Information Security Senior Analyst
Information Security Analyst Job In Malvern, PA
Why Endo?
We want the best and brightest people at Endo to help us achieve our mission to develop and deliver life-enhancing products through focused execution. Our nearly 3,000 global team members understand the important role we play in delivering healthcare and are dedicated to supporting each other as we work to bring the best treatments forward. Our shared values of Integrity & Quality, Innovation, Drive, Collaboration and Empathy guide our team and enable us to deliver upon our vision of helping everyone we serve live their best life.
At Endo, we are building a diverse, equitable and inclusive workplace, and we are looking for talented individuals to join our team.
The Sr IT Security Analyst participates in the design, implementation, and maintenance of controls and IT Security practices/procedures to protect company assets. Advises senior management by identifying critical security issues; recommending risk-reduction solutions; escalates as appropriate more complex and high priority/risk incidents to management.
Recommends enhancements to information technology strategies, policies, and procedures by evaluating organization outcomes; identifying problems, evaluating trends, and anticipating requirements.
Review, recommend, and lead projects to implement new policies, best practices and technologies.
Perform threat & vulnerability assessment and mitigation
Review, investigate, and remediate IT Security alerts and events.
Audit computer systems, network infrastructure and application security in accordance with best practices, applicable laws, regulations and IT security policy.
Implement solutions observing compliance with Sarbanes Oxley, privacy laws and IT Security process and procedures.
Support organizational and departmental security planning and implementation.
Support and enhance the patch management process.
Develop execution plans to support the security strategies.
Create and review security reports and automated alerts.
Additional
Additional Job Description
Bachelor's Degree in Computer Science, IT, or related field.
7+ years of relevant IT experience (systems, network) with at least 3 years of IT security operational experience.
Strong background in security management and operations.
Proficiency in a body of information required for the job
e.g. knowledge of FDA regulations, GMP/GLP/GCP, Lean Manufacturing, Six-Sigma, etc.
Strong security knowledge (with the ability to design security architectures).
Experience with Microsoft Azure and Active Directory.
Experience with network architecture and security.
Knowledge of security tools, techniques, analysis and concepts.
Knowledge of SIEM products and query languages.
Experience with scripting in PowerShell and python.
Knowledge and proficiency in the following areas:
Cyber Security
Desktop/Network operating systems
Network protocols
Management systems
Security scanners
Network analysis tools
Network applications
Messaging systems
Endpoint Security
Skills and Abilities
Ability to diagnose, troubleshoot and recommend solutions.
Ability to determine the root cause of security events; strong research capability.
Audit and assessment capability.
Understanding and knowledge of industry best practice methodologies.
Develop security awareness based on lessons learned.
Commitment to Diversity, Equity, and Inclusion:
At Endo, our diversity unites and empowers us as One Team, and we are committed to cultivating, and valuing, each person's unique perspective. We actively promote a culture of inclusion that draws strength from our broad spectrums of diversity, including race, ethnicity, religion, gender identity or expression, national origin, color, sexual orientation, disability status, age, and all our other unique characteristics, qualifications, demonstrated skills, achievements, and contributions, backgrounds, experiences, cultures, styles, and talents.
EEO Statement:
At Endo we firmly believe in the principles of equal employment opportunity and strive to create an atmosphere where all employees, regardless of their race, color, creed, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability (including pregnancy), age, or military or veteran status, feel valued, respected, and empowered. Our commitment to EEO extends to every aspect of employment, including recruitment, hiring, training, promotions, compensation, benefits, transfers, terminations, and all other employment practices. We are dedicated to ensuring that all employment decisions are based on qualifications, skills, and merit.
Senior Cyber Security Architect and Engineer
Information Security Analyst Job In Conshohocken, PA
At Quaker Houghton, we are experts in the development, production and application of chemical specialties, process fluids, lubricants, and coatings for the manufacturing industry. We have been an integral part in the growth of the world's largest industrial companies and to this day our experience and expertise show in the actions and dedication of our Associates worldwide. Today, we have a global presence, with our corporate headquarters located in Conshohocken, PA. Quaker Houghton is a global publicly traded company with a unique collaborative culture that supports career growth for its associates and offers competitive compensation and benefit programs.
Summary of Position
As a hands-on Senior Cyber Architect and Engineer, this role will design and support cyber security and technology for both internal and customer facing systems and applications (on-premises, SaaS based, web, and mobile applications), leveraging expertise in a wide range of IT security solutions. The Cyber Security Architect and Engineer works to create and maintain a secure operating environment for users and business partners by securing systems while meeting business objectives and ensuring infrastructure is hardened against attacks and providing security solutions to protect highly sensitive data.
Responsible for Cyber Security architecture and engineering leading design of systems, functions, and services that account for security best practices, reducing the risk of security breaches through the design and implementation process. The Cybersecurity Architect and Engineer will apply consistent security principles based on industry standards, monitor threats and vulnerabilities, and design/implement security into the infrastructure. Key to success in this role is prioritizing usability while not compromising security and anticipating longer-term technology needs to keep systems and applications current. The Cyber Security Architect and Engineer will promote continuous improvement and efficiency by applying best practices. Additionally, this individual will help develop internal skills and technology talent, ensuring alignment with organizational goals.
This role offers a unique opportunity to shape and secure the future of QH technology offerings, driving innovation and meaningful impact. If you're passionate about fostering collaboration and driving digital innovation, join us on this exciting journey.
Accountabilities
Cyber Architecture and Engineering
Design, develop and implement Identity & Access Management (IAM), Data Security, Application Security solutions for cyber security enterprise wide.
Ensure system security standards are established and maintained.
Modernize existing infrastructures by apply current cyber security standards both on premise and in the cloud
Proactively propose security improvements by keeping up to date on evolving security threats and trends
Provide input on organizational policies, standards and best practices to ensure alignment to cybersecurity frameworks
Solution Design & Delivery
Lead and orchestrate the design, development and delivery of best-in-class technology solutions for Cyber Security.
Develop recommendations for security strategy plans and roadmaps based on standard cyber architecture practices.
Translate business requirements into appropriate architecture that balances speed to market, flexibility, integrity and cost.
Create, review and approve technical specifications and other documentation as required for projects or operations.
Serve as a resident expert in cyber security technologies and perform design reviews to ensure technical and functional acceptance.
Collaboration
Partner with other DIT teams to ensure solution compatibility with strategy, standards and service model.
Establish effective working relationships with vendors, service provider and global operational teams to achieve established goals.
Participate in application and infrastructure projects to provide security planning advice
Operations & Day to Day
Monitor, optimize, and tune existing cyber systems and tools.
Assist in cyber incident response activities as required.
Manage security and compliance aspects of the technology landscape and drive continuous improvement in operations.
Support the testing and validation of internal security controls.
Innovation
Serve as an advocate for emerging cyber technologies and industry trends to bring business value and improve technology health
Champion opportunities, recommendations and advice that support Quaker Houghton and DIT goals.
Work Environment
Sedentary category requiring exertion up to 10 lbs. of force occasionally and uses negligible amounts of force to move objects. Sedentary work involves sitting most of the time.
Occasional: Standing: Remaining on one's feet without moving.
Frequent: Sitting: Remaining in seated position
Frequent: Reaching below shoulders: Extending arms in any direction below shoulders.
Continuous: Communication: Expressing or exchanging written/verbal/electronic information.
