Security architect jobs in Milford, CT - 36 jobs

Are you an experienced, passionate pioneer in technology who wants to work in a collaborative environment? As an experienced Security Architect you will have the ability to share new ideas and collaborate on projects as a consultant without the extensive demands of travel. If so, consider an opportunity with Deloitte under our Project Delivery Talent Model. Project Delivery Model (PDM) is a talent model that is tailored specifically for long-term, onsite client service delivery. Recruiting for this role ends on 03/13/2026 Work you'll do/Responsibilities + Responsible for supporting the team with secure network designs and regulatory requirements. + Translate business objectives and risk management strategies into practical, secure technological solutions. + Ensure security principles are infused at every level of the enterprise. + Communicate regularly with Engagement Managers (Directors), project team members, and representatives from various functional and / or technical teams, including escalating any matters that require additional attention and consideration from engagement management + Independently and collaboratively lead client engagement workstreams focused on improvement, optimization, and transformation of processes including implementing leading practice workflows, addressing deficits in quality, and driving operational outcomes The Team Our Cyber Operate offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments. Qualifications Required + Bachelor's degree, preferably in Computer Science, Information Technology, Computer Engineering, or related IT discipline; or equivalent experience + 5+ years of proven experience as a Security Architect + Experience with information security engineering + Experience with security compliance (NIST Cybersecurity Framework) + Strong understanding of secure architecture methodologies. + Experience with incidence response + Limited immigration sponsorship may be available + Ability to travel 10%, on average, based on the work you do and the clients and industries/sectors you serve Preferred + Experience with Security Operations The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $90,000 to $150,000. You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. Additional Requirements Information for applicants with a need for accommodation: ************************************************************************************************************ All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Security Architect (Cloud Security & Compliance) - Hybrid New Britain, CT, United States Towson, MD, United States Come build something that matters. It takes great people to achieve greatness. People with a sense of purpose and integrity. People with a relentless pursuit of excellence. People who care about making things better For Those Who Make The World™. Sound like you? Join our top-notch team of approximately 48,000 diverse and high-performing professionals globally who are making their mark on some of the world's most beloved brands, including DEWALT , BLACK+DECKER , CRAFTSMAN , STANLEY , CUB CADET , and HUSTLER . The Job: As a Security Architect (Cloud Security & Compliance), you'll be part of our Information Technology team working as a hybrid employee. You'll get to: Cloud Security Architecture & Strategy: Design, develop, and oversee the implementation of comprehensive security architectures for AWS cloud environments and connected products, ensuring confidentiality, integrity, and availability of systems and data. Security Solution Design & Integration: Architect and integrate AWS native security tools (e.g., GuardDuty, Security Hub, IAM, KMS, CloudTrail, Config) and external solutions (e.g., CSPM, Secure SDLC, SIEM) for holistic security coverage. AST - Application security testing: Knowledge and understanding of static analysis, software composition analysis, dynamic analysis, secret scanner etc. Compliance & Certification: Lead the security strategy for SOC2, NIST, ISO27001, and other regulatory certifications. Define and maintain documentation, evidence, and processes required for compliance readiness. Governance, Risk, and Compliance (GRC): Architect and oversee GRC processes, including risk assessments, policy development, control mapping, and remediation tracking for cloud environments. Security Automation & Infrastructure: Design and implement automated security controls and monitoring solutions using infrastructure-as-code (Terraform, CloudFormation), CI/CD pipelines, and scripting (Python, Shell). Incident Response Strategy: Develop and guide incident response plans, lead detection and investigation efforts, and coordinate with internal teams for timely resolution and root cause analysis. Vulnerability Management Oversight: Architect vulnerability management programs, including regular assessments, penetration testing, and remediation for cloud infrastructure and applications. Security Awareness & Enablement: Lead organization-wide security awareness initiatives, provide training, and foster a culture of security through strategic communication and enablement. Documentation & Reporting: Define and maintain security architecture documentation, controls, incident records, and compliance activities. Prepare executive-level reports for stakeholders and leadership. The Person: You love to learn and grow and be acknowledged for your valuable contributions. You're not intimidated by innovation. Wouldn't it be great if you could do your job and do a world of good? In fact, you embrace it. You also have: 10+ years of experience in security architecture, cloud security, or related roles. Proven track record designing and managing security architectures in AWS cloud environments. Experience leading organizations through SOC2, NIST, ISO27001, or similar compliance frameworks. Undergraduate degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field, or equivalent work experience in cloud security and architecture. Preferred certifications: AWS Certified Security - Specialty, Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP). Core Technologies and Skills AWS Security Tools: GuardDuty, Security Hub, IAM, KMS, CloudTrail, Config, Macie, Inspector. External Security Solutions: WIZ.io, Mend.io, SonarQube, Cortex, Akamai, Cognito, Balbix, Splunk, GitLeaks or similar GRC Platforms: ServiceNow GRC, Archer, OneTrust, and related processes. Infrastructure as Code: Terraform, CloudFormation for security automation and compliance. CI/CD Security: Security integration in CI/CD pipelines (Bitbucket, Jenkins, GitHub Actions). Scripting: Python and Shell for automation and security tasks. Vulnerability Management: Vulnerability scans, penetration testing, and remediation. Regulatory Knowledge: SOC2, NIST, ISO27001, GDPR, and other relevant regulations. Monitoring & Logging: Security monitoring, SIEM solutions, and log management. Incident Response: Security incident detection, response, and reporting. The Details: You'll receive a competitive salary and a great benefits plan, including: Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement in addition to programs & benefits in support of your well-being. Discounts on Stanley Black & Decker tools and other partner programs. And More: We want our company to be a place you'll want to be - and stay. Being part of our team means you'll get to: Grow: Be part of our global company with 20+ brands to grow and develop your skills along multiple career paths. Learn: Have access to a wealth of learning resources, including our digital learning portal. Belong: Experience an awesome place to work, where we have mutual respect and a great appreciation for a wide range of perspectives and experiences. Give Back: Help us continue to make positive changes locally and globally through volunteerism, giving back, and sustainable business practices. What's more, you'll get that pride that comes from empowering makers, doers, protectors, and everyday heroes all over the world. We're more than the #1 tools company. More than a driving force in outdoor power equipment. More than a global leader in industrial. We're visionaries and innovators. As successful as we've been in the past, we have so much further to go. That's where you come in. Join us! #LI-RB1 #LI-Hybrid We Don't Just Build The World, We Build Innovative Technology Too. Joining the Stanley Black & Decker team means working in an innovative, tech-driven and highly collaborative team environment supported by over 58,000 professionals in 60 countries across the globe. Here, you'll get the unique chance to impact some of the world's most iconic brands including STANLEY TOOLS, DEWALT, CRAFTSMAN, MAC TOOLS and Black + Decker. Your ideas and solutions have the potential to reach millions of customers as we work together to write the next chapter in our history. Come build with us and take your career to new heights. Who We Are We're the World's largest tool company. We're industry visionaries. We're solving problems and advancing the manufacturing trade through innovative technology and our Industry 4.0 Initiative. We are committed to ensuring our state-of-the-art “smart factory” products and services provide greater quality to our customers & greater environmental and social value to our planet. We are unique in that we have a rich and storied history dating back to 1843, but that hasn't stopped us from evolving into a vibrant, diverse, global growth company. Benefits & Perks You'll get a competitive salary and a comprehensive benefits plan that includes medical, dental, life, vision, wellness program, disability, retirement benefits, Employee Stock Purchase Plan, Paid Time Off, including paid vacation, holidays & personal days, and tuition reimbursement. And, of course, discounts on Stanley Black & Decker tools and products and well as discount programs for many other vendors and partners. What You'll Also Get Career Opportunity: Career paths aren't linear here. Being part of our global company with 60+ brands gives you the chance to grow and develop your skills along multiple career paths. Learning & Development: Our lifelong learning philosophy means you'll have access to a wealth of state-of-the-art learning resources, including our Lean Academy and online university (where you can get certificates and specializations from renowned colleges and universities). Diverse & Inclusive Culture: We pride ourselves on being an awesome place to work. We respect and embrace differences because that's how the best work gets done. You'll find we like to have fun here, too. Purpose-Driven Company: You'll help us continue to make positive changes in the local communities where we work and live as well as in the broader world through volunteerism, giving back and sustainable business practices. EEO Statement: All qualified applicants to Stanley Black & Decker are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran's status or any other protected characteristic. If you require reasonable accommodation to complete an application or access our website, please contact us at ************** or at accommodations@sbdinc.com. Due to volume, we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password. Know Your Rights: Workplace discrimination is illegal (eeoc.gov)

