Cyber Security Engineer
Information Security Analyst Job In Pittsburgh, PA
Job Title: Security Engineer
Duration: 6 months
Job at a Glance:
The Security Engineer will be responsible for leading the delivery of multiple security products for the Security Operations group under ISG. This role requires a deep understanding of security requirements, use cases, and technical expertise to ensure seamless implementation and integration with existing IT environments. The engineer will also act as a technical SME to resolve conflicts around security requirements and end-user experience, while supporting policy changes, testing, and production deployment.
Major Duties & Responsibilities:
Lead the delivery of a number of security products for the Security Operations group under ISG.
Establish and document security requirements and use cases for the security products in scope for delivery.
Work closely with project managers to outline key tasks and refine delivery plans.
Act as a technical SME on resolution of conflicts around security requirements, broader IT impact, and end-user experience for business users.
Provide assistance with implementing relevant security policy changes.
Play an active role in acceptance testing and production deployment.
Provide relevant documentation and support required for the operational and business handover prior to go-live.
Qualifications, Skills & Abilities:
Experience delivering and configuring operational security products such as SIEM, vulnerability management, email security, PKI management, and application whitelisting solutions.
Strong experience with Azure and Office 365 platform capabilities.
Experience working in Windows and Linux environments with the ability to administer and debug changes.
Experience working with virtual server and desktop environments such as VMware and Citrix.
Industry-recognized technical certifications are desirable (CISSP, CCSP, CompTIA Security+, GIAC Security Essentials).
Microsoft technical certifications are desirable (Azure Solutions Architect, Azure Security Engineer, 365 Security Administrator, MCSE).
Familiarity with security and privacy regulations impacting financial services such as SOX and GDPR.
Excellent written and verbal communication skills.
Ability to work on multiple initiatives/deliverables simultaneously and interface with other initiatives that impact their domain.
Cyber Security Analyst (2728)
Information Security Analyst Job In West Mifflin, PA
Navarro Research and Engineering is recruiting for a Cyber Security Analyst in West Mifflin, Pennsylvania. Navarro is a premier contractor providing high-quality technical services to DOE, NASA, and DOD. Navarro's success is based on our customer service focus and our well-known responsiveness and innovation. In all we do, either in corporate management or in our services to our clients, we seek for the most effective and efficient approaches to provide best value to our clients.
The Naval Nuclear Laboratory develops advanced naval nuclear propulsion technology for the safety and reliability of our Navy's submarine and aircraft fleet. Our company is looking for a Cybersecurity subcontractor professional to join our team. The subcontractor will be responsible for execution of all aspects of the National Institute of Standards and Technology (NIST) directives to support the Risk Management Framework (RMF). This includes assisting information system owners with development of System Security Plans (SSPs) and Security Assessment Reports (SARs) using the existing RSA Archer application on the Naval Nuclear Propulsion Network (NNPP Net) to support information system authorization. Additionally, the subcontractor will assist in the development of Plans of Action and Milestone (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies found during the information system authorization process.
Requirements
+ An active DOE Q or DoD Top Secret clearance.
+ At least four years of combined experience in the following roles; security control validator, security control assessor, Information System Security Officer (ISSO), or Information System Security Manager (ISSM)
+ At least two years of experience supporting development of information system security authorization packages in accordance with Risk Management Framework (NIST 800-37, 800-53, 800-53a)
+ At least two years of experience working with Federal Risk and Authorization Management Program (FedRAMP)
+ Security+ Certification
+ Experience with the RSA Archer application\
+ At least two years of experience working on IT security project teams.
+ At least one year of experience managing IT projects.
+ Knowledge of IT infrastructure and services (Data Centers, physical and virtual servers, local and wide area networking components, cloud Infrastructure/Platform/Software as a Service, etc.)
+ Knowledge of security policies such as NIST Special Publications, Security Technical Implementation Guides (STIGs), DOD Cloud Computing Security Resource Guide (SRG)
+ Knowledge of infrastructure security, endpoint protection, vulnerability management tools
+ Previous work authorizing information systems within a classified DoE or DoD environment.
+ Familiarity with NIST 800-171
+ Certified Information Systems Security Professional (CISSP) certification- Certificate of Cloud Security Knowledge (CCSK) certification
Benefits
+ Health Care Plan (Medical, Dental & Vision)
+ Retirement Plan (401k, IRA)
+ Life Insurance (Basic, Voluntary & AD&D)
+ Paid Time Off (Vacation, Sick & Public Holidays)
+ Short Term & Long-Term Disability
Annual Salary Range (based on full-time 40 hours per week)
Salary Range: $85,000 - $160,000 depending on education and years of experience.
In accordance with the Navarro Research and Engineering, Inc (Navarro) salary determination process, Navarro takes into consideration the level of assigned job duties and responsibilities and the candidate's education, training, and/or experience relative to internal peers and the external labor market. A candidate's salary history will not be used in compensation decisions.
Information Security Analyst III
Information Security Analyst Job In Cranberry, PA
Are you interested in being part of an innovative team that supports Westinghouse's mission to provide clean energy solutions? At Westinghouse, we recognize that our employees are our most valuable asset and we seek to identify, attract and recruit the most qualified talent while recognizing and encouraging the value of diversity in the global workplace.
If this sounds like an environment you would thrive in, we have an exciting opportunity for a Information Security Analyst III.
Your Day-to-Day:
The primary function for the analyst is the identification, investigation, and resolution of security breaches detected by security solutions. Secondary tasks may include involvement in the implementation of new security solutions, enhancing monitoring capabilities within existing security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines, and procedures as well as conducting vulnerability audits and assessments.The Information Security Analyst III will bridge the gap between IT, Information Security, and the business with respect to analyzing the security of the organization. They will engage with business leaders and users to understand the security impacts to the organization of changes to process, products, and services. Will act as expert knowledge resource of specific discipline in coordination with IT, Legal, Data Privacy, and HR representatives.
Investigate problematic activity within the enterprise that is being reported through security solutions and teams such as HR, Legal, Data Privacy, and IT.
Maintain operational configurations of all in-place security solutions as per the established.
Monitor all in-place security solutions for efficient and appropriate operations.
Maintain cases of investigations of problematic activity.
Provide on-call support for end users for all in-place security solutions.
Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Incident Response Supervisor, where appropriate.
Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
Who You Are:
As a successful candidate, you will bring the following to the team:
Bachelor's degree in IT, related technical discipline, or equivalent preferred.
Minimum of 6 years of relevant Cybersecurity work experience
Certifications related to specific technical areas of competency preferred. (For example, CCNP, MCSA, MCSD, SSCP, CISSP, GSEC, GCIH, etc.)
Ability to define highly complex and specialized projects, perform analysis, and make sound decisions.
Knowledge base on Microsoft security tools and applications to include Microsoft Defender and Microsoft Sentinel.
Capable of managing varied assignments and work independently as well as instruct and coach other professionals.
Strong practical knowledge in the creation of SIEM signature creation based on threat intelligence.
Strong communication skills with all levels of the business (from User to Executives levels) and the ability to leverage knowledge of the appropriate approach and degree of detail for each.
Strong Practical fundamental knowledge of IT and Information Security principles and techniques, business unit products and services, industry standards and government regulations. Requires use of advanced techniques, procedures and criteria used for carrying out a sequence of discipline tasks.