Continuous: Vision: Clarity of near vision at 20 inches or less and far vision at 20 feet or more with depth perception, peripheral vision, color vision.
Education, Experience and Skills/Competencies
Key Education or Certification Required
At least bachelor's degree or equivalent in Computer Science or Information Systems preferred. Master's Degree in preferred
Required Minimum Number of Years of Relevant Experience
8+ years of progressive in Cyber Security and hands-on technology security experience.
8+ years' experience in Architecture, design, support, and implementation securing Cloud Native Mobile, Web, IoT connect products in a private / public cloud environment (Azure or AWS).
Proven experience of 8+ years in a senior hands-on role, with a strong background Data, Application, Endpoint, and Network Security.
Required Skills and Competencies
Proven experience leading cyber architecture reviews and/or technical implementation and operation of Applications, Databases, Operating Systems, IP Networks (WAN/LAN), Containers/Kubernetes with a broad knowledge of Microsoft cyber security technologies.
Subject Matter Expertise with Identity & Access Management (IAM), Data Security, Application Security architecture, design, development, and configuration. Hands-on experience implementing IAM technologies such as Active Directory, Lightweight Directory Access Protocol (LDAP), and Entra ID.
Ability to develop innovative solutions to complex processes in a fast-paced and dynamic environment
Enthusiasm for implementing technology and eager to stay ahead of new digital tools and trends.
Strong customer service and troubleshooting skills.
Strong interpersonal skills and ability to effectively communicate technical concepts to diverse audiences.
Ability to communicate, gain consensus, shape, challenge and influence effectively in group settings.
Functional expertise in cybersecurity frameworks including but not limited to: ISO27001, NIST CSF, CIS, OWASP.
Exposure to OT security and Industrial automation integration with PLC, remote service management gateways and OTA knowledge is added advantage.
What's in it for you:
Competitive pay programs with excellent career growth trajectory
Opportunities to see your efforts contribute toward the success of the business
Work for a global leader in the industrial process fluids industry
On-site Fitness Center and Cafeteria
Quaker Houghton is an equal opportunity employer committed to creating a diverse workforce. Quaker Houghton provides equal employment opportunity for all qualified candidates. Quaker Houghton does not discriminate against any candidate for employment based on race, color, religion, sex, gender, gender identity or expression, affectional or sexual orientation, pregnancy, age, creed, ancestry, national origin, citizenship, marital or domestic partnership or civil union status, veteran's status, physical/mental disability, genetic information, or any other category protected by U.S federal, state, and/or local employment law. Furthermore, Quaker Houghton is committed to providing reasonable accommodations to qualified candidates with physical and/or mental disabilities. Applicants with a disability who need assistance applying for a position may email ************************.
Info Security Analyst
Information Security Analyst Job In Mount Laurel, NJ
Job DescriptionJob Title: Info Security Analyst Contract Duration: 6+ Months (Extension possible) Pay range: $80 - 90/hr Work Type: Hybrid, onsite twice a week Are you a seasoned Information Security Analyst with a passion for protecting sensitive data and systems?We are seeking a highly skilled Information Security Analyst to join our team. This role will involve defining, developing, and implementing security programs, conducting risk assessments, and ensuring compliance with industry standards.
Key Responsibilities:
Security Program Development: Define, develop, and implement information security programs and policies.
Risk Assessment: Conduct risk assessments to identify and mitigate potential threats.
Compliance: Ensure compliance with industry standards and regulatory requirements.
Incident Response: Respond to security incidents and implement corrective actions.
Security Awareness: Promote security awareness and training programs.
Threat Intelligence: Monitor threat intelligence feeds and stay updated on emerging security threats.
Vendor Risk Management: Assess and manage third-party risks.
Cloud Security: Ensure the security of cloud-based applications and infrastructure.
Network Security: Protect network infrastructure from cyberattacks.
Data Loss Prevention (DLP): Implement DLP measures to prevent unauthorized data loss.
Identity and Access Management (IAM): Manage user identities and access privileges.
Qualifications:
5+ years of experience in information security.
Strong understanding of security frameworks and standards (e.g., NIST, ISO 27001).
Experience with security tools and technologies (e.g., SIEM, IDS/IPS, firewalls).
Knowledge of cloud security concepts and best practices.
Experience with data loss prevention and identity and access management.
Strong analytical and problem-solving skills.
Excellent communication and interpersonal skills.
Ability to work independently and as part of a team.
Preferred Qualifications:
Experience with Coupa and Archer.
Experience managing a small team.
Experience with third-party risk assessments.
Benefits:
Medical, Vision, and Dental Insurance Plans
401k Retirement Fund
About The Company:
Top 10 bank in Canada and North America offering comprehensive financial solutions. Providing retail, commercial, wealth management, and wholesale banking services, we help clients thrive in today's evolving market.
Keywords: Information Security Analyst, Cybersecurity, Information Security, Risk Management, Compliance, Security Controls, Threat Intelligence, Incident Response, Cloud Security, Network Security, DLP, IAM, Coupa, Archer
24-14697: #LI-GTT #gttjobs #LI-HybridCompany DescriptionGlobal Technical Talent is a subsidiary of Chenega Corporation (**************** with over 1.3 billion US$ in revenue and 5800 US employees. We provide Total Talent Solutions, Global staffing, SOW, RPO, Direct Sourcing, and Global Payroll with physical offices in US, Canada, and India. GTT Digital headquartered in Toronto specializes in providing high-tech digital and banking talent to some of the nation’s largest financial institutions. As a leader in the staffing industry for over 22 years, we have become one of the largest staffing firms in the New England region, working with Fortune 500 clients and cutting-edge, technology-driven recruiting infrastructure.
We are a Native American-owned, economically disadvantaged corporation that highly values diverse and inclusive workplaces. Our clients and partners are among the most successful and innovative organizations in the world. Our top clients are Fortune 500 banking, insurance, and financial services firms, some of the nation’s largest life sciences, biotech, utility, and retail companies, and prestigious educational institutions in the Ivy League tier.
There is always a new opportunity for success when you look through all of the open job opportunities on our website’s career page. Just click on this link: *************************
Awards
SIA’s Fastest Growing Staffing Firm: 2023 and 2015
SIA’s Best Staffing Firm to Work for: 2019 -2023
Inc 5000 Fastest Growing Private Company: 2023, 2022, 2016, 2015
Randstad Preferred Supplier: 2020 - 2023
TechServe Alliance Excellence Award. 2019
NH Business Magazines Fast 5 fastest growing companies
Ernst & Young Entrepreneur of the Year Finalist: 2015Company DescriptionGlobal Technical Talent is a subsidiary of Chenega Corporation (**************** with over 1.3 billion US$ in revenue and 5800 US employees. We provide Total Talent Solutions, Global staffing, SOW, RPO, Direct Sourcing, and Global Payroll with physical offices in US, Canada, and India. GTT Digital headquartered in Toronto specializes in providing high-tech digital and banking talent to some of the nation’s largest financial institutions. As a leader in the staffing industry for over 22 years, we have become one of the largest staffing firms in the New England region, working with Fortune 500 clients and cutting-edge, technology-driven recruiting infrastructure.\r \r We are a Native American-owned, economically disadvantaged corporation that highly values diverse and inclusive workplaces. Our clients and partners are among the most successful and innovative organizations in the world. Our top clients are Fortune 500 banking, insurance, and financial services firms, some of the nation’s largest life sciences, biotech, utility, and retail companies, and prestigious educational institutions in the Ivy League tier.\r \r There is always a new opportunity for success when you look through all of the open job opportunities on our website’s career page. Just click on this link: ************************* \r \r Awards\r \r SIA’s Fastest Growing Staffing Firm: 2023 and 2015\r SIA’s Best Staffing Firm to Work for: 2019 -2023\r Inc 5000 Fastest Growing Private Company: 2023, 2022, 2016, 2015\r Randstad Preferred Supplier: 2020 - 2023\r TechServe Alliance Excellence Award. 2019\r NH Business Magazines Fast 5 fastest growing companies\r Ernst & Young Entrepreneur of the Year Finalist: 2015
IT Procurement Sourcing Analyst (No C2C/No Sponsorship)
Information Security Analyst Job In Malvern, PA
Job Title: Sourcing Analyst
*No C2C/No Sponsorship*
Duration: 1 year contract (Possibility of extension/conversion to perm)
Pay: $55.00 per hour
Description
Partner with the aligned IT sub-division sourcing delivery lead to ensure the successful use of Vanguard's supplier partnerships
Support governance and oversight of the technology sourcing portfolio for the aligned IT sub division.
