Information Technology Security Manager remote jobs - 806 jobs

A leading data collaboration platform in San Francisco seeks a Senior Security Engineer to enhance threat detection and automation strategies. The role involves implementing detection logic, automating workflows, and developing scalable cloud solutions. Candidates should have a Bachelor's degree in a relevant field and strong skills in security automation and detection engineering. This position offers competitive compensation with a base range of $131,500 to $203,000. #J-18808-Ljbffr

A leading security training provider is seeking a Senior Security Engineer for their content engineering team. This role supports security professionals, builds hands-on content, and integrates security into DevOps. Ideal candidates have over 5 years of experience in application security and are passionate about improving security practices. The position is remote-first with competitive compensation and benefits. #J-18808-Ljbffr

Clearance: Active Secret Clearance Required Employment Type: Full-time Performance-Based Position Description Nationwide IT Services (NIS) is seeking a seasoned Cybersecurity Architect for a potential opportunity supporting our DOD customer. In this role, you will be instrumental in securing complex systems, conducting risk assessments, designing secure system architectures, and ensuring compliance with DoD cybersecurity policies and frameworks. This is a remote opportunity requiring a proactive, independent leader with deep experience in systems security engineering and architecture.Key Performance Responsibilities Security Architecture & Engineering Design and implement secure enterprise architectures aligned with DoD RMF (Risk Management Framework) and NIST standards. Develop architecture artifacts (e.g., DoDAF, diagrams, threat models) to support system development life cycles (SDLC). Cybersecurity Compliance & Risk Management Lead the development and assessment of cybersecurity strategies and technical solutions in alignment with DSCA's security objectives. Ensure system compliance with IASAE Level II frameworks and DoD regulations. Conduct security assessments, gap analyses, and vulnerability mitigation planning. Technical Leadership & Collaboration Serve as the cybersecurity SME, providing guidance to system administrators, engineers, and program leadership. Work collaboratively with stakeholders to integrate security requirements across project lifecycles. Present findings, risks, and recommendations to senior leadership and decision-makers. Documentation & Reporting Author and maintain key security documentation (SSPs, POA&Ms, risk assessments). Provide weekly and monthly security status reports, ensuring traceability and audit readiness. Required Qualifications Experience 10+ years of information technology experience 8+ years in technical engineering (requirement analysis, systems/network administration, cybersecurity, systems engineering) Education Bachelor's degree in information technology or a related field from an accredited institution Certifications IASAE Level II Certification (e.g., CASP+ CE, CISSP, CSSLP) Clearance Active Secret Clearance is required for consideration About Nationwide IT Services NIS is a CVE-verified Service-Disabled Veteran-Owned Small Business specializing in IT and Management Consulting. We focus on delivering mission-critical services to federal clients, leveraging cutting-edge technology and industry best practices.Why Join NIS? Competitive compensation Remote flexibility Medical, Dental, and Vision Insurance 401(k) with Employer Match Generous PTO, Holidays, and Sick Leave Education Reimbursement & Professional Development Pet Insurance & Employee Assistance Program Equal Employment Opportunity Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, national origin, sexual orientation, gender identity, disability, or protected veteran status.

IDR is seeking a IT Program Manager (Healthcare) to join one of our top clients for a Direct Hire opportunity in the Dallas, TX area. The IT Program Manager oversees end-to-end delivery of strategic clinical initiatives across assigned service lines, ensuring programs achieve targeted business outcomes. Partnering closely with Portfolio Owners, this role bridges strategy and execution-guiding teams from ideation through implementation, operational support, and KPI measurement. Requirements for the IT Program Manager (Healthcare): 8+ years of large scale and complex project implementation exp focused on clinical solutions within healthcare. 2+ years of strategic program management exp, managing multiple projects simultaneously. Expertise in EHR systems is a must What's in it for you? • Competitive hourly rate • Opportunity to work with a leading healthcare organization • Flexible schedule, with remote work options after initial 3-month period Why IDR? • 20+ years of proven industry experience in 4 major markets • Employee Stock Ownership Program • Dedicated Engagement Manager committed to your success

Information Technology at Procter & Gamble is where business, innovation and technology integrate to build a competitive advantage for P&G. Our mission is clear -- we deliver IT to help P&G win with the over 5 billion consumers we serve worldwide. Our IT professionals are diverse business leaders who apply IT expertise to deliver innovative, tech-focused business models and capabilities for our 65 iconic, trusted brands. From Day 1, you'll be trusted to dive right in, take the lead, use your initiative, and build billion-dollar brands that help make everyday activities easier and make the world a better place! Our company offers purposeful work that will take your career places you never envisioned, in creative workspaces where innovation thrives and where your technical expertise is recognized and rewarded. The Opportunity P&G is seeking a Governance, Risk, and Compliance Director passionate about safeguarding data, enabling business through smart risk management, and shaping the future of cybersecurity. The IT Governance, Risk, and Compliance (GRC) Organization at Procter & Gamble is responsible for risk identification, assessment, and remediation across the IT landscape, as well as driving automated governance and compliance breakthroughs. As the GRC expert, you'll play a critical role in maturing and maintaining the security risk and compliance posture of our organization. You will lead initiatives that align our security program with business goals, ensure regulatory and policy compliance, and creatively solve problems to manage risk for the company. Responsibilities: Governance: Maintain and evolve the information security policy framework and controls aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Establish and track metrics to measure policy adherence and program maturity. Drive internal alignment on security roles, responsibilities, and expectations. Risk Management: Manage the enterprise risk management process including risk identification, analysis, treatment planning, and reporting. Conduct security risk assessments for internal systems, projects, vendors, and business processes. Facilitate risk-based decision-making at all levels of the organization. Compliance: Ensure ongoing compliance with applicable regulations and frameworks (e.g., GDPR, HIPAA, CCPA, SOX). Maintain a library of evidence and documentation to support audit and regulatory needs. Monitor the effectiveness of IT controls and identify gaps in compliance. Analyze control measurements for negative trends and reoccurrence frequency. Collaborate with internal/external auditors on compliance audits, audit findings, and issue remediation Awareness & Enablement: Contribute to the continuous improvement of the risk and compliance mindset across P&G. Build IT risk awareness by providing support and training to others. Collaborate cross-functionally with IT, Legal, Privacy, and Business Operations teams. Stay up to date with how current events, security focus areas, and the regulatory environment may impact P&G's compliance processes Estimated Percent of Time Spent on Work 25% - Risk identification, analysis, and assessment 40% - Plan and drive enterprise-wide initiatives to reduce risk and improve compliance across the organization 25% - Assess and improve the effectiveness of IT controls and compliance across the enterprise 10% - Collaboration with internal/external auditors, driving a risk-aware compliance mindset Job Qualifications Required: Bachelor's degree in Computer Science, Computer Systems Engineering, Cybersecurity, Industrial Engineering, Business Management Information Systems, Software Development, or related field Prior hands on experience working in a security-focused role, such as Information Security Analyst, SOC Analyst, Security Engineer, etc. 8+ years of experience in Governance, Risk, and Compliance with a focus on Information Security In-depth knowledge of major security frameworks (e.g., NIST CSF, ISO 27001, SOC 2). Experience conducting risk assessments, audits, and control testing. Strong understanding of regulatory compliance requirements (e.g., GDPR, HIPAA, SOX, PCI DSS). Proven ability to write policies, manage documentation, and communicate clearly to both technical and non-technical stakeholders. Ability to influence and build relationships with business unit stakeholders, external service providers, and architecture teams. The ability to work independently, collaborate, and learn quickly. English fluency (speak, write, and read) Preferred Skills: Certified in CISSP, ISACA CRISC, CGEIT, CISA, or similar Pay Range: $160,000 - $220,000 Compensation for roles at P&G varies depending on a wide array of equal opportunity factors including but not limited to the specific office location, role, degree/credentials, relevant skills, and level of experience. At P&G compensation decisions are dependent on the facts and circumstances of each case. Total rewards at P&G include salary + bonus (if applicable) + benefits. Your recruiter may be able to share more about our total rewards offerings and the specific salary range for the relevant location(s) during the hiring process. Our company is committed to providing equal opportunities in employment. We value diversity and do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Immigration Sponsorship is not available for this role. For more information regarding who is eligible for hire at P&G along with other work authorization FAQ's, please click HERE. P&G participates in e-verify as required by law. Qualified individuals will not be disadvantaged based on being unemployed. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Job Schedule Full time Job Number R000136880 Job Segmentation Experienced Professionals Starting Pay / Salary Range $160,000.00 - $220,000.00 / year

