Information security analyst jobs in Grand Prairie, TX

Responsibilities: Oversee SOC operations during assigned shifts, ensuring efficient workflow, proper escalation procedures, adherence to SLAs, and effective communication between analysts. Lead investigations and response to complex security incidents impacting OT systems, networks, and applications. This includes coordinating efforts with other teams and business units (e.g. Networking, Architecture, CIP Compliance). Perform in-depth analysis of security alerts and logs common in ICS/SCADA systems to identify indicators of compromise (IOCs). Make real-time decisions on incident severity, containment strategies, and escalation paths and actions taken by Tier 1 & 2 analysts for incidents. Evaluate and provide feedback on the performance of security technologies (e.g. SIEM, SOAR, IIDS/IPS) used in the SOC. Identify and oversee the optimization of detection rules to reduce false positives.

The Deputy, Global Information Security Officer is responsible for leading the security strategy roadmap, consulting with security solution partners and defining company security policies and standards. Will have oversight of global security operations, incident response and both US and international Aerospace and Defence (A&D) security and compliance. The right candidate will have the required presence, confidence, and knowhow to quickly gain trust, credibility, and respect. They will have a proven record of taking a fact-based approach to the assessment of the current state of operations and the implementation of pragmatic solutions to address business needs. They will extract maximum value from existing technology investments while leveraging industry trends to introduce new and relevant technologies to deliver the necessary protection to the enterprise. Detailed Description: Performs tasks such as, but not limited to, the following: Drive the overall security strategy for Celestica, aligning security initiatives with business objectives, influencing stakeholders, and securing buy-in for security investments. Act as a champion for security across the organization, fostering a security-conscious culture and promoting best practices. Provide leadership to the information security organization. Take ownership of the incident response program, including developing and testing incident response plans, coordinating response activities, and conducting post-incident reviews to improve future response capabilities. Leverage data analytics to inform security strategy, identify threats, and measure the effectiveness of security controls. This includes promoting a data-driven security culture within the team. Drive improvements and efficiencies within the security operating model including identifying areas for optimization, streamlining processes, and championing change. Drive the development and implementation of security standards and policies. This includes ensuring compliance with relevant regulations and industry frameworks, and staying abreast of emerging security threats and best practices. Actively scans laws, guidelines, and regulations in all the countries that we operate to ensure that any major exposure on data privacy is addressed or mitigated. Establish, implement and monitor strategic processes to maintain and improve IT solutions, infrastructure and support services. Coordinate with external authorities to assure monitoring posture is at a high level of attentiveness. Accountable for monitoring suspicious network and endpoint activities, and taking corrective actions, as required. Responsible for managing security partners and other third-party security relationships. Appraise CIO/CISO of cybersecurity trends and threats. Responsible for developing and testing threat identification, containment, and recovery plans. Accountability for cybersecurity awareness, training, and internal phishing campaigns. Key liaison and collaboration with physical security. Collaborate on pre-acquisition requirements with stakeholders assuring that security standards are met prior to acquisition. Facilitate the necessary efforts and resources to ensure that duration of exposure to cyber events is addressed rapidly Participate on company world-wide teams to share information, help implement global initiatives, leverage IT resources and investments, and develop future state of company architecture. Build, manage, and mentor a high-performing security team. This includes setting clear goals, providing development opportunities, and fostering a collaborative and innovative work environment. Responsible for maturing the Information Security function and driving discipline on execution of all security initiatives to ensure they are delivered on-time, on-budget, and with quality. Knowledge/Skills/Competencies: Advanced knowledge of project management and Full Project Scope Experience Experience in partnering with the business in promoting cybersecurity initiatives Demonstrated experience implementing Security strategies and solution designs Advanced understanding of virtualized cloud computing environments Performing full security compliance and risk assessments Advanced knowledge of Information Security Penetration Testing, IT Vulnerability Assessments Mastery level of understanding in IT Risk Management and IT Governance/Audit Procedures Advanced understanding of Cybersecurity incident Response Management and advanced experience in incident response activities Advanced understanding of IT Security Architecture Advanced knowledge of Security Standards, Regulations, and Best Practices Extensive knowledge of IT design and deployment, and operations process Knowledge and understanding of the business unit and how decisions impact customer satisfaction, product quality, on-time delivery and the profitability of the unit Information security forensics Knowledge of common information security frameworks and IT controls frameworks, such as NIST 800-171, ISO/IEC 27001, and ITIL Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard. Knowledge of global requirements Effectively manage relationships with security vendors, negotiating contracts and ensuring the organization is getting the best value for its security investments. Experience working with customers on security assessments and audits Proven ability to influence and promote safe technology usage, practices and behaviours across all levels of the entire organization by leveraging direct and indirect resources, delivering effective global communication, and enforcing policy attestation and mandatory employee training. Demonstrated understanding of how security decisions impact the business, including customer trust, brand reputation, and revenue generation. Ability to articulate the value of security investments in business terms. Ability to communicate complex security concepts clearly and concisely to a variety of audiences, including senior management, board members, and external stakeholders. This includes building consensus, influencing decision-making, and securing support for security initiatives. Required knowledge of the U.S. GOVERNMENT COMPLIANCE but not limited to, DFAR ************/NIST 800-171, DFARS ************, ************, and ************, CMMC Model Version 2.0 and associated testing requirements, and 48 CFR 52.204-21 Physical Demands: Duties of this position are performed in a normal office environment. Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required. Typical Experience: 15+ years of IT experience with a proven track record of delivering global capabilities around risk management, information security and progressive IT roles. 5+ years of Senior-level IT Security leadership experience within an organization of comparable scale and complexity, experience in the manufacturing industry is preferred. Knowledge of all aspects of IT business. Typical Education: Bachelor's Degree. Notes: This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time.