Perform contract administration activities for technology sourcing engagements for the aligned IT sub-division
Build and maintain effective relationships.
Develop and maintain proficient knowledge of the business line supported by the aligned IT sub-division.
Qualifications
Minimum of two years of related work experience.
Undergraduate degree or equivalent combination of training and experience.
Direct experience with IT Professional Services, Contract Management and procurement is strongly preferred.
Strong project management and time management skills, including prioritizing tasks, balancing workload between multiple projects, anticipating next steps, adapting to changing situations and project scope.
Excellent communication and interpersonal skills including written and verbal communications, willingness to assist in areas outside of direct assignments when necessary, and commitment to the completion of team objectives.
Security Engineer
Information Security Analyst Job In Philadelphia, PA
The American Board of Internal Medicine (ABIM) is currently seeking a Security Engineer to join our Information Strategy and Security Operations team. In this role, the Security Engineer will help deploy and operate an effective security program that aligns with business needs. The position is responsible for supporting operational innovation and providing security direction to the business to elevate the company's security program. To be successful the Security Engineer is also expected to possess high-level administrative and troubleshooting skills. The Security Engineer will be expected to monitor, analyze and act on all output from security systems and will be responsible for troubleshooting any reported IT Security issues, errors, or questions.
Reporting to the Chief Information Security Officer, the Security Engineer has the following primary responsibilities:
Evaluate the security of the infrastructure and identify areas for improvement
Suggest action plans that will increase the security posture of the organization without limiting or hindering required functionality
Troubleshoot issues/errors with IT security platforms
Perform scheduled security scans and remediation processes
Assist in developing policies about the IT Security environment
Assist in implementing system hardening procedures for all infrastructure equipment, endpoints, and servers
Perform internal and external vulnerability scans and other audits
Support security platforms such as SIEM, WAF, Emails Secure Gateway, security awareness training, Web Filtering, and others
Work closely with internal partners, including other IT departments, providing security guidance
The ideal candidate has at least a minimum of five years' IT Security experience or ten years of IT system administration and/or networking experience. They must have a working knowledge of security protocols, best practices, servers, software, networking equipment, and other infrastructure elements. An individual with solid knowledge and understanding of PC hardware, software, and standard desktop systems (primarily Microsoft), will thrive in this role. Knowledge of Active Directory (AD), Intrusion Detection, and Cloud Technology is a plus. Off-hours support and on-call are required for this position.
This is a hybrid role and requires the incumbent to be a commutable distance from our 510 Walnut Street offices in Philadelphia.
* * *
At the American Board of Internal Medicine (ABIM), our team of unique and talented professionals, and the inspiring work they do, are essential to meeting the needs and expectations of ABIM's diverse community of customers - our Diplomates.
ABIM is like no other workplace, and we are proud of it. We are committed to recognizing the importance of our people by investing in their lives through ongoing learning opportunities and exceptional total compensation & benefit offerings.
We look forward to learning more about your interest in joining our team. EOE
Lab IT Analyst
Information Security Analyst Job In Lansdale, PA
Join a Global Leader driving innovation for a healthier world!! Our client has been recognized by Forbes as one of "America's Best Employers" and they are known for their commitment to diversity, inclusion, and fostering an environment where everyone can thrive!
We are looking for a Lab IT Analyst that has technical computing experience and exposure to working in a lab environment with scientific instrumentation.
Key Details (PLEASE READ):
6-month contract to permanent opportunity (you will start as a full-time Consultant working 40 hours/week and after 6-months our client will convert you to an internal employee)
This role is 100% on-site in Lansdale, PA so candidates MUST be local within 40-mile radius
Hours are typically 8AM - 5PM
Please check compensation range before applying to ensure alignment as min/max rates are firm!
This role will be mostly in a lab environment, so candidates must be comfortable wearing PPE*
2 round interview process
(1st round virtual/video 2nd round in-person)
Responsibilities:
Implement, monitor, and provide technical support of customer laboratory IT environments, typically integrated with instrumentation
Implement customer specified benchtop computing design and processes
Administer and assures connectivity of customer's Windows based platform
Support of the operating system, desktop hardware and peripherals, instrument-controlled software, core desktop applications and imagining of computers
Manage On-boarding, retirement, and relocation of equipment
Implement Windows based security, including but not limited to: user / group permissions, file / folder permissions, group policies, local security policies, etc.
Analyze, identify, and implement enhancements, upgrades and/or solutions to improve the overall support of the desktop platform in a timely manner
Ensure adherence to client's corporate policies through periodic reporting and compliance programs
Act as the technical support contact for instrument vendor
Repair and troubleshoot instrument related computers and escalating issues to the client infrastructure teams
Provide technical support for new system validations and change management efforts
Create and maintain a physical inventory of lab equipment, PC's, software, and any other information specified by the client
Submit weekly Engineer reports to the team lead by COB on the last business day of the week
Act as client Liaison for software/hardware related inquiries
Participate in client team meetings
Provide support across all Enterprise practices as required
Demonstrate appropriate use of office equipment/software after training
Maintain training and compliance in areas of health and safety, security, environmental and operational aspects of daily activities in the working environment
Skills/Qualifications:
Bachelor's Degree with two plus years of technical experience OR Associates Degree with three plus years of technical experience OR High School Diploma or equivalent with five plus years of technical experience
Must Haves:
Excellent customer service skills complimented by an ability to listen to and interpret client requests.
Ability to troubleshoot complex technology issues.
Strong verbal and written communication skills.
Ability to identify, track and complete tasks for multiple projects under prescribed timeframes.
Technology Requirements:
Experience with technologies including Microsoft Office, networking, remote computing and backup systems.
Additional Requirements:
Experience with scientific instrumentation
Experience in Life Science environment
Experience in a validated environment
Experience working in GxP, ISO, and FDA compliant facilities
Working Environment:
Must be able to work in a laboratory, controlled environments requiring personal protective equipment (e.g., lab coat, safety glasses, etc.) in laboratory.
Job pace may be fast and job completion demands may be high.
Must be able to remain in a stationary position more than 25% of the time
The person needs to occasionally move between labs, corridors, adjoining rooms, and buildings onsite Frequently operate on instruments, objects, tools or controls, which will require regularly bending, squatting, stretching and reaching in order to perform in a service function.
