Security architect jobs in El Paso, TX - 1,544 jobs

At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates. Responsibilities: Act as a central Information Security point of contact for the Data Protection Service, Endpoint Security and Cyber Intelligence services Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management Serve as an expert in Capital One's Information Security capabilities, solutions, policies, procedures and standards Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes Escalate and manage cyber security risk Provide ad hoc support on special Information Security hot topics for the business Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment Work with line of business leadership to anticipate their objectives and needs to better serve the line of business About You: You have a desire to work in a very fast moving, forward leaning, and modern computing environment You have a deep passion for Securing modern computing platforms You have a strong desire to continually learn about new technologies You possess strong conceptual thinking and communication skills You are able to work well under minimal supervision You are a demonstrated leader with team-oriented interpersonal skills and the ability to interface effectively with a broad range of people and roles, including upper management, IT leaders, and technology vendors You maintain calmness and clarity of thought under pressure and ability to maintain confidentiality You have a deep understanding of strategic business objectives and the ability to drive results toward those objectives Basic Qualifications: High School Diploma, GED or equivalent certification At least 6 years of experience working in cybersecurity or information technology At least 5 years of experience providing guidance and oversight of cybersecurity concepts At least 5 years of experience performing security risk assessments or security architecture reviews At least 5 years of experience with architecture, software design, networking, or cloud infrastructure At least 4 years of experience with cloud security engineering At least 4 years of experience in securing a public cloud environment Preferred Qualifications: Bachelor's Degree Experience building software utilizing public cloud (e.g. AWS, GCP, Azure) Familiarity with Cloud patch management practices such as system rehydration and image management Experience utilizing Agile methodologies Experience with Software Security Architecture Experience with Application Security Experience with Threat Modeling Experience with Penetration Testing or Vulnerability Management Experience with integrating SaaS products into an Enterprise Environment Experience with securing Container services Splunk-Fu / Enterprise Monitoring experience Financial services industry experience Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP) Experience in Offensive or Defensive Security techniques Experience in a regulated environment At this time, Capital One will not sponsor a new applicant for employment authorization, or offer any immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, or another type of work authorization). The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. McLean, VA: $229,900 - $262,400 for Sr Manager, Cyber Technical Plano, TX: $209,000 - $238,500 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. This role is also eligible to earn performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI). Incentives could be discretionary or non discretionary depending on the plan. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at ************** or via email at RecruitingAccommodation@capitalone.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to ********************** Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

We are seeking an experienced and strategic Director of Data Security and Governance to lead our comprehensive data protection program. This critical role involves establishing and enforcing data security policies to meet stringent regulatory requirements, including the International Traffic in Arms Regulations (ITAR), and fulfilling complex data security obligations within commercial contracts. You will be responsible for building our data governance framework from the ground up, including implementing a robust data classification program and deploying modern security solutions like Data Security Posture Management (DSPM) and Data Rights Management (DRM)., in addition to managing the DLP program. Detailed Description Performs tasks such as, but not limited to, the following: Strategy & Policy Development: Design, implement, and oversee the enterprise-wide data security and governance strategy, policies, and standards. Compliance & Regulatory Oversight: Serve as the primary expert on data security requirements for ITAR and other government regulations. Ensure all data handling processes and systems are compliant with contractual and legal obligations. Data Classification Program: Develop and manage a corporate data classification policy and program. Work with business units to identify, classify, and protect sensitive and regulated data throughout its lifecycle. Technology Implementation: Lead the selection, implementation, and operationalization of a Data Security Posture Management (DSPM) solution to provide visibility and control over our data landscape. Data Rights Management (DRM): Implement and manage a DRM solution to control access to and usage of sensitive data, ensuring that only authorized individuals can access and interact with protected information according to defined policies. Risk Management: Conduct regular data security risk assessments, identify vulnerabilities, and oversee remediation efforts to mitigate risks. Incident Response: Develop and lead the data-focused components of the incident response plan, including containment, investigation, and reporting of data breaches. Collaboration & Training: Partner closely with Legal, IT, Engineering, and business stakeholders to embed data security principles into their operations. Develop and deliver training programs to raise awareness about data governance and security best practices. Typical Experience Minimum of 10 years of experience in cybersecurity and data governance, with at least 4 years in a leadership role. Proven track record of successfully implementing a data classification program across an enterprise. Direct experience with the procurement and deployment of DSPM and DRM technologies. Skills & Knowledge: Deep understanding of data protection principles, including encryption, access control, data loss prevention (DLP), and data discovery. Expert knowledge of security frameworks such as NIST Cybersecurity Framework, NIST 800-171, and ISO 27001. Excellent project management skills and the ability to lead cross-functional teams. Strong communication skills, with the ability to articulate complex security concepts to technical and non-technical audiences. Certifications (Preferred): Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Privacy Professional (CIPP) Typical Education Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field, or equivalent experience. A Master's degree is a plus. Educational requirements may vary by geography. Physical Demands Duties of this position are performed in a normal office environment. Duties may require extended periods of sitting and sustained visual concentration on a computer monitor or on numbers and other detailed data. Repetitive manual movements (e.g., data entry, using a computer mouse, using a calculator, etc.) are frequently required. Notes This job description is not intended to be an exhaustive list of all duties and responsibilities of the position. Employees are held accountable for all duties of the job. Job duties and the % of time identified for any function are subject to change at any time. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Celestica's policy on equal employment opportunity prohibits discrimination based on race, color, creed, religion, national origin, gender, sexual orientation, gender identity, age, marital status, veteran or disability status, or other characteristics protected by law. This policy applies to hiring, promotion, discharge, pay, fringe benefits, job training, classification, referral and other aspects of employment and also states that retaliation against a person who files a charge of discrimination, participates in a discrimination proceeding, or otherwise opposes an unlawful employment practice will not be tolerated. All information will be kept confidential according to EEO guidelines. COMPANY OVERVIEW: Celestica (NYSE, TSX: CLS) enables the world's best brands. Through our recognized customer-centric approach, we partner with leading companies in Aerospace and Defense, Communications, Enterprise, HealthTech, Industrial, Capital Equipment and Energy to deliver solutions for their most complex challenges. As a leader in design, manufacturing, hardware platform and supply chain solutions, Celestica brings global expertise and insight at every stage of product development - from drawing board to full-scale production and after-market services for products from advanced medical devices, to highly engineered aviation systems, to next-generation hardware platform solutions for the Cloud. Headquartered in Toronto, with talented teams spanning 40+ locations in 13 countries across the Americas, Europe and Asia, we imagine, develop and deliver a better future with our customers. Celestica would like to thank all applicants, however, only qualified applicants will be contacted. Celestica does not accept unsolicited resumes from recruitment agencies or fee based recruitment services. This location is a US ITAR facility and these positions will involve the release of export controlled goods either directly to employees or through the employee's movement within the facility. As such, Celestica will require necessary information from all applicants upon an applicant's acceptance of employment to determine if any export control exemptions or licenses must be filed.

