Information Security Analyst Jobs in Liberty, MO

GENERAL STATEMENT OF RESPONSIBILITY: Support the confidentiality, integrity, and availability of information under CRL's control by developing, documenting, assessing, and executing security controls in partnership with system and network administrators under the standards set in CRL's Corporate Compliance program. Essential Functions: * Responsible for access management administration and support of multiple complex computer applications, directories and domains that encompass user lifecycle management (onboarding, transfers, offboarding, access reviews) and access to IT resources. * Remote access management, administration and configuration. * Train new hires and seasoned employees on security best practices, policies and procedures. * Configure and administer Privileged User Management system. * Promote awareness of applicable security standards, policy, and best practices across the enterprise. * Use a teaching/education approach to help users understand their risks and better protect information and systems. * Maintain relationship with badge access vendor, manage door access for employees and maintain systems to support campus access; including data center access. * Perform security assessments and vendor audits and complete documentation necessary to validate compliance with security requirements. * Use systems to monitor password compliance and address concerns when identified. Review and take appropriate action on EDR detections and incidents. * Analyze Microsoft Azure and M365 security and compliance findings and perform resolution planning. * Assist in User Behavior Analytics and File System Integrity monitoring and provide determinations of risk and steps to improve user and file security. * Analyze Application Vulnerabilities and perform resolution planning. * Utilize Environment Vulnerability System for analysis of new and existing vulnerabilities, compliance findings and perform resolution planning. * Perform DLP Analysis and provide recommendations for policy changes. * Assist with communication, implementation, and analysis of compliance to security policies, standards, and procedures. * Incident Response and event management, including Incident remediation, lessons learned, and process improvement. * Develop and run tabletop exercises to promote readiness of incident response. * Internal customer service related to access requests, troubleshooting, and problem resolution. * Administer and maintain Emergency Notification System. * Continuously improve skills and remain current on job-specific technical knowledge, and department projects through research, training courses, workshops, and other available training resources. * Maintain and protect the confidentiality of all CRL, CRL subsidiaries, legal entities and client information. * Be able to comply with all applicable federal, state, and local safety and health regulations that would apply to this job. * Keep work area neat and clean. Other duties as assigned. Job Qualifications: Education: Bachelor's Degree in Information Systems, Computer Science, Information Security or a related technical discipline, or the equivalent combination of education, professional training or work experience. Experience: * 3 years of IT security or information security experience with ability to engage with internal customers and management. Skills & Abilities: * Knowledge of regulatory/legal compliance procedures, industry best practices and frameworks related to HIPAA. * Experience with antivirus, detection and response systems. * Exposure to Microsoft Azure and M365 Security and Compliance. * Experience working with vulnerability monitoring platforms and understanding environment security and stability risks when proposing resolutions. * Experience with Application vulnerability monitoring. * Understanding of DLP systems and policies. * Strong work ethic, problem solving skills, customer service orientation, and proven dependability. * Good communication skills; well-developed interpersonal skills, teamwork, and collaboration attributes. * Creative problem-solving, analytical, and organizational skills. * Self-motivation and ability to successfully complete projects and provide support with little supervision. * Assist in drafting and revising deliverables including reports, correspondence, presentations, policies, and procedures. * Excellent writing and editing skills with the ability to construct well-founded, clear, and concise analyses and recommendations. * Strong attention to detail and analytical skills. * Ability to interpret complex information, solve problems, and manage multiple tasks. * Ability to be at work and on time * Ability and judgment to interact and communicate appropriately with other employees, clients and management PHYSICAL REQUIREMENTS: The physical demands described here are representative of those that must be met to successfully perform the essential functions of this job. Reasonable accommodations may be available to enable qualified individuals with disabilities to perform the essential functions. The following physical attributes are required for this position: * Sitting for extended lengths of time * Close vision requirements due to computer work * Repetitive use of hands, fingers, wrists, and elbows for operating a computer and telephone * Light lifting, up to 10 pounds EQUIPMENT: Personal computers, midrange systems, and communications equipment. OTHER: Overtime and weekend work as necessary according to workload and/or projects; occasional travel is required; this is an "on-call" position requiring the use of wireless phone for after-hours contact. The employer shall, in its discretion, modify or adjust this position to meet the company's changing needs. This job description is not a contract and may be adjusted as deemed appropriate in the employer's sole discretion. * denotes essential job function An Equal Opportunity Employer Pay Range: $55,000 - $120,000 Benefits for Full Time Employees: * Medical, Dental, Vision * Life/AD&D * Supplemental Life/AD&D * Section 125 FSA Plan * 401(k) * Short and Long-Term Disability * Paid Time Off * Holidays * Tuition Reimbursement

Sr. ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $118,560 - $171,253.33 a year

