Information security analyst jobs in McKinney, TX

Employment Type: W2 Contract, 11 month contract with possibility for extensions. Pay Rate: $75.00 - $80.88 per hour BEPC is seeking a highly skilled Application Security Architect to join our client's dynamic and security-forward technology organization. This role is essential in integrating robust security practices into DevOps pipelines, ensuring secure software delivery workflows, and championing a culture of “shift-left” security. As part of a collaborative and innovative environment, you will partner closely with development, operations, and security teams to design secure CI/CD architecture, automate controls, enhance vulnerability mitigation, and strengthen cloud and container security posture. Key Responsibilities Design, build, and maintain secure CI/CD pipelines supporting modern DevSecOps practices. Integrate SAST, DAST, SCA, and other security tools into development workflows. Collaborate with development and operations teams to remediate vulnerabilities quickly and effectively. Automate security testing, compliance validation, and recurring controls within pipelines. Monitor cloud and container environments to investigate and respond to security events. Develop and maintain security standards, policies, and best practices. Stay ahead of emerging security threats, DevSecOps advancements, and tooling innovations. Qualifications - Must Have Bachelor's degree in Computer Science, Cybersecurity, or related technical field. 6+ years total experience including 2-3 years in application security or DevSecOps. Strong hands-on experience with CI/CD tools (e.g., Jenkins, Harness). Development experience with Java, Python, .NET, or similar languages. Experience with application security tools such as Veracode, GHAS, Orca, etc. Proficiency in scripting languages (Python, Bash). Familiarity with containerization and orchestration (Docker, Kubernetes). Knowledge of cloud service providers (AWS, Azure, GCP) and native security features. Strong understanding of secure coding principles and application security methodologies. Experience with IaC tools (Terraform, Ansible). Interview Process 1st Round: Virtual interview 2nd Round: Onsite interview

Title: Security Analyst Employment Type: Contract to Hire Duration: 3 months to Hire Onsite: yes, Monday-Friday Must be Authorized to work in the USA: No sponsorship Must Have: Strong AD background. The right candidate will address daily tasks and routine processes for IT security. This position will be responsible for assessing IT security incidents and applying the necessary technical troubleshooting steps to resolve the issue. The Security Analyst will also be responsible for monitoring suspicious or malicious activity in the company IT infrastructure and addressing security risk and incidents. Essential Duties and Responsibilities include the following. Other duties may be assigned. Active Directory Management o Domain controller maintenance and troubleshooting o ADCS (Active Directory Certificate Services) Active Directory Federation Services o ADFS Server maintenance and troubleshooting o Work with IT Operations and Development teams with ADFS authentication DNS (Domain Name Service) o Creation and management of DNS records o Management of F5 DNS VIPs and pools Active Directory Sites and Services o Management of sites and subnets Active Directory Domains and Trusts o Management of domain trust configuration Group Policy Management o Troubleshooting and cleanup of GPOs Patching Operations o Patching research and preparation § Research the risk and value of each patch and report the "company" risk rating based on all layers of security in our environment § Validate that all applications for IT security are functioning as designed and intended at the conclusion of patching o SCCM (System Center Configuration Manager) o Work with the SCCM administrators to address all patching issues and confirm that patching has been configured correctly Forensic Operations o Security Monitoring § Monitor security alerts and tools for signs of compromise or malicious behavior § Monitoring network alerts and traffic for DDoS attacks Forensic Investigation o Investigate the root cause of compromise incidents or exploited vulnerabilities o Investigate infrastructure weaknesses and report on malicious activity or potential risk Project Operations o Assist with delegated duties for all security projects o Partner with other security or IT operations team members for deployments or maintenance Conducts all business in a professional and ethical manner to serve customers and increase the goodwill and profit of the company Ability to participate in a weekly call rotation IT Operations o Monitor and assist with any and all IT operational emergencies to keep business applications On-Call Responsibilities o Respond and escalate all IT security incidents as needed Mentoring and Training o .Responsible for the mentoring of Security Administrators Ability to travel overnight Qualifications High school diploma or general education degree (GED) One to four years' experience in an IT related field knowledge of IT Security Operations and Forensic Operations Experience with computer networks Experience with project management and delegation Business communication and collaboration skills Documentation skills Ability to work well within a team, and work alone to accomplish tasks independently Ability to interpret research into solutions to actual problems Customer Service skills Ability to apply common sense understanding to carry out instructions furnished in written oral form or via DRH applications Proficiency with MS Office and email Preferred Qualifications Bachelor's Degree in Cyber Security discipline preferred