Active Clearance Required: TS/SCI In this role, you will be offering knowledge, and guidance as a security subject matter expert and advisor to both civilian security personnel and senior leadership. Your support will extend to facilitating government inspections and audits, ensuring compliance with regulations and standards. Moreover, you will be entrusted with conducting thorough reviews of current policies and Standard Operating Procedures (SOP), presenting well-crafted SOP drafts and proposals to government decision-makers, thereby contributing significantly to our continuous improvement initiatives. Job Requirements: Skills / Experience Required 10+ years of relevant experience within the Department of Defense (DoD), offering a deep understanding of the intricacies of defense operations Spearheads the implementation of robust processes across Physical Security (PHYSEC), Information Security (INFOSEC), Personnel Security (PERSEC), and Industrial Security (INDUSEC), ensuring comprehensive coverage and adherence to regulatory standards Assumes responsibility for managing the complete spectrum of security programs for program security, ensuring seamless coordination and execution to safeguard critical assets and information Directs the Security Education, Training, and Awareness program, crafting tailored training materials and facilitating widespread dissemination to foster a culture of security awareness among the workforce Conducts thorough assessments of security vulnerabilities throughout acquisition and development processes, proactively identifying preventive measures to mitigate risks upon system completion and transition Supports customer's security program by conducting preliminary inquiries, responding to and reporting security incidents within the organization Coordinates with Program Management on program access requests (PAR) and SCI nominations and ensuring proper vetting of candidates before access approval Supports and maintains sponsorship over multiple mission partner SCI indoctrinated individuals ensuring training and reporting, are executed properly at each partner facility Reviews Program Security Classification Guides (SCGs) for administrative, formatting and marking purposes in coordination with responsible PM Adapts and enhances Standard Operating Procedures (SOP) for all security programs, delivering training to empower the workforce in implementing procedures that bolster the protection of government resources, personnel, and facilities in dynamic threat environments Education / Certifications Master of Arts (MA), Master of Science (MS), or Master of Engineering (ME) degree, with the flexibility to consider extensive work experience as a substitute for formal education. Center for Development of Security excellence (CDSE) Security Specialist Course The Security Professional Education Development (SPēD) Certification Program Keenbee Talent Solutions is a Native Alaskan Women owned sdb specializing in the placement of highly skilled professionals in Accounting, Finance, IT/MIS and Cleared Federal Government positions. Keenbee Talent has been in business since 1997 servicing New Mexico and the surrounding states with high results. Keenbee Talent Solutions is an equal opportunity employment agency. We do not discriminate based on race, color, national origin, religion, ancestry, sex, age, disability, serious medical condition, spousal affiliation, sexual orientation, gender identity, or other classifications protected under the law.

Dynamics 365 Field Service Architect Duration: 10 Month Contract Key Responsibilities • Design and architect new cloud-oriented solutions on Microsoft Dynamics 365 Field Service Module. • Perform feasibility assessments, planning, testing and technical documentation for our implementation teams on the Microsoft Dynamics platform. • Review business, functional and technical requirements and translate these into technical solutions • Lead technical delivery of Dynamics FS implementations including security, integration, data migration and other solution components, while ensuring that application and solution design best practices are followed; • Monitor the progress of architecture projects and ensure the agreed design is followed by the implementation team • Document, maintain and update governance documentation and best practices. • Build and maintain custom components such as plugins, workflows, web resources, Power Automate flows, and Power Apps (Canvas & Model-Driven). • Design and implement data integrations using Azure Logic Apps, Azure Functions, REST APIs, and custom connectors. • Collaborate with solution architects and business analysts to transform requirements into scalable, technical solutions. • Optimize performance, troubleshoot issues, and ensure best practices in CRM development. • Support migration activities, including data migration, system upgrades, and environment management. • Participate in code reviews, enforce coding standards, and mentor junior developers. • Work with Azure DevOps for source control, CI/CD pipelines, and release management. • Good in Program Management • Able to develop technical documentation and presentations and explain the benefits of designed solutions to stakeholders; • Able to make decisions on architectural design and analyze the impact on cost, performance, reliability and other KPIs; • Able to identify the strengths and weaknesses of designed solutions Required Qualifications • Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience). • 10+ Years of Experience in Dynamics 365 CE/CRM Solution Design and development with a focus on Field Services. • 8+ Years Development experience in Azure and a basic Web stack (.Net, C#, HTML, CSS, JavaScript) is required Experience in Field Service RSO (Resource Scheduling Optimization). • 8+ Years Experience in creating Plugins, Workflows and Custom Actions. • 8+ Years Experience in customizations and integrations within the rest of Microsoft Ecosystem. • 8+ Years Experience in large-scale enterprise applications and design patterns

Must Have Technical/Functional Skills Strong Background in Enterprise Data Warehouse (EDW) concepts, dimensional modelling & performance tuning Proficiency in Teradata tools & utilities - TPT,BTEQ,FASTLOAD,SASDI Advanced SQL skills and Experience with ETL tools (Informatica, SAS DI) Familiarity with Teradata Vantage features like QueryGrid, NOS, and clear Scape Analytics Hands on coding in Python or similar Scripting Languages 5+ Years of Experience in Teradata Solutions Teradata certified Professional (preferred) Roles & Responsibilities Solution Design & Architecture Lead the design and architecture of enterprise data Wearhouse solution using Teradata Develop integration strategies and performance optimization technique Ensure solutions to comply with enterprise architecture standards and best practices Develop reusable python scripts for automation, data transformation and validation Platform Strategy & governance Evaluate Teradata platform features and create technology roadmaps Establish platform standards , integration patterns and governance frameworks Perform POC for new capabilities and onboard pilot projects Technical leadership Provide guidance on Terada utilities Collaborate with cross functional teams Optimize queries, indexing and workload management for high performance Data Management Oversee ETL/ELT Processes and data migration strategies Ensure Data quality , security and compliance with regulatory requirements Implement best practices for data lifecycle management and metadata governance Generic Managerial Skills, If any Leadership quality & good communication skill

