Information security analyst jobs in Minnesota

Company Information Founded in 2002, Jefferson Capital (NASDAQ: JCAP) is an analytically driven purchaser and servicer of delinquent consumer accounts. With over two decades of experience in the consumer finance industry, we partner with major banks, auto lenders, fintech platforms, credit card issuers, utilities, and telecommunication companies. Headquartered in Minneapolis, MN, with multiple offices in the U.S., Canada, Colombia, and the U.K., Jefferson Capital maintains a global presence focused on delivering compliant, data-backed solutions. Our commitment to integrity, respect, and fairness is central to how we operate, helping hundreds of thousands of consumers regain financial stability while protecting creditor interests. We are a solutions provider focused on innovative, compliant, and ethically grounded performance that focuses first on listening to the clients and consumers with whom we partner and serve. Job Summary Jefferson Capital Systems is seeking candidates for an Information Cybersecurity Manager. In today's ever-growing threat landscape, you will be an integral member of the IT Team providing security concepts and best practices throughout multiple Business Lines, IT, InfoSec, and DevOps across multiple locations/geographies. He/She will play a significant role in maintaining industry certifications and collaborating on new business or technology initiatives and ensuring the protection of the data entrusted to us. What does a typical day look like? Oversee and participate in day-to-day operations of the IT/Info Sec department by training, coaching, communicating expectations and developing personal growth of employees Work with senior and peer IT Management to develop short- and long-term plans consistent with company objectives Maintain and strengthen IT Security initiatives including ISO 27001, Risk Management, Cloud Security, GDPR, Business Continuity & Disaster Recovery, Asset and Data Classification, and System Hardening Leverage security tools such as SIEM, EDR, Vulnerability scanners to monitor and secure our environments Assist with the planning, execution, evidence gathering, and remediation of internal/external audits and compliance activities, such as Penetration Tests, Client Security Questionnaires, IT Compliance Audits Maintain internal/external compliance against information security policies and procedures by completing internal control reviews and risk assessments. This includes identifying and communicating control gaps, proposing action plans for remediation, and reporting on the completion of tasks Participate/ensure security controls and best practices are available and maintained in DevOps Facilitate internal phishing campaigns, security announcements, security awareness trainings, and security exception processes Assist in maturing the overall IT/Cyber Security programs while aligning with security frameworks What qualifications are required for this position? 5 plus years' experience in IT, Information Cybersecurity and/or related Technology fields Functional knowledge of Security Frameworks such as ISO 27001, PCI, SANS, NIST, CIS, GDPR, OWASP Top 10 Working experience of creating and maintaining operational effectiveness of IT Controls In-depth understanding of security tools such as vulnerability scanning, firewalls, IDS/IPS, patch management, EDR, and SIEM Hands-on experience with security tools, conducting security audits, and performing security investigations Strong communication skills and the ability to be influential through both written and verbal interactions with a variety of audiences Proven ability to work independently and as a member of a team Ability to maintain productivity while multi-tasking in a fast-paced environment Industry accepted Information Security Certifications are a plus! Why join us? At Jefferson Capital, we're committed to supporting your career growth every step of the way. We offer full support and career development resources to help you expand your skills, enhance your expertise, and reach your professional potential. You'll be part of a diverse and inclusive community where your voice is valued, and innovation is encouraged. Our generous rewards plan covers health, financial well-being, work/life balance, and career benefits, ensuring that you're supported both personally and professionally. Ready to lead with us? Apply now to be part of a team that's committed to making work better for everyone! Jefferson Capital is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, political affiliation, or any other legally protected status. Final candidates will be subject to background checks, which may include criminal, credit, and professional reference verifications, in accordance with applicable laws and regulations. Jefferson Capital is committed to providing reasonable accommodation for individuals with disabilities throughout the recruitment process. If you require accommodation, please contact our Human Resources Team at **************. We thank all applicants for their interest in this opportunity. Please note that only those selected for an interview will be contacted.

Title: Security Engineer (SPIFFE/SPIRE) Job Type: Contract (12 months) Compensation: $90.00 - $112.00 per hour (W2) Industry: Retail Key Skills: SPIFFE SPIRE Kubernetes Experience building or customizing workload and node attestors About the Role We are seeking a Security Engineer to join a leading organization in the retail and e-commerce industry. This role focuses on implementing secure identity frameworks and workload authentication across distributed systems. You will work on cutting-edge technologies to ensure secure communication between services in a dynamic, large-scale environment. Job Description As a Security Engineer, you will be responsible for designing, deploying, and maintaining SPIFFE/SPIRE-based identity solutions. You will integrate these frameworks with container orchestration platforms, service meshes, and proxy workloads to enhance security posture. This position requires hands-on experience with SPIRE components and the ability to customize attestors and identity issuance workflows. Key responsibilities include: Deploy and manage SPIRE Server and SPIRE Agent in production environments. Design and implement secure workload identity solutions using SPIFFE IDs and trust domains. Build or customize workload and node attestors to meet organizational needs. Implement SVID issuance and rotation for X.509 and JWT formats. Integrate SPIRE with Kubernetes clusters, service meshes (e.g., Istio, Linkerd), and Envoy-based workloads. Collaborate with cross-functional teams to ensure seamless identity management across distributed systems. Qualifications Required: Proven hands-on experience deploying and managing SPIRE Server and SPIRE Agent. Strong understanding of SPIFFE IDs, trust domains, and workload identity concepts. Experience designing and implementing SVID issuance and rotation (X.509/JWT). Ability to build or customize workload and node attestors. Practical experience integrating SPIRE with Kubernetes, service meshes (Istio, Linkerd), and Envoy-based workloads. Preferred: Background in large-scale distributed systems or cloud-native environments. Familiarity with container security and zero-trust architectures. Experience with scripting or automation tools for identity management. Knowledge of TLS, PKI, and cryptographic principles. Benefits Dahl Consulting is proud to offer a comprehensive benefits package to eligible employees that will allow you to choose the best coverage to meet your family's needs. For details, please review the DAHL Benefits Summary: *********************************************** Equal Opportunity Statement As an equal opportunity employer, Dahl Consulting welcomes candidates of all backgrounds and experiences to apply. If this position sounds like the right opportunity for you, we encourage you to take the next step and connect with us. We look forward to meeting you!

Established in 1991, Collabera has been a leader in IT staffing for over 22 years and is one of the largest diversity IT staffing firms in the industry. As a half a billion dollar IT company, with more than 9,000 professionals across 30+ offices, Collabera offers comprehensive, cost-effective IT staffing & IT Services. We provide services to Fortune 500 and mid-size companies to meet their talent needs with high quality IT resources through Staff Augmentation, Global Talent Management, Value Added Services through CLASS (Competency Leveraged Advanced Staffing & Solutions) Permanent Placement Services and Vendor Management Programs. Job Description Position Details: Job Title - Information Security Analyst Duration - 3 Months (with a possibility of an extension) Location - Eagan , MN - 55123 Qualifications Primary Objective Perform in the delivery and development of processes and services which support best practices in information security and risk management for Client enterprise. Knowledge, Skills & Behaviors • 2+ years related information security risk management experience • 3+ years related information technology experience • Preferred industry-related certifications: GSEC, CISSP, CISA, CISM, ITIL • Preferred exposure in SOC2, ISO 27000, risk assessment methodologies, Shared Assessments, ITIL practices, and GRC • Demonstrate results in planning and delivering complex projects on time • Maintain focus and manage multiple efforts concurrently • Perform independently to expectations while being collaborative and maintaining alignment with the team • Work effectively with all levels of the organization including subject matter experts, stakeholders, and leadership • Strong written and verbal communication skills to include executive audiences • Apply tactical and strategic methods appropriately • Effective negotiation and influence • Focused on supporting the customer, the team, and the business • Strong collaboration and problem-solving skills Major Areas of Accountability • Operate as a key contributor to the Vendor Risk Management processes. • Interface with subject matter experts, peers and stakeholders; and business or technology leaders across the Client enterprise. • Demonstrate subject matter expertise on information security best practices and Client security posture focused on performing due diligence for vendor assurance inquiries and attestations. • Assist in initiatives to evaluate and provide input on the effectiveness of processes and solutions, and to determine or support a course of action. Track and report on mitigation progress. • Contribute to the strategic and tactical development of information security, risk management and compliance initiatives, to include policy and standards development, solution development, security awareness and training, and other information security initiatives as assigned. • Track, verify and collect data points for reporting and metrics on identified services to identify gaps and inform leadership. • Serve as a subject matter expert in information technology operations, information security and risk management practices, global legal and regulatory requirements, and other applicable security and privacy trends and practices. • Participate as a member of a team for Vendor Risk Management • Contribute to and achieve business and departmental goals and objectives • Deliver processes and services consistently and accurately • Accept feedback and flex to address tactical needs • Report on status of initiatives to all levels in the organization • Work across the organization to contribute to departmental initiatives and programs Education • Prefer 4 year (Bachelor's) Degree in a technology related field If you are interested please contact NEHA KALIA (Technical Recruiter) at ************ and email an updated copy of your resume (preferably WORD format) to *************************** Additional InformationIf you are interested please contact NEHA KALIA (Technical Recruiter) at ************ and email an updated copy of your resume (preferably WORD format) to ***************************