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Director, Tech Engineering to join our Tax Ignition Group. Responsibilities: * Lead the function of responding to clients' security inquires * Meet with clients to answer their security questions and negotiate compensating controls when there are gaps between client requirements and our product offerings * Drive innovation and improvement in the client security inquiry process such incorporating Artificial Intelligence into the process, creating additional collateral such as whitepapers, managing metrics, and improving the tooling and interactions with requestors * Partner with various groups within Tax's technology function and business teams to incorporate trends into product roadmaps; collaborate with other compliance teams, and raise awareness around client security requirements * Review and respond to client security questionnaires and assessments * Build and maintain a knowledge base of common client questions Qualifications: * Minimum ten years of recent experience in Information Technology (IT) security compliance, risk management or related IT security within a large IT organization, preferably within a professional services firm, software product, or other highly regulated environment * Bachelor's degree from an accredited college or university is preferred * Deep understanding of cloud architecture, modern software development, and technical security controls is required; Azure experience is preferred * Strong executive presence, negotiation, presentation, and communication skills are required; excellent analytical and problem-solving skills to assess complex security issues and develop effective solutions; capability to work effectively in a global environment, understanding diverse cultural perspectives and international client needs * Proven experience in client-facing roles, particularly in handling security inquiries, negotiations, and managing client relationships; demonstrated ability to drive innovation and continuous process improvement, particularly in integrating new technologies and methodologies into existing processes * Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards; CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL preferred * Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa KPMG LLP and its affiliates and subsidiaries ("KPMG") complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, KPMG is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year KPMG publishes a calendar of holidays to be observed during the year and provides eligible employees two breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at Benefits & How We Work. Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding KPMG's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

As part of the Corporate Internal Controls team at Waters Corporation this role will have a global responsibility to support and optimize our GRC 12.0 modules within our SAP environment. The ideal candidate will analyze security risks, ensure regulatory compliance, and enhance the organization's access control framework. The position will report to the Director Internal Controls and Systems and have perform administration of the GRC ARA module, ensuring end users are provisioned in accordance with security policies and standards maintaining compliance with SOX 404 compliance. Responsibilities Access Control and Security Management - manage user access, role assignments, and segregation of duties (SoD) analysis. Implement security controls and ensure compliance with regulatory frameworks (SOX 404, GDPR, NIST) Risk Assessment and Compliance Monitoring - Conduct risk assessments, analyze system vulnerabilities, and generate reports on access control and audit findings. Collaborate with teams cross-functionally to strength governance processes. Audit Support and Reporting - Respond to audit inquiries, provide compliance documentation, and support internal and external audit engagements. Continuous improvement and knowledge of SAP security trends and best practices. Qualifications Education / Certifications: Bachelor's degree in computer science, information technology, or a related field. SAP GRC certification Experience: Minimum of 2 years of experience working with SAP GRC 12.0 modules Complexity: Strong understanding of SAP security, access controls, and risk management. Experience with compliance frameworks such as SOX, GDPR, and NIST. Experience in user provisioning, role management, and risk analysis. Knowledge of GRC ARM, BRM, and EAM configuration and functionality Professional, initiative-taking, and highly motivated Excellent problem-solving and reasoning skills; ability to work in a fast-paced environment. Excellent listening, verbal / non-verbal, and written communication skills Demonstrates the ability to: * Work independently and adhere to deadlines * Manage relationships and influence change at all levels in the global organization * Succeed in a fast-paced and changing environment * Understand capabilities and technologies to promote data driven analysis and reporting * Creative and flexible in understanding business constraints and requirements * Collaborator and able to communicate with and influence transversal teams Results oriented with the ability to summarize and report issues and opportunities while providing alternative courses of action / solutions Ability to operate in a multi-national organization with business partners to build and cultivate effective communication and collaboration Ability to gather information, develop and analyze complex data sets, cutting through challenges to arrive at quality insights / solutions Company Description Waters Corporation (NYSE:WAT) is a global leader in analytical instruments, separations technologies, and software, serving the life, materials, food, and environmental sciences for over 65 years. Our Company helps ensure the efficacy of medicines, the safety of food and the purity of water, and the quality and sustainability of products used every day. In over 100 countries, our 7,600+ passionate employees collaborate with customers in laboratories, manufacturing sites, and hospitals to accelerate the benefits of pioneering science. Diversity and inclusion are fundamental to our core values at Waters Corporation. It benefits our employees, our products, our customers and our community. Waters complies with all applicable federal, state, and local laws. Qualified applicants are considered without regard to sex, race, color, ancestry, national origin, citizenship status, religion, age, marital status (including civil unions), military service, veteran status, pregnancy (including childbirth and related medical conditions), genetic information, sexual orientation, gender identity, legally recognized disability, domestic violence victim status, or any other characteristic protected by law. Waters is proud to be an equal opportunity workplace and is an affirmative action employer. All hiring decisions are based solely on qualifications, merit, and business needs at the time. Key Words SAP, GRC Access Control, Internal Controls, ITGC's, SOD