Project Description: We are supporting long term strategic initiative to modernize and scale Frontend technology stack for industrial platform - a set of enterprise web and mobile applications in the electric utility space. This permanent full time role focuses on designing and evolving a composable user interface architecture with strong emphasis on reusability, performance, and future-ready web standards. Responsibilities: Lead the definition and evolution of UI architecture for web and mobile applications. Provide technical and architectural guidance to development teams in an agile environment. Build and maintain core UI frameworks and component libraries (Angular-centric). Collaborate with backend and data teams to optimize API usage and performance. Establish UI patterns, coding standards, and governance models. Mentor engineers on architectural best practices and performance optimization. Work closely with UX designers to ensure design-to-implementation alignment. Drive adoption of modern UI technologies, including micro-frontends and low-code/no-code configuration paradigms. Mandatory Skills Description: Extensive experience with UI architecture and component library development (Angular and modern frontend frameworks). Strong mastery of JavaScript/TypeScript and responsive, scalable frontend design. Hands-on experience with micro-frontend patterns and composable UIs. Familiarity with GraphQL integration and performance optimization techniques. Deep understanding of responsive design, cross-browser compatibility, performance tuning, and accessibility (e.g., WCAG). Minimum ~10+ years of relevant experience in UI/software engineering and architecture.

Job Title: Duckcreek Policy Architect Skills: Duckcreek, Policy, DCOD Experience: 12+ years Duration: Fulltime We at Coforge are hiring a Duckcreek Policy Architect with the following skillset : Minimum of 12 years of experience in software development, with at least 5 years in architecture roles. In-depth architectural knowledge of Policy, encompassing all components such as Author, Rating, Referral, Express, Server, User Admin, TransACT, and Party 360 within Duck Creek product versions 8.x or the latest versions. Hands-on experience with Duck Creek OnDemand (DCOD) and related technologies. Demonstrated ability to work effectively within the P&C insurance domain, specifically with applications and workflows related to Policy, Billing, Claims, and integrated systems. Strong technical leadership and communication skills for successful project delivery and client interaction. Experience with Active Delivery Migration is a Plud Experience with Remediation Activities Required for DCOD Active Delivery to identify, analyze, and resolve issues or gaps within existing systems, ensuring optimal performance and compliance. Hands-on familiarity with Express 3 is highly desirable

Who we are Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world's most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We're looking for talented team members who want to Dream. Do. Grow. with us. An important part of the Toyota family is Toyota Financial Services (TFS), the finance and insurance brand for Toyota and Lexus in North America. While TFS is a separate business entity, it is an essential part of this world-changing company- delivering on Toyota's vision to move people beyond what's possible. At TFS, you will help create best-in-class customer experience in an innovative, collaborative environment. To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position at this time. Who we're looking for This role is responsible of the design, implementation, and maintenance of SAP security across multiple platforms. This role is critical to ensure secure access, compliance, and operational integrity of our SAP landscape, including S/4 HANA, Fiori, and MDG. What you'll be doing Design and manage SAP security roles and authorizations across S/4 HANA, Fiori, Solution Manager, MDG. Configure and maintain SAP GRC Access Control modules (ARA, ARM, BRM). Implement and monitor segregation of duties (SOD) policies and controls. Troubleshoot and resolve authorization issues across SAP modules. Collaborate with functional and technical teams to align security with business processes. Support SAP upgrades, migrations, and transformation initiatives. Conduct periodic audits and ensure compliance with internal and external regulations. Document security procedures, role matrices, and access control policies. What you bring Bachelor's degree in computer science, Information Systems, or related field. 10+ years of hands-on SAP security experience. Strong knowledge of SAP GRC, Fiori authorization concepts, and HANA DB security. Experience with SAP Activate methodology and UI/UX aspects of SAP Security. Familiarity with compliance frameworks (SOX, GDPR, etc.). Excellent problem-solving, communication, and documentation skills. Added bonus if you have SAP Certified Technology Associate - System Security. Experience with SAP BTP and cloud-based security models. Knowledge of identity management tools and integration. What We Bring During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include: A work environment built on teamwork, flexibility, and respect. Professional growth and development programs to help advance your career, as well as tuition reimbursement. Team Member Vehicle Purchase Discount. Toyota Team Member Lease Vehicle Program (if applicable). Comprehensive health care and wellness plans for your entire family. Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute. Paid holidays and paid time off. Referral services related to prenatal services, adoption, childcare, schools, and more. Tax-Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA). Relocation assistance (if applicable). Belonging at Toyota Our success begins and ends with our people. We embrace all perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members' efforts to dream, do and grow without questioning that they belong. Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law. Have a question, need assistance with your application or do you require any special accommodations? Please send an email to *****************************.

Who we are Collaborative. Respectful. A place to dream and do. These are just a few words that describe what life is like at Toyota. As one of the world's most admired brands, Toyota is growing and leading the future of mobility through innovative, high-quality solutions designed to enhance lives and delight those we serve. We're looking for talented team members who want to Dream. Do. Grow. with us. An important part of the Toyota family is Toyota Financial Services (TFS), the finance and insurance brand for Toyota and Lexus in North America. While TFS is a separate business entity, it is an essential part of this world-changing company- delivering on Toyota's vision to move people beyond what's possible. At TFS, you will help create best-in-class customer experience in an innovative, collaborative environment. To save time applying, Toyota does not offer sponsorship of job applicants for employment-based visas or any other work authorization for this position at this time. Who we're looking for This role is responsible of the design, implementation, and maintenance of SAP security across multiple platforms. This role is critical to ensure secure access, compliance, and operational integrity of our SAP landscape, including S/4 HANA, Fiori, and MDG. What you'll be doing * Design and manage SAP security roles and authorizations across S/4 HANA, Fiori, Solution Manager, MDG. * Configure and maintain SAP GRC Access Control modules (ARA, ARM, BRM). * Implement and monitor segregation of duties (SOD) policies and controls. * Troubleshoot and resolve authorization issues across SAP modules. * Collaborate with functional and technical teams to align security with business processes. * Support SAP upgrades, migrations, and transformation initiatives. * Conduct periodic audits and ensure compliance with internal and external regulations. * Document security procedures, role matrices, and access control policies. What you bring * Bachelor's degree in computer science, Information Systems, or related field. * 10+ years of hands-on SAP security experience. * Strong knowledge of SAP GRC, Fiori authorization concepts, and HANA DB security. * Experience with SAP Activate methodology and UI/UX aspects of SAP Security. * Familiarity with compliance frameworks (SOX, GDPR, etc.). * Excellent problem-solving, communication, and documentation skills. Added bonus if you have * SAP Certified Technology Associate - System Security. * Experience with SAP BTP and cloud-based security models. * Knowledge of identity management tools and integration. What We Bring During your interview process, our team can fill you in on all the details of our industry-leading benefits and career development opportunities. A few highlights include: * A work environment built on teamwork, flexibility, and respect. * Professional growth and development programs to help advance your career, as well as tuition reimbursement. * Team Member Vehicle Purchase Discount. * Toyota Team Member Lease Vehicle Program (if applicable). * Comprehensive health care and wellness plans for your entire family. * Toyota 401(k) Savings Plan featuring a company match, as well as an annual retirement contribution from Toyota regardless of whether you contribute. * Paid holidays and paid time off. * Referral services related to prenatal services, adoption, childcare, schools, and more. * Tax-Advantaged Accounts (Health Savings Account, Health Care FSA, Dependent Care FSA). * Relocation assistance (if applicable). Belonging at Toyota Our success begins and ends with our people. We embrace all perspectives and value unique human experiences. Respect for all is our North Star. Toyota is proud to have 10+ different Business Partnering Groups across 100 different North American chapter locations that support team members' efforts to dream, do and grow without questioning that they belong. Applicants for our positions are considered without regard to race, ethnicity, national origin, sex, sexual orientation, gender identity or expression, age, disability, religion, military or veteran status, or any other characteristics protected by law. Have a question, need assistance with your application or do you require any special accommodations? Please send an email to *****************************.

