Information security analyst jobs in Nevada

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. + MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. + MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. **Responsiblities** NNSS is seeking an experienced Cyber Security Analyst to join our team as a Principal Threat Hunting Analyst. This role is responsible for managing threat hunting activities across the enterprise such as supporting and performing all phases of the incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery, and post-incident activity. In addition, the analyst will ensure all incident response processes and associated threat hunting techniques are well-defined, documented, tested, and managed. The analyst will evaluate threat intel to determine potential evolving threats to the enterprise and adapt/improve threat hunting and detection techniques accordingly, conduct forensics: host-based disk and memory as well as network; analysis to determine root cause and impact, and develop of use cases mapped to common frameworks (e.g., MITRE ATT&K) for detecting new/evolving threats, including supporting content for security tools. The ideal candidate will have at least 8 years of related experience and one or more of the preferred cyber security certifications listed below. **Key Responsibilities** + Develop and manage an enterprise threat hunting program. Support and perform all phases of the incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery, and post-incident activity. + Manage programs and oversee processes in support of cyber threat intelligence analysis. + Mentor and train junior analysts and assist with prioritizing and completion of tasks. + Identify and prioritize cyber threats using open and closed source research into suspicious activity to collect and analyze information on adversary behavior. + Maintain awareness of trends and risks that can affect the organization as it relates to the intersection between geopolitics, third-party risk, and the cyber threat landscape. + Create and deliver a range of written and verbal products that arm cyber defense teams with actionable intelligence and provide organizational leaders with curated information that influences risk-based decision-making. + Review current Cyber Security threat information and assist the Threat Evaluation Team with mitigating vulnerabilities identified. + Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US CERT, and law enforcement. + Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring, and compiling reports for auditors. + Perform other duties as assigned by Management. **Qualifications** + Bachelor's degree or equivalent training and experience in a computer-related field and at least 8 years of related experience. + Experience with structured analytic techniques (e.g., Diamond Model, Cyber Kill Chain) as well as a proven understanding of the MITRE ATT&K framework. + Experience with the utilization of Open-Source Intelligence (OSINT) as well as closed intelligence sources. + Experience analyzing raw data points from technical security controls, to include web proxy, firewalls, IPS, IDS, enterprise antivirus solutions, etc. + Experience with engineering security detections and response technology integration (SOAR & SIEM), as well as Threat Intelligence Platform (TIP) product ingestion to improve proactive security measures. + Experience with link analysis tools. + Familiarity with the fundamentals of agile project management. + Familiar with compliance frameworks, security best practices, and product security baselines. + Experience using configuration management tools in a production environment. + Strong IT background, including networking fundamentals and systems. Able to demonstrate thorough understanding of basic principles, theories, standards, practices, protocols, and procedures used in Cyber Security. + Possess considerable organization and project management skills. + Ability to maintain strict confidentiality. + Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with coworkers, customers, write clear and concise reports, gather and collect information. + Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances. + General understanding of cybersecurity controls used to mitigate vulnerabilities. + Preferred Certifications (Please upload certification(s) as an attachment when applying.): + Certified Information Systems Security Professional (CISSP) + GIAC Security Essentials (GSEC) + GIAC Cyber Threat Intelligence (GCTI) + GIAC Certified Forensic Analyst (GCFA) + The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. + Work schedule will be 4/10's Monday through Thursday (subject to change). + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2 (**************************************************************************************** , "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. **Department of Energy Q Clearance** (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4 (*************************************************************************************************************** , "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709 (************************************************************************************ , "Counterintelligence Evaluation Program." MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: **$116,001.60 - $176,904.00.** Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. Bachelor's degree or equivalent training and experience in a computer-related field and at least 8 years of related experience. Experience with structured analytic techniques (e.g., Diamond Model, Cyber Kill Chain) as well as a proven understanding of the MITRE ATT&K framework. Experience with the utilization of Open-Source Intelligence (OSINT) as well as closed intelligence sources. Experience analyzing raw data points from technical security controls, to include web proxy, firewalls, IPS, IDS, enterprise antivirus solutions, etc. Experience with engineering security detections and response technology integration (SOAR & SIEM), as well as Threat Intelligence Platform (TIP) product ingestion to improve proactive security measures. Experience with link analysis tools. Familiarity with the fundamentals of agile project management. Familiar with compliance frameworks, security best practices, and product security baselines. Experience using configuration management tools in a production environment. Strong IT background, including networking fundamentals and systems. Able to demonstrate thorough understanding of basic principles, theories, standards, practices, protocols, and procedures used in Cyber Security. Possess considerable organization and project management skills. Ability to maintain strict confidentiality. Ability to communicate effectively in English, both verbally and in writing, sufficient to communicate with coworkers, customers, write clear and concise reports, gather and collect information. Ability to use multiple electronic devices including standard office machines, cellular phones, and security appliances. General understanding of cybersecurity controls used to mitigate vulnerabilities. Preferred Certifications (Please upload certification(s) as an attachment when applying.): Certified Information Systems Security Professional (CISSP) GIAC Security Essentials (GSEC) GIAC Cyber Threat Intelligence (GCTI) GIAC Certified Forensic Analyst (GCFA) The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. Work schedule will be 4/10's Monday through Thursday (subject to change). Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2, “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4, “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709, “Counterintelligence Evaluation Program.” MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $116,001.60 - $176,904.00. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity. NNSS is seeking an experienced Cyber Security Analyst to join our team as a Principal Threat Hunting Analyst. This role is responsible for managing threat hunting activities across the enterprise such as supporting and performing all phases of the incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery, and post-incident activity. In addition, the analyst will ensure all incident response processes and associated threat hunting techniques are well-defined, documented, tested, and managed. The analyst will evaluate threat intel to determine potential evolving threats to the enterprise and adapt/improve threat hunting and detection techniques accordingly, conduct forensics: host-based disk and memory as well as network; analysis to determine root cause and impact, and develop of use cases mapped to common frameworks (e.g., MITRE ATT&K) for detecting new/evolving threats, including supporting content for security tools. The ideal candidate will have at least 8 years of related experience and one or more of the preferred cyber security certifications listed below. Key Responsibilities Develop and manage an enterprise threat hunting program. Support and perform all phases of the incident response life cycle: preparation, analysis, containment, eradication, remediation, recovery, and post-incident activity. Manage programs and oversee processes in support of cyber threat intelligence analysis. Mentor and train junior analysts and assist with prioritizing and completion of tasks. Identify and prioritize cyber threats using open and closed source research into suspicious activity to collect and analyze information on adversary behavior. Maintain awareness of trends and risks that can affect the organization as it relates to the intersection between geopolitics, third-party risk, and the cyber threat landscape. Create and deliver a range of written and verbal products that arm cyber defense teams with actionable intelligence and provide organizational leaders with curated information that influences risk-based decision-making. Review current Cyber Security threat information and assist the Threat Evaluation Team with mitigating vulnerabilities identified. Collaborate with other outside Cyber Security interests such as Counterintelligence, other DOE sites, US CERT, and law enforcement. Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring, and compiling reports for auditors. Perform other duties as assigned by Management.