Job Details Westwood - Westwood, KS Full TimeDescription The Information Security Specialist is responsible for driving information security initiatives. The individual will perform internal and external security compliance monitoring activities, manage client compliance audits, IT control audits, security gap analyses and security risk assessments/analyses. This role will assist in the management of key compliance areas such as HIPAA and the implementation of administrative, physical, and technical safeguards, PCI DSS, policy, process, and procedure governance, and the implementation of industry standards. ESSENTIAL JOB FUNCTIONS Maintain security and compliance initiatives to ensure that corporate policies, standards, procedures, and audit activities are in alignment with business, IT, legal, and regulatory requirements. Develop and maintain a comprehensive set of policies, standards, processes, and procedures to ensure compliance with industry standards (,e.g., the NIST Cybersecurity Framework, the HIPAA Security Rule, and applicable laws. Maintain a written information security program (WISP) that ensures security policies, standards and process are being adhered to by the business. Monitor electronic systems for security incidents and vulnerabilities; develops monitoring and visibility capabilities; reports on incidents, vulnerabilities, and evolving and emerging cybersecurity attack vectors. Respond to electronic system security incidents, including investigation of, countermeasures to, and recovery from computer-based attacks, unauthorized access, and policy breaches; interact with third-party incident responders, including law enforcement, and legal counsel. Partner with IT leadership to administer authentication and access controls, including provisioning, changes, and deprovisioning of user and system accounts, security/access roles, and access permissions to information assets according to industry standards. Lead the development, implementation and management of MTN's WISP, ensuring compliance and auditing for improvements on an ongoing basis. Ensure compliance with healthcare information security best practices and HIPAA. Ensure compliance with, and management of, the MTN cybersecurity incident response plan and provide guidance for improvements on an ongoing basis in conjunction with the HIPAA Compliance Officer. Monitor security trends and drive information security best practices throughout the organization. Evaluate, design, test, and recommend new or improved controls to keep MTN current with industry standards and compliance requirements. Work with third party firms and consultants to conduct independent security audits, vulnerability scans, and penetration tests including social engineering. Work together with the business to provide an interface for client information security audits Collaborate with IT, legal, and other teams by providing cybersecurity input and guidance in relation to MTN's mission. Conduct regular risk analyses, advise Senior Director, Information Technology Services and Senior management on appropriate recommendations and implement recommendations in an efficient and timely manner documenting remedial actions as directed. Be informed about changes to the HIPAA Security Rule and other applicable laws and their impact on MTN's compliance obligations and business operations. Work with the Manager, Corporate Education & Development and HIPAA Compliance Officer to develop and administer, or provide advice, evaluation, and oversight for, ePHI information security training and awareness programs. Qualifications QUALIFICATIONS AND PHYSICAL DEMANDS Undergraduate degree in information systems or a related field or similar experience leading cybersecurity/information security initiatives. Five or more years experience managing security in a healthcare environment where HIPAA/HITECH regulations and guidelines for securing ePHI data required Experience advising and mentoring diverse teams without direct authority of team members Professional certification in the information security space preferred (e.g. CISM, CISSP, CISA, GIAC) or other security certification at a similar level. Experience in cybersecurity or information security systems, (Cisco Firepower, Firewalls, SIEM, EDR and NDR) Experience with the Security Risk Assessment Tool developed by the Department of Health and Human Services' Office for Civil Rights. Detail oriented, organized, excellent tracking/reporting skills, effective written and verbal communication. Demonstrated understanding of business process analysis and how to use information technology to cost-effectively optimize business and clinical work processes. Must maintain a valid driver's license in accordance with MTN motor vehicle policy. Must have reliable personal automobile transportation to be used with company reimbursement using IRS guidelines. Must be able to travel within the service area by ground or air. Ability to lift 50 pounds and transfer short distances. Possess ability to operate telephones, computers and office equipment. Ability to speak and communicate clearly in order to accurately convey information in person or by phone. OSHA Category III - No exposure to bloodborne pathogens while performing assigned job duties. Home internet and wireless phone access may be required. MTN BEHAVIORAL COMPETENCIES Belonging: Intentionally connects with colleagues by embracing differences and finding commonalities to create a workplace where all employees feel safe and genuine at work. Models the philosophy that lived experiences make individuals unique by respecting and seeking to understand beliefs, values and opinions that are new or different from their own. Represents through actions and influence, the idea that diverse perspectives make MTN stronger as we serve our mission. Respect: Builds a positive and supportive foundation inviting open, honest, and clear communication. Fosters a sensitive, supportive, and trustworthy environment, which promotes active listening and strengthens rapport throughout all interactions. Cultivates teamwork through acceptance and inclusion by valuing differences and empowering strengths. Excellence: Demonstrates excellence by going above and beyond, while maintaining compassion and humility in all interactions. Demonstrates a high rate of achievement and success for the organization through proactive objectives centered on the overall mission and vision. Consistently models a positive attitude, a willingness to help others, and a dedication to improvement. Takes full responsibility for their role and challenges themselves to find workable solutions. Accountability: Demonstrates the highest ethical standards, by honoring commitments to each other and professional partners. Executes all interactions through honesty and transparency. Demonstrates responsibility and integrity through ownership of the mission. Utilizes resources appropriately. Leadership: Empowers, mentors and encourages all staff, while displaying a high-level of professionalism. Demonstrates ability to cultivate teams and relationships through open lines of communication, honesty and respect. Handles challenges with compassion by developing trust through respectful feedback and support. Acts as a resource by providing the tools, which enable others to reach their highest potential. It is the policy of Midwest Transplant Network (MTN) to provide equal opportunity in employment to all employees and applicants for employment. No person will be discriminated against in employment because of race, color, religion, sex (including pregnancy), sexual orientation, gender identity, gender expression, ethnic origin, age, genetic information, disability, protected veteran status, arrest record, or any characteristic protected by applicable federal, state or local laws. In addition, the organization complies with applicable state and local laws governing non-discrimination in employment in every location in which the organization has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training, employee activities and general treatment during employment MTN is committed to complying with state and federal disability laws and makes reasonable accommodations when requested by a qualified applicant or employee with a disability to enable the applicant or employee to be considered for the position they desire, to perform the essential functions of the position in question, or to enjoy equal benefits and privileges of employment as are enjoyed by other similarly situated employees without disabilities, unless the accommodation would impose an undue hardship on the operation of MTN's mission.

Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Security Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers. US citizenship is required per contract/client, at least one of the following certifications is required: CISSP (preferred), CISA or CISM. Experience with NIST 800-53 and the ability to travel up to 10% is required. Essential Duties and Responsibilities: - Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team. - Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications. - Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility. - Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements. - Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions. - Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team. - Promotion of Information Security awareness through various communication channels within the organization. - Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets. Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements. Perform risk assessments using vulnerability management and application security testing reports. Initiate formal security exception process, when required. Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements - Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required. - Bachelor's degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience. US Citizenship is REQUIRED per contract/client. At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISM Experience with NIST 800-53 is REQUIRED Ability to travel nationally up to 10% is REQUIRED HIPAA experience is preferred Experience with Cloud providers, such as Azure and AWS Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS Demonstrates excellent interpersonal, presentation and verbal/written communication skills Demonstrates strong customer service skills Ability to communicate technical information to non-technical staff Ability to work collaboratively with a broad range of staff (including analysts, engineers and leadership) Proficiency with Microsoft Office SmartSheet experience is a plus Ability to perform comfortably in a fast-paced, deadline-oriented work environment Ability to organize and execute complex tasks Ability to work as a team member as well as independently #LI-JH1 #maxcorp #LeadSecurityAnalyst #HotJobs0311LI #HotJobs0311FB #HotJobs0311X #HotJobs0311TH #TrendingJobs EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 111,605.00 Maximum Salary $ 145,000.00