The Information Security Analyst Identifies security risks and exposures, determine the causes of security violations, and configuring systems to optimize notification of future incidents. The Security Analyst Integrates appropriate systems and logs into the enterprise security incident and event management system to effectively monitor and detect various people and enterprise asset activity. The Information Security Analyst works under the direction of the Information Security Director on the IT Security Operations Team. This is a hybrid job, must be located in Saint Paul MN Responsibilities * Investigates and analyzes security events to evaluate risk, prioritizing findings based on internal and external information. • Configures and maintains SIEM platform, including areas such as source feeds, alerts, alarms, and API integrations.• Configures and maintains EDR/antivirus.• Configures and maintains vulnerability management platform, including areas such as vulnerability scanning, remediation, and mitigation as well as impact and risk analysis.• Communicates security concerns to the business stakeholders to collectively develop and execute an appropriate remediation/mitigation plan.• Interacts with security risk and compliance group, adjacent IT departments, and business units as needed to ensure compliance with IT Security goals and policies.• When needed, assists in administration of other security tools (Data Loss Prevention, Email Security/Spam Filter, End User Training, Mobile Device Management).• Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and evolving attacks and threat vectors. General Job Responsibilities:• Ability to work in a team environment and independently as required • Contributes to project planning and scheduling.• Normally receives minimal instructions on routine work and detailed instructions on new assignments. • Participate in Architecture design reviews and other technical governance forums across the organization representing the security team across multiple projects.• Be on call and available after business hours, would require working Holidays and weekends if major security incident occurs.• Establish and maintain pertinent policies, standards, and procedures • Perform duties in compliance with applicable regulations and standards such as Sarbanes Oxley Act, FDA Quality System, and ISO (International Organization for Standardization) Works on routine assignments per written procedures, where ability to recognize deviation from accepted practice is required. • Contributes to the overall operations and to the achievement of departmental goals • Perform job specific tasks in compliance with applicable Regulations, International Standards, and WuXi AppTec Policies and Standard Operating Procedures. • Understanding of Good Laboratory Practices and Good Manufacturing Practices • Other duties as assigned Qualifications * Degree in Cyber Security, Management Information Systems, Information Security or equivalent work experienceo Minimum 2 years prior experience in a Cyber Security• In depth knowledge of LogRhythm SIEM platform or other SIEM platforms, which includes configuring and maintaining API integrations and source feeds, alerts and alarms• In depth knowledge in Qualys Vulnerability Management System, which includes configuring and maintaining• In depth knowledge in Cisco AMP Anti-Virus software, which includes configuring and maintaining• Knowledge of ISO/IEC 27001 standards.• Strong technical acumen with a solid understanding of security technologies and network architecture• Strong verbal and written communication skills• Independent driver of self-development and continuous learning• Knowledge of information security technology, design, research techniques, administration, operating standards, and quality control methods.• Basic understanding of LAN/WAN technologies and protocols, FTP, Active Directory, VPN technologies (MPLS, IPSEC, etc.), IIS and other network services.• Experience in a large, formal vulnerability program.• General knowledge of cloud, wireless network and mobile security.• Team-oriented and skilled in working within a collaborative environment. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability This job description does not state or imply that the above are the only duties and responsibilities assigned to this position. Employees holding this position will be required to perform any other job-related duties as requested by Management.

Full-time Description This position establishes and administers the overall strategies and procedures for the information security function. Develops and implements governance, risk, and compliance (GRC), through Identity & Access Management, 3rd party risk management, business continuity, data management and loss prevention, analytics, and security awareness training. This position evaluates enterprise-wide risk and is responsible for overseeing and reporting on the management and mitigation of information security risks across Blaze CU. Creates functional strategies and specific objectives under GRC and develops budgets, policies and procedures to support the Blaze enterprise-wide information and cybersecurity. This position is responsible for leading Blaze's Information Security Steering Committee (ISSC) and IT Governance Committee (ITG) in the delivery and ongoing maintenance of a comprehensive information security program in order to protect the confidentiality, integrity and availability of all organizational information assets using administrative, physical and technical controls. The role requires a proactive approach to security and the ability to work with several departments to support information security measures. Job Type: Full-time, on-site at our Westminster Administrative office in St Paul, MN Major Duties and Responsibilities Align the risk treatment to the stated risk appetite. Maintain sufficient authority, stature within the organization, knowledge, background, training and independence to perform assigned tasks. Maintain independence from the IT operations staff. Manage state of information security reporting. Leads a team of Information Security professionals, ensuring the highest security standards throughout Blaze Credit Union. Establish and implement the information security governance structure and strategies, priorities, and directives consistent with the vision and in alignment with Blaze Security Risk Strategy. Lead the enhancement, management and enforcement of information security directives. Ensure the access control, disaster recovery, business continuity, incident response and information risk management needs of the organization are properly addressed. Assure capabilities of information security devices are fully implemented and reviewed. Lead incident response efforts to contain, investigate and prevent future information security events. Coordinate Business Impact Analysis updates and Business Continuity Management testing. Manage information security related policies and supporting documents. Assure diagrams and charts are developed and updated. Work with HR, Learning & Development, Facilities, IT, Legal, and Enterprise Risk Management to update policies, employee handbook and acceptable use documents. Perform or manage ongoing risk assessments and other information security assessments to ensure that information resources are adequately protected and meet regulatory requirements. Participate in and coordinate all efforts with regulators and independent auditors. Perform information security reviews to assure practice aligns with policy and procedure. Coordinate and manage remediation efforts for information security assessments. Lead information security education efforts. Develop awareness and training initiatives to educate the workforce and members/customers about information security issues. Conduct new hire information security classes and ongoing education for executives. Vice-Chair of the Information Security Steering Committee. Lead third-party risk management efforts to ensure adequate performance and security practices are in place. Work with vendors, outside consultants and other third parties to improve information security within the organization. Participate in third-party reviews and assessments. Oversee Blaze's security strategy, policies and controls to protect the data and all systems from threats. Ensure the ongoing integration of information security with business strategies and requirements. Participate in the Enterprise Risk Committee, IT Change Committee and all IT Committees. Contribute to strategic planning processes as required. Act as information security subject matter expert to Blaze CU, members and peers. Subscribe to threat notification networks, new regulations and information sharing networks to stay current on requirements and new threats to the industry. Attend continuing information security and fraud education appropriate to the position Attend company sponsored information security training/education classes including the following areas - BSA, AML, OFAC, privacy, guarding customer information. Other Duties Comply with applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control Exhibit Blaze's Core Value's: Better Lives, Thoughtfully Compassionate, Minnesota's Best, and Give Back Regular and predictable attendance Perform other duties as assigned to support effective department operation Requirements Experience/Education/Certifications/Licenses Minimum High School degree or equivalent Minimum 8+ years' experience progressive roles in information security, risk management, and business continuity with 6+ in management, preferably in the financial industry. Bachelor's degree in business, computer science or a related field preferred CISSP/CISM/CISA preferred Advanced knowledge of federal, and state cyber-security (ISO, NIST, NCUA etc.) policies preferred. Demonstrated Knowledge Strong knowledge of the development and administration of an information security program Experience in the policy and regulatory environment of information security in the banking industry Working knowledge of: Latest security and privacy legislation, regulations, advisories and vulnerabilities Business continuity management Third-party risk management Advanced Microsoft Office skills; aptitude in various software application and basic understanding of LAN/WAN, Internet, electronic communication systems, telecommunications, information security technologies (e.g., firewalls, VPNs, penetration testing, security devices);familiarity with ISO 27001 framework Ability to: Weigh business risk and enforce appropriate security measures Prioritize and manage several projects at once and meet deadlines on projects assigned Work professionally and courteously with fellow staff members Communication Skills Ability to lead and/or be the subject matter expert for member/staff processes; exert regional influence or corporate knowledge sharing Physical Requirements Ability to sit and stand; answer calls; operate computer; interact with internal staff and public on the phone; travel to designated offices; lift up to 20 lbs. Diversity creates a healthier atmosphere, and we encourage diverse applicant depth and breadth. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law. We are committed to providing salary ranges for all open positions. Please note that the specific compensation for this role will be determined based on your experience, qualifications, location, and internal equity considerations. The salary range for this position is: $126,495-$189,743. This range reflects the base salary for this position. We have other benefits associated with this position which include: low-cost medical (as low as $20 a paycheck), dental insurance, vision insurance, quarterly bonuses, generous vacation and sick time hours, paid leave options, up to 6% 401k contribution, and tuition reimbursement.

