Product Security Architect
Remote Job
Bachelor's or master's degree in computer science, Information Security, or a related field. • Professional cer.fica.ons in informa.on security (e.g., CISSP, CISM) are highly desirable. • Extensive experience in product security, particularly in the design and implementation of security solutions for medical devices or related healthcare technology.
Deep understanding of healthcare regulations and standards affec.ng medical device security. • Proficiency in security architectures, encryption technologies, identity and access and network security etc.
Experience with risk management methodologies and security assessment tools. • Strong analy.cal and problem-solving skills.
Product security processes, tools and techniques especially implementation aspects • Excellent communication and interpersonal skills, with the ability to explain complex security concepts to non-technical stakeholders.
Preferred qualifications
Knowledge in reference architecture and design patterns as applicable to medical technologies and products.
Working knowledge in Software engineering and programming languages (Java, Python, C/C++/C# etc.).
Implementation and adoption of security frameworks such as SABSA /TOGAF frameworks.
Emerging medical technologies (AI, Blockchain, MIoT, RPA, etc.) and their security threats/risks.
Job Responsibilities
The Product Security Solutions Architect will be responsible for leading the design and implementation of security measures for medical device software, hardware, digital solutions and/or combination products. This role involves working closely with R&D, product management, regulatory, quality and compliance teams to ensure that all products meet the highest standards of security and privacy in line with regulatory and customer requirements.
This person possesses a blend of business and technical know-how to mature product security architecture, software and solutions engineering function; Able to handle ambiguity and complexity of customer products including intended use, interoperability, product architectures and industry best practices.
What We Offer
Exciting Projects:Come take your place at the forefront of digital transformation! With clients across all industries and sectors, we offer an opportunity to work on market-defining products using the latest technologies.
Collaborative Environment: You can expand your skills by collaborating with a diverse team of highly talented people in an open, laidback environment - or even abroad in one of our global centers or client facilities!
Work-Life Balance:GlobalLogic prioritizes work-life balance, which is why we offer flexible work schedules and opportunities to work from home.
Professional Development:We provide continuing education classes, professional certification and training (technical, soft skills, language, and communication skills) to help you realize your professional goals. Being part of a global organization, there are additional learning opportunities through international knowledge exchanges.
Excellent Benefits:We provide our employees with competitive salaries, health and life insurance, short-term and long-term disability insurance, a matched contribution 401K plan, flexible spending accounts, and PTO and holidays
GlobalLogic estimates the starting pay range for this role to be performed in Lake Forest CA is 180K-185K, and reflects base salary only. This pay range is provided as a good faith estimate and the amount offered may be higher or lower. GlobalLogic takes many factors into consideration in making an offer, including candidate qualifications, work experience, operational needs, travel and onsite requirements, internal peer equity, prevailing wage, responsibilities, and other market and business considerations.
About GlobalLogic GlobalLogic is a leader in digital engineering. We help brands across the globe design and build innovative products, platforms, and digital experiences for the modern world. By integrating experience design, complex engineering, and data expertise-we help our clients imagine what's possible, and accelerate their transition into tomorrow's digital businesses. Headquartered in Silicon Valley, GlobalLogic operates design studios and engineering centers around the world, extending our deep expertise to customers in the automotive, communications, financial services, healthcare and life sciences, manufacturing, media and entertainment, semiconductor, and technology industries. GlobalLogic is a Hitachi Group Company operating under Hitachi, Ltd. (TSE: 6501) which contributes to a sustainable society with a higher quality of life by driving innovation through data and technology as the Social Innovation Business.
Contact Center Architect (100% Remote- CX1, Genesys, Connect)
Remote Job
Contact Center Architect- 100% Remote
Optomi, in partnership with an enterprise level industry leader, is seeking an experienced Contact Center Architect to join their team. This architect will help consolidate and integrate various CCaaS providers into the environment, leveraging capabilities with each solution for varying lines of business throughout the organization. They will help mature CCaaS and work closely with various stakeholders and other departments across the organization.
Responsibilities:
Review and recommend CCaaS providers and solutions and how the company is leveraging (6-7 currently in the environment)
Assess and design what capabilities can be used with each CCaaS solutions- quality analytics, quality reporting, etc.
Utilizing Artificial Intelligence (AI) to help grow and optimize call centers
Optimize various business units and their calls centers from a cost perspective (mostly cloud based in this role)
Will utilize CX1, Genesys, and Amazon Connect the most in this role
Create documentation and SOP's across the organization for various stakeholders and internal departments
Apply today if your background includes:
Ability to work a remote, Contract-to-hire opportunity
Previous CCaaS Architecture experience in a large environment with multiple solutions
Extensive experience leveraging various capabilities of CCaaS solutions and integrating them into the environment
Experience utilizing AI in call centers
Experience working cross functionally in a large organization communicating with many different teams
Experience working with Salesforce and CRM architects (nice-to-have)
Senior Information Security Engineer - Incident Response
Remote Job
LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed.
Join us to transform the way the world works.
At LinkedIn, we trust each other to do our best work where it works best for us and our teams. This role offers a hybrid work option, meaning you can both work from home and commute to a LinkedIn office, depending on what's best for you and when it is important for your team to be together.
This role will be based in our Mountain View, CA campus.
About the team
LinkedIn's members entrust us with their information every day and we take their security seriously. Our core value of putting our members first powers all the decisions we make, including how we manage and protect the data of our members and customers. We never stop working to ensure LinkedIn is secure. We follow industry standards and have developed our own best practices to stay ahead of the increasing number of threats facing all Internet services and infrastructure. LinkedIn is looking for an experienced Senior Incident Response Engineer to be an integral part of our Information Security organization. The Incident Response team is responsible for protecting our infrastructure, applications, and, most importantly, our members. This role will be responsible for playing a key role in our security monitoring and incident response team.
The role is a Senior position, coming in with years of real world experience in responding and leading incident investigations, developing playbooks, and continually striving to improve processes and response times. Additionally as a Senior, a successful candidate will help lead the continued improvements, mentor more junior team members, while acting as a lead during large scale incidents.
Responsibilities:
· Independently triage security alerts and incident reports.
· Investigate incidents using available resources, forensic and threat hunting skills.
· Drive small to medium scale incidents with multiple team members and partner teams to closure.
· Conduct host, network, and log analysis in support of incident response investigations
· Enhance our in-house incident response platforms and build new capabilities.
· Participate in oncall activities.
· Work with partner teams including: PR, HR, Legal, Compliance, Investigations, Microsoft CDOC, Engineering, EPE.
· Work in a team environment to drive large scale incidents to closure and full remediation.
· Contribute to improving processes, procedures and technologies used by the team.
· Provide feedback to detection engineering team about accuracy and quality of detections
· Provide proactive and accurate data to all stakeholders for internal communication
· Help uplift entire team by providing demonstration of new processes or training on systems
· Support mentoring and technical development of incident response engineers
Basic Qualifications:
· BA/BS degree in Information Security, CyberSecurity, Computer Science, or other related technical disciplines, or equivalent practical experience
· 4+ years experience in Information Security, with 3+ years experience in Incident Response as part of that experience.
· Incident response experience should include:
· Experience with triaging security alerts.
· Experience with incident lifecycle and incident handling.
· Experience with log analysis
· Experience with SIEM solutions
· Experience with Windows and Unix operating systems logs.
· Experience with Web Server logs.
· Experience with EDR solutions
· Experience with system level analysis - windows, linux, and mac.
· Experience with 1 or more of these areas:
· System Forensics
· Network Forensics
· Cloud Forensics
· SOAR/Security Orchestration
· Threat Intelligence
Preferred Qualifications:
· Master's degree in Information Security, CyberSecurity, Computer Science, or other related technical disciplines.