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Working at Yale means contributing to a better tomorrow. Whether you are a current resident of our New Haven-based community- eligible for opportunities through the New Haven Hiring Initiative or a newcomer, interested in exploring all that Yale has to offer, your talents and contributions are welcome. Discover your opportunities at Yale! Salary Range $90,000.00 - $135,000.00 Overview Conduct Incident Response Activities: Participates in security incident response efforts, managing assigned incidents through the full handling lifecycle including identification, containment, eradication, and recovery in coordination with other SOC and Security Engineering team members. Perform Detailed Incident Analysis: Analyzes host, network, and cloud telemetry to determine root cause, attack path, and impact of security events. Documents findings and maintains thorough incident records. Support Tier 2 SOC Operations: Responds to escalated alerts, security tickets, and service requests, ensuring timely investigation, documentation, and remediation of potential threats within established service levels. Develop and Maintain Response Playbooks: Contributes to the creation, refinement, and maintenance of incident response playbooks and procedures for various threat types to ensure consistent and effective handling of incidents. Enhance Detection and Response Capabilities: Collaborates with Security Engineering teams to identify detection gaps, improve alerting logic, and drive automation within response workflows.Participate in Post-Incident Reviews and Knowledge Sharing: Engages in lessons-learned activities, tracks remediation actions, and mentors SOC analysts to strengthen incident analysis and handling capabilities. Skills & Abilities 1.Developed analytical, critical thinking and problem-solving skills. 2.Developed interpersonal, written, communication, presentation, and organizational skills. 3.Familiarity with systems analysis methods and techniques. 4.Project management skills. Job Responsibilities 1.Responsible for routine to moderately complex event and incident monitoring, threat detection and data correlation. 2.Assist with collecting potential breach evidence, participate in network and host forensic analysis, participate with incident remediation activities. 3.Meet with stakeholders to assess departments security requirements. 4.Assist in the development of security standards and best practices. 5.Research the latest information security trends and emerging threats. Principal Responsibilities 1. Responsible for routine to moderately complex event and incident monitoring, threat detection and data correlation. 2. Assist with collecting potential breach evidence, participate in network and host forensic analysis, participate with incident remediation activities. 3. Meet with stakeholders to assess departments security requirements. 4. Assist in the development of security standards and best practices. 5. Research the latest information security trends and emerging threats. Required Education and Experience Bachelor's Degree and four years of experience or equivalent education and experience. Skills and Abilities Developed analytical, critical thinking and problem-solving skills. Developed interpersonal, written, communication, presentation, and organizational skills. Familiarity with systems analysis methods and techniques. Project management skills. Job Posting Date 01/15/2026 Job Category Professional Bargaining Unit NON Compensation Grade GS-3 Compensation Grade Profile GS-3h Time Type Full time Duration Type Staff Work Model Location 150 Munson Street, New Haven, Connecticut Background Check Requirements All candidates for employment will be subject to pre-employment background screening for this position, which may include motor vehicle, DOT certification, drug testing and credit checks based on the position description and job requirements. All offers are contingent upon the successful completion of the background check. For additional information on the background check requirements and process visit "Learn about background checks" under the Applicant Support Resources section of Careers on the It's Your Yale website. Health Requirements Certain positions have associated health requirements based on specific job responsibilities. These may include vaccinations, tests, or examinations, as required by law, regulation, or university policy. Posting Disclaimer Salary offers are determined by a candidate's qualifications, experience, skills, and education in relation to the position requirements, along with the role's grade profile and current internal and external market conditions. The intent of this job description is to provide a representative summary of the essential functions that will be required of the position and should not be construed as a declaration of specific duties and responsibilities of the position. Employees will be assigned specific job-related duties through their hiring department. The University is committed to basing judgments concerning the admission, education, and employment of individuals upon their qualifications and abilities and seeks to attract to its faculty, staff, and student body qualified persons from a broad range of backgrounds and perspectives. In accordance with this policy and as delineated by federal and Connecticut law, Yale does not discriminate in admissions, educational programs, or employment against any individual on account of that individual's sex, sexual orientation, gender identity or expression, race, color, national or ethnic origin, religion, age, disability, status as a special disabled veteran, veteran of the Vietnam era or other covered veteran. Inquiries concerning Yale's Policy Against Discrimination and Harassment may be referred to the Office of Institutional Equity and Accessibility (OIEA). Note Yale University is a tobacco-free campus.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ****************** Job Description SAP Security & GRC Additional Information All your information will be kept confidential according to EEO guidelines.