YOUR MISSION (The Job Description): This job is located on-site at Virgin Hotels Las Vegas. Remote work is not available for this position. The Security Analyst will play a vital role in keeping all IT-related security, safety issues, and the day-to-day functionality of all network-related hardware and software secure. The Security Analyst will be responsible for generating reports for IT administrators and business managers to evaluate the efficacy of the security policies in place. Security Analyst will help make necessary changes for a more secure network and may also create training programs and modules to educate employees and users on proper security protocols.

The Senior Analyst Info Security is responsible for leading and supporting both short-term and long-term cybersecurity initiatives across the enterprise. This includes managing and maintaining secure systems, data, and network infrastructure, as well as conducting enterprise-wide security gap assessments, vulnerability remediation, and implementation of security controls. The role also encompasses the development and enforcement of compensating controls and exception management processes to ensure the organization's security posture remains resilient and compliant with industry standards. This role promotes a security-first mindset across the organization and contributes to the continuous improvement of the enterprise's security posture through proactive monitoring, technical support, and training initiatives. Essential Functions & Responsibilities: Manage the full lifecycle of cybersecurity toolsets, including planning, acquisition, deployment, administration, monitoring, and decommissioning. Provide incident response and issue management for security investigations, including intrusion detection, malware, denial of service attacks, and privileged account misuse. Develop and maintain standard operating procedures and training materials. Monitor security alerts and logs to identify and investigate potential threats, reducing incident response time and improving detection accuracy. Collaborate with IT and business units to ensure security controls are implemented and maintained across enterprise systems. Provide high-level technical support, including configuration changes, policy recommendations, and diagnostics of network security issues. Maintain awareness of regulatory gaming requirements, internal control standards (MICS), and enterprise policies related to information security. Manages and maintains PCI compliance. This includes implementing PCI policy, standards, and procedures, assigning training and tracking to completion, and working with PCI assessors in assuring compliance. Participate in operational planning and contribute to strategic security initiatives. Promote a culture of security awareness and operational excellence across departments. Emergency on-call to support after-hours security incidents and operational support. Perform other duties as assigned to support the efficient operation of the department. Required Qualifications: Ability to secure and maintain a Nevada Gaming Registration. High School diploma or GED required. Bachelor's degree in information technology, Information Security, or a related field preferred. Minimum of 6 years of experience in information security or related roles. Experience in casino environments is strongly preferred. Familiarity with the following technologies and practices: Data Loss Protection Forensic Software Suites Network Infrastructure Virtualization Platform Security Operating Systems Security Access Management and Privileged Access Management Security Information and Event Monitoring (SIEM) Incident Response Programs PCI (Payment Card Industry) Strong communication and presentation skills. Ability to troubleshoot using the OSI model and analyze network traffic. Understanding of standards, policies, procedures, and operational effectiveness. Ability to work in a fast-paced, high-demand environment. Certifications from organizations such as ISC2, CompTIA, ISACA, GIAC, or equivalent preferred (e.g., CISSP, Security+, CISM). Physical Demands & Work Environment: The physical demands and working environment described here are representative of those that an employee encounters and must be met by an employee to successfully perform the essential functions of this job. Primary work environment is in a climate-controlled office setting. Work requires travel to attend meetings, trade shows, and conferences. Incumbents may be required to work evening, weekend and holiday shifts. Must be able to work in a fast-paced, high-demand environment. Strength sufficient to exert up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects and/or move up to 40 pounds occasionally. Sedentary work: involves sitting most of the time. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine, and computer printer. Physical activities that apply to the essential functions of the position are balancing, stooping, kneeling, crouching, reaching, pushing, pulling, lifting, grasping, talking, hearing, and repetitive motions. Hearing sufficient to hear conversational levels in person, via videoconference and over the telephone. Speech sufficient to make oneself heard and understood in person, in front of groups, in meetings, via videoconference and over the telephone. Visual acuity that meets the requirements of the position: The worker is required to have close visual acuity to perform an activity such as preparing and analyzing data and figures; transcribing; viewing a computer terminal; expansive reading and visual inspection of employees, visitors or facility. Mobility sufficient to safely move in an office environment, walk, stoop, bend and kneel, and enter, exit and operate a motor vehicle in the course of travel to promotional events, meetings, conferences, trade shows and San Manuel properties. Endurance sufficient to sit, walk and stand for extended periods, and maintain efficiency throughout the entire work shift and during extended work hours. The employee may be exposed to fumes or airborne particles including secondhand smoke. Equal Opportunity Employer: Palms Casino Resort provides equal employment opportunities to all team members and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Palms Casino Resort, its affiliates and subsidiaries, will make reasonable accommodations in compliance with applicable law. We are committed to creating a work environment where the growth and well-being of our team members is the top priority. Join our team today!