Lead SAP Security Administrator needs 12+ years experience Lead SAP Security Administrator requires: Hybrid, onsite Dallas, TX; Mason, OH; Foothill Ranch, CA SAP Security skills SAP ECC 6.0 and Business Intelligence 7.0 Lead SAP Security Administrator duties: Evaluate practices of third-party vendors and service providers. Analyze the collected information to assess the overall risk profile of third parties. Evaluate the security posture and GRC practices of third-party vendors and service providers. Evaluate the TPRM program currently in place. Recommend improvements to TPRM program and operational handbook. Review third party risk reports and choose the top 10 risks which must be remediated. Support remediation planning for risks 11-xx. Review and improve processes taking advantage of recommended best practices. Coordinate the collection of necessary documentation such as security certifications, audit reports, and compliance evidence.

Job DescriptionWho We Are Since 2007, Geoforce has been an industry leader in GPS tracking, providing reliable solutions for over 250,000 assets across 90+ countries. Our comprehensive platform combines rugged GPS devices with advanced software, supported by global satellite and cellular networks. From vehicles to heavy equipment, we deliver the visibility and control businesses need to optimize operations. Trusted by industry leaders like Southwest Airlines, DHL, and SLB (Schlumberger), Geoforce is the go-to partner for smarter asset management. Learn more at ***************** As a rapidly growing company committed to technology innovation and delivering high value services to its clients, Geoforce is constantly looking for high integrity, well-rounded professionals who thrive on challenges, are fascinated by technology, exhibit passion and pride, and don't mind rolling up their sleeves to get a job done. What We Need We are looking for a Manager of Information Security who will lead the information security strategy and security operations within Geoforce Inc. Reporting to the VP of Software Engineering, the Manager of Information Security serves as the organization's key cybersecurity authority, responsible for establishing, managing, and continually enhancing a robust, enterprise-wide information security program. Job Duties This role provides strategic direction, ensures regulatory compliance, leads incident response efforts, leads customer information security questionnaire responses, and fosters a strong security culture across the enterprise. The role also governs relationships with third-party vendors and managed security partners and drives business-aligned risk management and resiliency efforts. Strategic Leadership & Governance Develop, implement, and maintain the organization's information security and data privacy strategy, policies, and governance framework, aligning with frameworks such as NIST CSF 2.0, ISO, SOC II Type 2 and CIS Controls. Serve as a trusted advisor to leadership on cyber risk, regulatory/compliance obligations (e.g., GDPR, CCPA), and emerging threats. Establish and manage key performance indicators (KPIs) and dashboards to measure program effectiveness and foster continuous improvement. Develop and communicate a roadmap for the privacy & security program that balances business enablement with risk mitigation. Lead security-related projects and deliverables for security as well as external department projects. Create and implement processes for SOC II type 2 compliance during the year 2026. Implement third-party vendor risk management program, including onboarding security reviews and continuous monitoring. Security Operations, Communications & Incident Response Coordinate real-time monitoring, triage, and response to security alerts and vulnerabilities. Identify and implement core security platform needed to maintain security within Geoforce Infrastructure, Networking, and IT systems. Platforms may include EDR, SIEM, Secure email gateways etc. Oversee risk assessments, incident response, and vulnerability management across enterprise IT and Software Development. Lead customer communications and documentation around the InfoSec processes, documentation and certifications. Development and Governance of Security Policies and Procedures including SOC II Type2 audit readiness. Conduct regular risk assessments to identify vulnerabilities within the IT and Cloud environment. Implement risk mitigation strategies and continuously monitor their effectiveness. Conduct post-incident analysis to improve future responses. Report on security posture, risks, and incidents to leadership and regulatory auditor. Creation of SOPs related to security operations. Security Awareness & Culture Building Lead and enhance the Security Awareness Training (SAT) program (e.g., KnowBe4), including phishing simulations and compliance reporting. Advocate for a security-first culture across IT, software development, and business team through ongoing engagement, communication, and training. Identify, budget, and implement tools across company for improving and maintaining security posture. What Success Looks Like? A measurable reduction in organizational cyber risk through improved controls and visibility. Security events are detected, contained, and remediated with minimal business disruption. A well-established, compliant, and auditable information security program. A workforce that demonstrates security awareness and embraces shared accountability. Security technologies are implemented, optimized and integrated across IT towers and business units. Getting to a SOC II Type 2 compliance in 2026 Knowledge & Skills Technical Proficiency: Deep knowledge of cybersecurity principles, tools, technologies, risk management, and compliance frameworks (NIST, CIS, ISO, SOCII). Certifications: CISSP, CISM, or equivalent strongly preferred. Business Acumen: Ability to balance cybersecurity strategy with business growth goals, using risk-based prioritization. Communication Skills: Strong ability to articulate security concepts to non-technical customers, stakeholders, and executive leadership. Leadership: Collaborating with cross-functional teams and managing vendor relationships, including MDR (Managed Detection and Response) and performance measurement. Education & Work Experience Preferred Bachelor's degree in computer science or other quantitative fields. 6+ years in information security leadership roles, with expertise in managing enterprise-wide programs. Hands-on experience in implementing security assessment tools. Geoforce Perks Competitive Salaries Company-sponsored health insurance, dental insurance, vision insurance, life and AD&D insurance, 401(K) Plan, flexible spending account, and dependent care reimbursement account Paid Holidays Flexible Paid Time Off (PTO) Policy The opportunity to work with other cool people who have a passion for excellence, innovation, and adventure.