Application Security Architect (DevSecOps) Contract Type: 12-Month W2 Contract Pay Rate: $65-$75/hour (Based on Experience) Russell Tobin is partnering with a large, well-established financial services organization to identify an experienced Application Security Architect for a long-term contract opportunity. This role will be responsible for embedding security into the software development lifecycle and supporting secure DevOps practices across enterprise applications. Responsibilities Design, implement, and maintain secure CI/CD pipelines. Integrate security tools including SAST, DAST, and SCA into development workflows. Work closely with development and operations teams to identify and remediate application vulnerabilities. Automate security testing and compliance validation processes. Monitor and respond to security incidents in cloud and container environments. Develop, document, and enforce application security policies, standards, and procedures. Stay current on evolving security threats and DevSecOps best practices. Required Qualifications Bachelor's degree in Computer Science, Cybersecurity, or a related field. 6+ years of overall IT experience with 2-3 years focused on application security or DevSecOps. Strong experience with CI/CD tools such as Jenkins, Harness, or similar platforms. Development experience with Java, Python, .NET, or related languages. Hands-on experience with application security tools such as Veracode, GitHub Advanced Security (GHAS), Orca, or similar. Proficiency with scripting languages such as Python and Bash. Experience with container technologies including Docker and Kubernetes. Knowledge of cloud platforms (AWS, Azure, and/or GCP) and their security capabilities. Strong understanding of secure coding practices and application security principles. Experience with Infrastructure as Code tools such as Terraform and Ansible. Work Environment Hybrid schedule with 3 days onsite and 2 days remote each week Professional enterprise environment with cross-functional collaboration Long-term contract with potential for extension Benefits Info: Pride Global offers eligible employee's comprehensive healthcare coverage (medical, dental, and vision plans), supplemental coverage (accident insurance, critical illness insurance and hospital indemnity), 401(k)-retirement savings, life & disability insurance, an employee assistance program, legal support, auto, home insurance, pet insurance and employee discounts with preferred vendors.

Title: Azure Cloud Security Architect Type: Contract 2 hire Experience 5 years designing, securing, and implementing solutions in at least two of the following public cloud platforms: Azure, GCP and 2 years in an architect role with managing large cloud environments. Managing large cloud migrations in Azure & AWS environment for academic medical centers. JOB DUTIES Develop and maintain secure cloud architecture standards and reference designs for Azure, AWS, and GCP environments to support research, academic, and healthcare operations. Collaborate closely with the Cloud Engineering & operations team, Enterprise Architecture, DevOps, and Infrastructure teams to ensure secure design and implementation of cloud services and workloads. Work with application owners and development teams to integrate security into solution architectures and DevSecOps pipelines. Engage with senior leadership, compliance, and business stakeholders to align cloud security initiatives with institutional goals and regulatory requirements. Conduct threat modeling and security risk assessments for new and existing cloud deployments and services. Lead the development, implementation, and enforcement of cloud security policies, standards, and procedures. Evaluate and integrate cloud-native and third-party security tools (e.g., CSPM, CNAPP, CASB, IAM solutions) in collaboration with technical teams. Manage and operate cloud security posture management (CSPM) platforms such as Wiz, including configuring policies, monitoring findings, analyzing risks, and working with stakeholders to remediate vulnerabilities. Provide technical expertise in interpreting Wiz findings, correlating them to institutional risk, and translating technical issues into actionable remediation plans. Serve as the technical expert for investigating and responding to cloud security incidents, working closely with Information Security Operations and Incident Response teams. Perform security reviews and architecture assessments of cloud solutions to identify gaps and recommend mitigation strategies. Track and interpret compliance requirements relevant to cloud services (e.g., HIPAA, GDPR, Texas DIR) and collaborate with Compliance teams to ensure adherence. Develop key performance indicators (KPIs) and executive reporting metrics to measure cloud security program effectiveness and communicate outcomes to leadership. Mentor team members and promote knowledge sharing across Information Security, Cloud, and Architecture teams. Participate in enterprise security architecture reviews and advise on secure design patterns for cloud adoption and migration projects.

One of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position. This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position. Job Description: Perform cloud assessments, web application penetration testing and mobile application testing Carry out reviews of security, network, applications, and cloud environments Plan/Design security activities with automation as the primary driver to align with the security strategy Ensure alignment of security controls, supporting services and related policies with regulations and industry-standard best practices Assist management with the improvement of policy/procedure to support Cloud Security Engineering Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends Experience required: Penetration Testing experience within Network, Application, Web Application or Mobile Applications Experience cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong experience with custom scripting (python, PowerShell, bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys etc. Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with using ServiceNow is a plus. We look forward to receiving your application!

