • Internalize the team's mission and strategies, including key initiatives • Distill the technical vision for the team, including the future state for our centralized security technologies. This will span authentication, authorization, encryption, and other related services • Understand our customers; leverage feedback and learning to guide improvements to the information security customer experience • Gather, understand, and prioritize the business needs for centralized, shared security technology. This will be a comprehensive and ongoing exercise. • Build and maintain relationships with service customers and key stakeholders. This includes o representing the team with stakeholders, communicating on behalf of stakeholders within the team, and being the team's inbound/outbound point of contact o communicate evangelizing our mission and the value our services deliver o gather feedback from customers and stakeholders to ensure on-going suitability of service features o communicating regularly with senior IT leadership on key security metrics and service development successes • Facilitate and govern the full life-cycle of technical security service components, including o guiding the technical security control architecture o approving service life-cycle transitions • Prioritize and launch service development initiatives, o interfacing with business and technical stakeholders to define scope o establishing success criteria o estimating work efforts o securing funding • Seek new business opportunities that are enabled by our services • Identify potential areas for service improvements, including through o new technologies and vendor relationships. This also means Influencing selection of security technologies and managing relationships with vendor partners o partnering with information security research, service development, and security delivery teams • Assisting in planning for skill, methodology, technology, and facility needs for future services and capabilities Qualifications - Education and/or experience • Bachelors degree • Minimum 7 years of experience in information security architecture or engineering Qualifications - Other skills and abilities [soft skills] • Excellent verbal and written communication skills • Ability to influence and motivate people across a wide range of functional areas • Strong customer service skills • Capable in managing conflict and driving win-win outcomes • Highly organized; prepared to juggle multiple tasks while keeping focus on priorities • Comfortable switching from big picture to detail oriented activities • Passionate learner; able to rapidly digest, analyze, and apply new knowledge Additional Information All your information will be kept confidential according to EEO guidelines.

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers. If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Unless specifically stated otherwise, this role is "On-Site" at the location detailed in the job post. Clearance Level - Must Be Able to Obtain None U.S. Person Required Yes Travel Percentage Clearance Level - Must Currently Possess Secret U.S. Citizenship Required Yes Is Relocation Available Yes Job Description At BAE Systems, we're not only working on the cutting edge of technology - but to secure it, every day. Our Sterling Heights location is actively seeking a Senior Security Specialist to serve as a front-line resource for that mission. Within this role, the Senior Security Specialist will partner with functional leads, subcontractors, procurement, and teammates to ensure all contract deliverables are met and secured. The Senior Security Specialist plays a pivotal role in securing our facilities, technologies, and organization. Reporting directly to the Security Manager, you'll contribute to our most crucial areas such as Security, Emergency Services, and Business Continuity. If a sense of duty, safety, and responsibility for your teammates drives you in everything you do - we'd love to hear from you! Clearance: This role requires an active Secret Security Clearance Location/Schedule/Travel: This will be an onsite role where you will work at the Sterling Heights, MI site This role will work on a 9/80 schedule where you will have every other Friday off The position will require Responsibilities: Serve as a member of the Security Team and support security measures in accordance with Department of War contract terms and conditions, government requirements, and company policies Work cross-functionally to support Security strategies related to Industrial Security programs (Security, Fire, Emergency Services, Business Continuity) Interact with functional leads and engage with government customers and security leaders in support of DOW programs, contracts, and proposals Establish professional relationships with law enforcement and corporate legal, human resources, facilities, and other business departments Administer security programs and procedures for classified/unclassified and proprietary materials, documents, and equipment Support physical security requirements, risk evaluations, audits, investigations, and protection of assets Utilize video and access control systems, case management software, and forensic evidence collection equipment Support data management, analytics, and reporting, including security operations plans and documented event reports Support