Security architect jobs in Southampton, NY

Title: Intermediate Architect Client: Leading NYC A/E/C, Development and Construction firm with projects including multi-family residential building, famous restaurants, high end offices and large planning projects. Description: Our client, a dynamic architectural firm based in New York City, is seeking an Intermediate Architect to join their team. This role is ideal for a candidate with strong NYC project experience who is ready to contribute to all phases of design, documentation, and project coordination. The designer will collaborate closely with the firm's architects and engineers, supporting technical and design deliverables from concept through construction. Responsibilities Develop and draft architectural plans for various project types Prepare construction documents and DOB filing sets Create presentation materials for client and internal reviews Support construction administration, including site visits, surveys, and inspections Research materials, finishes, and new products Maintain and expand CAD, Revit, and Rhino drawing libraries and details Assist with 3D modeling, visualizations, and design studies as needed Requirements 3-8 years of professional architectural experience Strong proficiency in Revit Expert skills in AutoCAD and Adobe Creative Suite Solid understanding of construction drawings, detailing, and standards Working knowledge of NYC Building Code, IBC, and NYC zoning Familiarity with x-refs, layers, and layer management best practices Rhino experience; 3D modeling and rendering preferred Physical model-making experience a plus Master's degree preferred but not required Excellent verbal, interpersonal, and communication skills Salary / Hourly: 65-100k Benefits: benefit package hybrid work schedule

Direct Hire Our client is a leading civil engineering and surveying firm headquartered in Plattsburgh, New York. For over 50 years, they have provided high-quality, comprehensive services supporting the full lifecycle of infrastructure and development projects throughout the North Country region and beyond. Their of Professional Engineers, Civil Engineers, Land Surveyors, Construction Inspectors, Technicians, and CADD Specialists delivers integrated solutions with a focus on precision, innovation, and minimal reliance on external subcontractors. Job Summary We are seeking an experienced Architect to enhance our multidisciplinary team. In this role, you will integrate architectural design with civil engineering and surveying expertise to support projects such as site developments, municipal facilities, and commercial infrastructure. With 2+ years of experience, the ideal candidate will lead the architectural aspects of projects, from concept to construction, ensuring designs are functional, code-compliant, and aligned with engineering objectives. This position provides a platform for creative problem-solving in a collaborative, client-driven environment. Key Responsibilities Design architectural elements for civil projects, including buildings, site structures, and integrations with infrastructure, using tools like AutoCAD and Revit. Coordinate with civil engineers and surveyors to develop holistic project plans, incorporating site topography, utilities, and environmental factors. Perform site assessments, zoning analyses, and feasibility studies to guide architectural decisions compliant with New York State building codes and regulations. Produce detailed construction drawings, specifications, and 3D models, emphasizing constructability and sustainability. Engage in client meetings, present design concepts, and incorporate feedback to refine project deliverables. Review engineering plans for architectural alignment and provide recommendations to optimize project efficiency. Oversee project schedules, budgets, and quality control for architectural components, ensuring timely delivery. Guide junior team members in design methodologies and software proficiency. Keep abreast of industry advancements, including green building practices and BIM integration. Qualifications Education: Bachelor's or Master's degree in Architecture from an accredited institution; active licensure as a Registered Architect in New York State required. Experience: At least 2 years in architectural design, ideally within a civil engineering or multidisciplinary setting, with experience in infrastructure-related projects (e.g., commercial, public, or residential developments). Technical Skills: Advanced proficiency in AutoCAD, Revit, and SketchUp; knowledge of BIM workflows and civil design software. Experience with LEED or sustainable design preferred. Soft Skills: Excellent interpersonal and communication skills; analytical mindset with strong attention to detail. Adaptable to a dynamic, project-focused workplace. Other: Valid driver's license; ability to travel to regional project sites as needed.

WHO WE ARE Delta Engineers, Architects, & Surveyors (Delta) is a multidisciplinary AEC firm founded in upstate New York in 1976. Along with our corporate headquarters located near the intersection of Interstates 81, 86 and 88, Delta has additional offices across Central New York and Chevy Chase, MD, together with remote team members located across the US. We deliver engineering and architectural design services for multiple market sectors along with providing environmental, survey, landscape architecture, and ecological services to public and private clients located throughout the continental US. Delta team members take advantage of terrific opportunities to advance professionally in a supportive team-oriented culture while enjoying a generous compensation and benefits package. WHO WE NEED We are seeking a versatile and team-oriented Architect in the Architectural Group at our Endwell, NY office. The Candidate should have a Bachelor's Degree in Architecture with 10 years of relevant experience, or an Associate's Degree in Architecture with 15 years of relevant experience. Experience with Revit is required, experience with AutoCAD and Lumion is highly preferred. An RA License is required. The primary duties associated with this position include: Assisting the Project Architect with client/project coordination; project management. Coordinating construction document preparation with supervision by the Project Manager. This will include analyzing building/zoning code; outlining document contents with half-size sets and specification outline; continually reviewing compliance with design intent, use of materials, and coordination with specifications; reviewing the work of consultants for coordination purposes; reviewing documents with building inspectors; responding to bid inquiries regarding pre-bid approvals; and preparing contract document agenda. Providing assistance in construction administration with the supervision of the Project Manager. This will include reporting on progress meetings; maintaining project status manual; preparing project correspondence; conducting on-site observations; preparing observation reports; providing additional services such as proposal requests, change orders or revisions to project scope; and reviewing submittals. Assisting with project close-out efforts including punch lists. Meeting with governmental agencies or officials for purposes of approvals and permits. Delta is driven to exceed our clients' expectations on every project. Accordingly, the successful applicant for this position must be willing to occasionally work adjusted hours/overtime. WHAT WE OFFER Hiring Salary Range: $82,500-$90,000 (Salary to be determined by the applicant's registration, education, experience, knowledge, skills, and abilities along with an internal equity and alignment with market area data.) The following are a few of the benefits that we offer: Paid Holidays, Vacation, Sick time Health and Dental Insurance Optional Vision, LTD and Term Life Insurance Enhanced Short Term Disability 401K Retirement Plan Tuition Assistance Program Professional Licensing Reimbursement Recruitment Bonus Program We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

LTIMindtree is an equal opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, color, creed, religion, sex (including pregnancy, childbirth or related medical conditions), gender identity or expression, national origin, ancestry, age, family-care status, veteran status, marital status, civil union status, domestic partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectional or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law. A little about us... Role: Mobile React Native Architect Location: Williamsville, NY Job Description: Lead the technical direction for mobile app development ensuring best practices in architecture scalability and delivery Partner with architects and stakeholders to implement high performance mobile solutions Drive release strategies technical pipelines and continuous improvement initiatives Mentor engineers on mobile development practices and platform optimization Collaborate with product owners and global partners to align technology with business goals Contribute to building a strong culture of collaboration inclusion and innovation Support ongoing improvements through client feedback platform upgrades and new feature development Strong experience in mobile development ideally with React Native at scale Knowledge of iOS and Android environments and MobileFirst development practices Familiarity with CICD pipelines app monitoring tools and cloud environments AWS preferred Excellent communication skills with the ability to explain complex technical concepts to both technical and nontechnical audiences Proven track record of leading delivery across teams balancing business outcomes with technical excellence Experience in financial services is a plus but a background in platform or product led environments is more important LTIMindtree is an equal opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, color, creed, religion, sex (including pregnancy, childbirth or related medical conditions), gender identity or expression, national origin, ancestry, age, family-care status, veteran status, marital status, civil union status, domestic partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectional or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law.