Application Security Architect (DevSecOps) Contract Type: 12-Month W2 Contract Pay Rate: $65-$75/hour (Based on Experience) Russell Tobin is partnering with a large, well-established financial services organization to identify an experienced Application Security Architect for a long-term contract opportunity. This role will be responsible for embedding security into the software development lifecycle and supporting secure DevOps practices across enterprise applications. Responsibilities Design, implement, and maintain secure CI/CD pipelines. Integrate security tools including SAST, DAST, and SCA into development workflows. Work closely with development and operations teams to identify and remediate application vulnerabilities. Automate security testing and compliance validation processes. Monitor and respond to security incidents in cloud and container environments. Develop, document, and enforce application security policies, standards, and procedures. Stay current on evolving security threats and DevSecOps best practices. Required Qualifications Bachelor's degree in Computer Science, Cybersecurity, or a related field. 6+ years of overall IT experience with 2-3 years focused on application security or DevSecOps. Strong experience with CI/CD tools such as Jenkins, Harness, or similar platforms. Development experience with Java, Python, .NET, or related languages. Hands-on experience with application security tools such as Veracode, GitHub Advanced Security (GHAS), Orca, or similar. Proficiency with scripting languages such as Python and Bash. Experience with container technologies including Docker and Kubernetes. Knowledge of cloud platforms (AWS, Azure, and/or GCP) and their security capabilities. Strong understanding of secure coding practices and application security principles. Experience with Infrastructure as Code tools such as Terraform and Ansible. Work Environment Hybrid schedule with 3 days onsite and 2 days remote each week Professional enterprise environment with cross-functional collaboration Long-term contract with potential for extension Benefits Info: Pride Global offers eligible employee's comprehensive healthcare coverage (medical, dental, and vision plans), supplemental coverage (accident insurance, critical illness insurance and hospital indemnity), 401(k)-retirement savings, life & disability insurance, an employee assistance program, legal support, auto, home insurance, pet insurance and employee discounts with preferred vendors.

Responsibilities: Oversee SOC operations during assigned shifts, ensuring efficient workflow, proper escalation procedures, adherence to SLAs, and effective communication between analysts. Lead investigations and response to complex security incidents impacting OT systems, networks, and applications. This includes coordinating efforts with other teams and business units (e.g. Networking, Architecture, CIP Compliance). Perform in-depth analysis of security alerts and logs common in ICS/SCADA systems to identify indicators of compromise (IOCs). Make real-time decisions on incident severity, containment strategies, and escalation paths and actions taken by Tier 1 & 2 analysts for incidents. Evaluate and provide feedback on the performance of security technologies (e.g. SIEM, SOAR, IIDS/IPS) used in the SOC. Identify and oversee the optimization of detection rules to reduce false positives.

The Finance Application Analyst plans, implements, and enhances finance systems with a primary focus on SAP FICO. Partnering with internal stakeholders and vendors, this role translates business requirements into functional specifications, configures SAP solutions, and supports end users through training and change management. The analyst also ensures system reliability, performance, and security through proactive monitoring and best practice governance. General Job Duties and Responsibilities: Finance System Planning & Implementation: Lead/participate in roadmap, fit gap, and deployment activities; coordinate with internal teams and vendors for on time delivery. Solution Design & Configuration: Configure and enhance GL, AP, AR, AA, Cost/Profit Center accounting, and related integrations per current design and business requirements. Requirements & Specifications: Elicit and analyze business needs; create functional specs (incl. integrations, reports, forms, and controls); collaborate with developers on build, test, and release. Testing & Cutover: Define test scenarios/scripts, support UAT, manage defect triage, and assist with data migration and cutover planning. Support & Training: Provide tier2/3 support, knowledge articles, and end-user training for new implementations or changes. Reliability, Performance & Security: Monitor jobs/interfaces, data integrity, and access controls; partner with IT security/compliance on audit readiness and best practices (e.g., SOX related controls where applicable). Documentation & Governance: Maintain configuration documentation, process flows, and change logs; follow change management procedures and SDLC standards. Cross Functional Collaboration: Work with Finance, Accounting, Procurement, and IT to optimize processes and resolve issues; align deliverables with close cycles and reporting deadlines. Continuous Improvement: Identify automation and analytics opportunities (e.g., Fiori, workflow, dashboards) to improve accuracy, cycle time, and user experience. Other duties as assigned. Supervisory Responsibilities: This job has no supervisory responsibilities Qualifications: Bachelor's degree in Computer Science, Information Technology, or related field preferred, or equivalent work experience in SAP FICO implementation. Minimum 5 years of relevant hands-on SAP FICO implementation (design, configuration, testing, deployment, and support) experience, preferably in a eMobility, consumer electronics, or powersports. Strong understanding of core finance processes: chart of accounts, invoicing, payments, vendor management, period close, and compliance. Ability to manage multiple assignments in a fast-paced environment; strong troubleshooting and stakeholder communication. Experience with SAP S/4HANA (Fiori), CO‑PA, tax and bank integrations, and IDoc/Interface troubleshooting is highly preferred. Exposure to adjacent SAP modules (MM/SD) and basic ABAP debugging for issue isolation is a plus. Experience with SOX controls, security/role design, and audit support is a plus. Familiarity with project tools (e.g., JIRA/Azure DevOps) and process mapping (e.g., Visio/BPMN) is a plus. Bilingual in English and Mandarin is a plus. Physical Demands: This role is primarily office-based and involves prolonged periods of computer work, frequent virtual meetings, and regular collaboration across departments and vendors. Occasional off-hours support may be required during cutovers, month end activities, or critical releases. Light lifting of laptops or documents (up to 25 pounds) and occasional travel for workshops or go lives may be necessary. Specific vision abilities required for this job include close vision, color vision, and the ability to adjust focus. EEO Statement: Segway Inc. is committed to providing Equal Opportunity in Employment to all applicants and employees regardless of race, color, religion, gender, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.