Title: Cyber Security Risk Expert IV Terms: 6 months contract with possible extension * Design, administer, and execute procedures for the identification, assessment, documentation, and communication of risks that could compromise Postal Service data and operations stemming from weaknesses in technology platforms, solution architectures, governance processes, and security capabilities, against industry standards and best practices. * Provide recommendations to improve and sustain the security of the enterprise's data and operations and document the organizational risk response plan (accept, mitigate, transfer, or avoid). * Monitor, report on, and validate, the status and efficacy of risk mitigation, transfer, or avoidance plans. Task description and/or any specific requirements: * Demonstrate expert-level knowledge and proficiency with ServiceNow (SNow) Vulnerability Response (VR) and generally associated modules, including but not limited to the following skills, abilities and knowledge: * General: Deep understanding of SNow platforms core functionalities and components, including forms, MID servers, tables, dashboards and access control lists (ACLs) * Scripting: Proficiency in rules and scripting (e.g., JavaScript), adequate to develop, test and deploy * Integrations: Proficiency to develop and troubleshoot VR integrations, including knowledge of APIs and service graph connectors * ]Dashboarding: Proficiency in designing and developing VR-focused dashboards and reports * Design and administer procedures within the organization to sustain the security of the organizations data and access to its technology and communication systems * Assess the risk of exposure of proprietary data through weaknesses in platforms, access procedures and forms of access, to the organizations systems and data contained within * Ability to review, collate, understand and present data, from various sources, to meet the remediation needs and expectations of the organization * Knowledge of automation coding, to automate data extrapolation, organization and dissemination, to meet the needs of the organization * Ability to review, investigate and assign cybersecurity vulnerabilities, for a variety of applications, systems and hardware, including cloud computing * Manage several projects/initiatives of various sizes, complexities and risks * Demonstrated proficiency in successfully evaluating and supporting documentation, validation and remediation processes required to ensure new and existing information technology (IT) systems meet the organization's vulnerability remediation expectations and requirements * Demonstrated ability to review and understand security blueprints, principles, models, designs, standards, and guidelines to ensure enterprise cybersecurity remediation support is consistent and beneficial to the organization * Experience with vulnerability remediation and remediation processes and efforts, as well as remediation tools * Ability to serve as subject matter expert (SME) for the USPS VRM process, including providing guidance to stakeholders, business units and new CISO resources, as necessary * Strong organizational skills and ability to build and maintain schedules and step-by-step action plans * Effective communication and collaboration skills to work with cross-functional teams, business units, stakeholders and IT professionals, and to conduct presentations to varying audiences and technical knowledge levels. Experience/Education: * A minimum of thirteen (13) to twenty (20) years relevant experience. * A degree from an accredited College/University in the applicable field of services is preferred. four additional years of relevant experience in lieu of a college degree is required. If the indiviual's degree is not in the applicable field then four additional years of related experience is required. * Works on high-visibility, or mission critical aspects of a given program, and performs all functional duties independently. * Oversees the efforts of direct reporting resources and/or be responsible for the efforts of all staff assigned to a specific job. * Note: Special credentials (licenses and/or certifications) may be required at the Task Order level on a case-specific basis. Pay Range: $45-$50/hr W2 About Seneca Resources: At Seneca Resources, we are more than just a staffing and consulting firm-we are a trusted career partner. With offices across the U.S. and clients ranging from Fortune 500 organizations to government agencies, we connect professionals with opportunities that drive meaningful impact and support long-term career growth. When you join Seneca, you gain a team committed to your success. We offer competitive compensation, comprehensive health, dental, and vision coverage, 401(k) plans, and continuous support throughout your assignment. Our recruiters and account managers invest in understanding your goals and placing you in roles aligned with your talents and ambitions. Seneca Resources is proud to be an Equal Opportunity Employer, dedicated to building a diverse and inclusive workplace where all qualified applicants are encouraged to apply.