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

Meta's Product Security team is seeking a experienced hacker who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will be the foundation of security initiatives that protect the security and privacy of over two billion people. You will be relied upon to provide engineering and product teams with the web, mobile, or native code security expertise necessary to make informed product decisions. Come help us make life hard for the bad guys. **Required Skills:** Product Security Engineer, AI Responsibilities: 1. Security Reviews: perform manual design and implementation reviews of products and services that make up the Meta ecosystem, like Instagram, WhatsApp, Oculus, Portal, and more 2. Developer Guidance: provide guidance and education to developers that help prevent the authoring of vulnerabilities 3. Automated Analysis and Secure Frameworks: build automation (static and dynamic analysis) and frameworks with software engineers that enable Meta to scale consistently across all of our products **Minimum Qualifications:** Minimum Qualifications: 4. BS or MS in Computer Science or a related field, or equivalent experience 5. 8+ years of experience finding vulnerabilities in interpreted languages. Knowledge of best practice secure code development 6. Experience with exploiting common security vulnerabilities 7. Knowledge of common exploit mitigations and how they work 8. Coding and scripting experience in one or more general purpose languages **Preferred Qualifications:** Preferred Qualifications: 9. Experience creating software that enables security processes, especially those leveraging AI/ML for automation or augmentation 10. Experience integrating or building AI-powered tools to assist with vulnerability detection, code review, or threat modeling 11. Experience creating software that enables security processes 12. 8+ years of experience finding vulnerabilities in C/C++ code 13. Contributions to the security community (public research, blogging, presentations, bug bounty) 14. Demonstrated ability to collaborate with AI researchers or engineers to apply AI in security workflows **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Job Posting **Information Systems Security Officer (ISSO) at Nellis Airforce Base** Today, every organization needs to be digital, powered by data, running in a multi-cloud world, ready to take on anything. Our Consulting team assesses customer's strategic, organizational and business challenges and uses in-depth industry knowledge to offer technical solutions that apply to future business environment and operational objectives to help our Dell Technologies gain market share and increase efficiency. Join us to do the best work of your career and make a profound social impact as an **Information Systems Security Officer (ISSO)** on our **Consulting Team** in **Las Vegas, Nevada** **(** **onsite at Nellis Air Force Base** **).** **What you'll achieve** As an **Information Systems Security Officer (ISSO)** , you'll play a key role in maintaining the cybersecurity posture of systems used in Test and Evaluation (T&E) activities. **You will:** + Focus on daily cybersecurity operations, ensuring that systems are operated, maintained and secured in accordance with established policies and procedures + Generate reports for System Administrator (SysAdmin) and Information Systems Security Engineering (ISSE) implementations **Take the first step towards your dream career** Every Dell Technologies team member brings something unique to the table. Here's what we are looking for with this role: **Essential Requirements:** + **Active Department of Defense (DoD) Top Secret (TS) Security Clearance; Security+ Certification** + Expertise in: + DoD's National Institute of Standards and Technology (NIST) Risk Management Framework (Categorization, Control Selection, Implementation, Assessment, Authorization and Continuous Monitoring) + IT Service Management and common DoD governance to include Axelos Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (COBIT), The Open Group Architecture Framework (TOGAF) and ISO/IEC 20000 + Tenable Security Center for vulnerability assessment, compliance scanning, reporting and analysis with familiarity of Nessus and Nessus Network Monitor + Experience with: + hardening client, server, appliance, network and storage systems; Security Content Automation Protocol (SCAP) tools i.e., OpenSCAP, Security Technical Implementation Guide (STIG) Viewer, Security Content Automation Protocol (SCC), Evaluate-STIG; applying technical controls; participating in audit/remediation and Risk Management Framework (RMF) processes + developing, modifying and interpreting core compliance artifacts to include System Security Plan (SSP), Plan of Action and Milestones (POA&M) and Security Assessment Report (SAR) + administering security standards and directives e.g. NIST RMF/CSF/SP 800‑53, DoDI 8500.01/8510.01, DoDD 8570/8140, JSIG and NISPOM + utilizing Security Information and Event Management (SIEM) tools i.e., Splunk, McAfee/Trellix ESM, VMware vRealize Log Insight for log collection, analysis, reporting and integration with HBSS/VA systems + container i.e., Docker, Kubernetes, Red Hat OpenShift, Podman and orchestration i.e., Ansible, Puppet, Chef tools and technologies + creating, managing and deploying patches using Microsoft Endpoint Configuration Manager (ECM) and System Center Configuration Manager (SCCM) + configuration management and applying best practices, local policies and program governance to streamline review and approval processes + managing incident responses in classified environments, including security violations, malware outbreaks, unauthorized access and escalations + identifying, filtering, assessing and planning remediation for common vulnerabilities and exposures + Familiarity with: + McAfee/Trellix Endpoint Security Solutions including offline air-gapped definition updates, policy management, agent deployment and troubleshooting + VMware ESXi, vSphere, vRealize LogInsight, Omnissa's Horizon for Virtual Desktop Infrastructure; understanding of cybersecurity challenges in virtualized environments + Excellent interpersonal, written and verbal skills to be able to influence and interact with confidence and credibility at all levels within the Dell Technologies companies, customers, partners and vendor **Desirable Requirements:** + Bachelor's or master's degree **Compensation** Dell is committed to fair and equitable compensation practices. The base salary range for this position is $107,950 - $139,700. **Benefits and Perks of working at Dell Technologies** Your life. Your health. Supported by your benefits. You can explore the overall benefits experience that awaits you as a Dell Technologies team member - right now at MyWellatDell.com. **Who we are** We believe that each of us has the power to make an impact. That's why we put our team members at the center of everything we do. If you're looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we're looking for you. Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us. Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. Read the full Equal Employment Opportunity Policy here (******************************************************************** . **Job ID:** R273967

