Information security analyst jobs in Spring, TX - 109 jobs

Virtual Cyber Security SDR, BDR, remote Company Overview: Our Client is a leading provider of cutting-edge cybersecurity solutions to protect businesses from evolving digital threats. They pride themselves on our innovative approach to safeguarding sensitive data, networks, and systems. Their team of experts provides comprehensive cybersecurity solutions that empower organizations to navigate the complex digital landscape with confidence. Position Summary: As a Virtual SDR, BDR at our Client, you will play a pivotal role in driving the success of our cybersecurity solutions across the United States. As one of the first 20 employees, you will play a vital role in shaping the direction of our company and driving growth. Their recent seed round raised an unbelievable $11M at a $36M valuation, and the founders' last venture resulted in a big exit with the sale of the company to Microsoft. They operate in the IT Security space and are 100% virtual. In this dynamic and customer-facing role, you will leverage your technical expertise and sales acumen to provide strategic guidance and support to our clients throughout the sales process. This position offers a unique blend of technical knowledge, sales skills, and the opportunity for nationwide travel. We Are Looking For: As a mid-level Business Development Rep. (BDR SDR) you'll be at the tip of the spear, responsible for researching and qualifying top of funnel leads while being the first to connect with our potential customers. You'll research and build contact lists, make outbound cold calls/emails to those who fit our Ideal Customer Profile (ICP) and will then partner with AEs to get customers onboarded. This position will spend roughly 80% of the time on the phone or email prospecting for new clients. This position is a great way for individuals to gain in-depth sales experience with a rapidly growing SaaS security company looking to win the category! What You'll Do: Generate high volume quality MQLs through various direct sales efforts such as calls, emails, events, webinars, and other channels generated by Marketing. Make daily outbound calls/emails to prospects who have demonstrated interest. Follow up on all calls and emails until meetings are booked or you've been able to move the prospect through the funnel. Record all activities and properly manage lead stage/flow in our Salesforce CRM. Achieve or exceed monthly quotas of meetings, demos, and qualified leads worked with AEs. Schedule product demos on AE's calendar. Discern buyer intent and partner with AEs to get the right customers onboarded. Work closely with Marketing, Product, and CS/CX to clearly communicate critical top-of-funnel feedback and suggestions that help optimize segmentation, content, & features. What You'll Need: Must have BDR/SDR experience in the SaaS or similar software space Great speaking self-awareness and ability to read prospect signals and adjust accordingly to move the prospect down the funnel. Must have a clear, easy-to-understand phone voice and a professional Zoom presence with the ability to engage and empathize over the phone. Hands-on experience with multiple sales prospecting techniques like cold calling, cold emailing, video conference selling, and social outreach is a must. Knowledge of sales & marketing constructs, the evergreen funnel, and playbooks are important. Must be a great listener with an ability to address objections graciously and frame the next steps clearly. Good writers and creative thinkers needed - Must be able to craft well-written (great grammar and spelling), compelling emails, and responses that lead prospects down the funnel. Verifiable track record of success and goal attainment in a frontline sales-oriented role Deep knowledge of software and social networks (especially LinkedIn, Facebook, and Twitter) is important. Track record of (over)achieving sales quotas. Must have a strong, self-motivated drive, passion, and desire to deliver results. Experience in a fast-growing startup environment is a big plus. What We Offer: Contract to Hire, Strong Salary plus comm after 90 days Full Benes PreIPO equity Be part of an exciting high-growth SaaS organization An impactful role with lots of growth potential A lot of freedom to apply your creative and strategic skills A work-hard, play-hard environment 100% virtual Virtual Cyber Security SDR, BDR, remote

Job Description We is seeking a talented Cyber Security Analyst. As a Cyber Security Analyst, you will play a key role in ensuring the security and integrity of our organization's data and systems. Requirements Responsibilities: Monitor, detect, and respond to cyber threats and security incidents, Conduct vulnerability assessments and penetration testing to identify potential weaknesses in our systems, Develop and implement security measures and best practices to protect against cyber attacks, Stay up-to-date with the latest cyber security trends and technologies, Collaborate with cross-functional teams to identify security risks and implement appropriate solutions, Provide training and guidance to employees on cyber security awareness and best practices. Requirements: Bachelor's degree in Computer Science, Information Security, or a related field, Proven experience in cyber security or a related role, Strong knowledge of security protocols and tools, Ability to analyze and interpret complex data and make informed decisions, Excellent problem-solving and communication skills, Relevant certifications (e.g. CISSP, CISM) are preferred but not required. Benefits About Us Zone IT Solutions is an Australia-based Recruitment Company. We specialise in Digital, ERP and larger IT Services. We offer flexible, efficient and collaborative solutions to any organisation that requires IT, experts. Our agile, agnostic and flexible solutions will help you source the IT Expertise you need. If you are looking for new opportunities, your profile at *******************************. Also, follow our LinkedIn page for new job opportunities and more. Zone IT Solutions is an equal-opportunity employer, and our recruitment process focuses on essential skills and abilities.