security best practices and process improvements to enable program execution Work with a wide range of sensitive and confidential issues Analyze both data and situations for appropriate response Positively affect organizational dynamics Additional Qualifications/Responsibilities Required Education, Experience, & Skills Must have an active Secret Security Clearance Experience in Industrial Security within US Government, Defense, Corporate Security, or related environment Experience in Security risk assessment, investigations, and audits Experience in Security equipment and software, such as, security access, cameras, and alarm systems Experience in Microsoft Office: Word, Excel, PowerPoint, Microsoft Project, etc. Ability to use discretionary judgment to resolve both routine and non-routine issues Ability to work in a team-based environment with other business professionals Ability to multi-task within a rapidly changing environment Ability to meet deadlines Strong organizational and analytical skills Excellent written and verbal communications Preferred Education, Experience, & Skills Professional Certifications, such as, ISP, CPP, or PSP Experience in industrial security for a DoW contractor under the NISP Experience in Military Security regulations and operating procedures Experience with SIMS, NISS, or DISS Experience with Physical Security Projects Knowledge of business continuity and crisis management planning and procedures Knowledge on information security planning measures Strong investigative and case management skills Pay Information Full-Time Salary Range: $82779 - $140723

Provides reliable and responsive support to FPL staff and patron workstations. Responds to calls for help, troubleshoots and solves hardware and software problems. Provides support for Crestron audiovisual system for FPL meeting room. Setup and takedown of AV equipment such as laptops, digital camera, and digital projector. Consults IT Manager on best practices and implementation methodology. Duties and Responsibilities Provide support to staff and public workstations. Primary responsibility of this position is to support staff and public workstations by investigating and resolving computer hardware and software problems of end users. Much of this work is done remotely with occasional need for physical visits to another area of the facility. % of time: 80 Secure and lockdown workstations through use of security and lockdown tools. % of time: 5 Identify and correct printing problems through use of web interfaces. % of time: 5 Document workstation changes and configuration. Thorough understanding of documentation principles and updates. % of time: 2 Software installations. % of time: 5 Serve as backup for other IT staff. % of time: 1 Training staff on new software and technologies. % of time: 1 Other duties as assigned, including conveyor troubleshooting. % of time: 1 Qualifications and Requirements Education B.S. in Computer Science, Computer Engineering, Information Technology or equivalent. Microsoft Certified Professional (MCP) or CompTIA A+ certification desired. Must have: Ability to effectively and easily communicate technical topics to novices. Ability to project a positive, upbeat attitude and excellent interpersonal skills even under stress. Ability to work and communicate effectively with library management and staff. Ability to work in a team environment. Ability to learn new and emerging technologies. Understanding and utilize IT best practices. Ability to troubleshoot Windows 2000 and Windows XP workstations. Ability to troubleshoot Dell print devices. Ability to develop and maintain effective knowledge-based relationships with vendors. Thorough understanding of PC hardware, components and parts. Ability to document any and all workstation changes and updates. Understanding of troubleshooting ticket systems. Solid understanding of NTFS and Share permissions. Ability to configure TCP/IP. Knowledge of workstation imaging software. Knowledge of workstation security software. Understanding of Windows Registry and important keys. Experience with enterprise management software strongly desired. Web development skills strongly desired. Strong command line experience desired. Equipment Operation PCs, printers, library automation system, scanners, RFID scanners, self-check machines, faxes, self-check equipment, application software, and some PC hardware. Must be able to lift 50 pounds. Work Week 40 hour work week, pager accessible with additional hours as needed. Provides reliable and responsive support to FPL staff and patron workstations. Responds to calls for help, troubleshoots and solves hardware and software problems. Provides support for Crestron audiovisual system for FPL meeting room. Setup and takedown of AV equipment such as laptops, digital camera, and digital projector. Consults IT Manager on best practices and implementation methodology. Duties and Responsibilities Provide support to staff and public workstations. Primary responsibility of this position is to support staff and public workstations by investigating and resolving computer hardware and software problems of end users. Much of this work is done remotely with occasional need for physical visits to another area of the facility. % of time: 80 Secure and lockdown workstations through use of security and lockdown tools. % of time: 5 