Security architect jobs in Mount Kisco, NY

The Team: The Security Engineering Lead will be responsible for designing, building, and maintaining the organization's security infrastructure. This role requires a highly skilled professional who can lead a team of engineers, implement innovative security solutions, and ensure the resilience of the organization's systems and networks. The ideal candidate will have extensive experience in security engineering, a strong technical background, and the ability to manage and deliver complex security projects. **This Role does NOT provide sponsorship** Salary: $150k-$190k base w/ 20% bonus Responsibilities: Leadership and Management: Lead and mentor a team of security engineers, fostering a culture of continuous learning and innovation. Build and scale a global team to meet organizational needs. Architecting Security Solutions: Assist teams in designing and implementing advanced security solutions, including cloud security, privilege access management and application/system security. Collaboration: Partner with software development, infrastructure, and operations teams to embed security into the development lifecycle and operational processes. Performance Optimization: Regularly evaluate and optimize existing security tools and technologies to ensure maximum efficacy and efficiency. Training and Knowledge Sharing: Develop and deliver technical security training to engineers and other staff, ensuring a strong organizational security posture. Documentation and Reporting: Create detailed documentation for security systems and processes, and provide regular project reports senior management. Required Skills and Experience: Experience (3+ year) in people leadership roles, nurturing security engineers into high-performing teams. Experience (5+ years) in a security engineering role, focusing on designing and implementing security solutions and managing security infrastructure, both on-premise and cloud. Experience working with privilege and identity management solutions. Experience with operating system security and system hardening. Knowledge of network security principles, protocols, and technologies. Strong analytical and problem-solving skills, with the ability to assess risks and develop appropriate security controls. Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders. Ability to work independently, prioritize tasks, and manage multiple projects simultaneously. Strong leadership skills, with the ability to mentor and guide junior team members. Skills and Experience That Would Help You Stand Out: A bachelor's degree in Computer Science, Information Security, or a related field. A master's degree is a plus. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM) are highly desirable. Linux security experience Familiarity with DevSecOps and integrating security into CI/CD pipelines. Scripting experience.

At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. **Manager - Security Architect** **The opportunity** We're hiring an experienced Security Architect that is an expert in the modern security threat and mitigation environment. Knowledge of the use of security in the development of applications (threat model development) best practices for security in the design architecture of applications. The use of AI in SEIM/MDR/MXDR and/or the analysis of behavioral threats. The successful candidate should have experience in the emerging area of AI based attack vectors and be able to devise successful mitigation. The candidate should thrive in fast-paced environments and are passionate about enabling scalable AI solutions. **Your key responsibilities** + Develop effective security designs for implementation into enterprise applications and internal EY platforms. + Support security tool selection and verification. + Develop best practices for security design patterns in AI native applications. + Execute security assessments based on experience and select AI and conventional code analysis tools. + Assess new proposed projects to insure they are leveraging best security practices architecture design and implementation. + Collaborate with other architectural experts in AI, Data and Infrastructure to insure balanced and practical outcomes. + Support strategic business development activities for emerging technology. **Skills and attributes for success** + Strong analytical and troubleshooting skills. + Ability to lead security architectural product functions and mentor junior engineers. + Comfortable working across cross-functional teams and managing competing priorities. + Build and manage strong internal and external partnerships by fostering trust, empathy, and mutual value. + Leverage emotional agility and hybrid collaboration to navigate diverse stakeholder needs and drive long-term engagement. + Use critical thinking and creative reasoning to address complex problems and exceed expectations. + Align cross-functional teams around shared goals, ensuring accountability and progress. Use emotional intelligence and hybrid collaboration to motivate others and deliver high-impact results. **T** **o qualify you must have** + 5-10+ years of experience in security engineering and architecture for products. + Understand security and safety in an AI environment (Guardrails, Adversarial attacks, output validation etc..) + Use of security tooling for application verification in Github Advance Security, Checkmarx JFrog, DAST, etc.. + Understand threat model development and verified implementation. + Familiarity with security certifications and appropriate use for best practices development OWASP etc.... + Expertise in the assessment of security best practices of agile development process + Expertise in the development and adoption of security first best practices. **Ideally, you'll also have** + Experience with large-scale cross functional software development projects. + Excellent communication and leadership abilities. **What we offer you** At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more . + We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $125,500 to $230,200. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $150,700 to $261,600. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. + Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. + Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. **Are you ready to shape your future with confidence? Apply today.** EY accepts applications for this position on an on-going basis. For those living in California, please click here for additional information. EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. **EY | Building a better working world** EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at ************************** .

Odyssey Reinsurance Company (OdysseyRe) is the global reinsurance arm of Odyssey Group, one of the world's leading providers of reinsurance and specialty insurance. OdysseyRe offers a broad range of property, casualty, and specialty reinsurance products, providing capital and risk management solutions for clients to efficiently manage economic risk through a network of branch and representative offices across North America, Latin America, EMEA (Europe, Middle East & Africa), AsiaPacific and London. OdysseyRe is an equal opportunity employer with excellent benefits and a strong commitment to providing training and opportunities for our staff. We provide employees an innovative, enriching environment and take great pride in their career growth. OdysseyRe is rated A+ (Superior) by AM Best and A+ (Strong) by Standard and Poor's. Odyssey Group is a subsidiary of Fairfax Financial Holdings Limited, which is traded on the Toronto Stock Exchange under the symbol FFH. Are you eager to be part of a dynamic team? Do you want to make a difference and have a passion for excellence? Our team is growing and we are currently seeking to hire a Security Architect to be part of our story. The Security Architect will provide senior technical leadership to Enterprise IT, as well as providing cloud subject matter expertise to Information Security Team. This position requires daily interaction with Management, Information Security, and Information Technology Teams. Applicant must be a positive, flexible, self-starter requiring minimal direct supervision, and able to excel as a leader in the area of their subject matter expertise. Exceptional management, communication and interpersonal skills are a necessity; including the ability to effectively communicate via written and verbal media. Job description: This is a hands-on technical position, with a mixture of architecture, design and implementation: Develop architecture for security in cloud services. Define and prototype security mechanisms and contribute to threat model development for a diverse product portfolio in company's cloud offerings. Assess all potential attack vectors throughout the product lifecycle and mitigating through architecting mechanisms, establishing internal policies, and monitoring. Engage with ecosystem partners to bring advanced new ways of securing our cloud offerings based on industry's best and standard practices. Proliferate robust security principles through your technical contributions and evangelization into the organization work-practices, including threat modeling, architecture reviews, and rapid resolution of security defects Actualize knowledge of state-of-the-art security principles, theories and attacks and proactively mitigate security vulnerabilities. Responsible for deploying, configuring, and maintaining security baselines within the Azure. Provides oversight over the implementation of approved security architecture/policies/procedures for a portfolio projects and initiatives. Initiate and conduct project security reviews to identify cloud infrastructure security risks Reviews and oversee the implementation of approved recommendations on cloud security design and implementation Auditing our Policies and Practices (Spot checks to independently audit against our standards, look for code drift, etc.) Contribute to Cloud Patterns to validate they are aligned with Security Practices / Policies / etc. Familiarity with Azure, and at least one of the following languages - PowerShell, Azure CLI, ARM Templates Qualifications You must possess the below minimum qualifications to be initially considered for this position. Experience would be obtained through a combination of relevant previous job and/or internship experience. Preferred Qualifications: 5+ years of industry experience in one or more of the following: CyberSecurity for data centers, clouds and cloud-based services Data privacy In-depth understanding of security concepts, such as threat modelling, security lifecycle, secure SW architecture, and design, security implication of various cloud services. Strong verbal and written communication skills. Motivated “self-starter” capable of collaborating across organizational boundaries. Developing and updating cloud templates, standards, and best practices to be used by multiple cloud projects Strong foundation across Microsoft Azure technology stack Standardizing Azure Security best practices, processes, and procedures Providing strategic and technical leadership for teams establishing cloud infrastructure design, migrating data centers to cloud, developing infrastructure as code, or deploying cloud solutions Building and operating automated security operations Designing and advising against security requirements to support cloud migration efforts We are an E-Verify employer - all hired positions require successfully passing an E-Verify Check. Navigate the links below to learn more about careers at OdysseyRe. Workplace Initiatives Career Areas for Professionals A Rewarding Workplace Follow us on LinkedIn for company highlights