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications PLEASE NOTE: While technical experience is a plus, this is not a technical information security position. It is best filled by someone with information security management or information technology audit experience. This is a leadership position requiring strong communication and analytical skills. Additional Information Job Status: Contract Eligibility: H1B/EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

Senior Security Analyst FLSA Class: EXEMPT Responsible to: Lead Security Architect The Senior Security Analyst plays a critical role in protecting our company's systems, data, and assets by monitoring threats, analyzing incidents, and implementing security measures. This individual will serve as a subject matter expert, providing technical guidance and helping drive improvements in our security posture. In addition, this role will support GRC efforts. What You'll Do: * Threat Monitoring & Incident Response * Monitor security alerts and events across various platforms including EDR, DLP, SIEM, and other tools. * Lead investigations of potential security incidents and coordinate response actions per the Security Incident Response Plan. * Perform root cause analysis and recommend remediation measures. * Vulnerability & Risk Management * Conduct vulnerability assessments, penetration testing support, and threat hunting leveraging tools and industry threat intelligence. * Partner with IT and Engineering teams to remediate findings and strengthen security controls. * Maintain an up-to-date understanding of emerging threats and attack vectors. * Security Operations * Monitor daily alert activities, escalate issues, and provide guidance to key stakeholders. * Tune detection rules, playbooks, and response workflows to improve efficiency. * Develop and maintain security documentation, including incident response playbooks and procedures. * Governance & Compliance Support * Assist with internal and external assessments and audits, evidence gathering, and regulatory requirements (e.g., SOC 2, ISO 27001, etc.) * Ensure security controls align with policies, standards, and best practices. * Collaboration & Leadership * Work cross-functionally with IT, Engineering, Legal, and Compliance teams. * Mentor and coach junior security staff. * Contribute to strategic security initiatives and roadmap planning. Other Requirements: * Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience). * 8+ years of experience in security analysis, SOC operations, or incident response. * Strong knowledge of security tools (SIEM, EDR, IDS/IPS, DLP, etc.) * Experience with vulnerability management and risk assessment. * Familiarity with cloud security (AWS, Azure, or GCP). * Excellent problem-solving, analytical, and communication skills. Nice to have: * Professional certifications such as CISSP, CISM, GIAC, CEH, or Security+. * Hands-on scripting or automation skills (Python, PowerShell, etc.). * Experience with GRC tools and compliance frameworks. * Background in mentoring or leading junior analysts. VoltaGrid is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, creed, color, religion, alienage or national origin, ancestry, citizenship status, age, disability or handicap, sex, marital status, veteran status, sexual orientation, genetic information, arrest record, or any other characteristic protected by applicable federal, state or local laws. Our management team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities, and general treatment during employment. #LI-LM1 #LI-onsite

