Security architect jobs in Chapel Hill, NC - 125 jobs

We provide creative and technology services and solutions in the areas of web design, customized web applications, IT Staffing and e-commerce solutions, Mobile App development and much more services to organizations in the All over the world. With well defined and documented processes and practices, we ensure successful implementation of all our projects. Our teams are highly trained in best practices of web and application developments and are managed by certified project managers who ensure highest levels of process control and management Job Description Security Architect Locations: Raleigh, NC Full Time Travel Required: Up to 10% or 1 day a week Work with IBM Cloud PaaS Offering Management on defining security roadmap Engage with clients as sponsor users to implement new security capabilities Architect technical security requirements for external compliance certifications Participate and enforce IBM PSIRT, IBM CSIRT, and IBM Secure Engineering processes Provide security technical guidance to Bluemix services and SaaS offerings that run on top of Bluemix PaaS Create external facing collateral for use by client facing teams and clients Participate in IBM Cloud Security interlocks Present in client facing/external conferences e.g., Interconnect etc. Support Bluemix sales by presenting to clients (on the phone, F2F) Mentor security team members You will work with the best of the teams in Cloud Dev, Cloud Security, Cloud Offering Management, Cloud Sales. You will be outgoing, team player, willing to mentor and lead team members, must have great sense of humor. You will have demonstrated communication skills, experience with working with customers and be able to bring customer requirements back to the team. Your extensive experience in security and compliance audit is of great advantage. This is a high performing, leading edge team that offers exciting opportunities in Cloud security. If you have it in you, then you are at the right place. Apply below immediately. Required Technical and Professional Expertise: At least 8 years of experience in technical security architecture and design skills At least 5 years of experience in External customer facing experience and skills At least 3 years experience in Compliance Standards Preferred Technical and Professional Experience: At least 3 years of experience in Cloud Security and compliance standards. Certified Information Systems Security Professional (CISSP) certification is preferred Additional Information All your inform ation will be kept confidential according to EEO guidelines.

Who We Are At Corebridge Financial, we believe action is everything. That's why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow. We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life: * We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners. * We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders. * We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future. * We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work. Who You'll Work With The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles. About The Role The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture. Responsibilities * Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization. * Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies. * Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls. * Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes. * Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams. * Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk. * Stay current on security threats, vulnerabilities, and technologies to enhance the organization's security posture. * Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows. Skills and Qualifications * 7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security. * 5+ years of enterprise architecture experience required. * Ability to create and review diagrams using tools such as Visio or Lucidchart. * Familiarity with secure architecture patterns, reference architectures, and frameworks. * Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce. * Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM. * Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation. * Expertise in threat modeling, vulnerability management, and risk assessments. * Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR. * Relevant certifications such as CISSP, CCSP, or equivalent. * Ability to work independently or collaboratively in a team-oriented environment. * Bachelor's degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles. Technical Skills * Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos. * Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies. * Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI). * Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE. * Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices. * Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations. * Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault. Common Security and Architecture Frameworks * Security Frameworks: * NIST Cybersecurity Framework (CSF) * ISO 27001 and 27002 * CSA CCM (Cloud Controls Matrix) * CIS Controls * Architecture Frameworks: * SABSA (Sherwood Applied Business Security Architecture) * TOGAF (The Open Group Architecture Framework) * AWS Well-Architected Framework Preferred Certifications * TOGAF (The Open Group Architecture Framework) * SABSA Foundation or Practitioner * CISSP-ISSAP (Concentration in Security Architecture) * Certified Cloud Security Professional (CCSP) * GIAC Security Architecture (GDSA) * AWS Certified Solutions Architect - Associate or Professional * AWS Certified Security - Specialty * Microsoft Certified: Azure Solutions Architect Expert Soft Skills * Strong analytical and problem-solving abilities. * Excellent interpersonal and collaboration skills. * Strong organizational and time management skills. * Adaptability and a commitment to continuous learning of new technologies and methodologies. * Attention to detail and dedication to delivering high-quality results. * High level of integrity and ethical conduct. Industry-Specific Experience * Experience in financial services, insurance, or other regulated environments. * Proven ability to design and implement security controls that align with industry regulations and standards. * Experience conducting security assessments and audits in regulated industries. * Familiarity with industry-specific threats and vulnerabilities to tailor security solutions. Compensation The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate's geographic location, skills, experience and other qualifications. In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan. Corebridge also offers a range of competitive benefits as part of the total compensation package, as detailed below. Work Location This position is based in Corebridge Financial's Houston, TX or Durham, NC office and is subject to our hybrid working policy, which gives colleagues the benefits of working both in an office and remotely. #LI-SAFG #LI-CW1 #LI-Hybrid Why Corebridge? At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive. Benefit Offerings Include: * Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being. * Retirement Savings: We offer retirement benefits options, which vary by location. In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately. * Employee Assistance Program: Confidential counseling services and resources are available to all employees. * Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000. * Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work. * Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it. Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy. We are an Equal Opportunity Employer Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives. Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to ******************************************. Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law. We will consider for employment qualified applicants with criminal histories, consistent with applicable law. To learn more please visit: *************************** Functional Area: IT - Information Technology Estimated Travel Percentage (%): Up to 25% Relocation Provided: No American General Life Insurance Company