Identify and correct printing problems through use of web interfaces. % of time: 5 Document workstation changes and configuration. Thorough understanding of documentation principles and updates. % of time: 2 Software installations. % of time: 5 Serve as backup for other IT staff. % of time: 1 Training staff on new software and technologies. % of time: 1 Other duties as assigned, including conveyor troubleshooting. % of time: 1 Qualifications and Requirements Education B.S. in Computer Science, Computer Engineering, Information Technology or equivalent. Microsoft Certified Professional (MCP) or CompTIA A+ certification desired. Must have: Ability to effectively and easily communicate technical topics to novices. Ability to project a positive, upbeat attitude and excellent interpersonal skills even under stress. Ability to work and communicate effectively with library management and staff. Ability to work in a team environment. Ability to learn new and emerging technologies. Understanding and utilize IT best practices. Ability to troubleshoot Windows 2000 and Windows XP workstations. Ability to troubleshoot Dell print devices. Ability to develop and maintain effective knowledge-based relationships with vendors. Thorough understanding of PC hardware, components and parts. Ability to document any and all workstation changes and updates. Understanding of troubleshooting ticket systems. Solid understanding of NTFS and Share permissions. Ability to configure TCP/IP. Knowledge of workstation imaging software. Knowledge of workstation security software. Understanding of Windows Registry and important keys. Experience with enterprise management software strongly desired. Web development skills strongly desired. Strong command line experience desired. Equipment Operation PCs, printers, library automation system, scanners, RFID scanners, self-check machines, faxes, self-check equipment, application software, and some PC hardware. Must be able to lift 50 pounds. Work Week 40 hour work week, pager accessible with additional hours as needed.

The Application Security product manager is looking for an Application Security Analyst who will be responsible for working with application development team to analyze application code vulnerabilities and involved in running security scans which include but not limited to SAST, DAST, IAST, Mobile, and ad-hoc dynamic testing. Also, Analyst will play role in extending WAF deployment for large number of applications. The candidate will play a key role in a major cybersecurity transformation initiative of “Shift left and Secure Early” as well as implementing additional security controls in SDLC. The role entails taking responsibility of analyzing security vulnerabilities and capability to provide mitigation solutions to fix issues by writing secure code, providing guidance to application teams, and coordinating with cross functional teams across the platform. Key responsibilities: Hands-on experience working with DevSecOps pipeline using CICD automation tools like Jenkins, TeamCity, GitLab, GitHub Action, Checkmarx, GitHub Advance Security, BurpSuite, and open-source tools. Implement Application Cyber Security Controls/Policies and standards developed by Application Security Program. Lead deployment of WAF for existing and new applications Ability to demo security vulnerability to application teams. Drive application security issues to a resolution. Provide a clear guidance to application teams during vulnerability mitigation effort Conduct application security assessment using standard Stellantis application security tools Collect and report status on application security assessments including milestones, deliverables, timing, tasks, risk areas, and status Categorize and recommend assessment strategies for existing and new application development Coach development and supplier teams on application security Develop user training material and conduct training sessions

WHAT WE ARE LOOKING FOR We are seeking an experienced and dedicated Data Privacy Manager and Information Security Officer to join our organization. This dual-role position ensures the confidentiality, integrity, and availability of data, while ensuring compliance with relevant privacy laws, regulations, and best practices. The ideal candidate will lead efforts to safeguard sensitive data and implement robust information security measures. Including, but not limited to: * Assessing local data protection requirements and activities. Implementing and maintaining the Group-wide data protection management system in his area of responsibility (if applicable, by means of local implementation guidelines). * Taking on country-wide data protection issues/tasks, supported by the responsible Data Privacy Officer. * Coordination of data privacy projects. * Interface to the responsible Data Privacy Officer. * Data breach management. * Processing of and/or support with data protection related inquiries. * If necessary, support during inspections by the relevant authorities. * Coordination of the Data Privacy Manager in his region * Identifies the need of further contact partners as potential Data Privacy Manager in the region. * Attends to general inquiries from supervisory data protection authorities as first responder. At a minimum, the Regional Data Privacy Manager shall act as second responder when, for example, inquiries