Why Westinghouse?
Westinghouse Electric Company is the global nuclear energy industry's first choice for safe, clean, and efficient energy solutions. We enable our delivery of this vision by living our value system:
Safety and Quality
Integrity and Trust
Customer Focus and Innovation
Speed and Passion to Win
Teamwork and Accountability
Westinghouse offers competitive benefits to all our employees around the globe to keep them healthy and enhance their well-being. In the U.S. the following are representative of what we offer:
Competitive Salary
Comprehensive Health, Wellness and Income Protection Benefits
401(k) Savings Plan with Company Match
Paid Vacations and Holidays
Opportunities for Flexible Work Arrangements
Educational Reimbursement Program
Employee Referral Program
While our Global Headquarters are located in Cranberry Township, PA, we have over 9,000 employees working at locations in 19 different countries. You can learn more by visiting ***********************************
EOE of Minorities / Females / Vets / Disability.
Get connected with Westinghouse on social media:
Twitter | Facebook | LinkedIn| YouTube
Junior Cyber Security Analyst
Information Security Analyst Job In Pittsburgh, PA
We are Covestro. We are curious. We are courageous. We are colorful. We refine chemical material solutions with game-changing products. Let us empower you to push boundaries. Join us and our 18,000 colleagues now and together we will make the world a brighter place.
The global Cyber Defense Team at Covestro is looking for a Junior Cyber Security Analyst to join a matrixed organization that has its leadership in Germany. The team is organized into different areas of responsibility (e.g., endpoint security, cloud security, monitoring systems) and each employee is independently responsible for the assigned sub-area. Team members are expected to collaborate and support each other's areas and assist in monitoring and responding to the security events generated by those systems. The focus of this position is to help build an incident response framework and as well a framework for regular penetration testing for applications and platforms. Both areas will be supervised by senior experts, and we are looking for someone who has made first experiences in technical security issues and is willing to grow in a challenging environment.
Position is based in US (Pittsburgh), but responsibilities are global and include collaboration with Europe/Asia. Overseas travel may be required.
Major tasks and responsibilities
Support Senior Cyber Security Analysts to detect weaknesses of Covestro applications and systems and build attack frameworks to penetrate the applications/systems
Develop mitigation measures based on the result of the pen tests
Improve and automate processes for the Cyber Security Incident Response Team at Covestro
Fluency in scripting languages to build the attack frameworks and analysis tools
Support the Cyber Defense team in regular monitoring activities
In-depth analyses of L2/L3 security alarms by our SOC supplier
Based on experiences automate incident response activities and implemented them. The possibilities of AI for decision-making should be considered
Basic Qualifications
Bachelor's degree in computer science or closely related area required with 3+ years of IT cyber security experience/direct professional experience in IT security field
Preferred Qualifications
Minimum of one relevant certificate (like Certified Incident Handler etc.)
Knowledge and Skills
Motivated and analytical self-starter who can manage projects, report and stay organized.
hands on experience in CERT teams.
Basic knowledge of security processes (port-mapping, vulnerability identification and remediation, anomaly detection), platforms (networking, firewalls, proxies, cloud and LAN/WAN), risk categorization frameworks (NIST, ISO, IEC).
Scripting experience (Python, PowerShell, regex etc.)
Hands on experience in analyzing SIEM/EDR data sets.
International travel required
#LI-Hybrid
YOUR APPLICATION
Are you as curious, courageous and colorful as we are? If so, we can offer you an exciting career opportunity. We look forward to receiving your application and resume. Become part of our team - apply now!
Equal Employment Opportunity: Hiring and advancement are based on job-related requirements and on an individual's qualifications to perform a job. All aspects of employment are carried out free of discrimination or harassment based on race, color, religion, sex (including pregnancy), national origin, age, disabilities, genetic information, veteran status, sexual orientation, gender identity/gender expression or any unlawful criterion, existing under applicable federal, state, or local law.
Contact Us
Info-Hotline: ***************If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access this site as a result of your disability. To make a request, please call **************.
Cyber Security Specialist - Quantum Cryptography
Information Security Analyst Job In Pittsburgh, PA
**Pittsburgh, PA** **Type:** Contract **Category:** Security **Industry:** Financial Services **Reference ID:** JN -012025-92411 **Shortcut:** ********************************** + Description + Recommended Jobs **Description:** Our client is a global financial institution looking to harness the power of Cyber Security to manage Cryptanalysis and PKI. We are looking for a Cyber professional with expertise in Quantum Cryptography, PKI and strong understanding of the evolving regulatory landscape
_Due to client requirement, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance._
_Rate: $65 - $70 / hr. w2_
**Responsibilities:**
- Served as the SME on matters of Quantum Cryptography, Post Quantum Computing, Post Quantum Encryption, etc.
- Demonstrate strong knowledge of Quantum Information Theory, Quantum Cryptanalysis, AI coupled with Quantum technologies, Quantum attacks, etc.
- Identify and evaluate emergent technologies such as Quantum Computing, Generative AI, and Blockchain within the financial services industry.
- Troubleshoot unique and complex problems related to cyber security protocols, not limited to SSL/TLS, IPSec, SSH, VPNs, PKI etc.
- Monitor all PKI-related activities and environments within the bank.
- Interface with internally and externally hosted Certificate Authorities (CAs) and Registration Authorities.
- Served as an advisor to architecture teams, cross functional teams, LOB stakeholders, and responding to external client inquiries (Technology).
- Must be adept to learning new security products, industry standards, and understanding major regulatory landscape (GDPR, DORA, Schrems II, SOX, GLBA, etc.)
- Day-to-day oversight of Hardware Security Modules (HSMs), Key Management practices, and other cryptographic technologies
- Working knowledge of Key Management within on-prem and cloud centric environments.
- Develop documentation required to support the cryptographic technical issues and training situations.
- Possess familiarity with various frameworks to include ISO 27001, NIST, MITRE, PCI-DSS, etc.
- Respond to risk assessments and security audits to ensure data security measures are functioning effectively.
- Provide engineering, design, and life-cycle support on certificate, key management, and encryption related issues.
- Day-to-day oversight of Hardware Security Modules (HSMs), Key Management practices, and other cryptographic technologies
- Working knowledge of Key Management within on-prem and cloud centric environments.
- Ability to perform work independently of others with minimal supervision.
**Experience Requirements:**
+ 5+ years of work experience in cyber security, network security, architecture design, cryptography implementation, and Quantum computing design.
+ Working knowledge of IT control frameworks such as NIST Cyber Security Framework, ISO 27001, Risk Management Framework, etc.
**Education Requirements:**
Preferred Certifications: CCSP,
GCP Security Engineer, Azure Security Engineer, or similar.
-
Certification in one or more of the following is a plus: CISSP, CISA, CISM,
CCSK, CCSP, GCP Security Engineer, Azure Security Engineer, or similar.
-
Training certificates in Quantum Computing is preferred.
_Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range._
_W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality._
_Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact ********************._
_About Eliassen Group:_
_Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate._
_Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status._
_Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!_
Cyber Security Analyst with Top Secret Clearance
Information Security Analyst Job In West Mifflin, PA
Opportunity
The Cyber Security Analyst will be responsible for the implementation, administration, and maintenance of automated cyber security tools on the enterprise C-Cure system including vulnerability management (scanning, patching), system firewall/intrusion detection, anti-virus, audit logs, peripheral port security, security hardening, and security compliance. The current cyber security tools being used are Nessus (scanning), IBM BigFix (patching), McAfee (system firewall/intrusion detection), McAfee (anti-virus), IBM QRadar (audit logs), lvanti (peripheral port security), Microsoft Group Policy Management (security hardening), Microsoft SCAP (security compliance), Microsoft Active Directory (account management), and Microsoft Windows System Backups.
Provide cyber security maintenance of the enterprise C-Cure system.
Deploy hardware and software patches to the respective C-Cure test/development servers.
Remediate all vulnerabilities that have been identified by the Nessus scans and update them in RSA Archer.
Deploy system firewall, intrusion detection, and anti-virus to the enterprise C-C re system.
Collect and monitor audit logs on the enterprise C-Cure
Lock down peripheral ports on the enterprise C-Cure
Apply security hardening to the enterprise C-Cure system in accordance with applicable DISA STIGs and vendor hardening guides.
Perform SCAP scans of the enterprise C-Cure system.
Manage and monitor Microsoft Active Directory accounts.
Setup and monitor Microsoft Windows systems backups.
Qualifications
Clearance Required: Top Secret or DOE Q clearance required prior to consideration.
Experience Required:
Have training or knowledge in the following vulnerability management products (or equivalent):
1) Nessus (scanning)
2) IBM BigFix (patching)
3) RSA Archer (remediation tracking tool).
Have training or knowledge in administration and use of Microsoft Windows Server 2016/2019, Microsoft Windows 10, and Microsoft SQL Server 2016/2017
Have training or knowledge in the following cyber security products (or equivalent):
1) McAfee (system firewall, intrusion detection, anti virus)
2) Elasticsearch (audit logs)
3) lvanti (peripheral ports)
4) Microsoft Group Policy Management (security hardening)
5) Microsoft SCAP (security compliance)
Microsoft Active Directory (account management)
and 6) Microsoft Windows system backups.
Have training or knowledge of the following areas (or Buyer approved equivalent):
Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGS)
About IMG
Founded in 1987, IMG is a leading small business that exemplifies competence, integrity and follow-through. We consistently provide customer focused professional services, which ensures our company is recognized for continually exceeding expectations. We believe that at the core of our success stand our people. Our people have provided professional services in the Information Technology field for our customers with a commitment to customer satisfaction for over 35 years.
IMG Benefits:
Health, dental, vision, and life insurance
Short term and long term disability insurance
401(k) with generous company match
Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)
Personal leave plus paid federal holidays
Professional development and training assistance
IMG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Information Security Analyst
Information Security Analyst Job In Canonsburg, PA
Job Type: Full-time
Work Authorization: U.S. Citizen or Green Card
The A.C. Coy Company is currently seeking candidates for an Information Security Analyst role. This individual will serve as a main contact for compliance and security initiatives within the company. Our ideal candidate will have 5+ years of experience working in information security and specific experience in GRC and cybersecurity. CISSP is strongly preferred. Occasional travel to other office locations is required, but very rarely overnight.
Our client is offering an excellent salary and benefits package and strong career growth opportunities.
Responsibilities
Lead and manage security initiatives, compliance enforcement, and incident response in accordance with corporate policies and standards
Maintain and improve our ISMP /Process Documents, create and update process documentation, controls, and SOPs
Maintain security policy and procedure documentation, such as ISMP, according to changes in the business and security framework.
Develop and design necessary systems to maintain and improve the organization's security posture
Conduct log reviews and investigations and monitor/report on security systems such as the SIEM, IPS, and VM
Manage third-party risk management and security awareness program
Provide guidance on development and technology security strategy for the IT team
Mentor and grow our high-performing security team
Works closely with Incident Response Team to gather requirements and support their needs
Help maintain Security Operations Center (SOC) to improve incident response time with Network Technician(s)
Support in achieving organizational Objectives and Key Results (OKRs)
Track, analyze, and report threats, risks, vulnerabilities, and incident data as part of our data-driven security operation
Track and improve corporate security Key Performance Indicators (KPIs)
Brief associates and executives at annual reviews, lunch & learns, and training events on security awareness
Develop and sustain long-standing relationships with 3rd party vendors
Assist with RFP and other client requests for security and compliance confirmation documentation
Assist our stakeholders with aligning standard operating procedures, controls, monitoring, and reporting
Qualifications
Bachelor's degree in Computer Science, Information Systems, Information Security or a related field
5+ years experience in the working in information security and technology
Willingness to certify in Security+ and Network+ within first year of role placement is required
Preferred
CISSP certification
Some experience working in networking and server infrastructure
Experience in the commercial print industry preferred
Experience with C# development
Experience with SQL
Senior Cyber Security Analyst - 1766997
Information Security Analyst Job In Pittsburgh, PA
Responsibilities of Senior Cyber Security Analyst:
Review and update the Detailed Architecture Diagram, Detailed Hardware/Software Inventory, and other system artifacts to determine the DoD IT type.
Develop the baseline set of impact values for medical devices.
Identify and document common controls in the Security Plan, obtaining supporting documentation for inherited controls.
Initiate the tailoring process in eMASS to modify the control set based on specific system conditions.
Add relevant supplemental security controls and mark irrelevant controls as "Not Applicable."
Identify security controls for ongoing monitoring.
Review site/organization change control policies and document the application of policies to specific controls.
Coordinate with the IV&V Team to clarify information required for SAP.
Lead the execution of self-assessment activities, assess NIST SP 800-53 Revision 4 controls, and document results in eMASS.
Provide support for remediation and mitigation efforts.
Create the Risk Assessment Report (RAR) and upload it into eMASS, along with all self-assessment results and artifacts documentation.
Coordinate with the ISSM to confirm the completion of the Security Authorization Package before eMASS submission.
Assist the program with status reports, white papers, weekly activity reports, and other ad hoc requirements.
Perform other job-related duties as assigned.
Qualifications for the Position:
Bachelor's Degree.
Minimum of seven (7) years of relevant experience in cyber logistics.
Technical Training in Cyber Security, Information Assurance, Network Design, or Information Technology, coupled with 15 years of hands-on experience supporting network operations centers, Cyber Security Service Providers, or Cyber Red Teams within the DoD or Federal government. This should include expertise in three (3) of the following five (5) areas: Systems Requirements, Operational Requirements, Data Analysis, Test & Evaluation, and Training. Certification in IAT Level I / IAM Level I, II, III is required.
Knowledge of the DHA mission and environment.
Familiarity with DoD Networks and the orders process.
Proficiency in briefing Senior Leadership and General Officer / Flag Officer (GO/FO) leadership.
Strong knowledge of computer security principles and best practices.
Skillful with eMASS and the Risk Management Framework.
Proficient in developing briefing materials, administrative, and logistic support.
Advanced communication and presentation skills (verbal and written) enabling precise conveyance of information across all customer sections with proper enunciation of the English language.
Strong interpersonal, organizational, and critical thinking/problem-solving skills.
Flexibility, dependability, and ability to multitask with priorities.
Demonstrated skills in providing excellent customer service.
Proficiency in using Microsoft Office Suite.
Working knowledge of Combatant Command operations.
Skillful in building extended cyber security analytics.
Active DoD Secret clearance.