As Director of Information Security at Moov you will be responsible for the comprehensive enterprise-wide information security policy, strategy, architecture, operations, and capability enhancements of Moov and our platform. This position collaborates with the senior leadership team on security strategy, capability enhancements, and the development of enterprise security awareness and accountability. You will: Key Responsibilities: Develop, implement, and maintain information security policies, practices, and operations. Oversee incident evaluation and response, ensuring swift and effective handling. Manage corporate information security risk and regulatory architecture and status reporting efforts. Create and roll out audit and compliance programs. Implement technical compliance solutions and support for security awareness and training programs to ensure compliance. Collaborate with cross-functional teams to maintain a high standard of cybersecurity posture and response. Build and operate a security and compliance program for money movement regulations, aligning with information security policies and standards. Foster a security-conscious culture and ensure the platform's security. Leadership and Strategy: Execute a plan to achieve and maintain industry compliance for SOC 1, SOC 2, PCI, NACHA, FedRAMP, and other compliance programs. Research, educate, and recommend technical solutions to support compliance efforts. Develop, implement, and manage a comprehensive organization-wide information security and risk management program. Deliver education on compliance with security policies. Conduct security risk assessments and manage risk management processes. Ensure compliance with relevant laws, regulations, and policies in Moov's information security practices. Lead the information security team that is protecting Moov. Recruit, motivate, mentor, and lead the best security talent. You have: Bachelor's degree in Computer Science, Engineering, Information Systems, Cyber Security, Business, or a related academic discipline. 7-10+ years of relevant experience or an equivalent combination of education and experience. Strong knowledge of regulatory requirements and information security management frameworks, including SOC 1, SOC 2, ISO/IEC 27001, ITIL, SOX, PCI, FedRamp, and NIST. Ability to work in a fast-paced environment. Knowledge of payment systems, fintech, or online banking. Certification in CISSP, CISM, CRISC, CISA, CFE, or similar is highly recommended. Experience with banking regulations. Knowledge of OSS tools and active participation in OSS community. Experience working with remote-only teams. Experience with mid-size organizations and startups. Our company: Moov is a 100% remote company with people from more than 26 states. We're backed by a16z and other respected investors. We won Visa's global Everywhere Initiative and our community of builders grows larger every day. We're committed to building a team that represents a variety of backgrounds, perspectives, and skills and we embrace diversity, creativity, and equal opportunity. Our people: Our customers come from all walks of life and so do we. We hire great people from a variety of backgrounds, not just because it's the right thing to do, but because it makes our company stronger. We have mountain bikers, skiers/boarders, runners, video gamers, musicians, movie buffs, weight lifters, and about every other type of person in between. We enjoy solving problems and tackling challenges with creativity. If we don't know the answer, we revel in the hunt to find it. We like helping people and choose to give first. We're patient, open, and honest. If you share our values and enthusiasm for making the complex simple and delightful, you'll find a home at Moov. Benefits include: Competitive base salary + employee stock options w/early exercise opportunity 100% remote. We make remote-work work. We match what you contribute to your 401(k) up to 5% of your salary Generous parental leave Medical Ins: Health Savings Account (HSA) option w/employer contribution EAP and other wellness resources Unlimited PTO+ generous paid holiday schedule Professional Development Budget, we have a culture that encourages and promotes professional growth and development Home office stipend Culture of people helping people who give first, celebrate wins together and embrace autonomy, transparency, and trust The opportunity to join an experienced and ambitious team passionate about solving customers' needs and who love what they do Partner with a community of 3000+ developers around the world, helping them focus on possibilities vs payments Employee referral incentive Salary range: $220k - $232k based on experience, geography, and other key factors Advice: If you're nervous about not meeting every qualification above, apply anyway. Moov is all about pushing boundaries-ours, yours, and the industry's-so we look for curious people willing to experiment and grow. While we can't teach curiosity and compassion, we can teach some technical skills. Of course, we can't guarantee anything, but as Michael Scott says,“You miss 100% of the shots you don't take!” (Or was that Wayne Gretzsky?) One more thing: Don't go iron your clothes for your interview (do people still own irons?). We're all pretty casual here, so you can wear whatever you are most comfortable in. Okay-last thing: When you meet with us, have some concrete, tangible examples of when you've added value, improved something, created something, or done some fantastic, customer-centric work. We also want to learn about you as a person. If you want to know what it's like working at Moov, check out stories from our employees. PS: Share our job roles with others! Wouldn't it be nice to make new friends and bring over old friends? We think so. Moov Financial is a participant of E-Verify. All potential employees and employees are bound by the guidelines in the MOU and the rules and responsibilities. For more or up to date information on E-verify, go to ********************** and click on E-verify.

We're seeking an experienced Director of Information Security to join our dynamic team and help drive our growth. In this role, your job will be to coordinate people and processes to instill a “security first” mindset for information management, systems development, acceptable use of these systems, staff awareness, and oversight of our vendors and partners. This security professional will lead the management of risk and compliance of intellectual property, including day-to-day network and cyber tool monitoring, oversight, and ongoing security testing. The individual performing this role will enforce policies and procedures that ensure compliance with state, federal, and industry standards and requirements, ensuring our customers' and company's data are protected. As the Director of Information Security, you will implement a security-readiness plan and provide guidance on how to quickly and effectively respond to any and all security incidents. In addition, this role will be instrumental in implementing controls and monitoring capabilities that provide visibility into the organization's security posture. At RxVantage we transform how medical practices engage with life sciences resources and expertise to improve patient care. Our platform intelligently connects healthcare providers with the precise life sciences experts that they need, when they need them. As a result, medical practices stay on the cutting edge of patient care without disrupting workflows. Trusted by more than tens of thousands of healthcare practitioners and all major life sciences companies, RxVantage has powered millions of educational exchanges between healthcare teams and life sciences companies. What you'll be doing: Creating and implementing a security roadmap based on current and ongoing assessments Ensuring policies are developed and maintained from both a business & technical perspective for the application, data, and security needs of the organization Working with Legal to ensure agreements are congruent with policies Overseeing the GRC (Governance Risk and Compliance) process Ensuring compliance with industry laws and regulations for data security and privacy to include CCPR, 21 CFR Part 11, SOC2, NIST SP800-53 Monitoring the Identity and Access Management Framework Benefits: Competitive Salary 100% Company-Paid Premiums for Employee's Medical Health (HDHP 4500), Vision, and Dental Plans + $4,400 company sponsored contribution into an HSA Short-term and Long-term Disability Life Insurance 401k Matching Work from Anywhere within the US Flexible PTO 100% Paid Parental Leave Post-Parental Leave Program - $5k stipend to assist with expenses, 4 week 100% paid “Ease-Back” return to work transition period Charitable donation matching Location: Our “Work from Anywhere” philosophy is aimed at making sure that we recruit a diverse range of thought leadership to ensure that our technology is better able to serve local health care providers. Our goal is to hire the country's top talent and allow them to create an environment within the U.S. where they can do their best work. About Our Organization: At RxVantage, we're a small company with a big mission: to connect healthcare providers with the right life science experts and resources they need, exactly when they need them, to improve patient care. We've built a software platform that's changing the way providers learn about the latest medical advancements and technologies. Every year, our platform powers over 1 million educational exchanges between medical practices and life science companies, making it easier for them to stay informed and provide better care. We have a proven product, a strong mission, and a passionate team. Now, we're looking for talented people to help us grow even more. If you're driven, eager to make an impact, and ready to be part of something meaningful, we want to hear from you! --- RxVantage is an equal opportunity employer and dedicated to ensuring that we represent the local communities where our health and wellbeing providers serve as pillars of support to our family, friends, and neighbors. Our representation within these communities allows us to embody a diverse set of backgrounds, experiences, abilities and perspectives; and provide an inclusive environment for our team to feel empowered to be their authentic selves, without fear of harassment or discrimination.