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Cloud Security Engineer to help design, implement, and maintain secure cloud environments across our AWS, Azure, and/or Google Cloud platforms. You will work closely with infrastructure, DevOps, and application teams to ensure our cloud workloads meet industry security standards, comply with regulatory requirements, and support business objectives. * Implement and manage cloud security controls, including IAM, encryption, key management, and network security. * Monitor cloud environments for security events, misconfigurations, and vulnerabilities using tools like AWS Security Hub, Azure Defender, Prisma Cloud, or similar.Develop and enforce security policies and automation (IaC security, CI/CD pipeline security, compliance checks). * Support incident response activities, including investigation, remediation, and post-incident reviews. * Collaborate with DevOps and engineering teams to implement secure-by-design practices. * Conduct threat modeling and risk assessments for cloud-based applications and infrastructure. Ensure compliance with standards such as CIS Benchmarks, ISO 27001, SOC 2, NIST, or GDPR as applicable. * Participate in security architecture reviews and contribute to continuous improvement initiatives. Preferred: AWS Certified Security - Specialty, Azure Security Engineer Associate, CCSP, CISSP or Security +, CISSP Required: None

Job DescriptionSalary: $31.25/hr Who We Are: Headquartered in Canada with locations across the United States and around the globe with a footprint on six continents, Bulletproof, a GLI company has decades of technology, security, and compliance expertise. Bulletproofs work in the security space has been recognized nationally and globally with Microsofts global Security Partner of the Yearin 2021 and the Microsoft Security Trail-Blazer Award in 2024. At Bulletproof, our vision is to serve, secure, and empower the world through people and technology; one customer at a time. We believe everyone has the right to feel safe and secure. Our mission is to serve and protect organizations to ensure their success. What we have to offer: Challenging Work - We love solving highly complex problems. Across our teams and in all roles, every employee is empowered to bring their best ideas forward and to jump in and solve the problems they're passionate about. Great People - We are stronger, together, when we are open, honest, and above all, real. Every person is valued here and plays an important role in our shared success. Global Impact - As a global team spanning continents, boundaries, and cultures, every day we are inspired by the impact our work has on our colleagues, our customers, our communities, and the world at large. Diversity, Equity and Inclusion - We celebrate each others differences, continuously strive for equality and recognize that inclusion makes us stronger as individuals, a company and a global citizen. Position Summary: Provide security support an on shift 24X7X365 basis. This involves handling events such as identifying user security issues, extensive troubleshooting, and coordinating resolution or restore using a variety of applications and testing tools. The events can include hardware/software failures as well as security breaches, threats, or network connectivity issues. Regularly provide high-level proactive technical support, including security configurations, security policy modification recommendation, and diagnostics of remote network issues. Duties: Perform the detailed and repeatable execution of all operational tasks as documented in SOC processes and subordinate procedures. Monitor the SOC main event tools for security events. Close or escalate security events as necessary. Update all relevant documentation such as shift logs and tickets, procedures. Identify impact of incidents on systems, and using available tools determine if data was infiltrated. Document and maintain a knowledge base of alarms (false positives and false negatives, blacklists, whitelists) that IDS and IPS encounter. Serve as work area experts for security/information assurance policy recommendations. Gather intelligence from sources outside the SOC (both internal and external sources) and leverage for operations. Escalate incidents to applicable Bulletproof entities and or Bulletproof Customers for remediation. Build relationships with other Bulletproof operations units to strengthen customer security posture. Ensure security events and incidents are detected and escalated in a timely manner. Provide analysis and investigation to determine if alerts or security events warrant incident classification. Track incidents through to final resolution. Perform incident triage to include determining scope, urgency, and potential impact. Drive the Information Fusion Procedure where various data inputs are gathered, analyzed and presented in a meaningful, actionable manner. Responsible for long term analysis and investigation into our customers network activity, and the creation of custom logic to detect unique or previously undetectable attacks on our customer information assets. Required Education/Credentials/Qualifications: Bachelors degree in Computer Science or equivalent experience relevant to network security with relevant industry certifications. 