Hybrid The Senior Cloud Security Architect is responsible for designing and implementing secure cloud architectures that protect enterprise workloads, data, and identities across multi-cloud environments. This role provides strategic and technical leadership in cloud security, driving adoption of zero-trust principles, secure-by-design architecture patterns, and automated security controls. The architect collaborates closely with engineering, security, DevOps, and compliance teams to evaluate risks, define standards, and ensure the organization's cloud platforms are resilient, compliant, and capable of supporting rapid innovation. **Key Responsibilities** + Define and maintain the cloud security architecture, ensuring alignment with organizational goals, regulatory requirements, and industry best practices. + Develop secure reference architectures, patterns, and guardrails for cloud workloads, data services, and platform components. + Architect solutions that embed security controls across compute, storage, networking, identity, and application layers. + Lead cloud threat modeling, security design reviews, and architectural risk assessments for new and existing systems. + Design and implement identity-first security using platforms such as Azure AD/Entra ID, AWS IAM, or Okta. + Establish and enforce RBAC/ABAC models, privileged access policies, MFA enforcement, conditional access, and identity lifecycle automation. + Architect secure authentication and authorization integrations using OIDC, OAuth2, SAML, SCIM, and workload identities. + Champion zero-trust principles across cloud environments, applications, and distributed systems. + Embed security-by-default into CI/CD pipelines through automated SAST, SCA, IaC scanning, secrets detection, and container image scanning. + Partner with platform and DevOps teams to integrate policy-as-code (OPA, Azure Policy, Sentinel) to enforce compliance and prevent misconfigurations. + Guide teams in designing secure deployment patterns, secretless authentication, and automated vulnerability remediation workflows. + Promote DevSecOps culture through enablement, documentation, and best practices. + Develop cloud security standards, security baselines, and operational best practices across multi-cloud environments. + Implement and manage CSPM, CWPP, and CIEM tools to continuously improve cloud security posture and identity governance. + Support compliance initiatives (SOC2, HIPAA, PCI, ISO 27001, FedRAMP, etc.) through policy enforcement, evidence gathering, and architectural controls. + Track emerging cloud risks, threat vectors, and vulnerabilities to ensure proactive security hardening. + Architect secure network architectures leveraging segmentation, firewalls, private endpoints, WAF, DDoS protection, and service mesh solutions. + Implement encryption strategies, key management, secrets management, and secure data flow patterns. + Work with SRE and security operations to design logging, telemetry, and cloud-native monitoring systems for threat detection and incident response. + Serve as the primary cloud security expert, advising engineers, architects, and leadership on risk, design decisions, and strategic initiatives. + Lead security design workshops and architecture review boards for major cloud projects. + Mentor engineering teams and foster a security-first mindset across the organization. + Communicate complex security concepts clearly to both technical and non-technical stakeholders. **Qualifications** + 7-12+ years in cloud security, cloud architecture, cybersecurity engineering, or similar fields. + Deep expertise with at least one major cloud provider (Azure, AWS, or GCP), with strong understanding of native security services. + Hands-on experience with IAM, network security, encryption, security automation, and cloud-native architecture. + Strong proficiency with Infrastructure-as-Code and DevSecOps tooling (Terraform, CI/CD, security scanners, policy-as-code). + Experience implementing or supporting compliance frameworks (SOC2, HIPAA, PCI, ISO 27001, etc.). + Strong scripting/programming skills (Python, PowerShell, Bash, Go preferred). + Excellent communication, analytical, and leadership abilities. **Preferred Qualifications:** + Experience with **CrowdStrike, Palo Alto Networks, CyberArk or Zscaler** platforms a plus. + Microsoft and AWS certifications. + Exposure to detection and response workflows and security operations center processes. + Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. + Excellent verbal and written communication skills, with attention to detail in documentation. + API integrations, PowerShell, and/or Python competency are highly desirable. **Ralliant Corporation Overview** Ralliant, originally part of Fortive, now stands as a bold, independent public company driving innovation at the forefront of precision technology. With a global footprint and a legacy of excellence, we empower engineers to bring next-generation breakthroughs to life - faster, smarter, and more reliably. Our high-performance instruments, sensors, and subsystems fuel mission-critical advancements across industries, enabling real-world impact where it matters most. At Ralliant we're building the future, together with those driven to push boundaries, solve complex problems, and leave a lasting mark on the world. We Are an Equal Opportunity Employer. Ralliant Corporation and all Ralliant Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Ralliant and all Ralliant Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at applyassistance@Ralliant.com. **Bonus or Equity** This position is also eligible for bonus as part of the total compensation package. **Pay Range** The salary range for this position (in local currency) is 126,700.00 - 235,300.00

The Senior Cloud Security Architect is responsible for designing and implementing secure cloud architectures that protect enterprise workloads, data, and identities across multi-cloud environments. This role provides strategic and technical leadership in cloud security, driving adoption of zero-trust principles, secure-by-design architecture patterns, and automated security controls. The architect collaborates closely with engineering, security, DevOps, and compliance teams to evaluate risks, define standards, and ensure the organization's cloud platforms are resilient, compliant, and capable of supporting rapid innovation. Key Responsibilities Define and maintain the cloud security architecture, ensuring alignment with organizational goals, regulatory requirements, and industry best practices. Develop secure reference architectures, patterns, and guardrails for cloud workloads, data services, and platform components. Architect solutions that embed security controls across compute, storage, networking, identity, and application layers. Lead cloud threat modeling, security design reviews, and architectural risk assessments for new and existing systems. Design and