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Director, Tech Engineering to join our Tax Ignition Group. Responsibilities: * Lead the function of responding to clients' security inquires * Meet with clients to answer their security questions and negotiate compensating controls when there are gaps between client requirements and our product offerings * Drive innovation and improvement in the client security inquiry process such incorporating Artificial Intelligence into the process, creating additional collateral such as whitepapers, managing metrics, and improving the tooling and interactions with requestors * Partner with various groups within Tax's technology function and business teams to incorporate trends into product roadmaps; collaborate with other compliance teams, and raise awareness around client security requirements * Review and respond to client security questionnaires and assessments * Build and maintain a knowledge base of common client questions Qualifications: * Minimum ten years of recent experience in Information Technology (IT) security compliance, risk management or related IT security within a large IT organization, preferably within a professional services firm, software product, or other highly regulated environment * Bachelor's degree from an accredited college or university is preferred * Deep understanding of cloud architecture, modern software development, and technical security controls is required; Azure experience is preferred * Strong executive presence, negotiation, presentation, and communication skills are required; excellent analytical and problem-solving skills to assess complex security issues and develop effective solutions; capability to work effectively in a global environment, understanding diverse cultural perspectives and international client needs * Proven experience in client-facing roles, particularly in handling security inquiries, negotiations, and managing client relationships; demonstrated ability to drive innovation and continuous process improvement, particularly in integrating new technologies and methodologies into existing processes * Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards; CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL preferred * Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa KPMG LLP and its affiliates and subsidiaries ("KPMG") complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, KPMG is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year KPMG publishes a calendar of holidays to be observed during the year and provides eligible employees two breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at Benefits & How We Work. Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding KPMG's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Full Time Position : Compensation : TBD- based on experience US Citizens and those authorized to work in the US are encouraged to apply. Unfortunately we are unable to offer sponsorships at this time. We're looking for a cut above the rest, someone who is not only technical but also has the skill set as an Architect to design Checkpoint and launch it. Very important that you actually knows how to hold a conversation and walk a client through the process. Qualifications Must have : Proficiency in Check Point products (Firewall, VPN etc) Experience with Blue Coat products (Proxy SG, WAN acceleration, Packetshaping, etc.), Citrix NetScaler or IP Load balancing product and WebSense products Very important that you actually knows how to hold a conversation and walk a client through the process. Must be analytical, and have extreme good organizational skills Certifications in above technologies CCSE, CCSI, CCSA, CISSP (Not required, but a plus to have) Thank you, John Anton Additional Information All your information will be kept confidential according to EEO guidelines.

The corporation is built around the enterprise relationships that they have as a service provider and an expertise in the industry of technology. Job Description Location: Metro Area Full Time Position: Compensation: TBD- based on experience US Citizens and those authorized to work in the US are encouraged to apply. Unfortunately we are unable to offer sponsorships at this time. We're looking for a cut above the rest, someone who is not only technical but also has the skill set as an Architect to design Checkpoint and launch it. Very important that you actually knows how to hold a conversation and walk a client through the process. Qualifications Must have: Proficiency in Check Point products (Firewall, VPN etc) Experience with Blue Coat products (Proxy SG, WAN acceleration, Packetshaping, etc.), Citrix NetScaler or IP Load balancing product and WebSense products Very important that you actually knows how to hold a conversation and walk a client through the process. Must be analytical, and have extreme good organizational skills Certifications in above technologies CCSE, CCSI, CCSA, CISSP (Not required, but a plus to have) Thank you, John Anton Additional Information All your information will be kept confidential according to EEO guidelines.