This role is Hybrid, 3 days a week to any local, US based UL Solutions Office. We are seeking a highly skilled Cloud Security Engineer with strong Application Security expertise to join our security architecture team. This role will be responsible for designing, implementing, and maintaining secure cloud environments and applications across multi-cloud platforms, with a focus on Azure. The ideal candidate will have hands-on experience with cloud-native security tools, DevSecOps practices, and compliance frameworks such as NIST 800-53, SOC 2, and CIS Controls. Cloud Security Engineering + Design and implement security controls for cloud infrastructure (Azure, AWS, GCP). + Develop and maintain security architecture patterns (e.g., hub-and-spoke, Zero Trust). + Integrate security tools such as Wiz, Microsoft Defender for Cloud, Silverfort, and Terraform. + Conduct threat modeling and risk assessments for cloud-native services. + Collaborate with IAM, SOC, and GRC teams to align cloud security with enterprise policies. Application Security + Perform secure code reviews, static/dynamic analysis, and vulnerability assessments. + Integrate security into CI/CD pipelines using tools like Snyk, Checkmarx, or Veracode. + Guide development teams on secure coding practices and OWASP Top 10. + Design and implement API security strategies including OAuth2, OpenID Connect, and mTLS. + Support remediation of application vulnerabilities and provide technical guidance. Compliance & Governance + Map cloud and application security controls to compliance frameworks (NIST 800-53, SOC 2, CIS). + Assist in audits and evidence collection for regulatory compliance. + Maintain documentation of security architecture, policies, and procedures. + Bachelor's degree in Computer Science, Cybersecurity, or related field. + 3-4 years of experience in cloud security engineering and application security. + Strong understanding of Azure security services and architecture. + Experience with infrastructure-as-code (Terraform, Bicep). + Familiarity with Snowflake security features and data protection strategies. + Knowledge of identity and access management (Azure AD, Conditional Access, MFA). + Hands-on experience with DevSecOps tools and practices. Preferred Qualifications + Certifications: Azure Security Engineer Associate, CISSP, CCSP, OSCP, or GIAC. + Experience with multi-subscription Azure environments. + Familiarity with Zero Trust architecture and implementation. + Experience with security automation and orchestration. Soft Skills + Strong analytical and problem-solving skills. + Excellent communication and collaboration abilities. + Ability to work independently and in cross-functional teams. + Passion for continuous learning and staying current with security trends. What you'll experience working for ULS UL Solutions has been pioneering change since 1894 and we're still leading the way. From day one, we've blazed a trail protecting the planet and everyone on it. Our teams have influenced billions of products, plus services, software offerings and more. We break things, burn things and blow things up. All in the name of safety science. That's where you come in - because none of it could happen without you. It takes passion to protect people, problem-solving to safeguard personal data and conviction to make the world a more sustainable place. It takes bold ideas and brilliant minds to build a better world for future generations across the globe. This is more than a job. It's a calling. A passion to use our expertise and play our part in creating a more secure, sustainable world today - and tomorrow. As a member of our safety science community, you'll use your ideas, your energy and your ambition to innovate, challenge and ultimately, help create a safer world. Everyone here is unique. But we're also a global community, working together to help create a safer world. Join UL Solutions and you can connect with the brightest minds in the business, all bringing their distinct perspectives and diverse backgrounds together to deliver real change. Empowering our customers to keep the world safe means thinking ahead. It means investing in training and empowering our people to learn and innovate. At UL Solutions, we help build a better future - one where everyone benefits. Join UL Solutions to be at the center of safety. To learn more about us and the work we do, visit UL.com Total Rewards: We understand compensation is an important factor as you consider the next step in your career. The estimated salary range for this position is $95,000 to $120,000 and is based on multiple factors, including job-related knowledge/skills, experience, geographical location, as well as other factors. This position is eligible for annual bonus compensation with a target payout of 10% of the base salary. This position also provides health benefits such as medical, dental and vision; wellness benefits such as mental and financial health; and retirement savings (401K) commensurate with the standard rewards offered in each individual location or country. We also provide full-time employees with paid time off including vacation (15 days), holiday including floating holidays (12 days) and sick time off (72 hours). #LI-SG2 #LI-Hybrid UL LLC has been and will continue to be an equal opportunity employer. To assure full implementation of this equal employment policy, we will take steps to assure that: Persons are recruited, hired, assigned and promoted without regard to race, color, age, sex or gender, sexual orientation, gender identity, gender expression, transgender status, religion, creed, national origin, ethnicity, citizenship, ancestry, disability, genetic information, military or veteran status, pregnancy, marital or familial status, or any other protected category under applicable law.

What we need… A Mobile Security Engineer to collaborate across development and security teams to identify, assess, and remediate vulnerabilities across the mobile application stack. This role combines mobile application development with the integration of security practices throughout the development lifecycle. Responsibilities include incorporating security tools and frameworks, conducting hands-on security testing, developing automation to streamline security processes, promoting secure coding practices, and ensuring mobile security aligns with broader enterprise-wide security strategies. What's in it for you… COCC offers a unique and collaborative experience as you grow your career with us and all of the benefits you'd expect from an award-winning employer plus: Hybrid schedules and ample paid time off allowing you work/life balance and flexibility Customized training and onboarding to support you in your first year at COCC Robust employee development programs aligned with career pathing objectives Cutting-edge training and educational resources from vendors like SANS, PluralSight and CBTNuggets Generous PTO offerings, benefits and competitive compensation On-site fitness centers, wellness incentives, and lifestyle spending accounts Tuition Reimbursement One-on-one career coaching DEIB initiatives championing inclusion and encouraging you to bring your whole self to work Financial planning assistance with certified professionals Peer recognition programs What you'll do… Collaborate across development and security teams to identify, assess, and remediate vulnerabilities across the mobile application stack Incorporate security tools and frameworks to enhance resilience against attacks Develop and maintain scripts, tools, and/or automation frameworks to streamline security testing and vulnerability detection within the development lifecycle Champion secure coding practices (OWASP Mobile Top 10, etc.) while working as part of the development team to architect and implement secure, scalable enhancements Leverage tools like Burp Suite, MobSF, Frida, or Drozer to perform mobile security testing Collaborate with Security Architecture & Engineering to integrate network security controls into the mobile stack Stay current with emerging threats, vulnerabilities, and security technologies relevant to mobile platforms What you'll bring… Bachelor's degree in Computer Science, Cybersecurity, IT, Software Development or related field (or equivalent experience) 4+ years of experience in mobile application security, including hands-on security and vulnerability testing 2+ years of experience in mobile application development (iOS and/or Android) with proficiency in Swift, Objective-C, Kotlin, and/or Java Experience with mobile security testing tools (DAST) such as MobSF, Burp Suite, Frida, or Postman Experience with mobile security testing tools (SAST) such as Checkmarx, Fortify, or SonarQube Familiarity with CI/CD pipelines and DevSecOps practices Strong communication to articulate technical security concepts to non-technical stakeholders Certifications such as GMOB, GSEC, OSCP or commensurate experience preferred

L3 Resource with good experience in handling end to end infrastructure security operations which includes o Perimeter security (Checkpoint & CISCO ASA Firewalls etc.) o Endpoint security (Sophos , Symantec etc.) o Web Gateways ( Sophos, Blucote) o Email Gateways ( Sophos, Symantec etc.) o Vulnerability Management (Qualys, DDI etc.) o Information security & Compliance ( IS Auditing, Policies & Procedure reviews) o Global Access Management o SIME (ArcSight etc.) · Should have hands on experience in troubleshooting issues · Should have good experience in ITIL Processes(Change management, Problem management, Incident Management etc. ) · Technically sound on the above listed technologies / tools · Good experience in performing Security incident analysis · Preferably the candidate should have certifications like CISSP, CISA, CISM · Should have good communication & presentation skills Additional Information All your information will be kept confidential according to EEO guidelines.

