SAP Basis Architect
Security Architect Job 19 miles from Newtown
We are looking for a talented SAP Basis architect with background in deploying, managing, operating SAP S4 landscapes, automating deployment tasks and testing Azure/AWS/AWS infrastructure configurations.
Collaborate with the Enterprise and Solution architects on the architectural design and implementation of SAP S/4 HANA ERP solution environment including other SAP Product suites like SAP BW/4HANA, SAC, and SAP BTP services like Cloud Integration, automated CI/CD DevSecOps etc.
Provide guidance on architectural standards, data management, governance processes, and provides the vision to explore and effectively utilize emerging technologies.
Provide recommendations on implementation of an application and infrastructure architecture based on business requirements and enterprise-wide IT strategies.
Collaborate with project team to define technology migration strategies and approaches.
Product Management:
Define approach and direction of an integrated SAP S/4 solution baseline (5-year roadmap) including Architecture, COTS, Application, Infrastructure, etc. based on customer's requirements and SAP's product direction.
Lead and define the end user UI/UX strategy based on SAP FIORI and HTML5 technologies.
Champion DevSecOps and Test Automation.
Lead product market research, analysis of alternative (AoA), business case, demonstration, installation, development, implementation, deployment, and sustainment.
Responsibilities
Develop, test and document well performing, scaling and resilient deployment scenarios
Work with Azure/AWS development on testing SAP workloads on Azure/AWS
Work with Azure/AWS development and test storage configurations for high performant DBs and SAP workloads
Investigate and troubleshoot complex customer scenarios.
Work with select customers and be the interface between SAP customers who deploy on Azure/AWS and the Azure/AWS core development.
Support the Microsoft customer facing personnel to successfully promote SAP workload scenarios on Azure/AWS infrastructure.
Qualifications
Required Qualifications:
Bachelor's Degree in Computer Science or related technical field AND 4+ years technical engineering experience with SAP
OR equivalent experience.
8+ years of of experience in SAP Basis Architect with a mix of architecture and technical lead roles with infrastructure design and tests for large, high performing SAP systems and HA/DR technologies.
8+ years of experience Operating Systems (OS) Skills: technical knowledge on at least one of the following - Windows, Linux (SLES or RHEL), UNIX. Proficient with infrastructure design, implementation and tests for enterprise RDBMs and SAP workloads, performance analysis and debugging
8+ years experience Relational Database Management System (RDBMS) skills: with SAP HANA and at least 1-2 of the following: SQL Server, Oracle, Sybase, DB2, MaxDB . Proficient with performance query analysis, sizing, HA/DR and storage/disk design
4+ years experience with Hyper-Visor/Cloud/Networking technologies. Proficient with designing, deploying and troubleshooting solutions based on Azure/AWS (or AWS)
Other Requirements:
Preferred Qualifications:
Bachelor's Degree in Computer Science or related technical field AND 8+ years technical engineering experience with SAP
OR Master's Degree in Computer Science or related technical field AND 6+ years technical engineering experience with SAP
OR equivalent experience.
6+ years of experience, as SAP Basis Architect with a mix of architecture and technical roles, with emphasis on infrastructure design and testing for large, high performant SAP systems.
Reliable record of delivering and deploying reliable, highly available and scalable SAP architectures to customers.
2+ years of experience with scripting maintenance tasks and automating tests.
Architect
Security Architect Job 19 miles from Newtown
Job Title
Azure Cloud Architect
Relevant Experience
(in Yrs) 5 Yrs
Must Have Technical/Functional Skills
Must Have: Generative AI knowledge, Azure Open AI, Azure Machine learning, Python, Terraform
Optional: General Azure cloud knowledge
Roles & Responsibilities
• Solutions architect/developer to lead/review and deploy generative AI large language models (like Open AI, Mistral, NVIDIA) on azure machine learning platform.
• Work on enabling the model serving platform to support various GenAI model deployments. .
• Work on python/terraform code wherever required to automate the process
Generic Managerial Skills
• Good communication
• Stakeholder management
Education
Minimum Bachelor's Degree in Science and Engineering
Principal Security Architect - OASE
Security Architect Job 10 miles from Newtown
Oracle Analytics organization plays a critical role in delivering and supporting best-of-breed cloud solutions to Oracle customers. The Service Excellence team at Oracle Analytics Cloud (OAC) is on the verge of transforming the development paradigms at the 42 year old software giant. With the world moving towards the Cloud, Oracle is at the forefront with tremendous portfolio of Cloud offerings.
However, this transformation happens not just at the product level, but also the process of developing, deploying, and operating these products in the Cloud. Using a combination of cutting-edge technologies, continuous process improvements and innovative business transformation methodologies, a small group of us are blazing the trail on the Service Excellence philosophy.
We are currently looking for a highly motivated architect with security knowledge to work in the Oracle Analytics Security team. This person would be involved in architecture, design, prototype and development of the security aspects of Oracle Analytics services releases.
You should be a security-minded leader who can work with a development teams as they design new capabilities to ensure that security requirements are clear and the design implements the necessary controls to increase security posture for the service. As architect you will require a firm grasp on security technologies, trends in cloud security practices, and ability to communicate complex technical security requirements clearly to the development team with whom they work. You are experienced and understand how to design test specifications for the feature they support during architecture design so that security requirements can be tested with automated tooling to insure against regressions.
**Qualifications and experience:** BS (Computer Sc., Electronics or Electrical Eng)
A minimum of 10+ years of experience with at least 5+ years in Cloud technologies is required. Experience in architecture, design, deployment and handling of standard security practices and security aspects of industry standard external audit compliance is required.
+ Experience as a security leader for a cloud product or set of cloud services, Familiarity with PaaS and SaaS.
+ Experience architecting security for products or services operating in a cloud environment
+ Experience operating within and supporting a security assurance and assessment program
+ Concepts of multi-tenancy, cloud security and virtualization
+ Expertise in User, Group and Password Management, OAuth, Cloud SSO, Strong Authentication, Identity Provisioning, Identity Governance, Privileged Access and Identity services.
+ Expertise in encryption and key management technologies, deployment methodologies, and security standards compliance (STIG, FedRAMP, PCI-DSS) / certification process.
+ Expertise on operating systems and databases from a security perspective
+ Network security experience for LAN/WAN technologies, TCP/IP Protocols, IP Routing, 802.11 standards and protocols. Security VPN/Firewalls and software-defined networking experience is an advantage
+ Ability to design large, scalable systems for enterprise customers with focus on security
+ Competency in programming with Java, PERL or Python and static security analysis using tools like Fortify etc.
+ REST architecture, programming and security practices
+ Working knowledge of relational databases and administration - Oracle product knowledge preferred, Exadata knowledge is desirable
Career Level - IC4
**Responsibilities**
Work on design and architecture for features on Cloud Platforms, which includes but may not be limited to the following:
+ Work closely with senior developers and other architects as well as Product Management, IT and Operations teams for architecting, designing and developing Database Cloud products from perspective of security areas
+ Ensure that security requirements are met by the architecture chosen during the design phase of new projects and features
+ Work with internal security team including corporate security architecture leads and database security leads for service architecture, implementations and approvals
+ Help establish new and update existing security standards and programming practices for internal service development & service security operational processes
+ Work with development and operations for security issues review and resolution
+ Development contributions to projects to deliver secure, scalable, extensible and differentiated Platform-as-a-Service on the Cloud
+ Ability to lead architecture discussions and security assessments related to software services in a cloud environment
+ Coordinate meetings between IT stakeholders and drive adoption of improved security solutions
+ Identify gaps and weaknesses in proposed designs, identify compensating controls and approve remediation planning
+ Advocate and architect new security requirements and solutions for next generation cloud capabilities and services
+ Collaborate with other developers, engineers, architects, and compliance analysts to harden complex PaaS, offerings
+ Experience working with regulated environments covered by PCI, HIPAA, and FedRAMP
+ Working knowledge of PCI control and requirements
+ Working knowledge of HIPAA controls and requirements
+ Working knowledge of FedRAMP controls and requirements
Duties and tasks are varied and complex, requiring independent judgment. Fully competent in own area of expertise. May have project lead role and/or supervise lower level personnel. BS or MS degree or equivalent experience relevant to functional area. 10+ years of software engineering or related experience.
Disclaimer:
**Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.**
**Range and benefit information provided in this posting are specific to the stated locations only**
US: Hiring Range in USD from: $109,200 to $223,400 per annum. May be eligible for bonus and equity.
Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.
Oracle US offers a comprehensive benefits package which includes the following:
1. Medical, dental, and vision insurance, including expert medical opinion
2. Short term disability and long term disability
3. Life insurance and AD&D
4. Supplemental life insurance (Employee/Spouse/Child)
5. Health care and dependent care Flexible Spending Accounts
6. Pre-tax commuter and parking benefits
7. 401(k) Savings and Investment Plan with company match
8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
9. 11 paid holidays
10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
11. Paid parental leave
12. Adoption assistance
13. Employee Stock Purchase Plan
14. Financial planning and group legal
15. Voluntary benefits including auto, homeowner and pet insurance
The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.
**About Us**
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's problems. True innovation starts with diverse perspectives and various abilities and backgrounds.
When everyone's voice is heard, we're inspired to go beyond what's been done before. It's why we're committed to expanding our inclusive workforce that promotes diverse insights and perspectives.
We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling ***************, option one.
**Disclaimer:**
Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
*** Which includes being a United States Affirmative Action Employer**
Product Security Architect
Security Architect Job 23 miles from Newtown
RESPONSIBILITIES This position is responsible for designing and implementing software security controls in an implantable neuromodulation system, including: * mobile applications used by physicians and patients, * firmware for implantable pulse generators and communication wands,
* supplemental services, such as cloud-based keystores, continuous deployment pipelines, and mobile device management tools.