The Senior InfoSec GRC Analyst is responsible for driving the development, implementation, communication, and maintenance of technology policies, standards, and procedures that are aligned to industry standards and regulatory requirements. This role ensures that technology processes adhere to regulatory requirements, manage risks effectively, and establish strong governance practices. The position also develops and implements controls, monitors compliance, and supports risk management activities. Responsibilities: Lead the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines. Continuously evaluate and update cybersecurity and IT policies to ensure they remain current and effective. Ensure policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Collaborate with cross-functional teams, including IT, legal, compliance, and business stakeholders, to ensure cybersecurity policies align with organizational objectives. Translate complex information and documentation into clear and simple concepts for end-users. Provide specialized expertise to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommend actionable solutions to mitigate risks and strengthen overall security posture. Stay informed about the latest cybersecurity threats, trends, and best practices. Maintain accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses. Benchmark policies against industry standards and best practices. Develop and implement governance frameworks for cybersecurity policy management. Monitor key performance indicators, conduct gap analyses and risk assessments, and implement frameworks as needed. Test and monitor the effectiveness of controls. Establish feedback loops and analyze metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats. Lead and support internal and external audits and assessments of cybersecurity policies and practices. Ensure identified audit and assessment findings and actions are tracked to closure. Maintain comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicate policy requirements and updates to relevant stakeholders. Identify opportunities for innovation and improvement in cybersecurity policies and practices. Propose mitigation strategies and verify the effectiveness of remediation plans. Requirements: Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field (preferred). Minimum of six (6)+ years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field. Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust). Proficiency with data analysis and reporting tools (e.g., Excel, Power BI). Relevant certifications such as CISM and/or CISA (highly desirable). Strong knowledge of regulatory frameworks (NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Understanding of risk management concepts, control frameworks, and compliance auditing. Ability to provide consultation and recommendations to management. Strong communication skills with the ability to present effectively to both technical and non-technical audiences.

One of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position. This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position. Job Description: Perform cloud assessments, web application penetration testing and mobile application testing Carry out reviews of security, network, applications, and cloud environments Plan/Design security activities with automation as the primary driver to align with the security strategy Ensure alignment of security controls, supporting services and related policies with regulations and industry-standard best practices Assist management with the improvement of policy/procedure to support Cloud Security Engineering Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends Experience required: Penetration Testing experience within Network, Application, Web Application or Mobile Applications Experience cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong experience with custom scripting (python, PowerShell, bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys etc. Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with using ServiceNow is a plus. We look forward to receiving your application!

• DevSecOps' expertise in building and supporting security solutions for Windows, Linux, above mentioned platforms, including services such as Enterprise Vulnerability Management, data protection, privacy and compliance, network protection. • Building and deploying security solutions using technologies such as Docker, Kubernetes, and GIT Hub. • Experience in low code environments such as Appian and Microsoft Power Platforms is mandatory. • Experience with Alteryx ETL and Workflow Designer platform is plus. • Experience with Identity and Access, Endpoint, Vulnerability management and other cybersecurity automation workflows. • Experience writing Automation scripts in Python and deploying them leveraging APIs. • Experience with AI enabled automation workflows. • Experience with Agile methodology and Atlassian tools including JIRA and Confluence. • Communicating with various audiences, including business leaders, engineers, clients, and team members, with excellent ability to convey information that is relevant to the audience. • Written communication for excellent documentation and reporting. • Outstanding teamwork across multidiscipline plan-build-run teams. • Applying your understanding and expertise with systems automation platforms and technologies. • Automating security controls, data, and processes to provide metrics and operational support. • Employing cloud-based APIs when suitable to integrate and orchestrate across various systems in the automation workflow. • Developing and delivering solutions using Agile methodology. “Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.”