Title: Manager, Information Security & Compliance Duration: Fulltime Permanent with Client ________________________________ Responsibilities: Provide leadership, management, and guidance to the Operational Technology Security & Compliance team. Oversee and manage the security patch management, password management, configuration management and logging solution. Develop and maintain maintenance and configuration procedures, schedules and related evidentiary documentation. Manage on-call schedule. Maintain security system standards and NERC compliance in accordance with good utility practices. Manage daily system monitoring, verifying the integrity and availability of hardware, server resources, systems and key processes, reviewing and verifying system and application logs. Coordinate testing and implementing operating system patches in the operations technology environment. Ensure NERC CIP requirements are implemented when performing any work. Requirements: 5+ years of experience managing information security and compliance team. 10+ years of experience with security and compliance functions (Access Management, Threat and Vulnerability Management, Security Monitoring, Patch Management, Password Management, Configuration Management and Logging). Experience supporting CIP compliance is a plus. Experience working with a team required to operate in 24/7 shifts. Strong writing and communication skills. Commitment to providing excellent customer service. Qualifications NERC CIP Additional Information All your information will be kept confidential according to EEO guidelines.

Information Security Manager I LOCATION: This is a full-time, on-site position based at our Houston office located at 13101 Northwest Freeway. PAY RANGE: $90,000-$150,000/yr Join a High-Growth Legal Services Leader ABOUT THE ROLE: Reporting directly to the VP of Information Security, this position will play a key role in building, maintaining, and continuously improving a comprehensive security program for Lexitas. The Information Security Manager will provide both technical expertise and leadership-overseeing policies, managing tools and processes, and guiding onshore and offshore teams to ensure security, privacy, and compliance. You'll also collaborate closely with third-party providers and internal stakeholders to monitor, investigate, and mitigate risks while aligning cybersecurity strategy with business objectives. Lexitas is a rapidly growing national provider of legal and corporate support services, including court reporting, medical record retrieval, process service, and legal talent. Built on a foundation of trust, professionalism, and innovation, Lexitas delivers customized solutions with unmatched personal service to clients across the U.S. and internationally. KEY RESPONSIBILITIES: Lead the design, implementation, and evaluation of security, privacy, risk, and compliance systems and processes. Monitor networks, tools, and provider services for security or compliance issues. Investigate and document security incidents, assessing impacts and supporting incident response. Conduct and facilitate security tests, audits, and risk assessments; track mitigation activities. Develop best practices for IT security and compliance while staying current on industry standards and emerging threats. Manage third-party providers and direct offshore teams in support of security initiatives. Provide regular reports and metrics on security performance and risk posture to senior leadership. Ensure compliance with laws, regulations, and frameworks (NIST, SOC 2, HIPAA, PCI DSS, GDPR, etc.). Support Security Operations Center functions, vulnerability management, and penetration testing. Contribute to business continuity and disaster recovery strategies. WHAT YOU'LL BRING: Strong leadership and people-management skills, with experience guiding onshore and offshore teams. Expertise in network and application vulnerability management, penetration testing, firewalls, SIEM, IDPS, antivirus, and patch management. Critical problem-solving ability with a proactive approach to identifying and mitigating risks. Excellent communication skills with the ability to explain technical concepts to both technical and non-technical audiences. Experience collaborating with third-party vendors and providers. Familiarity with ITIL, incident/change management, and security baseline auditing preferred. Commitment to Lexitas' SPIRIT values: Service, Positivity, Integrity, Respect, Innovation, and Teamwork. QUALIFICATIONS: Bachelor's degree in Computer Science or related field strongly preferred. IAT Level-2 technical certification required (e.g., CompTIA Security+, CISSP, CISM, CISA, CIPM). 6+ years of experience as an Information Security Analyst or SOC role. 3+ years managing Information Security, Privacy, Risk, and/or Compliance programs. 3+ years managing personnel in security-related roles. Demonstrated experience responding to, managing, and resolving security incidents. Strong knowledge of LAN/WAN networking, IP addressing, routing, and Windows/Linux/Unix systems. Experience with SIEM systems a plus. SUPERVISORY RESPONSIBILITIES: This is a supervisory role. LANGUAGE SKILLS Ability to effectively present information and respond to questions from internal and external customers whose first language is English. CERTIFICATES, LICENSES, REGISTRATIONS None PHYSICAL DEMANDS Climbing, balancing, stooping, kneeling, crouching, crawling, reaching, standing, walking, pushing, pulling, lifting, grasping, feeling, talking, hearing, seeing, and repetitive motions. Exerting up to 50 pounds of force occasionally, and/or up to 20 pounds of force frequently, and/or up to 10 pounds of force constantly to move objects. While performing the duties of this job, the employee is regularly required to stand; walk; use hands to finger, handle or feel objects, type and use mouse; reach with hands and arms; and talk and/or hear. The employee is required to sit for extended periods of time. WORK ENVIRONMENT The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions. While performing the duties of this job, the employee regularly works in an office environment in a clerical environment. This role routinely uses standard office equipment such as computers, phones, photocopiers and filing cabinets. TRAVEL REQUIREMENTS This position may require periodic travel. OTHER DUTIES Please note this is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to the job at any time with or without notice. AAP/EEO STATEMENT Lexitas prohibits discrimination based on race, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender identity, sexual orientation or any other legally protected status. EOE Employer/Vet/Disabled. If you require reasonable accommodation in the application process, please contact Human Resources at *********************** for assistance. All other applications must be submitted online.