PRIMARY ACTIVITIES
* Lead the product security team for Neuromodulation R&D
* Conduct application security assessments, threat modeling, quantitative vulnerability analysis and architecture reviews.
* Work with software development, product management, quality, and regulatory personnel to ensure that LivaNova's product security policies and procedures are fully integrated within our products and services.
* Assist with security testing of products, including internal penetration testing and working with third-party security assessment and pen testing vendors.
* Analyze software, firmware, and hardware for security vulnerabilities and collaborate with developers and infrastructure teams to plan/implement security controls.
* Document compliance of security controls to regulatory guidelines and standards.
* Author externally facing security communications, such as design documents for regulatory bodies, cybersecurity bill of materials, manufacturer disclosure statements.
REQUIREMENTS AND QUALIFICATIONS
* 6+ years of experience in product security in a large organization
* Excellent knowledge of Information Security standards, frameworks, and standard methodologies for product security
* Solid understanding of Cybersecurity with software/application or product development
* Prior experience with threat modeling and hazard-analysis frameworks such as STAMP, STRIDE etc.
* Knowledge of software development lifecycle
* DevSecOps mindset and experience integrating security tools into CI/CD pipelines.
* Experience in making security design trade-offs (e.g.: complexity vs. speed vs. vulnerability).
* Proficiency in writing protocols, reports, and engineering documentation
* Experience working in a regulatory environment
NICE TO HAVE
* Experience in Medical device industry and HIPAA regulations
* BS or MS in Electrical Engineering, Computer Engineering, Computer Science, Biomedical Engineering, or a related field.
Position type: contract to hire
Duration 6 Months CTH
Rate:/Salary: DOE
Location: Anywhere in USA, remote is ok
No Sponsorship
Employee benefits once fulltime :
* Health benefits Medical, Dental, Vision
* Personal and Vacation Time
* Retirement & Savings Plan (401K)
* Employee Stock Purchase Plan
* Training & Education Assistance
* Bonus Referral Program
* Service Awards
* Employee Recognition Program
* Flexible Work Schedules
Senior Cloud Security Architect
Security Architect Job 19 miles from Newtown
Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.
Work you'll do
+ Set up and manage access to cloud resources using accounts, users, and groups. He/she should be knowledgeable about potential vulnerabilities of virtual machines and container deployment systems.
+ Will drive adherence to federal and state compliance requirements by overseeing continuous monitoring activities and incident response.
+ Provides oversight over the implementation of approved security architecture/policies/procedures for a portfolio clients and engagements
+ Initiate and conduct project security reviews to identify cloud infrastructure security risks
+ Reviews and oversee the implementation of approved recommendations on cloud security design and implementation
+ Support clients with data protection, IoT, and overarching cloud capabilities.
+ Implement core and cloud infrastructure security to manage risks and exposure.
+ Perform cyber reconnaissance to illuminate a potential attack surface area.
+ Provide threat and vulnerability management to federal clients and teams.
+ Analyze tactical network architectures and topologies to assess security risks.
+ Responsible for architecting, deploying, configuring, and maintaining security baselines within the Azure/ Google Cloud and/or AWS cloud environment.
+ Integrate cloud-native and/or third-party security services into new and existing cloud architectures.
The team
Deloitte's Government and Public Services (GPS) practice - our people, ideas, technology and outcomes-is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of more than 15,000 professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise
At Deloitte, we believe cyber is about starting things-not stopping them-and enabling the freedom to create a more secure future. Cyber Infrastructure is focused on rethinking how security is integrated across modernized infrastructure as cyber threats become more complex. If you're seeking a career implementing, architecting, and-in select cases-handling next generation controls to manage security risks and exposure, then the Cyber Infrastructure team at Deloitte is for you.
Qualifications:
Required:
+ Bachelor's degree required
+ Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
+ Must be able to obtain and maintain the required clearance for this role.
+ Ability to travel 10%, on average, based on the work you do and the clients and industries/sectors you serve
+ Expected to co-locate in your designated office/USDC location up to 30% of the time.
+ Must live in a commutable distance to or be willing to relocate to one of the following Delivery locations: Atlanta, GA; Charlotte, NC; Dallas, TX; Gilbert, AZ; Houston, TX; Lake Mary, FL; Mechanicsburg, PA; Philadelphia, PA
+ The ideal candidate must have a minimum of 3 years of experience in:
+ Developing and updating cloud templates, standards, and best practices to be used by multiple cloud projects
+ Strong foundation across Microsoft Azure, Google Cloud and/or Amazon AWS technology stack
+ Standardizing Azure/ Google Cloud and/or AWS Security best practices, processes, and procedures
+ Providing strategic and technical leadership for client teams establishing cloud infrastructure design, migrating data centers to cloud, developing infrastructure as code, or deploying cloud solutions
+ Designing, and integrating marketplace leading vulnerability management, threat management, monitoring, and data protection processes and platform tools
+ Building and operating automated security operations
+ Experience implementing Azure, Google Cloud or AWS
+ Designing and advising against security requirements to support cloud migration efforts
+ Strong knowledge of industry trends in security technology
+ Combining cloud-native and/or third-party security services to build comprehensive security architectures
Preferred:
+ Prior professional services or federal consulting experience
+ A history of delivering secure architectures in a federal/state environment
+ Cloud architect certifications in Azure, Google Cloud or AWS
+ Excellent communication skills and the ability to partner and collaborate with both engineers and business users on architecture vision and security model
+ A comprehensive understanding of writing KQLs, and the use of PowerShell to write queries in all cloud platform
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $92981 to $ 163125 .
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
Information for applicants with a need for accommodation: ************************************************************************************************************
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Director, Digital Products, Information Security
Security Architect Job 16 miles from Newtown
At Genmab, we're committed to building extra[not]ordinary futures together, by developing antibody products and pioneering, knock-your-socks-off therapies that change the lives of patients and the future of cancer treatment and serious diseases. From our people who are caring, candid, and impact-driven to our business, which is innovative and rooted in science, we believe that being proudly unique, determined to be our best, and authentic is essential to fulfilling our purpose.
Job Description - Director, Digital Assets, Information SecurityPosition Summary: The Director Information Security is a pivotal security leadership role at Genmab, dedicated to translating and executing the information security strategy and objectives in close collaboration with business and functional teams. As security leader you are part of a global information security team with main focus on stakeholders located in the Genmab offices in the US and Japan. This role is crucial in securing Genmab's vision for a digital future, particularly as we march towards our 2030 vision. Our objective is to secure the organizational transformation of Genmab into a digitally sophisticated company, using powerful digital technologies and AI to revolutionize our approach to early science, speed up the development of our medicines, and enhance engagement with our customers - the patients and healthcare providers.The focus of this role will include stakeholders in the business domains Field Operations, Medical & Regulatory Affairs and US and Japan Market and Commercial Teams (and others) and requires having a detailed and thorough understanding of the underlying operational and commercial business processes. The support of our office in Japan requires a very good understanding of the different cultural aspects and special operating model for this location.Another focus of the role is the active support of product-oriented development (POD) teams in the security of processes related to (web) application development, Infrastructure as Code, and other PODs that have a code development scope. This means that the security leader is expected to have profound experience in embedding security in DevOps processes (DevSecOps) and application security testing (SAST, DAST) and functions as service owner for such security application services.As Genmab IT&Digital (IT&D) department is moving towards a value-driven and product-oriented department, the security leader will work closely with several POD teams and digital leaders within IT&D and business teams.This role is not just a job but an opportunity to be at the forefront of digital innovation in a dynamic, fast-paced industry, driving Genmab towards a digitally advanced future.This person will be based out of Princeton, NJ and will be onsite 60% of the time Reporting StructureThe Director Information Security will report directly to the VP and Global Head of Information Security and IT Risk & Compliance, playing a strategic role in the Information Security Leadership Team.Primary ResponsibilitiesThe key responsibilities for this role will be, but not limited to:Security Business Partner USBusiness Security Partner: Acts as security business partner for assigned business domains for new initiatives (POC), developments (MVPs), questions, and develops a clear understanding of business needs, acting as a trusted advisor, and ensuring cost-effective delivery of information security services to meet those needs.Cross-Functional Collaboration: Develops and maintains strong working relationships and stakeholder network with business and IT&D leaders, with a main focus in the United States.IT&D Partner: Acts as security partner for the IT&D digital leaders and POD Managers and ensures that security requirements and definition and implementation of security controls are an integral part of the product roadmaps and planning and embed code validation services in POD processes.Security Awareness: Actively promotes information security and supports security awareness activities on Genmab US locations.Cyber Resilience: Acts as member of the Security Cyber Response Team as first point of contact in case of cyber crisis situations.Security Business Partner JapanBusiness Security Partner: Acts as security business partner for assigned business domains for new initiatives (POC), developments (MVPs), questions, and develops a clear understanding of business needs, acting as a trusted advisor, and ensuring cost-effective delivery of information security services to meet those needs.Cross-Functional Collaboration: Develops and maintains strong working relationships and stakeholder network with business and IT&D leaders, with a main focus in Japan.Application Security ManagementDevSecOps: Acts as security leader in overseeing and driving the security activities of DevSecOps processes in selected PODs in alignment with other Security Officers.Application Security Management: functions as service owner for security application services which ensures appropriate code security testing for several platforms.Primary ContactsReports to the VP, Global Head of Information Security and Risk & ComplianceSecurity Officers in other Genmab locations (US, DK, NL) Colleagues within Security, Risk, and Compliance team, in particular security architects and Genmab Security Operations TeamBusiness leaders (e.g., VP Medical Affairs, VP Regulatory Affairs, GM Genmab US, IT Lead in Japan) Peers within IT&D, such as Leadership Team of IT&D, POD Managers, Digital Product Managers and OwnersJob RequirementsEducationMinimum of a Bachelor's degree in computer science, information systems, engineering or related technical field or equivalent work experience. Master's level degree preferred.Experience
At minimum eight years of demonstrable work experience in security officer or manager function with strategic / tactical responsibilities
Five or more years of management responsibilities, including strategy, budgeting and staffing.