Security Analyst
Information Security Analyst Job In Frazer, PA
Artech Information Systems is the #1 Largest Women-Owned IT Staffing Company in the U.S. and an employer of choice for over 7,200 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications.
Job Title: Security Analyst
Location: Pittsburgh, PA/ Lake Mary, FL / Nashville, TN
Duration: 12 months contract with possible extension/ conversion FTE
Job Description:
Client is looking for a talented and self-motivated individual with strong technical skills and the ability to rapidly learn new technologies. We are looking for an exceptional candidate that shares our passion for delivering solutions to complex security problems, while maximizing productivity and minimizing employee friction. The candidate will contribute to IAMO Transformation program by aiding in the configuration and implementation of the new SailPoint LCM product. The candidate will perform business critical analysis to help with the implementation of application access requests and workflows across IAM. This role will support access provisioning, remediation for audit findings, workflow creation and modifications, and ensuring revocations and certifications are completed within the guidelines established by Corporate Policy. This position is critical to ensure Service Level Objectives and Internal project deadlines are met. The candidate will require increased technical and analytical skillsets and provide Sailpoint Product Support with a focus on:
• Experience with designing, developing, testing, implementing, and integrating IGA solutions involving SailPoint Identity Now (IIQ).
• Experience in SailPoint Identity IQ implementation and configuration for application on-boarding for access request and approval and access certifications
o Configuration of simple and advanced LCM workflows within SailPoint
o Creating and managing workgroups in SailPoint
o Configuration and management of most common direct connectors (i.e. Active Directory, LDAP, Mainframe, etc.)
o Creation of preventative and detective Segregation of Duty rules
o Experience with role-based access controls and configuring automate provisioning and deprovisioning.
• Train and mentor other team members on the use of the SailPoint Identity Now platform.
• Experience with identity lifecycle flows including leaver, joiner, and mover.
• Experience with consultative and complex technical deployment projects, managing various stakeholder relationships.
• Strong knowledge and experience with incident/problem management processes.
• Possess critical thinking skills.
• Strong functional knowledge of MS Office Suite software products, Jira, and Confluence.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
• Ensures integration end state protects information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss.
• Design and code rules, applications, workflows, custom tasks, custom connectors, UI pages and custom reports in SailPoint Identity Now.
• Develop working relationship with IT engineering resources to drive solution features adoption.
• Develop control adoption templates for IT resources to understand and implement connections required for the SailPoint Identity Now service.
• Review SailPoint IGA to ensure the solution is optimized for the highest level of service and establish an ongoing practice to perform periodic reviews.
• Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions.
• Design and maintain flowchart diagrams, process workflows and standard documentation required to sustain the SailPoint platform.
• Promote security policies, standards, and best practices across the organization.
• Supports and resolves system incidents, problems, and changes.
Qualifications
5 years of Sailpoint experience
-Will consider experience over degree
-Locations: Pittsburgh, Lake Mary or Nashville
-2000+ applications to be migrated into sailpoint
-Configure workflows
-Create/manage work groups
-Create duty rules
-Invisio, Confluence, Jira, Excel
Additional Information
All your information will be kept confidential according to EEO guidelines.
Security Analyst
Information Security Analyst Job In Pittsburgh, PA
We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges.
In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India.
We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career.
Job Description
MUST HAVE:
Experience with implementing a vulnerability scanner
Familiarity with both Windows and Linux platforms
Experience with a log management system (Splunk, Elastic Search, etc)
General understanding of incident management systems
Experience patching operating systems/applications
Experience configuring operating systems/applications
Knows and applies the fundamental concepts, practices and procedures of IT security hardware, software, management software, and troubleshooting tools
Candidate should have a strong knowledge of IT security, including demonstrated knowledge of current security trends and issues
Ability to effectively and professionally communicate with customers and technical support staff at remote locations including team members in foreign countries; excellent verbal and written communication skills
Highly self-motivated and flexible
Manage priorities for timely completion of assignments
Strong analytical and problem-solving skills
Demonstrated success managing confidential/secure information with a high level of integrity
NICE TO HAVE:
Nessus experience
HP Service Manager
Additional Information
Good comm skills are a big priority
Duration: 3+ Months
LOCALS PREFERRED
Interview: Phone+F2F
Sr. Information Security Manager
Information Security Analyst Job In Murrysville, PA
**Sr. Information Security Manager** **- Murrysville, PA** The Integrated Supply Chain (ISC) Information Security Manager will be responsible for developing, implementing and monitoring a strategic and comprehensive IT security plans across multiple geographies and driving security in manufacturing sites, Distribution Centers, and warehouses across the US.
**Your role:**
+ Develop and implement robust OT (Operational Technology), Cloud, Network, IoT (Internet of Things) security strategies on ISC (Integrated Supply Chain) manufacturing process aligned with industry standards, such as establishing security architecture compliance with regulations (e.g., HIPAA, FDA) and deploy technologies like firewalls and OT IDS (Operational Tech. Intrusion Detection System) solutions for system segmentation and protection.
+ Leverage experience with OT technologies (e.g., Nozomi Guardian, Armis, Claroty) and perform vulnerability assessments by applying frameworks like MITRE ATT&CK and STRIDE for threat modeling and attack simulations, driving solutions to address security threats.
+ Identify, assess, and mitigate: Operational Tachnology (OT) Cloud, Network, IoT (Internet of Things) risk and/or threats on Integraged Supply Chain (ISC) manufacturing security through cross-functional collaboration, develop incident response plans, lead investigations, and implement corrective actions to address root causes of security breaches.
+ Secure supply chain systems by collaborating with vendors, conducting assessments, and enforcing compliance with security standards.
+ Build a culture of security through targeted training programs and stakeholder education.
**You're** **the right fit if:**
+ You have +10 years experience on developing and implementing cybersecurity strategies on manufacturing/ supply chain/ logistics environment.
+ Bachelor's in Computer Science, Information Technology and/or an equivalent academic field. Master's degree in a similar academic field is preferred.
+ You have a Cybers Security Certification such as CISSP, CISM, CISA, CIPP etc. preferred. Knowledge on MITRE Framework, IEC 62443/NIST 800:23 is preferred.
+ Your skills a thorough understanding of Security Management and Governance principles, along being able to deliver cross-cultural etiquette, customer-centric and collaborative mindset.
+ You must be able to successfully perform the following minimum Physical, Cognitive and Environmental job requirements with or without accommodation for this position.
**How we work together**
We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence in the company's facilities. Field roles are most effectively done outside of the company's main facilities, generally at the customers' or suppliers' locations.
**This is an in office role.**
**About Philips**
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help improve the lives of others.
+ Learn more about our business.
+ Discover our rich and exciting history.
+ Learn more about our purpose.
+ Learn more about our commitment to diversity and inclusion.
**Philips Transparency Details**
The pay range for this position in Murrysville, PA is from $ 107,000. 00 to $154,000.00
The actual base pay offered may vary within the posted ranges depending on multiple factors including job-related knowledge/skills, experience, business needs, geographical location, and internal equity.
In addition, other compensation, such as an annual incentive bonus, sales commission or long-term incentives may be offered. Employees are eligible to participate in our comprehensive Philips Total Rewards benefits program, which includes a generous PTO, 401k (up to 7% match), HSA (with company contribution), stock purchase plan, education reimbursement and much more. Details about our benefits can be found here.