AI Security Engineer (Generative AI Focused) Plano, Texas, United States Contract We're looking for an experienced AI Security Engineer to join us, someone skilled in both artificial intelligence (AI) and cybersecurity. This role focuses on ensuring the security and integrity of AI systems and applications. Requirements Qualifications to be Successful: Strong understanding of AI technologies and security vulnerabilities. Experience with machine learning, neural networks, and AI methodologies. Knowledge of cybersecurity principles, frameworks, and standards. Proficiency in Python or R, common languages used in AI. Minimum Qualifications: Bachelor's degree in computer science, information security, or related field (advanced degree preferred). 3+ years of cybersecurity experience, with a focus on securing AI systems. Strong understanding of machine learning techniques, algorithms, and AI frameworks. Familiarity with cybersecurity standards, regulations, and compliance requirements. Hands-on experience with security tools and technologies. Proficiency in programming languages used in AI development. Excellent analytical, communication, and interpersonal skills. Relevant certifications such as CISSP, CISM, CEH, or GIAC are beneficial. Experience with cloud computing and containerization technologies is desirable. Thanks, Vikas. ************************

Job Posting Title: Cloud Security Engineer - SRE We are seeking a skilled and motivated Cloud Security Engineer - SRE to join our dynamic team. The ideal candidate will possess a strong technical background in systems administration, cloud computing, and infrastructure as code, with a particular focus on solution engineering/site reliability. This role will involve collaborating with cross-functional teams to enhance our security posture and streamline processes through automation. Technical Skills • Programming and Scripting: Strong proficiency in languages like Python, Go, Bash, or Ruby. SREs often need to write automation scripts and build tooling. • Systems Administration: Deep understanding of operating systems (Linux/Unix), file systems, processes, and system configurations. • Infrastructure as Code (IaC): Experience with IaC tools like Terraform, Ansible, or Chef to manage infrastructure. • Cloud Computing: Knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, including services like EC2, S3, Kubernetes, and serverless functions. • Containers and Orchestration: Expertise in containerization (Docker) and container orchestration (Kubernetes, OpenShift). • Networking: Understanding of networking concepts, including DNS, firewalls, load balancing, and VPNs. • Monitoring and Observability: Experience with monitoring and observability tools like Prometheus, Grafana, Datadog, or New Relic. Ability to set up and maintain monitoring dashboards, alerts, and logs. • Continuous Integration/Continuous Deployment (CI/CD): Familiarity with CI/CD tools like Jenkins, GitLab CI, GitHub Actions, or CircleCI. • A strong understanding of HashiCorp Vault and Terraform will make you stand out. 2. Problem-Solving and Troubleshooting • Incident Management: Ability to manage and respond to incidents, perform root cause analysis, and implement post-mortem reviews. • Automation: Focus on automating repetitive tasks to improve efficiency and reduce human error. • Performance Tuning: Skills in identifying and resolving performance bottlenecks in systems and applications. 3. Collaboration and Communication • Teamwork: Ability to work closely with cross-functional teams, including software engineers, product managers, and DevOps teams. • Documentation: Skill in creating clear and comprehensive documentation for systems, processes, and incident reports. • Communication: Effective communication skills for interacting with stakeholders and explaining technical concepts to non-technical audiences. 4. Reliability and Scalability • Service-Level Objectives (SLOs) and Service-Level Agreements (SLAs): Understanding of setting, monitoring, and maintaining SLOs and SLAs for system reliability. • Scalability: Knowledge of best practices for designing and scaling systems to handle increased loads and demands. • Redundancy and Resilience: Experience in designing systems with redundancy and fault tolerance to minimize downtime. 5. Security and Compliance • Security Best Practices: Understanding of security principles, such as access control, data encryption, and secure coding practices. • Compliance: Familiarity with compliance standards like GDPR, HIPAA, or PCI-DSS, depending on the industry. Minimum Job Qualifications: • Bachelor degree in business or equivalent work experience • 10 years of previous program leadership and/or relevant consulting experience • Knowledge of and demonstrated experience in program management framework, knowledge groups & life cycle • 5+ years' experience in driving large scale data center consolidation efforts • Minimum 5 years' experience with matrix management of cross-functional processes and teams • Proficient with Project Management tools