Demonstrated experience in working in agile and product-oriented development teams
Solid experience with Compliance (regulatory and industry-specific) and Security frameworks
Demonstrated experience in working in multinational organizations and virtual teams.
Demonstrated experience of influencing key stakeholders across the organization and within complex contexts
Demonstrated experience in setting up a (security) improvement roadmap and driving the implementation of corresponding actions and processes.
Knowledge/Skills
Excellent knowledge of security and risk management frameworks and standards (e.g. NIST, ISO).
Excellent knowledge of security standards (e.g. CIS, NIST) with the ability to apply in a concise and pragmatic manner.
Deep understanding of Agile and Dev(Sec) Ops development processes and how security controls and processes can be embedded in a flexible but consistent manner
Deep understanding of current and emerging technologies and practices, and how other enterprises are employing them, specifically as it relates to security infrastructure and application management.
Excellent analytical, strategic conceptual thinking, strategic planning, and execution skills
Effective influencing and negotiation skills in an environment where resources required for success may not be in direct control of this role and who work in different cultural settings
Excellent verbal and written communication skills, including the ability to explain technical concepts, technologies, and IT risks, to business leaders, and business concepts to the security team.
Strong sense of self, ethics and effort, as well as the willingness to go the extra mile to achieve important goals.
Exceptional soft and interpersonal skills, including teamwork, facilitation, and negotiation
Working Conditions
Travel required: Company-specific
Domestic: up to 2x / year
International: up to 2x / year
Telecommuting option: up to 3 days / week
For US based candidates, the proposed salary band for this position is as follows:
$165,000.00---$275,000.00
The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience, and location. Also, certain positions are eligible for additional forms of compensation, such as bonuses.
About You
You are passionate about our purpose and genuinely care about our mission to transform the lives of patients through innovative cancer treatment
You bring rigor and excellence to all that you do. You are a fierce believer in our rooted-in-science approach to problem-solving
You are a generous collaborator who can work in teams with diverse backgrounds
You are determined to do and be your best and take pride in enabling the best work of others on the team
You are not afraid to grapple with the unknown and be innovative
You have experience working in a fast-growing, dynamic company (or a strong desire to)
You work hard and are not afraid to have a little fun while you do so
Locations
Genmab leverages the effectiveness of an agile working environment, when possible, for the betterment of employee work-life balance. Our offices are designed as open, community-based spaces that work to connect employees while being immersed in our state-of-the-art laboratories. Whether you're in one of our collaboratively designed office spaces or working remotely, we thrive on connecting with each other to innovate.
About Genmab
Genmab is an international biotechnology company with a core purpose guiding its unstoppable team to strive towards improving the lives of patients through innovative and differentiated antibody therapeutics. For more than 20 years, its passionate, innovative and collaborative team has invented next-generation antibody technology platforms and leveraged translational research and data sciences, which has resulted in a proprietary pipeline including bispecific T-cell engagers, next-generation immune checkpoint modulators, effector function enhanced antibodies and antibody-drug conjugates. To help develop and deliver novel antibody therapies to patients, Genmab has formed 20+ strategic partnerships with biotechnology and pharmaceutical companies. By 2030, Genmab's vision is to transform the lives of people with cancer and other serious diseases with Knock-Your-Socks-Off (KYSO™) antibody medicines.
Established in 1999, Genmab is headquartered in Copenhagen, Denmark with locations in Utrecht, the Netherlands, Princeton, New Jersey, U.S. and Tokyo, Japan.
Our commitment to diversity, equity, and inclusion
We are committed to fostering workplace diversity at all levels of the company and we believe it is essential for our continued success. No applicant shall be discriminated against or treated unfairly because of their race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, disability, or genetic information. Learn more about our commitments on our website.
Genmab is committed to protecting your personal data and privacy. Please see our privacy policy for handling your data in connection with your application on our website Job Applicant Privacy Notice (genmab.com).
Please note that if you are applying for a position in the Netherlands, Genmab's policy for all permanently budgeted hires in NL is initially to offer a fixed-term employment contract for a year, if the employee performs well and if the business conditions do not change, renewal for an indefinite term may be considered after the fixed-term employment contract.
Senior Manager, Information Security Office Consultant
Security Architect Job 19 miles from Newtown
Company DescriptionJobs for Humanity is partnering with Capital One to build an inclusive and just employment ecosystem. Therefore, we prioritize individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Deaf or Hard of Hearing, Black, Hispanic, Asian, Military Veterans, the Elderly, the LGBTQ, and Justice Impacted individuals. This position is open to candidates who reside in and have the legal right to work in the country where the job is located.
Company Name: Capital One
Job Description201 Third Street (61049), United States of America, San Francisco, CaliforniaSenior Manager, Information Security Office Consultant
At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates.
What You'll Do:
Act as a central Information Security point of contact for the Enterprise Platform team
Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management
Serve as an expert in Capital One's Information Security capabilities, solutions, policies, procedures and standards
Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes
Escalate and manage cyber security risk
Provide ad hoc support on special Information Security hot topics for the business
Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment
Work with line of business leadership to anticipate their objectives and needs to better serve the line of business
Product security consulting in Authentication/Access Management /Identity application and experienced in Authentication and industry-standard protocol for authorization/authorization
Basic Qualifications:
High School Diploma, GED or equivalent certification
At least 8 years of experience working in cybersecurity or information technology
At least 7 years of experience providing guidance and oversight of Security concepts
At least 7 years of experience performing security risk assessments and security architecture reviews
At least 7 years of experience with architecture, software design, networking, and cloud infrastructure
At least 5 years of experience with cloud security engineering
Preferred Qualifications:
Bachelor's Degree
3+ years of experience in securing a public cloud environment (e.g. AWS, GCP, Azure)
4+ years of experience in IAM or related areas
Experience building software utilizing public cloud (e.g. AWS, GCP, Azure)
Familiarity with Cloud patch management practices such as system rehydration and image management
Experience utilizing Agile methodologies
Experience with Software Security Architecture
Experience with Application Security
Experience with Threat Modeling
Experience with Penetration Testing or Vulnerability Management
Experience with integrating SaaS products into an Enterprise Environment
Experience with securing Container services
Splunk-Fu / Enterprise Monitoring experience
Financial services industry experience
Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP)
Experience in Offensive and Defensive Security techniques
Experience in a regulated environment
Strong conceptual thinking, influence and communication skills
At this time, Capital One will not sponsor a new applicant for employment authorization for this position.
The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.
New York City (Hybrid On-Site): $230,100 - $262,700 for Sr Manager, Cyber TechnicalSan Francisco, California (Hybrid On-Site): $243,800 - $278,200 for Sr Manager, Cyber Technical
Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter.
Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at ************** or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
For technical support or questions about Capital One's recruiting process, please send an email to [email protected]
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).
Information Security Director
Security Architect Job 25 miles from Newtown
Essential Utilities, Inc. delivers safe, clean, reliable services that improve quality of life for individuals, families, and entire communities.
Operating as the Aqua (water and wastewater services) and the Peoples and Delta (natural gas) brands, Essential serves approximately 5.5 million people across 10 states. We are committed to sustainable growth, operational excellence, a superior customer experience, and premier employer status - including a competitive and comprehensive benefits package as well as a commitment to career growth opportunities.
We are advocates for the communities we serve and are dedicated stewards of natural lands, protecting more than 7,600 acres of forests and other habitats throughout our footprint.
Our company is one of the most significant publicly traded water, wastewater service and natural gas providers in the U.S.
Essential Utilities is now looking to appoint an Information Security (InfoSec) Director who will play a critical role in leading and spearheading Information Security, Cybersecurity, Technology Risk Management and Compliance across Information Technology (IT) and Operational Technology (OT). As InfoSec Director you will collaborate closely with OT, IT, and business stakeholders at all levels across our Water, Wastewater, and Natural Gas sectors, with this role tasked with ensuring the development, implementation and operation of programs, capabilities, governance, and policies that enable the organization to innovate and operate efficiently while effectively managing cyber risks and ensuring compliance with regulatory requirements.
Ready to take your career to the next level? Let's Talk!
Key accountabilities include:
Functioning as the strategic leader for Information Security, Cybersecurity, Compliance and Privacy, acting as a subject matter expert responsible for strategy, standards, policies, and control frameworks.
Direct and provide a strategic risk management vision to effectively secure the business while supporting innovation and execution.
Experience developing multi-year strategic roadmaps addressing the threat and compliance landscapes for both IT and OT/ICS/SCADA.
Ensuring alignment with regulatory compliance obligations and emerging cybersecurity standards.
Foster an enterprise-wide culture of security awareness for both IT and OT.
Oversees and manages the teams and functions for Security Operations & Engineering, Governance Risk and Compliance (GRC), Identity & Access Management, and SAP Security.
Ensure operation and continuous improvement of capabilities for vulnerability management, threat management, and incident response.
Engage with regulators and industry groups on topics related to cybersecurity in critical infrastructure.
The ideal candidate will possess strong technical expertise in environments with large, complex, and distributed technology environments with experience in enterprise IT and OT, with regulated utilities experience preferred. Ability to communicate with both technical teams and executive leadership appropriately, with effective stakeholder management at all levels.
Required Experience, Education, Licenses, and Certifications:
Minimum of 10 years leadership role in technology with at least five having direct responsibility for Information Security programs and strategy management.
B.S. or equivalent degree in Computer Science, Engineering, Information Sciences & Technology, Information Assurance, or related field.
Certifications: CISSP and CISM strongly preferred with other advanced certifications (e.g. GCIH, CRISC, GRID, GICSP, CISA, ISSMP/ISSEP/ISSAP, etc.) considered a plus.