360 IT Professionals is a Software Development Company based in Fremont, California that offers complete technology services in Mobile development, Web development, Cloud computing and IT staffing. Merging Information Technology skills in all its services and operations, the company caters to its globally positioned clients by providing dynamic feasible IT solutions. 360 IT Professionals work along with its clients to deliver high-performance results, based exclusively on the one of a kind requirement. Job Description We are looking to fill multiple full time positions as Information Security Architects in Cumberland RI. Qualifications A minimum of 5+ years of relevant security domain experience. 3+ years of hands on technical experience in network and perimeter security A minimum of 3 years in an architecture role and be able to lead/step up as needed Demonstrated expertise in integrating/developing security solutions in a 7x24 production environment Prior experience in defining the technology strategy for a large, global organization, and the ability to influence and persuade peers and colleagues in other reporting structures Strong Plus Skills: Industry recognized certifications such as CISA, CISM, CISSP, or SANS GIAC are a plus Virtualization Security experience is a strong plus (VMware ESX 6.x, Hytrust, Hypervisor, in-hypervisor malware control. Virtual NIC, NSX or equivalent.) Knowledge of risk assessment methodologies, IT policies and standards Knowledge of vulnerability identification tools, Qualys, Veracode, Qualys WAS. Additional Information In person interview is acceptable.

Description: Callouts: -This is a hybrid position requiring on-site presence three days per week at one of our local offices, located in Allentown, PA (Lehigh Valley), Louisville, KY, or Providence, RI. -Prior success in candidates that have experience in Cloud Platform Engineering - Looking for experience with Azure, AWS, CISSP familiarity and containerization The Client is seeking a highly skilled Cloud Security Architect to join our Cybersecurity organization. In this role, you will work closely with our Cloud Engineering team to ensure the security and configuration of the PPL cloud infrastructure, including Azure, AWS, and other cloud service providers. You will have direct responsibility for the usage and monitoring of cyber technology within the cloud environment as well as collaborating on the cloud security strategy. You will provide expert guidance, conduct security assessments, and provide detailed design and implementation of secure cloud architecture. If you are passionate about cloud security and have a deep understanding of modern cloud security concerns like secure configurations, container security, and cloud incident response, this position is ideal for you. Qualifications REQUIRED EDUCATION: Bachelor's Degree in Computer Science, Information Security, and/or a related field or an equivalent combination of education and experience on a year for year basis. REQURIED EXPERIENCE: A minimum of 10+ years of direct cybersecurity cloud experience in the configuration and support of cloud applications and infrastructure. Experience in the configuration and support of Microsoft 365 services including: Microsoft Endpoint Manager -Intune and Configuration Manager Microsoft Defender for Cloud Microsoft Identity and Access - Microsoft 365 Active Directory/Entra and ADFS. Understanding of modern cloud technology components and deployment patterns: virtual machines, containers, Kubernetes, serverless, infrastructure as code, etc. Demonstrated knowledge of Azure architecture and core services such as Virtual Machines, Group Policy, MFA, Azure Active Directory, Management Groups, Resource Groups, Azure Regions, Azure Functions, Azure Networking, Azure IPsec Connections, Network Security Groups, Azure VDI, and Firewalls. Experience with DevOps and building CI/CD pipelines to support application and infrastructure deployments. Scripting and Programming: skills in scripting languages like PowerShell or Azure CLI for automation. Knowledge of network architectures, including VNETs, subnets, VPNs, and ExpressRoute, along with an understanding of Azure security tools and features like Azure Active Directory, Network Security Groups, and Azure Key Vault. Strong leadership, communication, and interpersonal skills. Collaborative and effective in cross-functional team environments. Strong analytical skills to assess risks and vulnerabilities in complex systems. PREFERRED QUALIFICATIONS: Knowledge of programming languages like Python, .NET, or Java. Cloud Technology Expertise: demonstrate a working knowledge of various enterprise technology stacks used to build services in the cloud. Cloud Platform Experience: possess working knowledge and practical experience in security testing within cloud platforms, particularly Azure. Proficiency in scripting and automation for security testing. Knowledge of Azure configuration best practices. Certification such as: M365 Security Microsoft Azure Administration Associate AZ 104 Microsoft Azure Network Engineer Associate Engineer Microsoft Azure Security Engineer Associate AZ 500

ABOUT THE JOB The ACLU seeks applicants for the full-time position of Application Security Architect in the Information Security Department of the ACLU's National office in New York, NY . This is a hybrid role that has in-office requirements of two (2) days per week or eight (8) days per month. This role will define how secure applications are designed, integrated, and maintained across the ACLU's cloud, SaaS, and hybrid environments. You'll lead efforts to embed security throughout our software development lifecycle (SDLC), own our internal Security Architecture Review (SAR) process, and guide secure integration practices for highly customized platforms and other third-party applications critical to our civil liberties mission. The AppSec Architect will partner closely with product and platform teams, Tech Engineering, Devops, IT, and affiliates to assess and mitigate risks associated with application design, data flows, integrations, and third-party software usage. You'll help set and enforce security standards, perform hands-on threat modeling, define secure development and deployment patterns, and directly support high-impact systems involving donor data, legal case workflows, and internal operational apps. This hands-on technical leadership role will own and drive the ACLU's application security efforts across both internally developed and externally adopted applications. This position is part of a collective bargaining unit. It is represented by ACLU Staff United (ASU). WHAT YOU'LL DO Reporting to the Director, Security