The Finance Application Analyst plans, implements, and enhances finance systems with a primary focus on SAP FICO. Partnering with internal stakeholders and vendors, this role translates business requirements into functional specifications, configures SAP solutions, and supports end users through training and change management. The analyst also ensures system reliability, performance, and security through proactive monitoring and best practice governance. General Job Duties and Responsibilities: Finance System Planning & Implementation: Lead/participate in roadmap, fit gap, and deployment activities; coordinate with internal teams and vendors for on time delivery. Solution Design & Configuration: Configure and enhance GL, AP, AR, AA, Cost/Profit Center accounting, and related integrations per current design and business requirements. Requirements & Specifications: Elicit and analyze business needs; create functional specs (incl. integrations, reports, forms, and controls); collaborate with developers on build, test, and release. Testing & Cutover: Define test scenarios/scripts, support UAT, manage defect triage, and assist with data migration and cutover planning. Support & Training: Provide tier2/3 support, knowledge articles, and end-user training for new implementations or changes. Reliability, Performance & Security: Monitor jobs/interfaces, data integrity, and access controls; partner with IT security/compliance on audit readiness and best practices (e.g., SOX related controls where applicable). Documentation & Governance: Maintain configuration documentation, process flows, and change logs; follow change management procedures and SDLC standards. Cross Functional Collaboration: Work with Finance, Accounting, Procurement, and IT to optimize processes and resolve issues; align deliverables with close cycles and reporting deadlines. Continuous Improvement: Identify automation and analytics opportunities (e.g., Fiori, workflow, dashboards) to improve accuracy, cycle time, and user experience. Other duties as assigned. Supervisory Responsibilities: This job has no supervisory responsibilities Qualifications: Bachelor's degree in Computer Science, Information Technology, or related field preferred, or equivalent work experience in SAP FICO implementation. Minimum 5 years of relevant hands-on SAP FICO implementation (design, configuration, testing, deployment, and support) experience, preferably in a eMobility, consumer electronics, or powersports. Strong understanding of core finance processes: chart of accounts, invoicing, payments, vendor management, period close, and compliance. Ability to manage multiple assignments in a fast-paced environment; strong troubleshooting and stakeholder communication. Experience with SAP S/4HANA (Fiori), CO‑PA, tax and bank integrations, and IDoc/Interface troubleshooting is highly preferred. Exposure to adjacent SAP modules (MM/SD) and basic ABAP debugging for issue isolation is a plus. Experience with SOX controls, security/role design, and audit support is a plus. Familiarity with project tools (e.g., JIRA/Azure DevOps) and process mapping (e.g., Visio/BPMN) is a plus. Bilingual in English and Mandarin is a plus. Physical Demands: This role is primarily office-based and involves prolonged periods of computer work, frequent virtual meetings, and regular collaboration across departments and vendors. Occasional off-hours support may be required during cutovers, month end activities, or critical releases. Light lifting of laptops or documents (up to 25 pounds) and occasional travel for workshops or go lives may be necessary. Specific vision abilities required for this job include close vision, color vision, and the ability to adjust focus. EEO Statement: Segway Inc. is committed to providing Equal Opportunity in Employment to all applicants and employees regardless of race, color, religion, gender, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

Glocomms is partnered with an integral financial services corporation seeking a Security Engineer focused on Privileged Access & Automation to design and maintain secure authentication, authorization, and secrets management systems across on-prem and cloud environments. This role focuses on privileged access management, security architecture, and automation, leveraging AI-based capabilities to ensure operational integrity and compliance. Responsibilities Implement and manage privileged access systems (CyberArk, HashiCorp Vault) and secrets lifecycle management. Design and support authentication/authorization frameworks (Active Directory, oAuth 2.0, OIDC, AWS IAM, PKI, certificates). Maintain operational integrity through patching, version control, upgrades, troubleshooting, and break-fixes. Apply security as code principles using Terraform, Ansible, Jenkins pipelines, and CI/CD deployments. Develop automation scripts in Go, Bash, Python, PowerShell for secure integrations. Integrate AI-based security capabilities for detection, remediation, and automated workflows. Collaborate cross-functionally with engineering, cloud, and compliance teams; participate in 24x7 operational support. Qualifications 5+ years in security engineering, architecture, or operations within complex environments. Hands-on experience with CyberArk, HashiCorp Vault, PKI, and privileged access methodologies. Strong knowledge of Active Directory, Kerberos, LDAPS, oAuth 2.0, OIDC, and AWS IAM. Familiarity with Kubernetes security, HSMs, and cloud ecosystems. Proficiency in Go, Bash, Python, PowerShell; experience with Terraform, Ansible, Jenkins. Understanding of security architecture principles, confidentiality, integrity, availability, and compliance frameworks. Exposure to AI-enabled security tools and automation strategies preferred. This is a hybrid role requiring 3 days per week onsite in Dallas, TX. Candidates must be fully authorized to work in the United States. Unfortunately, visa sponsorship is not available for this role. Applications must include candidate's full name (first and last) and contact information in order to be considered.