Expert in cyber risk management, knowing how to effectively use both qualitative and quantitative approaches, and ability to define effective risk treatment strategies.
Experience effectively leveraging security frameworks, guidance and best practices including NIST CSF, CIS Critical Security Controls, CIS Benchmarks.
Experience with critical industrial operations including SCADA/ICS, with utilities industry experience preferred.
Expert level knowledge of security technologies, functions and services including Threat Intelligence, Security Operations Centers, SIEM, Firewall Engineering, Network Security, Authentication, EDR/Anti-Malware, Encryption, PKI, Forensics, Intrusion Detection and Prevention.
Essential Utilities, Inc., is an Equal Opportunity/Affirmative Action employer. Equal employment opportunity is provided to all employees and applicants for employment without regard to the following legally protected characteristics: race, color, religion, sex, national origin, age, pregnancy (including childbirth and related medical conditions, including medical conditions related to lactation), physical or mental disability, covered-veteran status, genetic information (including testing and characteristics), sexual orientation, gender identity or expression or any other characteristic protected by applicable local, state or federal law.
Essential Utilities is committed to providing reasonable accommodation to individuals with disabilities. If you have a condition that may prevent you from applying for a job online or need to request an accommodation during the interview process, please call (***************.
To maintain the integrity of the recruitment process and to avoid real or perceived conflicts of interest due to employment and/or assignment of family members and personal referrals, specific guidelines apply to the hiring and assignment of these individuals including, but not limited to:
Family members cannot result in a supervisor/subordinate reporting relationship
Family members cannot work in the same department.
Director - Information Security
Security Architect Job 24 miles from Newtown
The Director - Information Security is a "CISO" type role. This is the role of a strategic leader responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. This role will report directly to the CIO and will be responsible for directing staff in identifying, developing, implementing, and maintaining processes across the organization to reduce information and information technology (IT) risks, respond to incidents, establish appropriate standards and controls, manage security technologies, and direct the establishment and implementation of policies and procedures. Leads company's IT technological strategies in support of the company's mission and core objectives, providing leadership, vision, and management of IT Teams. Ensures the effective operation of all IT systems and functions. Accountable for the management, mentoring, and career development of the IT staff members.
PRIMARY RESPONSIBILITIES
Strategic Planning and Financial Oversight
Develops and maintains a culture of security that emphasizes the enterprise-wide responsibility for ALL COMPANY employees.
Develops and maintains a comprehensive cloud security strategy aligned with the organization's overall security objectives and the larger organizational cloud strategy.
Assures the alignment of IT and business strategy with particular focus on thought leadership and innovation. Must be able to design and execute multi-year road maps in order to transform COMPANY environment and collaborate with COMPANY, SBR and copany entities for technological efficiencies.
Develops strategic annual and long-term business plans and operational budgets for responsible IT areas.
Tracks implementations to ensure financial and service targets are met according to timelines.
Leadership and Operations Management
Creates a security strategy and roadmap to drive the organization towards a more secure future.
Directs and manages IT Department activities and operations. Leads multiple teams of various levels of employees and consultants through the prioritization and implementation of project-related activities.
Provides motivational career development and assessment of team members.
Fosters and encourages a diverse, inclusive team.
Service Delivery and Stakeholder Management
Drives the incident response plan for the organization enrolling leadership to follow a well-rehearsed plan when a cyber event occurs.
Oversees and negotiates service level agreements with internal and external stakeholders.
Tracks service delivery to ensure agreed targets and standards are met.
Directs relationships with vendors and ensures that vendors meet COMPANY business objectives/objectives, SLAs, and deliverables in a timely manner and within budget guidelines.
Interacts with major suppliers, overseeing RFPs, bids, contracts, and service agreements.
Project Planning and Resource Allocation
Directs the design and implementation of security solutions that are secure, scalable, reliable, and cost-effective.
Determines the value and ROI of every IT-related project. Prioritizes the scheduling and implementation of major IT projects to ensure the efficient utilization of resources.
Identifies IT resources required to meet defined business objectives.
Develops and defends opportunities for continuous creative improvement of processes and systems. Acts as a change agent for new technologies and processes in the COMPANY environment.
Oversees the creation and maintenance of policies and procedures that protect the organization's computing infrastructure and data.
Policy Development and Implementation
Collaborates with Legal and Government Relations/Compliance teams to ensure compliance with relevant laws, regulations, and policies.
Advocates for changes in other departments' practices to ensure compliance with security policies.
Directs the planning, production, and implementation of information and for COMPANY technology-related systems policies, procedures, and regulations.
QUALIFICATIONS
Demonstrated senior-level IT management experience, adept at shaping and executing complex IT strategies.
Executive presence in gaining consensus across all parties.
Proven track record managing budgets ranging from $4 million to $10 million, showcasing financial acumen in IT operations.
Proficiency in articulating intricate technical concepts to non-technical stakeholders in a clear concise manner.
Proficient in leading multiple IT disciplines, including software development, technical support, and systems architecture, showcasing adept project management skills.
In-depth understanding of computer systems, applications, operating systems, and robust knowledge of data security protocols. Ability to ensure all systems are secured at all times.
Strong negotiation skills and a collaborative approach in dealings with third-party IT business partners.
Critical Thinking and Decision-Making (proficiency: High): Advanced decision-making and problem-solving skills, essential for navigating complex IT landscapes and quickly addressing challenges.
Director of Information Security
Security Architect Job 19 miles from Newtown
A best-in-class city that attracts best-in-class talent, Philadelphia is an incredible place to build a career. From our thriving arts scene and rich history to our culture of passion and grit, there are countless reasons to love living and working here. With a workforce of over 30,000 people, and more than 1,000 different job categories, the City of Philadelphia offers boundless opportunities to make an impact.
As an employer, the City of Philadelphia values inclusion, integrity, innovation, empowerment, and hard work above all else. We offer a vibrant work environment, comprehensive health care and benefits, and the experience you need to grow and excel. If you're interested in working with a passionate team of people who care about the future of Philadelphia, start here.
What We Offer:
• Impact - The work you do here matters to millions.
• Growth - Philadelphia is growing, why not grow with it?
• Diversity & Inclusion - Find a career in a place where everyone belongs.
• Benefits - We care about your well-being.
The Office of Innovation & Technology (OIT) is the central IT agency for the City of Philadelphia headed by the Chief Information Officer (CIO). OIT oversees all major information and communications technology initiatives for the City of Philadelphia - increasing the effectiveness of the information technology infrastructure, where the services provided are advanced, optimized, and responsive to the needs of the City of Philadelphia's businesses, residents, and visitors. OIT responsibilities include: identifying the most effective approach for implementing new information technology directions throughout city government; improving the value of the city's technology assets and the return on the city's technology investments; ensuring data security continuity; planning for continuing operations in the event of disruption of information technology or communications services; and supporting accountable, efficient and effective government across every city department, board, commission and agency.
Job Description
The Philadelphia International Airport is managed by the Department of Aviation of the City of Philadelphia. The airport handles approximately 82,000 travelers per day. The airport Information Technology department is headed by the Chief Information Officer (CIO). As the Director of Information Security, you will play a pivotal role in safeguarding the confidentiality, integrity, and availability of Philadelphia International Airport's information assets. Reporting directly to the Chief Information Security Officer (CISO), you will be tasked with leading strategic initiatives to mitigate cyber threats, ensure compliance with industry regulations & standards. Must have a sound business acumen to help identify, evaluate and report information security risks in a manner that supports the risk posture of the organization.
Essential Functions and Responsibilities:
Strategic Leadership - Collaborate with the CISO and senior leadership to develop and maintain the organization's information security strategy, policies, and procedures. Provide strategic direction and guidance to the information security team, aligning security initiatives with business objectives and risk tolerance.
Risk Management - Lead the identification, assessment, and prioritization of information security risks, threats, and vulnerabilities across the organization's IT infrastructure and systems. Implement risk mitigation strategies and controls to address identified risks effectively. Develop capabilities to manage third party Cybersecurity risks.
Security Governance & Compliance - Lead the identification, assessment, and prioritization of information security risks, threats, and vulnerabilities across the organization's IT infrastructure and systems. Develop risk mitigation strategies and controls to address identified risks effectively.
Threat Management - Execute strategies for continuous monitoring of network traffic, system logs, and user activities to identify unauthorized or suspicious behavior. Review security monitoring tools, technologies to detect and alert potential security incidents and anomalies. Maintain incident response plans and procedures to effectively respond to and mitigate security incidents. Lead the investigation of security breaches and incidents, coordinating response efforts and implementing corrective actions as necessary.
Third Party Risk Management -Assess and manage risks associated with third-party vendors and service providers, ensuring contractual obligations and security requirements are met. Develop processes for evaluating monitoring vendor security posture and performance.
Security Operations & Technology -Oversee the implementation and maintenance of security technologies and tools, ensuring they effectively identify, protect, detect, respond, and recover to security threats & vulnerabilities.
Change Management -Lead change management committee for reviewing, approving, and implementing changes and ensuring security controls, configurations are updated and maintained. Foster open communication and collaboration among stakeholders, creating forums for dialogue to facilitate decision-making and address concerns related to change initiatives.
Experience/Required skills:
Strong leadership and management skills are essential for effectively leading a team of security professionals.
Proficiency in risk management is necessary for identifying, assessing, and mitigating information security risks.
In-depth knowledge of security architecture and design is necessary for developing and implementing robust security controls.
Expertise in security operations is essential for monitoring, detecting, and responding to security threats and incidents.
A comprehensive understanding of compliance and regulatory requirements is crucial for ensuring that the organization's security practices align with relevant standards and regulations.
Excellent communication and presentation skills are needed for effectively conveying complex security concepts to non-technical stakeholders.
Strategic planning and execution skills are essential for developing and implementing a comprehensive information security strategy aligned with business objectives.