Current Saint Francis Employees - Please click HERE to login and apply. Full Time Days PLEASE NOTE: Due to the nature of this role, candidates must be either local to the area or willing to relocate, as this position requires full-time onsite presence. Job Summary: As a member of the Information Security team, responsibilities include manages and mitigates information security risk by identifying, evaluating, assessing, designing, monitoring, administering, reporting and implementing systems, policies and processes. Provides information security risk insight and guides management on information security risk issues and serves as advisor to peers, team members and management. Minimum Education: Bachelor's degree in Computer Science, MIS, Computer Engineering, Cyber Security or related discipline. Licensure, Registration and/or Certification: None. One or more of the following certifications are preferred: Certified Information Systems Security Professional (CISSP), or Certified in Risk and Information Systems Control (CRISC) or Certified Information Systems Auditor (CISA). Work Experience: 3 - 4 years related experience inclusive of two years working directly in an Information Services department and previous experience with HIPAA/PHI compliance programs, policies, procedures, risk assessments and audits. Knowledge, Skills and Abilities: In-depth knowledge of cyber security methodology and security practices. Knowledge of HIPAA, PCI, SOX, ISO and NIST cybersecurity frameworks. Knowledge of intrusion detection and intrusion prevention systems, penetration and vulnerability testing. Knowledge of data loss prevention, anti-virus and anti-malware software tools. Knowledge of computer networking, TCP/IP, routing and switching, network protocols and packet analysis tools. Knowledge of Windows, UNIX and Linux operating systems. Excellent problem solving and analytical skills. Excellent written and oral communication skills. Excellent organizational and interpersonal skills. Ability to work independently as well as in a team setting. Essential Functions and Responsibilities: Define, implement, and enforce information security policies, strategies, and procedures that align with healthcare laws and regulations, such as HIPAA. Conduct and/or support targeted risk assessment. Determine significant risk points and exercise process for risk assessment and risk acceptance. Review assessment results for vulnerabilities, gaps, control deficiencies, and work with key stakeholders to establish plans for sustainable resolution. Maintain an effective information security awareness program and educate internal teams on best practices. Ensures that business and clinical software applications include adequate information and security controls. Establish and maintain metrics based on the information security framework used at SFHS. Decision Making: Independent judgment in making decisions from many diversified alternatives that are subject to general review in final stages only. Working Relationships: Works directly with patients and/or customers. Works with internal customers via telephone or face to face interaction. Works with external customers via telephone or face to face interaction. Works with other healthcare professionals and staff. Works frequently with individuals at Director level or above. Special Job Dimensions: None. Supplemental Information: This document generally describes the essential functions of the job and the physical demands required to perform the job. This compilation of essential functions and physical demands is not all inclusive nor does it prohibit the assignment of additional duties. Information Technology - Information Security - Yale Campus Location: Tulsa, Oklahoma 74136 EOE Protected Veterans/Disability

Duration: 6+ Months Experienced Firewall administrator for operational implementation, maintenance and configuration of firewalls. Key Responsibilities: Performs maintenance and changes in firewalls as required. Implementation of new firewalls as required Assists with troubleshooting network connectivity as it relates to firewalls Utilizes change management, request, and ticketing systems, documents status updates and problem resolutions Complete All assignments in a timely manner with an acceptable level of quality Maintains documentation related to work area Completes network change requests Follows documented processes, procedures and policies Performs customer service duties and responds to customer and project requests as defined by management Other related duties assigned as needed. Qualifications/Requirements: Bachelor's degree and with 3 to 4 years of operational experience administering Firewalls 4 or more years networking/firewall background Must have networking TCP/IP routing protocol experience Desired Characteristics: In-depth experience in security aspects of multiple platforms, operating systems, software, communications and network protocols is desired Competency in verbal, written, and presentation communications and interpersonal understanding Ability to understand customer's business needs. Leadership of work teams/groups Ability to work with all levels of employees Highly motivated and able to work effectively under minimal supervision in a fast-paced environment Team-oriented, placing priority on quality and the successful completion of team goals Organization and planning skills that include: time management, project coordination and management, and the ability to handle multiple deadlines and associated pressures. Competency in developing effective solutions to business problems Ability to analyze problems and to make decisions REQUIRED SKILLS YEARS OF EXPERIENCE WHEN THE SKILL WAS LAST USED Expert knowledge of Cisco Security products, ASA and Firepower Expert knowledge of NSX Expert knowledge of Palo Alto systems Security Certifications a Plus Must have networking TCP/IP routing protocol experience Networking/firewall background Operational experience administering Firewalls Additional Information All your information will be kept confidential according to EEO guidelines.