The Senior InfoSec GRC Analyst is responsible for driving the development, implementation, communication, and maintenance of technology policies, standards, and procedures that are aligned to industry standards and regulatory requirements. This role ensures that technology processes adhere to regulatory requirements, manage risks effectively, and establish strong governance practices. The position also develops and implements controls, monitors compliance, and supports risk management activities. Responsibilities: Lead the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines. Continuously evaluate and update cybersecurity and IT policies to ensure they remain current and effective. Ensure policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Collaborate with cross-functional teams, including IT, legal, compliance, and business stakeholders, to ensure cybersecurity policies align with organizational objectives. Translate complex information and documentation into clear and simple concepts for end-users. Provide specialized expertise to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommend actionable solutions to mitigate risks and strengthen overall security posture. Stay informed about the latest cybersecurity threats, trends, and best practices. Maintain accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses. Benchmark policies against industry standards and best practices. Develop and implement governance frameworks for cybersecurity policy management. Monitor key performance indicators, conduct gap analyses and risk assessments, and implement frameworks as needed. Test and monitor the effectiveness of controls. Establish feedback loops and analyze metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats. Lead and support internal and external audits and assessments of cybersecurity policies and practices. Ensure identified audit and assessment findings and actions are tracked to closure. Maintain comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicate policy requirements and updates to relevant stakeholders. Identify opportunities for innovation and improvement in cybersecurity policies and practices. Propose mitigation strategies and verify the effectiveness of remediation plans. Requirements: Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field (preferred). Minimum of six (6)+ years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field. Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust). Proficiency with data analysis and reporting tools (e.g., Excel, Power BI). Relevant certifications such as CISM and/or CISA (highly desirable). Strong knowledge of regulatory frameworks (NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Understanding of risk management concepts, control frameworks, and compliance auditing. Ability to provide consultation and recommendations to management. Strong communication skills with the ability to present effectively to both technical and non-technical audiences.

Role: Sr Security Engineer SSO (PingFederate) Location: Southlake, TX and Secondary Locations - Austin, TX or Phoenix, AZ. (Hybrid - Mondays - Thursdays on site and Friday Remote.) Duration: 18+ Months Looking for a Sr Engineer with following skills (5-8 years of experience) PingFederate hands-on experience (Ping Fed, Ping ID, Ping Access). Good troubleshooting skills and ability to work independently. Experience working with docker technologies /Kubernetes Good communication and self-starter HYPR affirm/ password less experience is a plus Monitor new and emerging security threats from various sources. Assist with creating product detection mechanisms based on emerging threats. Working knowledge of Linux, Firewalls, Virtual Private Networking, Intrusion Detection / Prevention and penetration testing. Strong technical track record and hands on experience with many of the following technologies: L2/L3 firewalls, application layer security, Intrusion Detection/Prevention, anti-virus solutions, spyware/malcode tools, DDOS mitigation, traffic profiling/anomaly detection, wireless security, VPN and VoIP security. Ability to troubleshoot through network traces and maintains the highest levels of client assurance and confidence. Bachelor's degree in computer science or equivalent. 2-5 years with Security implementation experience.

About the Role Eden Prescott is partnering with one of our top AI security clients, a fast-growing company that's seen significant momentum over the past year, to help them hire a Security Engineer focused on Corporate security. This is a hands-on opportunity to build and scale the foundational systems that protect an AI-driven infrastructure from evolving threats. You'll work closely with engineering, IT, and compliance teams to ensure deep visibility across environments, strengthen detection capabilities, and automate key workflows that keep the company secure as it scales. What You'll Do Partner with engineering and infrastructure teams to design and build pipelines for collecting and correlating security telemetry. Develop and maintain scalable, high-performance monitoring and detection infrastructure. Create detection strategies to identify anomalous or malicious activity and ensure critical systems remain protected. Triage, investigate, and resolve security alerts and incidents, driving them to closure with minimal business impact. Collaborate with engineering to eliminate recurring issues and continuously refine detection rules. Stay ahead of emerging threats and continuously evolve detection and response capabilities. Contribute to the strategy, risk management, and automation roadmap for security operations. Work with compliance and audit teams to maintain certifications and ensure alignment with security frameworks. Implement pragmatic, business-driven controls across multi-cloud environments. What You'll Bring 5+ years of experience in security engineering Must have EDR, Identity (MFA, PAM, phishing-resistant authentication methods), Azure governance (policies), and CWPP/CSPM. Strong track record building and scaling SOC operations in cloud-native environments. Hands-on experience with SIEM/SOAR tools (e.g., Splunk, Microsoft Sentinel, Trellix) and telemetry instrumentation. Familiarity with CNAPP solutions (e.g., Wiz, Orca, Defender, Singularity) across multi-cloud ecosystems. Fluency in scripting languages such as Python, PowerShell, or JavaScript. Automation experience with Azure Functions, Logic Apps, AWS Lambda, or Runbooks. Expertise in IAM analysis, anomaly detection, and real-time threat response across cloud environments. Strong communication, decision-making, and collaboration skills in a distributed team setting. Ability to prioritize and execute in a dynamic, high-growth environment. Bonus: familiarity with DevOps practices and experience in AWS, GCP, or Azure deployments.