At Philips, it is not typical for an individual to be hired at or near the top end of the range for their role and compensation decisions are dependent upon the facts and circumstances of each case.
**Additional Information**
**US work authorization is a precondition of employment** . The company **will not** consider candidates who require sponsorship for a work-authorized visa, now or in the future.
Company relocation benefits **_will not_** be provided for this position. For this position, you must reside in **_or_** within commuting distance to **Murrysville, PA.**
**\#LI-PH1**
**\#LI-OFFICE**
It is the policy of Philips to provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to race, color, ethnicity, religion, gender, pregnancy/childbirth, age, national origin, sexual orientation, gender identity or expression, disability or perceived disability, genetic information, citizenship, veteran or military status or a person's relationship or association with a protected veteran, including spouses and other family members, marital or domestic partner status, or any other category protected by federal, state and/or local laws.
As an equal opportunity employer, Philips is committed to a diverse workforce. In order to ensure reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Veterans' Readjustment Act of 1974, and Title I of the Americans with Disabilities Act of 1990, applicants that require accommodation in the job application process may contact ************, option 5, for assistance.
Equal Employment and Opportunity Employer/Disabled/Veteran
Cyber Watch Desk Analyst
Information Security Analyst Job In Pittsburgh, PA
Full-time Description
New World. New Problems. New Solutions
.
Edgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime, as well as improve overall operations for our customers. Edgeworth Security takes a proactive stance on crime prevention and operational enhancement by applying artificial intelligence and military grade analytics used in our Command Center. We combine people, processes, and technology to actively secure, protect and improve the operations of our clients' people, property, and assets.
Position: Cyber Watch Desk Analyst
Location: Pittsburgh, Pennsylvania
Travel: None. This position is onsite, in-office.
Benefits:
Top-tier compensation
Full-time, non-exempt hourly with full benefits (medical, dental, vision, life insurance/AD&D/short-term and long-term disability, 401(k) matching)
Training & Education Assistance
Paid Time Off (PTO)
Overview: As a Cyber Watch Desk Analyst, you will be a crucial part of our cybersecurity operations, working to ensure the security and integrity of our digital infrastructure. You will monitor our systems, identify system faults, detect potential threats, and assist in incident response, playing a pivotal role in safeguarding our organization from cyberattacks.
Essential Job Function and Responsibilities:
Real-Time Monitoring:
Continuously monitor network traffic, security alerts, and event logs to detect suspicious or anomalous activities.
Utilize security information and event management (SIEM) tools to assess the security posture.
Threat Detection and Analysis:
Analyze security alerts and reports to identify potential security incidents and vulnerabilities.
Investigate, document, and categorize security events based on their severity and potential impact.
Incident Triage and Response:
Assist in the initial triage of security incidents by following predefined incident response procedures.
Collaborate with incident response teams to coordinate and execute response efforts.
Reporting and Documentation:
Prepare and maintain detailed incident reports, including a timeline of events, actions taken, and recommendations for improvements.
Maintain accurate records of incidents, investigations, and responses.
Threat Intelligence:
Stay informed about the latest cybersecurity threats, vulnerabilities, and attack methodologies.
Use threat intelligence to enhance threat detection and response capabilities.
Security Awareness and Communication:
Provide timely updates and information to relevant stakeholders, including management and incident response teams.
Foster a culture of security awareness by promoting best practices and sharing threat insights.
Continuous Improvement:
Identify opportunities to enhance the efficiency and effectiveness of monitoring and response processes.
Contribute to the development of playbooks and procedures for different types of incidents.
Compensation is targeted at $25 per hour based on experience and certifications.
What's in it for you? Why work for Edgeworth:
We are growing! We want all candidates and employees to know that we are excited about the positive improvements we're making and our ongoing efforts to enhance our culture and provide an environment that promotes both professional growth and work-life balance. Our expansion brings exciting opportunities for progress and innovation as we adapt to new challenges. By embracing change, implementing effective processes, and exploring new technologies, we're continually improving. Together, with a shared focus on our goals, we're building a successful, dynamic company where everyone can thrive.
We value our employees and are invested in personal and professional growth, learning new skills, challenging yourself, and growing your career while doing meaningful work.
We look forward to the possibility of you joining our team.
Employees are our greatest asset. Here at Edgeworth Security, we embrace diversity, equity, and inclusion, and always strive to be better than we were yesterday.
EOE/Minorities/Females/Vet/Disability/Sexual Orientation/Gender Identity Edgeworth Security is an Equal Opportunity Employer committed to hiring a diverse workforce.
Edgeworth Security utilizes e-Verify to check employment authorization.
Requirements
Bachelor's degree in computer science, Information Security, or a related field is preferred.
Relevant certifications like CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are a plus.
Previous experience in a cybersecurity, incident response, or security operations center (SOC) role is beneficial.
Knowledge of security information and event management (SIEM) tools and security incident response procedures.
Strong analytical skills, attention to detail, and the ability to work under pressure.
Excellent communication and teamwork skills.
Respond swiftly and effectively to tickets/incidents in a high-pressure, fast-paced environment.
Maintain situational awareness in environments with loud sounds, bright lighting, and occasional strobe effects.
Salary Description $25/hour
IT Manufacturing Analyst
Information Security Analyst Job In New Kensington, PA
Shape Your World
At Alcoa, you will become an essential part of our purpose: to turn raw potential into real progress. The way we see it, every Alcoan is a work-shaper, team-shaper, idea-shaper, world-shaper.
Alcoa (NYSE: AA) is a global industry leader in bauxite, alumina, and aluminum products, with a strong portfolio of value-added cast products and substantial energy assets. Alcoa is built on a foundation of strong values and operating excellence dating back nearly 130 years to the world-changing discovery that made aluminum an affordable and vital part of modern life. Since inventing the aluminum industry, and throughout our history, our talented Alcoans have followed on with breakthrough innovations and best practices that have led to efficiency, safety, sustainability, and stronger communities wherever we operate.
At Alcoa, you're an essential part of our purpose: to turn raw potential into real progress. This is an opportunity for you to bring your wealth of experience to the team and help shape the future of sustainability with world-changing innovations and low-carbon technologies. You have the power to shape things to make them better.
About the role:
We here at Alcoa are seeking an IT Manufacturing Analyst at our Alcoa Technical Center (ATC), located in New Kensington, PA and you might be a phenomenal fit for it! In this role you will be accountable for implementing, integrating, and supporting the needs related to innovative projects and operational tools. As a change agent within the facility, you will navigate specific toolsets such as PLC, HMI, SCADA, Factory Talk suite of applications, Power BI, and Historian (OSISoft PI) to support on-site engineers. Below are the key responsibilities:
Introducing of new technology and support demands related to breakthrough technology (eg ELYSISâ„¢ technology and others)
Developing and maintaining KPI for R&D production experiments
Providing Level 1 intervention support on Network and Infrastructure within our Manufacturing domain.
Keeping servers and workstations up to date with patches and upgrades.
Managing the obsolescence of various IT/OT assets and operating systems at the research center.
Helping install equipment on the network such as microscopes, PLCs, HMIs and data historians.
Integrate/support/develop Manufacturing solutions that meet site expectations;
Gather information from different sources and databases;
Work closely with end-users (Customers) in order to meet and address their specific needs (customer focus) and to ensure on-time delivery of projects and services;
Keep projects/reports aligned with Alcoa's standards by working closely with the Enterprise teams (corporate);
Perform testing, customer training, deployment/configuration activities and support. Assist on trouble shooting & problem solving.