· Developer experience, the ability to understand source code and develop scripts.
· Practical threat hunting experience with open source tool chain
· Scripting knowledge to automate repetitive, time consuming and error prone activities using a general purpose scripting language (ex: Python)
· Prior experience with malware analysis
Suggested Skilles:
· Incident Response
· Information Security
· Incident response investigations
· Threat Hunting
LinkedIn is committed to fair and equitable compensation practices.
The pay range for this role is $121,000-198,000. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. This may be different in other locations due to differences in the cost of labor.
The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For more information, visit **************************************
Equal Opportunity Statement
LinkedIn is committed to diversity in its workforce and is proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. LinkedIn is an Affirmative Action and Equal Opportunity Employer as described in our equal opportunity statement here: *********************************************************************************************************** Please reference ******************************************************************************************** and ************************************************************************************************ for more information.
LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful.
If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at accommodations@linkedin.com and describe the specific accommodation requested for a disability-related limitation.
Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to:
-Documents in alternate formats or read aloud to you
-Having interviews in an accessible location
-Being accompanied by a service dog
-Having a sign language interpreter present for the interview
A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response.
LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information.
Pay Transparency Policy Statement
As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: ********************************
Global Data Privacy Notice for Job Candidates
This document provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: ***************************************
Information Security Manager
Remote Job
The Information Security Manager will oversee the Information Security and work with the Director of Information Security as well as the Desktop and Server teams to help protect the information assets of the Firm. They will oversee the assist with implementing and supporting information security policies, security operations, and audit/risk. The Information Security Manager is responsible for coordinating analyst deliverables and is expected to stay up-to-date with current and emerging trends to help reduce the Firm's exposure to new and existing threats.
Active monitoring and rapid response to security events is critical to this role. Although not common, some of the security events may happen outside of normal work hours which will require after-hours response and support.
The Information Security Manager is responsible for keeping track of current IS projects and ensuring timely completion of deliverables. They will be responsible for tracking progress of Infosec team members on identified projects and following up when necessary to ensure timely and accurate completion of projects that meet both firm and user expectations.
The IS Manager will establish and maintain SLA's for team deliverables, and ensure that common tasks are formally documented. They will also assist the team in tracking progress and following up on teamwork.
Responsibilities:
PHISHING
Coordinate scheduled phishing campaigns for content, delivery, follow-up, and reporting.
Communicate with the helpdesk for phishing-related issues as well as respond to user inquiries.
Actively take steps to reduce phishing risk.
MONITORING AND ALERTING
Work with outside security vendors to monitor systems events and ensure coverage.
Oversee first-level response incoming events for MDR vendor and Defender.
Triage alerts and follow appropriate procedures to determine severity.
Maintain and ensure the confidentiality of client and firm data.
Monitor and respond to tickets for the Information Security Group.
VULNERABILITY MANAGEMENT
Coordinate the Firm's vulnerability scanning software to identify, classify, prioritize, mitigate, and remediate software vulnerabilities.
Work with the infrastructure team and desktop engineering team to remediate the biggest risks.
Monitor and document progress towards security goals.
Track overall progress on reducing vulnerability risk.
OPERATIONS
Oversee security events from Microsoft Security Products.
Actively work to improve security posture through vulnerability management, attack surface reduction, and environment hardening.
Support compatibility with Mac laptops for normal firm tasks.
Support project for remote browser capability.
Work with third party for annual penetration tests.
Coordinate threat hunting and research trending CVE's.
AUDIT
Oversee evidence gathering for ISO audit.
Manage policies and procedures to ensure accuracy and timely reviews.
Supervise timely and accurate reviews of Outside Counsel Guidelines, Client Security Assessments, and responses to RFP's/RFI's.
ADDITIONAL DUTIES INCLUDE
Assist in preparation and tracking of client security assessments.
Work with the Director of Information Security on the Security budget.
Work with desktop and server teams for patch management.
Interface with the networking team as needed.
Support evidence collection and preservation for ISO 27001 audit.
Assist in annual testing of disaster recovery and business continuity plans.
Special projects as assigned.
Assume additional responsibilities as requested.
This role requires 60% in office presence; remote work is permissible 40% of the time.
Qualifications:
Bachelor's degree in Cybersecurity or Computer Science required.
Minimum of 6 years Information Security experience and prior experience managing staff is required.
Previous experience working in a law firm or professional services strongly preferred.
Knowledge of threat hunting tactics and incident response.
Working knowledge of TTP's (Threats, Tactics, and Procedures) of Threat Actors.
Demonstrable knowledge of vulnerability scanning tools (Tenable, Rapid7, or Qualys).
Familiarity with popular cybersecurity tools for threat hunting and vulnerability scanning.
Experience with outsourced MDR (SentinelOne, eSentire, Rapid7 IDR, Cybereason, etc).
Strong knowledge of Microsoft Defender suite of products CompTIA Security+, CEH, CISA, CRISC, CISM, or preferably CISSP.
Possess excellent verbal and written communication skills with an ability to influence others.
Ability to function in a fast-paced, service-oriented environment, prioritize multiple projects on a daily basis, and adjust to shifting priorities.
Strong planning, project management and organizational skills.
Strong sense of urgency.
Facility analyzing, working with and presenting data.
Ability to collaborate and gain the respect, trust, and confidence of the Firm's attorneys and professional staff.
Possess a “hands-on” tactical approach.
Creative and proactive approach to problem solving.
Facilitate teamwork and identify opportunities to develop new processes/infrastructure.
Demonstrated ability to grasp and implement new concepts quickly.
Strong analytical abilities, resourcefulness, and attention to detail.
Ability to work independently and as part of a team with a proactive and positive style that fosters collaborative working relationships.
Demonstrated ability to motivate and develop teams.
Proven leadership and management abilities.
Demonstrated experience in employee relations, performance improvement and separations.
Outstanding sense of customer service, with demonstrated ability to instill this in others.
Deep personal commitment to integrity, excellent judgment, and the highest standards of ethics.
Must display the highest level of diplomacy, tact and discretion, with comfort in handling and maintaining confidential information.
Excellent computer skills, including proficiency in using Microsoft Word, Outlook, Excel and PowerPoint. Ability to quickly get up to speed and master new applications and software is critical.
Principal Platform Security Engineer
Remote Job
Security Platform building / hands-on builder, technical leadership abilities, Python expertise
This is a Full-Time/Direct Hire position with our client in financial services with offices in NYC and Seattle. 100% Remote. The Principal Platform Security Engineer must be a builder, position requires heavy Python coding, reviewing systems and determining what is needed to provide strongest security and building it with Pytho
n.
Must have 10 years of experience and 5+ years in security focused work and strong AWS. Software engineering background with Python, Go, C++, or Java. Strong containerization and orchestration experience is required- Kubernetes, EKS - Please apply if this sounds like you!
Overview:
The job is within the Platform Security team, which focuses on securing platform infrastructure. This role will specialize in non-cloud infrastructure, containerization, and container orchestration security (e.g., Kubernetes and EKS), while also covering areas such as PKI, cryptography, identity management, and network security.
Key Responsibilities:
Design, deploy, and maintain security services/platforms for engineering teams.
Enhance security controls across all layers of infrastructure.
Collaborate with engineering teams on security architecture and decisions.
Work with other security functions (e.g., application security, incident response) to identify and mitigate risks.
Minimum Qualifications:
10+ years of experience in security and related fields.
Expertise in container orchestration, SRE, systems engineering, or network engineering.
Experience with distributed systems, cloud computing (e.g., AWS), and high-availability services.