An exciting opportunity for an experienced Cloud Security Engineer to join a global SaaS company, in a hyper growth stage. This is a crucial customer-facing role where you will be instrumental in designing, implementing, and securing complex cloud environments for clients across Google Cloud Platform (GCP), Microsoft Azure, and Amazon Web Services (AWS). Key Responsibilities: Cloud Security Operations Perform penetration testing activities Network Security Expertise Firewall & WAF Management SaaS Security Best Practice SIEM Integration & Optimization Customer Engagement & Presentation Requirements: 8+ years of cybersecurity experience 4+ years cloud security engineering Strong expertise with Google Cloud Platform (GCP) Strong practical experience with Microsoft Azure and AWS Expertise in SaaS applications Demonstrable experience with firewall management and WAFs Hands-on experience with SIEM platforms CISSP Certified

We are seeking a highly skilled Security Engineer with hands-on experience working with Transmit Security's Mosaic SaaS Tool and Flex ID. The ideal candidate will be responsible for designing and implementing seamless and secure identity journeys, leveraging state-of-the-art Passwordless and frictionless authentication capabilities. Key Responsibilities Design and implement identity user journeys using Transmit Security's Mosaic SaaS Tool. Deploy and configure Flex ID to enable passwordless, frictionless identity experiences. Collaborate with security architects, developers, and product teams to integrate authentication flows into web and mobile applications. Ensure robust identity and access management (IAM) implementations using industry best practices. Leverage protocols and standards such as SSO, MFA, OAuth2, OpenID Connect, and SAML to orchestrate secure identity flows. Monitor, troubleshoot, and optimize identity workflows for performance and security. Document technical solutions and provide knowledge transfer to internal teams. Required Qualifications ✅ Proven experience building and optimizing authentication workflows with Transmit Security's Mosaic platform. ✅ Hands-on expertise with Flex ID for enabling passwordless and frictionless identity verification. ✅ Strong understanding of IAM concepts, including SSO, MFA, identity federation, and orchestration. ✅ Demonstrated ability to work in cross-functional teams, solving complex technical problems collaboratively. ✅ Experience with identity protocols: OAuth2, OIDC, SAML, etc. ✅ Strong communication and documentation skills. Preferred Qualifications Experience integrating identity services with CI/CD pipelines or DevOps environments. Familiarity with customer identity and access management (CIAM) and privacy regulations (e.g., GDPR, CCPA). Background in cybersecurity, software engineering, or cloud architecture.

For over 16 years, Trilyon has been at the forefront of providing comprehensive global workforce solutions and staffing services. Leveraging our extensive expertise across multiple domains such as Cloud technology, Salesforce, AI, Machine Learning, and Technical Writing, we consistently exceed expectations in catering to a wide range of requirements. Currently we are seeking a “Application Security Analyst” for one of our clients that is a leading multination corporation. Position: Application Security Analyst Duration: 12 month (Possible extension) Location: Plano TX (Hybrid) Interview process: 1st round virtual 2nd round onsite Job Description What we're looking for: We are seeking a skilled and proactive Application Security Analyst to integrate security practices into our DevOps processes. The ideal candidate will work closely with development and operations team to ensure secure software delivery pipelines, automate security controls, and foster a culture of shift left in the organization. What you'll be doing Design, implement, and maintain secure CI/CD pipelines. Integrate security tools (SAST, DAST, SCA, etc.) into development workflows. Collaborate with development and operations teams to remediate vulnerabilities. Automate security testing and compliance checks. Monitor and respond to security incidents in cloud and container environments. Develop and enforce security policies, standards, and procedures. Stay current with emerging security threats and DevSecOps best practices. Requirements: Qualifications/ What you bring (Must Haves) - Highlight Top 3-5 skills Bachelor's degree in Computer Science, Cybersecurity, or related field. 3+ years of experience in DevOps, Security Engineering, or related roles. 2-3 years of security experience. Overall, 6 years Strong understanding of CI/CD tools (e.g., Jenkins, Harness). Development knowledge on Java, Python, .Net, etc Experience with security tools (e.g., Veracode, GHAS, Orca). Proficiency in scripting languages (e.g., Python, Bash). Familiarity with containerization and orchestration (Docker, Kubernetes). Knowledge of cloud platforms (AWS, Azure, GCP) and their security features. Understanding of secure coding practices and application security principles. Knowledge of Infrastructure as Code (Terraform, Ansible). Regards Kush Deshmukh | Trilyon, Inc. P: ************ Fax: ************** E: ************************ | *********************** Equal Employment Opportunity Trilyon is an Equal Opportunity Employer, committed to fairness and respect for all individuals. We value diversity in age, disability, ethnicity, gender, gender identity, religion, and sexual orientation, believing it drives innovation and better service. Employment decisions are made impartially, without regard to any protected characteristic under federal, state, or local law. Our diverse team drives innovation, competitiveness, and creativity, enhancing our ability to effectively serve our clients and communities. This commitment to diversity makes us stronger and more adaptable.