implement identity-first security using platforms such as Azure AD/Entra ID, AWS IAM, or Okta. Establish and enforce RBAC/ABAC models, privileged access policies, MFA enforcement, conditional access, and identity lifecycle automation. Architect secure authentication and authorization integrations using OIDC, OAuth2, SAML, SCIM, and workload identities. Champion zero-trust principles across cloud environments, applications, and distributed systems. Embed security-by-default into CI/CD pipelines through automated SAST, SCA, IaC scanning, secrets detection, and container image scanning. Partner with platform and DevOps teams to integrate policy-as-code (OPA, Azure Policy, Sentinel) to enforce compliance and prevent misconfigurations. Guide teams in designing secure deployment patterns, secretless authentication, and automated vulnerability remediation workflows. Promote DevSecOps culture through enablement, documentation, and best practices. Develop cloud security standards, security baselines, and operational best practices across multi-cloud environments. Implement and manage CSPM, CWPP, and CIEM tools to continuously improve cloud security posture and identity governance. Support compliance initiatives (SOC2, HIPAA, PCI, ISO 27001, FedRAMP, etc.) through policy enforcement, evidence gathering, and architectural controls. Track emerging cloud risks, threat vectors, and vulnerabilities to ensure proactive security hardening. Architect secure network architectures leveraging segmentation, firewalls, private endpoints, WAF, DDoS protection, and service mesh solutions. Implement encryption strategies, key management, secrets management, and secure data flow patterns. Work with SRE and security operations to design logging, telemetry, and cloud-native monitoring systems for threat detection and incident response. Serve as the primary cloud security expert, advising engineers, architects, and leadership on risk, design decisions, and strategic initiatives. Lead security design workshops and architecture review boards for major cloud projects. Mentor engineering teams and foster a security-first mindset across the organization. Communicate complex security concepts clearly to both technical and non-technical stakeholders. Qualifications 7-12+ years in cloud security, cloud architecture, cybersecurity engineering, or similar fields. Deep expertise with at least one major cloud provider (Azure, AWS, or GCP), with strong understanding of native security services. Hands-on experience with IAM, network security, encryption, security automation, and cloud-native architecture. Strong proficiency with Infrastructure-as-Code and DevSecOps tooling (Terraform, CI/CD, security scanners, policy-as-code). Experience implementing or supporting compliance frameworks (SOC2, HIPAA, PCI, ISO 27001, etc.). Strong scripting/programming skills (Python, PowerShell, Bash, Go preferred). Excellent communication, analytical, and leadership abilities. Preferred Qualifications: Experience with CrowdStrike, Palo Alto Networks, CyberArk or Zscaler platforms a plus. Microsoft and AWS certifications. Exposure to detection and response workflows and security operations center processes. Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. Excellent verbal and written communication skills, with attention to detail in documentation. API integrations, PowerShell, and/or Python competency are highly desirable.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. **Required Skills:** Security Engineer - IR Threat Intelligence Responsibilities: 1. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 2. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 3. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 4. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems 5. Engage constructively in cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions **Minimum Qualifications:** Minimum Qualifications: 6. 5+ years threat intelligence experience 7. Bachelor's degree or equivalent experience in Security 8. Familiarity with campaign tracking techniques and ability to convert the tracking results to long term countermeasures 9. Familiarity with threat modeling framework, such as Diamond Model or/and MITRE ATT&CK framework 10. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 11. Proven track record of managing and executing on short term and long term projects 12. Ability to work with a team spanning multiple locations/time zones 13. Ability to prioritize and execute tasks with minimal direction or oversight 14. Ability to think critically and qualify assessments with solid communications skills 15. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 16. Experience close collaborating with incident responders on incident investigations 17. Familiarity with malware analysis or network traffic analysis 18. Familiarity with nation-state, sophisticated criminal, or supply chain threats 19. Production of file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 20. Experience in one or more query languages such as SQL 21. Experience writing production code for threat intelligence tooling 22. Experience conducting large scale data analysis 23. Experience working across the broader security community **Public Compensation:** $154,000/year to $217,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Ask IT Consulting Inc. visualizes itself as a leader in IT services and staffing in coming years. With strong dedication and commitment of our employees, we would surpass all our competitors establishing the wider channel of media marketing building a better connection with clients. Job Description Hi, This is Sumit with Ask ITC Inc. which is backed by a $500 million Microtek group company, provides an industry leading blend of technology, business consulting, and outsourcing services. Ask IT is a minority-owed enterprise; it has been founded on providing the highest quality possible and on the devotion to customer satisfaction. Position : Information Security (Guardium) Location : Raleigh NC Duration 12 + Months Short Description: The NCDOT IT Information Security Office (ISO) requires a senior information security professional, specializing in database vulnerability and threat management (VTM) utilizing and administrating IBM Guardium. Complete Description :* The NCDOT IT Information Security Office (ISO) requires a senior information security professional, specializing in database vulnerability and threat management (VTM) and monitoring for all NCDOT IT database systems. A majority of this resource's responsibilities will be vulnerability tool administration, setup and scheduling, vulnerability assessment and risk ranking for critical IT database systems. This resource should possess senior technical skillsets as well as senior soft skills as this resource will lead database VTM efforts and strategy for the agency. This resource should possess senior skillsets in preparing reports and presentations to senior management on the status, rate of improvement and overall efficacy of database VTM and monitoring efforts across an enterprise. This resource must have experience administrating, utilizing and designing implementations of IBM Guardium on mainframe DB2 and distributed systems. Thanks and Regards, Sumit Gupta Technical Recruiter | ASK IT Consulting Inc. Women Owned Minority Certified Enterprise Address: # 33 Peachtree Court Holtsville, NY 11742 Phone: *************** Ext- 4401 Fax: *************** E: sumit.guptaaskitc.com|W: **************