Compliance & Information Security Manager Department: Compliance Reports To: VP of Compliance Installation Made Easy (“IME”) provides software and process management that enable retailers and contractors to offer installed home improvements to homeowners in a convenient, consistent, and affordable manner. IME senior management has over 100 years of retail management and home improvement industry experience. We are seeking a Compliance & Information Security Manager to build and manage our corporate compliance and information security governance program. The role will lead regulatory compliance initiatives, manage audit and certification efforts, and partner closely with Compliance, IT, and Security teams to support a strong risk and compliance posture. The candidate must be able to work independently in a remote environment. Essential Functions: Manage compliance programs related to PCI DSS, SOC 1 / SOC 2, and related frameworks. Serve as project manager for external audits and certifications, coordinating internal teams and external auditors. Maintain compliance with U.S. consumer privacy and data protection laws, including state privacy and breach notification requirements. Develop and maintain compliance, privacy, and information security policies and documentation. Review and redline agreements with customers, partners, and vendors, focusing on data protection, security, and compliance terms. Oversee the maintenance of the company's certifications and licenses, such as money services licensure and/or business registrations Support information security governance, risk assessments, vendor risk reviews, and remediation tracking. Provide compliance support during security incidents and investigations. Partner cross-functionally and provide compliance guidance and training across the organization. Perform other duties as required. Minimum Qualifications: 5+ years of experience in compliance, information security, risk management, or GRC roles. Hands-on experience managing PCI and SOC audits. Working knowledge of U.S. consumer privacy and data protection laws. Experience reviewing and redlining commercial agreements. Strong project management and communication skills. Bachelor's degree in a related field or equivalent experience. Preferred Qualifications: Certifications such as CISSP, CISM, CRISC, CISA, or CIPP/US. Experience in a SaaS or software environment. Familiarity with NIST or ISO 27001 frameworks. Physical Requirements: Prolonged periods of sitting at a desk and working on a computer. Benefits to working with IME: 100% remote work environment Employer provided equipment. Medical, dental, and vision insurance Health savings plan includes employer contribution to health savings account. Medical and dental flexible spending accounts Company paid basic life, short-term disability, and long-term disability insurance. 401K plan with employer match Company matches 100% of the first 4% of salary deferrals. All contributions, including employer contributions, are 100% vested immediately. Employee discount program for Electronics, Groceries, Travel, Entertainment, and more Employee assistance program Pay on demand. Critical illness, hospital indemnity, group accident, and legal insurance Paid time off. And more! We are an Equal Opportunity and Drug-Free Workplace. The is not an exhaustive statement of all duties, responsibilities, or qualifications of the job, nor is it intended to limit opportunities for necessary modifications. The Job Description does not constitute an employment contract of any kind.

Benefits: 401(k) 401(k) matching Competitive salary Dental insurance Health insurance Opportunity for advancement Paid time off Vision insurance Benefits/Perks Competitive Compensation Career Advancement Opportunities Great Work Environment Job SummaryWe are seeking an experienced Information Security Manager to join our team! As our Information Security Manager, you will be responsible for managing all Information Security projects, ensuring the safety and security of the data in our care, and identifying and eliminating threats before they start. You will also work closely with other departments to ensure compliance with security best practices and create reports to present to upper management and other department heads on security protocols. The ideal candidate has previous experience working in Information Security, has demonstrable experience leading a team, and has a deep understanding of best security practices. Responsibilities Manage IT projects and oversee goals, ensure metrics are being met, and projects are being completed in a timely manner Work closely with staff to manage any support issues that arise, handle all user access credentials, and hardware inventory Maintain and adjust any documentation for users in regard to common technology processes, hardware handling, and more Maintain and adjust any communications procedures to ensure staff issues are being heard and handled appropriately Investigate any security incidents and handle documentation and remediation Monitor security systems to protect data and spot any questionable activity before it becomes a threat Present reports to upper management to discuss security concerns and ongoing efforts, as needed Qualifications Previous experience in IT Security and Management preferred Strong interpersonal and communication skills Demonstratable experience and knowledge in IT, security, and best practices Strong leadership ability Self-driven and motivated The ability to meet deadlines and work under high-pressure situations Flexible work from home options available. Compensation: $140,000.00 - $150,000.00 per year PROVIDING QUALITY STAFFING AND CONSULTING SINCE 2011 Based out of San Antonio, Tex as, our minority women-owned company specializes in all staffing and consulting needs. Whether you're trying to hire a pharmacist, a respiratory therapist, or skilled and non-skilled laborer, we will staff your company with the best candidate. We bring extensive experience and professionalism and we will personalize our assistance to your needs and concerns. Most of our contracts are with the Army and Air Force as Sub-Contractors. Our staff has a quick turn around and have been able to fill positions within 48 hours with short notice, we have filled hard to fill locations and jobs, and managed over 16 contracts with over 70 employees at a time. Managed call-ins at 24/7 hospitals and ensured shifts were filled, and managed PRNs with notice of less than 24 hours. Also, provided temp laborers for next day jobs. Our consulting division provides contracting assistance, program managing, application assistance, certification assistance and proposal writing. We are very knowledgeable in a variety of areas and are eager to assist your company's prosperity.