Department:Information Security Administration ----- Information Security Engineering and OperationsPosition Title:Director of Research Information Security StrategyJob Family Group: Professional Staff Summary:The Director of Research Information Security Strategfy reports to the Chief Information Security Officer, while collaborating closely with IT Governance and Research Leadership to ensure project milestones are appropriately prioritized and met. The Director provides strategic leadership in aligning research technology initiatives with the university's broader information security and risk management goals. This position acts as a key advisor and liaison between research teams and IT services (KITS), ensuring that all technology integration solutions are both compliant and supportive of the university's research mission. The Director will drive initiatives to enhance research-related cybersecurity and risk governance, while also facilitating clear communication between technical teams and researchers. This role requires a professional with a deep understanding of both IT infrastructure and information security principles, coupled with excellent communication and relationship-building skills. This individual will work closely with researchers to understand their unique needs, translate those needs into technical requirements, and collaborate with the KITS teams to develop solutions that are secure, compliant, and effective. This position requires being on-site three or more days a week and does not have any direct reports.:Job Responsibilities: Consultation & Communication: Engage with university researchers to understand their specific technology onboarding needs including the IT and IS needs for deployment. Clearly and effectively communicate the technical and security needs of emerging researcher technologies to KITS teams Act as a primary contact of communication with technology vendors to collect all necessary documentation to support a full, robust risk analysis and integration discussion with the Information Security, Systems Integration, Software Support, Hardware Support, Customer Support, Networking, and other KITS teams as needed. Work directly with vendors to describe any technology limitations that may emerge from the proposed integration solution. Serve as the primary point of contact between researchers and KITS teams for projects, ensuring both sides are aligned on expectations and requirements. Coordinate with Enterprise Project Management as needed to ensure project alignment. Solution Development & Implementation: Collaborate with KITS teams to design and implement solutions that meet the researchers' needs while adhering to regulations, state and university policies, industry best practices, and compliance requirements. Evaluate existing IT and security solutions and propose enhancements or alternatives that better align with the needs of the research community. Drive technology deployment solutions to completion addressing challenges timely which would otherwise lead to a failure of deployment. Translation of Technical Solutions: Translate complex IT and security solutions into language that is understandable for non-technical individuals. Ensure researchers are fully aware of any limitations, boundaries, or requirements associated with the implemented solutions. Relationship Building & Management: Foster strong, positive relationships with researchers and KITS personnel Act as a trusted advisor and advocate for researchers within the KITS teams. Facilitate open lines of communication to ensure ongoing alignment and satisfaction among all stakeholders. Training & Support: Provide ongoing training and support to researchers on the use of IT systems which support compliant and desirable solutions. Develop and deliver workshops or informational sessions tailored to the research community's needs. Responsible for coordinating rounding tours with researchers for routine technology health checks, documenting findings and working with KITS teams to appropriately route workstreams for follow up and implementation. Compliance & Risk Management: Ensure that all IT solutions comply with policies, as well as applicable regulatory and legal requirements including data security and retention policies. Assist researchers in understanding and adhering to information security protocols to protect sensitive data and research outputs. This may require developing or implementing strategies which are responsive to a variety of types of data and policy standards. Continuous Improvement: Gather feedback from researchers on the effectiveness of IT and security solutions, and work with KITS teams to make necessary adjustments Stay up to date with the latest trends and advancements in IT and IS, particularly as they relate to academic research. Stay up to date with emerging technologies across the life science research domains. Participate in the development of a long-term security roadmap for research-related IT systems. This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. It is only a summary of the typical functions of the job, not an exhaustive list of all possible job responsibilities, tasks, duties, and assignments. Furthermore, job duties, responsibilities and activities may change at any time with or without notice. Required Qualifications: Education: Bachelor's degree in information technology, computer science, or a related field OR bachelor's degree in biology or related science with lab experience and demonstrated knowledge of computer science or information technology Work Experience: 10+ years of combined experience in information technology (IT), information security (IS) and highly technical research laboratory roles Background in IT infrastructure and information security, with a focus on compliance, risk management, or technology integration Proven experience in project management and cross-functional multidisciplinary collaboration Experience with IS Risk Management (ISRM) 3+ years in a leadership role within research or IT disciplines Experience leading cross-functional teams, driving strategic initiatives. Experience managing multiple projects with varying timelines, stakeholders, and information streams simultaneously. Preferred Qualifications: Education: Master's degree in information technology, computer science, or other scientific field ITIL, PMP, Security+, CISA, SSCP, CISSP, CISM, CRISC or other relevant certifications Work Experience: 3+ years in an academic research environment Proven track record of deploying various types of research technologies in a secure, compliant fashion. Experience with relevant regulations and standards (e.g., NIST 800-53 & 171, HIPAA, NSPM-33) Research laboratory experience including primary data collection, analysis, sharing and dissemination including high performance computing across a variety of technology platforms. Experience using with research methodologies, data analysis tools, and laboratory information management systems (LIMS) Skills: Problem solving and organizational skills. Interpersonal and communication skills. Time and project management skills. Required Documents: Resume/CV Cover Letter If selected as a final candidate for this position, you may be required to complete the Association of American of Universities Representations and Warranties document and sign a release of records that will allow the University of Kansas Medical Center to conduct a further background check with former employers. A copy of the Representations and Warranties document can be found here. Comprehensive Benefits Package: Coverage begins on day one for health, dental, and vision insurance and includes health expense accounts with generous employer contributions if the employee participates in a qualifying health plan. Employer-paid life insurance, long-term disability insurance, and various additional voluntary insurance plans are available. Paid time off, including vacation and sick, begins accruing upon hire, plus ten paid holidays. One paid discretionary day is available after six months of employment, and paid time off for bereavement, jury duty, military service, and parental leave is available after 12 months of employment. A retirement program with a generous employer contribution and additional voluntary retirement programs (457 or 403b) are available. ************************************************** Employee Type: RegularTime Type: Full time Rate Type: Salary Compensation Statement: The pay range listed for this position is determined by our compensation program using market data and salary benchmarking. A combination of factors is considered in making compensation decisions including, but not limited to, education, experience and training, qualifications relative to the requirements of the position, and funding. At the University of Kansas Medical Center, a reasonable estimate for the starting pay range will be the minimum to midpoint of the posted range, taking into account the combination of factors listed above. Pay Range:$96,000.00 - $152,000.00 Minimum $96,000.00 Midpoint $124,000.00 Maximum $152,000.00

Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility needed to tackle the most advanced cyber threats. We leverage our global scale and decades of experience to accelerate our clients' cyber outcomes through a full lifecycle of cybersecurity services. We are a global company with operating centers in the United States, Canada, the United Kingdom, and India. About the Job:The Managed Services Security Analyst I is responsible for security solutions for clients. The Security Analyst I will demonstrate the capacity to consistently meet and exceed client expectations representing and reinforcing the Cyderes brand through positive interaction with other teams within the company. Perform deep dive investigations into security threats, understand and implement MITRE mapping to identify customers current security posture. Responsibilities: Perform triage and advanced analysis tasks across endpoint, server, and network infrastructure. Perform Threat Hunting on customer networks to detect, isolate threats and provide recommendations. Provide proactive security investigation and searches on client environment to detect malicious activities. Coordinate Incident investigations and deep dive analysis on detected threats. Understand and identify indicators of attack and compromise in alerts, by hunting through data, and from review of investigation notes. Have full understanding of the MITRE ATT&CK framework. Mapping clients use cases to tactics and techniques. Update documentation and runbooks to ensure repeatable analysis. Actively participate in an after-hours on-call rotation as Incident Controller Scope customer security incidents Document, communicate recommendations and guidelines based on results of analysis. Analyze, review, and provide raw log data for more insight into escalations through SIEM. Communicate effectively orally and in writing. Maintain current knowledge and understanding of threat landscape. Requirements: 1 or more years of progressing/in-depth IT security experience. System Administration experience (Windows, Unix/Linux, Mac) Advanced understanding of networking concepts and ability to analyze network artifacts. Demonstrate experience in using Endpoint Detection and Response software (Sentinel1, Crowdstrike, Defender ETC.) Advanced knowledge of at least one leading SIEM platform (Sentinel, Splunk, Elastic, IBM Qradar, Chronicle etc.) Possess at least one industry certification Sec+, CEH, SANS Certification (e.g. GCIH, GCIA, GSEC, GMON), OSCP etc. or working towards a related certification. Basic scripting or development experience in one of the following languages: Python, JavaScript, PowerShell, bash, etc. Cyderes i s an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status. Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.

We are currently seeking strong candidates for a full-time Information Security Engineer position in our Overland Park, Kansas headquarters. Responsibilities Responsible for the analysis, implementation, testing, operations, and maintenance of Information Security solutions Conduct assessments as required for the Information Security Program to determine whether systems performed as expected and provide input to the determination of operational effectiveness Day-to-day support for Information Security and Technology functions: Malware Response Process Log Management Process Vulnerability Management Process Tracking and reporting on information generated by Information Security Program activities Analysis of the security aspects of new or existing computer applications, software, or specialized utility programs, draw insights about their possible implications and provide appropriate recommendations Qualifications Bachelor's degree from an accredited college/university or equivalent experience 3 - 5 years of work experience, financial services industry experience a plus Skills & Knowledge Strong self-starter who thrives in a fast-paced, dynamic environment Experience confidently and collaboratively working with individuals at all levels of an organization Ability to conceptualize and support big-picture concepts and goals of the organization Excellent verbal and written communication skills to provide an exceptional client service experience Strong attention to detail and critical thinking skills Highly organized, able to manage multiple tasks with tight deadlines We welcome your interest in being a part of our firm. We believe in giving associates progressive opportunities, actively nurturing professional growth and giving back to the community. We are dedicated to building a diverse culture where everyone has the support they need to achieve their career goals. We offer an innovative workplace and a culture that fosters camaraderie, teamwork and work-life balance. EOE/M/F/D/V #LI-SA1 #LI-HYBRID

Collabera is ranked amongst the top 10 Information Technology (IT) staffing firms in the U.S., with more than $525 million in sales revenue and a global presence that represents approximately 12,000+ professionals across North America (U.S., Canada), Asia Pacific (India, Philippines, Singapore, Malaysia), and Europe (Ireland, Netherlands, Poland, United Kingdom). We support our clients with a strong recruitment model and a sincere commitment to their success, which is why more than 75% of our clients rank us amongst their top three staffing suppliers. Not only are we committed to meeting and exceeding our customer's needs, but also are committed to our employees' satisfaction as well. We believe our employees are the cornerstone of our success and we make every effort to ensure their satisfaction throughout their tenure with Collabera. As a result of these efforts, we have been recognized by Staffing Industry Analysts (SIA) as the “Best Staffing Firm to Work For” for five consecutive years since 2012. Collabera has over 50 offices across the globe with a presence in ten countries and provides staff augmentation, managed services and direct placement services to global 2000 corporations. For consultants and employees, Collabera offers an enriching experience that promotes career growth and lifelong learning. Visit ***************** to learn more about our latest job openings. Awards and Recognition --Staffing Industry Analysts: Best Staffing Firm to Work For (2016, 2015, 2014, 2013, 2012) --Staffing Industry Analysts: Largest U.S. Staffing Firms (2016, 2015, 2014, 2013) --Staffing Industry Analysts: Largest Minority Owned IT Staffing Firm in the US. Job Description A Fortune manufacturing electric utility industry looking for IT Compliance analyst who will be supporting the IT Division staff in meeting compliance obligations and will provide support to ensure compliance with compliance obligations involving Information Technology systems that support the Bulk Electric System (BES) and SOX application environments. Duties and Responsibilities: · Help with specific assignments related to developing, implementing, documenting and monitoring compliance activities for Information Technology. · Help with specific assignments related to developing, implementing, documenting and monitoring Critical Infrastructure Protection (CIP) program activities for the Company. · Aid in ensuring the compliance activities, functions, plans and recommendations meet the risk posture of the corporation and the goals and performance measurements of the Information Systems Compliance Department. · Contribute to the effectiveness of the compliance program by assisting with the documentation and implementation of departmental procedures. Qualifications · Bachelor's degree in Information Systems, Computer Science or related field, 2 years of information technology experience and a minimum of 1 year of direct NERC CIP Standards Compliance experience or 2 years of other relevant experience OR 4 years of information technology experience and 1 year of direct NERC CIP Standards compliance experience or 2 years of other relevant experience. · Change Management or general ticketing systems · Personal experience with Industrial Defender, an application used for the configuration and management of computer system baselines. · Certified Information Systems Auditor (CISA) or other compliance related certification a plus. Additional Information If you want to know more and apply, please connect with: Niraj Singh **************************** ************ ***********************************************