Proficiency in vendor management is necessary for evaluating and selecting security vendors and managing vendor relationships effectively.
Strong team building, and development skills are crucial for fostering a collaborative and high-performing security team.
Desired Experience and Abilities:
Proficiency in analyzing, evaluating security threats and vulnerabilities, as well as assessing the potential impact on the organization.
Extensive experience in conducting thorough risk assessments, vulnerability assessments, and penetration testing to identify and prioritize security risks.
Ability to architect and integrate security solutions into the organization's infrastructure, ensuring the confidentiality, integrity, and availability of information assets.
Commitment to staying updated on emerging security threats, trends, and technologies.
Ability to adapt to evolving security challenges and requirements, proactively adjusting security strategies and tactics to address new threats and vulnerabilities.
Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.
Coordinate information security and risk management projects with resources from the IT organization and business unit teams.
Familiarity with cybersecurity principles, tools, and best practices.
Qualifications
Bachelor's degree in Computer Science, Information Technology, Information Systems or a related field; Master's degree preferred.
Minimum of 10 years of progressive experience in information security, with 5 years of leadership or managerial experience.
Proven track record of developing and implementing information security strategies and initiatives in alignment with NIST Cybersecurity Framework.
Experience with conducting risk assessments, vulnerability assessments, and developing risk mitigation strategies.
Excellent leadership and communication skills, with the ability to collaborate effectively with cross-functional teams and influence stakeholders at all levels of the organization.
Strong analytical and problem-solving abilities, with a keen attention to detail and the ability to prioritize and manage multiple tasks simultaneously.
In-depth knowledge of cybersecurity principles, technologies, and best practices.
Strong understanding of regulatory requirements and compliance frameworks.
Excellent leadership, communication, and stakeholder management skills.
Relevant certifications such as CISSP, CISM, or CRISC are highly desirable.
Experience with security compliance frameworks (e.g., CIS, NIS CSF, NIST RMF, ISO 27001) is a plus.
Additional Information
Salary Range: $120,000 - $130,000
Starting salary to be determined based on experience and qualifications.
Important: To apply, candidates must provide a cover letter and a resume.
SPECIAL REQUIREMENTS:
Must be a Philadelphia resident. Successful candidate must be a city of Philadelphia resident within six months of hire. Candidate must pass a background check.
PHYSICAL AND MENTAL DEMANDS:
Position requires a high level of mental concentration and commitment.
Discover the Perks of Being a City of Philadelphia Employee
:
• We offer Comprehensive health coverage for employees and their eligible dependents
• Our wellness program offers eligibility into the discounted medical plan
• Employees receive paid vacation, sick leave, and holidays
• Generous retirement savings options are available
•
Pay off your student loans faster
- As a qualifying employer, City of Philadelphia employees are eligible to participate in the Public Service Loan Forgiveness program. Join the ranks of hundreds of employees who have already benefited from this program and achieved student loan forgiveness.
•
Enjoy a Free Commute on SEPTA
- Starting September 1, 2023, eligible City employees will no longer have to worry about paying for SEPTA public transportation. Whether you're a full-time, part-time, or provisional employee, you can seize the opportunity to sign up for the SEPTA Key Advantage Program and receive free Key cards for free rides on SEPTA buses, trains, trolleys, and regional rails.
•
Unlock Tuition Discounts and Scholarships
- The City of Philadelphia has forged partnerships with over a dozen esteemed colleges and universities in the area, ensuring that our employees have access to a wide range of tuition discounts and scholarships. Experience savings of 10% to 40% on your educational expenses, extending not only to City employees but in some cases, spouse and dependents too!
Join the City of Philadelphia team today and seize these incredible benefits designed to enhance your financial well-being and personal growth!
*The successful candidate must be a city of Philadelphia resident within six months of hire
Effective May 22, 2023, vaccinations are no longer required for new employees that work in non-medical, non-emergency or patient facing positions with the City of Philadelphia. As a result, only employees in positions providing services that are patient-facing medical care (ex: Nurses, doctors, emergency medical personnel), must be fully vaccinated.
The City of Philadelphia is an Equal Opportunity employer and does not permit discrimination based on race, ethnicity, color, sex, sexual orientation, gender identity, religion, national origin, ancestry, age, disability, marital status, source of income, familial status, genetic information or domestic or sexual violence victim status. If you believe you were discriminated against, call the Philadelphia Commission on Human Relations at ************ or send an email to
[email protected]
.
Director, Information Security
Security Architect Job 19 miles from Newtown
Director, Information Security
Time Type:
Full time
and Qualifications:
The Director, Information Security assists the CISO in developing an information security vision and strategy that is aligned to organizational priorities.
They will manage the day to day operations and staff of the Information Security department. This area focuses on identity and access management, GRC (governance, risk and compliance) as well as network security/operations.
They will assist the CISO in the management and coordination of security standards, along with implementation and execution to ensure compliance to security standards and policies and provide expertise in managing audits, vulnerability remediation and incident response.
They will assist in managing the University information security awareness program and promote best practices in security and compliance management.Note to applicants: In the Resume/CV upload field, please submit a resume, a cover letter, and 3 references that can speak to your direct experience in information security and management Essential Duties & Responsibilities
Manages the day to day operations and staff of the Information Security department. This area focuses on identity and access management, GRC (governance, risk and compliance) as well as network security/operations.
Assists the IAM Analyst with the management of the security awareness program to ensure that there is an appropriate awareness of information security and safe computing practices across the University.
Provides support in managing vendor relationships pertaining to information security, including the formal review of university contracts which have technology components. Using a vendor questionnaire, assesses each vendor's overall capabilities including infrastructure, controls, security practices, regulatory compliance, ability to protect University information assets, etc. Issue a security opinion on the suitability of each vendor.
Provides support in investigating and assessing security incidents in collaboration with technology managers in IT, and in partnership with the Office of General Counsel. Responds to alleged policy violations and complaints received from external parties. Documents findings via a formal security incident report.
Serves as the backup point of contact for security threats, potential breaches, and privacy issues, including matters involving law enforcement. Works with internal and external auditors and agencies on security and compliance matters, including incident response.
Assists the IT Audit Analyst in developing a strategy for addressing audits, assessments and compliance efforts.
Assists the CISO in establishing annual and long term security and compliance goals. Creates and implements security strategies, metrics, and reporting processes.
Develops, maintains, promotes and enforces data management and information security policies, standards, guidelines, and procedures, including those for end users, system and application administrators, service providers, and legal/regulatory compliance.
Assists in developing communication and education initiatives around the awareness of information security risks as well as mitigation strategies and protections that are in place at the university.
Understands and interacts with IT advisory councils, administrative and academic units through committees, to ensure the development of and consistent application of policies and standards across technology projects, systems and services, including privacy, risk management, compliance and business continuity management.
Works collaboratively with others to conduct risk assessments and business impact analysis to identify vulnerabilities and risk exposure.
Where risks have been identified, provides recommendations on managing that risk, including acceptance, avoidance, transference, and mitigation techniques to minimize potential impact on the university.
Keeps current with emerging governmental regulatory initiatives and security alerts and issues which could have an impact on the university environment.
Provides guidance, planning, and monitoring for compliance with various industry requirements (e.g. FERPA, , HIPAA, PCI), which impact the way in which various systems are implemented. Prepares and submits required reports to external agencies.
Direct supervisor for: Identity Access Management Analyst; IT Audit Analyst; Graduate Assistant as funding permits; and future incumbents as identified by the University
Minimum Qualifications
Bachelor's degree, preferably in computer science, OR an equivalent combination of education, training and experience.
Minimum of 6 years of progressive professional experience with information technology, including 3 years minimum in a formal information security position (i.e Identity and Access management, Risk Management, Privacy, etc.) with 3 years minimum of management experience.
Strong written, oral communication, and presentation skills.
Ability to communicate technical/security information effectively to individuals with varying degrees of experience and skill.
Experience working with compliance and regulatory matters such as FERPA, PCI, HIPAA and HEOA. Experience and knowledge of NIST, GLBA and GDPR.
Superior troubleshooting and problem solving skills.
Experience in writing security policies and related documents.
Ability to work independently and with others in a collaborative environment.
Demonstrated ability to work and effectively manage multiple work streams while meeting internal deadlines.
Preferred
Microsoft experience - Azure, Security, IAM, CASB, SSO, MFA.
Certified Information Systems Security Professional (CISSP) OR Certified Information Security Manager (CISM) OR Certified Information Systems Auditor (CISA).
Any Microsoft “SC” specific certifications.
Experience with contract and vendor vetting, negotiations and document reviews.
Experience working with General/External Counsel and Law enforcement agencies.
Physical Requirements
Will require long periods of work at a computer
This position may be eligible for a flexible work arrangement per the University's guidelines and meeting performance expectations
Unusual Work Hours
Will require occasional evening and weekend hours. Must be available to respond to emergencies on a 7x24 basis and participate in the IT On Call process
Saint Joseph's University is a private, Catholic, Jesuit institution and we expect members of our community to be knowledgeable about - and to make a positive contribution to - our mission. Saint Joseph's University is an equal opportunity employer that seeks to recruit, develop and retain a talented and diverse workforce. The University is committed to the diversity of its faculty and staff so that our students, our disciplines and our community as a whole can benefit from the multiple perspectives it offers. The University seeks qualified candidates who share our commitment to equity, diversity and inclusion. EOE
Saint Joseph's University prohibits discrimination on the basis of sex in its programs and activities, including admission and employment, in accordance with Title IX of the Education Amendments of 1972. The Title IX Coordinator is responsible for overseeing compliance with Title IX and other civil rights laws and regulations. To contact the Title IX Coordinator, e-mail ***************, visit Campion Student Center suite 243, or call ************. To learn more about the University's Title IX policies, the process for filing a report or formal complaint of sex discrimination, sexual harassment, or other form of sexual misconduct, and the University's response to reports and/or formal complaints, please visit ******************** Inquiries may also be directed to the Federal agency responsible for enforcing Title IX, the U.S. Department of Education Office for Civil Rights.