Why Montrose Montrose is on a mission to protect the planet and public health using science, data, and technology at scale. Our commitment to environmental intelligence, regulatory insight, and advanced digital platforms drives our approach to security and risk management. The CISO role is pivotal in safeguarding our business, our clients, and our mission, moving beyond compliance optics to build a resilient, risk-based security culture that enables growth and innovation. This is not a checkbox compliance role. This is enterprise security leadership with real-world impact: embedding security into every layer of our technology stack, business processes, and product delivery. If you're energized by building robust security programs, closing material risk gaps, and enabling modern engineering workflows, this role is built for you. The Role The Chief Information Security Officer (CISO) owns the strategy, architecture, and execution of Montrose's enterprise security program. The CISO leads a cross-functional security team (Governance, Risk & Compliance, Security Operations, Identity & Access Management) and partners with Legal, Infrastructure, Applications, and Product Engineering to deliver a comprehensive, scalable, and audit-ready security posture. You will define how security is designed, governed, and operationalized, driving clarity where there is complexity and accountability where there is fragmentation. You'll be bold about policy lifecycle management, asset visibility, and risk prioritization, while preparing the organization for the next generation of compliance, monitoring, and secure product delivery. What We Can Offer You Our mission is supported by our principles: We Value Our People, We Value Our Community, We Value Our Clients, We Value Our Shareholders. We differentiate ourselves with diverse talent. We care for the well-being and development of our people. So, we offer: Regular interaction and partnership with the executive team and senior leaders across Montrose Competitive compensation package: annual salary ranging from $275,000 - $300,000 USD; eligible for annual bonus of 30-40% Competitive medical, dental, and vision insurance coverage 401k with a competitive 4% employer match Progressive vacation policies and company holidays to ensure work/life balance A financial assistance program to help support peers in need known as the Montrose Foundation Access to attractive student loan rates to optimize your student loan payoff plans Key Responsibilities Enterprise Security Strategy & Architecture: Own the end-to-end vision and roadmap for Montrose's enterprise security program; define reference architectures and governance principles aligned to NIST 800-171, ISO 27001, NIST CSF, CIS Controls. Risk Management & Compliance: Build and maintain a CMMC L2 compliant enclave; align governance and controls to regulatory frameworks; lead incident readiness and response. Security Operations & Architecture: Establish a complete asset inventory and validate tool coverage; segment and secure lab networks; partner with CTO and engineering teams to enable secure, modern software development. Policies, Training & Culture: Publish clear policies and governance procedures; ensure annual reviews and training; govern guest/external data sharing in M365. Team & Leadership: Lead and grow a high-performing security organization spanning GRC, SecOps, and IAM; serve as a trusted partner to executives. What Success Looks Like (9-12 Months) A clearly defined, well-governed enterprise security architecture is in place. Asset inventory and tool coverage are complete and validated; continuous monitoring is operational. CMMC readiness achieved; SOC 2/ISO 27001 certification plan is underway. Security policies are published, enforced, and aligned to best practices. Security is embedded in engineering workflows and product delivery. Qualifications 10+ years of experience leading enterprise security programs and teams (GRC, SecOps, IAM) with direct CIO reporting. Demonstrated success aligning programs to NIST 800-171, ISO 27001, NIST CSF, CIS Controls, and achieving compliance. Proven ability to operationalize policy lifecycle management, incident response, and audit readiness. Track record partnering with Legal, Infrastructure, Applications, and engineering teams to reconcile control rigor with delivery needs. Ability to communicate effectively with executives, technical teams, and business leaders. You respectfully challenge your peers, and welcome the opportunity when others challenge you. You are flexible, resilient, and curious. Preferred Industry certifications (e.g., CISSP, CISM). Experience preparing for or implementing SOC 2/ISO 27001 audits and CMMC enclaves. Background in regulated, data-intensive, or multi-line-of-business environments. Why This Role Is Compelling As CISO at Montrose, you will own and shape the entire security program - transforming it from a reactive, compliance-driven function into a proactive, business-enabling force. You'll have the mandate and executive support to build a modern, risk-based security culture that not only protects the organization but also empowers innovation and growth. Your leadership will directly impact Montrose's ability to win and retain business, meet evolving regulatory demands, and deliver on our mission to protect the planet and public health. By partnering across IT, Legal, Product, and Operations, you'll ensure that security is a strategic enabler, removing friction, building trust with clients, and supporting the rapid adoption of new technologies. If you want to drive meaningful change, influence business outcomes, and lead a security program that is respected as a business partner - not just a gatekeeper - this is the role. Make The Right Move To Accelerate Your Career Montrose is a leading environmental solutions company focused on supporting commercial and government organizations as they deal with the challenges of today and prepare for what's coming tomorrow. With ~3,400 employees across 100+ locations worldwide, Montrose combines deep local knowledge with an integrated approach to design, engineering, and operations, enabling Montrose to respond effectively and efficiently to the unique requirements of each project. From comprehensive air measurement and laboratory services to regulatory compliance, emergency response, permitting, engineering, and remediation, Montrose delivers innovative and practical solutions that keep its clients on top of their immediate needs - and well ahead of the strategic curve. For more information, visit ********************* We are going to be blunt - the way we work may not suit everyone. Montrose is a fast-paced, dynamic and high-growth company. You are your own boss, but you will get ample guidance and support from talented, engaged, super-smart colleagues from Montrose and its service providers. Therefore, if freedom, autonomy, and head-scratching professional challenges attract you, we could be the perfect match. Want to know more about Montrose? Visit montrose-env.com and have fun! Montrose is an Equal Opportunity Employer. Montrose is committed to providing access and reasonable accommodation in its employment for individuals with disabilities.