Piper Companies is seeking an Information Security Manager who will be responsible for developing, implementing, and maintaining the organization's information security program. This role ensures the confidentiality, integrity, and availability of data and systems by managing security policies, risk assessments, compliance initiatives, and incident response processes. The candidate will sit 3 days a week on-site in Raleigh, NC. Responsibilities for the Information Security Manager: * Develop and enforce security policies, standards, and procedures aligned with industry best practices * Lead risk assessments and vulnerability management programs * Manage security tools such as firewalls, SIEM, endpoint protection, and DLP solutions * Monitor and respond to security incidents, coordinating investigations and remediation * Lead and mentor a team of security analysts and engineers * Collaborate with IT, DevOps, and business units to integrate security into processes and Qualifications for the Information Security Manager include: * Bachelor's degree in computer science, Information Technology, Cybersecurity, or related field * 7+ years in information security roles, with at least 1-2 years in a leadership position * Certifications such as CISSP, CISM, or equivalent preferred * Strong knowledge of security frameworks (NIST, ISO 27001) * Expertise in network security, cloud security, and IAM Compensation of the Information Security Manager: * $120,000-$165,000 * Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Holidays This job opens for applications on 1/16/2026. Applications for this job will be accepted for at least 30 days from the posting date. Information Security Manager, Risk Assessment, CISSP, CISM, NIST, network security, IAM, cloud security, leadership, firewall, DLP, Compliance, Hybrid #LI-HL1 #LI-HYBRID

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Type of Requisition: Pipeline Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: None Public Trust/Other Required: MBI (T2) Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Analytics, Collaborating, IBM Tealeaf Certifications: None Experience: 5 + years of related experience US Citizenship Required: No Job Description: Seize your opportunity to make a personal impact as a Tealeaf Security Engineer supporting the United States Postal Service. GDIT is your place to make meaningful contributions to challenging projects and grow a rewarding career. At GDIT, people are our differentiators. As a Tealeaf Security Engineer, you will help ensure today is safe and tomorrow is smarter. Our work depends on a Tealeaf Security Engineer joining our team to analyze design, develop, implement, and support code for our government customer, the United States Postal Service. HOW A TEALEAF SECURITY ENGINEER WILL MAKE AN IMPACT In this role, a typical day will include: Responsible for web application security to monitor, analyze, and report on suspicious activities in support of USPS CSOC and the Fraud team. Deploying, configuring, and maintaining Tealeaf components (cx Impact, cx Replay, cx View, Overstat, SDK, PCA, Canisters, Portal, Replay server) Supporting secure integration with websites, mobile apps, proxies, and backend services. Maintaining and optimizing sessions capture fidelity, replay accuracy, and overall system stability. This role sits at the intersection of customer experience analytics, data security, and enterprise cybersecurity, ensuring that all Tealeaf data capture and replay functions are implemented securely, reliably, and in compliance with organizational and regulatory requirements. WHAT YOU'LL NEED TO SUCCEED: Education: Bachelor's or master's degree in computer science, Information Systems, Cybersecurity or other related fields. Or equivalent work experience. NOTE: If resources do not have a relevant college degree, an additional 4 years of relevant work experience is required. Required Experience: 3+ years Tealeaf analytics and replay configuration - Events, dimensions, privacy rules, replay rules Good understanding of website and web server architecture, cloud computing, including web 2.0 (JSON, JavaScript) Understanding of AI and LLM and how it can be leveraged to automate some of the Tealeaf activities and notifications. Professional communication/presentation skills, focus on value-added delivery On-call availability for, cybersecurity issues, network impacting or network outage situations outside of business hours Effectively work within a Security team, and support and collaborate with other teams Build and maintain dashboards to monitor Tealeaf infrastructure health and capture quality. Develop alerts for anomalies, unauthorized access attempts, or abnormal capture behaviors. Support incident response teams by providing Tealeaf session data during investigations. Hands-on experience with: Tealeaf capture mechanisms (PCF, SDK, JavaScript Event Capture) Maintaining capture servers, replay servers, and data pipelines Log parsing and structured data formats Proficiency in at least one scripting language (Python, Bash, PowerShell). Experience integrating telemetry with SIEMs (Splunk, QRadar, Elastic, etc.). Security Clearance Level: Ability to obtain and maintain a Public Trust clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting This position has a U.S. residency requirement. The USPS security clearance process requires the selected candidate to have resided in the U.S. (including U.S. Territories) for the last five years as follows: U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 6 months consecutively in the last 3 years (unless they meet certain exceptions). Non-U.S. Citizens cannot have left the U.S. (including U.S. Territories) for longer than 90 days consecutively in the last 3 years. Location: Morrisville, NC Falls Church, VA Eagan, MN Remote considered GDIT IS YOUR PLACE: 401K with company match Comprehensive health and wellness packages Internal mobility team dedicated to helping you own your career. Professional growth opportunities including paid education and certifications. Cutting-edge technology you can learn from Rest and recharge with paid vacation and holidays #GDITCareers #Tealeaf #SecurityEngineer The likely salary range for this position is $128,039 - $173,229. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: Less than 10% Telecommuting Options: Onsite Work Location: USA NC Morrisville Additional Work Locations: USA VA Falls Church Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

The basics Tanium is seeking an AI Security Engineer to lead the development and execution of comprehensive testing strategies that ensure the robustness and reliability of AI-driven solutions. The AI security Engineer will be an integral part of the R&D organization and collaborate closely with AI, Software, and Security Engineers. This role is crucial in evaluating AI models, identifying potential risks, and implementing safety measures that align with industry standards and regulatory requirements. A successful candidate will be a strong technical leader who can bring their industry expertise to drive vision and development cross-functionally across all levels of the organization. Must have a successful track record of doing safety testing and evaluating AI models. This is an individual contributor role. What you'll do Develop and execute AI benchmarking and safety testing strategies for various AI models and applications. Design and implement testing protocols to assess the performance, accuracy, and safety of AI solutions. Identify potential risks associated with AI technologies and propose mitigation strategies. Collaborate with cross-functional teams to integrate safety measures into AI development processes. Analyze testing results and provide detailed reports on AI model