The Lead Security Engineer position is part of the Information Technology team, reporting directly to the Manager, Information Security. The focus of this role is to design, implement, and maintain advanced security solutions that protect the confidentiality, integrity, and availability of Cirrus digital assets. This role requires deep technical expertise in Microsoft technologies, cybersecurity engineering, and enterprise security architecture, as well as the ability to mentor Security analysts and partner with IT teams on secure system design and operations. Duties and Responsibilities/Essential Functions * Design, implement, and maintain enterprise security controls across Microsoft environments, including Azure, Entra ID (Azure AD), Microsoft 365, Microsoft Defender, and Windows Server platforms. * Lead incident response activities, including investigation, containment, eradication, and recovery, as well as post-incident lessons learned. * Analyze security events and alerts from IDS/IPS, SIEM, EDR/XDR, vulnerability scanners, and Microsoft security tools to identify and mitigate threats. * Develop and implement security hardening baselines, patch management processes, and secure configuration standards for Microsoft platforms and hybrid environments. * Collaborate with IT and business stakeholders to design secure solutions, ensuring security requirements are integrated into Windows, Active Directory/Entra ID, Azure, and Microsoft 365 systems. * Conduct threat modeling and risk assessments, making recommendations for risk treatment and mitigation strategies. * Oversee vulnerability management program, including regular assessments, prioritization, and remediation validation. * Create strategies to mitigate risks and ensure compliance with relevant laws and regulations * Focus on continuous improvement to stay updated on cybersecurity trends and emerging threats to enhance security measures. * Provide mentorship and technical guidance to Information Security Analysts and IT staff. * Assist in the development and enforcement of security policies, standards, and procedures, with specific emphasis on Microsoft platforms. * Stay current with emerging threats, vulnerabilities, and security technologies; recommend improvements to strengthen the security posture * Regular, reliable, and predictable attendance Qualifications: To perform this job successfully, an individual must be able to perform each essential function satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. * Bachelor's degree in Information Security, Computer Science, Information Systems, or equivalent combination of education and experience. * 7+ years of progressive experience in information security, engineering, or related IT disciplines. * Advanced knowledge of Microsoft technologies, including Azure, Entra ID (Azure AD), Office 365, Microsoft Defender suite, and Windows Server. * Experience with SIEM, SOAR, EDR/XDR, vulnerability management, and forensic analysis tools, preferably integrated with Microsoft Sentinel and Defender. * Strong understanding of cloud platforms (Azure, AWS, Google Cloud) and securing hybrid infrastructures. * Relevant security certifications preferred: CISSP, CISM, OSCP, GIAC (GCIA, GCIH, GPEN), Microsoft Certified: Azure Security Engineer Associate, Microsoft 365 Security Administrator Associate, or equivalent. * Demonstrated expertise in incident response, malware analysis, and intrusion detection. * Proficiency with scripting/automation languages (PowerShell, Python, etc.) to enhance security operations. * In-depth knowledge of common frameworks and standards (NIST CSF, ISO 27001, CIS Controls, MITRE ATT&CK). * Proven ability to design and implement Zero Trust and defense-in-depth strategies. * Applies advanced knowledge of Microsoft security technologies and enterprise platforms to solve complex challenges. * Mentors and guides team members, builds trust, and fosters a culture of continuous improvement Competencies To perform the job successfully, an individual should demonstrate the following competencies: * Manages Complexity - Asks the right questions to accurately analyze situations, acquires data from multiple and diverse sources when solving problems, uncovers root causes to difficult problems, evaluates pros and cons, risks and benefits of different solution options. * Situational Adaptability - Picks up on situation cues and adjusts in the moment. Readily adapts personal, interpersonal, and leadership behavior. Understands that different situations may call for different approaches. Can act differently depending on the circumstance. * Optimizes Work Processes - Identifies and creates the processes necessary to get work done, Separates and combines activities into efficient workflow, Designs processes and procedures that allow managing from a distance, Seeks ways to improve processes, * Collaborates: Builds partnerships and works collaboratively with others to meet shared objectives. * Organizational Savvy: Maneuvers comfortably through complex policy, process, and people-related organizational dynamics. * Directs Work: Provides direction, delegates, and removes obstacles to get work done. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this position. Duties, responsibilities and activities may change at any time with or without notice. Work beyond 40 hours per week may be required. Cirrus is dedicated to a drug free work environment promoting equal employment opportunity. Qualified applicants will receive consideration for employment without regard to race, sex, national origin, color, age, disability, religion, pregnancy, veteran status, marital and family status, sexual orientation, receipt of public assistance, genetic information or any other characteristic protected by applicable law. Our Benefits: Cirrus provides a range of exciting benefits, including: * 401(k) Plan: Dollar-for-dollar match up to 5% after 90 days, with 100% vesting. * Employer-Paid Coverages: Group term life, short- and long-term disability insurance. * Comprehensive Health Coverage: Medical, vision, dental, with additional dependent coverage options. * Free Health Tracking: With rewards for meeting health goals. * Generous PTO: 120+ hours accrued within the first year. * Employee Referral Bonus: For referring talented candidates. * Career Development: Tuition reimbursement and professional growth opportunities. * Exclusive Discounts: Access to partner and marketplace discounts. * Community & Engagement: Company and employee clubs at various locations. These benefits are designed to support your well-being, growth, and enjoyment at Cirrus!

Patterson isn't just a place to work, it's a partner that cares about your success. One of the distinguishing marks of our company is the talented people who embrace the people-first, always advancing, and results-driven culture. Professional growth abounds in this motivating environment. We value the diverse talents and experiences our employees bring to Patterson and believe that they build a stronger and successful organization. Job Description: The Application Senior Security Analyst leads the implementation and maintenance of network and application security systems to protect Patterson's information assets. This role drives technical support, incident response, and ensures alignment with security and project goals. The analyst develops and enhances the application security program using industry best practices and frameworks. Expertise in secure coding, static and dynamic code analysis, and vulnerability remediation is essential. The candidate integrates security controls into CI/CD pipelines using SecDevOps methodologies. Responsibilities include tool integration, policy enforcement, and continuous monitoring. Collaboration across DevOps, compliance, risk, and audit teams ensures enterprise-wide security alignment. A methodical approach to assessing and triaging security findings is critical for success. Essential Functions To perform this job successfully, an employee must be able to perform each essential function satisfactorily, with or without reasonable accommodation. To request a reasonable accommodation, notify Human Resources or the manager who oversees the position. Perform application security triage, oversee issue resolution, and track remediation metrics Oversees the maintenance, support, and delivery of associated security platforms Drives continuous improvements in acting on alerts, service requests, and incidents Integrates best practices to proactively analyze and monitor systems and applications for system and security related issues Considered subject matter expert in assigned platforms and keeps up-to-date knowledge to drive improvements Strong mentor with the ability to work with junior team members and provide leadership and training on new tools or projects Provide support and ongoing input in the evolution of the application security program Ensure the application security tool set is optimized, tuned, and maintained Collaborate with Devs and Ops teams to embed security into CI/CD pipelines and SecDevOps workflows Perform security testing to include SAST, DAST, SCA, Container, APIs, IaC, Secrets Interact with Infrastructure, DevOps, and application owners to ensure alignment with Patterson's roadmaps Prioritize workload depending on business direction, compliance, and / or security requirements Embedded in the SDLC process for all major applications, working with DevOps, SecDevOps, Developers, QA, Principal Architects, Security Champions, Actively participate and / or lead weekly meetings with application team leads and security champions Track and manage identified vulnerabilities through resolution, ensuring timely remediation and documentation. Oversee the planning, execution, and follow-up of penetration tests conducted by internal teams and external security partners. Additional functions In addition to the essential functions listed above, the incumbent may perform the following additional functions. Experience with .Net, C#, Javascript, Angular and related languages Familiarity with AzureDevOPs (ADO), Package Management, SBOM, TFS and / or VSTS Familiarity with major cloud platforms, including Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP) General knowledge of Application Security frameworks such as BSIMM, OWASP SAMM / ASVS, NIST, etc Experience with Thick Clients, Web Apps, Cloud Solutions, SPA, Web Services, MVC, APIs, etc Familiar with Azure DevOps Pipelines for automated build, test and deployment workflows Ability to support and manage Azure services including Azure Container Apps (ACA), Azure Kubernetes Service (AKS), and Azure Artifacts Familiarity with software supply chain security processes, including vulnerability scanning, artifact integrity validation, and dependency risk management Experience implementing and maintaining gating workflows in CI/CD pipelines to enforce security and compliance checks prior to deployment Experience communicating security concerns and issues to non-technical audiences Proficient in assessing microservices and APIs for security flaws using automated and manual testing techniques. Familiar with key application security tools such as BurpSuite, HCL AppScan, Veracode, Qualsys WAS, Micro Focus WebInspect, Checkmarx, Mend.io (White Source), DevTools, Fiddler, Owasp Zap, Metasploit, BeeF, SQLMap, Postman, etc Experience with Swagger, SOAPUI, Visual Studio Required Qualifications Bachelor's Degree with an emphasis in security, technology, or engineering or equivalent work experience At least 4 years work experience in information technology, cyber security, or information security Preferred Qualifications Security industry certification desired This person must be located within a commutable distance to Mendota Heights, MN or Loveland, CO. This will be 2 days in the office hybrid model. What's In It For You We provide competitive benefits, unique incentive programs and rewards for our eligible employees: Full Medical, Dental, and Vision benefits and an integrated Wellness Program. 401(k) Match Retirement Savings Plan. Paid Time Off (PTO). Holiday Pay & Floating Holidays. Volunteer Time Off (VTO). Educational Assistance Program. Full Paid Parental and Adoption Leave. LifeWorks (Employee Assistance Program). Patterson Perks Program. The potential compensation range for this role is below. The final offer amount could exceed this range, based on various factors such as candidate location (geographical labor market), experience, and skills. $94,100.00 - $117,700.00EEO Statement Patterson provides equal employment opportunities to applicants and employees without regard to race; color; sex; gender identity; sexual orientation; religious practices and observances; national origin; pregnancy, childbirth, or other related medical conditions; status as a protected veteran or spouse/family member of a protected veteran; or disability.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