Glocomms is partnered with an integral financial services corporation seeking a Security Engineer focused on Privileged Access & Automation to design and maintain secure authentication, authorization, and secrets management systems across on-prem and cloud environments. This role focuses on privileged access management, security architecture, and automation, leveraging AI-based capabilities to ensure operational integrity and compliance. Responsibilities Implement and manage privileged access systems (CyberArk, HashiCorp Vault) and secrets lifecycle management. Design and support authentication/authorization frameworks (Active Directory, oAuth 2.0, OIDC, AWS IAM, PKI, certificates). Maintain operational integrity through patching, version control, upgrades, troubleshooting, and break-fixes. Apply security as code principles using Terraform, Ansible, Jenkins pipelines, and CI/CD deployments. Develop automation scripts in Go, Bash, Python, PowerShell for secure integrations. Integrate AI-based security capabilities for detection, remediation, and automated workflows. Collaborate cross-functionally with engineering, cloud, and compliance teams; participate in 24x7 operational support. Qualifications 5+ years in security engineering, architecture, or operations within complex environments. Hands-on experience with CyberArk, HashiCorp Vault, PKI, and privileged access methodologies. Strong knowledge of Active Directory, Kerberos, LDAPS, oAuth 2.0, OIDC, and AWS IAM. Familiarity with Kubernetes security, HSMs, and cloud ecosystems. Proficiency in Go, Bash, Python, PowerShell; experience with Terraform, Ansible, Jenkins. Understanding of security architecture principles, confidentiality, integrity, availability, and compliance frameworks. Exposure to AI-enabled security tools and automation strategies preferred. This is a hybrid role requiring 3 days per week onsite in Dallas, TX. Candidates must be fully authorized to work in the United States. Unfortunately, visa sponsorship is not available for this role. Applications must include candidate's full name (first and last) and contact information in order to be considered.

Role: Sr Security Engineer SSO (PingFederate) Location: Southlake, TX and Secondary Locations - Austin, TX or Phoenix, AZ. (Hybrid - Mondays - Thursdays on site and Friday Remote.) Duration: 18+ Months Looking for a Sr Engineer with following skills (5-8 years of experience) PingFederate hands-on experience (Ping Fed, Ping ID, Ping Access). Good troubleshooting skills and ability to work independently. Experience working with docker technologies /Kubernetes Good communication and self-starter HYPR affirm/ password less experience is a plus Monitor new and emerging security threats from various sources. Assist with creating product detection mechanisms based on emerging threats. Working knowledge of Linux, Firewalls, Virtual Private Networking, Intrusion Detection / Prevention and penetration testing. Strong technical track record and hands on experience with many of the following technologies: L2/L3 firewalls, application layer security, Intrusion Detection/Prevention, anti-virus solutions, spyware/malcode tools, DDOS mitigation, traffic profiling/anomaly detection, wireless security, VPN and VoIP security. Ability to troubleshoot through network traces and maintains the highest levels of client assurance and confidence. Bachelor's degree in computer science or equivalent. 2-5 years with Security implementation experience.

About the Role Eden Prescott is partnering with one of our top AI security clients, a fast-growing company that's seen significant momentum over the past year, to help them hire a Security Engineer focused on Corporate security. This is a hands-on opportunity to build and scale the foundational systems that protect an AI-driven infrastructure from evolving threats. You'll work closely with engineering, IT, and compliance teams to ensure deep visibility across environments, strengthen detection capabilities, and automate key workflows that keep the company secure as it scales. What You'll Do Partner with engineering and infrastructure teams to design and build pipelines for collecting and correlating security telemetry. Develop and maintain scalable, high-performance monitoring and detection infrastructure. Create detection strategies to identify anomalous or malicious activity and ensure critical systems remain protected. Triage, investigate, and resolve security alerts and incidents, driving them to closure with minimal business impact. Collaborate with engineering to eliminate recurring issues and continuously refine detection rules. Stay ahead of emerging threats and continuously evolve detection and response capabilities. Contribute to the strategy, risk management, and automation roadmap for security operations. Work with compliance and audit teams to maintain certifications and ensure alignment with security frameworks. Implement pragmatic, business-driven controls across multi-cloud environments. What You'll Bring 5+ years of experience in security engineering Must have EDR, Identity (MFA, PAM, phishing-resistant authentication methods), Azure governance (policies), and CWPP/CSPM. Strong track record building and scaling SOC operations in cloud-native environments. Hands-on experience with SIEM/SOAR tools (e.g., Splunk, Microsoft Sentinel, Trellix) and telemetry instrumentation. Familiarity with CNAPP solutions (e.g., Wiz, Orca, Defender, Singularity) across multi-cloud ecosystems. Fluency in scripting languages such as Python, PowerShell, or JavaScript. Automation experience with Azure Functions, Logic Apps, AWS Lambda, or Runbooks. Expertise in IAM analysis, anomaly detection, and real-time threat response across cloud environments. Strong communication, decision-making, and collaboration skills in a distributed team setting. Ability to prioritize and execute in a dynamic, high-growth environment. Bonus: familiarity with DevOps practices and experience in AWS, GCP, or Azure deployments.