Introduction KLDiscovery offers a fantastic opportunity for you to use your talents to make a meaningful impact in a fast-paced, growing technology and services organization! KLDiscovery is a global leader in eDiscovery, compliance, and data management solutions, empowering law firms, corporations, and government agencies to tackle their most complex legal and regulatory challenges. We are seeking an accomplished and strategic VP, Chief Information Security Officer (CISO) to lead our global Information Security teams and shape the cyber security strategy, compliance, and risk posture across all business operations. This role ensures the confidentiality, integrity, and availability of company systems, data, and services while enabling business agility and compliance with regulatory requirements. The CISO will develop and execute an enterprise security roadmap that protects our clients, employees, systems, and sensitive data while enabling business efficiency. Work Status: Remote, work from home opportunity. Is This Role For You? You will provide strategic direction, manage teams and budgets, drive multi-year maturity plans, and regularly communicate risk, priorities, and progress to senior leadership. At the same time, this role requires hands-on engagement with architecture reviews, incident response, vendor risk management, audits, certifications, and customer trust initiatives. You will partner closely with leaders across Engineering, IT, Legal, Compliance, Finance, and Operations, fostering a culture of shared responsibility for security. This includes establishing clear policies and standards, defining and monitoring key risk and performance metrics, and guiding teams through secure-by-design principles and real-world threat considerations. A Day in The Life Strategic Leadership Define and drive KLD's information security roadmap, strategy, and execution in alignment with business goals. Develop and maintain a security program aligned with industry frameworks (e.g., NIST CSF, SOC 2) and privacy/security obligations (GDPR, CCPA/CPRA, HIPAA, GLBA, DOJ, and client-specific requirements). Integrate cyber resilience and business continuity planning into enterprise risk management. Partner with Engineering and Product to ensure security requirements are integrated and prioritized within all roadmap initiatives. Governance & Compliance Own global compliance certifications (ISO 27001, SOC 2, CMMC) and client audit readiness programs. Establish and enforce security policies, standards, and secure-by-design principles across all products and services. Risk Management Lead risk assessments, gap analyses, and continuous improvement initiatives. Oversee enterprise risk management efforts, including vendor and supply chain security, annual posture reviews, penetration testing, bug bounty programs, and contractual compliance. Drive vendor risk management processes and third-party security assessments. Emerging Technology & AI Governance Lead the evaluation, selection, and deployment of security technologies that strengthen system, application, and data protection. Drive governance for AI and emerging technologies, ensuring secure and ethical adoption across business units. Operational Excellence Own the incident response program, ensuring proper handling of breaches, escalation, root-cause analysis, and corrective action. Lead and mentor a high-performing security team supporting 24/7 monitoring, threat detection, and incident response tailored to a legal data environment. Lead cross-functional IT and security teams through transformation initiatives. Metrics & Reporting Develop executive dashboards and reporting mechanisms for risk posture, maturity progress, and security KPIs for board-level visibility. Culture & Awareness Champion security awareness training and initiatives that are approachable, practical, and relevant to employees at every level. Foster strong cross-functional relationships, helping teams understand the “why” behind security decisions and controls. Budget & Resource Management Manage the security budget and resource strategy, balancing strong protections with business agility and client expectations. Identify opportunities for cost savings without compromising security or service quality. Establish and maintain strategic vendor relationships. Negotiate contracts and ensure compliance with security and performance standards. What You Bring to the Role Experience 15+ years of progressive cybersecurity experience, including 5+ years in a senior leadership or CISO-level role. Experience building and leading security programs in regulated environments; eDiscovery, legal technology, or digital forensics strongly preferred. Proven ability to design and scale end-to-end security programs covering governance, risk, compliance, architecture, and operations. Direct experience leading SOC 2, ISO 27001, CMMC, or similar audits and certification initiatives. Executive-level oversight of incident response, threat detection, vulnerability management, and third-party/vendor risk. Knowledge of identity security, endpoint management, encryption standards, device security, and secure system design. Leadership & Communication Exceptional communication skills, capable of explaining complex security topics to executives, engineers, clients, and nontechnical audiences. Demonstrated ability to lead, motivate, and scale high-performing teams in fast-paced, high-stakes environments. Consultative mindset with the ability to build rapport, trust, and influence at all organizational levels. Education & Certifications Bachelor's degree in Information Security, Computer Science, Engineering, MIS, or related field (or equivalent experience). Professional certifications such as CISSP, CISM, CISA, or similar are preferred. Driving Career Growth, Benefit Excellence: The KLD Advantage At KLD we invest in employees and their families by placing their wellbeing first. We offer competitive total compensation that includes base pay, bonus potential, inclusive benefits, wellness programs, and perks. We use market and industry data to inform pay decisions while considering geography and labor markets, individual experience, and business needs. Individual compensation will vary, although a reasonable estimate of the current annualized base pay range for this position is $200,000 to $250,000. We offer a high-performance laptop computer, options for wireless headset or external speaker, up to two 24” 2K monitors, and a mobile phone for business use. Generous paid time off, offering various time off options to help employees maintain a work-life balance, such as vacation, paid sick leave, parental leave, paid jury leave, and more! Comprehensive health, dental, vision and supplemental benefits packages that include life insurance, short- and long-term disability, to promote the health of our employees. Remote-friendly, flexible working culture, where you can apply to work from several global locations. A focus on continuous professional development through various training and education reimbursement programs. A diverse and inclusive workplace where we all learn, grow, and achieve the greatest heights…together. A surrounding team of mission-driven individuals who genuinely love what they do. Equity incentives and company bonus programs; that way, we all share in the success of KLDiscovery. Free, fun, interactive and incentivized global wellness program that promotes the wellbeing of our employees plus offers a wide range of perks and discounts! Free Employee Assistance Program (EAP) because we all could use a little help and support every now and then. 401(k) with employer match, to help our employees achieve financial success. KLD supports the communities where our employees live and offers a paid community service day for employees to volunteer with what resonates with them. To keep our furry, 4-legged family members healthy, KLD employees can opt for Pet Insurance. Who We Are KLDiscovery provides technology-enabled services and software to help law firms, corporations, and government agencies solve complex data challenges. With offices in 26 locations across 17 countries, KLDiscovery is a global leader in delivering best-in-class data management, information governance, and eDiscovery solutions to support the litigation, regulatory compliance, and internal investigation needs of clients. Our Nebula Ecosystem provides powerful end-to-end eDiscovery and enterprise-grade information governance. Through its global Ontrack data recovery business, KLDiscovery delivers world-class data recovery, disaster recovery, email extraction and restoration, data destruction, and tape management. We Provide Equal Employment Opportunity At KLDiscovery we believe that inclusion and diversity make us stronger. We are committed to fostering an inclusive environment for all employees that enhances wellbeing and belonging. We welcome and celebrate individuals of all backgrounds, experiences, and perspectives. We do not discriminate on the basis of race, color, religion, gender, pregnancy, gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, or any other protected status. We are happy to support you with any accommodation request at any stage in our hiring process. Texas PI# A04094801 #LI-TF1 #LI-Remote

The Chief of Information Security and Security Officer (CISO) is responsible for providing leadership and operational excellence for developing and supporting security initiatives and policies along with developing strategies to protect sensitive data, managing security risks, investigating and remediating security incidents and promoting security awareness and compliance across the organization. The CISO acts as the primary contact for security-related matters and serves as the organization's HIPAA Security Officer. Job Responsibilities: Leadership & Strategy: Develop and manage a comprehensive information security and risk management program aligned with business objectives and regulatory requirements. Serve as the organization's HIPAA Security Officer and lead all activities related to ensuring the security of protected health information (PHI). Collaborate with executive leadership, legal, compliance, and IT teams to integrate security into all aspects of operations and technology. Serves in a leadership capacity in the execution of the organizations Cyber Incident Response plan, coordinating action, communication, and mitigation efforts in conjunction with Executive Leadership. Keep current with emerging security trends, conduct research and make recommendations for improvements to current processes. Advise, counsel and educate executive and management teams on technology's relative importance and financial impact. Governance, Risk & Compliance: Establish, implement, maintain, and audit information security policies, procedures, and controls in accordance with PathGroup's Compliance Program, federal laws, and industry-standard best practices. Conduct regular risk assessments and security audits to identify vulnerabilities and recommend mitigations. Oversee security incident response planning and investigation of security breaches, including documentation and reporting. Work closely with the Chief Information Officer and Privacy Officer to develop and administer security awareness training for all employees and contractors. Security Operations: Lead strategic security and incident response planning to achieve business goals by prioritizing defense initiatives through the deployment, monitoring, maintenance, development, and upgrading of current and future security tools, technologies, and systems. Ensure regular risk assessments, penetration testing, and remediation efforts are conducted on a regular and timely basis. Monitor and analyze network and system activity for anomalies and trends to prevent and remediate security incidents in a timely manner. Work with IT to implement secure system configurations and DevSecOps practices. Third-Party, Vendor and Client Management: Evaluate third-party vendors and partners for security and compliance posture. Complete all required security assessments from existing or prospective clients. Participate in contract negotiations to ensure appropriate security requirements and data protection terms are in place. Management: Manage the employee hiring process including developing and updating s, developing performance expectations, identifying essential functions and knowledge, skills and abilities required for applicable positions, and selecting and assigning staff. Supervise and manage employee and team performance by coaching, counseling, motivating, and evaluating employees on a continual basis. Implement disciplinary action as needed and in consultation with Human Resources. Coordinate team projects, schedule work assignments, set priorities, and direct the work of subordinate employees. Ensure effective employee relations by sustaining an ethical, non-discriminatory and safe work environment and establishing effective communication lines and methods. Identify and solve employee problems, manage conflict, and respond to grievances as needed. Perform all job responsibilities in alignment with the industry's best security practices and regulatory guidelines to protect confidentiality, integrity, and availability of protected health information and other sensitive company data. Must be familiar with and abide by the Corporate Compliance Program and all Corporate policies, including the Privacy and Security policies. NON-ESSENTIAL FUNCTIONS: Nothing in the job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Other duties as assigned