At Jamf, we believe in an open, flexible culture based on respect and trust. Our track record and thriving work environment all stem from the freedom we grant ourselves to get the job done right. We take pride in helping tens of thousands of customers around the globe succeed with Apple. The secret to our success lies in our connectivity, while operating with a high degree of flexibility. Work-life balance remains our priority while feeling connected is important to maintain our strong culture, achieve our goals, and thrive as #OneJamf. What you'll do at Jamf: The Senior Security Operations Engineer will work with the Cloud and Delivery team to continue to build, automate and maintain cloud security services in Azure. They will be responsible for leading the Security Design and Architecture, Log Collection, Security Incident Management, Identity and Access Management, Vulnerability and Patch management. They will be responsible for maintaining operation of the environment in accordance with our service level agreements and providing support to both our staff and customers. What you can expect to do in this role: Mentors and advises others in related components and broad fundamental expertise areas Manages identity and access control in Azure Responsible for the tools, configuration, administration and related processes around our log file collection and monitoring Provides the framework, processes and execution to ensure support of Jamfs data leakage prevention Responsible for Web application firewall and related prevention, detection and mitigation of DDoS attack Vulnerability Management: Accountable for the prevention, detection and mitigation of vulnerabilities through industry standard tools, configuration, administration and internal procedures Performs regular firewall audits in line with our procedures. Provides the appropriate documentation, supporting evidence and follow up on identified issues requiring remediation Responsible for tooling, processes and follow up actions related to our external port scanning needs and practices Handles the identification, planning and implementation of any server hardening needs. Works collaboratively with Operations and other internal teams to communicate, document and implement Performs security incident analysis, response and remediation Participates in design and implementation of security automation workflows Helps manage security data reporting and visualization platform #LIRemote What we are looking for: Minimum of 4 years IT security principles, security operations, techniques, and technologies. (Required) Minimum of 4 years experience working with Linux/Unix command line interfaces, including Shell or Python scripting (Required) Minimum of 4 years experience with industry standard configuration management and deployment tools (e.g. Ansible, Azure Resource Manager or other) (Required) Minimum of 2 years experience administering some or all of the following Azure Services: (Virtual Machines, SQL Database, Load Balancer, Storage) (Preferred) Minimum of 2 years experience working with monitoring (Logic Monitor, AppDynamics, Zabbix, etc) and logging tools (Splunk, Sumologic, or ELK (ElasticSearch/Logstash/Kibana)) (Preferred) Advanced knowledge of containerization concepts and Kubernetes (Preferred) Basic knowledge of MySQL or Postgres (Preferred) 4 year / Bachelor's Degree (Preferred) A combination of relevant experience and education may be considered The following certification is preferred: Microsoft Certified: Azure Security Engineer Associate OTHER REQUIREMENTS: This position will perform work that the U.S. government has specified can only be performed by a U.S. citizen located physically in the U.S., and therefore any employment offer will be contingent upon verification of both of these requirements. Applicants who are not U.S. citizens or who are located outside of the U.S. are strongly encouraged to apply for other positions at Jamf, which is an equal-opportunity employer. SECURITY AND PRIVACY REQUIREMENTS: Participation in ongoing security training is mandatory Established security protocols will be adhered to, sensitive data will be handled responsibly, and data protection practices are followed, including understanding relevant privacy regulations and reporting breaches Acknowledging the Jamf Code of Conduct, where applicable security and privacy policies can be found, is a requirement of all roles at Jamf How we help you reach your best potential: Named a 2025 Best Companies to Work For by U.S. News Named a 2024 Best Technology Company to Work For by U.S. News Named one of Forbes Most Trusted Companies in 2024 Named a 2024 Best Companies to Work For by U.S. News Our developers work in agile delivery teams to produce new features, improve software components, and are the subject matter experts for our Jamf product offerings. You will have the opportunity to make a real and meaningful impact for more than 75,000 global customers with the best Apple device management solution in the world. We constantly push the boundaries of technology, our developers support new innovations and OS releases the moment they are made available by Apple. Several Jamf engineers are named in patents and with team names like CatDog, ThunderSnow and Dalek you can expect to have some fun while building cutting-edge software. You will have the opportunity to work with a small and empowered team where the culture is based on trust, ownership, and respect. We offer a clear career path that enables you to grow under supportive leadership and management Visit our Jamf Engineering blog to learn more about the innovative projects our team is working on and what we learn from each challenge we solve. A blog written by engineers, for engineers at medium.com/jamf-engineering 22 of 25 world's most valuable brands rely on Jamf to do their best work (as ranked by Forbes). Over 100,000 Jamf Nation users, the largest online IT community in the world. The below annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/annual salary to be offered to the selected candidate. Factors include, but are not limited to the scope and responsibilities of the role, the selected candidate's work experience, education and training, the work location as well as market and business considerations. Pay Transparency Range$103,100-$219,700 USD What it means to be a Jamf? We are a team of free-thinkers, can-doers, and problem-crushers. We value humility and the relentless pursuit of knowledge. Our culture flows from a spirit of selflessness and relentless self-improvement - driving both personal growth and collective progress throughout our company. We unite around common goals while respecting personal approaches, believing that fulfilled individuals create a thriving, vibrant workplace. Our aim is simple: hire exceptionally good people who are incredibly good at what they do and let them do it. We provide the support and resources to let everyone be their authentic, best selves at work, at rest, and at play. We are committed to supporting the continual improvement of Apple in the workplace, the organizations that rely on them and the people who keep it all running smoothly. Above it all, waves our banner of #OneJamf - and the knowledge that when we stand together, we accomplish so much more than we could alone. We seek individuals who share this unwavering journey toward growth to join us in our quest for constant improvement. What does Jamf do? Jamf extends the legendary Apple experience people enjoy in their personal lives to the workplace. We believe the experience of using a device at work or school should feel the same, and be as secure as, using a personal device. With Jamf, customers are able to confidently automate Mac, iPad, iPhone and Apple TV deployment, management, and security - anytime, anywhere - to protect the data and applications used by employees in the workplace, students learning in the classroom, and streamline communications in healthcare between patients and providers. More than 2,500 Jamf strong worldwide, we are free-thinkers, can-doers, and problems crushers who are encouraged to bring their whole selves to work each and every day. Get social with us and follow the conversation at #OneJamf Jamf is committed to creating an inclusive & supportive work environment for all candidates and employees. Candidates with disabilities or religious beliefs are encouraged to reach out if they need additional support or alternative options to our recruiting processes to accommodate their disability or religious belief. If you need an accommodation, please contact your Recruiter or Recruiting Coordinator directly. Requests for accommodation will be handled confidentially by Recruiting and will not be shared with the hiring manager. Jamf is an equal opportunity employer and does not discriminate against individuals who request reasonable accommodation for disability or religious beliefs. To request accommodations please email us at *******************