performance and safety. Stay current with industry standards, regulatory requirements, and best practices for AI safety testing. Drive continuous improvement in AI safety testing methodologies and tools. We're looking for someone with Education Bachelor's degree in computer science, Engineering, or related field. Experience 8+ years of relevant work experience. Expertise with common security testing methodologies. Experience with regulatory compliance and industry standards for AI safety. Familiarity with AI development frameworks and tools. Strong understanding of AI and machine learning algorithms and their associated risks. Experience with LLMs, AI Agents, and Natural Language Processing (NLP) techniques, with a focus on safety testing and benchmarking. Other Strong analytical and problem-solving skills. Excellent communication and collaboration abilities. Detailed oriented individual with a deep drive to research the security of bleeding edge technology. About Tanium Tanium delivers the industry's only true real-time cloud-based endpoint management and security offering. Its platform is real-time, seamless, and autonomous, allowing security-conscious organizations to break down silos between IT and Security operations that results in reduced complexity, cost, and risk. Securing more than 32M endpoints around the world, Tanium's customers include Fortune 100 organizations, top US retailers, top US commercial banks, and branches of the U.S. Military. It also partners with the world's biggest technology companies, system integrators, and managed service providers to help customers realize the full potential of their IT investments. Tanium has been named to the Forbes Cloud 100 list for nine consecutive years and ranks on the Fortune 100 Best Companies to Work For. For more information on The Power of Certainty™, visit ************** and follow us on LinkedIn and X. On a mission. Together. At Tanium, we are stewards of a culture that emphasizes the importance of collaboration, respect, and diversity. In our pursuit of revolutionizing the way some of the largest enterprises and governments in the world solve their most difficult IT challenges, we are strengthened by our unique perspectives and by our collective actions. We are an organization with stakeholders around the world and it's imperative that the diversity of our customers and communities is reflected internally in our team members. We strive to create a diverse and inclusive environment where everyone feels they have opportunities to succeed and grow because we know that only together can we do great things. Each of our team members has 5 days set aside as volunteer time off (VTO) to contribute to the communities they live in and give back to the causes they care about most. What you'll get The annual base salary range for this full-time position is $120,000 to $355,000. This range is an estimate for what Tanium will pay a new hire. The actual annual base salary offered may be adjusted based on a variety of factors, including but not limited to, location, education, skills, training, and experience. In addition to an annual base salary, team members will receive equity awards and a generous benefits package consisting of medical, dental and vision plan, family planning benefits, health savings account, flexible spending account, transportation savings account, 401(k) retirement savings plan with company match, life, accident and disability coverage, business travel accident insurance, employee assistance programs, disability insurance, and other well-being benefits. For more information on how Tanium processes your personal data, please see our Privacy Policy.

Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada. With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada and is now the largest “Canadian-Owned” IT staffing/consulting company. Procom's areas of staffing expertise include: • Application Development • Project Management • Quality Assurance • Business/Systems Analysis • Datawarehouse & Business Intelligence • Infrastructure & Network Services • Risk Management & Compliance • Business Continuity & Disaster Recovery • Security & Privacy Specialties• Contract Staffing (Staff Augmentation) • Permanent Placement (Staff Augmentation) • ICAP (Contractor Payroll) • Flextrack (Vendor Management System) Job Description Sr. Security Analyst On behalf of our client, Procom Services is searching for a Sr. Security Analyst for a contract opportunity in Durham, NC. Sr. Security Analyst Job Details Responsible for user account administration in a multi-platform environment and ensure that administration procedures are aligned with overall Information Security policies and standards. Assist in the development of access controls to safeguard customer systems against accidental or unauthorized modification, destruction or disclosure. Maintain user access to securable customer system resources (UNIX, OS390 Mainframe, iSeries, Windows / Active Directory, Outlook Exchange) performing tasks such as: creation / configuration of user logon Ids and updating access control lists, access provisioning and access removals and access terminations. Perform detailed analysis of access requests/processes and provide recommendations for improvement to senior team members and Information Security management. Educate information / resource owners in the implementation of necessary information security controls. Perform standard and non-standard processing of security authorization requests. Work with resource owners to determine appropriate security policies for securable customer resources. Provide on-call support for after-hours system access issues and troubleshoot system access problems and failures. Report suspected information security misuse to manager or director. Assist resource owners and IT staff in understanding and responding to security access exceptions. Sr. Security Analyst Mandatory Skills - Bachelor's degree in Computer Science. - 2 years of security administration experience, or related technical system administration experience. - In lieu of degree 5 years of security administration experience. - Familiarity with audit and risk-related methodologies; such as COBIT and HIPAA. - Systems administration experience within other aspects of IT - Demonstrated security administration experience on two or more platforms (UNIX, OS390 Mainframe, iSeries, Windows / Active Directory, Outlook Exchange) - Demonstrated experience working with a managed services organization. - Demonstrated experience working with a request ticketing system, such as Triole. - Strong analytical and problem-solving skills. - Ability to present and discuss technical information to users with varying technical expertise. - Proven ability to work under stress in emergencies. Flexibility to handle pressure from many directions simultaneously. - Must be detail-oriented with a high level of accuracy. - Excellent written and verbal communication skills. - Demonstrated ability to develop and maintain collaborative working relationships across multiple teams. - Strong customer focus and the ability to manage customer expectations. - Must have strong team-oriented interpersonal skills and the ability to effectively interface with a wide variety of people. - Demonstrated commitment to continuous process improvement. - CISSP, CISA, or other security / audit / field related certifications a plus Sr. Security Analyst Start Date ASAP Sr. Security Analyst Assignment Length 7+ months Additional Information All your information will be kept confidential according to EEO guidelines. Please send your resume in Word format only.