Strong software development skills (Python/Go).
Deep knowledge of computer security principles.
Preferred Qualifications:
Experience securing AWS, Linux environments, and cryptographic infrastructure.
Experience in identity and access management, secrets management, and infrastructure as code (e.g., Terraform).
Chief Information Security Officer
Remote Job
Job Title: Chief Information Security Officer (CISO)
Type: Full-Time
About Us:
Our Client is a leading provider specializing in laboratory testing services, dedicated to delivering accurate, timely, and high-quality diagnostic results. Their commitment to innovation and excellence is paired with a steadfast focus on patient care and confidentiality. To maintain our high standards and ensure the security of sensitive patient information, we are seeking a dynamic and experienced Chief Information Security Officer (CISO) to join our leadership team in Houston, TX.
Role Overview:
As the CISO, you will be responsible for establishing and maintaining the enterprise-wide information security vision, strategy, and program. You will oversee the protection of sensitive healthcare and laboratory data, ensuring compliance with all relevant regulations (e.g., HIPAA, HITECH, and GDPR). Reporting directly to the CIO (or CEO), you will collaborate with leadership, IT teams, and external stakeholders to safeguard the organization against emerging cyber threats.
Key Responsibilities:
Strategic Leadership:
Develop and implement a comprehensive information security strategy aligned with the organization's goals.
Lead the security governance program to protect sensitive patient, laboratory, and organizational data.
Risk Management:
Conduct regular risk assessments and vulnerability analyses of systems, networks, and applications.
Develop risk mitigation strategies and ensure effective incident response plans are in place.
Regulatory Compliance:
Ensure compliance with healthcare-specific regulations such as HIPAA, HITECH, and CLIA.
Stay updated on global and regional data protection laws and ensure compliance with applicable standards (e.g., GDPR, PCI-DSS).
Technology and Operations:
Oversee the implementation of advanced cybersecurity technologies, including data encryption, endpoint protection, and SIEM solutions.
Evaluate and manage third-party security tools, including those supporting laboratory operations.
Ensure secure integration of laboratory information management systems (LIMS) with other healthcare systems.
Incident Management:
Establish and lead a robust incident detection and response framework.
Oversee investigations and coordinate remediation for any security breaches or incidents.
Collaboration and Communication:
Provide regular updates to executive leadership on the state of the organization's cybersecurity posture.
Partner with IT, compliance, legal, and clinical teams to align security initiatives with operational goals.
Qualifications:
Education:
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
Advanced degree (e.g., MBA, MS in Cybersecurity) is a plus.
Experience:
Minimum of 10 years of progressive experience in information security, with at least 5 years in a leadership role.
Experience in the healthcare industry, particularly in laboratory testing, is strongly preferred.
Proven track record of managing cybersecurity in highly regulated environments.
Certifications:
CISSP, CISM, or equivalent certifications required.
CRISC, CEH, or healthcare-specific certifications (e.g., HCISPP) are a plus.
Skills:
In-depth knowledge of healthcare-specific regulations (e.g., HIPAA, HITECH).
Expertise in cybersecurity frameworks (e.g., NIST CSF, ISO 27001).
Strong leadership and communication skills, with the ability to present complex security concepts to non-technical stakeholders.
Experience in securing cloud environments, mobile devices, and remote work infrastructures.
Equal Opportunity Statement
BigRio is an equal opportunity employer. We prohibit discrimination and harassment of any kind based on race, religion, national origin, sex, sexual orientation, gender identity, age, pregnancy, status as a qualified individual with disability, protected veteran status, or other protected characteristic as outlined by federal, state, or local laws. BigRio makes hiring decisions based solely on qualifications, merit, and business needs at the time. All qualified applicants will receive equal consideration for employment.
Palantir Architect with strong on Python - REMOTE
Remote Job
Net2Source Inc. is an award-winning total workforce solutions company recognized by Staffing Industry Analysts for our accelerated growth of 300% in the last 3 years with over 5500+ employees globally, with over 30+ locations in the US and global operations in 32 countries. We believe in providing staffing solutions to address the current talent gap - Right Talent - Right Time - Right Place - Right Price and acting as a Career Coach to our consultants.
Role: Palantir Architect
Location: San Francisco, CA (Remote)
Contract
Required Skills: Python, Palantir, Pyspark
Certifications Required: Certified Data Architect, Python Certification, Pyspark Certification
Years of Experience: 14.00+ Years of Experience
Job Summary:
• We are seeking an experienced Architect with 10 to 14 years of experience to join our team.
• The ideal candidate will have strong technical skills in Python, Pyspark, and Palantir.
• This is a work-from-home position with day shifts and no travel required.
Responsibilities:
• Design and develop scalable and efficient data architectures using Python, Pyspark, and Palantir.
• Collaborate with cross-functional teams to understand business requirements and translate them into technical solutions.
• Provide technical guidance and mentorship to junior team members to ensure best practices are followed
• Oversee the implementation of data integration and data processing pipelines.
• Ensure data quality and integrity by implementing robust data validation and monitoring processes.
• Optimize data storage and retrieval processes to enhance system performance.
• Conduct code reviews and provide constructive feedback to improve code quality.
• Stay updated with the latest industry trends and technologies to incorporate them into the architecture.
• Develop and maintain comprehensive documentation for all data architecture and processes.
• Troubleshoot and resolve any issues related to data architecture and processing.
• Collaborate with stakeholders to define data governance policies and ensure compliance.
• Participate in project planning and provide accurate estimates for development tasks.
• Contribute to the continuous improvement of the development process and tools.
Qualifications:
• Possess strong technical skills in Python, Pyspark, and Palantir.
• Demonstrate excellent problem-solving abilities and attention to detail.
• Have a proven track record of designing and implementing scalable data architectures.
• Show experience in mentoring and guiding junior team members.
• Display a proactive approach to staying updated with industry trends and technologies.
Why work with us - At Net2Source, we believe everyone has an opportunity to lead. We see the importance of your perspective and your ability to create value. We want you to fit in-with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out-with opportunities to have a strategic impact, innovate, and take necessary steps to make your mark. We help clients with new skilling, talent strategy, leadership development, employee experience, transformational change management and beyond.
Equal Employment Opportunity Statement:
Net2Source is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Awards and Accolades:
• America's Most Honored Businesses (Top 10%)
• Awarded by USPAAC for Fastest Growing Business in the US
• 12th Fastest Growing Staffing Company in USA by Staffing industry Analysts in the US (2020, 2019, 2020)
• Fastest 50 by NJ Biz (2020, 2019, 2020)
• INC 5000 Fastest growing for 8 consecutive years in a row (only 1.26% companies make it to this list)
• Top 100 by Dallas Business Journal (2020 and 2019)
• Proven Supplier of the Year by Workforce Logiq (2020 and 2019)
• 2019 Spirit of Alliance Award by Agile1
• 2018 Best of the Best Platinum Award by Agile1
• 2018 TechServe Alliance Excellence Awards Winner
• 2017 Best of the Best Gold Award by Agile1(Act1 Group)
Thanks & Regards
Abhishek Kumar
Sr. Technical Recruiter
************
***********************
WAF Security Engineer
Remote Job
Our top client in the travel/transportation industry is searching for a WAF Security Engineer to join their team! This is a great opportunity to design and develop security solutions that support their Web Application Firewall technologies. Ideal candidates have 3+ years of experience with security analysis, have a strong understanding of DNS, networking, system administration, and common application frameworks.
100% remote
1+ year contract to hire position with benefits available on contract
Only able to hire from the following states at this time: MO, IL, VA, CO, KS, TX, NC, GA, TN, FL, MI, OK, IN, SC
**Cannot work C2C**
Required:
Must be committed to incorporating security into all decisions and daily job responsibilities.