Senior Cyber Security Analyst - 180001PV) This role will be part of the Cyber Security Operations team within CWT's Global Security and Risk department at our Minnetonka office.You will support the global operations by participating in the security incident response program and identifying vulnerabilities via standard penetration testing assessments and identifying threats posing a genuine risk to CWT. This information will enable CWT to proactively adjust its defensive posture. We are seeking an individual to be part of the team, to help as it grows with maturity. The team will carry out or coordinate (third parties) penetration testing across a number of environments including infrastructure, web app, and mobile platforms. In addition, you will collect and distribute Cyber Threat Intelligence as it relates to CWT. The role offers some exciting opportunities including the potential to develop your talents and skills, and investigating in more detail vulnerabilities and techniques that could be used against CWT. - Ability to create investigation results into a report- Ability to influence others where there is no direct authority- Data analysis, Network, OS systems (Windows, Unix, Linux)- Strong technical background and great understanding on emerging security trends- Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile- Red Team experience or experience of using Open Source and COTS for penetration testing which could include Nmap, Nessus, Metasploit, Kali Linux, Burp Suite Pro and similar - Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH - Experience in at least one development language e.g. Java, C, C# or similar - A good understanding of Cloud based architectures primarily AWS Qualifications - Bachelor's Degree in Computer Science or related field or equivalent experience - Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or equivalent - AWS certifications (or ability to obtain within 6 months- Entry to junior level, 1-2 years of hands on Penetration Testing of web applications and infrastructure experience - 2-4 years of hands on cyber security operations, threat analysis, and/or incident response- Good appreciation of other security roles such as intelligence, vulnerability and patch management, Risk, auditing, Awareness and Security Architecture - A good understanding of the OSI stack and the various protocols from layer 1 - 7 including SNMP, HTTP, VPN, 802.11. - Social engineering engagement experience (i.e. phishing) - Excellent communication skills with the ability to communicate at a technical and business user level Primary Location: MinnetonkaEmployment type: StandardJob Family: Information TechnologyScope: GlobalTravel: Yes, 5 % of the TimeShift: Day JobOrganization: P&T_Security & RiskExperience Level: 3 to 5 years Job Posting: Apr 25, 2018 As an Equal Opportunity Employer/Affirmative Action employer, the organization will not discriminate in its employment practices due to an applicant's race, color, religion, sex, national origin, veteran status, disability status, sexual orientation, gender identity or any other federal, state or local protected class

This role will be part of the Cyber Security Operations team within CWT's Global Security and Risk department at our Minnetonka office. You will support the global operations by participating in the security incident response program and identifying vulnerabilities via standard penetration testing assessments and identifying threats posing a genuine risk to CWT. This information will enable CWT to proactively adjust its defensive posture. We are seeking an individual to be part of the team, to help as it grows with maturity. The team will carry out or coordinate (third parties) penetration testing across a number of environments including infrastructure, web app, and mobile platforms. In addition, you will collect and distribute Cyber Threat Intelligence as it relates to CWT. The role offers some exciting opportunities including the potential to develop your talents and skills, and investigating in more detail vulnerabilities and techniques that could be used against CWT. - Ability to create investigation results into a report - Ability to influence others where there is no direct authority - Data analysis, Network, OS systems (Windows, Unix, Linux) - Strong technical background and great understanding on emerging security trends - Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile - Red Team experience or experience of using Open Source and COTS for penetration testing which could include Nmap, Nessus, Metasploit, Kali Linux, Burp Suite Pro and similar - Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH - Experience in at least one development language e.g. Java, C, C# or similar - A good understanding of Cloud based architectures primarily AWS - Bachelor's Degree in Computer Science or related field or equivalent experience - Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or equivalent - AWS certifications (or ability to obtain within 6 months - Entry to junior level, 1-2 years of hands on Penetration Testing of web applications and infrastructure experience - 2-4 years of hands on cyber security operations, threat analysis, and/or incident response - Good appreciation of other security roles such as intelligence, vulnerability and patch management, Risk, auditing, Awareness and Security Architecture - A good understanding of the OSI stack and the various protocols from layer 1 - 7 including SNMP, HTTP, VPN, 802.11. - Social engineering engagement experience (i.e. phishing) - Excellent communication skills with the ability to communicate at a technical and business user level

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are currently looking for a Senior Consultant or Principal level Security strategist with deep technical and functional expertise in Business Continuity and Disaster Recovery. What You'll Do * Lead and facilitate Business Impact Assessments (BIAs) across business units * Develop and update Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs) aligned to critical business functions and systems * Assess organizational risk and capability gaps related to crisis management, workforce continuity, and infrastructure resilience * Design tiered recovery strategies based on RTOs, RPOs, and MVC (Minimum Viable Company) principles * Coordinate and conduct tabletop exercises, test execution, and post-mortem reviews * Align BC/DR practices with enterprise risk management frameworks, compliance requirements (e.g., HIPAA, ISO 22301), and audit expectations * Support program governance, metrics, training, and awareness efforts What You'll Bring * 6+ years of experience in Business Continuity, Disaster Recovery, or operational resilience consulting * Strong working knowledge of BIAs, BCP/DRP development, and crisis management planning * Understanding of IT infrastructure concepts and DR technologies (e.g., backup systems, cloud platforms) * Experience supporting risk assessments and regulatory audits * Excellent facilitation and stakeholder management skills * Strong writing skills to produce clear, client-ready plans and reports About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this role, we are hiring at the following levels and targeted base pay salary ranges: The targeted base salary pay range for Senior Consultant in New Jersey, New York City, and Washington DC is $153,000 to $186,000. The targeted base salary range for Senior Consultant in Atlanta, Chicago, Detroit, Kansas City, Minneapolis, Nashville, Philadelphia, Phoenix, St. Louis is $140,000 to $171,000. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. We are committed to pay transparency and compliance with applicable laws. If you have questions or concerns about the pay range or other compensation information in this posting, please contact us at: ********************. EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. #LI-MS12

Company DescriptionJobs for Humanity is partnering with Target to build an inclusive and just employment ecosystem. Therefore, we prioritize individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Deaf or Hard of Hearing, Black, Hispanic, Asian, Military Veterans, the Elderly, the LGBTQ, and Justice Impacted individuals. This position is open to candidates who reside in and have the legal right to work in the country where the job is located. Company Name: Target Location: 1000 Nicollet Mall, Minneapolis, Minnesota, United States, 55403-2542 The pay range per hour is $19.23 - $34.62 Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at ********************************************** Job Title: Sr Specialist - Corporate Security & Safety Classification: L2 Date: November 2023 About Us: As a Fortune 50 company with more than 350,000 team members worldwide, Target is an iconic brand and one of America's leading retailers. Working at Target means the opportunity to help all families discover the joy of everyday life. Caring for our communities is woven into who we are, and we invest in the places we collectively live, work and play. We prioritize relationships, fuel and develop talent by creating growth opportunities, and succeed as one Target team. At our core, our purpose is ingrained in who we are, what we value, and how we work. It's how we care, grow, and win together. To match the signature style and passion of Target's distinctive retail brand, Target Legal Affairs is a dynamic and deeply knowledgeable team of experts. Whether specializing in law, government affairs, employee relations, risk, compliance, ethics, security or food safety, we use our expertise and influence to advocate for Target, support Target's business and mitigate risk for the company. We work with both internal and external entities on key issues that affect Target's ability to productively, ethically and securely conduct business. Through our understanding of Target's business models and operations, we help facilitate Target's growth, and provide guidance that leaders rely on to make appropriate, well-informed decisions. Simultaneously, we help protect the business by applying our comprehensive understanding of risk and the law on issues that impact our brand, guests, team members, stores, distribution centers and corporate locations. Here, you'll enjoy working autonomously with a healthy work-life balance. Your passion for learning the business, collaborating with others and building relationships with senior leaders and key business partners that you support will be essential to tackling the ever-changing legal and risk-based challenges we face in a dynamic and fast-paced retail environment. A role within Corporate Security means working with a team dedicated to protecting the Target team, guests, property, and brand. You will use our comprehensive understanding and management of evolving security risks to protect our Target community throughout the world. You may support Target's Crisis and Threat Management, Preparedness and Continuity, Forensics, Intelligence, Physical Security and Safety, Executive Services, or Operations teams. As a Target Sr. Security Specialist, no two days are ever the same, but a typical day will most likely include the following responsibilities. You'll support safe and secure operations by engaging with team members, partners, and guests at entry points of our buildings. Leveraging Target's policies and procedures, you'll provision building access to all our Target community members. Using intelligence-led tactics and remaining situationally aware, you'll maintain safe and secure standards throughout our buildings and properties. In addition, you'll respond to and accurately document security incidents and activities, sharing your expertise to educate and empower team members on what to do during emergencies. Furthering our culture of ethical conduct, safety, and compliance, you'll encourage team members to report security concerns to Corporate Security. You'll also execute select security routines and projects that advance our goal to minimize risk at Target. Lastly, you'll provide a Target-brand experience and environment by supporting the needs of others. Core responsibilities of this job are described within this job description. Job duties may change at any time due to business needs. About you: High school diploma or equivalent. Possess a valid driver's license and ability to complete routines and patrols utilizing a company vehicle. Meet any state or local licensure and/or other legal requirements related to the position. Welcoming and helpful attitude towards team members, partners, and guests. Learn and adapt to current technology needs and changing work environments. Effective communication and de-escalation skills. Work both independently and with a team. Manage workload and prioritize tasks independently during crisis situations. Be reliable and dependable as it relates to assigned tasks. Trustworthy to work with highly confidential information. Climb up and down stairs and ladders. Provide life-saving actions, including CPR and other first aid. Ability to sit, stand, or be mobile for extended periods of time and effectively move items up to 40 pounds. Flexibility to work a set schedule and adjust as business needs dictate, with regular attendance necessary. Americans with Disabilities Act (ADA) Target will provide reasonable accommodations with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Supply Chain Facility or reach out to Guest Services at ************** for additional information.