We are a global law firm with a powerful strategic focus and real momentum. Our industry-focused strategy is seeing us take on pioneering work in places that others have yet to reach. Our shared values define our culture and our workplace. You will find us to be unusually collegial, team-oriented, and ready to innovate. We work seamlessly across practices, offices and around the world. This elimination of boundaries has allowed us to evolve into a law firm that works as hard for its culture as it does for its clients. The Senior Information Security Analyst is one of several such Analyst roles in the firm. Each Analyst is responsible for assisting with the day to day operation of CISO office tasks. Analysts are also encouraged to participate in proactively identifying sources of vulnerability and threat. The role will be part of a worldwide team that is empowered to operate the activities within their assigned function. Daily activities will focus heavily on request, event and incident management and direction will be provided by the Information Security Manager. Norton Rose Fulbright is committed to the professional development of its staff. There will be significant development opportunities for the Senior Information Security Analyst role, both through on-the-job learning and targeted training. The CISO team also embrace a mentoring and meritocratic approach. The success of this role is dependent upon building a lasting alignment between information security provisions and business requirements. In particular, the role must consider: The special requirements of the Firm with regard to client confidentiality, as well as regulatory requirements such as data protection. Achieving a balance between protecting the firm and ensuring that users can work effectively; being pragmatic but cognizant of risk. Key Objectives: Ensure that the Firm has the requisite capability to investigate, prevent and remediate against security breaches, viruses and deviations from security procedures. Act as a technical expert in the security field with a solid understanding of Norton Rose Fulbright's Information Security infrastructure and act as its champion in relation to Information Security. Assist with Information Security monitoring and act as a technical point of escalation for any alerted issues. Manage the global Information Security incident / request queue. Assist with a program of educational, procedural and technical improvements aligned with the Information Security Management System. Assist with the management of technical controls defined within the Information Security Management System. Responsibilities include, but are not limited to: Act as a champion for Information Security best practice and policies. Act as an intermediate escalation point and technical mentor for other members of the analyst team. Operate and manage security incidents and requests to SLA guidelines. Review, action, and escalate, any unusual event behavior identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Work cooperatively with project teams to ensure that new project and changes adhere to Information Security policies and governance standards. Identify threats and vulnerabilities. Keep a technical industry awareness of security risks and exposures and proactively promote effective counter-measures. Configure appropriate security parameters in monitoring systems and act as a technical point of escalation for any alerted issues. Perform document reviews and privileged account reviews. Experience / Skills: Technical bachelor's degree or equivalent IT / Information Security experience (required). At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM). Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred). Experience of introducing Information Security improvement through effective deployment of technology and / or processes to move to a proactive footing in security management or demonstrating similar in current technical discipline. Ability to triage and remediate phishing and impersonation attacks in a timely and efficient manner as the risk dictates. Experience working with a service management tool. Familiarity with legal tech platforms (e.g., iManage, Relativity, NetDocuments) is a plus. Personal Attributes: Keen sense of responsibility, ability to set a professional example and desire to adhere to defined security practices. Strong technical security understanding. Self-motivated and able to work calmly and methodically under pressure. Excellent interpersonal skills, exceptional levels of personal integrity and the ability to communicate clearly at all levels through reports, presentations and forming effective matrixed relationships. Skilled in applying an agile approach to task management, ensuring responsiveness to dynamic risk landscapes. Cooperative, service-orientated, individual and established team worker, comfortable working in a geographically dispersed team. Good judgement when it comes to confidentiality and sensitivity of information of which they may become aware through the course of their duties. Adaptable and keen to learn new skills. The Team: The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The Information Security team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platform, and rely on other departments (IT service delivery, HR, Facilities) to operate all other security controls. The Information Security team is responsible for ensuring the overall effectiveness of the control framework and managing security incidents. The team work with unified principles and processes around the world while maintaining regional stakeholder relationships. They adhere to the international standard ISO 27001, and report to the Firm's CISO. Norton Rose Fulbright US LLP is committed to providing employees with a comprehensive and competitive benefits package that supports you, your health, and your family. Benefit packages include access to three medical plans, dental, vision, life, and disability insurance. Employees can also access pre-tax benefits such as health savings and flexible spending accounts. Norton Rose Fulbright helps provide financial security by allowing employees to participate in a 401(k) savings plan and profit-sharing plans if eligible. Full- time employees are eligible to access fertility benefits designed to support fertility and family-forming journeys. In addition to the Firm's health and welfare benefits above, we offer a competitive paid time off plan, which provides a minimum of 20 days off based on your role and tenure with the firm. The firm offers a generous paid parental leave benefit allowing parents to take a minimum of 14 weeks of paid leave to bond with your newborn, or adopted child(ren). Employees are also entitled to 11 Firm holidays. Norton Rose Fulbright US LLP is an Equal Opportunity Employer and complies with all applicable federal laws and their implementing regulations that require the collection and recording of certain data and information. The information we receive will not be used to make any decision regarding employment and will be kept separate from your application. Similarly, self-identification information is kept confidential and used only in accordance with applicable federal laws and regulations. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Norton Rose Fulbright is committed to providing reasonable accommodation as an Equal Opportunity Employer to applicants with disabilities. If you require assistance or accommodation to complete your application, please contact *****************************. Please provide your contact information and a description of your accessibility issue. We will make a determination on your request for reasonable accommodation on a case-by-case basis. E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce. Equal Employment Opportunity