3 years of professional experience in information security or a related field.
Ability to model API requests using tools such as Postman.
Understanding of API and web application attack vectors
Ability to interpret the different components of web requests and responses.
Demonstrated experience writing and reviewing business, user, and non-functional/system level requirements.
Strong knowledge of system architecture and network applications.
Familiarity with OWASP & API OWASP Top 10.
Ability to investigate security breaches and other cybersecurity incident.
Monitor email and ticketing systems for security-related issues and follow through until resolution.
Monitor events and triage alerts across various security platforms.
1+ years of experience using a SIEM (preferably Splunk)
1+ years hands-on experience with administration of Web Application Firewall (WAF/WAAP) technologies.
1+ years working with SSL certificates.
In depth understanding of DNS
Preferred:
Bachelor's degree in computer science, Computer Information Systems, Cybersecurity, or related field preferred
Experience with Akamai or Imperva WAF/WAAP solutions.
Understanding of scripting and content creation. (e.g., Splunk dashboards, threat signature creation, Python scripts, Powershell scripts.)
Experience with automation tools such as Ansible and Terraform
Managing cloud security operations, including identity & access control, secure configuration management, network security, Infrastructure as Code, data security, and logging.
1+ year experience securing cloud applications (AWS/AZURE).
Understanding of Version control and ability to work in Git.
Ability to do Packet Captures (PCAPs) and interpret results.
Experience with CSP (client-side protection) platforms.
Healthcare Architect
Job Type: Permanent / Full-time
Salary: $75,000 - $115,000
Schedule: 8am-5pm, Hybrid flex day every 2 weeks
Must Haves:
4+ years of architectural drafting experience within healthcare facilities using Revit
Familiarity with FGI guidelines and state health department approvals
Must be able to prepare construction document plans and relevant specifications in all phases of the design process
Pluses:
AIA Licensure is a plus and not required
Day-to-Day:
Insight Global's client is looking for a Healthcare Architect to work with a local architecture firm. This technical architect will be responsible for back-of-house designs, coordinating with clients, and will report to the Lead Architect over the Healthcare Division. The client is looking for specific healthcare design experience remodeling healthcare facilities such as hospitals and doctors' offices. This individual must have knowledge and experience adhering to FGI guidelines and state health department approvals.
Benefits:
100% covered Health Insurance
100% covered Dental Insurance
100% covered Vision Insurance
Flex Remote work policy
10 days of PTO first year and 15 days of PTO in 2nd year
401k with 3% match
Analyst, IT Security Senior
Remote Job
Job Title: IT Security Analyst Senior
FLSA Status: Exempt
Department: Information Technology
Reports to: Manager of Information Technology
Flex qualifies for the Flexible Work Policy. Employees receive 75 work days annually to work remote! The initial amount of days is prorated for the first year based on start date.
JOB DESCRIPTION:
This position will work with the Director of IT to monitor the network for security breaches and conduct investigations of violations. The analyst takes part in designing and implementing security protocols, applications, and processes designed to secure the company, data, and applications Loram utilizes. The role installs and maintains security software and/or systems including Access Control, segmentation, firewalls, MFA, remote access, spam, and web filters. Monitors for security-related events and ensures data is protected from unauthorized users. Produces security reports for management, security committee, and board. Assists technology services with device hardening, vulnerability remediation, and security violations. Regular testing including a review of processes and penetration testing will be used to review company compliance with the security roadmap that has been laid out.
KEY DUTIES AND RESPONSIBILITIES:
Analyzes security logs to identify threat events; triage and respond accordingly to security incidents following internal security protocols
Configures security controls in all systems and IT infrastructure by policy, standards, and procedures
Tests network security controls; coordinating remediation efforts and closure of any identified issues
Acts as the first line of support for triage and remediation of support tickets related to security and tracks ongoing support issues
Stays current with IT security trends and standards through local special interest group involvement and monitoring online information sources
Stays current with released security features of internal IT systems and software
Maintains confidentiality and integrity in dealing with sensitive information systems and processes
Works with Infrastructure and Application teams to establish a Disaster Recovery solution and the testing of it
Works with facilities teams to ensure that physical security systems are operational and implemented correctly
ESSENTIAL JOB FUNCTIONS:
Problem Solving and Decision Making
Anticipate or recognize the existence of a problem
Commit to a solution promptly, and develop a realistic approach for implementing
Critical and Analytical Thinking
Possess sufficient logic, inductive, and deductive reasoning ability to perform the job successfully
Concludes from relevant and/or missing information
Planning and Organizing
Develop and execute security plans for all environments which include new functionality, migrations, and expansion
Ability to prioritize, approach work in a methodical manner; work concurrently on several tasks, plan, and schedule tasks so that work is completed on time
Communication
Express relevant information appropriately to individuals or groups considering the audience and the nature of the information
Create documentation of environment configuration and how each area should be supported
Compliance
Abide by a Code of Ethics for professional conduct. Follow governance, risk management, and compliance guidelines
BEHAVIORAL COMPETENCIES:
Values Based
Action Oriented
Creating a Service Reputation
Problem Solving
Technical Learning
REQUIRED QUALIFICATIONS:
Education: Bachelor's degree in information technology or related field
Experience:
5+ years of information security experience including defining security programs within companies
Experience with the translation of penetration testing and security assessments preferred
Understanding of firewalls, network switches, proxies, SIEM, antivirus, and IDPS concepts
Good verbal & written communication skills
Able to work with very little supervision in a fast-paced environment
Facilitates administrator and end-user IT security training
*Or 9+years equivalent combination of education and applicable experience
PREFERRED QUALIFICATIONS:
Knowledge, Skills, and Abilities:
Microsoft Security Certification
Computer Hardware, Windows 10 OS, and other software support.
Azure AD and broader Azure applications
PowerShell scripting, Power Platform applications (Power Apps, Power Automate), MS Intune, SCCM
WORKING CONDITIONS:
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of the role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Office deskwork, requiring sitting, walking, using phone & computer
May lift up to 30 lbs. occasionally
Ability to travel up to 10% including international travel
Rev: January 2024
Loram is an Equal Opportunity Employer and will make all employment-related decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, marital status, familial status, status with regard to public assistance, membership or activity in a local commission, protected veteran status, or any other status protected by applicable law
#LI-KK1
#LI-HYBRID
Interoperability Architect (2891171)
Remote Job
Job Title: Interoperability Architect
Work Location: Remote, must sit in: Alabama, Arkansas, Florida, Georgia, Illinois, Louisiana, Michigan, New Hampshire, North Carolina, Ohio, Pennsylvania, South Carolina, Tennessee, Texas, Virginia, and Wisconsin
Full-Time/Permanent Position
Job Title: Interoperability Architect
Fully Remote
Full-Time/Permanent Position
Are you looking to take your career to the next level by joining one of Atlanta's leading healthcare organization? Would you consider yourself a strategic problem-solver and have the ability to create and implement solutions that will positively impact patient care?
We are in search of an Interoperability Architect to oversee the design and implementation of systems for secure and innovative data exchange between healthcare entities. This role involves leveraging technologies like FHIR, APIs, cloud services, AI, and machine learning to create scalable, secure, and compliant data-sharing solutions. The architect will also collaborate with clinical, IT, business, and external partners to foster cross-team innovation and ensure adherence to industry standards (HIPAA, HL7, FHIR, etc. ).
Key responsibilities include developing modular architectures, promoting collaboration, ensuring data governance, exploring emerging technologies, driving change management, and building external partnerships.