Job Posting Title: Cloud Security Engineer - SRE We are seeking a skilled and motivated Cloud Security Engineer - SRE to join our dynamic team. The ideal candidate will possess a strong technical background in systems administration, cloud computing, and infrastructure as code, with a particular focus on solution engineering/site reliability. This role will involve collaborating with cross-functional teams to enhance our security posture and streamline processes through automation. Technical Skills • Programming and Scripting: Strong proficiency in languages like Python, Go, Bash, or Ruby. SREs often need to write automation scripts and build tooling. • Systems Administration: Deep understanding of operating systems (Linux/Unix), file systems, processes, and system configurations. • Infrastructure as Code (IaC): Experience with IaC tools like Terraform, Ansible, or Chef to manage infrastructure. • Cloud Computing: Knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, including services like EC2, S3, Kubernetes, and serverless functions. • Containers and Orchestration: Expertise in containerization (Docker) and container orchestration (Kubernetes, OpenShift). • Networking: Understanding of networking concepts, including DNS, firewalls, load balancing, and VPNs. • Monitoring and Observability: Experience with monitoring and observability tools like Prometheus, Grafana, Datadog, or New Relic. Ability to set up and maintain monitoring dashboards, alerts, and logs. • Continuous Integration/Continuous Deployment (CI/CD): Familiarity with CI/CD tools like Jenkins, GitLab CI, GitHub Actions, or CircleCI. • A strong understanding of HashiCorp Vault and Terraform will make you stand out. 2. Problem-Solving and Troubleshooting • Incident Management: Ability to manage and respond to incidents, perform root cause analysis, and implement post-mortem reviews. • Automation: Focus on automating repetitive tasks to improve efficiency and reduce human error. • Performance Tuning: Skills in identifying and resolving performance bottlenecks in systems and applications. 3. Collaboration and Communication • Teamwork: Ability to work closely with cross-functional teams, including software engineers, product managers, and DevOps teams. • Documentation: Skill in creating clear and comprehensive documentation for systems, processes, and incident reports. • Communication: Effective communication skills for interacting with stakeholders and explaining technical concepts to non-technical audiences. 4. Reliability and Scalability • Service-Level Objectives (SLOs) and Service-Level Agreements (SLAs): Understanding of setting, monitoring, and maintaining SLOs and SLAs for system reliability. • Scalability: Knowledge of best practices for designing and scaling systems to handle increased loads and demands. • Redundancy and Resilience: Experience in designing systems with redundancy and fault tolerance to minimize downtime. 5. Security and Compliance • Security Best Practices: Understanding of security principles, such as access control, data encryption, and secure coding practices. • Compliance: Familiarity with compliance standards like GDPR, HIPAA, or PCI-DSS, depending on the industry. Minimum Job Qualifications: • Bachelor degree in business or equivalent work experience • 10 years of previous program leadership and/or relevant consulting experience • Knowledge of and demonstrated experience in program management framework, knowledge groups & life cycle • 5+ years' experience in driving large scale data center consolidation efforts • Minimum 5 years' experience with matrix management of cross-functional processes and teams • Proficient with Project Management tools

Fidelity Investment is currently seeking a CLoud Security Engineer with our client WestLake, Tx ANd Merrimack NH . This is a 6+ month contract position. This role focuses on engineering and enhancing security capabilities within large-scale Azure cloud environments. The position involves designing and deploying cloud security controls, building integrated workflows across IaaS, SaaS, and PaaS services, and ensuring strong security and compliance across cloud-native stacks. Responsibilities include defining guardrails, implementing security policies, supporting cloud deployments, and helping maintain an optimized risk posture across the Azure ecosystem. Candidates typically bring 6-9 years of experience in infrastructure, security, and compliance, with a strong background in Azure services and hands-on experience in areas such as cloud account configuration, CI/CD pipeline development, scripting (Python preferred), Azure networking, IAM/RBAC, and security services like Security Center, Key Vault, and Log Analytics. Success in this role requires the ability to work independently, interpret technical documentation, collaborate across engineering groups, and mentor others on cloud security best practices. Advanced Azure certifications are an additional advantage. Requirements: Top Skills: Azure Policy Experience Azure Security Services - Security Center, Key Vault, Log Analytics Identity and Access Management Experience Prior Software Engineering background, any language is fine but someone coming from a Sys Admin/Devops background won't be the right fit here.