What you'll do • Design and implement comprehensive data security architectures, with particular focus on database platforms (primarily SQL Server) • Develop and maintain enterprise-wide encryption strategies for securing structured and unstructured data both in transit and at rest, both and both on-premise and in the cloud • Enhance logging, monitoring and SecOps capabilities of enterprise databases and other data stores • Configure and optimize Identity and Access Management (IAM) solutions across data platforms and repositories to align to least privilege principles • Implement Data Loss Prevention (DLP) strategies and controls • Implement and maintain Information Rights Management (IRM) and Digital Rights Management (DRM) solutions • Design and implement data tokenization strategies where appropriate • Secure data processing pipelines and ensure appropriate controls for data workflows • Create and maintain data security documentation, including policies, procedures, and standards • Collaborate with development teams to ensure security best practices in data handling • Conduct vulnerability assessments of the firm's database architecture and associated data storage and processing systems • Assist in monitoring and managing security patching and upgrade processes for database platforms What's required • Bachelor's degree in computer science, cybersecurity, or related technical field • 6+ years of experience in data/database security engineering and governance • Deep expertise in database security, particularly SQL Server • Comprehensive understanding of data warehouse/data lake architectures and tools, particularly Databricks (required) • Subject matter expertise in Object Storage (eg: S3, Azure Blob, etc) and related security • Understanding of Active Directory Delegation (constrained vs. unconstrained) and associated best practices • Experience with 3rd-party SQL Server security governance and monitoring products (eg: Idera, Solarwinds) • Extensive knowledge of encryption technologies for both structured and unstructured data • Broad knowledge of secure data/file sharing solutions and ETL workflows • Experience designing and implementing data tokenization solutions • Experience with data classification and DLP technologies • Scripting/automation capabilities (eg: SQL, PowerShell, Python) • Commitment to the highest ethical standards Qualifications Ivy league colleges education preferred or huge plus. Additional Information All your information will be kept confidential according to EEO guidelines.

Title - Chief Information Security Officer Region: Shelton, CT Ready for a fresh, new career? Look no further because one of the world's most iconic brands can help you get there. Why Join Us? At Subway, "better" is baked into our DNA. We are a brand that believes in continued improvement … in our lives, our businesses, and our planet. From the handshake that started our very first sandwich shop to earning our position as one of the world's leading restaurant brands, we've always embraced change and the path ahead. And today, we're making better living way easier. Our purpose is more than the food we serve in our restaurants. It's centered on fueling healthy businesses and healthier lives. It is one of the most exciting times to join the Subway team and contribute to our transformational journey. About the Role: The Chief Information Security Officer is responsible for leading the organization's cybersecurity strategy and operations. This role is focused on protecting company data, systems, and networks from cyber threats, ensuring the confidentiality, integrity, and availability of critical information assets. The CISO develops and implements cybersecurity policies, technologies, and incident response plans to defend against evolving threats and vulnerabilities and drives continuous improvement in the organization's cyber defense posture. Responsibilities: Develop and implement a comprehensive cybersecurity strategy aligned with the organization's business goals, focusing on the protection of data, systems, and networks. Establish and enforce information security policies, standards, and procedures to ensure compliance with relevant laws, regulations, and industry best practices. Develop and oversee incident response plans for operational risks. Oversee incident response plans to effectively address and mitigate the impact of security incidents. Oversee the monitoring of networks and systems for security breaches, vulnerabilities, and suspicious activity; coordinate rapid response to cyber incidents. Continuously assess and prioritize cybersecurity risks, considering emerging threats, vulnerabilities, and technology trends. Select and implement appropriate security controls and technologies to defend against cyber threats. Regularly report on the organization's information security risk posture to executive leadership and relevant stakeholders. Collaborate with IT and business leaders to integrate cybersecurity considerations into technology projects and business processes Manage third-party risk as it relates to cybersecurity, ensuring vendors and partners adhere to company security standards. Foster an information security aware culture by promoting best practices and proactive security/risk management behaviors. Develop and deliver training programs to enhance operational information security awareness across the organization. Implement programs to raise awareness of information security risks among employees and stakeholders. Ability to align cybersecurity with business objectives. Deep expertise in cybersecurity technologies, threat intelligence, and incident response. Strong understanding of network, system, and application security Experience with security operations centers (SOC), vulnerability management, and penetration testing. Leadership and team management skills. In-depth knowledge of cybersecurity technologies and trends. Leadership and team management capabilities. Knowledge of relevant regulatory requirements and industry best practices. (e.g., NIST, ISO 27001, GDPR). Strong knowledge of industry regulations, standards, and best practices. Qualifications: Bachelor's Degree Business, Finance, Risk Management, Information Security, Computer Science, or a related field. 15 or more Extensive experience in cybersecurity, information security, or related technical fields, with a proven track record in leadership roles. Demonstrated experience in designing and managing enterprise cybersecurity programs, incident response, and security operations What do we Offer? Insurance Plans (Medical/Life) Pension/401K/RSP (country specific) Competitive Bonus Mobility Allowance Tuition Reimbursement Company Holidays Volunteering time And Many More….. Actual pay is determined based on several job-related factors including skills, education, training, credentials, qualifications, scope and complexity of role responsibilities, geographic location, performance, and working conditions.

The OT Security Engineer, Global Information Security (GIS) will have primary responsibility for Crane's Operational Technology security solutions that protect Crane's manufacturing environments. You will implement OT and IoT security solutions throughout the enterprise and ensure that OT/IoT security solutions identify threats, uncover vulnerabilities, and measure risks of operational equipment. Coordinating with both IT and OT teams at all manufacturing sites, you will define and develop security standards and technical solutions. As a subject matter expert in the hardening and defense of OT, you will work with business units to implement security standards, securely modify systems, and implement secure network architectures during implementations of OT related projects to ensure secure system deployments. You will work closely with other GIS functional areas, supporting security engineering, administration, operations, and incident response. You will integrate the OT/IoT security solutions with other GIS and business unit tools such as SIEM, SOAR, AD, and other tools to gain a unified view of security events and respond more effectively to security incidents both for OT and IT. Responsibilities and Duties: Support and maintain OT/IoT security tool set and associated integrations with other systems Collaborate with the manufacturing function across lines of business to develop and define security requirements Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective. Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access. Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented Develop and implement standard work supporting the Global OT security function and supporting solutions Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed Ensure security best practices are identified and integrated into all approaches and methodologies. Define requirements and design standards to protect Crane's OT solutions from security threats and for mitigating the impacts of these threats. Define reference network architectures based on industry best practices and work with business units to implement for OT solutions Consult on business unit OT projects and provide cybersecurity expertise Qualifications and Competencies: 2yrs experience with securing Operational Technology and related systems environments Strong understanding and prior experience with the application of securing OT and related systems Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC Deep technical understanding of TCP/IP Networking and Firewalls Deep technical understanding of system integration methods including API's and authentication methods Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards Solid foundation cybersecurity domains such as network security, EDR, anomaly detection Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code Comfortable with designing and overseeing the implementation of secure OT architectures Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments Commitment to security training and earning corresponding certifications Highly motivated with passion for solving complex problems Excellent verbal and written communication skills, comfortable with presenting to Operational Teams Flexibility to work outside regularly scheduled/normal business hours as required Ability and desire to travel both domestically and internationally Required: Degree in a related field or at least 4 years relevant professional experience Required: Mobility and ability to be on your feet for long periods in a manufacturing setting Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar US Person as defined under EAR PART 772 AND ITAR 120.15 This description has been designed to indicate the general nature and level of work being performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Crane Company. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, sexual orientation, general identity, national origin, disability or veteran status.