Product Security Engineer
Security Architect Job 9 miles from Newtown
Align is looking for a Product Security Engineer in Technology Governance and Compliance for our Raleigh location. The Product Security Engineer should have exceptional skills with privacy and security by design, formal standards documentation, information security or application security, product development life cycle for medical devices, and experience with risk management and project management. This role will report directly to the Senior Manager, Product Security and will collaborate with the Information Security, Technology Governance, Risk, and Compliance, Regulatory Affairs and Quality Assurance, and Product Research and Development teams to ensure every medical device both hardware and software launched is as secure as it can be and increasing the assurance levels of security in the infrastructure underlying all our products. This team will also focus on increasing the capabilities of each product team to develop more secure products by design and by default, from patterns, tools and frameworks to increasing the skill level of development teams. In this role, you will analyze data, surface trends, and ensure compliance of product security regulatory requirements for software in a medical device or software as a medical device.
* Coordinate with cross-functional teams for medical device security requirements throughout the total product lifecycle such as risk assessment, security testing (SAST, DAST, SCA, penetration testing), and publication of product security collaterals.
* Perform and participate in medical device security risk assessments to include threat modeling, security design controls, mitigations, and publication of assessment reports.
* Support Regulatory Affairs and Quality Assurance teams with regulatory submissions to include US FDA, EU MDR, China NMPA and other international regulatory bodies.
* Active engagement with development teams to include review of architecture flows, data flows, and system or software design requirements for compliance with product security regulatory requirements for medical devices.
* Assess conformance with monitoring and reporting of product security vulnerability management through vulnerability scans, customer complaints, and third parties.
Information System Security Officer III
Security Architect Job 19 miles from Newtown
Data Intelligence, LLC (DI) is seeking a qualified and experienced Information Systems Security Officer III to support the Naval Surface Warfare Center (NSWC) in Philadelphia, PA. The successful candidate will be responsible for coordinating security efforts to ensure the safety and integrity of classified and unclassified information systems and assist in maintaining a secure operating environment. This position requires a strong understanding of cybersecurity protocols, as well as the ability to coordinate and implement security measures to meet the specific needs of the organization.
Key Responsibilities:
Collaborate with various levels of the organization to implement required security changes and ensure compliance with established security policies and standards.
Conduct comprehensive cybersecurity vulnerability and threat assessments to identify and mitigate risks to information systems.
Lead cyber-incident-response efforts, including isolating affected systems, conducting initial investigations, collecting relevant data, and providing status updates and reports to leadership.
Provide guidance on best practices and recommend improvements to the organization's security posture.
Perform risk assessments and develop mitigation strategies to protect sensitive data from internal and external threats.
Support continuous monitoring of information systems and provide regular status reports on security compliance.
Maintain up-to-date knowledge of emerging cybersecurity threats and industry best practices.
Required Skills/Experience:
Bachelor's degree in Computer Science, Information Technology, Communications Systems Management, or an equivalent science, technology, engineering, and mathematics (STEM) field.
A minimum of 6 years of relevant experience in cybersecurity or information systems security.
Current IAM Level II certification (or higher) in accordance with DoD 8570.01-M.
At least a Secret-level security clearance is required, with the ability to obtain higher-level clearance if necessary.
Proficiency in cybersecurity frameworks, risk management processes, and security controls.
Strong analytical and problem-solving skills with attention to detail.
Excellent communication and interpersonal skills, with the ability to work effectively with a diverse team.
Preferred Qualifications:
Experience with DoD security requirements and systems.
Familiarity with NIST, RMF, and other relevant cybersecurity standards.
Ability to work in a potentially remote environment with occasional on-site requirements.
Why Work with Data Intelligence, LLC? At Data Intelligence, LLC, we are committed to delivering cutting-edge technology solutions and security expertise to our government clients. Our team members play an integral role in the development and protection of critical national security systems. Join our team and contribute to the defense of vital information assets while advancing your career in a collaborative and rewarding environment.
About Us:
Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays.
Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays.
Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Information Security Engineer
Security Architect Job 19 miles from Newtown
We are seeking a highly skilled and experienced Security Engineering Specialist to join our dynamic and growing team. As a Security Engineering Specialist, you will play a crucial role in ensuring the confidentiality, integrity, and availability of our organization's critical information assets. Your primary responsibility will be to design, implement, and maintain robust security solutions that protect our systems and data from cyber threats.
**Years of Experience:**
We are looking for a minimum of 4 to 5 Years' experience in the relevance tools and domain.
**Responsibilities:**
· Design and implement security solutions: Collaborate with cross-functional teams to design, deploy, and maintain security solutions, including TPAM, SIEM tools, IAM, and EDR solutions. Ensure these solutions align with industry best practices and compliance requirements.
· Project management: Lead and participate in security-related projects, ensuring that project goals, timelines, and deliverables are achieved. Effectively manage project resources and stakeholders to ensure successful project outcomes.
· Security operations: Monitor, analyze, and respond to security incidents and events using **SIEM** tools and other security monitoring platforms. Develop and enforce security policies, procedures, and guidelines to enhance the overall security posture of the organization.
· Identity and Access Management (IAM): Design, implement, and manage IAM solutions to ensure appropriate access controls and identity lifecycle management. Evaluate and enhance IAM processes to streamline access provisioning, deprovisioning, and authentication mechanisms.
· Endpoint Detection and Response (EDR): Implement and manage EDR solutions to detect, investigate, and respond to security incidents on endpoints. Continuously improve EDR capabilities and fine-tune detection rules to stay ahead of emerging threats.
· Risk assessment and vulnerability management: Conduct regular risk assessments, vulnerability scans, and penetration tests to identify security weaknesses and recommend remediation strategies. Collaborate with IT and development teams to ensure timely patching and remediation of vulnerabilities.
· Documentation and compliance: Create and maintain comprehensive security documentation, including policies, procedures, guidelines, and technical diagrams. Ensure compliance with industry standards, regulations, and legal requirements.
**Requirements:**
· Bachelor's degree in Computer Science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CISM, GIAC) are highly desirable.
· Proven experience in implementing and managing TPAM, **SIEM** tools, IAM, and EDR solutions in enterprise environments.
+ Experience implementing and maintaining WAF technologies
· Strong project management skills, including the ability to lead and coordinate security-related projects from initiation to completion.
· In-depth knowledge of security principles, best practices, and frameworks (e.g., NIST Cybersecurity Framework, ISO 27001).
· Familiarity with regulatory requirements such as PCI-DSS, SOC and industry-specific compliance standards.
· Excellent understanding of network protocols, operating systems, and security technologies.
· Strong analytical and problem-solving skills, with the ability to analyze complex security issues and provide effective solutions.
· Solid experience in creating and maintaining security policies, procedures, and guidelines.
· Excellent communication skills, both verbal and written, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
· Strong teamwork and collaboration skills, with the ability to work effectively in cross-functional teams.
Join our team of passionate security professionals and contribute to safeguarding our organization's critical assets. Apply today and take the next step in your security engineering career!
_Be aware of employment fraud. All email communications from Ascensus or its hiring managers originate ****************** ****************** email addresses. We will never ask you for payment or require you to purchase any equipment. If you are suspicious or unsure about validity of a job posting, we strongly encourage you to apply directly through our website._
Ascensus provides equal employment opportunities to all associates and applicants for employment without regard to ancestry, race, color, religion, sex, (including pregnancy, childbirth, breastfeeding and/or related medical conditions), gender, gender identity, gender expression, national origin, age, physical or mental disability, medical condition (including cancer and genetic characteristics), marital status, military or veteran status, genetic information, sexual orientation, criminal conviction record or any other protected category in accordance with applicable federal, state, or local laws ("Protected Status").
Endpoint Security Engineer II (US)
Security Architect Job 21 miles from Newtown
Mount Laurel, New Jersey, United States of America **Hours:** 40 **Pay Details:** $87,000 - $151,000 USD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs.
As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role.
**Line of Business:**
Technology Solutions
**Job Description:**
The Protect Platform consists of teams across North America, whose mandate is to protect TD customers, colleagues and shareholders from cyber and financial crimes and fraud. Collectively our businesses lead TD's enterprise-wide fraud, cyber threat, and technology risk strategies, advance analytics capabilities, and drive operational efficiency to improve governance, oversight and collaboration between fraud management and other functions within the Bank.
Endpoint Protect is part of the broader Security Engineering team of the Protect Platform with the mandate to plan, evaluate, recommend, design, operationalize, and support security solutions. These solutions focus on protecting endpoints, which consist of servers and workstations, in compliance with enterprise and industry standards.
-Applying your experience and expertise to ensure all TD areas that interact with Endpoint Threat Protection technologies (eg: EDR, AV, FIM, etc) are implemented correctly and have the necessary capabilities, processes and documentation to operate effectively.
-Contribute to project activities such as: understanding business needs to properly scope and estimate project efforts, identifying risks and recommending mitigation measures, communicating activity status, as well as escalating and communicating possible issues and working with other teams within and outside of security engineering to ensure project goals are being met and any projects you lead continue to make progress.
-Build relationships and support internal teams (eg: Cyber Security Operations, Red / Blue / Hunting Teams, Threat Intelligence) leveraging other Endpoint Threat Protection tools such as the threat intel, breach attack simulation and automation platforms for their team's deliverables
-Partner with Operations to automatically integrate with appropriate tools and processes efficiency improvements via automation (scripting or using software development techniques)
-Leading and participating in changes / updates to infrastructure that may occur outside business hours
-Monitor and control costs associated with your work, which may include contributions to negotiations of third-party contracts/agreements
-Collaborate with governance and control groups (e.g. regulatory and operational risk, compliance and audit) to provide your subject matter expertise and consult on risk and compliance issues related to Engineering technology and tools.