Architecture & Engineering, the Application Security Architect will define and drive the ACLU's application security roadmap-from code to cloud, and everything in between. YOUR DAY TO DAY Lead the ACLU's Application Security Program, owning the InfoSec SDLC strategy and continuous improvement of application-layer security across cross-functional teams. Own the Security Architecture Review (SAR) process, including intake, risk evaluation, documentation, and partner engagement. Perform and guide threat modeling for new applications, integrations, and high-risk workflows-including financial systems, legal platforms, and supporter/donor tools. Define secure design patterns for authentication (OAuth/OIDC), secrets management, API authorization, session handling, and data flow protections across internal and third-party systems. Evaluate, deploy, and maintain AppSec tooling such as SAST, DAST, SCA, API security tools, and secrets detection platforms, based on risk and developer stack alignment. Partner with stakeholders to assess internal cloud apps, low-code tools, and internal workflow automations for security risks. Oversee application-layer vulnerability triage, analysis, and escalation-including issues from internal testing, coordinated disclosure, and external penetration testing. Collaborate with platform owners of high-risk SaaS platforms to validate that application-level security controls-authZ, audit logging, IP allowlists, token lifetimes, etc.-are in place and enforced. Ensure application-layer security extends across data ecosystems, including ETL and reverse ETL pipelines, data warehouse platforms (e.g., Redshift, Snowflake), and high-risk integrations that move or transform sensitive donor, legal, or supporter data between internal systems and external SaaS tools. Identify and reduce emerging application-layer risks related to AI adoption, including prompt injection, model abuse, insecure integrations with LLM APIs, and exposure of sensitive data through AI-powered features or automations. FUTURE ACLU'ERS WILL Be committed to advancing the mission of the ACLU Center and embed the principles of equity, inclusion and belonging in their work by demonstrating commitment to diversity with an approach that respects and values multiple perspectives Be committed to work collaboratively and respectfully toward resolving obstacles and conflicts WHAT YOU'LL BRING Extensive experience in application or product security, secure software development, or DevSecOps architecture. Practical experience designing and implementing secure SDLC, AppSec testing workflows, or automated CI/CD security gates. Deep understanding of common software vulnerabilities (e.g., OWASP Top 10), secure coding practices, and threat modeling methodologies. Familiarity with GitHub Actions, modern SaaS stacks, and secure API design principles. Familiarity with CMS tooling (e.g., Drupal, WordPress), cloud computing platforms (e.g., GCP, Azure, AWS), and containerization environments (e.g., Kubernetes, Docker, ECS). Experience securing data pipelines and warehouse environments, with a focus on protecting structured data. Experience partnering directly with developers and product teams to influence secure outcomes. Excellent communication skills, especially when translating technical issues into business risk language. COMPENSATION The ACLU is committed to equity, transparency, and clarity in pay. Consistent with our compensation philosophy, there is a set salary for each role based on geographic work location. The annual salary for this position is $161,123 (Level - E), reflecting the salary of a position based in New York, NY. Salaries are subject to a regional pay adjustment if authorization is granted to work outside of the location listed in this posting. For details on our pay structure, please visit: ************************************************************************ WHY THE ACLU For over 100 years, the ACLU has worked to defend and preserve the individual rights and liberties guaranteed by the Constitution and laws of the United States. Whether it's ending mass incarceration, achieving full equality for the LGBTQ+ community, establishing new privacy protections for our digital age, or preserving the right to vote or the right to have an abortion, the ACLU takes up the toughest civil liberties cases and issues to defend all people. We know that great people make a great organization. We value our people and know that what we offer is essential not just their work, but to their overall well-being. At the ACLU, we offer a broad range of benefits, which include: Time away to focus on the things that matter with a generous paid time-off policy Focus on your well-being with comprehensive healthcare benefits (including medical, dental and vision coverage, parental leave, gender affirming care & fertility treatment) Plan for your retirement with 401k plan and employer match We support employee growth and development through annual professional development funds, internal professional development programs and workshops OUR COMMITMENT TO ACCESSIBILITY, EQUITY, DIVERSITY & INCLUSION Accessibility, equity, diversity and inclusion are core values of the ACLU and central to our work to advance liberty, equality, and justice for all. For us diversity, equity, accessibility, and inclusion are not just check-the-box activities, but a chance for us to make long-term meaningful change. We are a community committed to learning and growth, humility and grace, transparency and accountability. We believe in a collective responsibility to create a culture of belonging for all people within our organization - one that respects and embraces difference; treats everyone equitably; and empowers our colleagues to do the best work possible. We are as committed to anti-oppression, anti-ableism, and anti-racism internally as we are externally. Because whether we're in the courts or in the office, we believe ‘We the People' means all of us. With this commitment in mind, we strongly encourage applications from all qualified individuals without regard to race, color, religion, gender, sexual orientation, gender identity or expression, age, national origin, marital status, citizenship, disability, veteran status and record of arrest or conviction, or any other characteristic protected by applicable law. The ACLU is committed to providing reasonable accommodation to individuals with disabilities. If you are a qualified individual with a disability and need assistance applying online, please email ************************ . If you are selected for an interview, you will receive additional information regarding how to request an accommodation for the interview process.