**Security Architect (Cloud Security & Compliance) - Hybrid** **New Britain, CT, United States** **Towson, MD, United States** **Come build something that matters.** It takes great people to achieve greatness. People with a sense of purpose and integrity. People with a relentless pursuit of excellence. People who care about making things better For Those Who Make The World. Sound like you? Join our top-notch team of approximately 48,000 diverse and high-performing professionals globally who are making their mark on some of the world's most beloved brands, including DEWALT , BLACK+DECKER , CRAFTSMAN , STANLEY , CUB CADET , and HUSTLER . **The Job:** As a Security Architect (Cloud Security & Compliance), you'll be part of our Information Technology team working as a hybrid employee. You'll get to: **Cloud Security Architecture & Strategy:** + Design, develop, and oversee the implementation of comprehensive security architectures for AWS cloud environments and connected products, ensuring confidentiality, integrity, and availability of systems and data. **Security Solution Design & Integration:** + Architect and integrate AWS native security tools (e.g., GuardDuty, Security Hub, IAM, KMS, CloudTrail, Config) and external solutions (e.g., CSPM, Secure SDLC, SIEM) for holistic security coverage. **AST - Application security testing:** + Knowledge and understanding of static analysis, software composition analysis, dynamic analysis, secret scanner etc. **Compliance & Certification:** + Lead the security strategy for SOC2, NIST, ISO27001, and other regulatory certifications. Define and maintain documentation, evidence, and processes required for compliance readiness. **Governance, Risk, and Compliance (GRC):** + Architect and oversee GRC processes, including risk assessments, policy development, control mapping, and remediation tracking for cloud environments. **Security Automation & Infrastructure:** + Design and implement automated security controls and monitoring solutions using infrastructure-as-code (Terraform, CloudFormation), CI/CD pipelines, and scripting (Python, Shell). **Incident Response Strategy:** + Develop and guide incident response plans, lead detection and investigation efforts, and coordinate with internal teams for timely resolution and root cause analysis. **Vulnerability Management Oversight:** + Architect vulnerability management programs, including regular assessments, penetration testing, and remediation for cloud infrastructure and applications. **Security Awareness & Enablement:** + Lead organization-wide security awareness initiatives, provide training, and foster a culture of security through strategic communication and enablement. **Documentation & Reporting:** + Define and maintain security architecture documentation, controls, incident records, and compliance activities. Prepare executive-level reports for stakeholders and leadership. **The Person:** You love to learn and grow and be acknowledged for your valuable contributions. You're not intimidated by innovation. Wouldn't it be great if you could do your job and do a world of good? In fact, you embrace it. You also have: + 10+ years of experience in security architecture, cloud security, or related roles. + Proven track record designing and managing security architectures in AWS cloud environments. + Experience leading organizations through SOC2, NIST, ISO27001, or similar compliance frameworks. + Undergraduate degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field, or equivalent work experience in cloud security and architecture. + Preferred certifications: AWS Certified Security - Specialty, Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP). **Core Technologies and Skills** + **AWS Security Tools:** GuardDuty, Security Hub, IAM, KMS, CloudTrail, Config, Macie, Inspector. + **External Security Solutions:** + WIZ.io, Mend.io, SonarQube, Cortex, Akamai, Cognito, Balbix, Splunk, GitLeaks or similar + **GRC Platforms:** ServiceNow GRC, Archer, OneTrust, and related processes. + **Infrastructure as Code:** Terraform, CloudFormation for security automation and compliance. + **CI/CD Security:** Security integration in CI/CD pipelines (Bitbucket, Jenkins, GitHub Actions). + **Scripting:** Python and Shell for automation and security tasks. + **Vulnerability Management:** Vulnerability scans, penetration testing, and remediation. + **Regulatory Knowledge:** SOC2, NIST, ISO27001, GDPR, and other relevant regulations. + **Monitoring & Logging:** Security monitoring, SIEM solutions, and log management. + **Incident Response:** Security incident detection, response, and reporting. **The Details:** You'll receive a competitive salary and a great benefits plan, including: + Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement in addition to programs & benefits in support of your well-being. + Discounts on Stanley Black & Decker tools and other partner programs. **And More:** We want our company to be a place you'll want to be - and stay. Being part of our team means you'll get to: + _Grow:_ Be part of our global company with 20+ brands to grow and develop your skills along multiple career paths. + _Learn:_ Have access to a wealth of learning resources, including our digital learning portal. + _Belong:_ Experience an awesome place to work, where we have mutual respect and a great appreciation for a wide range of perspectives and experiences. + _Give Back:_ Help us continue to make positive changes locally and globally through volunteerism, giving back, and sustainable business practices. What's more, you'll get that pride that comes from empowering makers, doers, protectors, and everyday heroes all over the world. We're more than the #1 tools company. More than a driving force in outdoor power equipment. More than a global leader in industrial. We're visionaries and innovators. As successful as we've been in the past, we have so much further to go. That's where you come in. Join us! \#LI-RB1 \#LI-Hybrid **_We Don't Just Build The World, We Build Innovative Technology Too._** Joining the Stanley Black & Decker team means working in an innovative, tech-driven and highly collaborative team environment supported by over 58,000 professionals in 60 countries across the globe. Here, you'll get the unique chance to impact some of the world's most iconic brands including STANLEY TOOLS, DEWALT, CRAFTSMAN, MAC TOOLS and Black + Decker. Your ideas and solutions have the potential to reach millions of customers as we work together to write the next chapter in our history. Come build with us and take your career to new heights. **Who We Are** We're the World's largest tool company. We're industry visionaries. We're solving problems and advancing the manufacturing trade through innovative technology and our Industry 4.0 Initiative. We are committed to ensuring our state-of-the-art "smart factory" products and services provide greater quality to our customers & greater environmental and social value to our planet. We are unique in that we have a rich and storied history dating back to 1843, but that hasn't stopped us from evolving into a vibrant, diverse, global growth company. **Benefits & Perks** You'll get a competitive salary and a comprehensive benefits plan that includes medical, dental, life, vision, wellness program, disability, retirement benefits, Employee Stock Purchase Plan, Paid Time Off, including paid vacation, holidays & personal days, and tuition reimbursement. And, of course, discounts on Stanley Black & Decker tools and products and well as discount programs for many other vendors and partners. **What You'll Also Get** Career Opportunity: Career paths aren't linear here. Being part of our global company with 60+ brands gives you the chance to grow and develop your skills along multiple career paths. **Learning & Development:** Our lifelong learning philosophy means you'll have access to a wealth of state-of-the-art learning resources, including our Lean Academy and online university (where you can get certificates and specializations from renowned colleges and universities). **Diverse & Inclusive Culture:** We pride ourselves on being an awesome place to work. We respect and embrace differences because that's how the best work gets done. You'll find we like to have fun here, too. **Purpose-Driven Company:** You'll help us continue to make positive changes in the local communities where we work and live as well as in the broader world through volunteerism, giving back and sustainable business practices. **EEO Statement:** All qualified applicants to Stanley Black & Decker are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran's status or any other protected characteristic. If you require reasonable accommodation to complete an application or access our website, please contact us at ************** or at accommodations@sbdinc.com . Due to volume, we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password. Know Your Rights: Workplace discrimination is illegal (eeoc.gov) (**********************************************************************************************