Salary Range: - Please note that the Salary Range shown is a guideline only. Salary offered may vary based on factors, including, but not limited to, the successful candidate's relevant knowledge, skills, and experience. Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. Global Banking and Markets Global Banking and Markets (GBM) is a leading Canadian Capital Markets and Investment Banking business with a growing platform in the US and Latin America, operating globally for over 100 years. Scotiabank's strong U.S. presence provides our clients an important bridge to this key global market for trade and investment flows across the Americas and the world. Global Banking & Markets provides a full range of investment banking, credit and risk management products and services relevant to the financing and strategic development needs of our clients. Our products include debt and equity financing, mergers & acquisitions, corporate banking, institutional equity sales, trading and research, fixed income products, derivatives, energy, foreign exchange and precious & metals. We also cross-sell the full range of wholesale products and services offered by the Scotiabank Group. Be part of an innovative, Global Capital Markets and Investment Banking business with a unique geographic footprint that puts capital to work for our clients across industries! We work together to drive ambition for every future! Purpose The Cyber and Regulatory Audit Manager will participate and manage various aspects of information security, cyber risk assessments, and contribute to the overall success of the U.S. IS&C's governance, regulatory compliance, and risk program. This role requires a seasoned professional with a strong background in information security, risk management, cybersecurity technology risk, compliance, policy, and governance. The IS&C Manager will assist with regulatory responses, audit requests, and participate in various cybersecurity risk assessments, risk mitigation strategies, and safeguard the Bank from potential informational security threats. The person will also play a role in reviewing and implementing security policies, procedures, and controls to protect the organization's data, systems, and networks. The position will be expected to work closely with cross-functional teams to establish and maintain a robust cybersecurity and technology risk management program to proactively safeguard the organization from security threats by ensuring that vulnerabilities are identified, monitored, and treated, as well as assuring the Bank meets regulatory compliance. What You'll Do * Regulatory and Compliance Management (specific to cybersecurity): * Participates in engagements with external regulatory and internal/3rd party auditors requests for information security and cybersecurity. * Monitors, analyzes, and reports on cybersecurity requirements against relevant U.S. regulations and cybersecurity standards, such as NYSDFS, FFIEC, and NIST CSF. * Provides support to IT&S auditors and compliance with respect to regulatory and audit information requests. * Continuously monitors and assesses the effectiveness of security controls and processes. * Reviews cybersecurity control library periodically and provides updates as needed. * Participate in annual regulatory control testing exercises. * Cybersecurity and Technology Risk Governance: * Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions. * Identifies and assesses cybersecurity and technology risks to ensure compliance with regulations and internal policies. * Performs cybersecurity risk assessments and provide updates to US IS&C senior management. * Risk and Issues Management: * Reports and tracks all cybersecurity-related issues that pertain to audits, regulatory requirements, control testing, and other issues. * Provides guidance to internal stakeholders on cybersecurity best practices. * Prepares regular reports and presentation decks on risk management, gap assessment, cybersecurity-related issues for senior management and stakeholders. * Monitors and tracks the progress of risk mitigation efforts related to cybersecurity. * Participates in quarterly and annual Compliance Risk and Control Assessments for cybersecurity. * Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct, and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk. * Champions a high-performance environment and contributes to an inclusive work environment. What You'll Bring * Required 5+ years of experience as an Information Security Analyst or related cybersecurity field with technology risk background. * Experience in IT key security controls/mechanisms and risk assessment concepts pertaining to complex data, application, and networking environments. * Prior experience and knowledge with NYDFS, FFIEC, or other US financial regulatory audits. * Have strong verbal and written communication skills in English with excellent individual project management and tracking skills. * Cybersecurity related certification is preferred (CISSP, CCSP, CRISC, CISM). * University degree or college diploma in a cybersecurity related field is preferred. Interested? If your experience is closely related but doesn't align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank! At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That's why we work to grow and diversify talent and engage employees in a performance-oriented culture. What's in it for you? Scotiabank wants you to be able to bring your best self to work - and life, every day. With a focus on holistic well-being, our many flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs. #Dallas Location(s): United States : Texas : Dallas Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets. At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted. Scotiabank is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law. Nearest Major Market: New York City Job Segment: Information Technology, IT Manager, Information Security, Compliance, Investment Banking, Technology, Legal, Finance

Company Details Berkley Technology Services (BTS) is the dynamic technology solution for W. R. Berkley Corporation, a Fortune 500 Commercial Lines Insurance Company. With key locations in Urbandale, IA and Wilmington, DE, BTS provides innovative and customer-focused IT solutions to the majority of WRBC's 60+ operating units across the globe. BTS's wide reach ensures that ideas and opinions are considered at every level of the organization to guarantee we find the best solutions possible. Driven by a commitment to collaboration, BTS acts as consultants to our customers and Operating Units by providing comprehensive solutions that not only address the challenge at hand, but proactively plan for the “ What's Next ” in our industry and beyond. With a culture centered on innovation and entrepreneurial spirit, BTS stands as a community of technology leaders with eyes toward the future -- leaders who genuinely care about growing not only their team members, but themselves, and take pride in their employees who shine. BTS offers endless ways to get involved and have the chance to grow your career into a wide range of roles you'd never known existed. Come join us as we push forward into the future of industry leading technological solutions. Berkley Technology Services: Right Team, Right Technology, Simple and Secure. Responsibilities The Information Security Architecture Manager at BTS is entrusted with a critical role in sculpting our Global Information Security Architecture framework. This leadership role demands a hands-on approach in the architectural design, strategic implementation, and management of security technologies and processes across various technology platforms. This role is integral in ensuring alignment with the overarching Global Information Security Strategy at WRBC. This role is designed for a visionary leader eager to drive the future of information security architecture at a global scale, ensuring the protection and resilience of Berkley Technology Services' technological assets and services. Spearhead the architectural design, deployment, and management of cutting-edge security solutions, including but not limited to SIEM, EDR, PAM, Data Access Governance, Identity Governance, Cloud Access Security Brokers, and WAFs. Architect and sustain the security infrastructure, ensuring seamless integration with existing technology ecosystems. Craft and execute architectural strategies for bolstering vulnerability management, security automation, and the safeguarding of infrastructure. Guide the formulation and continuous refinement of security policies and procedures, with a spotlight on architectural best practices. Cultivate an environment of innovation within the team, promoting continual learning and professional advancement. Function as a principal consultant and subject matter authority on information security architecture, offering pivotal guidance to internal teams and key stakeholders. Develop and maintain roadmaps for critical security infrastructure components, aligning them with the strategic goals of the organization. Collaborate with fellow Information Security leaders to forge a unified and robust Information Security Framework and Strategy. Perform regular technology evaluations, risk assessments, and devise appropriate remediation strategies. Lead and nurture a team of security architects and engineers in a fast-paced, global setting. Provide “Person in Charge” (PIC) coverage when on rotation. This added responsibility is factored into your base salary. Qualifications Demonstrated expertise in Information Security Architecture, with practical experience in the design and management of a broad spectrum of security technologies. Exceptional leadership and communication capabilities, adept at guiding global, interdisciplinary teams. Deep familiarity with contemporary cybersecurity trends and a commitment to remaining at the cutting edge of technology. Desirable certifications include CISSP, CISM, CEH, or other relevant qualifications. Proficiency in cloud security architecture and solutions, with experience in AWS, Azure, or Google Cloud platforms. Expertise in security frameworks such as NIST, ISO 27001, and CIS. Strong analytical and problem-solving skills, capable of making informed decisions in complex scenarios. Ability to foster relationships and collaborate effectively with various internal and external stakeholders. Commitment to ethical conduct and a deep understanding of regulatory compliance requirements relevant to the insurance and financial sectors. Bachelor's or Master's degree in Computer Science, Information Security, or a related discipline, or equivalent experience. Behavioral Core Competencies Flexibility Customer Service Oriented & Operational Effectiveness Personal Ownership Quick Decision Making Team Builder Transformational Leadership The Company is an equal employment opportunity employer. Not ready to apply? Connect with us for general consideration.