Provide proven expertise and knowledge in Governance, Risk and Compliance (GRC), internal and external audit and assessment support and Information Security assurance initiatives. A firm knowledge of security compliance controls i.e NIST 800-53r4, HIPAA, HITECH, ISO27001 and other security standard frameworks is an absolute requirement. Gather and analyze metrics, key risk indicators and maintain scorecards defined within the area of information security to ensure the information security program is meeting governance expectations and maturity. This candidate must be familiar with general security risk management principals, healthcare and government-designed security control standards and best practices for security and privacy. Candidate should be familiar with documented security plans, procedures, supporting evidence and risk rating standards based on NIST and other risk management frameworks. Assist with evaluation and testing as well as work with the applicable teams to track, address, and remediate audit and assessment findings to closure. Candidate must be familiar with threats and vulnerabilities, latest trends and risks and be able to understand the technical remediation action steps or plans and communicate them effectively to teams within the organization. Manage policy exceptions with requestors and coordinate the annual exception review process. Requires working directly with various teams to document exceptions, identify compensating controls, and remediation action plans accordingly. Provide process improvement suggestions for more effective management and review of exceptions. Support and help mature the overall security management program. Should be familiar with general governance, risk and compliance (GRC) programs with specific knowledge of government practices, and security risk and policy management. Provide support for ongoing BAA, third party risk reviews, including initial inherent risk, ongoing residual risk, and attestation campaigns. Support and help maintain risk appetite frameworks focused on security and business continuity risks. Additionally, support and maintain other general regulatory risk assurance program functions. Support and address regular IT general controls (ITGC) activity reviews and be able to rate and score maturity and compliance to standard control objectives. A knowledge of security architectures including SDLC, cloud or multi-tenant infrastructure and environments and network/boundary architectures. Should be familiar with SIEM, DLP, and other reporting and protection capabilities. Qualifications This position requires: BS or BA degree in a related field or equivalent work experience. Minimum 5 years in information security, Risk Management, IT compliance, or security/IT risk related field. Strong oral and written communication, as well as good interpersonal skills. Knowledge and experience in standard security and regulatory frameworks including HIPAA, HITECH, NIST 800-53, other NIST standards, ISO 27001/31000, FFIEC and PCI. Possess the ability to solve a wide range of complex problems, requiring ingenuity and innovation. Preferred/Nice-to-haves: Experience using GRC platforms or rating scorecards to show compliance levels and maturity. Experience with SharePoint administration, including workflow and process design. Current Certified Information Systems Security Professional CISSP certification (or similar security profession certificate). Current Certified Information Systems Auditor CISA certification (or similar). Additional Information PlanIT Group, LLC is an Equal Opportunity/Affirmative Action (M/F/D/V) Employer. All your information will be kept confidential according to EEO guidelines.

Department Description At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance these exciting experiences. The Enterprise Technology mission is to deliver technological solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence. The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to: * Secure the Magic by protecting information systems and platforms. * Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests. * Strengthen the business through optimizing execution, application, and technology used to protect the Company. * Innovate by investing in core capabilities to enhance operational efficiency. Team Description: Global Information Security (GIS) supports all of Disney's business segments, including Disney Entertainment & ESPN (DE&E). DE&E encompasses the operations of Disney's streaming services-Disney+, Hulu, ESPN+, Disney+ Hotstar, Star, and the upcoming Venu Sports streaming service-as well as Disney's broadcast and cable networks, including ABC, ESPN, FX, Disney Channels, and National Geographic. DE&E sits at the intersection of entertainment, sports, and technology, striving to connect viewers with beloved stories while advancing the streaming industry with consumer-first innovations. Security professionals supporting DE&E work with industry-leading technologies to deliver world-class, highly secure services to customers. What You'll Do: * Independent audit support for: * SOX 404 ITGCs * PII * PCI * ISPS * Collaborate with Enterprise Controls and Compliance (ECC) to scope systems and respective ITGCs. * Perform control health checks and remediation testing procedures to address issues identified via audit assessments, access control reviews, internal or external audits and/or other assessments. * Develop and lead the Control Assurance Programs (ISPS and SOX). * Lead Audit Readiness efforts to ensure proper system scoping and respective ITGCs, control validations and timely program onboarding. * Participate in audit walkthrough meetings to help establish internal testing procedures to gain operational comfort in the design of the Company's automated controls. * This includes control self-evaluations of new controls or processes that impact the effectiveness of an existing control. * Perform impact analysis and risk assessment on deficiency findings and documentation associated with the assessment. * Work with management and internal audit on maintaining the master Risk and Control Matrix over the systems material to Disney Entertainment and ESPN (Broadcast TV and Streaming - Hulu, Disney+, ESPN+, STAR+ products) * Ensure for timely management response of audit findings into our corporate SOCD/SAD. * Oversee ISPS Management Audit coordination and open action plans. * Provide consultancy to Development leads to identify and implement automation and efficiency opportunities to meet governance and compliance demands. * Management of GRC workflows around coordination of certifications and attestations. * Partner with leadership to support the PCI-DSS compliance program. * Develop training materials, coordinate training sessions, and monitor compliance with training requirements. * Oversee and manage a team of compliance analysts, ensuring day-to-day operations run smoothly and efficiently. * Assign tasks and projects to team members based on priorities, deadlines, and individual strengths. * Provide executive level updates on Compliance programs Must Haves (Years of Experience, languages, programs, tools, etc.): * Minimum of 8 years of related work experience, with 3 in management roles * IT SOX experience and proven experience in supporting IT audit/compliance functions * Experience in managing people * Thorough understanding of SOX ITGC and ICFR 404 standards and audit objectives * Interpersonal skills with the ability to work with teams cross-functionally * Strong verbal and written communication skills and ability to effectively communicate to technical and non-technical audiences, including developers and tech operators * Detail-oriented but able to understand the big picture. Highly organized and efficient * Ability to navigate through ambiguity, manage and coordinate multiple project assignments simultaneously in a fast-paced, deadline-driven environment, accepting ownership and accountability of the process and deliver on commitments * Experience with cloud-based services, specifically AWS Nice To Haves (see above): * Experience and knowledge of NIST framework, ISO 27001, K-ISMS, GDPR * Experience working with companies that have a heavy microservice architecture Education: Bachelor's degree in Computer Science, CPA license, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience The hiring range for this position in Glendale, CA and Santa Monica, CA is $141,900 to $190,300 per year and in New York, NY is $148,700 to $199,400 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate's geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered. About The Walt Disney Company (Corporate): At Disney Corporate you can see how the businesses behind the Company's powerful brands come together to create the most innovative, far-reaching and admired entertainment company in the world. As a member of a corporate team, you'll work with world-class leaders driving the strategies that keep The Walt Disney Company at the leading edge of entertainment. See and be seen by other innovative thinkers as you enable the greatest storytellers in the world to create memories for millions of families around the globe. About The Walt Disney Company: The Walt Disney