The Cyber Security Specialist will serve as a technical authority within Empyrean's Information Security organization. This role is responsible for implementing, maintaining, and enhancing Empyrean's cybersecurity posture across infrastructure, applications, and cloud environments. This position requires deep technical expertise in threat detection, incident response, vulnerability management, and cloud security. The Cyber Security Specialist will work cross-functionally with IT, Engineering, and Compliance to safeguard Empyrean's systems and data, ensuring alignment with regulatory and client requirements. The Cyber Security Specialist acts as a trusted advisor and escalation point for complex security issues, contributing to the design of security architectures and the development of security standards that scale with Empyrean's growth. ESSENTIAL DUTIES AND RESPONSIBILITIES Lead advanced threat detection, vulnerability assessment, and incident response activities to protect Empyrean's systems, networks, and applications. Administer and optimize security tools such as SIEM, SentinelOne, NetSkope, Entra, EDR, IDS/IPS, firewalls, KnowBe4, Proofpoint, DLP tools, vulnerability scanners, and other security tools to ensure consistent and proactive monitoring. Conduct in-depth analysis of security events and alerts, identifying root causes and coordinating remediation with technical teams. Collaborate with infrastructure and application owners to embed secure-by-design principles into system architecture and broader control environment. Drive initiatives related to cloud security governance, ensuring proper configuration and monitoring of AWS environments. Develop and maintain security baselines, hardening standards, and operational procedures to ensure compliance with frameworks such as NIST CSF, SOC 2, ISO 27001, and HIPAA. Support the design and execution of penetration tests, exercises, and risk assessments. Serve as a key resource for Empyrean's incident response and disaster recovery programs, including forensic investigation and post-incident review. Provide technical guidance to team members within the Security Operations function. Partner with Compliance and IT leadership to ensure audit readiness and continuous improvement of Empyrean's control environment. Evaluate and implement emerging security technologies that enhance protection, detection, and response capabilities. Work with other members oof the team to determine suitable controls for exceptions and other initiatives that support business operations. Prepare and deliver reports to leadership highlighting Empyrean's security posture, metrics, and improvement initiatives. NON-ESSENTIAL DUTIES AND RESPONSIBILITIES Assist in developing and delivering employee cybersecurity awareness and training programs. Participate in internal and external audits and client security assessments as needed. Contribute to enterprise risk assessments and cross-departmental process improvement initiatives. Represent Information Security in cross-functional meetings and projects to ensure alignment between business objectives and security strategy. REQUIRED SKILLS AND ABILITIES Advanced understanding of cybersecurity principles, technologies, and threat landscapes. Expertise in network, endpoint, and cloud security technologies, including SIEM, IDS/IPS, EDR, firewalls, etc. Hands-on experience with vulnerability management, penetration testing, and forensic analysis tools. Knowledge of secure system design, architecture review, and cloud configuration best practices. Familiarity with frameworks and standards such as NIST CSF, ISO 27001, and SOC 2. Ability to interpret and apply compliance and regulatory requirements (e.g., HIPAA, SOC, ISO). Strong analytical and problem-solving skills with the ability to prioritize and manage multiple tasks effectively. Excellent communication and collaboration skills across technical and business teams. Proven ability to operate with discretion, sound judgment, and high attention to detail. Demonstrated initiative and ownership in developing and executing security improvements. KNOWLEDGE, EXPERIENCE, AND/OR EDUCATION REQUIREMENTS Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent work experience). 3-5+ years of progressively responsible experience in cybersecurity, information security engineering, or security operations roles. Background in incident response, vulnerability management, and security engineering. Experience with AWS and/or other cloud security tools and configurations. Familiarity with IAM systems (Okta, AD, AWS IAM), SIEM platforms (e.g., Splunk, Sentinel), and endpoint protection tools. Preferred certifications a plus: CISSP, CISM, CEH, or equivalent advanced cybersecurity certification(s). Familiarity with scripting or automation for security operations (Python, PowerShell, etc.) is a plus. OTHER REQUIREMENTS Ability to work on-site or in a hybrid capacity, as required by the role. Availability for after-hours support as needed for critical access or incident-related issues. Must be authorized to work in the United States without sponsorship. Disclaimer: This job description is not intended to be an exhaustive list of all duties, responsibilities, or qualifications associated with the job. Management reserves the right to modify or reassign job duties as business needs evolve. #LI-RZ1 #LI-Remote