This individual will be responsible for providing tier III support for a Managed Service Security Provider (MSSP). The successful candidate will be an integral member of the security engineering team and will need to be fully cognizant of state-of-the-art network, firewall, and other security technologies, products and solutions as well as industry best practice with regard to the design, implementation and deployment of next generations security devices. This individual should have hands-on experience configuring, installing and managing Fortigate, Cisco ASA, Checkpoint, SonicWall or Blue Coat security devices. This person must be able to communicate, and document instructions effectively with Tier 1 and 2 support teams. Excellent customer service skills and written communication are required. This position is located in Durham, NC. Qualifications: A Bachelors or Master's degree preferably in Computer Engineering/Networking, international equivalent, or equivalent experience Minimum of 5 years of experience designing, implementing and deploying next generation firewalls based on Information Security Best Practices Hands on experience in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, content filtering, etc Minimum of 7 years experience in networking, troubleshooting, and analysis tools Expert understanding and working knowledge of TCP/IP, access-control lists, VLANs, VPNs, firewalls, and dynamic routing protocols such as BGP, OSPF and EIGRP Evaluates and recommends solutions for highly complex security systems according to industry best practices to safeguard internal information systems and databases Excellent communication skills and experience working collaboratively in cross-functional teams. On-call Duties Ability to travel as needed, approximately 1-3 times a quarter. Can be both domestic and global travel. Desired: Vender Certification, preferably Fortinet/Cisco/Blue Coat Security Certifications: CCNA, CCNP-Security The ability to define security requirements and subsequently reviews complex systems to determine if they have been designed to comply with established standards The ability to conduct research and inform management of appropriate developments in firewall, IDPS, WCF, DLP, Application Control and VPN and secure networking technologies and products Compensation: A competitive package consisting of a base salary, and full company benefits Company information We help nations, governments and businesses around the world defend themselves against cybercrime, reduce their risk in the connected world, comply with regulation, and transform their operations. We do this using our unique set of solutions, systems, experience and processes - often collecting and analyzing huge volumes of data. We employ over 4,000 people across 18 countries in the Americas, APAC, UK and EMEA

Support Continuous Monitoring activities for FedRAMP and other compliance functions (NIST 800-53, ISO 27001, SOC audits) - Monitor and assess daily vulnerability reports for FedRAMP-authorized systems - Identify, track, and report emerging threats and vulnerabilities - Coordinate with internal teams for timely remediation - Ensure timely submission of FedRAMP Continuous Monitoring documentation - Liaise with internal/external auditors for FedRAMP audit support - Monitor regulatory updates and integrate changes into monitoring processes - Collaborate across teams to reduce risk and improve compliance - Vulnerability Management · Tools: Qualys, Tenable, or other (plus, procurement experience) · Critical for FedRAMP · Assess current state of vulnerabilities - Compliance · Operate compliant · Collect evidence for audits (grant work) · Continuous monitoring - Collaboration · Work with internal/external teams across company · Federal VR sponsor involvement - All other duties as assigned We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements Tools: Qualys, or Tenable, or other - Experience in control assessment, third-party risk, and/or cybersecurity - Foundational knowledge of security frameworks (FedRAMP, ISO27k, NIST, etc.) - Proven experience in vulnerability management (identification, assessment, tracking, remediation) - Hands-on experience with vulnerability scanners and SIEM platforms - Experience with security automation using scripting languages - Excellent problem-solving skills - Ability to work independently or collaboratively in a fast-paced environment - Strong verbal and written communication skills - Ability to monitor security systems for threats - Installation/troubleshooting in web-based environments - Self-motivated - Can track technical issues - Proficiency in Microsoft Power Automate (building, maintaining, troubleshooting workflows) - Engineering background - Ability to understand vulnerability management within the context of security frameworks

Who We Are: Bandwidth, a prior “Best of EC” award winner, is a global software company that helps enterprises deliver exceptional experiences through voice, messaging, and emergency services. Reaching 65+ countries and over 90 percent of the global economy, we're the only provider offering an owned communications cloud that delivers advanced automation, AI integrations, global reach, and premium human support. Bandwidth is trusted for mission-critical communications by the Global 2000, hyperscalers, and SaaS builders! At Bandwidth, your music matters when you are part of the BAND. We celebrate differences and encourage BANDmates to be their authentic selves. #jointheband What We Are Looking For: The mission of the Security Operations team is to build, deploy, and operate information security systems, infrastructure, and tools. The Senior Security Engineer will act as a leader in monitoring, administration, ticketing and support. In addition, mentoring other security team members in operations functions, as well as assisting management in growing and maturing security detection, monitoring and response. As a Senior Security Engineer, you will work closely with not only other Information Security teams but also partner with the IT, development and architecture organizations. You will be part of a talented team of security professionals who demonstrate superb technical competency, delivering mission critical infrastructure and ensuring the highest levels of availability, performance and security across the enterprise. What You'll Do: Provide technical and operational leadership for aspects of security operations, security architecture and security tools administration. Serve as an escalation point in incident response scenarios; acting as the incident lead and conducting investigations and forensics as needed. Actively engages in the performance of Incident Response activities, including but not limited to, triage, escalation, conducting post-mortem and lessons learned, as well as remediation tracking. Displays a strong knowledge and understanding of the utilization of various security tools include SIEM, SOAR, vulnerability scanners, CSPM, and EDR Advanced understanding of securing both cloud-based (AWS, GCP) and on-prem workloads including traditional architecture design and containerized environments. Identify gaps in current monitoring or operational processes and workflows, and recommend changes or enhancements to improve efficiency through security best practices.. Provide security consulting on