Company, together with its subsidiaries and affiliates, is a leading diversified international family entertainment and media enterprise that includes three core business segments: Disney Entertainment, ESPN, and Disney Experiences. From humble beginnings as a cartoon studio in the 1920s to its preeminent name in the entertainment industry today, Disney proudly continues its legacy of creating world-class stories and experiences for every member of the family. Disney's stories, characters and experiences reach consumers and guests from every corner of the globe. With operations in more than 40 countries, our employees and cast members work together to create entertainment experiences that are both universally and locally cherished. This position is with Disney Worldwide Services, Inc., which is part of a business we call The Walt Disney Company (Corporate). Disney Worldwide Services, Inc. is an equal opportunity employer. Applicants will receive consideration for employment without regard to race, religion, color, sex, sexual orientation, gender, gender identity, gender expression, national origin, ancestry, age, marital status, military or veteran status, medical condition, genetic information or disability, or any other basis prohibited by federal, state or local law. Disney champions a business environment where ideas and decisions from all people help us grow, innovate, create the best stories and be relevant in a constantly evolving world. Apply Now Apply Later Current Employees Apply via My Disney Career Explore Location

Historically, US Healthcare has relied on a fee-for-service reimbursement system where providers are paid based on the quantity of patient visits and procedures, rather than the quality of health outcomes. At Stellar Health, we help primary care providers put patient health first. Our platform - a mix of technology, people, and analytics - supports providers at the point of care, delivering real-time patient information, activating practice staff, and empowering providers and care teams with incentives that reward the work they are already doing to keep patients healthy. Using the Stellar App, our web-based, point-of-care tool; practices receive a simple checklist of recommended actions that support the best quality care. Providers and care teams are then paid monthly for each action they complete, and Payors save money in reduced healthcare costs along the way. Stellar is a US-based Health-tech backed by Top VCs ( General Atlantic, Point72, & Primary Venture Partners) with an established product & proven operating model. We've shown that we make a real difference for physician practices and their patients. About the position: Stellar Health is looking for an Information Security Manager to help prioritize and drive our Information Security program and investments. We are looking for an individual that is passionate about building out new security processes that are thoughtful in their design for both external users, customers, and teammates. Stellar Health operates in the HealthTech space and is HITRUST R2 certified. This role will help ensure our security program is proactive as possible by: Helping reduce the effort to maintain and demonstrate our alignment to HITRUST by automating the collection of evidence, as well as deploy continuous testing of controls.Staying aligned with our cross-functional teams as they deliver on their controls and support our security processes. Bolster and improve our internal security processes as a security team by partnering with our leadership team to set strategic priorities for the team, informed by our organization and platform services' threat models. How you'll make an impact: By 3 months you will… Have a solid foundation of our current security posture, controls, and security processes, what is working well and where there are gaps Have a prioritized list of areas of improvement and/or investments to help reinforce and improve our security posture Implemented 1-2 improvements to current processes and/or automations to ensure a security control is working appropriately, examples of potential improvements:Ensure all Git repos align with our change management standards around PR reviews, automated code testing, deployments and any required security reviews Implement continuous testing of our endpoint configurations to ensure they align to our security standards (e.g. all endpoints are encrypted at rest, have security agents deployed) By 6 months you will… Aligned with senior leadership around team skillset and staffing needs to maintain security processes and operations Collaborated with other teams that support our security controls to expand the list of improvements to include non-security pain points in evidence collection or inefficient processes Delivered first quarter of 1-2 projects from the prioritized list of areas of improvement Established a process to review high risk applications and systems with System Owners to ensure they align to any applicable security standards/controls and other security recommendations What You'll Bring: 4-5 years of security program & engineering experience building and implementing security tooling and processes Strong familiarity and experience helping secure cloud environments and infrastructure, preferably AWSSupported, and preferably led, external audits of security frameworks (e.g. SOC 2 Type 2, ISO 27001, HITRUST) Experience with coding and automation, preferably Python and/or Terraform Who will love this job: You enjoy a tight partnership and daily interactions with DevOps and IT engineers to deliver on technical projects and process improvements You are passionate about designing thoughtful, business-focused solutions to security problems vs implementing a security “best practice” solution when not applicable You appreciate the need to audit and validate security controls, but would much rather automate the work where possible so you can focus your efforts on creating strong proactive partnerships and further reducing security risks elsewhere Pay: The salary range for this role is $170,000 - $200,000 + an annual performance based bonus. Where a new hire falls within this range will be based on their individual skills and experience, and how these competencies compare across other employees in the same role. Stellar's bands are designed to allow for individual compensation growth within the role. As such, new hires typically start at the lower end of the range. Stellar rewards performance and outcomes - should you join the company, you will have the opportunity to grow your salary over time. Perks & Benefits: Stellar offers a carefully curated selection of wellness benefits and perks to our employees: Medical, Dental and Vision Benefits Flexible PTO Universal Paid Family Leave Company sponsored One Medical memberships and Citibike memberships Medical Travel Benefits A monthly wellness stipend that gives employees the freedom to choose where they spend their cash, whether it be on wellness, pet care, childcare, WFH items, or charitable donations Stock Options & a 401k matching program Career development opportunities like Manager Training, coaching, and an internal mobility program A broad calendar of company sponsored social events that for our in-office and remote employees Diversity is the key to our success. Stellar Health is an equal opportunity employer and we are open to all qualified applicants regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, veteran status, or any other legally protected status. We believe that diverse teams -and the different identities, cultures, and life experiences our team members bring to the table- enable us to create amazing products, find creative solutions to interesting problems, and build an inclusive working environment. Stellar Health Employment Privacy Notice At Stellar Health, your privacy and security as a job seeker is a priority no matter where you are in the interview process. As recruiting scams have become more prevalent, please take note of the following practices to ensure the legitimacy of any interaction with our team. Please note that any communication from our recruiters and hiring managers at Stellar Health about a job opportunity will only be made by a Stellar Health employee with an @stellar.health email address. Stellar Health does not utilize third-party agencies for recruitment services and does not conduct text message or chat-based interviews. Any other email addresses, agencies, or forums may be phishing scams designed to obtain your personal information. We will not ask you to provide personal or financial information, including, but not limited to, your social security number, online account passwords, credit card numbers, passport information, and other related banking information until we begin onboarding activities, which will be coordinated by a member of the Stellar Health People Ops Team with an @stellar.health email address. If you are ever unsure whether you are in contact with a legitimate Stellar Health teammate, please contact people-team@stellar.health. If you believe you've been a victim of a phishing attack, please mark the communication as “spam” and immediately report it by contacting the U.S. Federal Trade Commission.