come directly to management. * Primary Contact within the legal entity for Rheinmetall's data privacy organization. * Primary data protection counterpart for the management and employees within the legal entity. * Regular exchange with the relevant Data Privacy Officer. * Responsible for data protection related advice and support of business departments. * Data protection related support of business departments with the introduction of new or change of existing processes and/or assets (especially IT-solutions). * Develop and enforce the organization's information security policies, standards, and procedures. * Conduct risk assessments to identify and mitigate information security vulnerabilities. * Oversee the implementation of security technologies, including firewalls, intrusion detection systems, and encryption tools. * Lead the response to information security incidents, including investigations and post-incident reviews. WHAT QUALIFICATIONS YOU SHOULD HAVE * Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Law, or a related field. * At least 5 years of experience in data privacy, information security, or a related field. * In-depth knowledge of global data protection regulations and frameworks (e.g., GDPR, CCPA). * Strong understanding of information security principles, practices, and technologies. * Certifications such as CIPP/E, CIPM, CISSP, CISM, or equivalent are highly desirable. * Excellent analytical and problem-solving skills. * Strong communication and interpersonal skills to interact with all levels of the organization. * Ability to manage multiple projects and priorities simultaneously. * High level of integrity and a strong commitment to maintaining confidentiality.

Together, We Enhance Innovation and Growth i2G specializes in advanced physical electronic security and life safety solutions. I2G has proven experience in surveillance, access control, and intrusion detection systems, biometrics, fence sensors, radars, ground sensors, anti-drone technologies, and more. We excel in design, project management, commissioning, and enterprise technology integrations. i2G's mission is to provide the products and services that meet our customers' needs to give them a vital advantage in today's market, helping to protect what matters most. This position will provide engineering design and support for security solutions for new and existing clients while working alongside internal teams, external teams, clients, and subcontractors to ensure project success. We are looking for a motivated and knowledgeable Jr. Security Engineer to join our team. The ideal candidate will have an understanding of standard Low voltage systems ideally in the Electronic Security technology space, to include Access Control Systems (ACS), Intrusion Detection Systems (IDS), Closed-Circuit Television (CCTV), and supporting equipment such as computer software/hardware, and networking infrastructure. This candidate will excel in critical thinking, have the ambition to learn and grow, and possess a strong desire to perform at the top of their abilities. Responsibilities Review architectural, electrical, telecommunication, and security engineering floor plans, riser drawings, device schedules, and detail drawings. Design, develop, and implement solutions for system installations, upgrades, repairs, and conversions. Review Field Site Survey documentation and provide technical assistance with RFI/RFP responses. Create solution design documentation, including drawings, Bills of Materials (BOMs), permitting packages and solution design summaries. Learn and Maintain familiarity with current and emerging electronic security technologies, such as access control, video surveillance, intrusion detection, biometrics, and industry-leading vendors On the job Training will be provided to increase skills in all key responsibilities listed above, including hands on field work with installation and integration teams to better understand design and implementation requirements. Qualifications Mechanical, Engineering, Plumbing Engineering degree or a minimum of 2 years of previous experience in the industry. An associate or bachelor's degree in a relevant field if no previous experience, a comparable amount of experience in the appropriate field may be substituted. Experience in the design and planning of MEP systems. Ability to make load calculations associated with power, data, conduit fill ratios and/or HVAC systems. Ability to manage time and multiple tasks without supervision. Strong organizational skills and attention to detail. Excellent analytical and problem-solving skills. Exceptional presentation, writing, verbal, and written customer communication skills. Experience with computer programs such as Microsoft Office, Excel, Adobe, etc. is preferred. Knowledge of Microsoft Project, Visio, BlueBeam, AutoCAD, or Revit is a plus. Company Overview This is a Low Voltage Security Estimator career opportunity with i2G Systems. Learn more about i2G: *************************************** "Kastle Systems Makes Strategic Investment in i2G Systems, Strengthening Leadership in Serving High-Security Industries and High-Value, Large Scale Facilities" Read More About the Partnership Here: *********************************************************************************************************************************************************************************** Equal Opportunity Statement We are an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, marital status, pregnancy or any other basis protected by applicable federal or state laws. #JuniorSecuritySystemsDesignEngineer #SecuritySystemDesign #AccessControlDesign #VideoSurveillanceDesign #IntrusionDetectionSystems #SecuritySystemsEngineering #SecuritySystemShopDrawings #SecuritySystemLayouts #SystemRiserDiagrams #EngineeringSpecifications #SecurityDesignDocumentation #SecurityProposalDesign #BidPreparation #SecuritySystemEstimation #SecuritySystemSubmittals #AutoCADSecurityDesign #RevitBIMSecurityDesign #SecuritySystemsIntegration #TechnicalSupportForSecurityDesign #SecuritySolutionsEngineering #PhysicalSecuritySystemDesign