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ***************** We have been retained for providing recruiting assistance, for direct hires, by one of the world-leading information technology consulting, services, and business process outsourcing organization that envisioned and pioneered the adoption of the flexible global business practices that today enable companies to operate more efficiently and produce more value. Job Description Required Skills: • knowledge of SAP Identity Management 7.2 version • knowledge of SAP IDM integration points with SAP and non-SAP products/tools • LDAP/Active Directory, PD-Org, NWBC, Solution Manager 7.1. • Experience in SAP security, SAP GRC is a plus. • Basis experience is a plus • 6+ years of SAP Identity Management Implementation and support experience. • Experience as the SAP IDM SME in at least 2 implementations • Experience with gap analysis and strategic roadmap/blueprint development • Experience in configuring SAP IDM for user provisioning in a complex SAP landscape comprising of ABAP, JAVA and duel stack systems as well as non-SAP systems • Involve in Onsite-Offshore coordination activities (handover-takeover, off business hour activity tracking, offshore reporting) • Provide SAP IDM support to SAP implementation as well as support teams and internal customers/clients Additional Information All your information will be kept confidential according to EEO guidelines.

Duration: 6+ Months Experienced Firewall administrator for operational implementation, maintenance and configuration of firewalls. Key Responsibilities: Performs maintenance and changes in firewalls as required. Implementation of new firewalls as required Assists with troubleshooting network connectivity as it relates to firewalls Utilizes change management, request, and ticketing systems, documents status updates and problem resolutions Complete All assignments in a timely manner with an acceptable level of quality Maintains documentation related to work area Completes network change requests Follows documented processes, procedures and policies Performs customer service duties and responds to customer and project requests as defined by management Other related duties assigned as needed. Qualifications/Requirements: Bachelor's degree and with 3 to 4 years of operational experience administering Firewalls 4 or more years networking/firewall background Must have networking TCP/IP routing protocol experience Desired Characteristics: In-depth experience in security aspects of multiple platforms, operating systems, software, communications and network protocols is desired Competency in verbal, written, and presentation communications and interpersonal understanding Ability to understand customer's business needs. Leadership of work teams/groups Ability to work with all levels of employees Highly motivated and able to work effectively under minimal supervision in a fast-paced environment Team-oriented, placing priority on quality and the successful completion of team goals Organization and planning skills that include: time management, project coordination and management, and the ability to handle multiple deadlines and associated pressures. Competency in developing effective solutions to business problems Ability to analyze problems and to make decisions REQUIRED SKILLS YEARS OF EXPERIENCE WHEN THE SKILL WAS LAST USED Expert knowledge of Cisco Security products, ASA and Firepower Expert knowledge of NSX Expert knowledge of Palo Alto systems Security Certifications a Plus Must have networking TCP/IP routing protocol experience Networking/firewall background Operational experience administering Firewalls Additional Information All your information will be kept confidential according to EEO guidelines.

What you'll do • Design and implement comprehensive data security architectures, with particular focus on database platforms (primarily SQL Server) • Develop and maintain enterprise-wide encryption strategies for securing structured and unstructured data both in transit and at rest, both and both on-premise and in the cloud • Enhance logging, monitoring and SecOps capabilities of enterprise databases and other data stores • Configure and optimize Identity and Access Management (IAM) solutions across data platforms and repositories to align to least privilege principles • Implement Data Loss Prevention (DLP) strategies and controls • Implement and maintain Information Rights Management (IRM) and Digital Rights Management (DRM) solutions • Design and implement data tokenization strategies where appropriate • Secure data processing pipelines and ensure appropriate controls for data workflows • Create and maintain data security documentation, including policies, procedures, and standards • Collaborate with development teams to ensure security best practices in data handling • Conduct vulnerability assessments of the firm's database architecture and associated data storage and processing systems • Assist in monitoring and managing security patching and upgrade processes for database platforms What's required • Bachelor's degree in computer science, cybersecurity, or related technical field • 6+ years of experience in data/database security engineering and governance • Deep expertise in database security, particularly SQL Server • Comprehensive understanding of data warehouse/data lake architectures and tools, particularly Databricks (required) • Subject matter expertise in Object Storage (eg: S3, Azure Blob, etc) and related security • Understanding of Active Directory Delegation (constrained vs. unconstrained) and associated best practices • Experience with 3rd-party SQL Server security governance and monitoring products (eg: Idera, Solarwinds) • Extensive knowledge of encryption technologies for both structured and unstructured data • Broad knowledge of secure data/file sharing solutions and ETL workflows • Experience designing and implementing data tokenization solutions • Experience with data classification and DLP technologies • Scripting/automation capabilities (eg: SQL, PowerShell, Python) • Commitment to the highest ethical standards Qualifications Ivy league colleges education preferred or huge plus. Additional Information All your information will be kept confidential according to EEO guidelines.