This is the perfect role to really put your mark on something. This is a newly created position, tasked with building a team to support the security vision of an entire business unit. Key Responsibilities: ·Communicates Information Security goals and new programs effectively within the organization ·Ensures consistent and effective security practices ·Establishes appropriate Information Security procedures and governance ·Oversees the deployment, integration, and initial configuration of all new Information Security solutions and Information Security policies, standards, and operational procedures ·Manages investigations into identified problematic activity and provides on-going communication with IT senior management ·Owns and manages relationships with vendors performing managed security services for the Overseas & Trading division ·Provides centralized guidance and governance of Information Security solutions ·Engages in ongoing communications with peers in the Infrastructure and Application Support groups as well as the business groups to ensure understanding of security goals ·Collaborates with affiliate companies to assist with identifying and managing Cybersecurity risk ·Assist with Information Security awareness programs ·Creates and maintains a set of metrics to document and measure the performance and effectiveness of the Information Security program; responsible for communicating metrics to the Overseas & Trading senior management. ·Participates in annual and long-range planning activities to ensure Information Security needs are addressed Qualifications Must be open to travel approximately 35% of the time. A college degree in MIS, CIS, Business Management, or related field 5+ years of overall Information Security experience 1+ years working on an Information Security implementation team An Information Security industry certification is preferred Progressive experience in a combination of Information Technology, Risk Management, Information Security, and Compliance roles is preferred Must have a working knowledge of at least one of the following regulatory compliance requirements and IT management frameworks: CIS Critical Security Controls ISO 27000-series standards NIST SP800-53 and related standards Must have a working knowledge of the following Information Security practices, standards, and systems: Data Loss Prevention (DLP) systems Encryption technologies and standards Endpoint security software Governance, Risk, and Compliance (GRC) systems Identity and Access Management (IAM) Incident response practices Network security (e.g. firewalls, IDS/IPS, VPN, etc.…) Risk assessment practices Security Information Event Management (SIEM) systems Vulnerability management practices and scanning tools Additional Information Solid company with excellent track record of stability,.Great opportunities for growth and learning.

This Engineer III position is responsible for developing and leading execution of technical roadmaps for advancing the cyber-physical security of automated test systems. The role also includes the analysis, documentation and closure or mitigation of future risks. Duties and Responsibilities + Provides project leadership and technical guidance on complex engineering projects and programs. + Lead a small team to develop and deliver on technical roadmaps. + Designs and/or develops new products, architectures, and unique equipment to meet specific requirements. + Participates in developing operating procedures, work instructions, and inspection criteria on new products and components. + Plans and performs engineering testing and uses advanced statistical and scientific methods to address and assure system reliability. + Interacts with customers, design agency and counterparts to resolve design, development, production, and acceptance issues. + Performs component analysis and analyzes system-level aggregate results. You Must Have + Bachelor of Science degree from an ABET accredited university in Engineering or Physics from and accredited program. + 4+ years of relevant experience in engineering, analytical, or related technical activities. + Ability to travel up to 15% of the time + Ability to work remote, hybrid, or on-site as directed by management and is determined by the needs of the business + United States Citizenship + Regular and reliable attendance is an essential function of this job + Ability to obtain and maintain, if required for position, a U.S. Department of Energy (DOE) security clearance (some positions require additional DOE designations) We Value + Experience with Cyber-Physical Security Analysis of electro-mechanical equipment, including software and firmware. + Understanding of log aggregation and analysis using centralized logging systems (e.g. Splunk). + Experience configuring and troubleshooting networking equipment, computer hardware, and operating systems (Windows and Linux). + Experience with automated test systems or electrical test equipment (oscilloscopes, network analyzers, power supplies, etc.) + Experience with managing project budgets, schedules, and customer interaction. + Understanding of Operational Technology (OT) or Information Technology (IT) management. FMT2021 Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

Permanent, full-time, hybrid. Connecting clients to markets - and talent to opportunity. With 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, we're a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets - focusing on innovation, human connection, and providing world-class products and services to all types of investors. At StoneX, we offer you the opportunity to be part of an institutional-grade financial services network that connects companies, organizations, and investors to the global markets ecosystem. As a team member, you'll benefit from our unique blend of digital platforms, comprehensive clearing and execution services, personalized high-touch support, and deep industry expertise. Elevate your career with us and make a significant impact in the world of global finance. Business Segment Overview: Engage in a deep variety of business-critical activities that keep our company running efficiently. From strategic marketing and financial management to human resources and operational oversight, you'll have the opportunity to optimize processes and implement game-changing policies. Responsibilities Position Purpose: This position is being created to address the growing need for stronger alignment between business objectives and cybersecurity strategies. With the increasing complexity of cyber threats, regulatory requirements, and the organization's commitment to maintaining robust security standards, the Business Information Security Officer (BISO) will play a critical role in bridging the gap between business units and the cybersecurity team. The BISO will ensure that security considerations are seamlessly integrated into business operations, facilitate secure technology adoption, and enhance business resilience through risk management, M&A support, and disaster recovery planning. By fostering a culture of security awareness and driving compliance initiatives, this role supports the organization's strategic priorities and safeguards its assets, reputation, and customer trust within its Institutional and Commercial business segments. Primary duties will include: Business Unit Collaboration & Advisory. Risk Management. Cybersecurity Implementation & Integration. Security Leadership & Culture. Compliance & Legal Awareness. Disaster Recovery & Continuity Planning. Monitoring & Metrics. Qualifications To land this role you will need: At least 8 -10 years' cybersecurity/IT risk management experience (or information technology coupled with cybersecurity), with at least 5+ years in an operationally focused security practitioner role. At least 3 years' experience working with business leadership and enterprise projects. Demonstrated understanding and comprehension of a wide range of cybersecurity solutions. Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence. Strong project management, multitasking and organizational skills. Capable of working with diverse teams and promoting an enterprise-wide positive security culture. Strong written and verbal communication skills across all levels of the organization. What makes you stand out: Financial Service sector experience strongly preferred. 5+ years' IT risk management or IT Audit experience Self-starter requiring minimal supervision. Highly organized and efficient. Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen. Education / Certification Requirements: Bachelor's degree in business administration, information assurance or related technical field. Master's degree not required, but advanced degree (e.g., an MBA or master's in information assurance or computer science) is preferred. Preferable, but not required: CISSP, CISM, CRISC, CISA. Working environment: Hybrid Travel on an as needed basis. Hiring Salary Range $130,000-$150,000 salary to be determined by the education, experience, knowledge, skills and abilities of the applicant, internal equity and alignment with market data.) Subject to business performance and recommendations of management, this role may be eligible to participate in an incentive compensation plan. This compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position, is offered. #LI-Hybrid #LI-DK1