2-4 years of related experience in a Network support and or Network operations role; or any combination of education and experience, which would provide an equivalent background. Background in networking or security to include intrusion detection/prevention. Excellent written, verbal communication and organizational skills. Knowledge and experience with PCs, LAN topologies, routers, hubs, switches, and terminal servers. Knowledge of security applications such as IDS, IPS, SEM, SIEM and anomaly detection tools. Knowledge of trouble ticketing systems or CRM systems. Understanding of the operation of test and analysis equipment such as protocol analyzers, LAN/WAN Sniffers, etc. Ability to read and interpret network diagrams. Ability to read and understand packet captures. Basic understanding of the OSI model Strong interpersonal and user service skills. Knowledge of Unix and Windows operating Systems. Experience with processes in functional area (i.e., trouble management, fault management, and incident management). Understanding of network management concepts and software, including SNMP Security +, SSCP and other technical security certifications (e.g. Information Systems Security Architecture Professional, Information Security Engineering Professional, Certification and Accreditation Professional, or equivalent certifications) (Preferred but not required) Benefits: Comprehensive Health, Dental, and Vision Insurance Optional Health 100% Employer Paid Health and Dental Plan Vacation Time 401k Plan Annual Discretionary Bonus Anniversary Reward Bonus Educational Assistance Program Additional Mental Health Benefits through our Employee Assistance Program Equal Opportunity Statement: Bulletproof is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Bulletproof is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Serco is seeking an Information Systems Security Officer (ISSO) to support the Immersive Missions and Training Solutions teams SAP Programs at Nellis Air Force Base, Joint Integrated Test and Training Center - Nellis. This position will support the ISSM in securing systems that support SAP business operations at the Nellis AFB facility. You will lead cybersecurity policy implementation, conduct risk assessments, and support system certification and accreditation activities. This position is contingent upon your ability to maintain/transfer your TS/SCI Clearance In this role, you will: Conduct system and network assessments to identify security deviations from policy or acceptable configurations. Perform compliance audits and vulnerability assessments to support cybersecurity objectives. Support program control processes to ensure risk mitigation and accreditation readiness. Assist in the implementation of DoD security policy (e.g., NIST 800-53 Rev. 4, JSIG, CNSSI No. 1253) and recommend process enhancements. Validate security requirements and recommend safeguards. Support Security Test and Evaluation (ST&E) activities and document results. Prepare and maintain Security Plans and Plans of Action and Milestones (POA&M). Oversee periodic reviews of system audits and ensure corrective actions are completed. GET TO KNOW YOUR RECRUITER! Qualifications To be successful in this role, you will have: Must have an active DoD TS/SCI clearance U.S Citizenship Required Current IAM Level 1 Certification Bachelor's degree with cybersecurity experience and tools below Or a HS diploma or GED with cybersecurity experience and tools below A foundation in security audits, system assessments, and policy compliance Experience supporting cybersecurity documentation and accreditation processes Ability to translate security requirement to technical requirements Experience with vulnerability scanning (ACAS, Nessus, etc.) Experience with STIG/Compliance scanning (SCAP, ACAS, GPOs) Ability to work on-site at Nellis AFB Ability to travel as needed (up to 10% of the time) Additional desired experience and skills: Utilizing Splunk to perform security audits/dashboard configuration Powershell, Windows Server, Linux Knowledge If you are interested in supporting and working with passionate Serco team- then submit your application now for immediate consideration. It only takes a few minutes and could change your career! In compliance with state and local laws regarding pay transparency, the salary range for this role is $67,889.77 to $101,500.00; however, Serco considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidate's work experience, education/training, and key skills. Company Overview Serco Inc. (Serco) is the Americas division of Serco Group, plc. In North America, Serco's 9,000+ employees strive to make an impact every day across 100+ sites in the areas of Defense, Citizen Services, and Transportation. We help our clients deliver vital services more efficiently while increasing the satisfaction of their end customers. Serco serves every branch of the U.S. military, numerous U.S. Federal civilian agencies, the Intelligence Community, the Canadian government, state, provincial and local governments, and commercial clients. While your place may look a little different depending on your role, we know you will find yours here. Wherever you work and whatever you do, we invite you to discover your place in our world. Serco is a place you can count on and where you can make an impact because every contribution matters. To review Serco benefits please visit: ************************************************************ If you require an accommodation with the application process please email: ******************** or call the HR Service Desk at ************, option 1. Please note, due to EEOC/OFCCP compliance, Serco is unable to accept resumes by email. Candidates may be asked to present proof of identify during the selection process. If requested, this will require presentation of a government-issued I.D. (with photo) with name and address that match the information entered on the application. Serco will not take possession of or retain/store the information provided as proof of identity. For more information on how Serco uses your information, please see our Applicant Privacy Policy and Notice. Serco does not accept unsolicited resumes through or from search firms or staffing agencies without being a contracted approved vendor. All unsolicited resumes will be considered the property of Serco and will not be obligated to pay a placement or contract fee. If you are interested in becoming an approved vendor at Serco, please email *********************. Serco is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, and other legally protected characteristics.