Do you want to learn and grow in a great company? Do you want to join a team that protects the most critical networks of the best defense contractor in the country? GDLS is looking to hire a mid career-level Information Systems Security Officer, the perfect place to challenge your Information Technology skills. Company Information: General Dynamics is a successful Fortune 100, global aerospace and defense company, with over 90,000 employees world-wide. General Dynamics Land Systems, a business unit of General Dynamics, has a strong foundation of delivering core engineering and manufacturing capabilities to our clients for military vehicles. Our team is focused on continuous process and productivity improvements that reduce product costs, while increasing troop safety and effectiveness. Land Systems continues to work with the US Armed Forces and its Allies to ensure these vehicles remain survivable, relevant, flexible, affordable and capable of addressing a dynamic threat environment. What We Offer: Starting your career or you are an experience professional, we offer a Total Rewards package that is Impactful and built for you. * Healthcare including medical, dental, vision, HSA and Flex Spending * Competitive base pay and incentive pay that rewards individual and team performance, and comprehensive benefits. * 401k Match (6%) * Educational Assistance * 9-80 Work Schedule (This position's standard work schedule is a 9/80. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off) * Onsite cafeteria, fitness center, and outdoor fitness track Responsibilities to Anticipate/Expect: * Interprets and applies NISPOM and DAAG requirements on classified systems and networks. * Writes and maintains System Security Plans (SSPs), Plan of Action and Milestones (POAMs) and other security and accreditation related documentation. * Administrates eMASS Systems of Record to establish, maintain, modify, and decommission IAW Risk Management Framework lifecycles. * Conducts periodic self-inspections and continuous monitoring of classified systems and networks. * Assesses and processes system account requests in accordance with company and regulatory requirements. * Ensures configuration management (CM) for security-relevant software, hardware and firmware is maintained and documented. * Ensures systems are operated, maintained and disposed of in accordance with DoD/NISPOM requirements as outlined in the relevant SSP. * Utilizes tools such as Splunk, ACAS, Teramind, and others to validate system performance and user activity. * Collaborates with the ISSM to develop and recommend system-based solutions for program needs. * Assists in Incident Response to detect, analyze, and respond to security events and incidents, to include containment, eradication, and recovery IAW company and USG requirements. * Researches, identifies, and recommends IT equipment meeting NISPOM and/or SCIF requirements to ISSM and IT Management for lab procurement. * Documents, tracks, and enforces user training and form requirements for access to classified system accounts. * Participates in security inspections and assessments such as SVA, A&A, and CORA. Minimum Requirements: * MUST POSSESS and be able to maintain a U.S. Government SECRET or higher clearance. * MUST be a United States citizen * 7 year minimum of experience in a government/industrial security career field, including: * 3 year minimum of experience in Risk Management, INFOSEC, or IA role. * 1-3 year minimum of experience in a IT or system administration role. * Bachelor of Science degree majoring in Computer Science, Information Science and Technology, Information Assurance, Risk Management, or Cybersecurity required. Equivalent alternates considered. * Must have one of the following certifications (RMF or more advanced certificates considered): * Security+ CE * CISA * CAP * CASP+ * Must have very good written and verbal communication skills. * Must be detail-oriented, independent and organized. * Must have experience with Microsoft Office products: Word, Excel, and PowerPoint. * Must have experience with ACAS, SIEM, SCAP Compliance Checker, and STIG Viewer. * Preferred experience with certification/authorization requirements as outlined in the NISPOM, RMF for DoD IT/DIACAP, ICD 503/DCID, DJSIG/JDCSISSS, JSIG/JAFAN & NIST RMF GDLS considers factors such as, scope/responsibilities of the position, candidate experience and education/training background, in addition to local market comparable and business considerations when extending an offer. Headquartered in Reston, Virginia, General Dynamics is a global aerospace and