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Remote Information Security & Compliance Manager. This role is integral to enhancing the overall security strategy and compliance framework within the organization. You will lead the operations of security engineering and ensure the integrity of data by managing various aspects of vulnerability assessments, compliance programs, and incident response. Your efforts will safeguard critical systems and data while aligning security practices with industry regulations. This position demands a mix of strategic insight and hands-on technical expertise as you develop and implement security policies and initiatives to mitigate risks and ensure compliance.Accountabilities Lead vulnerability management, SIEM tuning, incident response, and threat investigations. Oversee secure baseline configurations and cloud security controls. Develop and manage all security policies, standards, and awareness training. Conduct risk assessments and manage third-party/vendor risk evaluations. Own the Disaster Recovery governance program and ensure effective plan execution. Guide cross-functional teams through security requirements and policy changes. Requirements Bachelor's degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience preferred. 5+ years of hands-on IT security engineering or cybersecurity experience. Strong technical knowledge in AWS security, incident response, and vulnerability management. Experience in leading security or compliance functions effectively. Familiarity with SOC 2, HIPAA, GDPR, and CCPA compliance frameworks. Excellent communication skills for cross-functional collaboration and audits. Benefits Opportunity to work in a fully remote environment. Competitive salary and benefits package. Professional development and growth opportunities. Supportive work culture that values diversity and inclusion. Flexible working hours to promote work-life balance. Why Apply Through Jobgether? We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team. We appreciate your interest and wish you the best!Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.#LI-CL1We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

The Information Security Specialist/Analyst III reports to the Manager, Security Operations. Under indirect supervision, the Information Security Specialist/Analyst III provides a variety of operational, compliance, and consultative functions. This position designs, implements, manages, and monitors technical, administrative, and physical controls to protect the confidentiality, integrity, and availability of the organization's information assets. This role may be required to provide rotating 24x7 on-call support. Entity Medical University Hospital Authority (MUHA) Worker Type Employee Worker Sub-Type Regular Cost Center CC005101 SYS - IS Tidelands Integration Pay Rate Type Salary Pay Grade Health-29 Scheduled Weekly Hours 40 Work Shift We are seeking a highly skilled and experienced Senior Information Security Analyst to join our team. This role is critical in safeguarding our complex healthcare IT environment and ensuring compliance with industry standards. Key Responsibilities: 45% - Network Security Monitoring and Incident Response: Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure. Experience with Microsoft Defender for Endpoint EDR is also desired. Analyze findings from security monitoring systems, including Intrusion Detection/Prevention Systems (ID/PS) and Security Information Event Management (SIEM) consoles, to identify and respond to potential security incidents and data breaches. Perform cyber security incident handling, tracking and reporting. Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts. Respond to relevant service requests received from end users (e.g. for investigation of security events). Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents. 20% - Security Technology management: Configure, manage, and optimize SIEM platforms (Crowdstrike and/or Microsoft Sentinel) to enhance threat detection and response capabilities. Lead and manage large scale security-related projects, including tool implementations, upgrades, and process improvements. 10% - Vulnerability Management: Conduct vulnerability assessments to identify security risks and report findings to system owners. Manage workflows to ensure that protected assets are properly assessed in a timely manner. 15% - Threat Analysis Continuously evaluate and update analytics to counter evolving Threat Actor tactics, techniques, and procedures (TTPs). Perform risk assessments and translate business requirements into effective security controls. Maintain comprehensive documentation and present findings to stakeholders in a clear and actionable manner. 10% - Security Awareness: Create and deliver security awareness training for technical and non-technical audiences. Additional Job Description Required Education/Skills/Work Experience: A Bachelor's degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience; or 10 years of hands-on experience in information security or related IT experience required, at least 6 of which must be directly related IT security experience; or a Master's degree in information security, information assurance, computer science, or a related field, and 3 years of IT security experience required. Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.). Strong analytical and problem-solving skills with the ability to make decisions under pressure. Hands-on experience with Crowdstrike EDR, SIEM, IDS/IPS, vulnerability management, and threat intelligence tools. Familiarity with cloud security (Azure, AWS) and identity management solutions. Advanced Understanding on the administration and securing of various operating systems and enterprise applications with advanced security best practices. Excellent written and verbal communication skills, with the ability to translate technical findings into business-relevant language. Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks. Highly Desired Certifications: CISSP, CISM, GIAC, or equivalent. Physical Requirements Mobility & Posture Standing: Continuous Sitting: Continuous Walking: Continuous Climbing stairs: Infrequent Working indoors: Continuous Working outdoors (temperature extremes): Infrequent Working from elevated areas: Frequent Working in confined/cramped spaces: Frequent Kneeling: Infrequent Bending at the waist: Continuous Twisting at the waist: Frequent Squatting: Frequent Manual Dexterity & Strength Pinching operations: Frequent Gross motor use (fingers/hands): Continuous Firm grasping (fingers/hands): Continuous Fine manipulation (fingers/hands): Continuous Reaching overhead: Frequent Reaching in all directions: Continuous Repetitive motion (hands/wrists/elbows/shoulders): Continuous Full use of both legs: Continuous Balance & coordination (lower extremities): Frequent Lifting & Force Requirements Lift/carry 50 lbs. unassisted: Infrequent Lift/lower 50 lbs. from floor to 36”: Infrequent Lift up to 25 lbs. overhead: Infrequent Exert up to 50 lbs. of force: Frequent Examples: Transfer 100 lb. non-ambulatory patient = 50 lbs. force Push 400 lb. patient in wheelchair on carpet = 20 lbs. force Push patient stretcher one-handed = 25 lbs. force Vision & Sensory Maintain corrected vision 20/40 (one or both eyes): Continuous Recognize objects (near/far): Continuous Color discrimination: Continuous Depth perception: Continuous Peripheral vision: Continuous Hearing acuity (with correction): Continuous Tactile sensory function: Continuous Gross motor with fine motor coordination: Continuous Selected Positions: Olfactory (smell) function: Continuous Respirator use qualification: Continuous Work Environment & Conditions Effective stress management: Continuous Rotating shifts: Frequent Overtime as required: Frequent Latex-safe environment: Continuous If you like working with energetic enthusiastic individuals, you will enjoy your career with us! The Medical University of South Carolina is an Equal Opportunity Employer. MUSC does not discriminate on the basis of race, color, religion or belief, age, sex, national origin, gender identity, sexual orientation, disability, protected veteran status, family or parental status, or any other status protected by state laws and/or federal regulations. All qualified applicants are encouraged to apply and will receive consideration for employment based upon applicable qualifications, merit and business need. Medical University of South Carolina participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here: ***************************************

Primary Responsibilities: Execute and support the Risk Management Framework (RMF) lifecycle including system categorization, control selection, implementation, assessment, and authorization. Develop, maintain, and validate System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, Contingency Plans (CPs), and related compliance documentation. Conduct and lead vulnerability assessments, leveraging tools such as Nessus, ACAS, and Fortify to identify and prioritize remediation efforts. Perform continuous monitoring of security controls and produce metrics, dashboards, and evidence in support of ATO renewals and sustainment. Analyze and respond to security incidents, working with SOC personnel and SIEM tools to evaluate logs, investigate events, and contain potential threats. Conduct internal audits and risk assessments to validate the effectiveness of implemented controls and identify compliance gaps. Provide security guidance to engineering and development teams, ensuring adherence to cybersecurity standards in a DevSecOps environment. Stay informed of evolving threats, vulnerabilities, and regulatory changes to proactively enhance security postures. Coordinate with Security Control Assessors (SCAs), ISSOs, system owners, and federal stakeholders on audit readiness and policy compliance. Draft and enforce cybersecurity policies, SOPs, and standards that support mission-critical systems across hybrid environments. All other duties as assigned by management. Qualifications Bachelor's or Associate's degree in Computer Science, Math, Information Technology, Engineering, or related field. Five (5) years of directly relevant experience may substitute for two (2) years of formal education. Minimum of five (5) years of experience in experience with vulnerability scanning tools and security assessment methodologies. Minimum of five (5) years of experience with network security, firewall management, intrusion detection/prevention systems (IDS/IPS). Minimum of (5) years of experience with Security Information and Event Management (SIEM). Minimum of five (5) years of experience in the risk management framework. Basic knowledge of the following: Active Directory, UNIX, RHEL, Windows, Relational Databases. Previous support of federal government enterprise systems or DHS/DOD programs is strongly preferred. Must have an active DoD Secret Clearance.

The Information Security Specialist/Analyst III reports to the Manager, Security Operations. Under indirect supervision, the Information Security Specialist/Analyst III provides a variety of operational, compliance, and consultative functions. This position designs, implements, manages, and monitors technical, administrative, and physical controls to protect the confidentiality, integrity, and availability of the organization's information assets. This role may be required to provide rotating 24x7 on-call support. Entity Medical University Hospital Authority (MUHA) Worker Type Employee Worker Sub-Type Regular Cost Center CC005101 SYS - IS Tidelands Integration Pay Rate Type Salary Pay Grade Health-29 Scheduled Weekly Hours 40 Work Shift We are seeking a highly skilled and experienced Senior Information Security Analyst to join our team. This role is critical in safeguarding our complex healthcare IT environment and ensuring compliance with industry standards. Key Responsibilities: 45% - Network Security Monitoring and Incident Response: * Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure. Experience with Microsoft Defender for Endpoint EDR is also desired. * Analyze findings from security monitoring systems, including Intrusion Detection/Prevention Systems (ID/PS) and Security Information Event Management (SIEM) consoles, to identify and respond to potential security incidents and data breaches. * Perform cyber security incident handling, tracking and reporting. * Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts. * Respond to relevant service requests received from end users (e.g. for investigation of security events). * Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents. 20% - Security Technology management: * Configure, manage, and optimize SIEM platforms (Crowdstrike and/or Microsoft Sentinel) to enhance threat detection and response capabilities. * Lead and manage large scale security-related projects, including tool implementations, upgrades, and process improvements. 10% - Vulnerability Management: * Conduct vulnerability assessments to identify security risks and report findings to system owners. * Manage workflows to ensure that protected assets are properly assessed in a timely manner. 15% - Threat Analysis * Continuously evaluate and update analytics to counter evolving Threat Actor tactics, techniques, and procedures (TTPs). * Perform risk assessments and translate business requirements into effective security controls. * Maintain comprehensive documentation and present findings to stakeholders in a clear and actionable manner. 10% - Security Awareness: * Create and deliver security awareness training for technical and non-technical audiences. Additional Job Description Required Education/Skills/Work Experience: * A Bachelor's degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience; or 10 years of hands-on experience in information security or related IT experience required, at least 6 of which must be directly related IT security experience; or a Master's degree in information security, information assurance, computer science, or a related field, and 3 years of IT security experience required. * Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.). * Strong analytical and problem-solving skills with the ability to make decisions under pressure. * Hands-on experience with Crowdstrike EDR, SIEM, IDS/IPS, vulnerability management, and threat intelligence tools. * Familiarity with cloud security (Azure, AWS) and identity management solutions. * Advanced Understanding on the administration and securing of various operating systems and enterprise applications with advanced security best practices. * Excellent written and verbal communication skills, with the ability to translate technical findings into business-relevant language. * Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks. Highly Desired Certifications: * CISSP, CISM, GIAC, or equivalent. Physical Requirements * Mobility & Posture * Standing: Continuous * Sitting: Continuous * Walking: Continuous * Climbing stairs: Infrequent * Working indoors: Continuous * Working outdoors (temperature extremes): Infrequent * Working from elevated areas: Frequent * Working in confined/cramped spaces: Frequent * Kneeling: Infrequent * Bending at the waist: Continuous * Twisting at the waist: Frequent * Squatting: Frequent * Manual Dexterity & Strength * Pinching operations: Frequent * Gross motor use (fingers/hands): Continuous * Firm grasping (fingers/hands): Continuous * Fine manipulation (fingers/hands): Continuous * Reaching overhead: Frequent * Reaching in all directions: Continuous * Repetitive motion (hands/wrists/elbows/shoulders): Continuous * Full use of both legs: Continuous * Balance & coordination (lower extremities): Frequent * Lifting & Force Requirements * Lift/carry 50 lbs. unassisted: Infrequent * Lift/lower 50 lbs. from floor to 36": Infrequent * Lift up to 25 lbs. overhead: Infrequent * Exert up to 50 lbs. of force: Frequent * Examples: * Transfer 100 lb. non-ambulatory patient = 50 lbs. force * Push 400 lb. patient in wheelchair on carpet = 20 lbs. force * Push patient stretcher one-handed = 25 lbs. force * Vision & Sensory * Maintain corrected vision 20/40 (one or both eyes): Continuous * Recognize objects (near/far): Continuous * Color discrimination: Continuous * Depth perception: Continuous * Peripheral vision: Continuous * Hearing acuity (with correction): Continuous * Tactile sensory function: Continuous * Gross motor with fine motor coordination: Continuous * Selected Positions: * Olfactory (smell) function: Continuous * Respirator use qualification: Continuous * Work Environment & Conditions * Effective stress management: Continuous * Rotating shifts: Frequent * Overtime as required: Frequent * Latex-safe environment: Continuous If you like working with energetic enthusiastic individuals, you will enjoy your career with us! The Medical University of South Carolina is an Equal Opportunity Employer. MUSC does not discriminate on the basis of race, color, religion or belief, age, sex, national origin, gender identity, sexual orientation, disability, protected veteran status, family or parental status, or any other status protected by state laws and/or federal regulations. All qualified applicants are encouraged to apply and will receive consideration for employment based upon applicable qualifications, merit and business need. Medical University of South Carolina participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here: ***************************************