IT Infrastructure Analyst BH Job ID: 2001 SF Job Req ID: 12482 Ingersoll Rand is committed to achieving workforce diversity reflective of our communities. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. Job Title : IT Infrastructure Analyst Location : Hybrid in Sedalia, Springfield, OR St. Peter's, MO; Lenexa, KS; Greensboro or Davidson, NC About Us Imagine a company with technology leadership of over 160 years, yet it operates with the energy of a startup. Ingersoll Rand has dedicated itself to Making Life Better for its employees, customers, shareholders, and planets. We produce innovative and mission-critical flow creation and life science technologies - from compressors to precision handling of liquids, gasses, and powers - to increase industrial productivity, efficiency, and sustainability. Supported by over 80+ brands, our products are used in various end-markets including life sciences, food and beverage, clean energy, industrial manufacturing , infrastructure, and more. Across the globe, we're driving growth with an entrepreneurial spirit and ownership mindset. Learn more at irco.com and join us to own your future. Job Overview: We're seeking an IT Infrastructure Analyst with hands-on experience in IT infrastructure, including domain management, applications, migrations, and project oversight. This role requires a strong understanding of an organization's foundational tech framework, ensuring seamless integration, security, and efficiency. As a member of the ITS Americas group, this role focuses on footprint projects across our Americas business units to include M&A and divestitures. As the IT Infrastructure Analyst, you will own the migration experience-understanding the scope of work, managing both hands-on and indirect internal/external resources, and ensuring seamless execution. You will also be responsible for communicating instructions, progress, risks, and financial impacts to stakeholders. If you have solid hands-on IT infrastructure experience and are looking to take the next step in your career, this role is ideal if you thrive on making an impact, enjoy moderate travel, and are committed to delivering exceptional internal customer outcomes. Responsibilities: M&A & Footprint Changes * IT Analysis: Conduct discovery for newly acquired or transitioning sites, collaborating with functional leaders and site representatives to define strategic business direction. Assess project costs, build business cases, and align IT initiatives with organizational goals. * Vendor Engagement: Work with vendors to create negotiated Statements of Work that meet both project requirements and IT standards. * Project Management: Lead and organize M&A and footprint consolidation/changes from a technology standpoint. * Execution: Provide hands-on and/or direct local and remote resources to implement solutions. * Training: Promote end-user adoption and technology learning through delivery of informal and formal training. Implementation Best Practices * Standardize & Simplify: Work with functional areas to understand, evangelize, build business cases, and implement organizational best practices in locations. * Be a Partner: Support our functional counterparts (Finance, Sales, HR, etc.) with appropriate technologies to achieve the overall synergies of the business case. * Hit the Numbers: Improve cost estimation and project financial performance. Requirements: * Bachelor's degree or equivalent in Computer Science, Business, Engineering or a related field. * IT Infrastructure domain knowledge of O365, network, servers, workstation, telephony, and AD * Knowledge of ERP, CRM, PLM, security tooling, and other common applications suites * A self-starter with drive for continuous learning and improvement * Familiarity with manufacturing processes such as supply chain, production planning, inventory management, and quality assurance. Core Competencies: * Ability to effectively communicate ideas and information to technical and non-technical resources * Project management capabilities with a task-driven project management style * Financial literacy * Excellent verbal, written, and presentation skills Travel and Work Arrangements * This position is Hybrid from Springfield, MO; St. Peter's, MO; Lenexa, KS; Greensboro or Davidson, NC * Ability to travel up to 25% and work with multiple sites What We Offer At Ingersoll Rand, we embrace a culture of personal ownership - taking responsibility for our company, our communities, and our environment, as well as our individual health and well-being. Our comprehensive benefits package is designed to empower you with the tools and support necessary to take charge of your health, ensuring that together, we can continue to make life better. Our range of benefits includes health care options like medical and prescription plans, dental and vision coverage, as well as wellness programs. Additionally, we provide life insurance, a robust 401(k) plan, paid time off, and even an employee stock grant, among other offerings. These benefits are our commitment to you, so you can be your best at work and beyond. Ingersoll Rand Inc. (NYSE:IR), driven by an entrepreneurial spirit and ownership mindset, is dedicated to helping make life better for our employees, customers and communities. Customers lean on us for our technology-driven excellence in mission-critical flow creation and industrial solutions across 40+ respected brands where our products and services excel in the most complex and harsh conditions. Our employees develop customers for life through their daily commitment to expertise, productivity and efficiency. For more information, visit *************

ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: - Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. - Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. - Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). - Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. - Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. - Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. - Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. - Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: - Bachelor's Degree. - A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. - eMASS experience. - Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. - Strong desktop publishing skills using Microsoft Word and Excel. - Experience with industry writing styles such as grammar, sentence form, and structure. - Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: - CISSP, CASP, or a similar certificate is preferred. - Master's Degree in Cybersecurity or related field. - Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. - Demonstrated ability to work well independently and as a part of a team. - Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $92,213.33 - $125,146.66 a year

Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Security Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers. US citizenship is required per contract/client, at least one of the following certifications is required: CISSP (preferred), CISA or CISM. Experience with NIST 800-53 and the ability to travel up to 10% is required. Essential Duties and Responsibilities: - Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team. - Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications. - Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility. - Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements. - Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions. - Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team. - Promotion of Information Security awareness through various communication channels within the organization. - Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets. Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements. Perform risk assessments using vulnerability management and application security testing reports. Initiate formal security exception process, when required. Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements - Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required. - Bachelor's degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience. US Citizenship is REQUIRED per contract/client. At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISM Experience with NIST 800-53 is REQUIRED Ability to travel nationally up to 10% is REQUIRED HIPAA experience is preferred Experience with Cloud providers, such as Azure and AWS Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS Demonstrates excellent interpersonal, presentation and verbal/written communication skills Demonstrates strong customer service skills Ability to communicate technical information to non-technical staff Ability to work collaboratively with a broad range of staff (including analysts, engineers and leadership) Proficiency with Microsoft Office SmartSheet experience is a plus Ability to perform comfortably in a fast-paced, deadline-oriented work environment Ability to organize and execute complex tasks Ability to work as a team member as well as independently #LI-JH1 #maxcorp #LeadSecurityAnalyst #HotJobs0311LI #HotJobs0311FB #HotJobs0311X #HotJobs0311TH #TrendingJobs EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 111,605.00 Maximum Salary $ 145,000.00

Collabera is ranked amongst the top 10 Information Technology (IT) staffing firms in the U.S., with more than $525 million in sales revenue and a global presence that represents approximately 12,000+ professionals across North America (U.S., Canada), Asia Pacific (India, Philippines, Singapore, Malaysia), and Europe (Ireland, Netherlands, Poland, United Kingdom). We support our clients with a strong recruitment model and a sincere commitment to their success, which is why more than 75% of our clients rank us amongst their top three staffing suppliers. Not only are we committed to meeting and exceeding our customer's needs, but also are committed to our employees' satisfaction as well. We believe our employees are the cornerstone of our success and we make every effort to ensure their satisfaction throughout their tenure with Collabera. As a result of these efforts, we have been recognized by Staffing Industry Analysts (SIA) as the “Best Staffing Firm to Work For” for five consecutive years since 2012. Collabera has over 50 offices across the globe with a presence in ten countries and provides staff augmentation, managed services and direct placement services to global 2000 corporations. For consultants and employees, Collabera offers an enriching experience that promotes career growth and lifelong learning. Visit ***************** to learn more about our latest job openings. Awards and Recognition --Staffing Industry Analysts: Best Staffing Firm to Work For (2016, 2015, 2014, 2013, 2012) --Staffing Industry Analysts: Largest U.S. Staffing Firms (2016, 2015, 2014, 2013) --Staffing Industry Analysts: Largest Minority Owned IT Staffing Firm in the US. Job Description A Fortune manufacturing electric utility industry looking for IT Compliance analyst who will be supporting the IT Division staff in meeting compliance obligations and will provide support to ensure compliance with compliance obligations involving Information Technology systems that support the Bulk Electric System (BES) and SOX application environments. Duties and Responsibilities: · Help with specific assignments related to developing, implementing, documenting and monitoring compliance activities for Information Technology. · Help with specific assignments related to developing, implementing, documenting and monitoring Critical Infrastructure Protection (CIP) program activities for the Company. · Aid in ensuring the compliance activities, functions, plans and recommendations meet the risk posture of the corporation and the goals and performance measurements of the Information Systems Compliance Department. · Contribute to the effectiveness of the compliance program by assisting with the documentation and implementation of departmental procedures. Qualifications · Bachelor's degree in Information Systems, Computer Science or related field, 2 years of information technology experience and a minimum of 1 year of direct NERC CIP Standards Compliance experience or 2 years of other relevant experience OR 4 years of information technology experience and 1 year of direct NERC CIP Standards compliance experience or 2 years of other relevant experience. · Change Management or general ticketing systems · Personal experience with Industrial Defender, an application used for the configuration and management of computer system baselines. · Certified Information Systems Auditor (CISA) or other compliance related certification a plus. Additional Information If you want to know more and apply, please connect with: Niraj Singh **************************** ************ ***********************************************

Solid stable, long standing company that is very employee oriented with great benefits. They are one of the fastest growing companies in their space Job Description This is the perfect role to really put your mark on something. This is a newly created position, tasked with building a team to support the security vision of an entire business unit. Key Responsibilities: ·Communicates Information Security goals and new programs effectively within the organization ·Ensures consistent and effective security practices ·Establishes appropriate Information Security procedures and governance ·Oversees the deployment, integration, and initial configuration of all new Information Security solutions and Information Security policies, standards, and operational procedures ·Manages investigations into identified problematic activity and provides on-going communication with IT senior management ·Owns and manages relationships with vendors performing managed security services for the Overseas & Trading division ·Provides centralized guidance and governance of Information Security solutions ·Engages in ongoing communications with peers in the Infrastructure and Application Support groups as well as the business groups to ensure understanding of security goals ·Collaborates with affiliate companies to assist with identifying and managing Cybersecurity risk ·Assist with Information Security awareness programs ·Creates and maintains a set of metrics to document and measure the performance and effectiveness of the Information Security program; responsible for communicating metrics to the Overseas & Trading senior management. ·Participates in annual and long-range planning activities to ensure Information Security needs are addressed Qualifications Must be open to travel approximately 35% of the time. A college degree in MIS, CIS, Business Management, or related field 5+ years of overall Information Security experience 1+ years working on an Information Security implementation team An Information Security industry certification is preferred Progressive experience in a combination of Information Technology, Risk Management, Information Security, and Compliance roles is preferred Must have a working knowledge of at least one of the following regulatory compliance requirements and IT management frameworks: CIS Critical Security Controls ISO 27000-series standards NIST SP800-53 and related standards Must have a working knowledge of the following Information Security practices, standards, and systems: Data Loss Prevention (DLP) systems Encryption technologies and standards Endpoint security software Governance, Risk, and Compliance (GRC) systems Identity and Access Management (IAM) Incident response practices Network security (e.g. firewalls, IDS/IPS, VPN, etc.…) Risk assessment practices Security Information Event Management (SIEM) systems Vulnerability management practices and scanning tools Additional Information Solid company with excellent track record of stability,.Great opportunities for growth and learning.