This role is located in New York City and will require a hybrid work schedule of at least 2 days in office per week. This role is for Vice President level candidates. About the Bank: Sumitomo Mitsui Trust Bank, Limited was established through the merger of The Sumitomo Trust and Banking Co., Ltd with Chuo Mitsui Trust and Banking, Ltd. on April 1, 2012. We are one of the largest asset managers in Asia and number one among Japanese financial institutions by AUM, with approximately $850 Billion USD in AUM. The Bank provides an assortment of financial solutions and manages a broad spectrum of financial products across its global branches. Department Overview: The Americas Division (“AD”) was established in the Sumitomo Mitsui Trust Bank, Limited, New York Branch) (“SMTBNY”) to perform corporate functions and supervise U.S. entities. Established under the AD are the “Global Banking Unit (“GBU”), Americas Division” and “Global Markets Unit (“GMU”), Americas Division” which performs business functions. Information Risk Governance (“IRG”) provides oversight to information and cyber security risk by maintaining and improving branch wide framework that is in-line with the Head Office and regulatory requirements and addresses Confidentiality, Integrity, and Availability for information assets. IRG establishes appropriate policies, procedures, measurement, and monitoring processes to proactively assess and evaluate cyber security and information security risks inherent in the Branch Operations. IRG is directly involved in all information and cyber security related projects, matters, and issues. Your Role Overview: To assist the Head of the Department with the day-to-day management and operation of the department. To assume the role of Information Security Officer and take the lead on overseeing the timely completion of the department's critical risk management projects. To provide direct assistance to the Head of the Department with regards to accomplishing the department's goals and objectives. To manage, guide and mentor other staff members with the preparation and completion of their assigned tasks. To contribute significantly to the overall success of the department in all key risk management and cyber security areas. Directly oversee completion of all critical projects, assist the HOD with implementing desired operational strategies and procedures. Recommend ways to improve efficiency, effectiveness, and productivity. Focus on proactive day-to-day operations. As ISO, assist with overseeing all information and cyber security matters. Your Duties and Responsibilities: Maintain and improve the information risk framework with guidance from HOD, address regulatory requirements, residual information risks specific to NY Branch Operations. Provide Information Security subject-matter-expertise to senior management. Work with IRT and coordinate incident responses to cyber security events. Keep abreast of industry wide information risk issues that could potentially have an impact on Branch Operations. Establish processes for communicating data classification guidelines and its governance. Oversee employee information security awareness training. Assesses and evaluates critical risk management projects: Annual Risk Assessment. Semi-annual Vulnerability Assessments. Special Risk Assessments done for a Particular Purpose Trend analysis of key risk management concepts and principles Attend the ISSRM and Branch Risk Management related meetings. Performs key information risk governance related tasks as described below: Provides User Access Control Governance. Monitors, analyzes and follows-up on Information Risk events/issues. Reviews information risk and proactively advises as necessary on: IT Projects/Issues Management process, Change Management Process, significant changes to IT procedures, IT Asset Management Report, key IT Vendor Contracts, IT Disaster Recovery Plan/Process, Record Retention Process, any related audit findings, etc. Establish and maintain Information Risk Key Risk Indicators (KRI). Periodically updates IT resources on Information risk related practices. Manages all information and cyber security policy and procedures manuals. Assist with the management of all matters related to Information Security and Information Risk Management, including directing appropriate Information/Applications Risk Assessments. Your Qualifications: Certification in Information Security (CISSP) required. 8+ years of Information Security related experience, IT Audit experience, preferred. Knowledge of Information Security principles, terminologies, and technologies required. Knowledge of Information Risk Management framework and principles required. Ability to analyze and design information security monitoring procedures and activities preferred. Detailed Knowledge and expertise in Technology Risk Assessments and Risk Analysis required. Excellent written and verbal communication skills, required. Good computer skills in Microsoft Office Excel and Word required. Strong project management and people management skills. preferred Why you should join SuMi Trust: SuMi Trust embraces flexible ways of working when the business and role permits. We provide employees with a hybrid working model, allowing for in-office work and work from home. Our diverse and inclusive environment along with our global presence enables us to collaborate and communicate to meet our business needs. We believe that efficient teams need truth, loyalty, and a strong sense of purpose to balance risk and their targets. We make sustainable business decisions to improve our society and the world. We believe that each person brings a unique value that drives the business though their creativity and passion. The Employee Benefits package includes: Paid Time Off, medical, HSA, vision, dental, FSA, 401(k), profit sharing, legal plan, cancer indemnity plan, disability insurance, life insurance, employee assistance program, commuter benefits, business travel accident, paid volunteer day, paid memberships, paid seminars, and tuition assistance. We offer many socialization opportunities for wellness, financial wellbeing, runs/walks, team building, happy hours, and activities to support the Sustainable Developmental Goals. Check out our LinkedIn for our employee experience: *************************************** We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law. SuMi Trust provides reasonable accommodations for employees and applicants with disabilities consistent with applicable law. If you need a reasonable accommodation during the application

Saab, Inc. is seeking an experienced and results-driven Information Security Manager to lead our cybersecurity initiatives. In this pivotal role, you will be responsible for developing, implementing, and managing a comprehensive information security program designed to protect our computer systems, networks, and data from unauthorized access, use, disclosure, alteration, or destruction. You will lead a team of security professionals, oversee security operations, ensure regulatory compliance, and respond swiftly to potential security incidents. This position is located in Syracuse, NY. Relocation will be provided. Key Responsibilities Strategy and Policy: Develop, implement, and maintain the organization's information security policies, standards, and procedures, aligning security strategy with business objectives. Risk Management: Conduct regular risk assessments and vulnerability analyses to identify potential security threats and determine appropriate mitigation strategies. Incident Response: Manage and lead the response to security incidents and breaches, including investigation, containment, recovery, and reporting. Security Operations: Oversee the deployment, configuration, and monitoring of security tools and technologies (e.g., firewalls, SIEM, data encryption, antivirus). Compliance & Auditing: Ensure compliance with relevant laws, regulations, and industry standards such as GDPR, HIPAA, PCI DSS, NIST, or ISO 27001. Team Leadership: Manage, mentor, and train the information security team members, fostering an environment of continuous learning and growth. Disaster Recovery & Business Continuity: Create, maintain, and test business continuity and disaster recovery plans to ensure data availability and system functionality in the event of an outage or breach. Security Awareness: Train and educate employees on information security best practices and compliance, promoting a security-conscious culture across the organization. Budget Management: Develop and manage the information security budget, ensuring cost-effective implementation of security measures and technologies. Compensation Range: $146,800 - $190,800 The compensation range provided is a general guideline. When extending an offer, Saab, Inc. considers factors including (but not limited to) the role and associated responsibilities, location, and market and business considerations, as well as the candidate's work experience, key skills, and education/training. Skills and Experience: Required Qualifications and Skills: Education: A Bachelor's degree in Computer Science, Information Security, or a related field. A Master's degree is a plus. Technical Knowledge: Knowledge of operating systems, network security architecture, cloud platforms, and security software solutions. Certifications: Relevant professional certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) are highly desirable. Strong leadership, interpersonal, and team management skills. Excellent written and verbal communication skills, with the ability to explain complex technical issues to non-technical stakeholders. Strong analytical, problem-solving, and critical-thinking abilities, especially when working under pressure. Citizenship Requirements: Must be a U.S. citizen. Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. Drug-Free Workplaces: Saab is a federal government contractor and adheres to policies and programs necessary for sustaining drug-free workplaces. As a condition of employment, candidates will be required to pass a pre-employment drug screen. Benefits: Saab provides an excellent working environment offering professional growth opportunities, competitive wages, work-life balance, a business casual atmosphere and comprehensive benefits. Highlights include: Medical, vision, and dental insurance for employees and dependents Generous paid time off, including 8 designated holidays 401(k) with employer contributions Tuition assistance and student loan assistance Wellness and employee assistance resources Employee stock purchase opportunities Short-term and long-term disability coverage About Us: Saab is a leading defense and security company with an enduring mission, to help nations keep their people and society safe. Empowered by its 19,000 talented people, Saab constantly pushes the boundaries of technology to create a safer, more sustainable and more equitable world. In the U.S., Saab delivers advanced technology and systems, supporting the U.S. Armed Forces and the Federal Aviation Administration, as well as international and commercial partners. Headquartered in Syracuse, New York, the company has business units and local employees in eight U.S. locations. Saab is a company where we see diversity as an asset and offer unlimited opportunities for advancing in your career. We are also a company that respects each person's needs and encourage employees to lead a balanced, rewarding life beyond work. Saab values diversity and is an Affirmative Action employer for protected veterans and individuals with disabilities. Saab is an Equal Employment Opportunity employer, all qualified individuals are encouraged to apply and will be considered for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, age, veteran, disability status, or any other federal, state, or locally protected category.

Saab, Inc. is seeking an experienced and results-driven Information Security Manager to lead our cybersecurity initiatives. In this pivotal role, you will be responsible for developing, implementing, and managing a comprehensive information security program designed to protect our computer systems, networks, and data from unauthorized access, use, disclosure, alteration, or destruction. You will lead a team of security professionals, oversee security operations, ensure regulatory compliance, and respond swiftly to potential security incidents. This position is located in Syracuse, NY. Relocation will be provided. Key Responsibilities Strategy and Policy: Develop, implement, and maintain the organization's information security policies, standards, and procedures, aligning security strategy with business objectives. Risk Management: Conduct regular risk assessments and vulnerability analyses to identify potential security threats and determine appropriate mitigation strategies. Incident Response: Manage and lead the response to security incidents and breaches, including investigation, containment, recovery, and reporting. Security Operations: Oversee the deployment, configuration, and monitoring of security tools and technologies (e.g., firewalls, SIEM, data encryption, antivirus). Compliance & Auditing: Ensure compliance with relevant laws, regulations, and industry standards such as GDPR, HIPAA, PCI DSS, NIST, or ISO 27001. Team Leadership: Manage, mentor, and train the information security team members, fostering an environment of continuous learning and growth. Disaster Recovery & Business Continuity: Create, maintain, and test business continuity and disaster recovery plans to ensure data availability and system functionality in the event of an outage or breach. Security Awareness: Train and educate employees on information security best practices and compliance, promoting a security-conscious culture across the organization. Budget Management: Develop and manage the information security budget, ensuring cost-effective implementation of security measures and technologies. Compensation Range: $146,800 - $190,800 The compensation range provided is a general guideline. When extending an offer, Saab, Inc. considers factors including (but not limited to) the role and associated responsibilities, location, and market and business considerations, as well as the candidate's work experience, key skills, and education/training. Skills and Experience: Required Qualifications and Skills: Education: A Bachelor's degree in Computer Science, Information Security, or a related field. A Master's degree is a plus. Technical Knowledge: Knowledge of operating systems, network security architecture, cloud platforms, and security software solutions. Certifications: Relevant professional certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) are highly desirable. Strong leadership, interpersonal, and team management skills. Excellent written and verbal communication skills, with the ability to explain complex technical issues to non-technical stakeholders. Strong analytical, problem-solving, and critical-thinking abilities, especially when working under pressure. Citizenship Requirements: Must be a U.S. citizen. Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. Drug-Free Workplaces: Saab is a federal government contractor and adheres to policies and programs necessary for sustaining drug-free workplaces. As a condition of employment, candidates will be required to pass a pre-employment drug screen. Benefits: Saab provides an excellent working environment offering professional growth opportunities, competitive wages, work-life balance, a business casual atmosphere and comprehensive benefits. Highlights include: Medical, vision, and dental insurance for employees and dependents Generous paid time off, including 8 designated holidays 401(k) with employer contributions Tuition assistance and student loan assistance Wellness and employee assistance resources Employee stock purchase opportunities Short-term and long-term disability coverage About Us: Saab is a leading defense and security company with an enduring mission, to help nations keep their people and society safe. Empowered by its 19,000 talented people, Saab constantly pushes the boundaries of technology to create a safer, more sustainable and more equitable world. In the U.S., Saab delivers advanced technology and systems, supporting the U.S. Armed Forces and the Federal Aviation Administration, as well as international and commercial partners. Headquartered in Syracuse, New York, the company has business units and local employees in eight U.S. locations. Saab is a company where we see diversity as an asset and offer unlimited opportunities for advancing in your career. We are also a company that respects each person's needs and encourage employees to lead a balanced, rewarding life beyond work. Saab values diversity and is an Affirmative Action employer for protected veterans and individuals with disabilities. Saab is an Equal Employment Opportunity employer, all qualified individuals are encouraged to apply and will be considered for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, age, veteran, disability status, or any other federal, state, or locally protected category.