Occasionally move or lift up to 25 pounds (potential for occasional lifting of up to 50 pounds).
Specific vision abilities required by this position include without limitation, the ability to observe details at close range distance vision, color vision, peripheral vision, depth perception, and ability to adjust focus in order to perform the essential service functions of this position.
Occasionally operates a computer and other office machinery, such as a calculator, copy machine, and computer printer.
Employee may be required to handle hazardous waste according to local, state, and federal regulations. Duties may include identifying, handling, generating, accumulating, storing and labeling hazardous waste.
Potential risk to lab-based hazards including but not limited to extreme temperature, biological materials, and hazardous chemicals.
May be required to complete Medical Clearance, Respiratory Protection Training, and Fit Testing to wear a respirator as protection against hazards present in the laboratory environment.
Cyber Security Engineer
Information Security Analyst Job In Wilmington, DE
Site surveys and inventories of the machines on the PCN (Process Control Networks) and OMN (Operations Management Networks)
Deploying the latest security tools on the compatible computers and clients
Working with the sites to ensure critical systems are protected and not shutdown.
Ensuring firewalls are working as intended and rules are up to date.
Reviewing the data on the back end to ensure corporate security can see whole network.
Work to develop content for the Cyber Champion's network and share learnings across all production / plant sites.
Principal Security Engineer
Information Security Analyst Job In Philadelphia, PA
Renowned for winning multiple industry accolades for innovation and design, this company also earns high praise for its impactful contributions to energy efficiency and sustainability!
Job Title: Principal Security Engineer
Location: Philadelphia, Pennsylvania
As an expert in evolving Cybersecurity trends, you will set and drive the strategic technical roadmap for the Enterprise Cybersecurity Team and aid in communicating the strategy to senior leadership. Additionally, you will stay on top of changing regulations.
Requirements
Over 10 years of cybersecurity experience.
Skilled in designing security controls aligned with industry frameworks.
Deep understanding of perimeter, endpoint, and cloud security controls.
Familiar with SoC2, ISO27001, GDPR, CMMC, etc.
Bachelor's or master's degree in relevant technical fields.
Security Engineer
Information Security Analyst Job In Philadelphia, PA
Immediate need for a talented Security Engineer. This is a 01+ Months Contract opportunity with long-term potential and is located in Philadelphia, PA / West Chester, PA (Hybrid). Please review the job description below and contact me ASAP if you are interested.
Job ID:24-50316
Pay Range: $45 - $48/hour. Employee benefits include, but are not limited to, health insurance (medical, dental, vision), 401(k) plan, and paid sick leave (depending on work location).
Key Requirements and Technology Experience:
Skills-Physical Security, Cloud, Windows Server.
Seasoned infrastructure Engg. working on physical security software
Minimum 3 years' experience
Experience with Cloud
Someone who has managed Windows servers and has depth of knowledge; end to end buildout of Windows servers
Linux is nice to have
Full cycle support of servers (imaging new servers, supporting existing infrastructure, responding to vulnerabilities)
Decom or redeploy equipment
Working with data center teams for racking or Unracking equipment
Cyber hardening or patching the servers; continuing ongoing maintenance role of a server admin to make sure OS is updated and proper scanning is done and being remediated, proper security protocols are being followed.
Our client is a leading IT Industry and we are currently interviewing to fill this and other similar contract positions. If you are interested in this position, please apply online for immediate consideration.
Pyramid Consulting, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.
By applying to our jobs you agree to receive calls, AI-generated calls, text messages, or emails from Pyramid Consulting, Inc. and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here.
Information System Security Engineer
Information Security Analyst Job In Philadelphia, PA
Data Intelligence, LLC (DI) is searching for a full time Information Systems Security Engineer III in Philadelphia, PA.
Responsibilities:
Provide full life cycle DoD Risk Management (RMF) support
Perform system scans of hardware/software builds using ACAS (or related tools)
Assist in the Assessment & Authorization (A&A) process, supporting development of documentation required to obtain a system ATO.
Develop Plans of Actions and Milestones (POA&Ms) to track vulnerabilities, correcting/mitigating discrepancies prior to release.
Use the eMASS Information Assurance Compliance Tool to assure that deployed systems are properly configured and patched.
Maintain the system's Accreditation Package through continuous monitoring.
Update and create documentation to support the baseline changes that occur throughout the system lifecycle in accordance with Department of Defense Instruction 8510.01, RMF for DoD IT procedure
Required Skills/Experience
Bachelor's degree in computer science, information technology, or an equivalent technical degree from an accredited college or university
Seven (7) years professional experience capturing and refining information security operational and security requirements
Seven (7) years experience with ensuring security requirements are properly addressed through purposeful architecting, design, development, and configuration
Seven (7) years experience implementing security controls
Seven (7) years experience with configuration changes
Seven (7) years experience with software/hardware updates/patches
Seven (7) years experience with vulnerability scanning
Seven (7) years experience with securing configurations
At least a Secret level security clearance that is current and active
Required Certification
At least one of the following: IAT-3: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP
Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays.
Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Cyber Security
Information Security Analyst Job In Philadelphia, PA
Job Description
Forhyre is seeking a talented individual that will be able to provide security architecture support and interface across the program as needed. This support includes, but is not limited to, cybersecurity solutions, providing technical strategy for solutions, guidance, policy, and implementations. The successful candidate for this position is a highly motivated individual, with a strong IT security background who excels integrating, operating, and deploying security technology and solutions and interacts well with both internal teams and clients.
Note: U.S. citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time.
Responsibilities:
Engineer, implement and monitor security measures for the protection of computer systems, networks and information
Develop and implement security policies and controls to support the Cyber Security framework
Manage the existing cyber security training program across global, multilingual business
Assists in ensuring global Information security program meets all industry regulations, standards, and compliance requirements
Drive adoption of infrastructure security best practices and work with Information Technology teams to ensure security standards are maintained
Implement technology to proactively scan Information Technology environment for security breaches and suspicious activity
Continuous improvement in the areas of Information Security technologies, techniques and processes
Develops and maintains an effective system for the distribution of regular key performance indicator reports and dashboard
Ability to interpret penetration test results and describe issues and fixes to non-security expert
Responsible for leading an accurate & comprehensive status reporting to the executive steering committee
Create and implement SOP/ process improvement initiatives to achieve outcomes that align or exceed the expectations of strategic roadmap
Skills & Experience
Bachelor’s degree and 12+ years of experience; additional years of directly applicable experience may be accepted in lieu of a degree.
Certified Information Systems Security Professional (CISSP)
8+ years hands-on experience designing or implementing security solutions, including all related documentation and artifacts
Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps
Extensive experience in design and development of enterprise security architectures. Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.
Strong knowledge and experience in secure enterprise architecture design, especially with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and resultant applications
Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes
Previous experience developing architectures, strategies, strategic plans, roadmaps, and technical standards for the federal IT enterprise environment.
Vulnerability Assessment testing and/or Penetration Testing (preferred)
Robotic Process Automation/Intelligent Automation (preferred)
Business case development supporting security technology solutions (preferred)
Additional certifications demonstrating cybersecurity/technical mastery (preferred)
Senior Security Engineer
Information Security Analyst Job In Philadelphia, PA
Job Description
ASI is the largest global provider of technology B2B services for the $26.1 billion promotional products industry (branding and marketing). With 25,000 clients in 53 countries, our mission is to inspire, inform, and empower our clients' success every step of the way.