We're seeking an experienced Director of Information Security to join our dynamic team and help drive our growth. In this role, your job will be to coordinate people and processes to instill a “security first” mindset for information management, systems development, acceptable use of these systems, staff awareness, and oversight of our vendors and partners. This security professional will lead the management of risk and compliance of intellectual property, including day-to-day network and cyber tool monitoring, oversight, and ongoing security testing. The individual performing this role will enforce policies and procedures that ensure compliance with state, federal, and industry standards and requirements, ensuring our customers' and company's data are protected. As the Director of Information Security, you will implement a security-readiness plan and provide guidance on how to quickly and effectively respond to any and all security incidents. In addition, this role will be instrumental in implementing controls and monitoring capabilities that provide visibility into the organization's security posture. At RxVantage we transform how medical practices engage with life sciences resources and expertise to improve patient care. Our platform intelligently connects healthcare providers with the precise life sciences experts that they need, when they need them. As a result, medical practices stay on the cutting edge of patient care without disrupting workflows. Trusted by more than tens of thousands of healthcare practitioners and all major life sciences companies, RxVantage has powered millions of educational exchanges between healthcare teams and life sciences companies. What you'll be doing: Creating and implementing a security roadmap based on current and ongoing assessments Ensuring policies are developed and maintained from both a business & technical perspective for the application, data, and security needs of the organization Working with Legal to ensure agreements are congruent with policies Overseeing the GRC (Governance Risk and Compliance) process Ensuring compliance with industry laws and regulations for data security and privacy to include CCPR, 21 CFR Part 11, SOC2, NIST SP800-53 Monitoring the Identity and Access Management Framework Benefits: Competitive Salary 100% Company-Paid Premiums for Employee's Medical Health (HDHP 4500), Vision, and Dental Plans + $4,400 company sponsored contribution into an HSA Short-term and Long-term Disability Life Insurance 401k Matching Work from Anywhere within the US Flexible PTO 100% Paid Parental Leave Post-Parental Leave Program - $5k stipend to assist with expenses, 4 week 100% paid “Ease-Back” return to work transition period Charitable donation matching Location: Our “Work from Anywhere” philosophy is aimed at making sure that we recruit a diverse range of thought leadership to ensure that our technology is better able to serve local health care providers. Our goal is to hire the country's top talent and allow them to create an environment within the U.S. where they can do their best work. About Our Organization: At RxVantage, we're a small company with a big mission: to connect healthcare providers with the right life science experts and resources they need, exactly when they need them, to improve patient care. We've built a software platform that's changing the way providers learn about the latest medical advancements and technologies. Every year, our platform powers over 1 million educational exchanges between medical practices and life science companies, making it easier for them to stay informed and provide better care. We have a proven product, a strong mission, and a passionate team. Now, we're looking for talented people to help us grow even more. If you're driven, eager to make an impact, and ready to be part of something meaningful, we want to hear from you! --- RxVantage is an equal opportunity employer and dedicated to ensuring that we represent the local communities where our health and wellbeing providers serve as pillars of support to our family, friends, and neighbors. Our representation within these communities allows us to embody a diverse set of backgrounds, experiences, abilities and perspectives; and provide an inclusive environment for our team to feel empowered to be their authentic selves, without fear of harassment or discrimination.

Experienced Technologists. Common Sense Approach. Indigo Beam was born of Bluware, Inc. Based in the heart of the Energy Corridor in Houston, TX, since 1986, we have experience solving the business problems of some of the most dynamic and demanding industries with a common sense approach and disciplined focus in using technology intelligently. Our consultants bring to bear a wealth of experience and deep expertise in the Power and Utilities, Oil and Gas, Public Sector and Healthcare industries. Our extensive reference list demonstrates our commitment to our many satisfied clients with whom we have built long-term relationships. Software Innovation to Solve Business Problems We partner with our clients to create innovative mobile, Geographic Information System (GIS) and Web applications they need for the long haul. The results are strategic, technology-driven solutions that are intuitive, scalable, and sustainable. Our custom applications are intentionally designed to work in complete harmony with third-party Enterprise Resource Planning (ERP), content management, and database solutions within client organizations. Job Description Linux Background Familiar with log review and Seim tools (AlertLogic preferred but not necessary). Familiar with a variety of tools that currently used such as: Tripwire Oracle Audit Vault Tenable Palo Alto firewalls Familiar with tools similar to what we may soon implement: Centrify or some other Privilege Identity Management System Imperva SecureSphere Must have superior documentation and written communication skills. Must be willing to work regular work hours (8 to 5) or so. Additional Information All your information will be kept confidential according to EEO guidelines.

Job Description Exciting Security / Soc Analyst III, 6 months contract opportunity in Houston, TX. Requirements 5 plus years experience in the security domain, Incident Response, threat monitoring, and handling incidents (incident triage and response) Determine detection requirements for data sources being on-boarded to the SIEM, and assessing the value of in place SIEM detection cases, in order to determine gaps and overlap in the overall detection scheme. Perform security monitoring and incident response of cyber security events for proper determination of being considered a cybersecurity event. Triage offenses for false positives Hands-on experience defining detection or protection schemes based on industry standards and frameworks. SIEM, Endpoint Detection and Response, Firewall/IPS/IDS, Proxy, Data Loss Prevention, Authentication Experience leveraging data from security technologies and referential data sources to define security detection requirements, including detections which correlate data across multiple data sources. Ability to interpret code in the support of detection case development.