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. Bachelor's degree in field related to the position or equivalent training and experience plus a minimum of 5 years of progressive related experience. Ability to learn and understand the Local Area Nuclear Material Accounting System (LANMAS) is required. Participate in Human Reliability Program (HRP). Become and Radiological Worker I qualified within three months of start date. Demonstrated success in providing customer support and interface. Experience in interacting with a broad range of management, staff, and various government agencies. Demonstrated effective interpersonal skills, and successful problem resolution and negotiation skills. Excellent oral and written communication skills. Ability to provide input on hardware and software requirements for Nuclear Material Control and Accountability (MC&A) systems at the NNSS is desired. Knowledge of NNSS programs and operations, familiarity with interpreting and implementing MSTS and Department of Energy policies, procedures, and practices and experience working in a multidisciplinary environment is desired. This position requires unescorted access to radiological and Material Access Areas. The primary work location will be at the Nevada National Security Site (located 65 miles northwest of Las Vegas, Nevada). Work schedule will be 4/10s Monday through Thursday (subject to change). Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2, “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4, “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709, “Counterintelligence Evaluation Program.” MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $78,832.00 - $118,248.00. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity. NNSS is seeking an experienced Safeguards & Security Specialist (Senior Safeguards & Security Specialist) to join the team as an Accountable Nuclear Material Custodian. The Specialist in the role will oversee the implementation and activities of a graded, effective safeguards program for control and accountability of nuclear material (NM). Key Responsibilities Develop, coordinate, and implement facility and project specific plans and procedures. Provide oversight to ensure proper control and accountability of accountable NM at the Nevada National Security Site (NNSS) are complied with to include, but not limited to: Proper safeguarding and storage of NM. Proper documentation of transfers and receipts of materials; determination of need for and the proper application of tamper indicating devices. Coordination and oversight of physical inventories. Participation in assessments/performance tests; review procedures and plans; obtain and maintain all training as assigned. Coordinate and perform inventory activities and item reconciliation; perform backup duties for other Nuclear Material Custodians; and be trained in NM measurements to include verification and confirmation measurements. This position provides technical leadership and direction to include identifying, evaluating and compiling detailed technical information related to the mission and process in regard to accountable NM; interface with the management of the facility and/or operation in which accountable NM is located; troubleshoot anomalies related to accountable NM; inventory difference investigation, calculations, and resolution; assist in development of corrective actions for any identified deficiencies; participate in management reviews of issues involving accountable NM; develop and maintain appropriate documentation for assigned areas. Position interacts with a broad range of NNSS management and staff, national laboratory representatives, and various government agencies. Performs other related work as assigned by supervisor or management.

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. + MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. + MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. **Responsiblities** NNSS is seeking an experienced candidate for Senior Cyber Security Analyst - Security Engineering to play a critical role in safeguarding company infrastructure from cyber threats and attacks. The position is responsible for designing, implementing, managing, and enhancing security measures to protect sensitive data, networks, systems, and applications. **Key Responsibilities** + Assist the Information System Security Manager (ISSM) and Information System Security Officers (ISSOs) with the execution of their assigned duties. + Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegial manner always. + Maintain cooperative and respectful working relationships with Cyber Security staff, other divisions, and other customers. + Review Cyber Security threat information and assists with mitigating identified vulnerabilities. + Conduct Cyber Security policy compliance tasks including discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. + Perform Security Test and Evaluations of information systems in support of a security plan. + Review information system plans for classified and unclassified systems. + Complete certification and accreditation of information systems on classified and unclassified systems and networks, assists with the completion and mitigation of security testing and evaluations results. + Collaborate with cross-functional teams to design, deploy, and maintain security controls, including firewalls, intrusion detection/prevention systems, endpoint protection, encryption, and multi-factor authentication solutions. + Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, certification and accreditation requirements, and industry best practices. + Review purchase requests for technology items and provide input to senior level Cyber Security staff regarding the risk associated with purchases. + Review current Cyber Security threat information and assist the Threat Evaluation Team with mitigating vulnerabilities identified. + Assist with data calls, Federal Information Security Modernization Act (FISMA) reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. + Perform other duties assigned by Management. **Qualifications** + Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. + Strong knowledge of network security principles, protocols, and technologies (e.g., TCP/IP, DNS, VPN, SSL/TLS). + Strong understanding of National Institute of Standards and Technology (NIST) security standards. Ability to apply NIST-defined measures to harden information infrastructure. + Hands-on experience with security tools and technologies, such as SAML, OAUTH, SIEM, IDS/IPS, DLP, WAF, EDR, and vulnerability management systems. + Familiarity with cloud computing platforms (e.g., AWS, Azure, GCP) from a security perspective. + Excellent analytical, problem-solving, and communication skills with the ability to collaborate effectively with diverse teams and stakeholders. + Strong commitment to continuous learning, professional development, and staying current with evolving cyber threats and security technologies. + **Preferred Certifications** (please upload certifications when applying) **:** + Certified System Security Professional (CISSP) + GIAC Security Essentials (GSEC) + GIAC Information Security Professional Certification (GISP) + Certified Ethical Hacker (CEH) + Certified Information Security Manager (CISM) + CompTIA Security Practitioner (CASP+) + The primary work location will be at the Losee Road facility in North Las Vegas, Nevada. + Work schedule for this position will be 4/10's, Monday - Thursday (subject to change). + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2 (**************************************************************************************** , "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. **Department of Energy Q Clearance** (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4 (*************************************************************************************************************** , "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709 (************************************************************************************ , "Counterintelligence Evaluation Program." MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: **$95,139.20 - $142,708.80.** Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. Join the Slalom Cloud Team -a team of trailblazers ensuring we achieve our strategic goals through innovation and investment in the future. You'll collaborate with local market teams, niche experts, and global partners to drive cloud solution sales and empower clients on their cloud transformation journey. As a key member of Slalom's Google Cloud Center of Excellence, you'll leverage our award-winning partnerships and multidisciplinary teams to deliver business value and technical excellence for high-impact security and infrastructure solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired but not required, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. Slalom is committed to fair and equitable compensation practices. For this role, we are targeting the following levels and salary ranges: East Bay, San Francisco, Silicon Valley: * Senior Consultant: $131,000-$196,500 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Senior Consultant: $120,000-$180,000 All other locations: * Senior Consultant: $110,000-$165,000 In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process.