-Work with technology partners (e.g., Solution Designers and Architects) to research and analyze current state system capabilities and define technology solutions options and recommendations.
-Gain knowledge in own area, stay abreast of technology trends and developments, develop expertise in TD services, applications, infrastructure, analytical tools and techniques, business domains and their products and services.
**Depth & Scope:**
+ Expert knowledge of specific domain or range of engineering frameworks, technology, tools, processes and procedures, as well as organization issues
+ Expert knowledge of TD applications, systems, networks, innovation, design activities, best practices, business/organization, Bank standards, and may fulfill a governance role
+ Expert knowledge and experience in own discipline; integrates knowledge of business and functional priorities
+ Acts as a key contributor in a complex and critical environment
+ May provide leadership to teams or projects; shares expertise
+ Applies in-depth skills and broad knowledge of the business to address complex problems and non-standard situations
**Education & Experience:**
+ Bachelor's or Graduate degree
+ Strong academic background (e.g., computer science, engineering)
+ 7 + years relevant experience
**Preferred Qualifications:**
+ 7 years of experience with programming and development experience including multiple years programming in Python, Web development and API integrations (RESTful and SOAP web services, JSON/XML)
+ 7 years of experience with workflow automation platforms (eg: Power Automate, Cortex XSOAR, other similar), scripting (bash / PowerShell / other similar) and version / package control tools (HPSA, Ansible, etc)
+ 7 years of experience with solution, policy and architecture design along with experience implementing and supporting endpoint security tools, particularly EDR (Endpoint Detection and Response), FIM (File integrity monitoring), Security Automation / Orchestration platforms LIKE Crowdstrike, Microsoft Defender Platform tools, Symantec Datacentre Security, XSOAR
+ 7 years of experience with modern digital architecture (cloud, container, messaging and microservices)
+ 7 years of experience with operational proficiency, OS administration and troubleshooting (Windows and Linux, MacOS is a plus)
+ 7 years' experience in troubleshooting application/network issues and customer service in an IT environment involving communication with technical and non-technical teams
+ Familiarity with operating or developing in Azure, AWS or Google Cloud Compute Platform and technology and Infrastructure (such as): Azure / Azure AD / Active Directory / Networks
\#TDCybersecurity
**Who We Are:**
TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues.
TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you.
**Our Total Rewards Package**
Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more (***************************************
**Additional Information:**
We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home.
**Colleague Development**
If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals.
**Training & Onboarding**
We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role.
**Interview Process**
We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call.
**Accommodation**
If you are an applicant with a disability and need accommodations to complete the application process, email the TD Bank US Workplace Accommodations Program at *************** . Include your full name, best way to reach you, and the accommodation needed to assist you with the application process.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.
SAP Quality Management Architect
Security Architect Job In Newtown, PA
This position is for our large customer who is integrating the SAP product BTS in order to build out their environment for a Warehouse platform. The ideal candidate will be responsible for designing, implementing, and optimizing quality management processes within the SAP environment, ensuring alignment with business objectives and regulatory requirements.
SAP S/4HANA integrates warehouse management with quality management, allowing you to handle quality tasks according to warehouse structures and requirements. For instance, it supports and executes the posting of goods to blocked stock and subsequent posting activities within warehouse management.
This feature lets you inspect products from production or external suppliers before warehouse putaway for example. You can also record usage decisions for partial lots, such as when only some items in the inspection lot meet quality standards. This feature leverages the quality management and warehouse management components of SAP S/4HANA Cloud Public Edition.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ******************** .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: *************************************************** .
Skills and Requirements
- 10+ years of experience in a Quality Management for a warehouse platform
- 5+ years of experience implementing SAP S4 HANA QM for a warehouse project
- Experience working in the Federal space
- Experience leading architecture and design null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to ********************.
Info Security Engineer
Security Architect Job 19 miles from Newtown
Mitigates risk of the Health System's vulnerability to Cybersecurity attacks through the management of an E-mail Security platform. Assists in developing security awareness by providing educational programs, and ongoing communication. Participates in the implementation of the organization's strategic goals for information security. Participates in developing security standards/best practices for the organization. Contributes to the development of strategies to respond to/recover from a security breach. Manages applications necessary to protect sensitive information as needed or identified by the CISO. Assists computer users with security related questions and use of new security products/procedures. Reviews and responds to security alerts using appropriate security tools and systems. In the event of a breach, participates in incident response activities to minimize the impact. Reports findings to the CISO.
Education
Bachelors Degree : in Computer or Information Sciences (Preferred)
Experience
Experience in an Information Technology role supporting infrastructure or security applications (Required)
Experience with security assessment tools, technologies, and methods (Required)
General Experience with communicating network security issues to peers and management (Required)
License/Certifications
CCNP - Cisco Cert Net Professional (Preferred)
CYSA - CompTIA Cybersecurity Analyst (Preferred)
_ '317994
Senior Security Engineer 3 - Infrastructure and Automation
Security Architect Job 10 miles from Newtown
PagerDuty empowers teams of all kinds to do the critical work that moves business forward through the PagerDuty Operations Cloud. Visit our careers site (*********************************** to explore life at PagerDuty, discover opportunities, and sign-up for job alerts!
PagerDuty is seeking a **Senior Security Engineer (Infrastructure & Automation)** to join our diverse, customer-focused team! As a **Senior Security Engineer** , you will be a key contributor leading security initiatives around foundational infrastructure supporting PagerDuty's SaaS offerings. Your primary focus will be on infrastructure security through architecture reviews, threat modeling, and security tool implementations, while leveraging automation to scale security solutions. Since we own and operate what we build, you'll collaborate closely with engineers across many teams to ensure we deliver secure, highly reliable, and scalable solutions to our customers.
This is an exciting opportunity to build lovable security solutions that make developers and customers happy. The ideal candidate believes in securing infrastructure at scale and creating automated solutions that make security the easiest choice.
**KEY RESPONSIBILITIES**
+ Lead technical security initiatives by conducting architecture reviews and threat modeling sessions for new and existing services
+ Design and implement security controls for cloud infrastructure and containerized environments
+ Work closely with Product Engineering teams to review service designs (full stack) and provide security-focused recommendations
+ Resolve technical ambiguity in system designs, collaborating with engineering management and staff engineers
+ Monitor and maintain security tooling supporting infrastructure security controls
+ Design and implement security automations and tool integrations to scale security operations
+ Build and maintain security guardrails and automated compliance controls
+ Develop automated vulnerability management workflows to drive timely remediation
+ Create security relevant alerting and metrics for visibility and reporting
+ Implement automated incident response playbooks
+ Mentor and guide team members on security best practices and implementation approaches
+ Participate in our team's on-call rotation, triaging and addressing security issues as they arise.
+ Contribute to roadmap and annual planning discussions
**BASIC QUALIFICATIONS**
+ 5+ years of experience as a full-stack Security Engineer in a AWS native, micro-service SaaS environment
+ Strong expertise in cloud security, particularly AWS services including but not limited to:
+ GuardDuty, CloudTrail, Secrets Manager
+ EKS/ECR, IAM family, Config
+ Service Mesh architectures
+ Proficiency with security tools:
+ Vulnerability Management & EDR: Wiz, Snyk, Qualys/Nessus, Crowdstrike
+ SIEM: SumoLogic or Splunk
+ Experience with Infrastructure as Code and CI/CD:
+ Terraform, Helm, Chef, Ansible, Buildkite, Jenkins, ArgoCD
+ 4+ years of experience and proficiency in at least one programming language and framework (Python, Bash, Ruby on Rails, Elixir, or Java)
+ Strong understanding of Threat Modeling principles
+ Experience with Security Incident Response & Risk Management
+ High appetite for challenging problems with a high degree of ownership.
**PREFERRED QUALIFICATIONS**
+ Current or past experience with obtaining and maintaining FedRAMP authorization
+ Experience working at a SaaS company larger than 1000 employees and 100M in revenue
+ Strong problem-solving abilities with effective change management skills
+ Possesses a strong sense of ownership and a keen discernment for excellence in security systems within a SaaS environment, demonstrating the ability to distinguish what constitutes a truly robust and effective safeguarding infrastructure.
+ Demonstrated history of mentoring and coaching
+ Experience building Security Orchestration, Automation, and Response (SOAR) playbooks
+ Strong written and verbal communication skills
+ Working knowledge and experience with PagerDuty Incident Management and Process Automation products.
+ Familiarity with Corporate security needs and solutions, and ability to provide oversight and mentorship to the Corporate Security team to ensure alignment with CISO strategic initiatives and mandates.
The base salary range for this position is 152,000 - 248,000 USD. This role may also be eligible for bonus, commission, equity, and/or benefits.
Our base salary ranges are determined by role, level, and location. The range, which is subject to change based on primary work location, reflects the minimum and maximum base salary we expect to pay newly hired employees for the position. Within the range, we determine pay for an individual based on a number of factors including market location, job-related knowledge, skills/competencies and experience.
Your recruiter can share more about the specific offerings for this role, as well as the salary range for your primary work location during the hiring process.
**Not sure if you qualify?**
Apply anyway! We extend opportunities to a broad array of candidates, including those with diverse workplace experiences and backgrounds. Whether you're new to the corporate world, returning to work after a gap in employment, or simply looking to take the next step in your career path, we are excited to connect with you.
**Where we work**
PagerDuty currently has offices in Atlanta, Lisbon, London, San Francisco, Santiago, Sydney, Tokyo, and Toronto. We offer a hybrid, flexible workplace. We also provide ample opportunities for in-person and virtual connection, like team offsites and volunteering events.