Exciting Security / Soc Analyst III, 6 months contract opportunity in Houston, TX. Requirements 5 plus years experience in the security domain, Incident Response, threat monitoring, and handling incidents (incident triage and response) Determine detection requirements for data sources being on-boarded to the SIEM, and assessing the value of in place SIEM detection cases, in order to determine gaps and overlap in the overall detection scheme. Perform security monitoring and incident response of cyber security events for proper determination of being considered a cybersecurity event. Triage offenses for false positives Hands-on experience defining detection or protection schemes based on industry standards and frameworks. SIEM, Endpoint Detection and Response, Firewall/IPS/IDS, Proxy, Data Loss Prevention, Authentication Experience leveraging data from security technologies and referential data sources to define security detection requirements, including detections which correlate data across multiple data sources. Ability to interpret code in the support of detection case development.

Work authorisation Needed : US Citizens and Greencard Contract duration (in months)* 6+ Months Implementation Partner: Infosys Provide highly available network based security services to match business needs. In-depth operational experience providing authentication, authorization, and accounting (AAA) services and automated mac authentication bypass functionality are the key components for this role. The candidate will utilize strong communication skills as well as enterprise level understanding of network and security technologies to deliver solutions that are both technically sound and supportable. Responsibilities - Provide Level 2 support consistent with Network data and voice support models - Provide network based authentication, authorization, and accounting services - Implement and support an 802.1x capable network infrastructure - Understanding of PKI / certificate based authentication - Allow Mac Authentication Bypass (MAB) functionality through the use of the Great Bay Beacon appliance - Generation of custom rule sets for accurate profiling and network placement of client systems - Enterprise level experience designing, implementing, and operating the Cisco ACS 5.x platform - Experience with Cisco Firewall, VPN, and IPS/ IDS systems - Recommendations of system changes in support of operational needs and system efficiencies - Generation of technology documentation and diagramming with tools such as MS Word and Visio - Ensure network access control systems meet compliance and auditing requirements - Plan network changes - Resolve network problems - Participate in review meetings as required to support network implementation activities - Provide recovery and restoration of the network in event of a disaster or major incident Security and Controls - Comply and contribute to completing Security and Controls process regarding Network data and voice technologies Technologies: TACACS / Radius, AAA, Firewalls, VPN, Intrusion Prevention Systems, MAC Authentication Bypass, PKI, Dynamic routing, L2 / L3 Switching Equipment: Cisco Access Control Server 5.x, Great Bay Beacon, Cisco ASA Firewall, Cisco IPS Module, NNM, BMC suits, Loglogic, Netscout, RSA EnVision / Splunk Syslog servers, Orion monitoring tools Additional Information All your information will be kept confidential according to EEO guidelines.

Houston, TX 6+ Months Primary : Mandatory to have good hands-on experience in one or more skills on the below products & technologies Firewalls (Checkpoint, Palo Alto), McAfee SIEM 9.6, McAfee Web Gateway, McAfee Web Reporter, McAfee Email Gateway RSA Token, Proof Point, CyberArc, IDS/IPS, Tufin, Cyber Security. Good to Have Skills: Madient, Assessment, Forescout, Incident Management ITIL: Incident Management, Change management Certifications for Manager: CISSP for SOC Manager/Lead, Security+, CEH Certifications for Analyst: Security+, CEH Please provide: 1. Certificate numbers and Expiry Date Additional Information All your information will be kept confidential according to EEO guidelines.

A large midstream client is seeking a Technical Security Analyst to support the Health, Safety, Environment, and Security (HSES) organization. This role focuses on Security Project Management, ensuring effective protection of their personnel, facilities, and critical assets. The ideal candidate will manage security installation projects, coordinate technical requirements, and support the operation and maintenance of the customers security systems. Rate: $35-$40 an hour We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements Bachelor's degree in a related field (Security Technology, Information Systems, Engineering, Criminal Justice, etc.) or equivalent practical experience. 3+ years of experience working with physical security systems, technical security operations, or security project management. Working knowledge of CCTV, access control, and security system technologies. Experience with video management and access control platforms (e.g., Lenel, Genetec, Avigilon, or similar). Ability to interpret technical drawings, schematics, and system design documents. Skill in configuring, programming, and maintaining security system software. Active Lenel and Genetec certifications