***We are unable to sponsor for this permanent full-time W2 role*** is bonus eligible*** Prestigious Financial Company is currently seeking a Principal IT Governance Analyst. Candidate will be responsible for the development, implementation and oversight of programs within IT. Ensures the overall effectiveness and adherence to the governance framework and ongoing evaluation of IT's internal control environment. Responsibilities: Partner cross-functionally to analyze control data and drive continuous improvement in IT delivery processes and control frameworks Develop sophisticated dashboards and analytical reports that demonstrate control adherence and highlight strategic improvement opportunities Spearhead the development of key performance indicators (KPIs), key risk indicators (KRIs), and advanced metrics to empower IT leadership decision-making Design and implement standardized communication templates and executive-level presentation materials that effectively convey complex technical information Create comprehensive reports for senior and executive management that drive informed decision-making and strategic planning Serve as a trusted advisor to stakeholders on control-related matters, providing clear guidance and recommendations Lead multifaceted projects involving multiple systems, ensuring alignment with governance frameworks and regulatory requirements Perform comprehensive gap analyses between existing controls and regulatory requirements, mapping processes to industry standards Establish and maintain continuous monitoring frameworks to ensure ongoing compliance and control effectiveness Provide subject matter expertise across various IT process domains Collaborate closely with compliance and internal audit teams to ensure alignment of IT controls with regulatory expectations Support remediation activities for identified findings, working with key IT stakeholders to implement effective solutions Serve as a governance liaison during regulatory examinations and audit engagements Identify and recommend emerging technologies and tools that enhance efficiency, quality, and security across IT systems Anticipate emerging risks and proactively develop mitigation strategies Lead special IT projects as needed to address organizational priorities Apply strategic thinking to complex technical challenges, supporting teams in developing innovative solutions Perform other duties as assigned that align with organizational objectives and department needs Qualifications: [Required] Strong analytical and data reporting skills [Required] Ability to work across multiple levels of management [Required] Able to succeed in fast-paced environment with frequent changes [Required] Comfortable communicating with both technical and non-technical audiences [Required] Takes the initiative to research, learn and deliver; anticipates the play [Required] Humble, collaborative, and focused on making sure the entire team succeeds [Required] Excellent oral and written communication skills [Required] Working knowledge and experience of IT control frameworks and industry standards such as ITIL, COBIT, NIST Cybersecurity Framework (CSF), or similar industry-accepted standards and the principles embedded within them [Required] Excel [Required] PowerPoint [Required] Dashboard reporting tools (e.g. Tableau and JIRA) [Preferred] Experience with Security and DevOps tools [Preferred] Integrated GRC management solutions such as Archer Education and/or Experience: [Required] BS degree in Computer Science, similar technical field, or equivalent practical experience [Required] 10+ years of work experience [Preferred] Work experience in the capital markets or information technology industry

Job Title: Azure Cloud Security Engineer - W2 only - we can provide sponsorship as well Duration: Long Term Top Skills: Azure Policy Exp Azure Security Services - Security Center, Key Vault, Log Analytics Identity and Access Management Exp Prior Software Engineering background, any language is fine but someone coming from a Sys Admin/Devops background won't be the right fit here. The Expertise and Skills You Bring 8+ years of experience in IT infrastructure, security, compliance A strong understanding of Azure services and security capabilities Solid hands-on experience with at least two of the following: Engineering/operational support of cloud account configuration in AWS or Azure Software Development, Linux Systems Administration, Data Networking Hands-on configuration of CI/CD pipelines for cloud-native deployments Very strong with scripting languages, including integration with CSP APIs; python preferred Azure Networking Identity and Access Management - RBAC Azure Policies Azure Security Services - Security Center, Key Vault, Log Analytics Azure ARM/PowerShell Ability to work with application and security teams to promote a secure posture in the cloud You can mentor and train other team members to work effectively in the cloud You are a self-starter who can independently by reading technical documentation Bonus skills Advanced Azure Certifications

Artech Information Systems is the #12 Largest IT Staffing Company in the U.S. and an employer of choice for over 7,000 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications. At the forefront of the staffing industry, Artech is a minority and women-owned business enterprise (MWBE) committed to maximizing global workforce solutions on behalf of its clients. Artech's deep heritage, proven expertise and insightful market intelligence has secured long-term partnerships with Fortune 500 and government clients seeking world-class professional resources. Job Description • Respond to inbound phone and electronic requests for technical assistance from customers • Perform all tasks required per shift including reporting, monitoring, and turnover • Evaluate threats and determine impact to customer's environment • Assess incident severity and escalate to the next level as needed • Perform additional event/incident investigation and research as needed • Utilize internal guidelines for effective call processing and escalation and client service • Interact with network intrusion detection devices and other security systems via proprietary and commercial consoles, both local and remote • Manage customer accounts and confidently communicate technical information to Dell Services client base and internal technical team members • Maintain keen understanding of evolving Internet threats to ensure the security of Dell Services Client networks • Participate in knowledge sharing with other analysts and develop customer solutions efficiently • Coordinate or participate in individual or team projects to ensure quality support for our clients • Perform other essential duties as assigned Requirements • Working knowledge of analyzing events from SPLUNK SIEM. • Ability to work shift work in a 24/7/365 environment • 1+ years of experience in technical role with notable exposure to security (or have a Technical Degree) • Experience with Microsoft Windows and related security concepts • Experience with network connectivity and protocols such as TCP/IP, VPNs, VLAN, NAT, DHCP • Experience / Knowledge of variety of Intrusion Detection/Prevention platforms • Experience with/knowledge of IT security devices such as: Security Information & Event Management (SIEM) systems, firewalls, and/or antivirus management • Investigative and analytical problem solving skills • Understanding of security threats and attack countermeasures • Knowledge of current security events and a demonstrated passion to stay informed Preferences • Bachelor's Degree or equivalent in an IT/Technical field or equivalent work experience • 1+ years of experience in security role • Coding or scripting experience • Familiarity with Unix/Linux • Security+, GIAC, GCIA, GCIH, GCFW, GHTO, GSEC or similar certification • CISSP, CCNA, CCSP, CSPFA certifications a plus Qualifications MUST HAVES: • 2+ years of experience in technical role with notable exposure to security • Working knowledge of analyzing events from SPLUNK SIEM. • Ability to work shift work in a 24/7/365 environment. • Experience with/knowledge of IT security devices such as: Security Information & Event Management (SIEM) systems, firewalls, and/or antivirus management This is a Bulk hiring position for our direct client. Additional Information For More Information, Please Contact Siva Kumar ************