***We are unable to sponsor for this permanent full-time W2 role*** is bonus eligible*** Prestigious Financial Company is currently seeking a Principal IT Governance Analyst. Candidate will be responsible for the development, implementation and oversight of programs within IT. Ensures the overall effectiveness and adherence to the governance framework and ongoing evaluation of IT's internal control environment. Responsibilities: Partner cross-functionally to analyze control data and drive continuous improvement in IT delivery processes and control frameworks Develop sophisticated dashboards and analytical reports that demonstrate control adherence and highlight strategic improvement opportunities Spearhead the development of key performance indicators (KPIs), key risk indicators (KRIs), and advanced metrics to empower IT leadership decision-making Design and implement standardized communication templates and executive-level presentation materials that effectively convey complex technical information Create comprehensive reports for senior and executive management that drive informed decision-making and strategic planning Serve as a trusted advisor to stakeholders on control-related matters, providing clear guidance and recommendations Lead multifaceted projects involving multiple systems, ensuring alignment with governance frameworks and regulatory requirements Perform comprehensive gap analyses between existing controls and regulatory requirements, mapping processes to industry standards Establish and maintain continuous monitoring frameworks to ensure ongoing compliance and control effectiveness Provide subject matter expertise across various IT process domains Collaborate closely with compliance and internal audit teams to ensure alignment of IT controls with regulatory expectations Support remediation activities for identified findings, working with key IT stakeholders to implement effective solutions Serve as a governance liaison during regulatory examinations and audit engagements Identify and recommend emerging technologies and tools that enhance efficiency, quality, and security across IT systems Anticipate emerging risks and proactively develop mitigation strategies Lead special IT projects as needed to address organizational priorities Apply strategic thinking to complex technical challenges, supporting teams in developing innovative solutions Perform other duties as assigned that align with organizational objectives and department needs Qualifications: [Required] Strong analytical and data reporting skills [Required] Ability to work across multiple levels of management [Required] Able to succeed in fast-paced environment with frequent changes [Required] Comfortable communicating with both technical and non-technical audiences [Required] Takes the initiative to research, learn and deliver; anticipates the play [Required] Humble, collaborative, and focused on making sure the entire team succeeds [Required] Excellent oral and written communication skills [Required] Working knowledge and experience of IT control frameworks and industry standards such as ITIL, COBIT, NIST Cybersecurity Framework (CSF), or similar industry-accepted standards and the principles embedded within them [Required] Excel [Required] PowerPoint [Required] Dashboard reporting tools (e.g. Tableau and JIRA) [Preferred] Experience with Security and DevOps tools [Preferred] Integrated GRC management solutions such as Archer Education and/or Experience: [Required] BS degree in Computer Science, similar technical field, or equivalent practical experience [Required] 10+ years of work experience [Preferred] Work experience in the capital markets or information technology industry

3 month contract to hire Rate: $55-60/hr Salary: $100-120k/yr The right candidate will address daily tasks and routine processes for IT security. This position will be responsible for assessing IT security incidents and applying the necessary technical troubleshooting steps to resolve the issue. The Security Analyst will also be responsible for monitoring suspicious or malicious activity in the company IT infrastructure and addressing security risk and incidents. Essential Duties and Responsibilities include the following. Other duties may be assigned. · Active Directory Management o Domain controller maintenance and troubleshooting o ADCS (Active Directory Certificate Services) · Active Directory Federation Services o ADFS Server maintenance and troubleshooting o Work with IT Operations and Development teams with ADFS authentication · DNS (Domain Name Service) o Creation and management of DNS records o Management of F5 DNS VIPs and pools · Active Directory Sites and Services o Management of sites and subnets · Active Directory Domains and Trusts o Management of domain trust configuration · Group Policy Management o Troubleshooting and cleanup of GPOs · Patching Operations o Patching research and preparation § Research the risk and value of each patch and report the "company" risk rating based on all layers of security in our environment § Validate that all applications for IT security are functioning as designed and intended at the conclusion of patching o SCCM (System Center Configuration Manager) o Work with the SCCM administrators to address all patching issues and confirm that patching has been configured correctly · Forensic Operations o Security Monitoring § Monitor security alerts and tools for signs of compromise or malicious behavior § Monitoring network alerts and traffic for DDoS attacks · Forensic Investigation o Investigate the root cause of compromise incidents or exploited vulnerabilities o Investigate infrastructure weaknesses and report on malicious activity or potential risk · Project Operations o Assist with delegated duties for all security projects o Partner with other security or IT operations team members for deployments or maintenance · Conducts all business in a professional and ethical manner to serve customers and increase the goodwill and profit of the company · Ability to participate in a weekly call rotation · IT Operations o Monitor and assist with any and all IT operational emergencies to keep business applications operational · On-Call Responsibilities o Respond and escalate all IT security incidents as needed · Mentoring and Training o .Responsible for the mentoring of Security Administrators · Ability to travel overnight Qualifications Education and/or Experience · High school diploma or general education degree (GED) · One to four years' experience in an IT related field · Knowledge of IT Security Operations and Forensic Operations · Experience with computer networks · Experience with project management and delegation · Business communication and collaboration skills · Documentation skills · Ability to work well within a team, and work alone to accomplish tasks independently · Ability to interpret research into solutions to actual problems · Customer Service skills · Ability to apply common sense understanding to carry out instructions furnished in written oral form or via DRH applications · Proficiency with MS Office and email