The Instagram Security Ecosystems team is seeking a product-focused security engineer interesting in enabling Instagram product teams to develop features with a focus on security and user safety. You will be relied upon to directly work with Instagram engineers, hardening both product features and our protective frameworks that make life harder for bad actors on the Instagram platform. **Required Skills:** Product Security Engineer, Instagram Responsibilities: 1. Threat Modeling and Security Architecture: Work directly with product managers and technical leads on threat models and security architecture for novel Instagram features or products 2. Security Reviews: Perform manual design and implementation reviews of web, mobile, and native code 3. Developer Guidance: Provide guidance and education to developers that help prevent the authoring of vulnerabilities 4. Automated Analysis and Secure Frameworks: Work with other security teams to improve Instagram's static and dynamic analysis and frameworks to scale coverage 5. Bug Bounty: Help provide technical guidance to our world class bug bounty program and independent security researchers 6. Industry Impact: Push the industry forward through conference talks and open source projects to contribute broadly to security for the world **Minimum Qualifications:** Minimum Qualifications: 7. B.S. or M.S. in Computer Science, Cybersecurity, or related field, or equivalent experience 8. 8+ years of experience finding vulnerabilities in interpreted languages (Python, PHP) 9. Extensive, proven experience in threat modeling and secure systems design 10. Experience with exploiting common security vulnerabilities **Preferred Qualifications:** Preferred Qualifications: 11. Product software engineering or product management experience 12. Experience in security consulting or other leadership-facing security advisory roles 13. Familiarity with cybersecurity investigations, abuse operations, and/or security incident response 14. Contributions to the security community (public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Zachary Piper Solutions is seeking a Journeyman Cloud Security Engineer to support the NNSA in safeguarding the nation's nuclear security infrastructure. This is a contract-to-hire opportunity based out of Las Vegas, Nevada for cleared senior professionals to lead proactive, AI-augmented defense of mission-critical hybrid cloud environments on multi-million-dollar federal contracts. As a Journeyman Cloud Security Engineer, you'll drive RMF compliance, automate NIST controls, and mentor teams within operations at the NNSA. Responsibilities for the Journeyman Cloud Security Engineer include: * Lead RMF package development in eMASS for Azure/AWS/GCP migrations and continuous ATO monitoring. * Automate STIG/SCAP compliance and policy-as-code enforcement using Python/Boto3, Terraform, and OPA. * Conduct proactive threat hunting with AI/ML tools (e.g., AWS Macie, Azure Sentinel) and zero-downtime vuln remediation. * Secure DevSecOps pipelines (GitHub Actions, SonarQube, CloudFormation) and harden VMware VCF per NIST 800-161. Required qualifications for the role include: * 5+ years in federal cloud cybersecurity or related high-assurance environments * Expert-level RMF implementation, NIST 800-53 controls, and FISMA audit leadership * Advanced scripting/automation (Python/Bash, Boto3, Terraform) and policy-as-code (OPA) * BA/BS degree (Computer Science, Cybersecurity, or equivalent) Clearance: Active DOE "Q" or Top Secret (TS) Clearance (must be current and transferable). * Skills: RMF/eMASS/POA&M mastery in cloud migrations AI/ML-driven threat hunting (Macie, Sentinel) Zero-downtime patching (SCCM/GPO, blue-green) DevSecOps shift-left (SonarQube, IaC) VMware VCF hardening (NIST 800-161 supply chain) Compensation for the Senior Cloud Security Engineer includes: * Target salary: $120,000 (full-time equivalent) * Full Standard Benefits: PTO, Paid Holidays, Medical, Dental, Vision, 401k plan, Sick leave as required by law This job opens for applications on 11/13/25. Applications for this job will be accepted for at least 30 days from the posting date. #LI-AD1 #LI-Onsite DOE Q clearance, Top Secret clearance, TS/SCI, active clearance, Nevada National Security Site, NNSS, NNSA, National Nuclear Security Administration, Las Vegas onsite, 5 days onsite, contract-to-hire, RMF, Risk Management Framework, eMASS, POA&M, NIST 800-53, AU-2, audit logging, Azure security, AWS security, GCP security, cloud migration, ATO, Authority to Operate, FISMA audit, NIST CSF, policy-as-code, OPA, Open Policy Agent, Terraform, CloudFormation, IaC, Infrastructure as Code, STIG, SCAP compliance, Tenable.io, vulnerability assessment, vulnerability management, prioritization, remediation scripting, Python automation, Bash scripting, Boto3, error handling, AI/ML threat hunting, AWS Macie, Azure Sentinel, anomaly detection, proactive security, zero-downtime patching, SCCM, GPO, blue-green deployment, DevSecOps, GitHub Actions, SonarQube, shift-left security, VMware VCF, VMware Cloud Foundation, hybrid cloud, NIST 800-161, supply chain risk, federal SOC, ESOC, Enterprise Security Operations Center, Deloitte partnership, SIEM architecture, cyber engineering, SOC analysts, incident response, mentorship, team leadership, cloud vuln assessment, continuous monitoring, compliance automation, federal cybersecurity, high-assurance environments, nuclear deterrence, stockpile stewardship, mission-critical systems, proactive AI threats, Q-cleared experience, cybersecurity leadership, cloud security engineer, senior cloud security, RMF implementation, FISMA compliance, security infrastructure, scripting proficiency, automation tools, security tools integration, network security, system security, federal security standards, multi-million-dollar contracts, Zachary Piper Solutions, Zen Prasertsin, Mike Ewell, Chief Growth Officer, PwC alumni, cyber ops expert, exclusive search, 24-hour feedback, technical interview panel, phone screen, resume review, offer turnaround, 120k salary, BA/BS degree, computer science degree, cybersecurity degree, onsite requirement, 24-hour notice, interview availability