Outcomes. Delivered. Voyatek, formerly GCOM Software and OnCore Consulting, delivers outcome-driven technology solutions to public sector agencies and higher education institutions nationwide. For example, our technology: Facilitates access to nutritious food for children of mothers participating in the WIC program Supports first responders in reducing opioid overdoses within their communities Empowers colleges and universities to identify and thwart financial aid fraud Equips teachers with valuable insights to identify students requiring additional support Enhances efficiency for state tax agencies, leading to 99% faster return processing and quicker refunds for taxpayers With a focus on Tax & Revenue, Health & Human Services, and Justice & Public Safety, Voyatek combines the scale to support large complex projects with the agility and accessibility of a boutique solutions provider. Together, Voyatek and its customers work to improve population wellbeing, create safer communities, and foster a thriving economy. We're more than a technology company -- we're an outcomes company. We encourage our employees to think differently, ask tough questions, and relentlessly pursue what's best for our customers and the residents they serve. We believe that the value of technology is defined by its human impact. If you agree, you've come to the right place. Voyatek is seeking applicants to occupy the position of SAP Security Analyst within our team. Client Details: The New York Power Authority (NYPA) is the largest state public power organization in the United States, renowned for its role in providing clean, affordable, and reliable energy. NYPA's mission is to power New York with clean energy while driving economic growth and sustainability. It focuses on reducing greenhouse gas emissions, modernizing the state's energy infrastructure, and promoting energy efficiency and innovation across sectors. New York Power Authority's (“NYPA”) current on-premise Enterprise Resource Planning (“ERP”) system, SAP ECC 6.0, is almost 20 years old and is approaching technological obsolescence. Systems Application and Products (“SAP”) has already released its statement of intent to end new development on that platform and is planning on removing it from standard support on December 31, 2027. Project Luminate is a program to replace NYPA's current on-premise ERP system with a cloud-based system to ensure an adaptable environment able to meet NYPA's needs. In 2023, NYPA awarded a contract to Gartner Inc. to perform a detailed readiness assessment to define key requirements that the new system has to meet and to identify current business process improvements that are critical to be addressed as a precursor to the transition to a cloud-based platform. Key Responsibilities: Participate in SAP GRC project, enhancement and support and other relevant assignments (as needed) and provisioning across various ERP application environments following the organizational guideline and procedure and perform the below activities. Configure and maintain SAP GRC tools, including Access Control, Risk Management, and Process Control and IAG. Provision and manage user accounts and access to SAP systems, ensuring that all access is granted in accordance with established policies. Design, configure, and maintain roles, authorizations, and user access within S/4HANA, ensuring appropriate access levels for users. Generate reports and conduct audits to monitor SAP security & ITGC controls and ensure compliance including SOD management and configuration. Investigate and resolve GRC-related issues, providing timely support to users and other IT teams. Maintain comprehensive documentation of security policies, procedures, and role designs. Work with cross-functional teams, including IT, business users, and auditors, to ensure alignment of security requirements and best practices. Qualifications: SAP ERP (S/4 Hana is added plus), Workday, Active Directory group, GRC AC 10.1 and above, Microsoft Azure, success factor, applicable functional knowledge for SAP security in the area like Finance, MM, ISU billing etc., SAP audit & compliance. Bachelor's degree in engineering, IT, or related field. 7-10 years of hands-on industry experience in SAP GRC AC and PC implementation and administration. Familiarity with SAP S/4HANA system landscapes, including Fiori authorizations in cloud-based environment (SAP RISE). Proficiency in using SAP security tools and configurations. Ability to identify, analyze, and resolve complex security and compliance issues. Strong interpersonal and communication skills, with the ability to effectively collaborate with diverse teams. The wage range for this role reflects the wide array of factors considered in compensation decisions. These factors include, but are not limited to, skill sets, experience, training, licensure and certifications, and geographic location. Compensation decisions are based on the unique facts and circumstances of each case. A reasonable estimate of the hourly range is $74.00 - $84.00. At Voyatek, we believe in supporting our employees with a comprehensive benefits package designed to enhance their well-being and professional growth. Please note that eligibility for certain benefits may vary based on your role and employment status. Health, Dental, and Vision Insurance Medical, Limited, & Dependent Flexible Spending Accounts (FSA) Health Savings Account (HSA) with Employer Contributions Company-Paid and Voluntary Life Insurance Long and Short-Term Disability Insurance Accident, Critical Illness, & Hospital Indemnity Insurance 401(k) Retirement Plan with Company Match and Immediate Vesting Wellhub Fitness and Wellness Platform Pet Insurance Training Opportunities Employee Referral Bonus Program We are committed to fostering a workplace that supports both your personal and professional aspirations. As part of our commitment to maintaining a compliant workplace, all final candidates will undergo and must pass a comprehensive background screening prior to starting work. This screening may include, but is not limited to, verification of employment history, education, criminal records, and other relevant checks. For certain positions, additional client-specific background screenings may be required in the future, in accordance with client requirements. Voyatek does significant work with Federal and State tax and revenue authorities. If applicable to this role, all hires will be required to obtain a Federal Public Trust Clearance (Moderate Background Investigation). This clearance process may start upon offer acceptance; and must be cleared prior to working on these projects. If you think you are a good fit for us, we encourage you to apply. Check out our career website for all open positions! Voyatek provides equal employment opportunities to all employees and applicants for employment. Voyatek will make employment decisions without regard to race, color, creed, ancestry, national origin, citizenship, sex or gender (including pregnancy, childbirth, and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status or domestic violence victim status, religion, age, disability, genetic information, service in the military, or any other characteristic protected by applicable federal, state, or local laws and ordinances. Employment decisions include all terms and conditions of employment, including recruitment and hiring, job assignment/placement, promotion, upgrading, demotion, termination, layoff, recall, transfer, leave of absence, rates of pay or other compensation, internship, and training.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ***************** We have been retained for providing recruiting assistance, for direct hires, by one of the world-leading information technology consulting, services, and business process outsourcing organization that envisioned and pioneered the adoption of the flexible global business practices that today enable companies to operate more efficiently and produce more value. Job Description Required Skills: • knowledge of SAP Identity Management 7.2 version • knowledge of SAP IDM integration points with SAP and non-SAP products/tools • LDAP/Active Directory, PD-Org, NWBC, Solution Manager 7.1. • Experience in SAP security, SAP GRC is a plus. • Basis experience is a plus • 6+ years of SAP Identity Management Implementation and support experience. • Experience as the SAP IDM SME in at least 2 implementations • Experience with gap analysis and strategic roadmap/blueprint development • Experience in configuring SAP IDM for user provisioning in a complex SAP landscape comprising of ABAP, JAVA and duel stack systems as well as non-SAP systems • Involve in Onsite-Offshore coordination activities (handover-takeover, off business hour activity tracking, offshore reporting) • Provide SAP IDM support to SAP implementation as well as support teams and internal customers/clients Additional Information All your information will be kept confidential according to EEO guidelines.