At Crypto.com, our dedication to user security is led by our highly experienced Security Team. Comprising an international roster of seasoned cybersecurity experts, our team leads the company's Security, Privacy, and Security Compliance endeavors. The team includes holders of international patents for technologies integrated in our security architecture. Under the stewardship of a distinguished CISO recognized by the Forbes Technology Council and among the Global Top 100 CISOs, our team has consistently championed industry standards, acquiring certifications like ISO27001, ISO27701, ISO22301, PCI:DSS 3.2.1 (Level 1), NIST Tier 4, and SOC 2 Type II, in addition to the MPI License from Singapore MAS. Our Chief Information Security Officer reports directly to the CEO, underscoring the prioritization of security in our organization's hierarchy. Our Security Team not only places great emphasis on credentials and expertise but also deeply values hands-on experience, rapid cognition, and dynamic learning. The challenges in the world of crypto are ever-evolving, and as such, our team prides itself on quick adaptability and robust teamwork, ensuring that we stay ahead of potential threats and always safeguard our user base. About the Role As our Security Compliance Senior Analyst, you will be tasked with security compliance activities along with our journey. You are expected to take the initiative to assist us with several security compliance programs and certifications. You are required to address and review compliance gaps and give recommendations and support on remediation activities. You will also be trusted to provide technical advice to ensure that security compliance requirements are met throughout all business units. This role requires technical knowledge of network security, especially on-prem and cloud native architectures. A familiarity with US derivatives regulatory frameworks would be advantageous. Job Responsibilities: Assist in our security compliance programs, including ISO27001, ISO27701, PCI-DSS, SOC2 Type 2, and local regulations Participate in internal security and privacy assessments, internal and external audits, compliance certifications, and risk management Provide complete and accurate responses to internal and third-party enquiries on security compliance Perform security compliance assessment activities, including periodic technical, organizational, and third-party risk and control assessments, and managing remediation activities to completion Design and manage necessary control and framework required to comply with international standards and US local regulations Identify and drive process improvements for streamlining global security compliance operations Qualifications: 3-5 years of experience in information security, privacy, IT audit or IT risk management related roles. Prefer experience with one or more of the following: In-house security and privacy operations, conducting security control assessments, risk assessments or audits. Prefer experience with any of the following: ISO27001, ISO27701, SOC1, SOC2, PCI, SOX, COSO, cloud technologies, and data protection regulations and requirements. Ability to analyze and review US and Global privacy and information security compliance and provide guidance. Holders of security-related certifications/qualifications will be an advantage: CISSP, CRISC, CISM, CISA, ISO27001 LA, CIPT, CIPP/E, or other relevant certifications Experience leading compliance initiatives and working with auditors and/or external regulators It's a plus if you: Have experience in information security and privacy management in virtual assets, fintech, online services, platform services, or global services. Have experience in establishing information security and privacy framework to meet US regulations, (CFTC, FINRA, SEC, and other US based regulators.) Are a strong commitment to personal learning and development Are detail minded with an analytical mindset Have good communication skills with an ability to explain complex technical issues to non-technical business users Have prior experience with project management Have an interest and understanding of Blockchain and AI technologies ***************** Empowered to think big. Try new opportunities while working with a talented, ambitious and supportive team.Transformational and proactive working environment. Empower employees to find thoughtful and innovative solutions.Growth from within. We help to develop new skill-sets that would impact the shaping of your personal and professional growth.Work Culture. Our colleagues are some of the best in the industry; we are all here to help and support one another.One cohesive team. Engage stakeholders to achieve our ultimate goal - Cryptocurrency in every wallet. Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up Aspire career alternatives through us - our internal mobility program offers employees a new scope. Are you ready to kickstart your future with us? BenefitsCompetitive salary Attractive annual leave entitlement including: birthday, work anniversary 401(k) plan with employer match Eligible for company-sponsored group health, dental, vision, and life/disability insurance Work Flexibility Adoption. Flexi-work hour and hybrid or remote set-up Aspire career alternatives through us. Our internal mobility program can offer employees a diverse scope. Our Crypto.com benefits packages vary depending on region requirements, you can learn more from our talent acquisition team. About Crypto.com:Founded in 2016, Crypto.com serves more than 150 million customers and is the world's fastest growing global cryptocurrency platform. Our vision is simple: Cryptocurrency in Every Wallet™. Built on a foundation of security, privacy, and compliance, Crypto.com is committed to accelerating the adoption of cryptocurrency through innovation and empowering the next generation of builders, creators, and entrepreneurs to develop a fairer and more equitable digital ecosystem. Learn more at ******************* Crypto.com is an equal opportunities employer and we are committed to creating an environment where opportunities are presented to everyone in a fair and transparent way. Crypto.com values diversity and inclusion, seeking candidates with a variety of backgrounds, perspectives, and skills that complement and strengthen our team. Personal data provided by applicants will be used for recruitment purposes only. Please note that only shortlisted candidates will be contacted.

Why PlayStation? PlayStation isn't just the Best Place to Play - it's also the Best Place to Work. Today, we're recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation 5, PlayStation 4, PlayStation VR, PlayStation Plus, acclaimed PlayStation software titles from PlayStation Studios, and more. PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team. The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Group Corporation. Sony Interactive Entertainment LLC seeks a Staff Information Security Analyst in San Mateo, CA to define strategic GRC (Governance, Risk and Compliance) input in global initiatives, including Artificial Intelligence (AI) and Machine Learning (ML) adoption, cloud security, and enterprise wide policies, ensuring resilience while balancing business and regulatory needs. Requires a Master's degree in Cybersecurity, Information Security, or related field or equivalent, and four (4) years of experience conducting risk assessments on critical information systems to maintain and manage risk registers; facilitating the Security Risk Assessment methodology, policy, strategy and process; writing security assessment reports following security breaches and detailing the associated impact; monitoring and reviewing IT Security controls to identify operational effectiveness; mapping security controls to policies, standards, procedures and processes to ensure compliance with security measures; managing security remediation efforts and tracking status of security deficiencies; translating security risk mitigation plans into actionable items to mitigate risk in coordination with technical and business teams; developing and implementing policy frameworks for emerging technologies, including AI/ML and cloud security, with governance and legal stakeholders; applying industry standards including NIST, ISO 27001, and PCI DSS in support of organizational security objectives; supporting the evaluation of third-party vendor security through documentation review and risk assessment; contributing to the enhancement of vendor onboarding and compliance workflows; and, in executing duties, utilizing Archer GRC, ServiceNow, Splunk, JIRA, Confluence, SharePoint, Palo Alto Prisma Cloud and AWS. Telecommuting and/or working from home may be permissible pursuant to company policies. Sony is an EOE. Salary range: $185,639.00 - $261,000.00/year Equal Opportunity Statement: Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy, maternity or parental status, trade union membership or membership in any other legally protected category. We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond. PlayStation is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment.

United Community is seeking an experienced Information Security Controls Analyst to serve as a subject matter expert in evaluating and strengthening our cybersecurity and technology controls. This role plays a critical part in assessing risk exposure, recommending control improvements, and ensuring alignment with regulatory standards and business risk tolerance. You'll collaborate with enterprise risk, compliance, and legal teams to provide visibility into our risk posture and drive meaningful change across the organization. What You'll Do Review and document the adequacy of security and technology controls across business and IT environments. Evaluate control posture through interviews, documentation reviews, and workflow analysis. Recommend and support implementation of risk reduction strategies via policies, procedures, and technical controls. Partner with risk management and security leadership to align controls with organizational risk tolerance. Identify control strengths and weaknesses related to privacy, security, resiliency, and compliance. Document and advocate for control improvements that balance risk with operational efficiency. Support control development across testing, QA, and production environments. Present control effectiveness reports to senior risk leadership. Stay current on regulatory requirements, internal policies, and industry best practices. Requirements For Success Experience: 3+ years in cybersecurity or IT practitioner roles. 2+ years in IT risk or controls analysis. Practical experience with risk management and IT control frameworks. Education: Bachelor's degree preferred in Information Assurance, Computer Science, Engineering, or a related technical field. Required Skills: Strong understanding of risk frameworks (CRI, COSO, RMF, COBIT, NIST). Familiarity with regulatory standards (PCI, FFIEC, SOX, HIPAA, GDPR, CCPA, GLBA). Experience with CIS CSC, ISO 2700, or NIST CSF. Excellent written and verbal communication across all organizational levels. Strong organizational skills and ability to meet SLAs. Sound judgment and decision-making in complex scenarios. High integrity, trustworthiness, and adaptability. Preferred Skills: Certifications such as CISSP, CISA, CRISC, or CISM. Technical experience with enterprise networks, applications, and directory services. Familiarity with enterprise GRC platforms. Conditions of Employment Must be able to pass a criminal background & credit check This is a full-time, non-remote position FLSA Status: Exempt We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state, or local protected class. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Pay Range USD $49,972.00 - USD $76,958.00 /Yr.