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. + MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. + MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. **Responsiblities** NNSS is seeking an experienced cyber security analyst for an exciting Senior Classified Security Engineering Analyst (Senior Cyber Security Analyst) role. The Senior Classified Security Analyst plays a critical role in safeguarding company infrastructure from cyber threats and attacks. The position is responsible for designing, implementing, managing, and enhancing security measures to protect classified and unclassified data, networks, systems, and applications. **Key Responsibilities** + Assist the ISSM (Information Systems Security Manager) and ISSOs (Information System Security Officers) with the execution of their assigned duties. + Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegiate manner. + Maintain cooperative and respectful working relationships with Cyber Security staff, other divisions, and customers. + Conduct Cyber Security policy compliance tasks including: discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. + Perform Security Test and Evaluations of information systems in support of a security plan. + Review Information System Plans for classified and unclassified systems. + Complete certification and accreditation of information systems on classified and unclassified systems and networks, assist with the completion and mitigation of security testing and evaluation results. + Collaborate with cross-functional teams to design, deploy, and maintain security controls including firewalls, intrusion detection/prevention systems, endpoint protection, encryption, and multi-factor authentication solutions. + Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, certification and accreditation requirements, and industry best practices. + Review purchase requests for technology items and provide input to senior level Cyber Security staff regarding the risks associated with the purchases. + Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. **Qualifications** + Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. + Strong knowledge of network security principles, protocols, and technologies (e.g., TCP/IP, DNS, VPN, SSL/TLS). + Have a strong understanding of NIST security standards (National Institute of Standards and Technology), the ability to apply NIST-defined measures to harden information structure and review Cyber Security threat information and assist with mitigating identified vulnerabilities. + Hands-on experience with security tools and technologies, such as SAML, OAUTH, SIEM, IDS/IPS, DLP, WAF, EDR, and vulnerability management systems. + Familiarity with cloud computing platforms (e.g., AWS, Azure, GCP) from a security perspective. + Excellent analytical, problem-solving, and communication skills with the ability to collaborate effectively with diverse teams and stakeholders. + Strong commitment to continuous learning, professional development, and staying current with evolving cyber threats and security technologies. + Preferred Certifications (please upload current certificates when applying): + Certified System Security Professional (CISSP) + GIAC Security Essentials (GSEC) + GIAC Information Security Professional Certification (GISP) + Certified Ethical Hacker (CEH) + Certified Information Security Manager (CISM) + CompTIA Security Practitioner (CASP+) + The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. + Work schedule for this position will be 4/10's, Monday - Thursday (subject to change). + Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergencies; critical operational demands may occasionally require off-shift work. + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2 (**************************************************************************************** , "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. **Department of Energy Q Clearance** (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4 (*************************************************************************************************************** , "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709 (************************************************************************************ , "Counterintelligence Evaluation Program." MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $95,139.20 - $142,708.80. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. Strong knowledge of network security principles, protocols, and technologies (e.g., TCP/IP, DNS, VPN, SSL/TLS). Have a strong understanding of NIST security standards (National Institute of Standards and Technology), the ability to apply NIST-defined measures to harden information structure and review Cyber Security threat information and assist with mitigating identified vulnerabilities. Hands-on experience with security tools and technologies, such as SAML, OAUTH, SIEM, IDS/IPS, DLP, WAF, EDR, and vulnerability management systems. Familiarity with cloud computing platforms (e.g., AWS, Azure, GCP) from a security perspective. Excellent analytical, problem-solving, and communication skills with the ability to collaborate effectively with diverse teams and stakeholders. Strong commitment to continuous learning, professional development, and staying current with evolving cyber threats and security technologies. Preferred Certifications (please upload current certificates when applying): Certified System Security Professional (CISSP) GIAC Security Essentials (GSEC) GIAC Information Security Professional Certification (GISP) Certified Ethical Hacker (CEH) Certified Information Security Manager (CISM) CompTIA Security Practitioner (CASP+) The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. Work schedule for this position will be 4/10's, Monday - Thursday (subject to change). Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergencies; critical operational demands may occasionally require off-shift work. Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2, “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4, “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709, “Counterintelligence Evaluation Program.” MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $95,139.20 - $142,708.80. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity. NNSS is seeking an experienced cyber security analyst for an exciting Senior Classified Security Engineering Analyst (Senior Cyber Security Analyst) role. The Senior Classified Security Analyst plays a critical role in safeguarding company infrastructure from cyber threats and attacks. The position is responsible for designing, implementing, managing, and enhancing security measures to protect classified and unclassified data, networks, systems, and applications. Key Responsibilities Assist the ISSM (Information Systems Security Manager) and ISSOs (Information System Security Officers) with the execution of their assigned duties. Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegiate manner. Maintain cooperative and respectful working relationships with Cyber Security staff, other divisions, and customers. Conduct Cyber Security policy compliance tasks including: discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. Perform Security Test and Evaluations of information systems in support of a security plan. Review Information System Plans for classified and unclassified systems. Complete certification and accreditation of information systems on classified and unclassified systems and networks, assist with the completion and mitigation of security testing and evaluation results. Collaborate with cross-functional teams to design, deploy, and maintain security controls including firewalls, intrusion detection/prevention systems, endpoint protection, encryption, and multi-factor authentication solutions. Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, certification and accreditation requirements, and industry best practices. Review purchase requests for technology items and provide input to senior level Cyber Security staff regarding the risks associated with the purchases. Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors.