Security architect jobs in Land O Lakes, FL

Location: St Petersburg, FL | Southfield, MI | Memphis, TN - [This position follows a hybrid work model, requiring on-site presence approximately 10-12 days per month]. Please note: This role is not eligible for work visa sponsorship, now or in the future. Compensation: $110,000 - $140,000 base salary range. Job Summary We are seeking an experienced IT Security Engineer to join our Identity & Access Management Engineering team, with a focus on Identity Governance & Administration and Directory Services. In this role, you will help secure the enterprise by managing and optimizing critical platforms such as Microsoft Active Directory, Microsoft Entra ID, and Infoblox. As a Security Engineer, you will do more than maintain systems-you will help shape the future of IAM. You will contribute to strategic projects, implement advanced security solutions, and drive automation to improve operational efficiency. This position offers the opportunity to work on high-impact initiatives that reduce risk, enable business growth, and ensure compliance across a dynamic environment. If you thrive in a collaborative setting, enjoy solving complex problems, and want to make a measurable impact on enterprise security, this role provides an excellent opportunity to innovate, lead, and grow. Responsibilities Manage and maintain Active Directory, Entra ID, and DNS/DHCP/IPAM systems. Define and implement support procedures for AD, Entra ID, and DNS/DHCP/IPAM. Handle operational engineering tasks, including tickets, incidents, change requests, vulnerability remediation, and maintenance. Provide technical input on IAM technologies, policies, and compliance requirements. Participate in IAM-related projects and contribute to deliverables using established methodologies. Engage in enterprise disaster recovery exercises and participate in on-call rotations. Recommend and implement technical improvements to enhance security and efficiency. Collaborate with stakeholders to translate business requirements into technical solutions. Develop and maintain system documentation, including flowcharts, diagrams, and specifications. Document current and future state processes and assist in planning transitions. Required Technical Skillsets Minimum 5 years of experience with Active Directory, Entra ID, AWS, and DNS/DHCP/IPAM. Hands-on experience with IAM in hybrid and cloud environments. Strong experience with networking solutions such as DNS/DHCP/IPAM. Proven scripting and automation skills (e.g., PowerShell). Enterprise-level experience required; financial services experience preferred. Additional skills: event/log analysis, troubleshooting, system monitoring, and event analysis. Education Bachelor's degree in Computer and Information Science (required). High School diploma (required).

Remote (EST/CST preferred) About the Role We're looking for a Security Engineer with strong communication skills and a deep understanding of Microsoft Windows environments. This role supports security initiatives within a healthcare setting, working closely with technical and non-technical stakeholders to help protect systems, data, and users. Key Responsibilities Support and maintain security controls across Windows-based environments Monitor, identify, and help remediate security risks and vulnerabilities Assist with security incident response and investigations Work closely with IT, compliance, and business teams to communicate security risks clearly Help ensure systems align with healthcare security and compliance requirements (HIPAA, etc.) Document security processes, findings, and recommendations in clear, simple terms Required Qualifications Strong experience with Windows products and environments (Windows Server, Active Directory, Group Policy, etc.) Experience working in a healthcare environment Solid understanding of basic security principles (access control, endpoint security, patching, monitoring) Excellent written and verbal communication skills Ability to explain technical concepts to non-technical audiences Nice to Have Experience with Microsoft security tools (Defender, Sentinel, Intune, etc.) Familiarity with healthcare compliance frameworks (HIPAA, HITRUST) Security certifications (Security+, AZ-500, or similar) Why Join Us Work on meaningful systems that support healthcare delivery Collaborative, low-ego team environment Opportunity to grow security skills in a Microsoft-focused ecosystem

ACTIVE TS/SCI SECURITY CLEARANCE REQUIRED We are seeking a TS/SCI-cleared Information System Security Officer (ISSO) to join our team and help strengthen the cybersecurity posture of critical federal systems. What You'll Do As an ISSO at D2, you'll play a key role in protecting high-value government systems. You will: Lead Security Documentation & Compliance Develop and coordinate all key authorization artifacts, including System Categorization, System Security Plans, and System Risk Assessments. Support control assessments, reporting, and ongoing monitoring using the CSAM (Cyber Security and Assessment Management) system. Keep components aligned with Core Controls and A-123 assessment timelines. Ensure all Risk-Based Decisions have current waivers and proper documentation. Strengthen System Security Posture Support security control testing, document results, assist in remediation, and ensure effective POA&M management. Develop or update Business Continuity Plans and Contingency Plans. Guide components on decisions affecting the security of their systems and networks. Prepare teams for tri-annual Security Assessment and Authorization (SA&A) activities. Perform Assessments & Provide Expert Analysis Conduct assessments of information system security requirements and recommend remediation priorities. Review system architecture, infrastructure, and SA&A documentation. Assess NIST 800-53 Rev. 4 controls and document outcomes. Evaluate and enhance standard SA&A documentation processes. Drive Risk Management & Continuous Improvement Perform and document risk assessments, evaluate vulnerabilities, and recommend risk-based mitigations. Develop and manage POA&Ms aligned with federal standards and industry best practices. Create System Security Plans, User Guides, and ST&E review documentation for new and legacy systems. Conduct NIST-based self-assessments and develop improvement plans. Develop Initial Privacy Assessments (IPA) and Privacy Impact Assessments (PIA). Conduct ST&Es and Independent Verification & Validation (IV&V) for federal IT systems. Conduct OMB A-123 security assessments for federal systems. What You Bring Bachelor's degree in Computer Science or a related technical field - or equivalent combination of education, certifications, and experience 8+ years of experience performing system security assessments, producing security documentation, or executing security upgrades across networks, servers, desktops, and databases 8+ years of experience developing and enhancing IT security policies aligned to federal and international standards 8+ years of IT security expertise, including experience developing C&A/SA&A packages and achieving ATO for classified systems Strong working knowledge of NIST SP standards, including NIST SP 800-37, and experience using CSAM TS/SCI clearance required, with eligibility for CI Poly At least one of the following certifications: CISA CRISC CISM CGEIT CISSP CAP Location Onsite at Customer Location U.S. Citizenship Required Additional Information All your information will be kept confidential according to appropriate guidelines. Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $145k-159k. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range. Highlights of our benefits include Health/Dental/Vision, 401(k) match, Accrued PTO, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and more! D2 Consulting is committed to a merit-based recruitment process and encourages applications from all qualified individuals. As a Veteran-Owned Small Business, we particularly welcome applications from veterans who have the requisite skills and experience. Job applicants that are interested in one of our openings and may require a reasonable accommodation to participate in the job application or interview process, should contact us to request an accommodation.

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. Job Summary: The Assistant Vice President in Security Engineering will be responsible for supporting and enhancing Unix-based security infrastructure across enterprise environments. This role requires deep technical expertise in AIX and RedHat Linux systems, along with strong scripting skills in Bash, Korn, Shell, and Python to automate security tasks and streamline operations. The candidate should be proficient in using Ansible for configuration management and have a solid understanding of TCP/IP networking principles. Key responsibilities include analyzing system logs to identify and resolve issues, utilizing Splunk and SIEM platforms for threat detection, and ensuring secure configurations across Unix systems. The role also involves working with threat detection tools and file integrity monitoring solutions, as well as managing SSH protocols and secure key access. Responsibilities: * Administer and secure Unix-based systems (AIX, RedHat Linux) across enterprise environments, ensuring compliance with internal security policies and external regulatory standards * Develop and maintain automation scripts using Bash, Korn, Shell, and Python to support security operations and system hardening * Assist in improving Ansible playbooks for secure configuration deployment and infrastructure consistency * Monitor and analyze system logs to identify anomalies, troubleshooting issues, and supporting incident response efforts * Utilize SIEM platforms such as Splunk to detect threats, correlate events, and support forensic investigations * Evaluate and remediate insecure configurations across Unix systems, contributing to continuous improvement of security posture * Support threat detection and file integrity monitoring initiatives, integrating tools and processes into Unix environments * Secure SSH configurations, including key management, access controls, and audit logging * Collaborate with cross-functional teams to support secure application deployments and infrastructure changes * Contribute to the development of security metrics and reporting to track system health, compliance, and risk indicators Qualifications: * 3 to 5 years background in IT administration with emphasis on Unix systems, including AIX and RedHat Linux * Proficient in scripting languages such as Bash, Korn, Shell, and Python, with a focus on security automation and tooling. * Experience with Ansible is a plus, but not required * Familiarity with TCP/IP networking, including secure configuration and troubleshooting * Skilled in log analysis and issue identification using native Unix tools and centralized logging platforms * Hands-on experience with Splunk and other SIEM technologies for monitoring and threat detection * Ability to identify and remediate insecure configurations across Unix-based systems * Exposure to threat detection methodologies and file integrity monitoring tools * Deep understanding of SSH, including secure key management and access control Education: * Bachelor's degree in Computer Science or a closely-related discipline, or an equivalent combination of formal education and experience "Visa sponsorship/support is based on business needs. We do not anticipate providing visa sponsorship/support for this position." The typical base pay range for this role is between $113k - $146k depending on job-related knowledge, skills, experience, and location. This role may also be eligible for certain discretionary performance-based bonuses and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below. MUFG Benefits Summary We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws (including (i) the San Francisco Fair Chance Ordinance, (ii) the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, (iii) the Los Angeles County Fair Chance Ordinance, and (iv) the California Fair Chance Act) to the extent that (a) an applicant is not subject to a statutory disqualification pursuant to Section 3(a)(39) of the Securities and Exchange Act of 1934 or Section 8a(2) or 8a(3) of the Commodity Exchange Act, and (b) they do not conflict with the background screening requirements of the Financial Industry Regulatory Authority (FINRA) and the National Futures Association (NFA). The major responsibilities listed above are the material job duties of this role for which the Company reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of conditional offer of employment, if any. The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified. We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual's associates or relatives that is protected under applicable federal, state, or local law.

Slide Insurance - Fun. Innovation Driven. Fueled by Passion, Purpose and Technology. At Slide, you will not only be part of a successful team, but you will also be a part of our Slide Vibe/award winning culture where collaboration and innovation are expected, recognized and awarded! Duties and Responsibilities Security Strategy & Governance Develop and maintain the enterprise security roadmap aligned with business strategy, insurance-specific risks, and regulatory obligations. Responsible for the cybersecurity program and establish policies, standards, and procedures for cybersecurity, data protection, access control, and technology governance. Prepare executive-level reporting on security posture, key risks, and program maturity for CIO, Executive Leadership, and Audit/Risk Committees. Lead or support compliance with NIST CSF, ISO 27001, NAIC Model Law, state DOI cyber requirements (e.g., NY DFS, FL OIR etc.), SOX, GLBA, PCI, and privacy regulations. Cybersecurity Program Management Oversee the Security Operations Center (internal and/or external), including threat monitoring, incident detection, and incident response. Lead development of modern security architecture including zero-trust principles, cloud security, identity governance, and endpoint security. Mature vulnerability management, penetration testing, and security hardening activities across the organization. Direct development and testing of incident response plans, tabletop exercises, and post-incident analysis. Manage investigation of security alerts, vulnerabilities, and suspicious activities. Regulatory Compliance & Public Company Requirements Ensure compliance with NAIC cybersecurity model law, NIST CSF, ISO 27001, state DOI regulations, PCI, GLBA, and privacy requirements. Oversee preparation of cybersecurity-related SEC disclosures, including incident reporting and governance statements. Partner with internal departments to maintain required documentation and audit readiness. Lead third-party risk programs covering vendors, agents, service providers, and cloud platforms. Business Partnership & Insurance-Specific Risk Management Partner with Underwriting, Claims, Product, and Sales to ensure secure design of systems and workflows. Work with actuarial and underwriting teams on cybersecurity posture assessments relevant to cyber insurance offerings. Ensure contact center, agent portals, field adjuster tools, and policyholder self-service platforms meet security standards. Balance strong controls with operational efficiency in a high-volume insurance environment. Drive remediation efforts in partnership with infrastructure, networking, DevOps, and application teams. Lead business continuity and disaster recovery planning for critical systems. Third-Party Risk Management Lead cybersecurity assessments for vendors, agent platforms, cloud service providers, and third-party partners. Ensure contracts meet required security and privacy standards. Data Protection & Privacy Oversee data protection strategy, including encryption, access management, retention standards, and sensitive data governance. Implement and enforce data protection standards including encryption, retention, and secure data handling for policyholder and agent data. Monitor for data-loss risks and manage DLP tools and processes. Cloud & Application Security Partner with engineering and DevOps teams to implement secure cloud (AWS/Azure) architecture practices. Ensure security controls are embedded in system development, integrations, and modernization efforts. Support secure design reviews for new applications, claims tools, underwriting systems, and customer portals. Team Leadership & Capability Building Provide leadership to employees and regularly conduct effective and timely structured Progress & Growth Structured Dialogue sessions. Coach, train, and develop employees; set goals and lead to success. Conduct employee interviews and make staffing recommendations, as needed. Manage relationships with key technology and security vendors, including MDR/MSSP partners. Build a culture of security awareness across the enterprise, including training, phishing simulations, and workforce engagement. Perform other duties, as assigned. Education, Experience and Licensing Requirements: Minimum 8 years' progressive experience in cybersecurity or information security. 3+ years leading InfoSec or cyber teams, ideally within regulated industries (financial services, insurance, fintech, banking). Experience with cloud security (AWS, Azure), identity access management, and security architecture. Experience with public-company cybersecurity governance and regulatory reporting required. Prior experience in P&C insurance, financial services, or other regulated risk-based businesses highly preferred. Desired Certifications: CISSP, CISM, CISA, CCSP, CRISC. Qualifications/Skills and Competencies: Deep knowledge of cybersecurity frameworks (NIST CSF, ISO 27001, CIS Controls). Strong understanding of NIST CSF, CIS Controls, ISO 27001, and NAIC Model Law. Hands-on experience with SIEM, firewalls, endpoint protection, IAM, cloud security, and vulnerability tools. Proven ability to lead security programs in mid-sized organizations. Excellent communication skills with technical and non-technical stakeholders. Demonstrated ability to brief executives. Exceptional time management skills with ability to prioritize tasks and allocate resources efficiently. Proven ability to be adaptable and flexible; able to adjust to new requirements or unforeseen issues. Expert user of MSO/365 applications such as Microsoft Teams, SharePoint, Word, Excel, PowerPoint, and Outlook. Desire to live Slide's Core Values. What Slide offers to you: The Slide Vibe - An opportunity to be a part of a fun and innovation-driven culture fueled by Passion, Purpose and Technology! Slide offers many opportunities to collaborate and innovate across the company and departments, as well as get to know other Sliders. From coffee chats, to clubs, to social events - we plan it, so all Sliders feel included and Enjoy their Journey. Benefits - Created using Slider feedback, Slide offers a comprehensive and affordable benefits package to cover all aspects of health...Physical, Emotional, Financial, Social and Professional. A Lifestyle Spending Account is set up for each Slider and Slide contributes to it monthly for use on any benefit that individually suits you - Health Your Way! 2023, 2024 & 2025 BEST PLACE TO WORK - Tampa Bay Business Journal 2024 & 2025 TOP WORKPLACE - Tampa Bay Times (Local) & 2024 TOP WORKPLACE - USA Today (National)

ISSO Employment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success: * Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. * Maintain responsibility for managing cybersecurity risk from an organizational perspective. * Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership. * Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies. * Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO). * Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes. * Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF. * Provide subject matter expertise for cyber security and trusted system technology. * Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems. * Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. * Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring. * Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications: * Bachelor's Degree. * A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc. * eMASS experience. * Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher. * Strong desktop publishing skills using Microsoft Word and Excel. * Experience with industry writing styles such as grammar, sentence form, and structure. * Ability to multi-task in a deadline-oriented environment. Ideally, you will also have: * CISSP, CASP, or a similar certificate is preferred. * Master's Degree in Cybersecurity or related field. * Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking. * Demonstrated ability to work well independently and as a part of a team. * Excellent work ethic and a high commitment to quality. Our Commitment: Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package. Health, Dental, and Vision Life Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation! Explore additional job opportunities with CGS on our Job Board: ************************************* For more information about CGS please visit: ************************** or contact: Email: [email protected] #CJ $92,213.33 - $125,146.66 a year We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Job DescriptionDescription: is contingent upon successful contract award. Prevailance is seeking a highly skilled Senior Information Security Analyst to support the planning, design, implementation, operation, and reporting of cybersecurity systems across complex network environments. This role requires deep experience with the DoD Risk Management Framework (RMF), system accreditation processes, cyber incident response, and vulnerability management. The ideal candidate brings strong technical expertise, the ability to interpret and action tasking orders, and the capability to train and mentor military personnel on cybersecurity best practices. Responsibilities include, but not limited to: Support planning, design, implementation, and operation of cybersecurity systems and architectures Manage RMF accreditation processes for new and existing systems, using service-level RMF tools Identify, track, and resolve cybersecurity vulnerabilities across networked systems and platforms Review network security configurations and assess system health and compliance status Monitor systems, activate remote terminals, and support resolution of cybersecurity incidents Receive, interpret, and respond to Cyber Tasking Orders (CCTOs), enterprise OpDirs, and other cybersecurity directives Support development and maintenance of cybersecurity diagrams, including system-level and operational-level views Execute robust change management processes and maintain configuration documentation Train military personnel in cybersecurity processes, best practices, and unit training requirements Assist in developing and executing cybersecurity training and education programs Provide subject matter expertise on vulnerability remediation, risk management, and cyber readiness reporting Requirements: Qualifications: 5-8 years of experience in cybersecurity system planning, design, implementation, operation, reporting, and RMF accreditation Experience identifying, tracking, and resolving vulnerabilities across networked systems Desired Qualifications: Senior-level cybersecurity and defensive cyber operations experience Skilled in accrediting systems using service RMF tools and managing lifecycle compliance Capable of interpreting and responding to CCTOs and OpDirs and managing incident resolution workflows Proficient in reviewing network security settings and monitoring system health Ability to train military personnel and support cybersecurity education initiatives Capable of producing system-level cybersecurity diagrams and maintaining change control documentation Strong analytical, documentation, and communication skills Education: Bachelor's degree (BA/BS) DoD IAT Level II or higher certification (e.g., Security+, CISSP, CASP+) Security+ plus Cybersecurity Workforce Master Certification also meets the requirement Clearance: Possesses Top Secret Clearance ( SCI preferred ) Secret may be acceptable depending on mission needs If you meet these qualifications and are ready to make an impact, we encourage you to apply today! Prevailance, Inc. proudly supports veterans as a member of the V3 (Virginia Values Veterans) program and the Hire Vets initiative. Recognized as a Top Workplace in 2025, Prevailance fosters a supportive, mission-driven environment for its team members. We provide a comprehensive benefits package to eligible employees, designed to support health, wellness, and financial security. Our benefits include: Medical Insurance TriCare Supplemental Dental Insurance Vision Insurance Life & Accidental Death & Dismemberment (AD&D) Coverage 401(k) Plan with Company Matching Contributions Paid Time Off (PTO) 11 Paid Holidays Education Reimbursement Program Computing Device Reimbursement Program Prevailance, Inc. is an Equal Opportunity/Affirmative Action Employer. All qualified candidates will receive consideration for employment and will not be discriminated against based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, pregnancy, genetic information, citizenship status, marital status or any other consideration prohibited by law or contract. Prevailance, Inc. participates in E-Verify and is VEVRAA Compliant.

Overview Location: MacDill AFB - Tampa, FL Clearance Required: Active TS clearance (eligibility for SCI and ability to obtain a CI poly is required upon application for initial consideration) **We are not able to upgrade or sponsor clearances** Certification Required: CISA, CRISC, CISM, CGEIT, CISSP or CAP At Bcore, our strength comes from how we deliver impact to the mission. Whether it's architecting critical IT solutions, producing actionable intelligence, or developing cutting edge technology, we succeed because of the expertise, collaboration, and agility of our teams. Our Mission Services division combines enterprise IT, cloud solutions, DevSecOps, systems engineering, software development, and operational support. Bcore accelerates decisive advantage for warfighters and intelligence professionals by fusing human insight, rapid-fire engineering, precision-measured outcomes, and relentless grit into mission-ready solutions. Do you want to join a team that is building tailored technical solutions to modernize our government's mission and our client's business? Do you have a desire to change how people work? Are you interested in helping to protect our nation's cyber interests? Join our growing team supporting the NGA customer missions as an Information System Security Officer (ISSO). Responsibilities What you get to do every day: Develop and coordinate all authorization documentation associated including the Systems Categorization, Systems Security Plan, and Systems risk assessment Support the control assessment, reporting and monitoring processes using the Cyber Security and Assessment Management (CSAM) system Assist the component with staying on track with Core Controls and A-123 control assessment schedules Work with components to ensure each Risk Based Decisions (RBD's) has a current Waivers. Coordinate with CSS Customer Liaison support, including status of the process and POA&Ms. Support and document security controls tests, assist in remediation and ensure that POA&Ms are being appropriately managed. Develop or update the Business Continuity and Contingency Plan for the component. Assist the components with decisions that affect security of their systems and networks. Facilitate preparations for the tri-annual Security Assessment and Authorization (SA&A) component's Information System. Conduct assessments of information systems security requirements, evaluate current security posture and recommend priorities for remediation. Review information system infrastructure and application architecture to assess security requirements Review existing SA&A documentation, Security Assessment Report and security infrastructure (i.e. IDS, firewalls, vulnerability scan tools, etc.) Assess NIST 800-53, Rev 4. Control and document results Evaluate and strengthen standard SA&A Documentation Perform and document risk assessments, analyzing security vulnerabilities, and the metrics to measure the risks associated with those vulnerabilities; Based on the risk profile of the analyzed systems, development and documentation of a Plan of Action and Milestones (POA&M) for mitigating those risks; Design and development of comprehensive Systems Security Plan, covering at a high level the infrastructure, policies and procedures which define the systems security profile for the analyzed systems; Development of Systems Security Users Guides specific to selected networks, desktop computers, servers and data base systems; Design, development, and validation of System Test and Evaluation (ST&E) reviews for new and/or legacy systems. Review and conduct NIST-based Self Assessments, identifying any weaknesses which need to be addressed, and developing a POA&M for each of those weaknesses based on industry best practices. Design and development of Initial Privacy Assessment (IPA) and Privacy Impact Assessments (PIAs) for each major Federal Government IT Systems Developing and conducting System Test and Evaluations (ST&Es) and Independent Verification and Validation (IV&Vs) of the security profiles of Federal Government IT Systems Conduct OMB A-123 security assessments of Federal Government IT Systems. Qualifications Clearance Required: Active TS clearance (eligibility for SCI and ability to obtain a CI poly is required upon application for initial consideration) **We are not able to upgrade or sponsor clearances** Certification Required: Current certification in one or more of the following IT Security disciplines: ISACA - Certified Information Systems Auditor (CISA) ISACA - Certified in Risk and Information Systems Control (CRISC) ISACA - Certified Information Security Manager (CISM) ISACA - Certified in Governance of Enterprise IT(CGEIT) (ISC)2 - Certified Information Systems Security Professional (CISSP) (ISC)2 - Certified Authorization Professional (CAP) Education/Experience: Requires Bachelor's degree 8+ years' experience performing systems security assessments, preparing system security documentation, and/or performing security upgrades for live networks, desktop systems, servers, and enterprise data bases leading to successful certification and accreditation or security authorization of such systems. 8+ years' experience assessing and enhancing IT systems security policies and procedures in response to the regulatory requirements associated with Federal and International standards. 8+ years IT Security experience with extensive knowledge in security regulations and security assessments having developed numerous security C&A (or SA&A) and ATO on a range of systems including classified systems Strong working knowledge with NIST Special Publications and the NIST SP 800-37 SA using CSAM system What is ideal? Intelligence Community Experience preferred What you can expect from us Recognizing great achievements do not go unnoticed by bcore through service anniversaries, spot awards, and employee referral bonuses You'll join a growing organization of passionate, top-shelf, IT engineering professionals with extensive experience in actively developing the technology revolution in the Intelligence community Highlights of our benefits include Health/Dental/Vision, 401(k) match and potential Profit Sharing, Universal Leave, STD/LTD/Life Insurance/Voluntary Life Insurance, Stipends, Referral Bonuses, and more! Compensation is unique to each candidate and compensation packages are based on education, experience, and other requirements. BCore is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation or any other characteristic protected by law.

Job Description The Cyber Security Systems Engineer provides cyber defense analysis and engineering support for MARCENT systems, ensuring resilience and compliance against advanced threats. This role engineers security solutions for MARCENT communications systems, conducts vulnerability assessments and security audits, implements DoD cybersecurity standards, and provides documentation and training on cyber defense posture. With 7-10 years of experience, the engineer applies expertise in network security analysis, packet inspection, threat hunting, vulnerability assessment, SIEM operations, and forensic analysis. By integrating technical expertise with operational awareness, the Cyber Security Systems Engineer ensures MARCENT systems remain secure, compliant, and ready to counter evolving cyber threats. ***THIS EMPLOYMENT IS CONTINGENT UPON CONTRACT AWARD*** Responsibilities/Duties: - Engineer security solutions for MARCENT communications and information systems. - Conduct vulnerability assessments, penetration testing, and security audits to identify risks. - Implement DoD cybersecurity standards and RMF requirements. - Provide documentation, training, and guidance on MARCENT's cyber defense posture. - Perform network security analysis, including packet inspection and traffic monitoring. - Conduct threat hunting and vulnerability assessments to proactively identify risks. - Operate SIEM platforms, triage alerts, and conduct malware behavior and forensic analysis. - Apply frameworks such as the cyber kill chain and ATT&CK models to enhance defense strategies. Supplemental Duties: - Assist in developing SOPs for cyber defense operations and incident response. - Support compliance audits and RMF documentation requirements. - Contribute to after-action reviews and lessons learned from cybersecurity incidents. Administrative Duties: - Maintain compliance with MARCENT administrative procedures and reporting requirements. - Ensure cybersecurity documentation is archived according to records management standards. Supervisory Responsibilities: None. Education/Experience/Qualification: - Bachelor's Degree in Cybersecurity, Computer Science, or related discipline required. - 7-10 years of experience in cybersecurity engineering for DoD or military systems. - DoD IAT II or above certification required (e.g., Security+, CISSP). - Experience in network security analysis, packet inspection, and threat hunting. - Proficiency in SIEM operations, alert triage, and forensic/malware behavior analysis. - Experience with RMF documentation and compliance auditing. - Familiarity with frameworks such as kill chain and ATT&CK models. - Strong communication and briefing skills for both technical and non-technical audiences. - TS/SCI clearance required. Additional Skills: - Ability to engineer innovative cybersecurity solutions tailored to operational needs. - Strong analytical skills to assess risks and develop mitigation strategies. - Proficiency with Microsoft Office Suite and cybersecurity tools. - Attention to detail in documentation, compliance, and reporting requirements. Location: Primary workplace is MARCENT Headquarters, MacDill Air Force Base, Tampa, Florida. Work Environment: Office environment within a joint military/civilian/contractor staff. Includes coordination with cybersecurity teams, IT personnel, and external DoD partners. Physical Demands: Primarily sedentary office work with extensive computer use. May involve occasional travel to support cybersecurity inspections, training, or incident response activities. Work Schedule: Full-time, 40 hours per week. Monday-Friday, 0800-1600. May require flexibility during cybersecurity incidents or system upgrades. License and Other Requirements: Valid U.S. Driver's License. Eligibility for issuance of a Common Access Card (CAC). Salary and Benefits: As stated during the hiring process. Security Clearance: TS/SCI clearance required. Travel: May include CONUS and OCONUS travel to support cybersecurity operations, training, and system sustainment.

At LaForce, we specialize in delivering access control, video surveillance, and intercom solutions that keep people and businesses secure. We're looking for a dedicated and skilled Security Integration Field Laborer in our Tampa, FL location to join our team. This role assists with installing and maintaining access control systems, video surveillance, and other electro-mechanical security products for commercial businesses. What You'll Do: As a Field Laborer, you will help with ensuring secure and functional installations for our customers. Every day will bring new challenges, from problem solving complex technical issues to learning new technologies in the security industry. Your day-to-day will include: Helping with installing and programming access control systems, CCTV, intercoms, security systems, and electrical hardware with precision and efficiency. Troubleshooting and adjusting new or existing systems to meet customer needs. Safely handling disassembly and removal of electrical products and door hardware. Training customers on new and existing systems and software. Producing quality results on time and within budget, representing the company professionally, and fostering strong customer relationships. Helping with accurate wiring diagrams upon project completion for future reference. Maintaining clear, professional communication with customers, sales staff, and supervisors. Operating a company vehicle safely and respectfully in accordance with company policy. What You'll Bring: We welcome applicants with technical certificates, equivalent professional experience, or relevant military experience in electrical or mechanical fields. The ideal candidate has knowledge of low-voltage electrical wiring, the ability to read wiring diagrams and blueprints, strong problem-solving skills, and a valid driver's license with a clean record. Physical Requirements This role demands physical stamina and precision, including: Frequently standing, walking, climbing ladders, and lifting up to 40 pounds. Occasionally carrying loads up to 75 pounds Performing tasks requiring elevated activity. Why Join LaForce? At LaForce, you're part of a team dedicated to growth, innovation, and excellence. From competitive pay to a supportive culture that values your ideas, we're here to help you thrive. You'll receive a cell phone stipend, company-provided tools, and comprehensive hands-on training. How to Apply Screening includes a drug test, background check, and driver's license verification. If you're passionate about security systems and looking to make a difference in the field, apply today! We look forward to meeting you!

Job Description Participate in the development and support of customer technical requirements Champion a collaborative, team-based environment, sharing standard methodologies and success and building positive relationships Plan, Design, Develop, Implement and Operate F5 products such as LTM, ASM, BIG-IQ and APM Manage the configuration on multiple physical and virtual F5 across multiple data centers Develop scripts and tools to automate configuration of a large number of network security devices distributed across multiple data centers Propose and implement system enhancements that will improve the performance and reliability of the network security infrastructure Applies capacity planning configuration changes as demanded by the business Address performance, scalability, and service architecture administration issues Design, install, configure, maintain network security services, equipment and devices Plan and support network security infrastructure Provide clear technical documentation and written procedures for issues identified and addressed Monitoring and troubleshooting of platform and OS based problems, network security infrastructure and connectivity issues Perform launch testing for new software releases and the introduction of new features Coordinate equipment orders including physical or virtual appliances, as well as upgrading, monitoring, testing and servicing the systems as needed Demonstrates knowledge of a broad range of technology towers i.e.: Storage, Virtualization, Intel, Networking, Data Center Migration and Disaster Recovery Knowledge of risk and controls landscape, ensuring company-wide standards are met Participate in change and incident management Anticipating potential problems and acting to minimize the impact they may have on the project or unit Ability to collaborate with different technology towers to achieve common goals Requirements Bachelor's degree in computer science, information systems, telecommunications, or an engineering focused field Must have an Active TS/SCI and willing to obtain a CI Poly 5+ years of relevant F5 experience with F5 LTM, ASM, BIG-IQ, and/or APM administration and life cycle management including experience with advanced iRule creation and troubleshooting Ability to handle multiple complex F5 configurations and deployments at once Understanding of networking at all layers of the OSI model; and Previous experience with web application technologies Experience deploying, managing, and troubleshooting network systems, switching, and routing protocol standards such as: TCP/IP, MPLS, OSPF, BGP, SDN, and 802.1x. Experience managing and troubleshooting DNS, DHCP, IPAM, and NTP in a large multi-site environment Ability to manage multiple stands of work simultaneously. Executes within a customer-centric environment. Excellent verbal and written communication skill Hands on experience with Python and APIs Self-driven with the ability to manage workload without direct supervision Must have the F5 201 certification 8570 IAT Level II Certification required Preferred Skills/Qualifications Experience with Infoblox DDI, Microsoft DNS, Dyn, VMWare Automation products (vRO, vRA) Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers' Compensation Relocation Assistance

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity SAAS Intelligence Group, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on Java/Python concepts and 5+ years applied experience in front end or back end development, enterprise code development. Skilled in planning, designing, and implementing enterprise-level security solutions. Proficiency in Python and/or Java for building secure, scalable software. Solid understanding of SaaS architectures, especially cloud-native patterns (AWS, GCP, or Azure). Experience implementing security controls across the SDLC (e.g., SAST, DAST, SCA). Ability to implement and maintain tools for application telemetry, event correlation, and threat detection. Proficient in all aspects of the Software Development Life Cycle. Experience with APIs, OAuth2/OIDC, and token management. Familiarity with SSPM (SaaS Security Posture Management). In-depth knowledge of the financial services industry and their IT systems. Preferred qualifications, capabilities, and skills Bachelors or Master's degree in data science/analytics, mathematics or engineering preferred.

Employment Type: Contract Business Unit: GIP - Security Architecture Duration: 10 months with likely extensions and/or conversion to permanent 3 Key Consulting is hiring Cloud Security Engineer for a consulting engagement with our direct client, a leading global biopharmaceutical company. Job Description: The Cloud Security Engineer will be reporting into the Global Information Protection Organization and will be based in Tampa, FL. As a Specialist Cloud Security Engineer, you will be working with the Cloud Security Program helping advance AWS Cloud governance and audit posture, providing remediation strategies, and executing project activities to complete tactical objectives. You will play a key role in designing, deploying, and maintaining solutions, automate security assessments, audits, policy, and standard enforcements, and more. Top Must Have Skills: AWS Cloud Security Privilege Access Management Enterprise Key Management Preferred Qualifications: Comprehensive experience with Amazon AWS, understanding of Identity and Access Management, Data Protection, Secure DevOps, Security Operations, and other security domains for Cloud. Working/Emerging knowledge of Enterprise Cloud Solutions across IaaS, PaaS & SaaS. This may include: AWS, Azure, OpenStack, Cloud Foundry, Salesforce, Microsoft Office 365, Box, etc. Emerging Knowledge of Identity Governance, Cloud SOC/SIEM, Key Management & Encryption, Public, Private and Hybrid cloud solutions. Good working knowledge of KMS, Encryption Technologies, Cryptographic Keys and usage. Good hand-on experience with AWS foundation services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies. Technical experience should have Strong micro services programming (AWS Lambda, Docker, etc.) Experience using AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.) Extensive experience architecting, designing and programming applications and RESTFUL Services in an AWS Cloud environment Experience architecting highly available systems that utilize load balancing, horizontal scalability and high availability. Experience in one of the following: Java/Node.js/Python/JSON policy language Good verbal and written communication skills Team-oriented, placing priority on the successful completion of team goals Self-starter with a high degree of initiative CISSP or equivalent security-related industry certifications AWS Certified Professional or higher Day to Day Responsibilities: Management and implementation of technologies and processes relating to assigned Global Information Protection capability including issue identification and resolution, integration with other tools, documentation, gap assessment, gap resolution and continuous improvement of the capability Keep up-to-date, make recommendations, and participate in the implementation and continuous improvement of technologies and services in assigned information security domains Work with and provide guidance to Security Operations and other Global Information Protection team activities on security strategies, processes, response and technologies Support Incident Response on security incidents including contributing to mock security incident exercises Define, provide, and improve measurement and analysis on the assigned services including the use of appropriate applications and tools for reporting Participate in projects or initiatives where an IS Security Engineer is needed with a focus on ensuring inclusion of information security requirements Participate in proactive research and provide recommendations for continuous improvement on information security technologies, processes and services Develop, implement, and sustain operational scripts, data structures, libraries and programming code that optimize security in emergent compute patterns with diverse applications throughout the global environment. Analyze, design, develop and operate programs, shell scripts, tests, and infrastructure automation capabilities in an advanced security context. Collaborate cross-functionally with analysts, engineers, data scientists to achieve continuous improvement in cyber defense/resilience. Red Flags: Less than two years of service in top 3 skillset Interview process: 3 phone panels. Immediately. We invite qualified candidates to send your resume to *****************************. If you decide that you're not interested in pursuing this position, please feel free to look at the other positions on our website ******************************* You are welcome to also share this opportunity with anyone you think might be interested in applying for this role. Regards, 3KC Talent Acquisition Team

Cyber Security Systems Engineer Please note: This position is contingent upon the award of a contract. We will provide updates on the status of the contract and next steps during the hiring process. Minimum Qualifications Summary Certification & Education Must possess a current US Passport with ability to travel and work overseas. Must be able to complete a favorably adjudicated Tier 5 (T5) or Tier 5 Review (T5R) of the SSBI. This applies to all IA and Cybersecurity tasks. Must be able to meet COMSEC briefing and Local Element management certification requirements available under the OPNAVINST 2201.4, DoD Instruction 8523.01 and Air Force Manual 17-1301. Must be able to complete an in-scope (per current DoD 6-year reinvestigation requirement), favorable, ST5 investigation (to include SBPR, PPR, T5R, or current enrollment in the DoD Continuous Evaluation (CE) / Continuous Vetting (CV) program), adjudicated for SCI eligibility by the DoD Central Adjudication Facility (DoD CAF) without conditions, exceptions, or waivers at the time of performance and must maintain the level of security required for the life of the contract. Current DoD IAT certification Level II or above, NET + certified and Voice/Video Network Certification, preferably CISCO certified Must possess a TS/SCI Security Clearance Must possess and maintain professional certification at the DoD IAT II or above level Higher education degree in Cyber Security or related field preferred Experience Required Preferred: Prior experience and operational knowledge of planning, design, implementation, operation and reporting of cyber security systems and the Risk Management Framework (RMF) accreditation of new or existing systems and capabilities Preferred: Prior experience and operational knowledge of CENTCOM Cyber Tasking Orders (CCTOs), Marine Corps Enterprise Network OpDirs and track to completion Preferred: Prior experience and operational knowledge of security configuration of networks, monitoring systems, activating remote terminals as well as tracking and resolving Cyber incident reports Five years' military experience Job Objective Under a five-year contract, the Cyber Security Systems Engineer will support the United States Marine Corps Forces, Central Command (MARCENT) and subordinate commands. The scope of the requirement includes professional services for MARCENT located aboard MacDill Air Force Base (AFB), Florida, which serves as a Component Command to U.S. Central Command (USCENTCOM). Specifically, the Cyber Security Systems Engineer will support the Communication Directorate (G-6) within the continental United States (CONUS) and outside the continental United States (OCONUS). The G-6 provides communication support to MARCENT as well as command, control, communications, and computer (C4) policy advocacy to CENTCOM Communications (CCJ6) and HQMC agencies. The G-6 conducts C4 planning and validation for USMC forces operating in the CENTCOM AOR. Responsibilities Provide services for the planning, design, implementation, operation and reporting of cyber security systems and the Risk Management Framework (RMF) accreditation of new or existing systems and capabilities Provide technical and operational support including subject matter expertise for accreditation of systems in the Service RMF tool, remediation of vulnerabilities, and training of Military staff in correct cybersecurity processes Review the security configuration of networks, monitoring systems, activating remote terminals as well as tracking and resolving Cyber incident reports and problems related to vulnerabilities Receive, acknowledge, interpret and respond to CENTCOM Cyber Tasking Orders (CCTOs), Marine Corps Enterprise Network OpDirs and track to completion Develop Cyber Security diagrams that include operation and system level views while executing sound change management processes and assist in developing and executing the Command Cyber Security Training and Education Program Education & Certification Must possess a current US Passport with ability to travel and work overseas. Must be able to complete a favorably adjudicated Tier 5 (T5) or Tier 5 Review (T5R) of the SSBI. This applies to all IA and Cybersecurity tasks. Must be able to meet COMSEC briefing and Local Element management certification requirements available under the OPNAVINST 2201.4, DoD Instruction 8523.01 and Air Force Manual 17-1301. Must be able to complete an in-scope (per current DoD 6-year reinvestigation requirement), favorable, ST5 investigation (to include SBPR, PPR, T5R, or current enrollment in the DoD Continuous Evaluation (CE) / Continuous Vetting (CV) program), adjudicated for SCI eligibility by the DoD Central Adjudication Facility (DoD CAF) without conditions, exceptions, or waivers at the time of performance and must maintain the level of security required for the life of the contract. Current DoD IAT certification Level II, NET + certified and Voice/Video Network Certification, preferably CISCO certified Must possess and maintain professional certification at the DoD IAT II or above level Higher education degree in Cyber Security or related field preferred Security Clearance Must possess a TS/SCI Security Clearance Work Location MARCENT, MacDill Air Force Base, Tampa, Florida Travel: Contractor personnel must support the projected travel in support of government requirements to MARCENT AOR and supporting locations, which includes but not limited to the following countries: Bahrain, United Arab Emirates (UAE), Saudi Arabia, Jordan, Egypt, France, Germany, United Kingdom, Oman, Qatar, Kuwait, Iraq, Israel, Afghanistan, Syria, Lebanon, Yemen, Pakistan, Turkmenistan, Uzbekistan, Kyrgyz Republic, Tajikistan, Kazakhstan, Djibouti, Cyprus, Turkey, Italy, and Greece. The ideal candidate will be available for travel on less than 24 hours-notice to support personnel recovery and training for forward deployed forces. The ideal candidate will possess the ability to execute OCONUS travel throughout the Central Command (CENTCOM) AOR. About Lukos Lukos has been delivering professional services to the Federal Government for 15 years. We help a variety of federal agencies in areas such as national security, homeland security, international development, training, analytics, healthcare, and other professional services. Since our founding, we have grown to support all military services and multiple federal civilian agencies. About Our Name: Lukos is ancient Greek for “wolf”. The characteristics of the wolf match our approach to national security. The wolf is known for cunning, aggression, patience, and teamwork. An individual wolf is smart, strong, and resilient, but the true strength of wolves is their ability to work together as a wolfpack. Kipling said it best in The Law of the Jungle. "For the strength of the pack is the wolf, and the strength of the wolf is the pack." At Lukos we take care of our pack by offering full time employees competitive benefits to include: medical, dental, vision, 401(k), life insurance, short and long term disability coverage, paid time off and Federal holidays. Lukos is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, disability, or national origin.

There are two parts to this role, ISSO and System Administrator. The Information System Security Officer (ISSO) supports the security posture of classified and unclassified information systems within a geospatial technology environment. The ISSO works under the direction of the ISSM to implement security controls, maintain compliance with federal regulations, and protect sensitive geospatial data. This role involves monitoring, documentation, and day-to-day security operations to ensure systems remain accredited and secure under the Risk Management Framework (RMF). As a System Administrator, you will provide internal end user support for onsite and remote users and systems. Work Environment: * Location: NV5 Regional office St. Petersburg, FL * This position reports to the IT Business Services Manager * Potential travel up 10% of the time NV5 is a global technology solutions and consulting services company with a workforce of over 4,500 professionals in more than 100 offices worldwide. NV5's continued growth has been spurred through strategic investments in firms with unique capabilities to help current and future customers solve the world's toughest problems. The NV5 family brings together talent across a wide range of markets and fields, including Professional Engineers, Professional Land Surveyors, Architects, Photogrammetrists, GIS Professionals, Software Developers, IT, Project Management Professionals, and more. At NV5 Geospatial, we are a collaboration of intelligent, innovative thinkers who care for each other, our communities, and the environment. We value both heart and head, the diversity of our people, and their experiences because that is how we continue to grow as a leader in our industry and expand our individual and collective potential. Responsibilities Security Implementation & Monitoring * Assist in applying and maintaining security controls on geospatial systems in accordance with NIST, DoD, and company standards. * Monitor system security status and report anomalies or incidents promptly. * Support continuous monitoring activities and vulnerability management. Documentation & Compliance * Maintain and update security documentation, including System Security Plans (SSPs), POA&Ms, and audit logs. * Ensure compliance with RMF and applicable federal regulations. * Participate in internal and external audits and inspections. Incident Response * Assist in investigating and responding to security incidents. * Document findings and implement corrective actions under ISSM guidance. Non-classified domain, end user and workstation support * Work as a member of the Business Services Team to provide end user and workstation support for both onsite and remote users throughout the US and international offices Qualifications * Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field. * CISSP or other advanced certifications preferred. * Active DOD Secret security clearance or ability to obtain it. * Experience: * 2+ years in information system security or related field. * Familiarity with RMF, NIST SP 800-series, and DoD security requirements. * Experience supporting Windows OS, Microsoft O365, license severs, Microsoft SCCM * Experience working in a call management system * Skills: * Proven experience in Systems Administration, Service Desk or similar role * Resourcefulness and problem solving aptitude * In depth understanding of computer hardware, networking and ticket management * Strong attention to detail and documentation skills. * Ability to work collaboratively in a team environment. Please be aware that some of our positions may require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. Employment is contingent upon successful completion of a background check and drug screening. NV5 offers a competitive compensation and benefits package including medical, dental, life insurance, FTO, 401(k) and professional development/advancement opportunities. NV5 provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. NV5 complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. #LI-Onsite #LI-JG1

There are two parts to this role, ISSO and System Administrator. The Information System Security Officer (ISSO) supports the security posture of classified and unclassified information systems within a geospatial technology environment. The ISSO works under the direction of the ISSM to implement security controls, maintain compliance with federal regulations, and protect sensitive geospatial data. This role involves monitoring, documentation, and day-to-day security operations to ensure systems remain accredited and secure under the Risk Management Framework (RMF). As a System Administrator, you will provide internal end user support for onsite and remote users and systems. Work Environment: Location: NV5 Regional office St. Petersburg, FL This position reports to the IT Business Services Manager Potential travel up 10% of the time NV5 is a global technology solutions and consulting services company with a workforce of over 4,500 professionals in more than 100 offices worldwide. NV5's continued growth has been spurred through strategic investments in firms with unique capabilities to help current and future customers solve the world's toughest problems. The NV5 family brings together talent across a wide range of markets and fields, including Professional Engineers, Professional Land Surveyors, Architects, Photogrammetrists, GIS Professionals, Software Developers, IT, Project Management Professionals, and more. At NV5 Geospatial, we are a collaboration of intelligent, innovative thinkers who care for each other, our communities, and the environment. We value both heart and head, the diversity of our people, and their experiences because that is how we continue to grow as a leader in our industry and expand our individual and collective potential. Responsibilities Security Implementation & Monitoring Assist in applying and maintaining security controls on geospatial systems in accordance with NIST, DoD, and company standards. Monitor system security status and report anomalies or incidents promptly. Support continuous monitoring activities and vulnerability management. Documentation & Compliance Maintain and update security documentation, including System Security Plans (SSPs), POA&Ms, and audit logs. Ensure compliance with RMF and applicable federal regulations. Participate in internal and external audits and inspections. Incident Response Assist in investigating and responding to security incidents. Document findings and implement corrective actions under ISSM guidance. Non-classified domain, end user and workstation support Work as a member of the Business Services Team to provide end user and workstation support for both onsite and remote users throughout the US and international offices Qualifications Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field. CISSP or other advanced certifications preferred. Active DOD Secret security clearance or ability to obtain it. Experience: 2+ years in information system security or related field. Familiarity with RMF, NIST SP 800-series, and DoD security requirements. Experience supporting Windows OS, Microsoft O365, license severs, Microsoft SCCM Experience working in a call management system Skills: Proven experience in Systems Administration, Service Desk or similar role Resourcefulness and problem solving aptitude In depth understanding of computer hardware, networking and ticket management Strong attention to detail and documentation skills. Ability to work collaboratively in a team environment. Please be aware that some of our positions may require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. Employment is contingent upon successful completion of a background check and drug screening. NV5 offers a competitive compensation and benefits package including medical, dental, life insurance, FTO, 401(k) and professional development/advancement opportunities. NV5 provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. NV5 complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. #LI-Onsite #LI-JG1

Job Title: Junior GRC Analyst Openings: 1 Duration: 1 year +, potential to go perm Pay Rate: $40 Interview Process: 1 virtual, final onsite with team Minimum Qualifications & Experience Required Bachelor's degree in Information Security, Computer Science, Risk Management, or related field 1+ year experience in IT, cybersecurity, or healthcare Ability to assess and evaluate technical documentation (data flow and network architecture diagrams) and attestations /certifications (SOC 2, ISO) Familiarity with the HIPAA Security Rule, NIST CSF 2.0, and PCI-DSS Strong analytical, documentation, and problem-solving skills Excellent written and verbal communication skills for both technical and non-technical stakeholders Ability to manage multiple projects, collaborate across IT and business teams, and drive remediation efforts Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint) Nice To Have Qualifications & Experience Exposure to ServiceNow and Safe Security Exposure to Factor Analysis of Information Risk (FAIR) for quantitative risk analysis Basic understanding of first and third-party risk management concepts and practices Familiarity with AI security concepts and emerging frameworks (NIST AI RMF, OWASP COMPASS) Industry certifications such as CompTIA Security+, CRISC, or CISA Day-to-Day Responsibilities Conduct and document third-party risk assessments, reviewing security questionnaires, attestation/certification reports, BAAs, and technical diagrams Assist with risk quantification by gathering scenario inputs, impact drivers, and control maturity data. Support AI governance intake reviews and documentation for new use cases Track remediation and corrective actions related to findings, risks, and audit outcomes Assist in maintaining and updating risk registers and compliance documentation Assist in incident response documentation, root cause analysis, and identifying control improvements Support internal audits, e-discoveries, and evidence collection for regulatory and certification requirements Monitor and track remediation of identified risks and compliance gaps Help develop, document, and enforce security policies, standards, and procedures Collaborate with IT and business teams to ensure adherence to standards Prepare reports and dashboards for management on risk and compliance status Stay current on emerging regulations and security best practices

Job DescriptionISSOEmployment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success:- Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership.- Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies.- Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO).- Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes.- Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF.- Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.- Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring.- Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications:- Bachelor's Degree.- A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc.- eMASS experience.- Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher.- Strong desktop publishing skills using Microsoft Word and Excel.- Experience with industry writing styles such as grammar, sentence form, and structure.- Ability to multi-task in a deadline-oriented environment. Ideally, you will also have:- CISSP, CASP, or a similar certificate is preferred.- Master's Degree in Cybersecurity or related field.- Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking.- Demonstrated ability to work well independently and as a part of a team.- Excellent work ethic and a high commitment to quality. Our Commitment:Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package.Health, Dental, and VisionLife Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation!Explore additional job opportunities with CGS on our Job Board:**************************************** more information about CGS please visit: ************************** or contact:Email: ******************* #CJ We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

The Cyber Security Systems Engineer provides cyber defense analysis and engineering support for MARCENT systems, ensuring resilience and compliance against advanced threats. This role engineers security solutions for MARCENT communications systems, conducts vulnerability assessments and security audits, implements DoD cybersecurity standards, and provides documentation and training on cyber defense posture. With 7-10 years of experience, the engineer applies expertise in network security analysis, packet inspection, threat hunting, vulnerability assessment, SIEM operations, and forensic analysis. By integrating technical expertise with operational awareness, the Cyber Security Systems Engineer ensures MARCENT systems remain secure, compliant, and ready to counter evolving cyber threats. ***THIS EMPLOYMENT IS CONTINGENT UPON CONTRACT AWARD*** Responsibilities/Duties: - Engineer security solutions for MARCENT communications and information systems. - Conduct vulnerability assessments, penetration testing, and security audits to identify risks. - Implement DoD cybersecurity standards and RMF requirements. - Provide documentation, training, and guidance on MARCENT's cyber defense posture. - Perform network security analysis, including packet inspection and traffic monitoring. - Conduct threat hunting and vulnerability assessments to proactively identify risks. - Operate SIEM platforms, triage alerts, and conduct malware behavior and forensic analysis. - Apply frameworks such as the cyber kill chain and ATT&CK models to enhance defense strategies. Supplemental Duties: - Assist in developing SOPs for cyber defense operations and incident response. - Support compliance audits and RMF documentation requirements. - Contribute to after-action reviews and lessons learned from cybersecurity incidents. Administrative Duties: - Maintain compliance with MARCENT administrative procedures and reporting requirements. - Ensure cybersecurity documentation is archived according to records management standards. Supervisory Responsibilities: None. Education/Experience/Qualification: - Bachelor's Degree in Cybersecurity, Computer Science, or related discipline required. - 7-10 years of experience in cybersecurity engineering for DoD or military systems. - DoD IAT II or above certification required (e.g., Security+, CISSP). - Experience in network security analysis, packet inspection, and threat hunting. - Proficiency in SIEM operations, alert triage, and forensic/malware behavior analysis. - Experience with RMF documentation and compliance auditing. - Familiarity with frameworks such as kill chain and ATT&CK models. - Strong communication and briefing skills for both technical and non-technical audiences. - TS/SCI clearance required. Additional Skills: - Ability to engineer innovative cybersecurity solutions tailored to operational needs. - Strong analytical skills to assess risks and develop mitigation strategies. - Proficiency with Microsoft Office Suite and cybersecurity tools. - Attention to detail in documentation, compliance, and reporting requirements. Location: Primary workplace is MARCENT Headquarters, MacDill Air Force Base, Tampa, Florida. Work Environment: Office environment within a joint military/civilian/contractor staff. Includes coordination with cybersecurity teams, IT personnel, and external DoD partners. Physical Demands: Primarily sedentary office work with extensive computer use. May involve occasional travel to support cybersecurity inspections, training, or incident response activities. Work Schedule: Full-time, 40 hours per week. Monday-Friday, 0800-1600. May require flexibility during cybersecurity incidents or system upgrades. License and Other Requirements: Valid U.S. Driver's License. Eligibility for issuance of a Common Access Card (CAC). Salary and Benefits: As stated during the hiring process. Security Clearance: TS/SCI clearance required. Travel: May include CONUS and OCONUS travel to support cybersecurity operations, training, and system sustainment.