GardaWorld Security Services is Now Hiring a Surveillance Security Officer! Ready to suit up as a Surveillance Security Guard? What matters most about a role like this is your sharp eye, capturing every detail as you scan a series of screens. Tell us about your strong observation skills with attention to detail. As a Security Officer - Surveillance, you will be the person spotting threats before they escalate in environments such as a security operations centers, call centers, parking gatehouses, etc. What's in it for you: * Site Location: Cottage Grove, 53527 * Set schedule: Days/shifts vary * Competitive hourly wage of $23 / Hour (DailyPay is available for GardaWorld employees!) * A comprehensive benefits package including medical, dental, and vision insurance plans, a 401(k) retirement savings plan with employer matching contributions, paid time off (PTO) policy, paid holidays, disability coverage, and life insurance options * Career growth opportunities at GardaWorld * Uniform provided at no cost Responsibilities of Surveillance Security Guard * Monitor security systems to detect any suspicious activity * Document observed events and incidents, writing detailed reports * Respond quickly to incidents or potential threats * Conduct regular patrols to ensure the safety of the premises * Control access to secure areas and verify the identities of visitors * Analyze security systems to identify potential vulnerabilities or malfunctions * Collaborate with law enforcement in case of serious situations or emergencies * Ensure the safety and protection of individuals and property Qualifications of a Surveillance Security Guard * Must be 21 years or older * Must have SOC, GSOC or PSOC experience * Be authorized to work in the U.S. * Be able to provide documentation of High School Diploma or GED * Be able to ace (and pass) an extensive screening process * Strong report writing skills * Sharp visual activity and exceptional concentration skills * Strong proficiency with technology * If you have Security, Military, Law Enforcement experience - even better! * You have a state license if required In the United States, GardaWorld Security remains the only guarding security company to be Certified by Great Place to Work. Apply today - this could be more than a job! 26% of our corporate employees started as frontline workers. If you're ambitious with an entrepreneurial spirit - someone who wants to be a GardaWorld Ambassador - a promising career awaits you! GardaWorld Security is a global champion in sophisticated and tailored security solutions, employing and training highly skilled and dedicated professionals across the globe. Not the job for you? Make sure to check out all our jobs! We also have tactical, concierge, and even casual roles available. Employment is contingent on the successful completion of a background check and drug screening to be conducted after an offer of employment is extended. It is the policy of GardaWorld Security Services to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, veteran status, or disability in accordance with applicable federal laws. In addition, GardaWorld Security Services complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment including, but not limited to hiring, placement, assignment, promotion, termination, layoffs, recalls, transfers, leaves of absence, compensation, and training. It is also the policy of GardaWorld Security Services not to honor requests that employees be assigned on the basis of sex or any other classification protected by law, unless such request is based on a bona fide occupational qualification for that assignment. Wisconsin License # 16156-62 Qualifications Education

Title: Security Engineer Job Type: Contract (12 months) Compensation: $90.00 - $112.00 per hour (W2) Industry: Retail --- About the Role We are seeking a Security Engineer to join a leading organization in the retail and e-commerce industry. This role focuses on implementing secure identity frameworks and workload authentication across distributed systems. You will work on cutting-edge technologies to ensure secure communication between services in a dynamic, large-scale environment. Job Description As a Security Engineer, you will be responsible for designing, deploying, and maintaining SPIFFE/SPIRE-based identity solutions. You will integrate these frameworks with container orchestration platforms, service meshes, and proxy workloads to enhance security posture. This position requires hands-on experience with SPIRE components and the ability to customize attestors and identity issuance workflows. Key responsibilities include: Deploy and manage SPIRE Server and SPIRE Agent in production environments. Design and implement secure workload identity solutions using SPIFFE IDs and trust domains. Build or customize workload and node attestors to meet organizational needs. Implement SVID issuance and rotation for X.509 and JWT formats. Integrate SPIRE with Kubernetes clusters, service meshes (e.g., Istio, Linkerd), and Envoy-based workloads. Collaborate with cross-functional teams to ensure seamless identity management across distributed systems. Qualifications Required: Proven hands-on experience deploying and managing SPIRE Server and SPIRE Agent. Strong understanding of SPIFFE IDs, trust domains, and workload identity concepts. Experience designing and implementing SVID issuance and rotation (X.509/JWT). Ability to build or customize workload and node attestors. Practical experience integrating SPIRE with Kubernetes, service meshes (Istio, Linkerd), and Envoy-based workloads. Preferred: Background in large-scale distributed systems or cloud-native environments. Familiarity with container security and zero-trust architectures. Experience with scripting or automation tools for identity management. Knowledge of TLS, PKI, and cryptographic principles. --- Benefits Dahl Consulting is proud to offer a comprehensive benefits package to eligible employees that will allow you to choose the best coverage to meet your family's needs. For details, please review the DAHL Benefits Summary: *********************************************** Equal Opportunity Statement As an equal opportunity employer, Dahl Consulting welcomes candidates of all backgrounds and experiences to apply. If this position sounds like the right opportunity for you, we encourage you to take the next step and connect with us. We look forward to meeting you!