Provide project support and implement improvements that are identified by the site to improve overall performance.
Document and maintain records for different reports and metrics developed.
Pursue continuous learning consistent with the movement of the job requirements and technology changes.
Meet responsibilities outlined by the ITAS (Information Technology and automation solutions) compliance control protocols to reduce risk and improve system integrity on application code;
Assist team members in the support for the daily support functions;
Improve processes, procedures and equipment to eliminate or minimize environmental and safety hazards in pursuit of zero incidents;
Liaise with team members, Enterprise groups and external providers to deliver common solutions to site;
Major customers are site engineers, technical and operations management.
What you can bring to this role:
Our values - act with integrity, operate with excellence, care for people - are at the foundation of everything we do. To be successful in this role and to play a part in our ongoing success we desire the following background:
Bachelor degree in Computer Science (or similar field) or equivalent work experience;
2+ years experience in Information Technology in operating facilities preferred;
Experience supporting transactional SQL Databases;
Experience with fail over or load balancing Technolgies.
Experience with scripting using PowerShell;
Experience with programming language such as .NET, C#;
Experience with network and infrastructure components such as Cisco Network Switches, Active directory administration, HPE servers, Hypervisor (ex. VMware).
Knowledge of PLC, HMI, Scada;
Reporting BI tools knowledge (Excel, SSRS, Power BI, DAX, etc);
Knowledge of Timeseries System (OSIsoft PI Historian & PI Asset Framework);
Being customer service oriented;
Analytical, good communication, problem solving skills with desire to learn.
What we offer: (to be confirmed by compensation team)
Competitive compensation packages, including pay-for performance variable pay, recognition and rewards programs, and stock-based compensation awards (3-year vesting schedule).
Flexible spending accounts and generous employer contribution to the HAS.
401(k), employer match up to 6%, additional employer retirement income contribution (no vesting period), and a nonqualified deferred compensation plan.
10 paid holidays.
4 hours of Paid annual volunteer hours.
Alcoa has been chosen as one of America's Greatest Workplaces 2023 by Newsweek.
#LI-TL2
About the Location
Every day is a new and exciting challenge at the Alcoa Technical Center in New Kensington, PA, just north of Pittsburgh. We develop new technologies with our Breakthrough Technologies team that has the potential to impact the life of millions of people and foster the sustainable footprint from Alcoa to the world. It was here where we developed the technology recently announced in partnership with Rio Tinto, called ELYSISâ„¢, where we will produce aluminum with ZERO emission of greenhouse gases. In fact, we will actually be generating oxygen to our atmosphere during the aluminum production process- a revolution to the aluminum industry!
We are values led, vision driven and united by our purpose of transforming raw potential into real progress. Our commitments to Inclusion, Diversity & Equity include providing trusting workplaces that are safe, respectful and inclusive of all individuals, free from discrimination, bullying and harassment and that our workplaces reflect the diversity of the communities in which we operate.
As a proud equal opportunity workplace and affirmative action employer, Alcoa is dedicated to providing equal opportunities and equal access to all individuals regardless of a person's gender, age, race, ethnicity, sexual orientation, gender identity, religion, nation of origin, disability, veteran status, language spoken or any other characteristic or status protected by the laws or regulations in the places where we operate.
If you have visited our website in search of information on U.S. employment opportunities or to apply for a position, and you require an accommodation, please contact Alcoa Recruiting via email at ***********************.
This is a place where you are empowered to do your best work, be your authentic self, and feel a true sense of belonging. Come join us and shape your career!
Your work. Your world. Shape them for the better.
Lead Security Engineer
Information Security Analyst Job In Pittsburgh, PA
Day-to-Day Insight Global is seeking a Lead Security Engineer to join a higher education client in Pittsburgh. The ideal candidate will be responsible for overseeing and enhancing the security of the infrastructure. You will play a crucial role in managing security threats, evaluating systems, and ensuring effective communication between various teams and directors.
Other responsibilities include
Identify and fix security vulnerabilities within the infrastructure
Integrate and optimize systems to effectively detect and respond to phishing and spam threats
Develop and manage alerts for phishing emails and spam
Recommend and implement improvements to enhance overall security posture
Delegate tasks to appropriate team members and ensure timely resolution of security threats
Act as a liaison between the security team, directors, and other departments
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ******************** .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: *************************************************** .
Skills and Requirements
Bachelor Degree
5+ years of System or Network Engineering experience
3+ years of Security related experience
o DNS, Palto Alto firewalls, etc
Office 365 Experience null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to ********************.
Electronic Security Engineer
Information Security Analyst Job In Pittsburgh, PA
Embark on a trailblazing career in Security Technology with Allied Universal Technology Services, a global leader in security technology that's transforming the security industry. We integrate state-of-the-art technology with physical security to protect our clients and communities, harnessing tools like electronic access control, video surveillance, and alarm monitoring, alongside emergent innovations such as robotics, drones, and augmented technology. As a valued team member, you'll be part of a diverse and dynamic workforce that thrives on innovation and inclusivity. We offer a wide spectrum of job opportunities for both stability and growth across various roles, including service and installation technicians, engineers, and project managers. At Allied Universal , we don't just embrace change; we drive it, creating a culture where diversity fosters innovation and forges caring connections. Join us and help set new benchmarks in the security industry while advancing your career. Enjoy comprehensive benefits for most full-time positions, including medical, dental, and vision coverage, life insurance, retirement plans, employee assistance programs, and exclusive perks.
Job Description
Allied Universal Technology Services is looking to hire an Applications Engineer. The Applications Engineer is responsible for software-specific support of our installation team to include the integration / interface of multiple disparate software applications into fully functioning solutions. This position will be responsible for all levels of system head-end commissioning, upgrades, and advanced diagnostics to achieve the defined functionality of systems operation. The Applications Engineer should be capable of utilizing existing SDK's and/or API's to ensure the desired level of integration and should be capable to perform customized integration between software applications. The Applications Engineer's schedule will be coordinated by Operations and Project Managers to be effectively and efficiently utilized.
RESPONSIBILITIES:
Capable of advanced integration between disparate electronic security systems
LAN & Network configurations experience include wireless communications system.
Perform system diagnostic and troubleshooting duties to ensure a fully functioning system
Work with Project Managers, End Users and Technician team to provide assistance in regards to the software systems
Troubleshoot project issues and engage appropriate resources as needed.
Escalate significant issues to management team as needed.
Work with the Project Management team to coordinate project and work schedules to ensure project efficiencies
Work with Operations Manager to schedule and maintain appropriate licensing and software trainings for professional development
Take the lead in End User Software training
QUALIFICATIONS:
A high school diploma or equivalent required; a BA/BS Degree preferred
In-depth knowledge of industry-leading security system and equipment providers
Certification with major enterprise level security/access control systems preferred
Decision-making and problem-solving ability
Ability to read and understand advanced technical information and documentation
Proficient with MS Office Suite (Excel, Outlook, PowerPoint, Project, SharePoint and Word)
Excellent verbal and written communication skills
Ability to establish and maintain effective working relationships with both internal and external customers
Must be detail-oriented and organized
Strong analytical and problem-solving capabilities
Strong time management skills
Self-motivated with the ability to motivate and influence others
Must be able to manage multiple tasks while meeting strict deadlines
Possess excellent follow-up skills
Certifications in the following Software platforms are preferred
AMAG
Idemia (Biometrics)
BENEFITS:
Medical, dental, vision, basic life, AD&D, and disability insurance
Enrollment in our company's 401 (k) or Supplemental Income Plan, subject to eligibility requirements
Eight paid holidays annually, five sick days, and four personal days
Vacation time offered at an accrual rate of 3.08 hours biweekly. Unused vacation is only paid out where required by law.