Description About us: ConnectOne Bank proves that putting people first is a better way to do business. At ConnectOne, we're builders - of businesses, communities, and equity. Most importantly, we're building opportunities. Our mission is to ensure our employees feel empowered to make important decisions, reach their potential and truly make an impact. ConnectOne is a growth organization by design; it is part of our DNA and we take pride in seeing our employees grow with us. Founded in 2005 by an entrepreneur, we have grown into a high-performing commercial bank, inspiring a new model for our industry's future. By embracing technology and all the ways it can help us become a world-class service organization, we support small business owners by fueling their mission. People First is the blueprint for our culture. It is at the foundation of everything we do and the decisions we make. At ConnectOne, you have the opportunity to be a part of a dynamic culture and team. Develop your forward-thinking skills, thrive in an entrepreneurial setting, and succeed at “a better place to be”. ConnectOne Bank is an Equal Housing and Equal Opportunity Lender, and a member of the Federal Deposit Insurance Corporation. About this role: The Information Security Officer will assist ConnectOne Bank in upholding the utmost standards of risk and cyber security within the organization. The candidate will lead all aspects of the Bank's dedication to safeguarding the confidentiality, integrity, and availability of all physical and electronic information assets within the institution. The candidate will plan, direct, and coordinate the Bank's data and cybersecurity policies and guidelines to ensure that all information systems are secure, and safeguarded throughout the Bank and follow privacy, customer trust and information security laws and regulations applicable to financial institutions. In this role you will: Support the Bank's “People First” focus and rules of engagement-maintaining a professional demeanor, working as an active member of the CNOB team, providing all clients excellent service, always striving to make ConnectOne Bank “A Better Place to Be”. Use a thorough knowledge of industry practices in relation to current data/cyber security solutions and management of data/cyber security. Support the Bank on project boards to ensure strong security posture for ongoing compliance. As well as prepare written reports as needed. Take charge of Incident Response Plan, conducting annual plan testing, and ensuring training is comprehensive and covers up-to-date policies and protocols. Develop, enforce, and evaluate guidelines on information protection and risk assessments that affect every department within the Bank, supporting the IT Risk Management procedure. Review the results of the data protection audit making recommendations for improvements. This will involve liaison with senior staff across the organization Evaluate, assess, provide insights, and suggest improvements for the advancement and expansion of the technology infrastructure, Cybersecurity, and technological systems. Protect systems by defining access privileges, control structures, and resources. Work with collaborators to define business and systems requirements for new technology security implementations. Recognize problems by identifying abnormalities, reporting violations. Collect data on current cybersecurity measures for risk analysis and write systems status reports regularly. Grant credentials to authorized users, supervise access-related activities, and check for unregistered information changes. Help lead employee training to prevent phishing and other forms of cyberattack. Monitor constantly for attacks and run appropriate defensive protocols if a breach occurs. Conduct testing to identify vulnerabilities and collaborate with the cybersecurity team to update defensive protocols when vital. Keep users advised by preparing performance reports, communicating system status. Lead with a focus on cybersecurity, handle IT teams and develop strategies for cybersecurity efforts. Write rules and regulations regarding cybersecurity decisions. Ensure the development, deployment, operations, implementation, and support of component information systems that are consistent with cyber security policies and procedures. Serve as a first responder to any cyber security event within the department and perform vital functions in identifying, mitigating, reviewing, documenting, and reporting findings. Lead 3rd party security tests to ensure they align with institution's criteria. Lead the vendor relationship of the bank's IT Security solutions to ensure performance remains consistently at a high level and in line with industry standards. Ensure all documentation pertaining to IT Security is maintained and provided to vital individuals when requested for bank audits. Must haves: Knowledge of IT Security standards, protocols and industry procedures. Knowledge of LAN/WAN/SD-WAN networking and current standards of protocols. Knowledge of relevant Federal and State banking regulations. Hands-on exposure to providing IT Security, IT Networking, and IT Systems operational support in a medium to large scale organization, with innovative computing systems. Excellent leadership ability. Strong analytical skills and problem-solving skills with the ability to research, explain and recommend solutions in security situations. Understanding of securing and hardening networks and connected devices systems to keep them current with industry standards. Work in a team environment as well as individually. Superb communication and interpersonal skills. Strong “People First” interest and ability. Ability to analyze problems and find solutions. Ability to deliver the bank's cyber security status to upper management when required. Bachelor's Degree required in computer science, information management or equivalent At least 10 years of dynamic experience in Information Technology/Cyber Security and banking industry Must be an intelligent and persuasive leader who can serve as an effective member of the senior management team and who is able to communicate security-related concepts to a broad range of technical and non-technical staff. Acting as a liaison IT and business process owners. Bonus Points For: Certification such as CISA, CISM or CISSP (or willingness to pursue) Master's degree or equivalent experience preferred Additional information Benefits: World class health, vision, and dental benefits on day one 401k with employer match Hybrid work from home (depending on role) Employee appreciation events (team building, softball games, food truck days, etc..) Employee assistance programs (EAP) Wellness programs (flu shot, preventive care, health programs and services discounts, etc..) Tuition reimbursement Employee Discount perks CNOB Community Service Events ….and much, much more! Studies have shown that individuals from underrepresented groups, may only apply to roles if they meet 100% of the qualifications. Roles evolve over time, especially with innovation, and you may be just the person we need. We hope you're open to learning new skills and growing with us. We encourage you to apply to continue making us “a better place to be!” ConnectOne Bank is an equal opportunity employer and does not discriminate with respect to any term, condition or privilege of employment based on race, color, religion, sex, sexual orientation, gender identity or expression, age, disability, military or veteran status, marital status, or status of an individual in any group or class protected by applicable federal, state, or local law. ConnectOne Bank also provides reasonable accommodations for qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local laws. If an accommodation is needed to participate in the job application or interview process, please contact Talent Acquisition. #IND123 Salary Description $175,000-$230,000