Job DescriptionJob Title: Network Security - Cisco ASA / Checkpoint Type: Contract We are seeking a highly skilled Network Security Engineer with deep expertise in Security Service Edge (SSE) and Secure Access Service Edge (SASE) to lead the design, deployment, and lifecycle management of cloud-delivered security services. This role is critical in implementing Zero Trust Network Access (ZTNA), securing hybrid BFSI infrastructure, and integrating identity-aware, policy-driven controls across distributed environments. Primary Technical Skills SSE/SASE Platforms: Advanced configuration and policy orchestration on Palo Alto Prisma Access, Fortinet Universal ZTNA, Zscaler ZIA/ZPA, Broadcom, and Bluecoat. Cloud-Delivered Security Functions: Deep understanding of SWG, CASB, ZTNA, DNS security, FWaaS, and SSL/TLS inspection. Identity-Aware Access Control: Integration with SAML/OAuth2/OpenID Connect, device posture enforcement, and risk-based access policies. Policy Lifecycle Management: Design and tuning of access control policies, URL filtering, application control, and data protection rules. Post-Deployment Optimization: Continuous tuning using telemetry, policy hit/miss analysis, latency metrics, and user experience feedback. Advanced Threat Protection: Integration with sandboxing engines, cloud-delivered threat intelligence, and real-time traffic analysis. High Availability Resilience: Design of redundant tunnels, failover strategies, and multi-tenant segmentation in SSE environments. Traffic Steering Breakout Policies: Implementation of local internet breakout (LIB), selective tunneling, and QoS-aware routing. Certificate Management: Handling PKI integration, certificate pinning, and SSL decryption policies across user and app flows. User Experience Assurance: Use of digital experience monitoring (DEM) tools to baseline and optimize end-user performance. Secondary Technical Skills SD-WAN VPN Integration: Deep familiarity with overlay routing, dynamic path selection, IKEv2/IPSec/GRE tunnels, and BGP/OSPF redistribution. Cloud Security Architecture: Design of hub-and-spoke, transit VPC, and cloud-native firewalling across AWS, Azure, and GCP. Automation APIs: Development of Python/Ansible/Terraform scripts for policy automation, bulk onboarding, and compliance checks. SIEM SOAR Integration: Event forwarding, custom log parsing, UEBA correlation, and automated response playbooks in Splunk, QRadar, or Sentinel. Endpoint EDR Integration: Policy coordination with CrowdStrike, Microsoft Defender, or SentinelOne for device trust enforcement. DNS DLP Integration: Enforcement of DNS-layer security and data exfiltration controls using inline DLP and cloud-native inspection. Multi-Factor Conditional Access: Integration with Azure Conditional Access, Okta Adaptive MFA, and device compliance policies. Network Segmentation: Implementation of microsegmentation using identity-based policies and application-aware zoning. Cloud Logging Audit Trails: Centralized logging via CloudWatch, Azure Monitor, or GCP Logging, mapped to compliance controls. Security Baseline Enforcement: Use of CIS Benchmarks, NIST 800-53, and custom hardening scripts for posture validation. Required Experience 8-12 years in enterprise network and security engineering, with 3+ years in SSE/SASE design and operations. Proven experience in Zero Trust architecture, identity-aware segmentation, and cloud-delivered security enforcement. Strong exposure to regulated verticals (preferably BFSI), with emphasis on data protection, audit readiness, and risk mitigation. Hands-on with multi-vendor SSE ecosystems, including policy migration, interoperability testing, and performance benchmarking. Experience in incident response, forensics, and policy rollback in production SSE environments. Preferred Qualifications Experience with hybrid cloud security models and multi-cloud segmentation strategies. Familiarity with EDR/XDR, sandboxing, and threat intelligence platforms (TIPs). Understanding of compliance frameworks: ISO 27001, NIST 800-53, RBI, GDPR, and PCI-DSS. Exposure to DevSecOps pipelines, CI/CD security gates, and IaC security scanning. Knowledge of SASE convergence models, including WAN edge, cloud edge, and identity edge integration. Nice to Have Zscaler Certified Cloud Professional (ZCCP-IA / ZCCP-PA) AWS/Azure Security Specialty CISSP or CCSP

Founded in 2009 and headquartered in Ann Arbor, MI, TEKWISSEN™ provides a unique portfolio of innovative capabilities that seamlessly combines clients insights, strategy, design, software engineering and systems integration. Our tightly integrated offerings are tailored to each client's requirements and span the services spectrum from Application Development/Maintenance, testing, Technology Consulting & staffing. The company is primarily focused on information technology, engineering, healthcare, financial technology and contingent workforce solutions. It operates in seven business segments including Commercial, Professional & Technical, EMEA Commercial, and EMEA Professional & Technical. The company provides professional and technical expertise in the fields of Telecom, Education, Banking, Retail, e-commerce, Automotive, Life Science, Insurance, legal, healthcare, among others. It also offers outsourcing, consulting, recruitment, career transition, and vendor management services. We strongly believe: " If something cannot be measured, it cannot be managed. " TEKWISSEN™ measures all of these processes and applies corrective interventions to manage the quality process at its core. We are an Equal Employment Opportunity Employer M/F/V/D Recognitions: 2015 -America's Fastest Growing Company by Inc.com 2015- SPARK FastTrack Award from Ann Arbor SPARK 2015 -Honoree of Diversity Focused Company by Corp! Magazine 2014- America's Fastest Growing Company by Inc.com 2014- Michigan 50 Companies to Watch 2014 - DiSciTech Award in Technology by Corp! Magazine 2014- DiSciTech TECHNOLOGY Company of the year by Corp! Magazine 2014- SPARK FastTrack Award from Ann Arbor SPARK Specialties: Enterprise Solutions, Web Development, Data Warehousing, Systems Integration, IT Security, Storage Technologies, Development and Delivery, Business Intelligence, Telecommunications, Consulting and Planning, Network design, Implementation &Administration Position details: Senior Systems Engineer - Network Security Audit Location: Irving TX Duration: 6+ months Job Description: Current CCNP, CCNA, CISSP or equivalent - Experience in auditing network security compliance - 8+ years' experience with IIS - 8 + years' experience in Windows System Administration and Active Directory - Experience in network design, operational support, hands-on implementation and configuration of network infrastructure - Strong knowledge and experience in VPN, Firewall, load-balancing, network security, and network management platforms - Experience in configuring and installing technologies such as switched Ethernet/Fast Ethernet/Gigabit Ethernet and various routing Additional Information Regards, Swati swati(dot)********************** ************

Role: AI Security Engineer Contract: 12 to 24 months Key Responsibilities: Provide tuning and optimization support for Security AI data discovery and classification (structured & unstructured data). Execute data classification efficacy validation strategies to ensure high accuracy and consistency. Apply precise feedback mechanisms to prevent cascading misclassifications across thousands of columns and datasets. Monitor and analyze tuning impact on classification results and ensure ongoing compliance alignment. Maintain data governance integrity and support audit readiness. Perform internal data scanning across servers and virtual machines. Scan and analyze large-scale datasets (up to 100+ TB) across enterprise platforms. Work with cloud-based data sources, primarily on AWS. Collaborate with analytics, governance, security, and platform teams to align classification outcomes. Support regulatory compliance efforts related to GDPR, SOX, and other data protection frameworks. Utilize SQL or other database technologies to analyze, validate, and troubleshoot classification results. Develop scripts and automation to support scanning, tuning, and reporting activities. Required Skills & Qualifications: 4-6 years of experience in data classification, data governance, or data analytics roles. Hands-on experience with Securiti AI or similar data discovery and classification platforms. Strong understanding of data classification techniques and semantic similarity across enterprise data. Experience scanning structured and unstructured data at scale. Proficiency in SQL and experience with relational or enterprise databases. Experience working with cloud platforms, preferably AWS. Knowledge of GDPR, SOX, or other data privacy and compliance regulations. Strong problem-solving and analytical skills. Experience with scripting (Python, Shell, or similar) for automation and analysis. Ability to scan data from servers and virtual machines. Nice-to-Have Skills: Experience with data governance frameworks and tools. Familiarity with metadata management, data catalogs, and audit reporting. Exposure to AI/ML-driven classification or NLP-based data discovery. Prior experience in large-scale enterprise data environments. EEO: “Mindlance is an Equal Opportunity Employer and does not discriminate in employment based on - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.”