Closing
Allied Universal is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race/ethnicity, age, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, protected veteran status or relationship/association with a protected veteran, or any other basis or characteristic protected by law. For more information: ***********
If you have any questions regarding Equal Employment Opportunity, Affirmative Action, Diversity and Inclusion, have difficulty using the online system and require an alternate method to apply, or require an accommodation at any time during the recruitment and/or employment process, please contact our local Human Resources department. To find an office near you, please visit: ***********/offices.
Requisition ID 2025-1330811
Security Engineer
Information Security Analyst Job In Pittsburgh, PA
About the Role: The Security Engineer will be responsible for designing, implementing, and maintaining security controls and frameworks to protect the organization's systems, applications, and data. This role will focus on integrating security best practices into business processes while ensuring compliance with regulatory and industry standards. The ideal candidate will have a strong background in security engineering with hands-on experience in Governance, Risk, and Compliance (GRC) frameworks. The Security Engineer will collaborate with key business stakeholders to identify security risks, design technical controls, and drive automation to enhance security posture and compliance initiatives.
What You'll Do:
* Security Architecture & Engineering: Develop and implement security controls to protect cloud and on-premises environments, ensuring alignment with security best practices and compliance frameworks.
* Risk Assessment: Identify, assess, and prioritize security risks that could impact the organization's infrastructure, applications, and compliance requirements.
* Compliance Management: Implement and maintain compliance programs and policies aligned with regulatory requirements, such as ISO 27001, HITRUST CSF, and other industry standards.
* Auditing & Assessment: Conduct internal and external security audits to evaluate compliance, identify security gaps, and recommend improvements.
* Security Automation: Develop and implement automated solutions for security monitoring, risk assessment, and compliance reporting.
* Incident Management: Assist in investigating security incidents, ensuring proper response and remediation while maintaining compliance with legal and regulatory requirements.
* Technology Implementation: Evaluate and deploy security tools, such as vulnerability management, SIEM, endpoint protection, and data loss prevention solutions.
* Continuous Improvement: Enhance GRC processes through automation, continuous monitoring, and the development of security metrics, dashboards, and reporting mechanisms.
* Vulnerability Management: Support the development and ongoing oversight of a vulnerability management program, ensuring timely remediation of identified security risks.
* Security Exception Management: Manage the security exception process, tracking alternative mitigating controls and ensuring risk treatment plans align with organizational policies.
* Vendor Risk Management: Maintain and improve the vendor risk management program, conduct security assessments and enhance third-party risk assurance processes.
* Training and Awareness: Develop and deliver training programs to educate employees about compliance requirements and information security best practices.
What We Look For:
* 7+ years of experience in Information Technology, Security Engineering, Governance, Risk, and Compliance (GRC), and/or Internal Audit management.
* Experience with security and compliance automation tools (e.g., Vanta) and implementing security best practices in cloud environments (AWS preferred).
* Experience in conducting risk assessments, security compliance reviews, and audits for cloud-based (AWS, Azure) and on-premises environments.
* Experience implementing and maintaining compliance frameworks such as HITRUST CSF and ISO 27001.
* Experience working in SaaS environments, particularly in regulated industries such as healthcare.
Skills:
* Strong knowledge of security frameworks, risk management, and security technologies (e.g., SIEM, vulnerability management, data loss prevention, and endpoint protection).
* Skilled at applying a risk-based approach to planning, executing, and reporting on audit engagements and auditing processes.
* In-depth knowledge of security framework controls as they apply to public cloud (AWS preferred), hybrid, self-hosted, and SaaS environments.
* Understanding of security vulnerabilities, threats, and risk mitigation strategies.
* Ability to translate security and compliance requirements into technical requirements.
* Excellent problem-solving, analytical, and decision-making skills.
* Strong written and verbal communication skills with the ability to present security and GRC concepts to both technical and non-technical stakeholders.
Education:
* Bachelor's degree in a technical discipline related to Information Technology.
* Professional certifications such as CGRC, CISSP, CISA, CRISC, or similar are highly desirable.
Benefits:
* Medical/dental/vision plans 100% paid for employees and family members without coverage, which start from day one!
* Life and AD&D
* Flexible Spending Accounts: Medical, Dependent Care, and Transportation
* 401 (k) Retirement Savings
* Tuition Reimbursement
* Military Paid Leave (up to 6 months of base salary while on military leave)
* Paid Time Off/ 9 Holidays
* Paid parental leave
Disclaimer:
The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable qualified individuals with disabilities to perform the essential functions. The term "qualified individual with a disability" means an individual with a disability who, with or without reasonable accommodation, can perform the essential functions of the position.
TeleTracking is an Equal Opportunity/Affirmative Action employer. TeleTracking recruits qualified applicants without regard to race, color, religion, gender, age, ethnic or national origin, veteran status, physical or mental disability, genetic information, sexual orientation or preference, gender identity, marital status, or citizenship status.
Recruiting agencies, please do not submit unsolicited referrals for this or any open role. We have a roster of agencies with whom we partner, and we will not pay any fee associated with unsolicited referrals.
Security Engineer - 5629015
Information Security Analyst Job In Pittsburgh, PA
Accenture Flex offers you the flexibility of local fixed-duration project-based work powered by Accenture, a leading global professional services company. Accenture is consistently recognized on FORTUNE's 100 Best Companies to Work For and Diversity Inc's Top 50 Companies For Diversity lists.
As an Accenture Flex employee, you will apply your skills and experience to help drive business transformation for leading organizations and communities. In addition to delivering innovative solutions for Accenture's clients, you will work with a highly skilled, diverse network of people across Accenture businesses who are using the latest emerging technologies to address today's biggest business challenges.
You will receive competitive rewards and access to benefits programs and world-class learning resources. Accenture Flex employees work in their local metro area onsite at the project, significantly reducing and/or eliminating the demands to travel.
Job Description:
* ForgeRock Implementation & Development:
* Design, develop, and configure IAM solutions using ForgeRock AM, IDM, DS, and IG.
* Implement authentication, authorization, and federation solutions leveraging industry standards such as OAuth 2.0, OpenID Connect (OIDC), SAML, LDAP, and SCIM.
* Customize and extend ForgeRock components using Java, Groovy, REST APIs, and scripting languages.
* Integration & Deployment:
* Integrate ForgeRock with various other solutions and channels to build an omni-channel solution
* Develop and configure workflows for user provisioning, self-service, and lifecycle management.
* Work with DevOps teams to automate deployment, configuration, and maintenance using CI/CD pipelines, containers, and infrastructure-as-code (IaC).