medium to large scale projects for internal clients to ensure conformity with corporate information, security policy and standards Drive vulnerability management and remediation efforts - prioritizing issues, implementing mitigations, and designing strategic preventative and compensating controls Drives process improvement and control implementation projects in coordination with the other Enterprise teams Engages with neighboring Bandwidth technology teams to drive awareness and compliance to security policies and standards Participate in security on-call rotation, supporting off-hours general security incidents and production systems. Maintain working relationships with business partners to understand business processes, and the impact of implementing security controls in their ability to do business Train and mentor team members for security operations, support, and/or administration tasks What You Need: Education: Degree in an IT or Information Security discipline or other equivalent combination of education and/or experience that is focused on IT Security and Technology Operations. One or more of the following certifications: GIAC Information Security Professional (GISP) Certified Information Systems Security Professional (CISSP) AWS Certified Security Specialty Experience: 5 or more years of specific Security Operations experience required. 5 or more years SIEM, SOAR and vulnerability management experience, including integrating endpoints 3 or more years of incident response experience across a variety of environments and resource types: on-prem, cloud, endpoints, servers, containers, etc. Knowledge: Familiarity with cutting-edge security technologies such as Zero-Trust Network Access, SSO, Endpoint Detection and Response (EDR), and Security Incident and Event Management required (SIEM). Experience working in multi-cloud organizations utilizing cloud security posture management (CSPM) and cloud-native security tools with a “shift-left” DevSecOps mentality Experience working with a third-party Managed Security Service Provider (MSSP) Skills: Proficient in Windows and Linux operating systems. Ability to analyze a complex technical environment and quickly build a conceptual understanding of how the pieces all fit together Proficient in automation and scripting languages (Python, Bash, etc) Ability to analyze and correlate information from multiple sources to determine and articulate potential risk to the business in non-technical terms. Team player with strong communication skills, ability to collaborate with highly technical colleagues and non-technical end-users at a level they can understand. Bonus Points: Experience: Hands-on experience with Wiz and CrowdStrike - cloud security and container security . Hands-on experience with AWS / cloud security tools (Guard Duty, Amazon Inspector, AWS Shield,Wiz, Lacework, etc.) Strong knowledge of SIEM tools and logging (Splunk, Sumo Logic, Data Dog, Qualys) Understanding of maintaining and administering endpoint detection response tools (CrowdStrike, FireEye, etc) Foundational knowledge of Ai - LLMs (language learning models), MCP (model context protocol) and the impacts of these on securing organizational resources. Knowledge: Understanding of authentication and authorization mechanisms. Familiar with data classification, data protection, and secure data handling practices. Understanding of regulatory requirements (SOX, GDPR, HIPAA … ) The Whole Person Promise: At Bandwidth, we're pretty proud of our corporate culture, which is rooted in our “Whole Person Promise.” We promise all employees that they can have meaningful work AND a full life, and we provide a work environment geared toward enriching your body, mind, and spirit. How do we do that? Well… 100% company-paid Medical, Vision, & Dental coverage for you and your family with low deductibles and low out-of-pocket expenses. All new hires receive four weeks of PTO. PTO Embargo. When you take time off (of any kind!) you're embargoed from working. Bandmates and managers are not allowed to interrupt your PTO - not even with email. Additional PTO can be earned throughout the year through volunteer hours and Bandwidth challenges. “Mahalo moments” program grants additional time off for life's most important moments like graduations, buying a first home, getting married, wedding anniversaries (every five years), and the birth of a grandchild. 90-Minute Workout Lunches and unlimited meetings with our very own nutritionist. Are you excited about the position and its responsibilities, but not sure if you're 100% qualified? Do you feel you can work to help us crush the mission? If you answered ‘yes' to both of these questions, we encourage you to apply! You won't want to miss the opportunity to be a part of the BAND. Applicant Privacy Notice

We provide creative and technology services and solutions in the areas of web design, customized web applications, IT Staffing and e-commerce solutions, Mobile App development and much more services to organizations in the All over the world. With well defined and documented processes and practices, we ensure successful implementation of all our projects. Our teams are highly trained in best practices of web and application developments and are managed by certified project managers who ensure highest levels of process control and management Job Description Security Architect Locations: Raleigh, NC Full Time Travel Required: Up to 10% or 1 day a week Work with IBM Cloud PaaS Offering Management on defining security roadmap Engage with clients as sponsor users to implement new security capabilities Architect technical security requirements for external compliance certifications Participate and enforce IBM PSIRT, IBM CSIRT, and IBM Secure Engineering processes Provide security technical guidance to Bluemix services and SaaS offerings that run on top of Bluemix PaaS Create external facing collateral for use by client facing teams and clients Participate in IBM Cloud Security interlocks Present in client facing/external conferences e.g., Interconnect etc. Support Bluemix sales by presenting to clients (on the phone, F2F) Mentor security team members You will work with the best of the teams in Cloud Dev, Cloud Security, Cloud Offering Management, Cloud Sales. You will be outgoing, team player, willing to mentor and lead team members, must have great sense of humor. You will have demonstrated communication skills, experience with working with customers and be able to bring customer requirements back to the team. Your extensive experience in security and compliance audit is of great advantage. This is a high performing, leading edge team that offers exciting opportunities in Cloud security. If you have it in you, then you are at the right place. Apply below immediately. Required Technical and Professional Expertise: At least 8 years of experience in technical security architecture and design skills At least 5 years of experience in External customer facing experience and skills At least 3 years experience in Compliance Standards Preferred Technical and Professional Experience: At least 3 years of experience in Cloud Security and compliance standards. Certified Information Systems Security Professional (CISSP) certification is preferred Additional Information All your inform ation will be kept confidential according to EEO guidelines.