Introduction The CISO Cybersecurity Operations Platform (CSOP) team is looking to add an engineer to the Analytics and Data Exploitation team. The Platform provides the technology, services and expertise required by IBM's Cyber Threat Detection and Response teams. We support the Advanced Threat Detection (threat hunting, intelligence, incident response), Vulnerability Detection and Response, Innovation and Remediation, Security Operations Centers and Command Centers teams to deliver enterprise-wide security to one of the world's most established technology companies. We process tens of billions of events per day, meaning effective analysis and data exploitation practices are critical to our success. This is a technical position within the Analytics and Data Exploitation team who employ commercial, open source and in-house developed tools to deliver critical cybersecurity services such as event processing, automation, complex analytics and support to digital investigations. This role operates across our development, test, pre-production and production networks to create, maintain and improve our services -an important component of which is fault-finding and the ability to work within complex, dynamic environments. The right candidate thrives in high-pressure situations and has practical experience working with Big Data technologies -such as Spark, Hadoop and Elasticsearch. The role requires a proven, practical knowledge of container orchestration technologies -specifically Kubernetes and RedHat OpenShift. The work will include the design and optimization of container-deployed systems, as well as the day-to-day engineering and administration of the orchestration environment. This includes cluster management, Pod assignment / configuration, application virtual routing, security, container image registry management and optimization of the runtime engines. Wider knowledge of data ingestion, extraction, transformation and loading technologies is important - including Streamsets and Flink. The role is rounded-out by some software development tasks - all related to cyber security. These will involve Java, SQL, Python and automation scripting so experience with DevSecOps methods is highly advantageous. The Platform team employs hybrid cloud hosting and this includes provisioning, administration and management of services within environments spanning IBM Cloud, Amazon Web Services and Microsoft Azure. About the Team The CISO Cybersecurity Operations Platform (CSOP) team is looking to add an Email Security Engineer to the team. The CSOP provides the technology, services and expertise required by IBM's Cyber Threat Detection and Response teams. We support the Advanced Threat Detection (threat hunting, intelligence, incident response), Vulnerability Detection and Response, Remediation, Security Operations Center and Command Center teams to deliver enterprise-wide security to one of the world's most established technology companies. Your role and responsibilities Job Duties: * Contribute to the day-to-day work that supports our critical cybersecurity analysis and data processing workflows * Protect organization against phishing, spoofing, malware, and advanced threats while maintaining user experience and compliance * Familiarity with Exchange, ProofPoint Email Solutions, Powershell, Azure, and M365 suite * Design, implement and maintain secure email solutions within the Microsoft 365 tenant and related servces * Moniotr and respond to email-related security incidents, phishing attempts, and compromise events * Support the team leadership to improve overall exploitation of technologies that best serve our requirements * Partner with CIO and CISO teams to develop email security policies, rules, and playbooks * Work as part of a deeply technical, passionate team of engineers to tackle significant IT challenges Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional expertise * 3 or more years' experience in an email security engineer or similar role * Experience with Microsoft 365 Exchange or Proofpoint email solutions * Hands on experience with SPF, DKIM, and DMARC configuration and rollout at an enterprise level * Experience with (or a proven aptitude for) working within a fast-paced environment where the success criteria are defined by external factors. This includes having to change course quickly, based on the evolving needs of a complex and dynamic environment * Strong experience with incident response processes for phishing and email-based threats * Experience with IBM Cloud, AWS, Azure or similar cloud environments * Strong understanding of email protocols ISMPT, IMAP, POP3) and security controls * Familiarity with SIEM tools for monitoring and automation on email threats * Excellent problem-solving, communication, and documentation skills Preferred technical and professional experience * Experience with secure email gateways (Proofpoint, M365, etc) * Microsoft certification * Knowledge of zero trust frameworks and modern authentication methods (MFA, conditional access) * Familiarity with cloud-native security tools (Sentinel, Defender, XDR) * Understanding of email encryption solutions (TLS, S/MIME, PGP) * Experience in large enterprise environments with hybrid Microsoft Exchange deployments * Ansible experience is a strong advantage ABOUT BUSINESS UNIT IBM Systems helps IT leaders think differently about their infrastructure. IBM servers and storage are no longer inanimate - they can understand, reason, and learn so our clients can innovate while avoiding IT issues. Our systems power the world's most important industries and our clients are the architects of the future. Join us to help build our leading-edge technology portfolio designed for cognitive business and optimized for cloud computing. YOUR LIFE @ IBM In a world where technology never stands still, we understand that, dedication to our clients success, innovation that matters, and trust and personal responsibility in all our relationships, lives in what we do as IBMers as we strive to be the catalyst that makes the world work better. Being an IBMer means you'll be able to learn and develop yourself and your career, you'll be encouraged to be courageous and experiment everyday, all whilst having continuous trust and support in an environment where everyone can thrive whatever their personal or professional background. Our IBMers are growth minded, always staying curious, open to feedback and learning new information and skills to constantly transform themselves and our company. They are trusted to provide on-going feedback to help other IBMers grow, as well as collaborate with colleagues keeping in mind a team focused approach to include different perspectives to drive exceptional outcomes for our customers. The courage our IBMers have to make critical decisions everyday is essential to IBM becoming the catalyst for progress, always embracing challenges with resources they have to hand, a can-do attitude and always striving for an outcome focused approach within everything that they do. Are you ready to be an IBMer? ABOUT IBM IBM's greatest invention is the IBMer. We believe that through the application of intelligence, reason and science, we can improve business, society and the human condition, bringing the power of an open hybrid cloud and AI strategy to life for our clients and partners around the world. Restlessly reinventing since 1911, we are not only one of the largest corporate organizations in the world, we're also one of the biggest technology and consulting employers, with many of the Fortune 500 companies relying on the IBM Cloud to run their business. At IBM, we pride ourselves on being an early adopter of artificial intelligence, quantum computing and blockchain. Now it's time for you to join us on our journey to being a responsible technology innovator and a force for good in the world. IBM is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, neurodivergence, age, or other characteristics protected by the applicable law. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status. OTHER RELEVANT JOB DETAILS IBM offers a competitive and comprehensive benefits program. Eligible employees may have access to: * Healthcare benefits including medical & prescription drug coverage, dental, vision, and mental health & well being * Financial programs such as 401(k), cash balance pension plan, the IBM Employee Stock Purchase Plan, financial counseling, life insurance, short & long- term disability coverage, and opportunities for performance based salary incentive programs * Generous paid time off including 12 holidays, minimum 56 hours sick time, 120 hours vacation, 12 weeks parental bonding leave in accordance with IBM Policy, and other Paid Care Leave programs. IBM also offers paid family leave benefits to eligible employees where required by applicable law * Training and educational resources on our personalized, AI-driven learning platform where IBMers can grow skills and obtain industry-recognized certifications to achieve their career goals * Diverse and inclusive employee resource groups, giving & volunteer opportunities, and discounts on retail products, services & experiences We consider qualified applicants with criminal histories, consistent with applicable law. This position was posted on the date cited in the key job details section and is anticipated to remain posted for 21 days from this date or less if not needed to fill the role. IBM will not be providing visa sponsorship for this position now or in the future. Therefore, in order to be considered for this position, you must have the ability to work without a need for current or future visa sponsorship. The compensation range and benefits for this position are based on a full-time schedule for a full calendar year. The salary will vary depending on your job-related skills, experience and location. Pay increment and frequency of pay will be in accordance with employment classification and applicable laws. For part time roles, your compensation and benefits will be adjusted to reflect your hours. Benefits may be pro-rated for those who start working during the calendar year.