Qualifications Include:
Education:
Bachelor's in Computer Science, IT, Healthcare Informatics, or related field (Master's preferred).
Experience:
5+ years in healthcare IT, systems integration, or interoperability solutions.
Experience creating and implementing architectural plans and solutions within the healthcare space.
Proven experience collaborating with multiple departments (IT, clinical, and business) to solve problems and create solutions.
Skills:
Expertise in secure, scalable data-sharing solutions, API design, cloud services, data privacy, and governance.
Attributes: Innovative, collaborative, strategic visionary, and a change leader.
Senior Mainframe Security Engineer (Remote Option) - Hybrid
Remote Job
RegularYour opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. Schwab's Cybersecurity Services (SCS) purpose is to safeguard and enable the firm to cultivate client trust. The Identity & Access Management (IAM) department is responsible for the administration of user access for the windows and mainframe environment for all Schwab internal users. This includes Active Directory, Exchange, TSO/Beta, SecurID, VAS enabled UNIX, Remedy, and a variety of other Schwab Business applications. We also provide technical support for access control issues for Schwab global-wide production systems
This individual contributor Senior Mainframe Security Engineer supports, troubleshoots, and performs maintenance on the mainframe security environment, Top Secret, with a heavy emphasis on risk mitigation. Additional responsibilities include, overseeing mainframe system security and system health; creation, support, and maintenance of system IDs; development and maintenance of the operating system; audit reporting and support; mainframe certificate administration; security product customization and mainframe strategy.
A successful person in this role will exhibit an ability to work both independently and within teams to complete work with minimum supervision. Strong customer service, written and verbal communication skills are required. Responsibilities include audits, including the creation of reports for systems IDs and infrastructure. Incident investigations of violations and replies to RACF and Top Secret infrastructure.
Strategically the individual will help determine the direction of the RACF and Top Secret architecture at Schwab, review Mainframe Security, and identify opportunities for risk mitigation, improvement and areas that require immediate change.
What you have
Required Qualifications:
4-6 years of mainframe security experience with multiple operating systems, including windows, Unix, and mainframe systems including RACF and Top Secret security systems
Preferred Qualifications:
Ability to analyze complex business and system requirements
Ability to work both independently and within teams
Ability to lead small teams in technical tasks
Ability to anticipate technical issues that require resolution for success
Ability to interface with business / technology partners on projects
Strong analytical, technical, strategic and communication skills
Demonstrated ability to achieve success on large complex initiatives
“In addition to the salary range, this role is also eligible for bonus or incentive opportunities.”
What's in it for you
At Schwab, we're committed to empowering our employees' personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you'll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis.
We offer a competitive benefits package that takes care of the whole you - both today and in the future:
401(k) with company match and Employee stock purchase plan
Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
Paid parental leave and family building benefits
Tuition reimbursement
Health, dental, and vision insurance
Cyber Security Engineer
Remote Job
Voted by employees as a Top Place to Work, our client's patented software platform provides early detection, diagnosis and recovery of cyber and ransomware attacks allowing businesses to accelerate response, minimize disruption, prevent data loss, and reduce risk. The business is leading the way in developing cutting edge, high-performance AI-powered data security solutions and technologies. We are now looking for a Senior Cyber Security Engineer to join their busy, successful, and growing team.
Senior Cyber Security Engineer (Reverse Engineering)
Holmdel, NJ- hybrid working from home role with 3 days per week office based.
$150-170K plus bonus and excellent benefits package including generous pre-IPO stock options.
You must be a US citizen or Green Card holder to apply for this role.
To be successful in this role:
You will be a confident and senior Cyber Security Engineer with a minimum of 2 years in cybersecurity roles with a focus on reverse engineering and malware analysis along with a Bachelor's degree in Computer Science or a related field.
Other requirements for this role include:
Advanced understanding of computer architecture, assembly language, and low-level programming
Proficiency in reverse engineering tools and techniques
Strong experience with C and Python programming
Familiarity with Windows OS internals and vulnerabilities, as most attacks and defenses focus on this platform
Excellent problem-solving and analytical abilities
Strong written and verbal communication skills
Comfortable working collaboratively in a challenging, team-oriented environment
Ability to operate with minimal supervision in a matrixed organization
Preferred qualifications for this role include:
Experience in exploit development and vulnerability research
Knowledge of modern attack vectors, defense mechanisms, and mitigation strategies
Familiarity with tools like SVN, Git, Jira, and Confluence
Job role and responsibilities:
Our client is seeking a Senior Cyber Security Engineer with a specialization in reverse engineering to join their cutting-edge team within the Machine Learning (ML) department. This role is pivotal in enhancing their AI-powered security product, leveraging reverse engineering to dissect and analyze malicious software and develop advanced security measures. If you thrive on tackling sophisticated cybersecurity challenges and working on low-level system analysis, this opportunity is for you.
Key responsibilities for this role include:
Malware Analysis: Conduct reverse engineering of malware, exploits, and other security threats to uncover vulnerabilities
Executable Analysis: Analyze and dissect software to understand behaviors, identify threats, and develop countermeasures
Security Architecture: Collaborate with the ML team to enhance the security product's architecture based on reverse engineering findings
Technical Reporting: Create detailed documentation and reports on reverse engineering processes and outcomes
Innovation: Stay abreast of emerging trends, tools, and technologies in cybersecurity and reverse engineering
Benefits:
Competitive salary up to $165K
Excellent benefits package
Stock options in a growing company
This is a unique opportunity to join a forward-thinking team working at the forefront of cybersecurity innovation. With a competitive salary, stock options, and the chance to make a significant impact, this role is ideal for those ready to tackle advanced threats in an ever-evolving landscape.
If you're passionate about cybersecurity and eager to take on the challenge of protecting critical systems, we'd love to hear from you!
SAP RTR, FICO Functional/ Architect
Remote Job
This is remote job with travel to Atlanta, GA - 50% travel
SAP FICO RTR Functional Architect
U/stand Template, U/stand PESNA/PCEC Business processes, CP4 System customizations.
Conduct workshops to facilitate Template adoption, Collaborate and convince business on global template , best practices, Solution advisory
REMOTE Sr Cyber Security Engineer (Red Team Engineer) - No C2C
Remote Job
REMOTE Cyber Security Engineer (Red Team) - No C2C and No Sponsorship
MUST LIVE IN: Illinois, New York, Texas, or Washington D.C.
One of the world's most prominent derivatives marketplace is focused on seeking highly motivated individuals to help foster their corporate culture and uphold their core values with integrity. In this role, you will be working with the most advanced trading technology and industry-leading clearing and risk management capabilities. Come join their world-class team!
This Contract role as a Remote Cyber Security Engineer - Red Team (must live in Illinois, New York, Texas, or Washington D.C.), is responsible to lead red team exercises against a hybrid environment using threat intelligence and the MITRE ATT&CK Framework.
Responsibilities:
· Lead red team exercises against a hybrid environment using threat intelligence and the MITRE ATT&CK Framework.
· Participate in purple team exercises that are intelligence driven to test cyber detections
· Build and maintain Red and Purple team infrastructure, automating functions where possible.
· Continually research new offensive security tactics, techniques, and procedures and communicate knowledge of the same to other team members.
· Conduct ad-hoc offensive security testing using industry standard tools and/or internally developed tools.
· Lead report creation activities including compromise narratives and detailed technical findings with appropriate risk severity ratings, tactical and strategic recommendations to reduce risk levels, peer review of team's deliverables.
· Assist cyber defense teams during incident investigations providing subject matter expertise on attacker tradecraft and mindset.
· Interface with other information security departments, as well as other technology departments and business stakeholders to raise awareness of security issues and to provide knowledge sharing on remediation.
· Active contributor to Red and Purple Team activities for internal presentations and conference.
Requirements:
· Approx 8 years' experience with industry standard Red Team testing tools (Cobalt Strike, Mythic C2, Rubeus, Bloodhound, Covenant, etc.); or the ability to demonstrate equivalent knowledge.
· Expert understanding of how an Advanced Persistent Threat could compromise a financial institution without using phishing.
· Expert understanding of Red Team concepts, tools, and automation strategies.
· Expert understanding of MITRE ATT&CK framework tactics, techniques, and procedures.
· Expert understanding of measuring and rating vulnerabilities based on principal characteristics of a vulnerability.
· Expert understanding of Windows and Linux system hardening concepts and techniques.
· Expert understanding of modifying payloads to bypass detections like EDR.
· Expert understanding of how to compromise a company without using phishing.
· Strong understanding with at least one scripting language (Python, Ruby, PowerShell, Bash, etc.).
· Experience with at least one cloud environment (AWS, GCP, Azure).
· Experience attacking cloud, on-prem and/or hybrid environments from initial access all the way through actions on objective.
Nice to have:
· Previous experience of Red Team project delivery to include creation and execution of statement of work, risk mitigation strategies, and working with stakeholders to remediate findings.
· Experience of using multi operating system command and control tools.
· Experience developing custom attack tradecraft or modifying existing tools.
· Experience using automated configuration management such as Chef.
· Experience discovering and exploiting vulnerabilities in AI systems.
· Experience of conducting Offensive Security and/or Red Team exercises against mac OS, iOS, or ChromeOS.
· Recognized industry certifications such as, but not limited to, GPEN, GXPN, GREM, eCPTX, eCPPT, OSCP, OSWE, CISSP, CPSA, CRT, etc.
· Knowledgeable in Industry Security standards (i.e.: TIBER-EU, CBEST, NIST Cyber Security Framework, ISO27002, etc.).
· Knowledgeable in Agile project management.
Benefits:
Solving IT, a Woman and LGBTQ+ owned and operated organization is thrilled to provide a comprehensive benefit package to all our W2 employees and their families, regardless of gender. We are proud to offer five diverse health plan options as well as a PPO dental plan through Blue Cross Blue Shield, Term Life/AD&D Insurance, and a 401(k) Savings Plan. Solving IT covers a portion of the health and dental premiums for our employees.
As you progress in your professional journey, Solving IT is dedicated to accommodating your evolving preferences and matching you with fulfilling projects. We champion equality and embrace diversity in all its forms. Creating an atmosphere that encourages varied perspectives to collaborate fosters personal development, strengthens team unity, and contributes to the overall success of the organization!
Whether you're seeking your next career challenge or aiming to stay abreast of industry trends, Solving IT is committed to supporting your career advancement. We actively encourage applications from all backgrounds and utilize the most up-to-date market insights and compensation data to ensure that you receive not just advice, but the complete Solving IT Experience.
Remote: ServiceNow Legal Service Delivery Architect
Remote Job
Must Have Experience:
Good Understanding about Legal Request and Legal Matter Management
Good to have knowledge about legal simple contracts
Hands on Experience in Legal Counsel workspace
Experience in development of portal/ ESC development
Good knowledge About Practice Area applications
Good Experience of Legal Process, how the Legal request will be promoted to Legal Matter
Good Understanding of relation between intake forms, Practice area and category
Good Experience in Configuring Legal Now Mobile
Should have the experience of creating Reports & Dashboard, using indicators
Good Experience in scripting: Business Rules, Client Scripts, UI Actions, UI Pages, Access Control, etc.
Good experience in configuring the Assignment Rules
Hands on experience in configuring Flow designer for Process automation
Good understanding in Legal matter task management, Artifacts.
Hands on experience in implementing legal matter template.
Hands on experience in email client configurations.
Good to have knowledge about contract management
Good to have knowledge in integration of LSD with cross platforms
Good experience in configuring SLA's and Approvals
Hands on experience in configuring knowledge base for legal service delivery.
Good to have Experience:
Good understanding of data architecture, use/re-use data in core ServiceNow tables and data pulled from enterprise repositories for solution design
Be able create detailed solution design document and explain various aspects of solution architecture and related artifacts
Expertise in designing API based integrations using Spokes and REST messages including configuring various modes of authentication.
Should be hands on for creating POCs, installing plugins and configuring products for new feature assessment and business demonstrations
Familiar with scripting technology such as JavaScript, Angular JS, and Jelly.
Experience of custom applications development
Experience in working on Performance Analytics
Design and modification of ServiceNow Service Portal.
Domain Separation and designing the Process and data flow within various domains
Knowledge of LDAP/Active Directory/SSO.
Review existing set up and provide best practice recommendations in line with the OEM
Monitor health, usage, and compliance of ServiceNow systems.
Excellent knowledge of ServiceNow Best Practices and ongoing knowledge of latest ServiceNow features.
Experience with HTML coding and Jelly script strongly preferred.
Experience with scripting in ServiceNow (Business Rules, UI Pages, UI Macros, etc.) Excellent collaboration skills including analysis, brainstorming, communication, teamwork.
Self-starter and innovator.
Academic and Professional Experience
Professional
10+ years of relevant development experience with ServiceNow required. At least 4+ years in a role of ServiceNow Technical Architect.
2+ years of experience in working in Legal Service Delivery
Certification as ServiceNow System certified administration
At least 2 main line certifications
Legal Service Delivery - Accreditation is a must
ITIL Foundations certification is preferred.
Bachelor's degree or equivalent combination of education and experience.
Lead Information Security Architect
Remote Job
****Company**** Federal Reserve Bank of San FranciscoWe are the Federal Reserve Bank of San Francisco (FRBSF)-public servants with a mission to advance the nation's monetary, financial, and payment systems to build a stronger economy for all Americans. We are a community-engaged bank, and are committed to understanding and serving the vibrant, expansive communities of the Twelfth District. That means we seek and appreciate new perspectives. We respect people for what they do and for who they are. We build opportunities to learn and grow. When you join the SF Fed, you become part of a diverse team united in its purpose to promote an economy that works for everyone.
We empower our people to balance their life and work responsibilities. That's why we offer a flexible hybrid work model that allows you to collaborate with office colleagues on some days, and work from home on others.Information Security at the FRBSF has a position for a Senior or Lead Information Security Architect who will join us in evolving application security and fostering collaboration with development teams. This role offers the opportunity to use your technical skills, and security understanding, to review and design solutions that assist our development teams in implementing DevSecOps and creating secure and resilient applications and environments. This role requires strong analytical, communication, problem solving, engineering, design and interpersonal skills. In this role you will work closely with other members of the Information Security team, our application development groups, and other groups across the Federal Reserve System (FRS), helping to build strong relationships across functions and create solutions that provide effective, seamless security to protect our custom developed products.
**Essential Responsibilities:**
* Evolve and mature our models, templates, standards and procedures related to secure application development and secure application and cloud architecture. Ensure these artifacts are in alignment with FRS policy and standards.
* Consult with our development teams to help them align with FRS policy and standards and meet the risk appetite of the customer.
* Work with members of application development teams to review and create secure application and infrastructure designs and patterns.
* Assist development teams by reviewing threat models related to applications and related systems. Analyze potential business impact and exposure leading to risk, based on emerging security threats, vulnerabilities, configurations, threat actor TTPs, etc.
* Evaluate CICD pipeline design, and related development team processes and help to mature and secure creation, management and utilization of pipelines.
* Assist in identification and integration of security focused tooling into development and operations processes.
* Support secure application architecture within the Federal Reserve System by fostering constructive dialogue and seeking resolution when confronted with discordant views.
* Mentor more junior security, application development and application architecture members, and be a security thought leader for the organization.
* Solicit feedback and continuously improve your knowledge, skills and capabilities related to the position.
* Assist with recruiting activities and administrative work.
**Minimum Qualifications:**
* Bachelor's degree in computer science, Information Systems, Computer Engineering, Cybersecurity, Systems Analysis or an equivalent work experience with 7+ years of application design, development and security; an additional 4 years of experience may be substituted for a degree
* Exposure to multiple diverse technologies, including those used in commercial cloud environments, and applications utilizing languages such as: C#, C++, Java, Python, Go, Rust, PowerShell, Node.js, React, Electron and Bash Minimum of 5 years of experience in defensive security, 8 or more years in IT
* Knowledge of a wide variety of information security architectures, concepts and techniques, as well as supporting security tools
* Knowledge of common web application vulnerabilities and attacker TTPs and security platform tools (Firewall, EDR, SIEM, SAST, IAST, SCA, Secrets Detection, etc.)
* Experience with CICD platforms, Git and GitFlow
* SANS GSEC or equivalent technical or architectural security focused certification
* Must be a U.S. Citizen or a Green Card holder with the intent to become a U.S. Citizen
**Preferred Qualifications**
* Experience with threat modeling and security review processes
* Experience with securing applications deployed within AWS or Azure
* Familiarity with OWASP projects and NIST and CISA standards and guidance
* Familiarity with security architecture questions related to the use of machine learning and artificial intelligence.
* Leadership experience in multiple, large, cross-functional teams or projects. Ability to communicate clearly and influence outcomes
* Experience with pattern-oriented design and architecture of high-volume transactional systems
* Ability and desire to engage in continuous learning and upskilling
* SANS GWEB, GWAPT, or other similar secure development, cloud security or application security certification
*Base Salary Range for Lead Info Security Architect: Min: $155,700 - Mid: $202,200 - Max: $248,700 (Location: San Francisco)*
*Final salary and offer will be determined by the applicant's background, experience, skills, internal equity, and alignment with market data.*
*We offer a wonderful benefits package including Medical, Dental, Vision, Pre-tax Flexible Spending Account, Backup Child Care Program, Pre-Tax Day Care Flexible Spending Account, Paid Family Care Leave, Vacation Days, Sick Days, Paid Holidays, Pet Insurance, Matching 401(k), and Retirement/Pension.*
*We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. The SF Fed is an Equal Opportunity Employer.*
*#LI-Hybrid*
****Full Time / Part Time****
Full time****
****Regular / Temporary****
Regular****
****Job Exempt (Yes / No)****
Yes****
****Job Category****
Information Technology****
****Work Shift****
First (United States of America)*The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.*
Always verify and apply to jobs on Federal Reserve System Careers ( ) or through verified Federal Reserve Bank social media channels.
OUR BANK has one of the most recognizable brands around the world. The Federal Reserve is the central bank of the United States-one of the world's most influential, trusted and prestigious financial organizations. The Federal Reserve is charged with the important mission of promoting a strong economy and a stable financial system and fulfills this responsibility by formulating national monetary policy, supervising and regulating banks and bank holding companies, and providing financial services for banks and the U.S. government.
OUR PEOPLE are diverse in background and ideas, which allows for ongoing creativity and innovation. Ultimately, they are the ones who push our high-performance, exchange-driven culture forward.
Why Our People Choose Us:
Our reputation precedes us
There will always be room for personal growth
Our people are first
You'll find the right balance
Your responsibilities will be meaningful
We hope that you will be our future colleague.
Always verify and apply to jobs on or through verified Fed
Cyber Security Architect
Remote Job
Cyber Security Architect, Remote
Contract
100% Remote
Due to our government client requirements, we can only consider US Citizen or a Green Card holders for this position
NO THIRD PARTY RECRUITERS PLEASE! CANDIDATES MUST BE SELF-REPRESENTED.
Description
Our client is seeking a skilled SaaS Security Senior Engineer to support their client's Software as a Service (SaaS) Governance program. This role is focused on helping the agency speed the secure use of SaaS through discovering and evaluating SaaS already in use, streamlining and automating the process to authorize new SaaS deployments, and monitoring the security posture of SaaS solutions. Specifically in this role you will support the automated collection and maintenance of SaaS inventory data, and help the client use this data to drive business and risk decisions. This includes evaluating associated tools and technologies, developing processes, developing scripts and automation, evaluating SaaS provider security capabilities. You will also help maintain and enhance the SaaS governance framework.
Responsibilities
Utilize tools such as Cloud Access Security Broker (CASB) and others to discover and catalog SaaS applications across the enterprise.
Conduct manual and automated discovery efforts to ensure a comprehensive SaaS inventory.
Collaborate with the broader SaaS Governance team to share discoveries and insights.
Assess and document the security posture of discovered SaaS applications.
Provide inputs to streamline the process of requesting and approving SaaS/PaaS services.
Participate in the continuous monitoring and assessment of SaaS usage and security configurations. Develop security monitoring and compliance approaches and processes for SaaS application.
Collaborate to unveil insights and metrics for SaaS discovery.
Recommend and provide guidance to business owners relative to the security risks associated with SaaS applications.
Develop enterprise-wide standards for managing the cyber risk posture of SaaS applications.
Provide recommendations to the CISO and business owners to improve the governance of acceptable SaaS applications.
Evaluate tools and technologies to automate all aspects of SaaS Governance.
Support and lead evolving business development efforts through the application of technical/functional expertise to develop sound business solutions.
Identify and influence future work beyond current project, consistent with the account strategy or corporate objectives.
Contribute specialized domain or technical content to proposal sections or client white papers.
Build a productive relationship with the client and understand their structure and goals.
Requirements
Bachelor's degree in computer science or a technology related field.
15+ years of related IT/cyber work experience.
Experience reviewing IT security and compliance documentation from a risk perspective.
Proficient in the use of SaaS tools and management processes.
Familiarity with NIST SP 800-53 controls and its framework.
Understanding of SaaS applications and their security considerations.
Strong working knowledge of application security concepts and approaches.
Strong analytical and writing skills.
Excellent teamwork, organizational, communication, and collaboration skills.
Desired
At least five (5) years of experience with IT Security frameworks (FedRAMP, NIST, etc.).
Application security or development experience.
CISSP, CCSP, CISA, CISM or similar certification.
Experience with cloud environments, particularly AWS, Azure, or GCP, encompassing architecture, services, security, and governance.
Prior federal government IT consulting experience.
Please Note:
Only those individuals selected for an interview will be contacted.
No calls, inquiries, or Third-Party Vendors please.
We are an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences. (The ACI Group is unable to sponsor H1B Visas).
$1000 Referral Bonus - ************
Since 1988, The ACI Group, a Baltimore-based staffing firm, has been committed to hiring the industry's leading professionals, and presenting exciting career opportunities. We have access to varied types of contract, permanent and contract-to-perm positions and offer a choice of employment options including a full benefits package.
Cloud Security Architect Company Hidden Technology Services Redmond, WA 1 Opening 1 day ago $2,000 reward per hire
Remote Job
**Cloud Security Architect** Company Hidden Technology Services Redmond, WA Base pay $12,345 - $678,910 or to view salary and company information Other Contract 1 Opening $2,000 reward per hire **About this Role** Agility Partners is seeking a qualified Cloud Security Architect to fill an open position with a Fortune 15 company based in the greater Seattle area. In this role, you will be part of a dynamic team focused on cloud security within the security subdivision. Working on key projects like developing a security baseline for protecting Azure, you'll delve into cloud security and posture management, combining Azure policy and custom logic. The opportunity lies in being part of a high-demand industry sector, gaining valuable skills at a large scale, and collaborating with top teams in identity security and cloud technology.