Salary Range: - Please note that the Salary Range shown is a guideline only. Salary offered may vary based on factors, including, but not limited to, the successful candidate's relevant knowledge, skills, and experience. Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture. Global Banking and Markets Global Banking and Markets (GBM) is a leading Canadian Capital Markets and Investment Banking business with a growing platform in the US and Latin America, operating globally for over 100 years. Scotiabank's strong U.S. presence provides our clients an important bridge to this key global market for trade and investment flows across the Americas and the world. Global Banking & Markets provides a full range of investment banking, credit and risk management products and services relevant to the financing and strategic development needs of our clients. Our products include debt and equity financing, mergers & acquisitions, corporate banking, institutional equity sales, trading and research, fixed income products, derivatives, energy, foreign exchange and precious & metals. We also cross-sell the full range of wholesale products and services offered by the Scotiabank Group. Be part of an innovative, Global Capital Markets and Investment Banking business with a unique geographic footprint that puts capital to work for our clients across industries! We work together to drive ambition for every future! Purpose The Cyber and Regulatory Audit Manager will participate and manage various aspects of information security, cyber risk assessments, and contribute to the overall success of the U.S. IS&C's governance, regulatory compliance, and risk program. This role requires a seasoned professional with a strong background in information security, risk management, cybersecurity technology risk, compliance, policy, and governance. The IS&C Manager will assist with regulatory responses, audit requests, and participate in various cybersecurity risk assessments, risk mitigation strategies, and safeguard the Bank from potential informational security threats. The person will also play a role in reviewing and implementing security policies, procedures, and controls to protect the organization's data, systems, and networks. The position will be expected to work closely with cross-functional teams to establish and maintain a robust cybersecurity and technology risk management program to proactively safeguard the organization from security threats by ensuring that vulnerabilities are identified, monitored, and treated, as well as assuring the Bank meets regulatory compliance. What You'll Do • Regulatory and Compliance Management (specific to cybersecurity): - Participates in engagements with external regulatory and internal/3rd party auditors requests for information security and cybersecurity. - Monitors, analyzes, and reports on cybersecurity requirements against relevant U.S. regulations and cybersecurity standards, such as NYSDFS, FFIEC, and NIST CSF. - Provides support to IT&S auditors and compliance with respect to regulatory and audit information requests. - Continuously monitors and assesses the effectiveness of security controls and processes. - Reviews cybersecurity control library periodically and provides updates as needed. - Participate in annual regulatory control testing exercises. • Cybersecurity and Technology Risk Governance: - Understand how the Bank's risk appetite and risk culture should be considered in day-to-day activities and decisions. - Identifies and assesses cybersecurity and technology risks to ensure compliance with regulations and internal policies. - Performs cybersecurity risk assessments and provide updates to US IS&C senior management. • Risk and Issues Management: - Reports and tracks all cybersecurity-related issues that pertain to audits, regulatory requirements, control testing, and other issues. - Provides guidance to internal stakeholders on cybersecurity best practices. - Prepares regular reports and presentation decks on risk management, gap assessment, cybersecurity-related issues for senior management and stakeholders. - Monitors and tracks the progress of risk mitigation efforts related to cybersecurity. - Participates in quarterly and annual Compliance Risk and Control Assessments for cybersecurity. • Actively pursues effective and efficient operations of his/her respective areas in accordance with Scotiabank's Values, its Code of Conduct, and the Global Sales Principles, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational, compliance, AML/ATF/sanctions and conduct risk. • Champions a high-performance environment and contributes to an inclusive work environment. What You'll Bring • Required 5+ years of experience as an Information Security Analyst or related cybersecurity field with technology risk background. • Experience in IT key security controls/mechanisms and risk assessment concepts pertaining to complex data, application, and networking environments. • Prior experience and knowledge with NYDFS, FFIEC, or other US financial regulatory audits. • Have strong verbal and written communication skills in English with excellent individual project management and tracking skills. • Cybersecurity related certification is preferred (CISSP, CCSP, CRISC, CISM). • University degree or college diploma in a cybersecurity related field is preferred. Interested? If your experience is closely related but doesn't align perfectly with every qualification, we do encourage you to apply - you might be the right candidate for this or other roles at Scotiabank! At Scotiabank, every employee is empowered to reach their fullest potential, respected for who they are and, embraced for their differences. That's why we work to grow and diversify talent and engage employees in a performance-oriented culture. What's in it for you? Scotiabank wants you to be able to bring your best self to work - and life, every day. With a focus on holistic well-being, our many flexible benefit programs are designed to help support your unique family, financial, physical, mental, and social health needs. #Dallas Location(s): United States : Texas : Dallas Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets. At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted. Scotiabank is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by federal, state, or local law.