Montefiore is ranked among the top hospitals nationally and regionally by U.S. News & World Report. For more than 100 years we have been innovating new treatments, procedures, and approaches to patient care, producing stellar outcomes and raising the bar for academic medical centers in the region and around the world. Our work to improve health outcomes in underserved communities is unparalleled in the United States. Our workforce is among the most diverse in the US: Montefiore associates speak 60+ languages. This is a hybrid position requiring being on-site as needed. ________________________________________ We are seeking a skilled and detail-oriented CMDB Engineer to join our IT team. This role will be responsible for developing, managing, and optimizing our ServiceNow Configuration Management Database (CMDB), supporting Discovery, service graph connectors, third-party data integrations, and IRE configuration. This role is critical to ensuring visibility, accuracy, and reliability of Configuration Items (CIs) throughout their lifecycle using the ServiceNow platform. ________________________________________ Responsibilities include: • Manage and enhance the ServiceNow CMDB, ensuring accuracy, completeness, and alignment with ITIL standards. • Configure and extend ServiceNow Patterns to improve data ingestion and normalization. • Deep knowledge of how to troubleshoot ServiceNow Discovery-related issues. • Maintain and enhance the ServiceNow CMDB following the Common Service Data Model (CSDM) framework. • Collaborate with infrastructure, network, and application teams to ensure proper CI identification and relationships. • Manage integration with other technologies (e.g., SCCM, vCenter, SolarWinds, etc.) feeding the CMDB. • Create and maintain CMDB documentation, architecture diagrams, and training materials. • Manage and maintain the Identification and Reconciliation Engine (IRE) rules. • Monitor and improve the CMDB Health Dashboard, ensuring ongoing health and governance of the “3 C's” - Completeness, Correctness, and Compliance. • Audit and validate CI data regularly to ensure appropriate CI class assignments, relationships, and attributes. • Oversee and optimize MID server health and ensure discovery schedules are accurate and up to date by liaising with the Network team. • Support audits, compliance, and risk initiatives by ensuring the integrity and traceability of CMDB data. Requirements include: • 7+ years of experience in an enterprise IT organization • Minimum of 3-5 years of hands-on experience with ServiceNow CMDB and Discovery • ServiceNow Certified System Administrator (CSA) certification is required to be eligible for this role. • Strong knowledge and practical experience with ServiceNow CSDM framework and the IRE configuration. • Experience with CI data normalization, reconciliation, and health reporting • Experience with third-party integrations like AWS, SCCM and JAMF • Proficiency in CMDB data modeling, CI class categorization, and relationship mapping. • Strong analytical and troubleshooting skills to manage data quality and Discovery issues. • Experience configuring and maintaining MID Servers and Discovery Schedules. • Bachelor's degree or equivalent experience. Preferred: • Other ServiceNow certifications such as Certified Implementation Specialist - CMDB, Discovery Fundamentals, is a plus. Department: Montefiore Information Technology Bargaining Unit: Non Union Campus: YONKERS Employment Status: Regular Full-Time Address: 3 Odell Plaza, Yonkers Shift: Day Scheduled Hours: 8:30 AM-5 PM Req ID: 224883 Salary Range/Pay Rate: $112,500.00 - $150,000.00 For positions that have only a rate listed, the displayed rate is the hiring rate but could be subject to change based on shift differential, experience, education or other relevant factors. To learn more about the “Montefiore Difference” - who we are at Montefiore and all that we have to offer our associates, please click here. Montefiore is an equal employment opportunity employer. Montefiore will recruit, hire, train, transfer, promote, layoff and discharge associates in all job classifications without regard to their race, color, religion, creed, national origin, alienage or citizenship status, age, gender, actual or presumed disability, history of disability, sexual orientation, gender identity, gender expression, genetic predisposition or carrier status, pregnancy, military status, marital status, or partnership status, or any other characteristic protected by law. SF-DICE-MIT; LI-SC1-REDIRECT

One of the fastest growing technology companies in the world - even during the depths of the economic downturn. A micro-vertical strategy, built on strong domain expertise, ensures that no matter how complex a company's business problem, we can offer a solution that is sustainable and innovation-driven. Job Description Managing and implementing McAfee Anti-Virus and other security systems. Qualifications • Must have 7+ years' experience with McAfee anti-Virus Management and implementation • Good hands on exposure on McAfee end point DLP and HIPS • Experience in Symantec End point Encryption -PGP • Must have team management and customer interaction skills • Must have exposure in defining SLAs • Must have expertise in defining Standard Operating Procedures • Must have expertise in Remote Infrastructure management for network and information security • Basic Understanding of network and security concepts • Should have good understanding on Incident Management & Change Management and ticketing tools Primary Skill Set: Symantec/Mcafee antivirus, Symantec HIPS and Mcafee end point DLP, End Point Encryption • Should have good communication skills (verbal and written). • Should be comfortable working in 24*7 environments. • Should have team management skills Additional Information Ed Grajo Technical Recruiter -------------------------------------------------------------------- Hi-Tech Solutions, Inc. | Information Technology Consulting Two Mid America Plaza, Suite 630 | Oakbrook Terrace, IL 60181 Direct Phone: ************ ********************* Lets connect on LinkedIn - *********************************************************************************

Duration: 6+ Months Experienced Firewall administrator for operational implementation, maintenance and configuration of firewalls. Key Responsibilities: Performs maintenance and changes in firewalls as required. Implementation of new firewalls as required Assists with troubleshooting network connectivity as it relates to firewalls Utilizes change management, request, and ticketing systems, documents status updates and problem resolutions Complete All assignments in a timely manner with an acceptable level of quality Maintains documentation related to work area Completes network change requests Follows documented processes, procedures and policies Performs customer service duties and responds to customer and project requests as defined by management Other related duties assigned as needed. Qualifications/Requirements: Bachelor's degree and with 3 to 4 years of operational experience administering Firewalls 4 or more years networking/firewall background Must have networking TCP/IP routing protocol experience Desired Characteristics: In-depth experience in security aspects of multiple platforms, operating systems, software, communications and network protocols is desired Competency in verbal, written, and presentation communications and interpersonal understanding Ability to understand customer's business needs. Leadership of work teams/groups Ability to work with all levels of employees Highly motivated and able to work effectively under minimal supervision in a fast-paced environment Team-oriented, placing priority on quality and the successful completion of team goals Organization and planning skills that include: time management, project coordination and management, and the ability to handle multiple deadlines and associated pressures. Competency in developing effective solutions to business problems Ability to analyze problems and to make decisions REQUIRED SKILLS YEARS OF EXPERIENCE WHEN THE SKILL WAS LAST USED Expert knowledge of Cisco Security products, ASA and Firepower Expert knowledge of NSX Expert knowledge of Palo Alto systems Security Certifications a Plus Must have networking TCP/IP routing protocol experience Networking/firewall background Operational experience administering Firewalls Additional Information All your information will be kept confidential according to EEO guidelines.