**How we work**
Our values are deeply embedded in how we operate and the people we bring on board. You will see our values ingrained in how we support our customers, collaborate with our colleagues, develop our products and foster an inclusive and empathetic work culture.
+ Champion the Customer | Put users first to design great products and experiences.
+ Run Together | Build strong teams that amplify our impact on users.
+ Take the Lead | Disrupt and invent to be the first choice for users.
+ Ack + Own | Take ownership and action to deliver more efficiently to users.
+ Bring Your Self | Bring your best self to build empathy and trust with users.
**What we offer**
**One way we ensure our employees are inspired to do their best is through a comprehensive total rewards approach that supports them and their loved ones. As a global organization, our programs are competitive with industry standards and aligned with local laws and regulations. Learn more, including country-specific offerings, on our** benefits site (********************************************** **.**
**Your package may include:**
+ Competitive salary
+ Comprehensive benefits package from day one
+ Flexible work arrangements
+ Generous paid vacation time
+ Paid holidays and sick leave
+ Dutonian Wellness Days - scheduled company-wide paid days off in addition to PTO
+ Company equity*
+ ESPP (Employee Stock Purchase Program)*
+ Retirement or pension plan*
+ Paid parental leave - up to 22 weeks for pregnant parent, up to 12 weeks for non-pregnant parent (some countries have longer leave standards and we comply with local laws)*
+ HibernationDuty - an annual company paid week off when everyone at PagerDuty, with the exception of a small, coverage crew, is asked to take a much needed break to truly disconnect and recharge
+ Paid volunteer time off - 20 hours per year
+ Company-wide hack weeks
+ Mental wellness programs
_*Eligibility may vary by role, region, and tenure_
**About PagerDuty**
PagerDuty, Inc. (NYSE:PD) is a global leader in digital operations management. The PagerDuty Operations Cloud revolutionizes how critical work gets done, and powers the agility that drives digital transformation. Customers rely on the PagerDuty Operations Cloud to compress costs, accelerate productivity, win revenue, sustain seamless digital experiences, and earn customer trust. More than half of the Fortune 500 and more than two thirds of the Fortune 100 trust PagerDuty including Cisco, Cox Automotive, DoorDash, Electronic Arts, Genentech, Shopify, Zoom and more.
Led by CEO Jennifer Tejada, PagerDuty's Board of Directors is 50% female and 62% URP representation. We strive to build a more equitable world by investing 1% each of company equity, product, and employee volunteer time.
PagerDuty is Great Place to Work-certified, a Fortune Best Workplace for Millennials, a Fortune Best Medium Workplace, a Fortune Best Workplace in Technology, and a top rated product on TrustRadius and G2.
Go behind-the-scenes on our careers site (*********************************** and @pagerduty on Instagram.
**Additional Information**
PagerDuty is committed to creating a diverse environment and is an equal opportunity employer. PagerDuty does not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, parental status, veteran status, or disability status.
PagerDuty is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application process. Should you require accommodation, please email accommodation@pagerduty.com and we will work with you to meet your accessibility needs.
PagerDuty uses the E-Verify employment verification program.
Security Architect
Security Architect Job 10 miles from Newtown
Design, develop, troubleshoot and debug software programs for databases, applications, tools, networks etc. Career Level - IC6 **Responsibilities** As a member of the software engineering division, you will take an active role in the definition and evolution of standard practices and procedures. Suggest and justify product directions within approved directions. Define responsibilities for new projects and specifies, designs and develops software according to those specifications. Provide consultative software guidance and strategic direction associated with the developing, designing and debugging of software applications or operating systems.
Disclaimer:
**Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.**
**Range and benefit information provided in this posting are specific to the stated locations only**
US: Hiring Range in USD from: $161,700 to $338,500 per annum. May be eligible for bonus, equity, and compensation deferral.
Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business.
Candidates are typically placed into the range based on the preceding factors as well as internal peer equity.
Oracle US offers a comprehensive benefits package which includes the following:
1. Medical, dental, and vision insurance, including expert medical opinion
2. Short term disability and long term disability
3. Life insurance and AD&D
4. Supplemental life insurance (Employee/Spouse/Child)
5. Health care and dependent care Flexible Spending Accounts
6. Pre-tax commuter and parking benefits
7. 401(k) Savings and Investment Plan with company match
8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation.
9. 11 paid holidays
10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours.
11. Paid parental leave
12. Adoption assistance
13. Employee Stock Purchase Plan
14. Financial planning and group legal
15. Voluntary benefits including auto, homeowner and pet insurance
The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted.
**About Us**
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's problems. True innovation starts with diverse perspectives and various abilities and backgrounds.
When everyone's voice is heard, we're inspired to go beyond what's been done before. It's why we're committed to expanding our inclusive workforce that promotes diverse insights and perspectives.
We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling ***************, option one.
**Disclaimer:**
Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
*** Which includes being a United States Affirmative Action Employer**
Cloud Security Architect Senior Consultant
Security Architect Job 19 miles from Newtown
Are you looking to elevate your cyber career? Your technical skills? Your opportunity for growth? Deloitte's Government and Public Services Cyber Practice (GPS Cyber Practice) is the place for you! Our GPS Cyber Practice helps organizations create a cyber minded culture and become stronger, faster, and more innovative. You will become part of a team that advises, implements, and manages solutions across five verticals: Strategy, Defense and Response; Identity; Infrastructure; Data; and Application Security. Our dynamic team offers opportunities to work with cutting-edge cyber security tools and grow both vertically and horizontally at an accelerated rate. Join our cyber team and elevate your career.
Work you'll do
* Set up and manage access to cloud resources using accounts, users, and groups. He/she should be knowledgeable about potential vulnerabilities of virtual machines and container deployment systems.
* Will drive adherence to federal and state compliance requirements by overseeing continuous monitoring activities and incident response.
* Provides oversight over the implementation of approved security architecture/policies/procedures for a portfolio clients and engagements Initiate and conduct project security reviews to identify cloud infrastructure security risks
* Reviews and oversee the implementation of approved recommendations on cloud security design and implementation
* Support clients with data protection, IoT, and overarching cloud capabilities.
* Implement core and cloud infrastructure security to manage risks and exposure.
* Perform cyber reconnaissance to illuminate a potential attack surface area.
* Provide threat and vulnerability management to federal clients and teams.
* Analyze tactical network architectures and topologies to assess security risks.
* Responsible for architecting, deploying, configuring, and maintaining security baselines within the Azure/ Google Cloud and/or AWS cloud environment.
* Integrate cloud-native and/or third-party security services into new and existing cloud architectures.
The team
Deloitte's Government and Public Services (GPS) practice - our people, ideas, technology and outcomes-is designed for impact. Serving federal, state, & local government clients as well as public higher education institutions, our team of more than 15,000 professionals brings fresh perspective to help clients anticipate disruption, reimagine the possible, and fulfill their mission promise
At Deloitte, we believe cyber is about starting things-not stopping them-and enabling the freedom to create a more secure future. Cyber Infrastructure is focused on rethinking how security is integrated across modernized infrastructure as cyber threats become more complex. If you're seeking a career implementing, architecting, and-in select cases-handling next generation controls to manage security risks and exposure, then the Cyber Infrastructure team at Deloitte is for you.
Qualifications:
Required:
* Bachelor's degree required
* Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future.
* Must be able to obtain and maintain the required clearance for this role.
* Expected to co-locate in your designated office/USDC location up to 30% of the time.
* Must live in a commutable distance to or be willing to relocate to one of the following Delivery locations: Atlanta, GA; Charlotte, NC; Dallas, TX; Gilbert, AZ; Houston, TX; Lake Mary, FL; Mechanicsburg, PA; Philadelphia, PA
* The ideal candidate must have a minimum of 3 years of experience in:
* Developing and updating cloud templates, standards, and best practices to be used by multiple cloud projects
* Strong foundation across Microsoft Azure, Google Cloud and/or Amazon AWS technology stack
* Standardizing Azure/ Google Cloud and/or AWS Security best practices, processes, and procedures
* Providing strategic and technical leadership for client teams establishing cloud infrastructure design, migrating data centers to cloud, developing infrastructure as code, or deploying cloud solutions
* Designing, and integrating marketplace leading vulnerability management, threat management, monitoring, and data protection processes and platform tools
* Building and operating automated security operations
* Experience implementing Azure, Google Cloud or AWS
* Designing and advising against security requirements to support cloud migration efforts
* Strong knowledge of industry trends in security technology
* Combining cloud-native and/or third-party security services to build comprehensive security architectures
Preferred:
* Prior professional services or federal consulting experience
* A history of delivering secure architectures in a federal/state environment
* Cloud architect certifications in Azure, Google Cloud or AWS
* Excellent communication skills and the ability to partner and collaborate with both engineers and business users on architecture vision and security model
* A comprehensive understanding of writing KQLs, and the use of PowerShell to write queries in all cloud platform
Information for applicants with a need for accommodation: ************************************************************************************************************
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Benefits
At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.
Our people and culture
Our diverse, equitable, and inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our client most complex challenges. This makes Deloitte one of the most rewarding places to work. Learn more about our inclusive culture.
Our purpose
Deloitte's purpose is to make an impact that matters for our clients, our people, and in our communities. We are creating trust and confidence in a more equitable society. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. We are focusing our collective efforts to advance sustainability, equity, and trust that come to life through our core commitments. Learn more about Deloitte's purpose, commitments, and impact.
Professional development
From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
As used in this posting, "Deloitte Advisory" means Deloitte & Touche LLP, which provides audit and enterprise risk services; Deloitte Financial Advisory Services LLP, which provides forensic, dispute, and other consulting services; and its affiliate, Deloitte Transactions and Business Analytics LLP, which provides a wide range of advisory and analytics services. Deloitte Transactions and Business Analytics LLP is not a certified public accounting firm. Please see ************************* for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. These entities are separate subsidiaries of Deloitte LLP.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Requisition code: 206742