Join the industry leader to design the next generation of breakthroughs. Innovate to solve the world's most important challenges. Honeywell is a Fortune 100 company that invents and manufactures technologies to address critical challenges linked to global macrotrends such as safety, security, productivity, global urbanization and energy. With approximately 129,000 employees worldwide, including more than 19,000 engineers and scientists, Honeywell has an unrelenting focus on quality, delivery, value, and technology in everything they make and do. Honeywell has been named a Top 100 Global Innovator for seven years in a row, recognizing the company's global reach of portfolio and invention influence. In Kansas City, Honeywell Federal Manufacturing & Technologies (FM&T) manages and operates the U.S. Department of Energy/National Nuclear Security Administration's (NNSA) Kansas City National Security Campus. This state-of-the-art engineering, manufacturing and sourcing facility produces a wide array of intricate components to deliver trusted national security products and government services primarily for the NNSA. Honeywell FM&T's culture of integrity, commitment and continuous improvement enables them to deliver responsive, collaborative and innovative management and technology services and products that translate into cutting edge solutions to complex national security issues. Summary This Engineer III position is responsible for developing and leading execution of technical roadmaps for advancing the cyber-physical security of automated test systems. The role also includes the analysis, documentation and closure or mitigation of future risks. Duties and Responsibilities Provides project leadership and technical guidance on complex engineering projects and programs. Lead a small team to develop and deliver on technical roadmaps. Designs and/or develops new products, architectures, and unique equipment to meet specific requirements. Participates in developing operating procedures, work instructions, and inspection criteria on new products and components. Plans and performs engineering testing and uses advanced statistical and scientific methods to address and assure system reliability. Interacts with customers, design agency and counterparts to resolve design, development, production, and acceptance issues. Performs component analysis and analyzes system-level aggregate results. You Must Have Bachelor of Science degree from an ABET accredited university in Engineering or Physics from and accredited program. 4+ years of relevant experience in engineering, analytical, or related technical activities. Ability to travel up to 15% of the time Ability to work remote, hybrid, or on-site as directed by management and is determined by the needs of the business United States Citizenship Regular and reliable attendance is an essential function of this job Ability to obtain and maintain, if required for position, a U.S. Department of Energy (DOE) security clearance (some positions require additional DOE designations) We Value Experience with Cyber-Physical Security Analysis of electro-mechanical equipment, including software and firmware. Understanding of log aggregation and analysis using centralized logging systems (e.g. Splunk). Experience configuring and troubleshooting networking equipment, computer hardware, and operating systems (Windows and Linux). Experience with automated test systems or electrical test equipment (oscilloscopes, network analyzers, power supplies, etc.) Experience with managing project budgets, schedules, and customer interaction. Understanding of Operational Technology (OT) or Information Technology (IT) management. FMT2021 This job description/job posting is not all inclusive and other duties may be assigned. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. If you require a reasonable accommodation to submit an application, please send an email to our Reasonable Accommodation Support Team at **********************. To learn more about our benefits and culture follow the link below: *************************************************** Additional Information: Job ID: 2446 Category: Engineering Level of Experience: Experienced Professional Posting Location: Kansas City National Security Campus 14520 Botts Road Kansas City, MO, 64147 Remote Eligibility: On-Site Travel Required: 0-10% Approved Work States: MO Hourly/Salary: Salary

Permanent, full-time, hybrid. Connecting clients to markets - and talent to opportunity. With 4,300 employees and over 400,000 retail and institutional clients from more than 80 offices spread across five continents, we're a Fortune-100, Nasdaq-listed provider, connecting clients to the global markets - focusing on innovation, human connection, and providing world-class products and services to all types of investors. At StoneX, we offer you the opportunity to be part of an institutional-grade financial services network that connects companies, organizations, and investors to the global markets ecosystem. As a team member, you'll benefit from our unique blend of digital platforms, comprehensive clearing and execution services, personalized high-touch support, and deep industry expertise. Elevate your career with us and make a significant impact in the world of global finance. Business Segment Overview: Engage in a deep variety of business-critical activities that keep our company running efficiently. From strategic marketing and financial management to human resources and operational oversight, you'll have the opportunity to optimize processes and implement game-changing policies. Responsibilities Position Purpose: This position is being created to address the growing need for stronger alignment between business objectives and cybersecurity strategies. With the increasing complexity of cyber threats, regulatory requirements, and the organization's commitment to maintaining robust security standards, the Business Information Security Officer (BISO) will play a critical role in bridging the gap between business units and the cybersecurity team. The BISO will ensure that security considerations are seamlessly integrated into business operations, facilitate secure technology adoption, and enhance business resilience through risk management, M&A support, and disaster recovery planning. By fostering a culture of security awareness and driving compliance initiatives, this role supports the organization's strategic priorities and safeguards its assets, reputation, and customer trust within its Institutional and Commercial business segments. Primary duties will include: * Business Unit Collaboration & Advisory. * Risk Management. * Cybersecurity Implementation & Integration. * Security Leadership & Culture. * Compliance & Legal Awareness. * Disaster Recovery & Continuity Planning. * Monitoring & Metrics. Qualifications To land this role you will need: * At least 8 -10 years' cybersecurity/IT risk management experience (or information technology coupled with cybersecurity), with at least 5+ years in an operationally focused security practitioner role. * At least 3 years' experience working with business leadership and enterprise projects. * Demonstrated understanding and comprehension of a wide range of cybersecurity solutions. * Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence. * Strong project management, multitasking and organizational skills. * Capable of working with diverse teams and promoting an enterprise-wide positive security culture. * Strong written and verbal communication skills across all levels of the organization. What makes you stand out: * Financial Service sector experience strongly preferred. * 5+ years' IT risk management or IT Audit experience * Self-starter requiring minimal supervision. * Highly organized and efficient. * Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen. Education / Certification Requirements: * Bachelor's degree in business administration, information assurance or related technical field. * Master's degree not required, but advanced degree (e.g., an MBA or master's in information assurance or computer science) is preferred. * Preferable, but not required: CISSP, CISM, CRISC, CISA. Working environment: * Hybrid * Travel on an as needed basis. Hiring Salary Range $130,000-$150,000 salary to be determined by the education, experience, knowledge, skills and abilities of the applicant, internal equity and alignment with market data.) Subject to business performance and recommendations of management, this role may be eligible to participate in an incentive compensation plan. This compensation package, in addition to a full range of medical, financial, and/or other benefits, dependent on the position, is offered. #LI-Hybrid #LI-DK1

ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: ******************* $92,213.33 - $125,146.66 a year