Insperity provides the most comprehensive suite of scalable HR solutions available in the marketplace with an optimal blend of premium HR service and technology. With more than 90 locations throughout the U.S., Insperity is currently making a difference for thousands of businesses and communities nationwide. Behind our success is the unshakeable belief in the value of our people. We value diversity, inclusivity and a sense of belonging. We celebrate work and life events, and we partner with our clients and communities to make great things happen. We have received recognition numerous times as a top place to work, most recently ranking on Glassdoor's "Best Places to Work in the U.S. 2024" list, and U.S. News & World Report's "Best Companies to Work for 2024" list. In addition, we have been recognized for having one of the country's Top 50 Midsize Early Talent Programs by RippleMatch's 2024 Campus Forward Awards. There is no better time to be a part of Insperity, and our best work is yet to come. Learn more at Insperity.com. Why Insperity? Flexibility: Over 80% of Insperity's jobs have flexibility. We want your time to have balance, whether it's spent with coworkers, clients, family or your community. Career Growth: Insperity provides many ways to grow with the company. We offer continuous learning programs, mentorship opportunities and ongoing training. Well-Being: Our total rewards package includes generous paid time off, top-tier medical, dental and vision benefits, health & wellness support, paid volunteer hours and much more. We take care of our people so that you can do your best work. This position is responsible for supporting the effectiveness of the IT organization's control systems. This role involves participation in the development policies and procedures, implementation, and monitoring compliance. The role will work closely with various departments to mitigate risks, improve efficiency, and ensure adherence to laws and regulations around Sarbanes-Oxley and Service Organizations. Responsibilities: * Assists with ongoing evaluations of the control environment for appropriate design by working with operational functions and auditors. * Applies knowledge of ITGCs to assist with control risk assessments and works with management to evolve the control environment in response to those risks. * Assists management in performing risk assessment procedures for both control and IT processes. * Assists in implementing the design of control functions for new applications. * Stays abreast of regulatory developments impacting the Company, especially in relation to SEC requirements across IT and assists with providing training to management accordingly. * Reviews the documentation of control owners across the IT organization and provides feedback to control owners on strengths and weaknesses. * Assists the IT organization in developing management review plans, designs controls, and provides timely communication to management on status and results. * Partners with the internal audit function and external auditors to help facilitate successful control testing outcomes and risk assessments. Qualifications: * Bachelor's Degree in Information Technology or Accounting is required. * Three to five years' experience in IT audit, security, or a related role is required. * Knowledge of internal control concepts, especially related to Sarbanes-Oxley Act and Service Organizations is required. * Knowledge of and ability to apply internal controls and best practices. * Detailed understanding of IT terminology, common practices and managed processes, including technology architecture, network security, system provisioning, configuration management, performance monitoring, incident management, change management, user access management, disaster recovery, etc. * Knowledge of and skill in applying technology control and risk assessment related frameworks (i.e. COSO). * Knowledge of industry program policies, procedures, regulations, and laws. * Experience in performing control risk assessments. * Skilled in planning and project management to meet multiple deadlines while working on multiple activities. * Skilled in collecting and analyzing complex data, evaluating information and systems and drawing logical conclusions. * Skilled in effective verbal and written communications, including active listening skills and effectively presenting recommendations. * Skilled in negotiating issues and resolving problems. * Ability to establish and maintain professional working relationships with co-workers, contractors, and other external contacts to work effectively in a professional team environment. LICENSES / CERTIFICATIONS Certification as a CIA, CPA, CISA, or CRISC is preferred. At Insperity, we celebrate the diversity of our employees and our leadership. Insperity is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications PLEASE NOTE: While technical experience is a plus, this is not a technical information security position. It is best filled by someone with information security management or information technology audit experience. This is a leadership position requiring strong communication and analytical skills. Additional Information Job Status: Contract Eligibility: H1B/EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