Qualification
Basic Qualifications:
* Minimum of 5 years of IAM experience, with at least 3 years in ForgeRock development and implementation
Preferred Qualifications:
* Hands-on experience with ForgeRock AM, IDM, DS, IG, deployed on Azure Kubernetes
* Strong programming skills in Java, Groovy, JavaScript, REST APIs, JSON, and XML.
* Experience with OAuth 2.0, OIDC, SAML, LDAP, SCIM, and JWT.
Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired in California, Colorado, District of Columbia, Illinois, Maryland, Minnesota, New York or Washington as set forth below. We accept applications on an on-going basis and there is no fixed deadline to apply. Information on benefits is here.
Role Location:
California - $71.73 - $81.73
Colorado - $71.73 - $81.73
District of Columbia - $71.73 - $81.73
Illinois - $71.73 - $81.73
Minnesota - $71.73 - $81.73
Maryland - $71.73 - $81.73
New York - $71.73 - $81.73
Washington - $71.73 - $81.73
#LI-NA
Locations
Information Security Analyst with Top Secret Clearance
Information Security Analyst Job In West Mifflin, PA
Opportunity
The Information Security Analyst supports cybersecurity responsibilities and projects for the customer's various network systems. Implement appropriate Risk Management Framework, audit and strategize IT development and monitoring principles, control reviews, monitor system vulnerabilities, data encryption, and oversee security breaches. Perform an assortment of other routine IT tasks with varying degrees of complexity. You will be responsible for protecting computer networks, systems, and data integrity.
Salary: 100-130k
Qualifications
Candidates must have the following combination of knowledge and skill to be considered:
Bachelors Degree in Cyber security, IT, or a related field and four (4) years of relevant experience, Associates Degree in Cybersecurity, IT, or a related field and six (6) years experience, High School Degree and ten (10) years experience, or Similar education / work experience via customer approval.
Technical Writing experience: shall have a strong working knowledge of the English language and experience performing technical writing to support Cybersecurity compliance.
Certification-ISC2 CISSP or similar certification via customer approval
Active DoD Top Secret or DOE Q security clearance
About IMG
Founded in 1987, IMG is a leading small business that exemplifies competence, integrity and follow-through. We consistently provide customer focused professional services, which ensures our company is recognized for continually exceeding expectations. We believe that at the core of our success stand our people. Our people have provided professional services in the Information Technology field for our customers with a commitment to customer satisfaction for over 35 years.
IMG Benefits:
Health, dental, vision, and life insurance
Short term and long term disability insurance
401(k) with generous company match
Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)
Personal leave plus paid federal holidays
Professional development and training assistance
IMG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
Security Analyst
Information Security Analyst Job In Pittsburgh, PA
We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges.
In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India.
We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career.
Job Description
Security Analyst
MUST HAVE:
Experience with implementing a vulnerability scanner
Familiarity with both Windows and Linux platforms
Experience with a log management system (Splunk, Elastic Search, etc)
General understanding of incident management systems
Experience patching operating systems/applications
Experience configuring operating systems/applications
Knows and applies the fundamental concepts, practices and procedures of IT security hardware, software, management software, and troubleshooting tools
Candidate should have a strong knowledge of IT security, including demonstrated knowledge of current security trends and issues
Ability to effectively and professionally communicate with customers and technical support staff at remote locations including team members in foreign countries; excellent verbal and written communication skills
Highly self-motivated and flexible
Manage priorities for timely completion of assignments
Strong analytical and problem-solving skills
Demonstrated success managing confidential/secure information with a high level of integrity
NICE TO HAVE:
Nessus experience
HP Service Manager
Additional Information
Good comm skills are a big priority
Duration: 3+ Months
Phone+F2F
Local Candidates Preferred
Sr. Information Security Manager
Information Security Analyst Job In Murrysville, PA
Sr. Information Security Manager - Murrysville, PA The Integrated Supply Chain (ISC) Information Security Manager will be responsible for developing, implementing and monitoring a strategic and comprehensive IT security plans across multiple geographies and driving security in manufacturing sites, Distribution Centers, and warehouses across the US.
Your role:
* Develop and implement robust OT (Operational Technology), Cloud, Network, IoT (Internet of Things) security strategies on ISC (Integrated Supply Chain) manufacturing process aligned with industry standards, such as establishing security architecture compliance with regulations (e.g., HIPAA, FDA) and deploy technologies like firewalls and OT IDS (Operational Tech. Intrusion Detection System) solutions for system segmentation and protection.
* Leverage experience with OT technologies (e.g., Nozomi Guardian, Armis, Claroty) and perform vulnerability assessments by applying frameworks like MITRE ATT&CK and STRIDE for threat modeling and attack simulations, driving solutions to address security threats.
* Identify, assess, and mitigate: Operational Tachnology (OT) Cloud, Network, IoT (Internet of Things) risk and/or threats on Integraged Supply Chain (ISC) manufacturing security through cross-functional collaboration, develop incident response plans, lead investigations, and implement corrective actions to address root causes of security breaches.
* Secure supply chain systems by collaborating with vendors, conducting assessments, and enforcing compliance with security standards.
* Build a culture of security through targeted training programs and stakeholder education.
You're the right fit if:
* You have +10 years experience on developing and implementing cybersecurity strategies on manufacturing/ supply chain/ logistics environment.
* Bachelor's in Computer Science, Information Technology and/or an equivalent academic field. Master's degree in a similar academic field is preferred.
* You have a Cybers Security Certification such as CISSP, CISM, CISA, CIPP etc. preferred. Knowledge on MITRE Framework, IEC 62443/NIST 800:23 is preferred.
* Your skills a thorough understanding of Security Management and Governance principles, along being able to deliver cross-cultural etiquette, customer-centric and collaborative mindset.
* You must be able to successfully perform the following minimum Physical, Cognitive and Environmental job requirements with or without accommodation for this position.
How we work together
We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence in the company's facilities. Field roles are most effectively done outside of the company's main facilities, generally at the customers' or suppliers' locations.
This is an in office role.
About Philips
We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help improve the lives of others.
* Learn more about our business.
* Discover our rich and exciting history.
* Learn more about our purpose.
* Learn more about our commitment to diversity and inclusion.
Philips Transparency Details
The pay range for this position in Murrysville, PA is from $ 107,000. 00 to $154,000.00
The actual base pay offered may vary within the posted ranges depending on multiple factors including job-related knowledge/skills, experience, business needs, geographical location, and internal equity.
In addition, other compensation, such as an annual incentive bonus, sales commission or long-term incentives may be offered. Employees are eligible to participate in our comprehensive Philips Total Rewards benefits program, which includes a generous PTO, 401k (up to 7% match), HSA (with company contribution), stock purchase plan, education reimbursement and much more. Details about our benefits can be found here.
At Philips, it is not typical for an individual to be hired at or near the top end of the range for their role and compensation decisions are dependent upon the facts and circumstances of each case.
Additional Information
US work authorization is a precondition of employment. The company will not consider candidates who require sponsorship for a work-authorized visa, now or in the future.
Company relocation benefits will not be provided for this position. For this position, you must reside in or within commuting distance to Murrysville, PA.
#LI-PH1
#LI-OFFICE
This requisition is expected to stay active for 45 days but may close earlier if a successful candidate is selected or business necessity dictates. Interested candidates are encouraged to apply as soon as possible to ensure consideration.
Philips is an Equal Employment and Opportunity Employer/Disabled/Veteran and maintains a drug-free workplace.