What you'll do • Design and implement comprehensive data security architectures, with particular focus on database platforms (primarily SQL Server) • Develop and maintain enterprise-wide encryption strategies for securing structured and unstructured data both in transit and at rest, both and both on-premise and in the cloud • Enhance logging, monitoring and SecOps capabilities of enterprise databases and other data stores • Configure and optimize Identity and Access Management (IAM) solutions across data platforms and repositories to align to least privilege principles • Implement Data Loss Prevention (DLP) strategies and controls • Implement and maintain Information Rights Management (IRM) and Digital Rights Management (DRM) solutions • Design and implement data tokenization strategies where appropriate • Secure data processing pipelines and ensure appropriate controls for data workflows • Create and maintain data security documentation, including policies, procedures, and standards • Collaborate with development teams to ensure security best practices in data handling • Conduct vulnerability assessments of the firm's database architecture and associated data storage and processing systems • Assist in monitoring and managing security patching and upgrade processes for database platforms What's required • Bachelor's degree in computer science, cybersecurity, or related technical field • 6+ years of experience in data/database security engineering and governance • Deep expertise in database security, particularly SQL Server • Comprehensive understanding of data warehouse/data lake architectures and tools, particularly Databricks (required) • Subject matter expertise in Object Storage (eg: S3, Azure Blob, etc) and related security • Understanding of Active Directory Delegation (constrained vs. unconstrained) and associated best practices • Experience with 3rd-party SQL Server security governance and monitoring products (eg: Idera, Solarwinds) • Extensive knowledge of encryption technologies for both structured and unstructured data • Broad knowledge of secure data/file sharing solutions and ETL workflows • Experience designing and implementing data tokenization solutions • Experience with data classification and DLP technologies • Scripting/automation capabilities (eg: SQL, PowerShell, Python) • Commitment to the highest ethical standards Qualifications Ivy league colleges education preferred or huge plus. Additional Information All your information will be kept confidential according to EEO guidelines.

Responsible for the day-to-day security operations and ownership over one or more security practice areas at Columbia Bank. The individual will serve as a technical operations subject matter expert and will be responsible for the proper maintenance of security controls, detection of and response to potential threats, and remediation and escalation of incidents. Supports the cyber incident response team, vulnerability management, secure design, security platform support, data security, provides guidance to technology operators, and ensures execution of processes. Job Responsibilities: Security Operations * Executes, enhances, and creates/maintains documentation for security operations processes. * Responsible for ownership over one or more security practice areas and leads the assessment of security processes, platforms, and practices to identify areas for improvement. Incident Response Support * Supports incident response efforts by reviewing security events and escalations, performing investigations, and seeing matters through to resolution. * Collaborates with technology and business organizations as appropriate. Security Platform Management * Performs ongoing security platform maintenance including health monitoring, troubleshooting, tuning, and upgrades. * Assists in implementing and operationalizing new security solutions. Coordinates with internal and external resources as required. Analytical Responsibility * Develops and analyzes security related content - reports, alerts, dashboards, and metrics - to gain insights from the Bank's systems, platforms, and data. * Utilizes content outputs to drive subsequent action plan through to completion. Project Management * Assists in the management of small to medium sized projects according to project management schedules. Professional Development * Stays abreast of relevant industry related developments, trends, and threats. * Commits to ongoing professional education and development in the Information / Cyber Security field. Other Responsibilities * Performs other job related duties as assigned. Job Requirements: * Bachelor's degree in an IT related discipline required. * 5 - 10 years of experience in information technology, information security, risk, or similar field. * 5+ years of experience in an information security role. * 3+ years of engineering experience. * Relevant industry certifications and/or advanced degrees may be considered in lieu of experience. * Strong knowledge of one or more security practice areas including security architecture, identity and access management, asset management, vulnerability management, threat detection and response, endpoint security, network security, cloud security, web security, email security, data security, application security, threat intelligence. * Performs ongoing analysis of various security events, incident alerts, event notifications, health status from security tools, and additional detection and response activities. * Investigates security incidents and collaborates with the CISO and business organizations in response to detected threats. * Coordinates with internal and external resources for risk mitigation and service outage resolution. * Develops standard operating procedures for deployed security solutions, interfacing with managed security service providers, incident responses, review and escalation processes. * Communicates security warnings, ongoing awareness, and general best practices to end-users. * Develops performance metrics, trend statistical data, and customizes management reports for Risk, IT and Information Security. * Strong knowledge of securing network/infrastructure design and deployment. * Experience in conducting a daily assessment of vulnerabilities identified by infrastructure scans. * Evaluate, rate, and perform risk assessments on assets. * Prioritizing vulnerabilities discovered along with remediation timeline(s). * Knowledge of scripting languages and automation methodologies. * Deep knowledge of intrusion detection methodologies and techniques for detecting host and network-based intrusions. * Experience with log analysis, packet flow, TCP/UDP traffic, firewall technologies, IDS technologies (e.g., Snort rules), proxy technologies, and antivirus, spam and spyware solutions. * Deep knowledge of computer networking concepts and protocols, and network security methodologies. * Knowledge of cybersecurity management frameworks, regulatory requirements and industry leading practices. * Experience in conducting technical risk assessments. * Commits to ongoing professional education / training / certification in the Information / Cyber Security field. Columbia Bank offers the following benefits: * Medical, Dental, Vision and Rx which are contributory. * Bonus programs. * Employee Stock Option Program (ESOP). * Life Insurance, Long Term Disability and Accidental Death and Dismemberment (LTD&AD&D). * Paid Time Off (PTO) which includes Personal and Vacation Time. * Paid Sick Time. * Bank Holidays. * Employees may participate in the 401k program. Schedule: This role is eligible for a hybrid schedule; 3 days in the office and 2 days work from home based on business need. Columbia Bank and its affiliates is an Equal Opportunity Employer, including individuals with disabilities and veterans.