Experienced Technologists. Common Sense Approach. Indigo Beam was born of Bluware, Inc. Based in the heart of the Energy Corridor in Houston, TX, since 1986, we have experience solving the business problems of some of the most dynamic and demanding industries with a common sense approach and disciplined focus in using technology intelligently. Our consultants bring to bear a wealth of experience and deep expertise in the Power and Utilities, Oil and Gas, Public Sector and Healthcare industries. Our extensive reference list demonstrates our commitment to our many satisfied clients with whom we have built long-term relationships. Software Innovation to Solve Business Problems We partner with our clients to create innovative mobile, Geographic Information System (GIS) and Web applications they need for the long haul. The results are strategic, technology-driven solutions that are intuitive, scalable, and sustainable. Our custom applications are intentionally designed to work in complete harmony with third-party Enterprise Resource Planning (ERP), content management, and database solutions within client organizations. Job Description SUMMARY The Security Analyst detects, manages and reduces the impact of cybersecurity threats to the organization. They are responsible for proactively managing the security of the network and identifying weaknesses of company infrastructure (software, hardware and networks). ESSENTIAL/ NON-ESSENTIAL JOB FUNCTIONS Investigate security alerts / notifications from SPLUNK Work with the process automation team on cybersecurity initiatives Perform risk assessments and maintain the risk register Utilize Mimecast and ForcePoint for web and email monitoring Review IT small project charters for security risks Assist in the completion of vendor SSAE16's Work with the infrastructure team on mitigating penetration testing findings Plan, implement and upgrade security technical measures and controls Establish plans and protocols to protect data and information systems against unauthorized access, modification and/or destruction Perform vulnerability testing and security assessments Conduct internal security audits / compliance testing Recommend and install appropriate technical tools and countermeasures Define, implement and maintain corporate security policies Provide input into security awareness communications Utilize in-house tools to manage DLP EDUCATION AND EXPERIENCE REQUIREMENTS Required Education and Experience: Bachelor's degree in Computer Science or the equivalent (e.g. Math, Electrical Engineering, Cyber Security, etc.) 5+ years of experience IDS/IPS, penetration and vulnerability testing TCP/IP, computer networking, routing and switching Windows, UNIX and Linux operating systems Network protocols and packet analysis tools Preferred Education and Experience: Degree preferred Data Loss Prevention (DLP) tools, anti-virus / anti-malware tools Firewall and intrusion detection/prevention protocols C, C++, C#, Java or PHP programming languages Security Information and Event Management (SIEM) CERTIFICATIONS CISSP, CCE, CEH, GCFE, GCFA, GCIH, GCIA, CCFE, CPT, CREA, CompTIA A+ would be desirable certifications though other comparable certifications and experience would be considered SUPERVISORY RESPONSIBILITIES Supervises others: No BUDGETARY RESPONSIBILITIES No, but all team members provide input into the annual planning process and tool evaluation/selections TRAVEL REQUIREMENTS No COMPETENCIES · Self-starter who is able to work independently while supporting the needs of the team · Excellent oral and written communication skills · Strong decision making skills · Comfortable interacting with all levels of management Additional Information All your information will be kept confidential according to EEO guidelines.

Work authorisation Needed : US Citizens and Greencard Contract duration (in months)* 6+ Months Implementation Partner: Infosys Provide highly available network based security services to match business needs. In-depth operational experience providing authentication, authorization, and accounting (AAA) services and automated mac authentication bypass functionality are the key components for this role. The candidate will utilize strong communication skills as well as enterprise level understanding of network and security technologies to deliver solutions that are both technically sound and supportable. Responsibilities - Provide Level 2 support consistent with Network data and voice support models - Provide network based authentication, authorization, and accounting services - Implement and support an 802.1x capable network infrastructure - Understanding of PKI / certificate based authentication - Allow Mac Authentication Bypass (MAB) functionality through the use of the Great Bay Beacon appliance - Generation of custom rule sets for accurate profiling and network placement of client systems - Enterprise level experience designing, implementing, and operating the Cisco ACS 5.x platform - Experience with Cisco Firewall, VPN, and IPS/ IDS systems - Recommendations of system changes in support of operational needs and system efficiencies - Generation of technology documentation and diagramming with tools such as MS Word and Visio - Ensure network access control systems meet compliance and auditing requirements - Plan network changes - Resolve network problems - Participate in review meetings as required to support network implementation activities - Provide recovery and restoration of the network in event of a disaster or major incident Security and Controls - Comply and contribute to completing Security and Controls process regarding Network data and voice technologies Technologies: TACACS / Radius, AAA, Firewalls, VPN, Intrusion Prevention Systems, MAC Authentication Bypass, PKI, Dynamic routing, L2 / L3 Switching Equipment: Cisco Access Control Server 5.x, Great Bay Beacon, Cisco ASA Firewall, Cisco IPS Module, NNM, BMC suits, Loglogic, Netscout, RSA EnVision / Splunk Syslog servers, Orion monitoring tools Additional Information All your information will be kept confidential according to EEO guidelines.

Houston, TX 6+ Months Primary : Mandatory to have good hands-on experience in one or more skills on the below products & technologies Firewalls (Checkpoint, Palo Alto), McAfee SIEM 9.6, McAfee Web Gateway, McAfee Web Reporter, McAfee Email Gateway RSA Token, Proof Point, CyberArc, IDS/IPS, Tufin, Cyber Security. Good to Have Skills: Madient, Assessment, Forescout, Incident Management ITIL: Incident Management, Change management Certifications for Manager: CISSP for SOC Manager/Lead, Security+, CEH Certifications for Analyst: Security+, CEH Please provide: 1. Certificate numbers and Expiry Date Additional Information All your information will be kept confidential according to EEO guidelines.