defense company offering a broad portfolio of products and services in business aviation; ship construction and repair; land combat vehicles, weapons systems and munitions; and technology products and services. General Dynamics employs more than 100,000 people across 65 countries worldwide and in all 50 U.S. states, more information is available at *********** General Dynamics Land Systems, is a business unit of General Dynamics, and is an innovative leader of ground combat systems' equipment and software for our clients. Our performance-driven team partners with the U.S. Army, U.S. Marine Corp and other militaries across the Globe to ensure that next generation ground combat vehicles are ready to protect our fighting men and women in uniform. General Dynamics Lands Systems provides a competitive compensation package, site specific flexible work schedules, 401(k) with Company Match; Bonus Eligibility, Employee Development Opportunities, Tuition Reimbursement, On-site Amenities, and comprehensive Medical/Dental/Vision Insurance. As an Equal Opportunity Employer, General Dynamics Land Systems ("GDLS") provides all persons with equal opportunity and access to all aspects of employment process, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, marital status, age, disability, status as a protected veteran, or membership in any group protected by federal, state, or local anti-discrimination laws. GDLS also is committed to providing reasonable accommodations to individuals with disabilities and disabled veterans.. If, due to a disability, you need an accommodation to search or apply for an opportunity with GDLS, please call ************ or send an e-mail to ***************** for assistance and let us know the nature of your request and your contact information. Share: mail Tweetshare to twitter Share on Facebookshare to facebook Share on LinkedInshare to linkedin Apply Now Similar Jobs Interested in working for Land Systems? Join our Talent Network Today! Join our Talent Network * Search Jobs * Saved Jobs * Careers Home facebook twitter linkedin youtube instagram 2026 General Dynamics US. All rights reserved.

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? As a key member of our Information Technology group, you'll play a critical part in shaping the future of mobility. If you're looking for the chance to leverage advanced technology to redefine the transportation landscape, enhance the customer experience and improve people's lives, this is the opportunity for you. Join us and challenge your IT expertise and analytical skills to help create vehicles that are as smart as you are! The Vehicle Cyber Security Systems Engineer will serve a key role in shaping the future of product development security for vehicles (e.g. Connected Vehicle, Autonomous Vehicle, Electric Vehicle, Ford Smart Mobility, and V2X Security). The engineer will work within cross functional team to do/support the following: You'll have... Bachelor's degree in Electrical Engineering, Computer Engineering, Software Engineering, Computer Science, or Cybersecurity OR a combination of education and experience 5+ years of experience with embedded and/or automotive systems 3+ years of experience with in-vehicle network architecture, modules, and protocols (CAN, etc.) Ability to develop and maintain engineering documentation including requirements, specifications, test plans, etc. Ability to work independently and collaboratively Strong communication and analytical skills Even better, you may have... Experience with Hardware Security Module (HSM) and Secure Hardware Extension (SHE) Experience with coding (i.e., C, C++, C# Python, Java, CAPL, JQL) Experience with JIRA and Kanban boards for project management Familiar with vehicle system (i.e., capabilities of ECUs on a vehicle) Familiar with automotive standards (i.e., ISO 14229-1, ISO 21434) Familiar with quality tools and methodologies (i.e., FMEA, DVP) Able to work following an agile methodology Knowledge of Ford's internal engineering systems and requirements Comfortable working in a fast-paced and innovative environment where problems are not always well-defined. Experience advocating and driving adoption of industry standard methodologies. Project management skills, including identifying and scheduling process steps, determining resources and staff required to successfully complete research projects. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder…or all of the above? No matter what you choose, we offer a work life that works for you, including: • Immediate medical, dental, vision and prescription drug coverage • Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more • Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more • Vehicle discount program for employees and family members and management leases • Tuition assistance • Established and active employee resource groups • Paid time off for individual and team community service • A generous schedule of paid holidays, including the week between Christmas and New Year's Day • Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 6-8. Visa sponsorship is not available for this position. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. #LI-Hybrid What you'll do... Perform product Cyber Security assessments on projects of multiple Ford product lines Compliance reviews on features, modules as defined in the Ford Cyber Security engineering process in compliance with ISO 21434, UNECE R155, UNECE WP.29 and any other required relevant global cyber security requirements, regulations. Using that understanding to standardize all business operations and establish clear, documented protocols. Have the ability to review technical documentation to assess compliance. Manage and apply cybersecurity requirements into product design and development life cycle from requirement to testing with required deliverables Work with feature and ECU owners to manage the progression of each feature / ECU through development to ensure security by design from inception Ensure features, components, systems are designed using robust engineering processes including threat analysis, risk assessment, adoption of security requirements, security audits, and vehicle ecosystem assessments Develop and utilize global supplier expertise to meet cyber security expectations Proficient in JIRA. Process, requirement improvement support, for future reference, particularly in the event of an audit by a regulatory agency. Provide presentations to management (program milestones, security governance board, etc.)

Insight Global is seeking a highly skilled Information Systems Security Officer (ISSO) to support a Department of Defense (DoD) customer in Warren, MI. This role is ideal for a cybersecurity professional with a strong background in risk management and system security who thrives in a collaborative, mission-driven environment. As an ISSO, you will report directly to the Information Systems Security Manager (ISSM) and the Information System Owner (ISO), operating with minimal supervision. You'll play a critical role in maintaining and enhancing the security posture of DoD information systems, ensuring compliance with federal standards and frameworks. $30/hr to $60/hr : Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages while on contract for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law. We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements - 3+ years of experience as a ISSO - Strong understanding of RMF, NIST standards, and DoD security protocols - Bachelors Degree in Cybersecurity, Engineering, or related field - Ability to obtain a DoD Secret Clearance - Active interim or secret clearance

This position shall perform cross-functional collaboration with the other members of the information security team, and the business to manage the identification, mitigation, resolution and acceptance/deferral of information security risks to the organization. Collaborate with project teams to interpret any security risks found during certification processes;help define mitigating controls and design plans for remediation, or alternatively assist with the exception process. Maintain continuity and consistency between all business unit level information protection programs. Manage the information security risk identification, mitigation, acceptance, monitoring and reporting processes. Collaborate with Governance, Risk and Performance team on metrics and reporting. Required Skills: Identity and Access Management (IAM) experience Clear understanding of IT audit methodologies. Exceptional written and oral communication skills Familiarity with IAM tools. Knowledge in auditing, internal audit standards, fraud awareness, and professional ethical standards and enterprise risk management Three years of combined IT audit and security work experience with a broad range of exposure to systems analysis, application development, database design and administration and 1 year of experience with IT security required. Desired professional certification in audit and/or technical security areas

Job DescriptionISSOEmployment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success:- Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership.- Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies.- Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO).- Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes.- Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF.- Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.- Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring.- Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications:- Bachelor's Degree.- A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc.- eMASS experience.- Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher.- Strong desktop publishing skills using Microsoft Word and Excel.- Experience with industry writing styles such as grammar, sentence form, and structure.- Ability to multi-task in a deadline-oriented environment. Ideally, you will also have:- CISSP, CASP, or a similar certificate is preferred.- Master's Degree in Cybersecurity or related field.- Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking.- Demonstrated ability to work well independently and as a part of a team.- Excellent work ethic and a high commitment to quality. Our Commitment:Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package.Health, Dental, and VisionLife Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation!Explore additional job opportunities with CGS on our Job Board:**************************************** more information about CGS please visit: ************************** or contact:Email: ******************* #CJ We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.