In this role you will:
* Develop and implement security baselines for protecting Azure, incorporating Azure policy and custom logic
* Collaborate with cross-functional teams to drive complex cloud security projects from start to finish
* Ensure adherence to deadlines while maintaining high-quality work standards
* Provide expertise in Power BI, AWS, Azure Synapse, and other cloud technologies to drive effective security solutions
**Benefits and Perks**
* 100% remote position
* Opportunity to spearhead cloud security initiatives at a Fortune 15 company, working alongside top industry experts in a dynamic and high-demand field
* Culture-focused company focused on customer-first and a growth mindset
* Great resume builder - gain experience with a Fortune 15 company
* Medical, Dental and Vision plans (PPO and HSA plans available); Individual and Family coverage offerings
* Long and short term disability coverage
* 401(k)
**The Ideal Candidate**
* 10+ years of overall experience in cloud security or related fields
* Extensive experience with Power BI, AWS, and Azure Synapse
* Proven track record of successfully driving and delivering complex projects
* Strong collaboration and organizational skills, demonstrated through prior experience or achievements
* Excellent communication skills and ability to work effectively in a team environment
* Ability to thrive in a fast-paced, dynamic environment with shifting priorities
Share this job. Make $2,000.
When a friend applies to this position and gets hired, you'll get credited with a referral reward!*
*Reward paid upon hire of your candidate according to our Recruiting Agreement Policy (see right).
Principal Information Security Architect
Remote Job
IT is different here. Our work as technology specialists pushes the boundaries of what's possible in health care. You will build solutions that make a real difference in people's lives. Driven by the importance of their work, our team members innovate to elevate. We're encouraged to be curious, collaborate, and turn ideas into solutions that can make health care better for all.
The (CIAM) Information Security Architect is responsible for work with key business partners, developers, vendors, and security engineers to help craft the future of our Consumer Identity and Access Management (CIAM) Program. This position will focus on the solution design for the Customer Identity and Access Management (CIAM) platform and guide the team on its implementation. The (CIAM) Information Security Architect should be comfortable and knowledgeable regarding the challenges of B2B, B2C, and other IAM ecosystems, an expert at managing, configuring, and developing CIAM platforms.
If you are ready to make a career out of making a difference, then you are the person for this team.
**What You Will Do**
+ Influence, consult with and build collaborative working relationships with senior business and IT leadership at the VP/Officer and C levels to help meet long term security objectives.
+ Conduct risk assessments, evaluate alternative strategies, develop recommendations and ensure responsive communication with business representatives, security management, and third party vendors.
+ Participate in the design review process and support the overall Security Architecture process.
+ Plan, implement, and manage IAM/CIAM and associated products to meet user and company needs. The (CIAM) Information Security Architect will work closely with other cross functional teams to scope and help mature the Consumer Identity and Access Management program services for our Partner and Customer Experience.
+ Utilize security expertise and knowledge of new and emerging cyber-attacks threats to make recommendations to management regarding implementation of best practices and/or process improvements to proactively protect the company's systems and networks.
+ Perform analysis of requirements and for the definition of detailed solution design, implementation, and delivery of IAM/CIAM solutions
+ Provide technical expertise to complex relevant problems
+ Develop, maintain and implement security policies, processes, tools and methodologies that support security architecture standards and ensure effective evolution of security architecture within the organization.
**What You Bring**
+ Bachelor's degree and 7 years of broad based information security experience, with expertise in the following areas: security engineering, security operations/ administration, incident response, audit, controls and risk management.
+ Experience with architecture processes, strategies and standards is required.
+ IT consulting and executive advisory experience with demonstrated skills in translating business requirements to technical solutions is necessary.
+ If no degree, 8 years of experience as stated above.
+ Functional understanding of IAM processes and systems related to Identity Governance and Administration (IGA), Identity and Access Management (IAM) and Privileged Access Management (PAM).
+ Prior experience supporting Multi-Factor Authentication (MFA) protocols and systems.
+ Strong/expert level understanding of authentication mechanisms and protocols including OIDC/OAuth and SAML, and key related security concepts such as MFA, and how these are used with IdPs
+ Experience coordinating vendor solution delivery and partnering effectively with vendors to meet business needs.
+ At least one security industry certification (i.e., CISSP, CISA, CISM, SANS).
**Hiring Preferences**
+ An understanding of core security concerns within a typical application (Password hashing, SSL/TLS, encryption at rest, XSS, XSRF)
+ Familiarity with data privacy concepts, fraud detection and integration technologies
+ Experience in configuration, implementation, and development of web services, SAML, integration of REST and OAUTH API with various applications and services.
+ An understanding of core security concerns within a typical application (Password hashing, SSL/TLS, encryption at rest, XSS, XSRF)
+ Exceptional consulting skillset with ability to provide appropriate direction to other IT groups and executives on security matters.
+ Demonstrated initiative to learn new technologies.
+ Exceptional analytical and problem-solving skills.
+ Proven ability to present and discuss highly complex technical information to users with varying technical expertise.
+ Must be detail-oriented with a focus on accuracy.
+ Excellent written and verbal communication skills, including excellent presentation skills.
+ Demonstrated ability to develop and maintain collaborative working relationships with varying constituencies and teams.
+ Superior customer focus and the ability to manage customer expectations.
**Salary Range**
At Blue Cross NC, we take great pride in a fair and equitable compensation package that reflects market-price and our starting salaries are typically planned near the middle of the range listed. Compensation decisions are driven by factors including experience and training, specialized skill sets, licensure and certifications and other business and organizational needs. Our base salary is part of a robust Total Rewards package that includes an Annual Incentive Bonus*, 401(k) with employer match, Paid Time Off (PTO), and competitive health benefits and wellness programs.
_*Based on annual corporate goal achievement and individual performance._
$105,600.00 - $191,800.00
**About Us**
It's an exciting time to work at Blue Cross and Blue Shield of North Carolina (Blue Cross NC). Health care is changing, and we're leading the way. We offer more than health insurance our customers can count on. We're committed to better health and better health care − in our communities and beyond. Our employees bring energy and creativity to the workplace, and it shows in our innovative approach to improving the health and well-being of North Carolinians.
Blue Cross NC is a fully taxed, not-for-profit company headquartered in Durham, North Carolina. We serve more than 4.3 million members, and we employ more than 5,000 people across the country who are passionate about making health care better for all.
Help us lead the charge for better health care by joining our award-winning team. Discover tremendous opportunities with us to do challenging and rewarding work. Opportunities that can lead you to a fulfilling career, work that can help others lead healthier, happier lives.
**Authorization to Work in the United States**
We use E-verify to confirm authorization to work in the United States. To learn more about E-Verify, including your rights and responsibilities, please visit E-Verify Overview (***************************************************** for English or Visión General de E-Verify (***************************************************************** for Español.
**Request Accommodations**
Blue Cross NC provides reasonable accommodations to applicants with disabilities. If you need a reasonable accommodation for any part of the application or hiring process, please notify HR at ********************** .
**For most roles, you can choose where to work - fully remote in one of the states listed below, in the office, or a hybrid of the two:**
Alabama, Arizona, Arkansas, Colorado, Florida, Georgia, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maryland, Michigan, Mississippi, Missouri, North Carolina, Ohio, Oklahoma, Pennsylvania, South Carolina, South Dakota, Tennessee, Texas, Utah, Virginia, Wisconsin, and Wyoming