At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Security & Access Control Management, Identity & Access management and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates. Responsibilities: Act as a central Information Security point of contact for Platform Messaging Services Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Data Security, Vulnerability Management, Network Architecture and Design, API security, and User Access Management Serve as an expert in Capital One's Information Security capabilities, solutions, policies, procedures and standards Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes Escalate and manage cyber security risk Provide ad hoc support on special Information Security hot topics for the business Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment Work with line of business leadership to anticipate their objectives and needs to better serve the line of business Work with line of business to identify risks with new and existing vendor relationships Develop strategic objectives curated towards the line of business to support Cyber initiatives About You: You have a desire to work in a very fast moving, forward leaning, and modern computing environment You have a deep passion for Securing modern computing platforms You have a strong desire to continually learn about new technologies You possess strong conceptual thinking and communication skills You are able to work well under minimal supervision You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including upper management, IT leaders, and technology vendors You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives Basic Qualifications: High School Diploma, GED or equivalent certification At least 6 years of experience working in cyber security or information technology At least 5 years of experience providing guidance and oversight of cyber security concepts At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews At least 5 years of experience with software design, networking, or cloud infrastructure Preferred Qualifications: Bachelor's Degree 7+ years of experience in securing a public cloud environment (e.g. AWS, GCP, Azure) At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $225,400 - $257,200 for Sr Manager, Cyber Technical Plano, TX: $204,900 - $233,800 for Sr Manager, Cyber Technical Richmond, VA: $204,900 - $233,800 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website . Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections ; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1- or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

The IT Network/Security Analyst is responsible for safeguarding and supporting the organization's IT infrastructure by blending network operations expertise with cybersecurity best practices. This hybrid role ensures both the reliability of network services and the protection of data across enterprise systems and cloud services. The analyst will monitor, analyze, and respond to incidents while maintaining the performance, availability, and security of network systems in a dynamic threat landscape. Duties and Responsibilities: Network Operations & Monitoring Monitor and support daily network operations, ensuring uptime, availability, and performance across routers, switches, firewalls, VPN's, and other network components. Continuously monitor network traffic and performance metrics, using NMS (Network Management Systems), IDS/IPS, and SIEM tools to identify anomalies, outages, or threats. Collaborate with customers to optimize configurations and resolve connectivity issues impacting business operations. Travel as required (up to 25%) to support field locations. Incident Response & Troubleshooting Investigate, contain, and remediate cybersecurity incidents involving network components (e.g., DDoS attacks, unauthorized access, malware propagation). Perform root cause analysis on network-related issues and security events to reduce recurrence and improve resilience. Participate in on-call rotations for critical incident response. Network Security Administration Configure and maintain network devices i.e. firewalls, routers, switches, access points with an emphasis on security hardening and policy enforcement. Implement and support network segmentation, access controls, and VPN technologies to protect sensitive data. Oversee security patching and firmware upgrades across network infrastructure. Vulnerability & Compliance Management Conduct vulnerability assessments and penetration testing on network systems, tracking and remediating identified weaknesses. Support compliance with frameworks such as NIST or CIS as they apply to both network and security operations. Assist with periodic audits, reporting findings, and driving corrective actions. Threat Intelligence & Reporting Stay up to date on evolving attack vectors, especially those targeting enterprise networks. Leverage threat intelligence to proactively adjust network defenses. Produce operational dashboards and executive-level reports detailing network health, incidents, and security posture. Collaboration & Training Work closely with IT infrastructure, Security Architect, and Application teams to integrate security into network design and operations. Provide guidance and training to IT staff and end-users on secure network practices, phishing awareness, and incident reporting. Knowledge, skills, and abilities: Technical Knowledge Strong foundation in networking protocols (TCP/IP, BGP, OSPF, VLANs, DNS, DHCP) and enterprise network architectures. Hands-on experience with network monitoring and analysis tools (e.g., Wireshark, SolarWinds, Nmap, Nessus). Familiarity with security technologies such as SIEM (Splunk, ELK) a plus. Hands-on experience with enterprise network firewalls and network equipment. Experience with enterprise endpoint protection. Understanding of threat detection, DDoS mitigation, VPNs, and secure remote access. Familiarity of compliance requirements Sarbanes-Oxley Act of 2002 (SOX) as they apply to both network and security operations. Skills Proficiency in troubleshooting complex network and security issues in enterprise environments. Strong analytical mindset with the ability to distinguish between performance-related issues and security threats. Clear communication skills for cross-team collaboration and reporting to both technical and non-technical audiences. Effective multitasking and prioritization in 24/7 operations environments. Abilities Ability to balance proactive network performance management with rapid cyber threat response. Commitment to continuous learning in both network operations and cybersecurity trends. Adaptability to shifting operational demands and evolving attack landscapes. Strong teamwork skills with the discretion to handle sensitive information responsibly. Education and Experience Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field (or equivalent practical experience) preferred. 3-5 years of combined experience in network operations and cybersecurity, with at least 2 years in a security-focused network role preferred. Relevant certifications highly desirable, such as: Network-focused: CCNA, CCNP, CompTIA Network+ Security-focused: CISSP, CompTIA Security+, CEH, GIAC (GCIA, GCIH) Equal Opportunity Employer Prospective employees will receive consideration without discrimination because of race, color, religion, marital status, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran status, disability, or genetic information. Edit job description