In a world of possibilities, pursue one with endless opportunities. Imagine Next! At Parsons, you can imagine a career where you thrive, work with exceptional people, and be yourself. Guided by our leadership vision of valuing people, embracing agility, and fostering growth, we cultivate an innovative culture that empowers you to achieve your full potential. Unleash your talent and redefine what's possible. Job Description: Parsons is looking for a talented Senior ISSO to join our growing team! In this Lead/Senior ISSO role you will develop, maintain, and implement information security standards, procedures, and guidelines for applications and databases. In addition, you will ensure that systems and organizational databases are protected from unauthorized access and use, and monitor systems, identify threats, and handle disaster recovery operations. The max salary for this role is between $120k-$129k. What You'll Be Doing: * Performs assessments of systems and networks within the networking environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations (compliance audits) and active evaluations (vulnerability assessments). * Provide day to day direction, workload assignment, and task prioritization for the ISSO team. * Conduct regular one-on-ones, performance feedback, and career discussions for each team member. * Offer mentoring and coaching to the ISSO team on security engineering, RMF/assessment processes, documentation quality, and stakeholder communication. * Provide real-time guidance during system assessment, audits, and incident response activities. * Support skill-building in areas such as vulnerability management, security tooling, automation * Identify training opportunities, certification and courses aligned with each ISSO's development goals. * In addition to Technical SME duties, the position is the primary manager (supervisor) with direct responsibility for supervising, mentoring, & coaching Mid-Level and Junior ISSOs (team of around 5). * Plays a role in overall functional strategic planning. * Establishes strict program control processes to ensure mitigation of risks and supports for obtaining certification and accreditation of systems. This includes process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits. * Assists in the implementation of required government policy (e.g.,, NISPOM, DCID 6/3), and makes recommendations on process tailoring. * Performs analyses to validate established security requirements and recommends additional security requirements and safeguards where required. * Supports the formal Security Test & Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results, and preparation of required reports. * Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed. * Contributes to and may lead the planning and implementation of large programs in the function, and regularly interfaces with senior management and executive leadership. What Required Skills You'll Bring: * Active Top Secret/SCI with Polygraph. * Bachelors degree with typically 6+ years of relevant experience. Candidates with a Masters degree require 4+ years of relevant experience, and additional years of experience can qualify in lieu of a degree for non-degreed candidates. * Active certification meeting DoD 8140 (DoDD 8570) IAT-III guidelines is required for the position. Acceptable certifications include the CISA, GCIH, GCED, CISSP, and Security X (CASP+). Obtaining a certification that meets DoD 8140 (DoDD 8570) IAT-III guidelines is required within 6 months of hire if not currently held. * Strong leadership skills * Ability to coach and develop junior ISSO's Security Clearance Requirement: An active Top Secret SCI w/Polygraph security clearance is required for this position. This position is part of our Federal Solutions team. The Federal Solutions segment delivers resources to our US government customers that ensure the success of missions around the globe. Our intelligent employees drive the state of the art as they provide services and solutions in the areas of defense, security, intelligence, infrastructure, and environmental. We promote a culture of excellence and close-knit teams that take pride in delivering, protecting, and sustaining our nation's most critical assets, from Earth to cyberspace. Throughout the company, our people are anticipating what's next to deliver the solutions our customers need now. Salary Range: $86,700.00 - $151,700.00 We value our employees and want our employees to take care of their overall wellbeing, which is why we offer best-in-class benefits such as medical, dental, vision, paid time off, 401(k), life insurance, flexible work schedules, and holidays to fit your busy lifestyle! Parsons is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, veteran status or any other protected status. We truly invest and care about our employee's wellbeing and provide endless growth opportunities as the sky is the limit, so aim for the stars! Imagine next and join the Parsons quest-APPLY TODAY! Parsons is aware of fraudulent recruitment practices. To learn more about recruitment fraud and how to report it, please refer to ************************************************

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

TUNUVA Technologies (a wholly owned subsidiary of VTG) seeks to hire an Information Systems Security Officer (ISSO) in Las Cruces, NM to monitor and maintain systems security on operational systems such as malicious code eradication, configuration management, assessment and authorization of current and future systems, as well as to review and revise systems security documentation on proposed systems. ISSOs shall know how to implement common information system security practices, policies, and technologies. Additionally, ISSOs demonstrate self-motivation, initiative, sound judgement, and effective interpersonal skills, team building skills, and effective communication skills. What will you do? Responsibilities * Collaborate with system stakeholders and teammates to enhance system security * Communicate effectively with all security stakeholders * Create, revise, or review cybersecurity documentation * Proactively identify opportunities for increasing customer value and engagement * Act as a Data Transfer Agent between systems of varying security domains * Inventory, track, and control removable media and portable electronic devices * Advise stakeholders on NIST SP 800-37 RMF workflows and requirements * Review SIEM and RMF workflow tools to advise ISSM on system security baselines and authorization statuses * Advise system stakeholders on acceptable use and applicable cybersecurity policy or regulation * Properly report and document security incidents and response actions Do you have what it takes? Requirements * Clearance: Active TS/SCI with Polygraph * Currently hold or obtain and maintain DoD 8570 IAT-2 certification within 6 months of starting the position * Applicants should possess education and experience at the appropriate level for the position. Education relevant to computer engineering, information security, information management, and/or computer science. Experience relevant to information technology security, information systems security, information assurance engineering, and systems administration. * Bachelor's degree + 2 years of experience OR High School/GED + 6 years of experience OR Associate's degree + 4 years of experience OR Master's degree or higher + 0 - 2 years of experience Desired Qualifications * Knowledge of and experience with ICD 503 and NIST SP 800-37 Risk Management workflows * Understanding and application of network security principles, practices, and implementations * Working knowledge of cross-functional integration of information systems into a physical security environment * Working knowledge of system functions, security policies, technical security safeguards, and operational security measures * Understanding of system methodologies including but not limited to client server, web hosting, web content servers, policy servers, directory servers, firewalls, WAN, LAN, switches, and routers * Familiarity with detecting and preventing computer security compromises in a networked environment * Working knowledge of configuration management; system maintenance; and integration testing * Proficient in the use of tools used to prevent and/or negate malicious code * Understanding of Commercial-Off-the-Shelf (COTS) tools that scan at the physical layer of all removable and fixed media types including but not limited to: (CDs, hard drives, thumb drives, Zip/Jazz, etc.) * Ability to support evidentiary forensics and preservation * Ability to troubleshoot technical configurations and make recommendations on the protection of classified and sensitive data * Demonstrated ability to translate technical information and information technology jargon into plain English * Ability to apply a risk management philosophy when faced with security challenges and the ability to articulate the pro's and con's of a particular solution in a clear concise manner * Demonstrated proficiency with computer operating systems (e.g., Microsoft Windows, LINUX, UNIX, Mac OS, etc.) * Analytical ability to understand complex technical configuration management documents * Strong ability to elicit, articulate, and document information in a well-organized manner * Demonstrated ability to work independent of close supervision * Working knowledge of all applicable customer, IC, and DoD policies, procedures and operating instructions related to cybersecurity * Excellent communication, interpersonal, and team-building skills to engender rapport with the military personnel, civilians, and other contractors at all levels * An ability to prioritize work to meet deadlines.