Established in 1991, Collabera is one of the fastest growing end-to-end information technology services and solutions companies globally. As a half a billion dollar IT company, Collabera's client-centric business model, commitment to service excellence and Global Delivery Model enables its global 2000 and leading mid-market clients to deliver successfully in an increasingly competitive marketplace. With over 8200 IT professionals globally, Collabera provides value-added onsite, offsite and offshore technology services and solutions to premier corporations. Over the past few years, Collabera has been awarded numerous accolades and Industry recognitions including. Collabera awarded Best Staffing Company to work for in 2012 by SIA. (hyperlink here) Collabera listed in GS 100 - recognized for excellence and maturity Collabera named among the Top 500 Diversity Owned Businesses Collabera listed in GS 100 & ranked among top 10 service providers Collabera was ranked: 32 in the Top 100 Large Businesses in the U.S 18 in Top 500 Diversity Owned Businesses in the U.S 3 in the Top 100 Diversity Owned Businesses in New Jersey 3 in the Top 100 Privately-held Businesses in New Jersey 66th on FinTech 100 35th among top private companies in New Jersey *********************************************** Collabera recognizes true potential of human capital and provides people the right opportunities for growth and professional excellence. Collabera offers a full range of benefits to its employees including paid vacations, holidays, personal days, Medical, Dental and Vision insurance, 401K retirement savings plan, Life Insurance, Disability Insurance. Job Description Position Details: Job Title - Information Security Analyst Duration - 3 Months (with a possibility of an extension) Location - Eagan , MN - 55123 Qualifications Primary Objective Perform in the delivery and development of processes and services which support best practices in information security and risk management for Client enterprise. Knowledge, Skills & Behaviors • 2+ years related information security risk management experience • 3+ years related information technology experience • Preferred industry-related certifications: GSEC, CISSP, CISA, CISM, ITIL • Preferred exposure in SOC2, ISO 27000, risk assessment methodologies, Shared Assessments, ITIL practices, and GRC • Demonstrate results in planning and delivering complex projects on time • Maintain focus and manage multiple efforts concurrently • Perform independently to expectations while being collaborative and maintaining alignment with the team • Work effectively with all levels of the organization including subject matter experts, stakeholders, and leadership • Strong written and verbal communication skills to include executive audiences • Apply tactical and strategic methods appropriately • Effective negotiation and influence • Focused on supporting the customer, the team, and the business • Strong collaboration and problem-solving skills Major Areas of Accountability • Operate as a key contributor to the Vendor Risk Management processes. • Interface with subject matter experts, peers and stakeholders; and business or technology leaders across the Client enterprise. • Demonstrate subject matter expertise on information security best practices and Client security posture focused on performing due diligence for vendor assurance inquiries and attestations. • Assist in initiatives to evaluate and provide input on the effectiveness of processes and solutions, and to determine or support a course of action. Track and report on mitigation progress. • Contribute to the strategic and tactical development of information security, risk management and compliance initiatives, to include policy and standards development, solution development, security awareness and training, and other information security initiatives as assigned. • Track, verify and collect data points for reporting and metrics on identified services to identify gaps and inform leadership. • Serve as a subject matter expert in information technology operations, information security and risk management practices, global legal and regulatory requirements, and other applicable security and privacy trends and practices. • Participate as a member of a team for Vendor Risk Management • Contribute to and achieve business and departmental goals and objectives • Deliver processes and services consistently and accurately • Accept feedback and flex to address tactical needs • Report on status of initiatives to all levels in the organization • Work across the organization to contribute to departmental initiatives and programs Education • Prefer 4 year (Bachelor's) Degree in a technology related field Additional Information To know more about this opportunity or to schedule an interview, Please Contact: Neha Kalia *************************** ************

The Information Security Analyst Identifies security risks and exposures, determine the causes of security violations, and configuring systems to optimize notification of future incidents. The Security Analyst Integrates appropriate systems and logs into the enterprise security incident and event management system to effectively monitor and detect various people and enterprise asset activity. The Information Security Analyst works under the direction of the Information Security Director on the IT Security Operations Team. **This is a hybrid job, must be located in Saint Paul MN** **Responsibilities** - Investigates and analyzes security events to evaluate risk, prioritizing findings based on internal and external information. - Configures and maintains SIEM platform, including areas such as source feeds, alerts, alarms, and API integrations. - Configures and maintains EDR/antivirus. - Configures and maintains vulnerability management platform, including areas such as vulnerability scanning, remediation, and mitigation as well as impact and risk analysis. - Communicates security concerns to the business stakeholders to collectively develop and execute an appropriate remediation/mitigation plan. - Interacts with security risk and compliance group, adjacent IT departments, and business units as needed to ensure compliance with IT Security goals and policies. - When needed, assists in administration of other security tools (Data Loss Prevention, Email Security/Spam Filter, End User Training, Mobile Device Management). - Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and evolving attacks and threat vectors. General Job Responsibilities: - Ability to work in a team environment and independently as required - Contributes to project planning and scheduling. - Normally receives minimal instructions on routine work and detailed instructions on new assignments. - Participate in Architecture design reviews and other technical governance forums across the organization representing the security team across multiple projects. - Be on call and available after business hours, would require working Holidays and weekends if major security incident occurs. - Establish and maintain pertinent policies, standards, and procedures - Perform duties in compliance with applicable regulations and standards such as Sarbanes Oxley Act, FDA Quality System, and ISO (International Organization for Standardization) Works on routine assignments per written procedures, where ability to recognize deviation from accepted practice is required. - Contributes to the overall operations and to the achievement of departmental goals - Perform job specific tasks in compliance with applicable Regulations, International Standards, and WuXi AppTec Policies and Standard Operating Procedures. - Understanding of Good Laboratory Practices and Good Manufacturing Practices - Other duties as assigned **Qualifications** - Degree in Cyber Security, Management Information Systems, Information Security or equivalent work experience o Minimum 2 years prior experience in a Cyber Security - In depth knowledge of LogRhythm SIEM platform or other SIEM platforms, which includes configuring and maintaining API integrations and source feeds, alerts and alarms - In depth knowledge in Qualys Vulnerability Management System, which includes configuring and maintaining - In depth knowledge in Cisco AMP Anti-Virus software, which includes configuring and maintaining - Knowledge of ISO/IEC 27001 standards. - Strong technical acumen with a solid understanding of security technologies and network architecture - Strong verbal and written communication skills - Independent driver of self-development and continuous learning - Knowledge of information security technology, design, research techniques, administration, operating standards, and quality control methods. - Basic understanding of LAN/WAN technologies and protocols, FTP, Active Directory, VPN technologies (MPLS, IPSEC, etc.), IIS and other network services. - Experience in a large, formal vulnerability program. - General knowledge of cloud, wireless network and mobile security. - Team-oriented and skilled in working within a collaborative environment. **An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability** This job description does not state or imply that the above are the only duties and responsibilities assigned to this position. Employees holding this position will be required to perform any other job-related duties as requested by Management. **Need help finding the right job?** We can recommend jobs specifically for you! An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability (************************************************************************************************** **Job Locations** _US-MN-St. Paul_ **Job ID** _2025-13901_

-Bachelor's Degree in Computer Science or related field or equivalent experience and -Certified Information Systems Security Professional (CISSP) and/or Certified Cloud Security Certification (CCSP) and/or AWS certifications (or ability to obtain within 6 months -5-10 years of hands on experience in all technical security domains -Strong technical background and great understanding on emerging security trends -Background and style that elicits respect in the organization through management style, technical depth, customer service and results -Ability to influence others where there is no direct authority -Deep technical knowledge IT Network, Infrastructure, Software, Cloud, Mobile -Scripting, coding, or automation skills (Python, Perl, Java, .NET) -Ability to solution, plan, and deploy security technologies -Data analysis, Network, OS systems (Windows, Unix, Linux) Primary Responsibility #1 - Global security lead for information security technologies in CWT Work on datasets such as network packets, security device logs to identify any security vulnerabilities and gaps. Manage, maintain, and deploy global security services/tools to protect the environment, including vulnerability management, endpoint protection, and network protection technologies Evaluate, design, implement, monitor and support security infrastructure including IAM, IPS, SIEM, Endpoint agents, WAF's, DLP, WCF, and other tools or systems. Perform vulnerability testing, risk analyses and security assessments Create new ways to solve existing production security issues using security tool Researches, designs and advocates new technologies, architectures, and security products that will support security requirements for the enterprise and its customers, business partners and vendors Evaluates and develops secure solutions, based on approved security architectures. Analyses business impact and exposure, based on emerging security threats, vulnerabilities and risks Collaborates with colleagues and across departments to enhance security and efficiency Assist during internal and regulatory compliance audits, PCI, SOC2, etc. Cloud Security Access Broker, Mobile Security (iOS and Android) Knowledge in IDS, IPS, Firewall, Data Leak Prevention tools Primary Responsibility #2 - Assists in the incident investigations and response process Knowledge in programming using scripting tools and enterprise software development tools such as Java Stay abreast of the latest vulnerabilities and exploits Work with the Security Operation Center is develop solutions/configurations to address threats Participate in the on-call rotation for security services outages and incident escalations Ability to present security technologies, risks, solutions to management in business context Deliver technical reports and documentation on solutions and incidents Contributes to the development and maintenance of the CWT information security strategy