The OT Security Engineer, Global Information Security (GIS) will have primary responsibility for Crane's Operational Technology security solutions that protect Crane's manufacturing environments. You will implement OT and IoT security solutions throughout the enterprise and ensure that OT/IoT security solutions identify threats, uncover vulnerabilities, and measure risks of operational equipment. Coordinating with both IT and OT teams at all manufacturing sites, you will define and develop security standards and technical solutions. As a subject matter expert in the hardening and defense of OT, you will work with business units to implement security standards, securely modify systems, and implement secure network architectures during implementations of OT related projects to ensure secure system deployments. You will work closely with other GIS functional areas, supporting security engineering, administration, operations, and incident response. You will integrate the OT/IoT security solutions with other GIS and business unit tools such as SIEM, SOAR, AD, and other tools to gain a unified view of security events and respond more effectively to security incidents both for OT and IT. Responsibilities and Duties: * Support and maintain OT/IoT security tool set and associated integrations with other systems * Collaborate with the manufacturing function across lines of business to develop and define security requirements * Design OT security controls for architectures, systems and networks ensuring that alerting to threats is efficient and effective. * Identify and implement supporting security technologies for the identification of threats and defense of OT systems and provide secure methods for remote access. * Work directly with plant leaders, process engineers, and support/system vendors to ensure OT security controls are implemented * Develop and implement standard work supporting the Global OT security function and supporting solutions * Develop and maintain security models, templates, standards and procedures that can be used to leverage security capabilities in projects and operations * Assist in the identification, response, investigation, and remediation of OT security events and incidents as needed * Ensure security best practices are identified and integrated into all approaches and methodologies. * Define requirements and design standards to protect Crane's OT solutions from security threats and for mitigating the impacts of these threats. * Define reference network architectures based on industry best practices and work with business units to implement for OT solutions * Consult on business unit OT projects and provide cybersecurity expertise Qualifications and Competencies: * 2yrs experience with securing Operational Technology and related systems environments * Strong understanding and prior experience with the application of securing OT and related systems * Current deep technical understanding of common OT systems such as PCS, SCADA, PLCs, RTUs, HMIs, CNC * Deep technical understanding of TCP/IP Networking and Firewalls * Deep technical understanding of system integration methods including API's and authentication methods * Knowledgeable in NIST CSF, NIST 800-82, Purdue Model, IEC 62443 standards * Solid foundation cybersecurity domains such as network security, EDR, anomaly detection * Understanding of common OT communications protocols such as MQTT, MODBUS, DNP3, S7, G-code * Comfortable with designing and overseeing the implementation of secure OT architectures * Prior experience in the direct remediation of vulnerabilities or compensating controls within OT environments * Commitment to security training and earning corresponding certifications * Highly motivated with passion for solving complex problems * Excellent verbal and written communication skills, comfortable with presenting to Operational Teams * Flexibility to work outside regularly scheduled/normal business hours as required * Ability and desire to travel both domestically and internationally * Required: Degree in a related field or at least 4 years relevant professional experience * Required: Mobility and ability to be on your feet for long periods in a manufacturing setting * Required: Technical professional security certification such as GICSP, GRID, OSCP, CEH or similar * US Person as defined under EAR PART 772 AND ITAR 120.15 This description has been designed to indicate the general nature and level of work being performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Crane Company. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, gender, sexual orientation, general identity, national origin, disability or veteran status.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ****************** Job Description SAP Security & GRC Additional Information All your information will be kept confidential according to EEO guidelines.

One of the fastest growing technology companies in the world - even during the depths of the economic downturn. A micro-vertical strategy, built on strong domain expertise, ensures that no matter how complex a company's business problem, we can offer a solution that is sustainable and innovation-driven. Job Description Managing and implementing McAfee Anti-Virus and other security systems Qualifications • Must have 7+ years' experience with McAfee anti-Virus Management and implementation • Good hands on exposure on McAfee end point DLP and HIPS • Experience in Symantec End point Encryption -PGP • Must have team management and customer interaction skills • Must have exposure in defining SLAs • Must have expertise in defining Standard Operating Procedures • Must have expertise in Remote Infrastructure management for network and information security • Basic Understanding of network and security concepts • Should have good understanding on Incident Management & Change Management and ticketing tools Primary Skill Set: Symantec/Mcafee antivirus, Symantec HIPS and Mcafee end point DLP, End Point Encryption • Should have good communication skills (verbal and written). • Should be comfortable working in 24*7 environments. • Should have team management skills Additional Information Andy Bundad Technical Recruiter -------------------------------------------------------------------- Hi-Tech Solutions, Inc. | Information Technology Consulting Two Mid America Plaza, Suite 630 | Oakbrook Terrace, IL 60181 Direct Phone: ************ *********************

What you'll do • Design and implement comprehensive data security architectures, with particular focus on database platforms (primarily SQL Server) • Develop and maintain enterprise-wide encryption strategies for securing structured and unstructured data both in transit and at rest, both and both on-premise and in the cloud • Enhance logging, monitoring and SecOps capabilities of enterprise databases and other data stores • Configure and optimize Identity and Access Management (IAM) solutions across data platforms and repositories to align to least privilege principles • Implement Data Loss Prevention (DLP) strategies and controls • Implement and maintain Information Rights Management (IRM) and Digital Rights Management (DRM) solutions • Design and implement data tokenization strategies where appropriate • Secure data processing pipelines and ensure appropriate controls for data workflows • Create and maintain data security documentation, including policies, procedures, and standards • Collaborate with development teams to ensure security best practices in data handling • Conduct vulnerability assessments of the firm's database architecture and associated data storage and processing systems • Assist in monitoring and managing security patching and upgrade processes for database platforms What's required • Bachelor's degree in computer science, cybersecurity, or related technical field • 6+ years of experience in data/database security engineering and governance • Deep expertise in database security, particularly SQL Server • Comprehensive understanding of data warehouse/data lake architectures and tools, particularly Databricks (required) • Subject matter expertise in Object Storage (eg: S3, Azure Blob, etc) and related security • Understanding of Active Directory Delegation (constrained vs. unconstrained) and associated best practices • Experience with 3rd-party SQL Server security governance and monitoring products (eg: Idera, Solarwinds) • Extensive knowledge of encryption technologies for both structured and unstructured data • Broad knowledge of secure data/file sharing solutions and ETL workflows • Experience designing and implementing data tokenization solutions • Experience with data classification and DLP technologies • Scripting/automation capabilities (eg: SQL, PowerShell, Python) • Commitment to the highest ethical standards Qualifications Ivy league colleges education preferred or huge plus. Additional Information All your information will be kept confidential according to EEO guidelines.