Candidates can live within commutable distance to any Slalom office in the US. We have a hybrid and flexible environment. Who You'll Work With As a modern technology company, we've never met a technical challenge we didn't like. We enable our clients to learn from their data, create incredible digital experiences, and make the most of new technologies. We blend design, engineering, and analytics expertise to build the future. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are seeking an experienced AWS Security Architect with deep expertise in AWS cloud architecture, native & external security services, and regulatory compliance to provide advisory and delivery services aligned with the standards of a top-tier consulting firm. This role will partner with enterprise clients to design, assess, and implement secure AWS environments that meet business, compliance, and regulatory requirements. This role requires a strong blend of hands-on technical capabilities, architectural leadership, and client-facing advisory skills. As a trusted advisor, you will lead security strategy sessions, assess current cloud security postures, and deliver AWS-native and third-party solutions that align with best practices. You will work across multiple industry verticals, collaborating with engineering, security, risk, and compliance teams, and guiding clients through security transformation journeys and ensuring AWS adoption is secure, compliant, and resilient. This is a strategic technical consulting role suited for individuals who are passionate about cloud security, compliance, and helping clients adopt secure architectures in regulated environments. Key Responsibilities * Serve as a client-facing advisor, providing strategic guidance on cloud security transformation, governance, and operating models. * Lead cloud security assessments, maturity evaluations, and gap analyses, producing recommendations aligned with regulatory frameworks (e.g., NIST, ISO 27001, CIS, PCI DSS, HIPAA). * Design and implement AWS-native security architectures leveraging IAM, KMS, CloudTrail, Security Hub, GuardDuty, Macie, Detective, and Control Tower. * Establish governance, risk, and compliance (GRC) frameworks for AWS adoption, including policy-as-code and automated compliance monitoring. * Define and implement identity and access management (IAM) strategies, including federation, least privilege, and Zero Trust principles. * Guide clients in adopting secure application and data architectures, including encryption, data loss prevention, and secure API integrations. * Support incident response and forensics readiness through AWS-native logging, monitoring, and detection services. * Collaborate with DevOps and platform teams to integrate security into DevOps pipelines (DevSecOps) with automation for vulnerability management, code scanning, and compliance validation. * Collaborate with client executives to articulate cloud security roadmaps, business cases, and investment priorities. * Partner with internal teams to develop accelerators, templates, and reusable security patterns that improve time-to-value for clients. * Author client deliverables such as risk assessments, security architecture design documents, gap analyses, and roadmap plans. * Provide thought leadership via security workshops, executive briefings, and architecture reviews. * Stay current with AWS service releases, regulatory changes, and emerging cyber risks to inform recommendations. Core Qualifications * 8+ years of IT security experience with at least 4+ years focused on AWS security. * Proven consulting experience delivering security assessments, compliance programs, and cloud security roadmaps for enterprise clients. * Strong expertise in AWS security services (i.e. IAM, KMS, CloudTrail, GuardDuty, Macie, Security Hub, Detective, WAF, Shield). * Deep knowledge of cloud governance, risk management, and regulatory compliance frameworks (NIST, ISO, CIS Benchmarks, SOC 2, HIPAA, PCI DSS) and experience designing or assessing AWS environments aligned with these frameworks. * Hands-on experience embedding security into DevOps/DevSecOps pipelines and Infrastructure-as-Code (Terraform, CloudFormation, AWS CDK). * Experience designing ransomware detection, response, and business resilience strategies in AWS including backup, recovery, and isolation patterns. About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position, the target base salary pay range in the following locations: Boston, Houston, Los Angeles, Orange County, Seattle, San Diego, Washington DC, New York, New Jersey, for Consultant level is $119,000-$147,500 and for Senior Consultant level it is $136,500-$169,500 and for Principal level it is $151,000-$187,500. In all other markets, the target base salary pay range for Senior Consultant level it is $125,000-$155,500 and for Principal level it is $138,500-$172,000. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. We will accept applications until 3/31/2026 or until the positions are filled. We are committed to pay transparency and compliance with applicable laws. If you have questions or concerns about the pay range or other compensation information in this posting, please contact us at: ********************. EEO and Accommodations Slalom is an equal opportunity employer and is committed to attracting, developing and retaining highly qualified talent who empower our innovative teams through unique perspectives and experiences. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team or contact ****************************** if you require accommodations during the interview process.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada. With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada and is now the largest “Canadian-Owned” IT staffing/consulting company. Procom's areas of staffing expertise include: • Application Development • Project Management • Quality Assurance • Business/Systems Analysis • Datawarehouse & Business Intelligence • Infrastructure & Network Services • Risk Management & Compliance • Business Continuity & Disaster Recovery • Security & Privacy Specialties• Contract Staffing (Staff Augmentation) • Permanent Placement (Staff Augmentation) • ICAP (Contractor Payroll) • Flextrack (Vendor Management System) Job Description Sr. Security Analyst On behalf of our client, Procom Services is searching for a Sr. Security Analyst for a contract opportunity in Durham, NC. Sr. Security Analyst Job Details Responsible for user account administration in a multi-platform environment and ensure that administration procedures are aligned with overall Information Security policies and standards. Assist in the development of access controls to safeguard customer systems against accidental or unauthorized modification, destruction or disclosure. Maintain user access to securable customer system resources (UNIX, OS390 Mainframe, iSeries, Windows / Active Directory, Outlook Exchange) performing tasks such as: creation / configuration of user logon Ids and updating access control lists, access provisioning and access removals and access terminations. Perform detailed analysis of access requests/processes and provide recommendations for improvement to senior team members and Information Security management. Educate information / resource owners in the implementation of necessary information security controls. Perform standard and non-standard processing of security authorization requests. Work with resource owners to determine appropriate security policies for securable customer resources. Provide on-call support for after-hours system access issues and troubleshoot system access problems and failures. Report suspected information security misuse to manager or director. Assist resource owners and IT staff in understanding and responding to security access exceptions. Sr. Security Analyst Mandatory Skills - Bachelor's degree in Computer Science. - 2 years of security administration experience, or related technical system administration experience. - In lieu of degree 5 years of security administration experience. - Familiarity with audit and risk-related methodologies; such as COBIT and HIPAA. - Systems administration experience within other aspects of IT - Demonstrated security administration experience on two or more platforms (UNIX, OS390 Mainframe, iSeries, Windows / Active Directory, Outlook Exchange) - Demonstrated experience working with a managed services organization. - Demonstrated experience working with a request ticketing system, such as Triole. - Strong analytical and problem-solving skills. - Ability to present and discuss technical information to users with varying technical expertise. - Proven ability to work under stress in emergencies. Flexibility to handle pressure from many directions simultaneously. - Must be detail-oriented with a high level of accuracy. - Excellent written and verbal communication skills. - Demonstrated ability to develop and maintain collaborative working relationships across multiple teams. - Strong customer focus and the ability to manage customer expectations. - Must have strong team-oriented interpersonal skills and the ability to effectively interface with a wide variety of people. - Demonstrated commitment to continuous process improvement. - CISSP, CISA, or other security / audit / field related certifications a plus Sr. Security Analyst Start Date ASAP Sr. Security Analyst Assignment Length 7+ months Additional Information All your information will be kept confidential according to EEO guidelines. Please send your resume in Word format only.