ASI currently has a hybrid work model. All employees, who live within a one-hour commuting distance, are required to work onsite on Tuesdays & Wednesdays.
In this role, you will be responsible for designing and implementing security controls primarily for endpoint devices in a hybrid cloud environment. This position requires deep understanding of Active Directory security, Entra ID security, and endpoint security (Windows client/server and mobile).
As a part of a skilled team of infrastructure professionals, the Senior Security Engineer will report to the Chief Information Security Officer (CISO). This role involves close collaboration with members of the Infrastructure and Security teams, encompassing system's administration, networking, automation, and security. The role requires collaborative work with other technical teams, including Application Architecture and Development, Data Services, and internal Information Technology (IT).
The salary range for this role is $145,000 - $180,000.
Responsibilities:
Primary focus of endpoint security for end-user devices (primarily Windows 10/11) and Windows Server, but also iOS/Android mobile devices.
Monitoring and defending attacks using security technologies that include EDR, network forensics, and detection solutions.
Continuous implementation of security controls for operation systems and cloud services for attack surface reduction.
Review technical specifications for SIEM, logging and propose recommendations to improve the overall deployment of the solution.
Responsible for the proactive service/system monitoring of AD and Windows privileged and elevated access, including rotational, on-call support for a 24x7 operation for any security-related incidents.
Assist with meeting regulatory compliance and adhering to various security frameworks.
Qualifications:
8+ years total progressive IT experience with 5+ years of focus on Endpoint Security Management, including Intune MDM.
Excellent written and verbal communication skills with proven ability to communicate effectively with team, management, and key business partners.
Approachable demeanor and enjoys mentoring peers and sharing of knowledge.
Deep understanding of Active Directory / Entra ID and associated components, including LDAP, Kerberos / Kerberos fast armoring, Group Policy.
Expert-level Operating System security (Windows Server and Windows Client) for Windows platform - internals and hardening with an emphasis on endpoint security, including: EDR/XDR solutions, Application Control technologies, Windows Firewall hardening, Attack Service Reduction (ASR), Baseline security policies based on CIS benchmarks.
Expert-level Identify-driven security management platforms, including Microsoft Cloud App Security, Microsoft Defender for Identity, Privileged Identify management (PIM), Conditional Access/MFA/2FA, SSO, Federation, OAuth, Windows Hello for Business, passwordless technologies, Role-Based Access Control (RBAC).
Experience in cloud security platforms including Security Information Event Management (SIEM) and Security Orchestration Automated Response (SOAR), Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP)
Experience with Kusto Query Language (KQL) - the use of KQL will be a daily activity and proficiency is essential.
Experience with Azure IaaS/PaaS Security preferred.
Experience with Office 365 security preferred.
Experience PowerShell scripting preferred.
ASI offers a comprehensive benefits package including:
Medical, Dental, and Vision coverage, available on day one of employment.
Paid maternity and paternity/bonding leave (12 weeks paid for birthing/primary parent and 4 weeks paid for secondary parent) and a parent support group.
12 weeks of paid daycare for new parents (14 weeks at our onsite daycare center, Lots of Love).
Free Health and Wellness programs.
Free 24/7 access to Magellan Employee Assistance Program and Teladoc.
Day one 401(k) with company match.
Paid holidays, floating days, and paid time off (PTO).
Office amenities with onsite café, Starbucks, 24/7 free gym access and classes, onsite daycare, EV charging stations, creative spaces such as our community garden club, music room, art room, and relaxation space.
Take this opportunity to join our successful team! Apply today! EOE m/f/d/v. ASI is an equal opportunity employer, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Diversity makes us better. Check out ASI's Diversity and Inclusion Blog Posts.
Visit our company career web site at *******************
IT/OT Security Engineer
Information Security Analyst Job In Royersford, PA
Job Description
Valspec—a global provider of system validation and lifecycle services—provides commissioning and qualification of computerized systems for clients in the Life Sciences industry. Established in 1999, Valspec's mission is to provide a wide spectrum of services that help its clients meet their capital project and lifecycle maintenance goals.
Valspec's projects are critical to the industry, and to the people who rely on its products. Many projects ensure that life-changing drugs are available to those who need them; others streamline production to meet demand at a lower cost, allowing for the discovery of new and innovative therapies.
IT/OT Security Engineer
Department: Information Technology / Operational Technology (IT/OT)
Job Summary:
We are seeking a skilled IT/OT Security Engineer to join our team. The successful candidate will be responsible for interfacing with clients in the life sciences industry to design, implement, and manage security policies and solutions for operational technology (OT) environments. The primary focus will be on securing Emerson DeltaV systems used in manufacturing, cell and gene therapy, and vaccine production.
Key Responsibilities:
Client Engagement and Consultation:
Interface with clients in the life sciences sector to understand their security needs and challenges.
Conduct security assessments and risk analyses of OT environments.
Provide expert advice on best practices for securing Emerson DeltaV and other systems.
Security Policy and Design:
Develop and implement comprehensive IT/OT security policies tailored to life sciences manufacturing processes.
Design secure network architectures for OT environments, ensuring compliance with industry standards and regulations.
Collaborate with cross-functional teams to integrate security measures into existing and new OT systems.
Implementation and Management:
Implement security controls and technologies to protect OT environments from cyber threats.
Monitor and manage security incidents, performing root cause analysis and remediation.
Maintain up-to-date documentation of security policies, procedures, and system configurations.
Continuous Improvement:
Stay current with emerging security threats and trends in the life sciences and OT security fields.
Recommend and implement improvements to enhance the security posture of OT environments.
Conduct training and awareness programs for clients and internal teams on IT/OT security practices.
Qualifications:
Experience:
Minimum of 5 years of experience in IT/OT security, preferably in the life sciences sector.
Proven experience with Emerson DeltaV systems and their security requirements.
Strong understanding of OT security standards and regulations, such as NIST, ISA/IEC 62443, and GxP.
Skills:
Good communication and interpersonal skills, with the ability to interface with clients and internal teams.
Strong analytical and problem-solving abilities.
Proficient in network security, endpoint protection, and incident response.
Familiarity with cybersecurity tools and technologies relevant to OT environments.
Work Environment:
This position may require occasional travel to client sites.
Ability to work in a fast-paced, collaborative environment.
How to Apply: Interested candidates should submit their resume for consideration to IT/OT Security Engineer at Valspec.
Valspec offers a standout culture, fantastic work environment, and has very competitive benefits to include premium medical, 401K match, profit sharing, tuition reimbursement, and other unique incentives.
Candidates must be legally eligible to work in the United States without company sponsorship. Also, we are not interested in working on a corp-to-corp basis with other companies at this time.
Any third-party unsolicited resume submission(s) will immediately become the property of Valspec. Valspec will not pay any fee to a submitting employment agency, person, or entity unless a signed agreement is established.
Valspec is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, age, sexual orientation, gender identity, disability, protected veteran status or any other protected class. We are committed to providing a professional environment free of any discrimination or harassment, and we are proud to be a Drug-Free Workplace.
Holtec Security International - SecDevOps Engineer (Onsite)
Information Security Analyst Job In Camden, NJ
The SecDevOps Engineer plays a crucial role in integrating security practices within our DevOps processes to ensure the confidentiality, integrity, and availability of sensitive data and systems. This position will also ensure systems security; while driving innovation and business growth. Additionally, you will need expert communication skills for collaborating closely with cross-functional teams, stakeholders, and senior management to ensure projects are completed successfully, on time, and within scope.
Key Responsibilities of the SecDevOps Engineer Role:
Employing knowledge of advanced systems and database design to manage all aspects of data systems integration, including overall methodology, project scope, relational database design, multidimensional database design, online transaction processing (OLTP), and key performance indicator (KPI) scorecards
Supporting existing data warehouse program and the extract, transform, and load (ETL) processes
Assisting with reporting and analytical needs
Conducting high level review of data architecture to determine its sustainability for supporting the identified requirements
Implement and maintain secure CI/CD pipelines for police department applications
Conduct security assessments and penetration testing on internal systems
Develop and enforce security policies and procedures specific to law enforcement IT needs
Monitor systems for security threats and respond to incidents
Automate security processes and controls
Ensure compliance with criminal justice information systems (CJIS) requirements
Collaborate with development teams to integrate security best practices into the software development lifecycle
Manage access controls and authentication systems for personnel
Secure communication channels for inter-agency information sharing
Provide security training to department staff
Requirements:
Bachelor's degree in Computer Science, Cybersecurity, or related field
5+ years of experience in IT security, with at least 2 years in a DevOps role
Strong knowledge of security tools, techniques, and best practices
Experience developing and enhancing Database Warehouse (DW)/Business Intelligence (BI) capabilities;
Experience with creating ETL pipelines;
Experience with engaging in query tuning for optimal performance;
Experience with designing analytical dashboards using Tableau;
Experience with cloud security (AWS, Azure, or GCP)
Proficiency in scripting languages (e.g., SQL, Java)
Understanding of CJIS security policies and other relevant regulations
Experience with SIEM tools and security analytics
Excellent problem-solving and communication skills
Ability to obtain and maintain appropriate security clearances
Preferred Qualifications:
Relevant security certifications (CISSP, CEH, OSCP)
Experience working in law enforcement or government IT environments
Knowledge of digital forensics and incident response
This position plays a crucial role in safeguarding digital assets and ensuring the integrity of client operations. The ideal candidate will bring a strong security background in cybersecurity combined with DevOps expertise to help us stay ahead of evolving cyber threats.
Powered by JazzHR
U25e9N2j1F
Senior Security Engineer
Information Security Analyst Job In Bellmawr, NJ
Job Description
Job Title: Senior Security Engineer
Reports To: VP of IT - Infrastructure
Shift: Monday-Friday
The Senior Security Engineer –will manage and support on-going tickets related to security issues, as well as work on IT security projects related to IT transformation. In this role, the Senior Security Engineer will be a key contributor delivering solutions to internal employees and supporting operations, provide support for Microsoft Cloud environments, Microsoft O365 suite, Microsoft Azure Suite Solutions & AWS, and solve issues for our business partners across multiple heterogenous systems and environments.
Duties/Responsibilities:
• Manage security solutions including Microsoft Azure & AWS, Azure Active Directory, Azure, Office 365 Advanced Security Management, Microsoft End Point Management
• Implement and Administer Security solutions including Microsoft Azure compute & networking, Azure Active Directory, Azure Site Recovery / Azure Backup, Microsoft Intune as well as Windows Virtual Desktop on Azure
• Microsoft Multi-Factor Authentication and Federation services
• Deploy and configure authentication services such as Azure Active Directory Connect and Active Directory Federation Services
• Participate in discovery and design meetings
• Author and revise as-built documentation detailing configuration
• Support knowledge transfer as part of the delivery process
• Participate in the discover and identity of future potential services & opportunities
• Continue to stay current in all aspects of the IT solutions within area of expertise
• Maintain required vendor certifications and continue to grow technical skill set
• Other duties as assigned
Requirements:
• Minimum 5+ years hands-on experience within IT Security operations leveraging best practice technologies with a Bachelor’s degree, preferred; or equivalent combination of related education and experience.
• Security Certifications such as CISSP, CISM, GCIH; other security certifications are a plus.
• Experience working with the following technologies Crowdstrike, Cloudflare, Appriver, Microsoft End Point Manager, Multi-Factor authentication tools, and Intune are a plus.
• Experience with Fortinet Firewalls and best practices
• 5+ years’ experience in delivering Microsoft Modern Desktop technologies such as Microsoft Endpoint Manager admin Center, and Security for Mobile and Windows 10/11devices.
• 5+ years in deploying Microsoft technologies
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
STA is an Equal Employment Opportunity (EEO) employer and welcomes all qualified applicants; Returning military are strongly encouraged to apply. Applicants will receive fair and impartial consideration without regard to race, sex, color, national origin, age, disability, veteran status, genetic data, gender identity, sexual orientation, religion or other legally protected status, or any other classification protected by federal, state, or local law. Must be eligible to work in the US without restrictions.
Security Engineer - Ubuntu
Information Security Analyst Job In Philadelphia, PA
Job Description
This is an exciting opportunity to join an industry leading software security team, and help protect the open source community and Ubuntu users from emerging threats. Canonical is building a team to provide security coverage across a wide range of different ecosystems and environments, and work to make the world a better, safer place.
As part of the Ubuntu team, you will work with the best and brightest people in technology to monitor, triage, respond to and document new and existing vulnerabilities in open source software. The role will involve collaboration with internal teams and external partners, to identify and prioritize issues and track progress.
The role can also include a number of other activities, including security assessment and code review, internal tooling developments, community engagement, security hardening and feature development and industry collaboration participation.
This job involves international travel several times a year, usually for one week and requires the ability to be productive in a globally distributed team through self-discipline and self-motivation.
What you'll do
Analyze, fix, and test vulnerabilities in Ubuntu packages
Keep track of vulnerabilities in Ubuntu releases as they are discovered, researched and fixed (using internal software tools)
Collaborate with other teams in the Ubuntu community and with upstream developers where appropriate, to exchange or develop vulnerability patches and make sure that Ubuntu includes the very best security features
Audit source code for vulnerabilities
Who you are
You have a thorough understanding of the common categories of security vulnerabilities and techniques for fixing them
You are familiar with coordinated disclosure practices
You are familiar with open source development tools and methodologies
You are skilled in one or more of C, Python, go, Rust, Java, Ruby or PHP
You have excellent logic, problem-solving, troubleshooting, and decision-making skills
You can clearly and effectively communicate with the team and Ubuntu community members
We are proud to foster a workplace free from discrimination. Diversity of experience, perspectives, and background create a better work environment and better products. Whatever your identity we will give your application fair consideration.
#LI-Remote
Information System Security Engineer (ISSE)
Information Security Analyst Job In Philadelphia, PA
Job DescriptionDescription:
GENERAL SUMMARY: Seeking candidates with Risk Management Framework (RMF) Information Systems Security Engineer (ISSE) experience. Primary responsibility is to perform tasks related to Assessment & Authorization (A&A) and cybersecurity to obtain and maintain Authorizations to Operate for US Navy afloat and ashore systems.
PRINCIPAL DUTIES/RESPONSIBILITIES:
Lifecycle cybersecurity support of US Navy systems
Lead the RMF process for assigned programs, organizations, systems, or enclaves
Manage POA&M entries and ensuring vulnerabilities are properly tracked, mitigated, and resolved
Assemble the Security Authorization Package and submit for adjudication
Assess the quality of security control implementation against all requirements in accordance with the approved SLCM strategy
SKILLS AND ABILITIES:
Essential Skills:
Experience with Risk Management Framework (experience under DoD a plus)
Experience using the Enterprise Mission Assurance Support Service (eMASS)
Experience with Assured Compliance Assessment Solution (ACAS)
Demonstrated efficiency and experience in the following areas:
RMF package development and management, including POA&Ms (mitigation statements), Security Plans, Risk Assessments, architecture diagrams, and hardware/software inventories
NIST 800-53 control validation
Requirements:
EDUCATION AND EXPERIENCE REQUIREMENTS:
BS degree in Computer Science, Information Technology, Cyber Security, Systems Engineering, Mathematics, or a comparable field or equivalent years of experience.
3+ years’ experience in DoD Assessment and Authorization (A&A)
1+ years’ experience working with the Risk Management Framework (RMF)
SPECIAL REQUIREMENTS:
Successful applicants must either have an active government security clearance or the ability to receive approval upon position acceptance.
Must have a valid US passport or the ability to obtain one upon position acceptance.
DoD 8570-compliant (CompTIA Security+ CE)
CISSP preferred
Ability to obtain OS certification or complete approved related training within 180 days of hire
Prior Information Security Systems Engineer (ISSE) experience a plus.
EHS Technologies is an Equal Opportunity Employer. Employment decisions are made without regard to race (as well as because of or on the basis of traits historically associated with race, including hair texture, hair type, and protective hairstyles such as braids, locks, and twists), color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, pregnancy, childbirth, lactation and related medical conditions, genetic factors, military/veteran status, or other characteristics protected by law.
Comcast Cybersecurity: Sr. Security Engineer
Information Security Analyst Job In Philadelphia, PA
Comcast Business offers a suite of Connectivity, Communications, Networking, Cybersecurity, Wireless, and Managed Solutions to help global organizations of all sizes prepare for what's next. Powered by the nation's largest Gig-speed broadband network and backed by 24/7 customer support, Comcast Business is the nation's largest technology provider to small businesses and one of the leading service providers to the Enterprise market.
Comcast Business has been consistently recognized by industry analysts and associations as a leader and innovator, and one of the fastest growing providers of Ethernet services.
Job Summary We are seeking a dedicated and skilled Security Engineer 4 to join our Security Engineering team.
As a key member of our team, you will be instrumental in overseeing vulnerability scanning operations and threat monitoring triage across a significant part of our CGS asset base, utilizing tools like Qualys, Microsoft Sentinel, and CrowdStrike.
This role encompasses both technical acumen and collaborative skills, as you will be collaborating with a diverse team to ensure efficient and comprehensive vulnerability scanning and threat monitoring in a dynamic digital environment.
Job Description Passionate about endpoint security including endpoint protection, zero day threats, advanced persistent threats, data loss prevention, and compliance.
Execute daily vulnerability scanning operations including setting up scans, monitoring executions, and addressing scan-related issues.
Reviewing security events and prioritizing severity of threat attacks.
Work with cross-functional teams, including security, development, and IT ops, to integrate and enhance scanning operation and threat monitoring.
Assist in managing scanning performance metrics and reporting operational statuses.
Support upgrades and migrations of the security toolchain.
Help create and manage dashboards, reports, and metrics.
Troubleshoot network and firewall issues affecting security tool activities.
Configure security tools for effective authentication across various environments.
Develop and maintain troubleshooting guides for security tool challenges.
Engage in knowledge sharing and collaboration within the security team.
Requirements: 3 years of experience in dynamic vulnerability scanning and security monitoring in a medium to large-scale enterprise environment.
Knowledge of major SIEM products (e.
g.
Microsoft Sentinel, Splunk, etc.
) Knowledge of major OS and cloud platforms, as well as their logging formats Knowledge of networking - firewalls, proxies, IP addressing, routing Knowledge of the NIST Framework Familiarity with major endpoint and network security detection products (e.
g.
EDR, DLP, UTM) Familiarity with authentication mechanisms and troubleshooting authentication issues Experience with Microsoft Sentinel, CrowdStrike, iBoss and Qualys preferred Experience conducting security monitoring, triage, and incident response activities based upon review of log anomalies.
Great design and problem solving skills Hands-on experience with scan configuration, troubleshooting, and optimization.
Basic scripting and automation skills using Python, PowerShell, or Bash.
Excellent collaboration and communication skills, with the ability to work across various teams and organizational levels .
This position is ineligible for visa sponsorship.
To be considered for this role, you must be legally authorized to work in the United States and not require sponsorship for employment now or in the future.
Employees at all levels are expected to: Understand our Operating Principles; make them the guidelines for how you do your job.
Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
Win as a team - make big things happen by working together and being open to new ideas.
Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
Drive results and growth.
Respect and promote inclusion & diversity.
Do what's right for each other, our customers, investors and our communities.
What You Can Expect: An encouraging and casual work environment with chances to showcase your skills.
A culture of innovation and continuous learning.
Training, support, and mentoring to expand and evolve your expertise.
For more insight into our culture, check out: *************
comcast.
com/meet-comcast/our-culture About Our Perks & Benefits: We are determined to create an environment where our employees feel valued, understand our business goals, and are motivated.
Here's a look at just some of the perks and benefits we make available to our US-based employees: Medical & Dental 401(k) Savings Plan Generous paid time off Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
Courtesy Services - We offer all of our full-time employees in serviceable areas discounted digital TV and internet.
Discounted tickets for Universal Resorts, and free tickets to our Universal theme parks Learn more at *************
comcast.
com/life-at-comcast/benefits Reasonable Accommodation We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment.
Please contact us to request accommodation.
Comcast is an EOE/Veterans/Disabled/LGBT employer.
Disclaimer: This information has been designed to indicate the general nature and level of work performed by employees in this role.
It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications.
Comcast is proud to be an equal opportunity workplace.
We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.
Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work.
Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus.
Additionally, Comcast provides best-in-class Benefits to eligible employees.
We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most.
That's why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality - to help support you physically, financially and emotionally through the big milestones and in your everyday life.
Please visit the compensation and benefits summary on our careers site for more details.
Education Bachelor's Degree While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.
Relevant Work Experience 7-10 Years
Information System Security Engineer II (ISSE)
Information Security Analyst Job In Philadelphia, PA
Job Description
Type: Full Time
Overtime Exempt: Yes
Reports To: ARMADA HQ
Security Clearance Required: Active Secret
*****CONTINGENT UPON AWARDING OF GOVERNMENT CONTRACT*****
Duties & Responsibilities:
The Information System Security Engineer (ISSE) shall assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M).
The Information System Security Engineer (ISSE) shall execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO).
The ISSE shall identify and tailor IT and CS security control baselines based on RMF guidelines and categorization of the RMF boundary.
Perform Ports, Protocols, and Services Management (PPSM).
Perform IT and CS vulnerability-level risk assessments.
Execute security control testing as required by a risk assessment or annual security review (ASR).
The ISSE mitigate and remediate IT and CS system level vulnerabilities for all assets withing the boundary per STIG requirements.
The ISSE shall develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS).
The ISSE shall develop and maintain system level IT and CS policies and procedures for respective RMF boundaries and/or guidance provided by the command ISSMs.
Implement and assess STIG and SRGs.
Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG.
Deploy security updates to Information System components.
Perform routine audits of IT system hardware and software components.
Maintain inventory of Information System components.
Participate in IT change control and configuration management processes.
Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM).
The ISSE shall image or re-image assets that are part of the assigned RMF boundary.
Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets.
The ISSE shall assist with removal of SSD, HDD or other critical components of assets before destruction and removal from the RMF boundary.
Provide cybersecurity patching of assets in times of DoD and DoN TASKORDs, FRAGORDs, or even designated by Command ISSM, ACIO, and/or Code 104 management.
The ISSE shall support configuration change documentation and control processes and maintaining DOD STIG Compliance.
The ISSE shall support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware. This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware.
The ISSE shall report compliance issues of network hardware to management as not cause an operational of the network.
Other Duties as assigned.
Knowledge, Skills, and Abilities (KSAs):
Experienced in capturing and refining information security operational and security requirements, and ensuring those requirements are properly addressed through purposeful architecting, design, development, and configuration; and implementing security controls, configuration changes, software/hardware updates/patches, vulnerability scanning, and securing configurations.
Minimum/General Experience:
Three (3) years professional experience
Required Certifications:
DOD IAT-II certification required
Minimum Education:
Bachelor's degree in computer science, or information technology.
Or an equivalent technical degree from an accredited college or university.
Disclaimer:
The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position. Applying: If you feel you have the knowledge, skills and abilities for this position visit our careers page at ******************
Special Notes: Relocation is not available for these jobs.
ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
Must be able to successfully pass a background check, and pre-employment drug testing. Job offers are contingent upon results of background check and drug testing.
Information Security Analyst
Information Security Analyst Job In Philadelphia, PA
Location Philadelphia, PA Location 36727 Drexel is one of the top 15 largest private universities in the United States. While students can earn their degrees on campus, Drexel also accommodates nontraditional learners through online coursework. In fact, Drexel Online is one of the oldest online postsecondary providers in the country.
The online at Drexel examines computer system administration and electronic safety. The degree requires 188 quarter credits and includes courses like introduction to computing and security technology, team process and product, computing and informatics design, and introduction to business statistics. The program also offers concentrations in computing technology and computing security.
Distance learners access coursework through the Blackboard learning management system. Online courses use an asynchronous format. Students engage with peers and professors through discussion boards, group chats, and email. Assignments include online readings, projects, essays, and exams.
Students can transfer up to 113 quarter credits from accredited institutions toward the degree. Drexel offers transfer credit for prior academic work and IT certifications, such as A+, Oracle 9i DBA, and CCNA. Applicants must submit transcripts, letters of recommendation, a personal essay, and a resume.
Drexel University is regionally accredited by the Middle States Commission on Higher Education (MSCHE).
Location Burlington, VT Location 38577 Established in 1878, Champlain hosts students from 44 states and 18 countries. The school offers over 150 areas of a study and a 12-to-1 student-to-faculty ratio. Champlain's online prepares graduates for careers in computer and information systems.
The 120-credit degree includes courses like usability in website and software design, project management standards and behaviors, Linux systems administration, and server-side scripting PHP. Champlain also offers computer and information systems certificates.
Students should plan to commit 10-17 hours each week to assignments, though online courses follow an asynchronous format. Students communicate with professors and peers through discussion forums, group chats, and email. Assignments include group projects, online readings, recorded lectures, and exams.
Champlain provides online tutoring through Smarthinking. Champlain also provides a support team for distance learners, including academic counselors, career advisors, librarian research support, and technical assistance. Admission requires a minimum 2.5 GPA, official transcripts, a resume, and multiple short essays. Champlain accepts up to 90 transfer credits from accredited institutions.
Champlain College is regionally accredited by the New England Commission of Higher Education (NECHE).
Location Ellensburg, WA Location 14647 Founded in 1891, CWU emphasizes practical learning and accessible coursework, offering over 135 degrees, including multiple regionally and nationally ranked programs. Nontraditional learners can access hundreds of online courses and a variety of fully online degrees at CWU.
The College of Education and Professional Studies at CWU offers an online that examines information technology and administrative management. Courses include sustainable decision-making, integrated computer applications, leadership and supervision, cyberattack and defense, and cybercrime.
The program uses a cohort model, which allows students to build relationships with peers as they move through the program. Online courses typically follow an asynchronous format. Assignments include lecture videos, discussion board posts, essays, and exams.
CWU provides an academic success center, which offers online peer-to-peer collaboration, tutoring, and development assistance. Distance learners can also access online databases, a math center, a writing center, and technical support. Admission requires a minimum 2.0 GPA, ACT or SAT scores, a personal essay, and official transcripts.
Central Washington University is regionally accredited by the Northwest Commission on Colleges and Universities (NWCCU).
Location Grand Rapids, MI Location 17169 DU hosts 6,500 students each year, including over 5,100 undergraduate students. Over 78% of DU students complete at least one online class. The school values affordability, offering the lowest tuition rates of all postsecondary institutions in Michigan.
Distance learners can earn a that provides graduates with technological and management skills. The 120-credit program includes 27-28 foundations of excellence credits, 21 foundations of computer information systems credits, 15 specialty area credits, nine foundations of business credits, 17-18 elective credits, and 45 major credits.
Notable courses include systems analysis and design, data structures and algorithms, achieving career and education success, and discrete structures. Specialization options include web and mobile development, programming, database and analytics, and secure software development. DU Global Campus also offers a minor in mathematics.
Distance learners access coursework through the Blackboard learning management system, following an asynchronous format. Assignments include group projects, online readings, recorded lectures, and exams.
Admission requires official transcripts, SAT or ACT scores, and a statement of purpose. Students with professional experience should also submit a resume.
Davenport University is regionally accredited by the Higher Learning Commission (HLC).
Location Madison, SD Location 16863 DSU values continuous improvement, community, and innovation and strives to accommodate diverse learning needs. Students can access a variety of fully online degrees and programs at DSU, and over half of DSU students earn their degrees completely online.
DSU's College of Business and Information Systems offers an online that prepares graduates to use technology to lead the operations of an organization. This program requires 120 credits, including 30 general education credits, 66 major credits, 18 specialization credits, and six elective credits. DSU offers multiple specializations, including application development, business analytics, and project management.
Courses include decision support systems, business intelligence and big data, software development with agile methodologies, and object-oriented design. DSU requires a three-credit internship, allowing students to gain applied experience and network with potential employers. DSU uses the Desire2Learn learning management system to administer distance coursework.
DSU offers e-tutoring in multiple subjects. Students can also connect with peer tutors through web conferencing software. Admission requires a minimum 2.0 GPA.
Dakota State University is regionally accredited by the Higher Learning Commission (HLC).
Location Riverside, CA Location 24170 CBU is a religious university that offers theologically rooted coursework taught by Christian faculty. The school hosts around 11,000 students annually and offers over 100 degrees, including 80 bachelor's programs. The fully online prepares graduates for careers in computer information technology.
This degree requires a minimum of 88 units, including 40-43 general education units, six lower-division units, 36 upper-division units, and six required units. Courses include foundations in Christian thought, legal and ethical practices in information technology, computer programming in C++, and enterprise architecture.
Distance learners access coursework through the Blackboard learning management system. Coursework includes discussion forum posts, online readings, essays, and exams. CBU provides online tutoring through Smarthinking. Online students also have access to an academic counselor, 24/7 technical assistance, online databases, and librarian research support.
Admission requires an essay, official transcripts, a minimum 2.0 GPA, and SAT or ACT scores. CBU offers merit-based scholarships for stu