The Director of Information Security & Assurance (ISA) is responsible for establishing and maintaining an enterprise-wide information security program to support the confidentiality, integrity and availability of Seneca Gaming Corporation's information assets. The Director of ISA collaborates and consults with IT management and business units to develop appropriate security controls. The Director leads the development of information security policies, procedures, and best practices and works with internal and external teams to implement and promote compliance with those procedures, best practices and/or regulatory compliance requirements. The Director of ISA is responsible for the development of an information security & assurance strategy within the context of a risk-based approach. This position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements. This position requires a visionary leader with strong leadership skills, business acumen and technology. The Director of ISA will work proactively with business units to implement practices that meet defined policies and standards for information security lead IT risk management activities. The Director will report directly to the CIO and provide guidance for all Information Technology Security and Assurance concerns. The Director will also have an indirect reporting relationship to the SGC Audit Committee for audit compliance services. ESSENTIAL FUNCTIONS AND RESPONSIBILITIES: 1. Works in close partnership with VP of Information Technology / CIO to ensure coordinated and effective information security operations across all systems and platforms. 2. Works closely and collaborates with Technical Services, Systems, Network, Operations, Applications and Support teams to ensure alignment between the information security and the enterprise information technology architecture, thus coordinating the strategic planning implicit in these architectures. 3. Leads and oversees the daily operations of the information security & assurance department and develops programs and best practices on information security domains such as access control, telecommunications and network security, risk analysis and security governance, security architecture, cryptography, operational security, application security, and business continuity/disaster recovery. 4. Together with the CIO, develops, implements, and monitors, a strategic, comprehensive enterprise information security and risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization. 5. Manages the enterprise's security organization, consisting of direct reports and indirect reports and leads all hiring, training, staff development, performance management and annual compensation reviews. 6. Identifies legal, regulatory, organizational and other requirements and provides recommendations for managing the risk of non-compliance. Identifies gaps between current and desired risk levels. 7. Develops and communicates organizational information security policies and standards. 8. Leads the development of and provides management oversight for the information security operating and capital budgets and monitors for variances. 9. Creates and manages information assurance and risk management awareness training programs for all employees and approved system users. 10. Acts as the liaison between Internal Audit, Legal, Human Resources and Compliance Departments providing leadership and oversight for audit and information assurance activities. 11. Works directly with the business units to analyze information security risks and recommends appropriate risk treatment options to manage risk to acceptable levels. 12. Provides subject matter expertise to executive management on a broad range of information security standards and best practices, such as CIS, NIST, NIGC MICS, PCI DSS, COBIT, ITIL. 13. Provides strategic and tactical security guidance for all IT projects, including the evaluation and recommendation of technical controls. 14. Creates and facilitates the information assurance risk assessment process, including reporting and oversight of remediation efforts to address negative findings. 15. Collaborates on the development of a secure information technology infrastructure that provides reliable, resilient, responsive and secure enterprise information technology services. 16. Manages security incidents and events to protect corporate IT assets, including intellectual property, fixed assets and the company's reputation. 17. Coordinates the use of external resources involved in the information assurance program, including, but not limited to, interviewing, negotiating contracts and fees, and managing external resources. 18. Assists in the development of effective disaster recovery policies and procedures. 19. Develops business-relevant metrics to measure the efficiency and effectiveness of the program, facilitate appropriate resource allocation and increase the maturity of the security program. QUALIFICATIONS/REQUIREMENTS: Education/Experience: 1. Must be 18 years of age or older upon employment. 2. Bachelor's Degree in an Information Technology related field. 3. Minimum of ten (10) years of experience in an Information Technology management role with a combination of information technology and demonstrable information security and assurance responsibilities. 4. Minimum of five (5) years in Information Technology project management, systems design and integration and experience leading project teams using formal project management methodologies 5. A level of pertinent security/risk-focused certification, e.g. Security+, CISSP, CISM, CISA, CRISC. 6. An equivalent combination of education and/or experience may be substituted for the above requirements. 7. A deep understanding of and extensive experience with implementing network operating systems, systems design and enterprise architecture, systems development lifecycle (SDLC), project management methodology, asset management, access control systems, network communication protocols and topology, security engineering, public key infrastructure and identity and access management concepts. 8. Experience with security/risk-specific program/program component development, e.g. information security governance & continuous improvement, security awareness, vulnerability management, data protection, endpoint protection, identity & access management, cryptography & key management, business continuity/disaster recovery, incident response. 9. Direct experience with IT-based audit processes. 10. Excellent written and verbal communication skills; interpersonal and collaborative skills; and the ability to communicate security and risk-related concepts to technical and nontechnical audiences. 11. Must be a critical thinker with strong problem-solving skills. 12. Knowledge of technological trends and developments in the area of information assurance and risk management. 13. Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals. 14. Knowledge of security and control frameworks, such as CIS, NIST, NIGC MICS, PCI DSS, COBIT, and ITIL. 15. Experience with contract and vendor negotiations. 16. High level of personal integrity and ethical standards and the ability to professionally handle confidential matters and exemplify the appropriate level of judgment and maturity. 17. High degree of initiative, dependability and ability to work with little supervision. 18. Must possess and maintain a valid driver's license and be able to substantiate a safe driving record within the parameters acceptable to our liability insurance carrier. Language Skills and Reasoning Ability: 1. Must possess excellent communication skills: listening, writing, speaking, and interpersonal skills. 2. Must have the ability to speak effectively to the public, employees, customers and vendors. 3. Must have the ability to deal effectively and interact well with the customers, vendors and employees. 4. Must have the ability to resolve problems/conflicts in a diplomatic and tactful manner. Physical Requirements and Work Environment: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment is usually moderately loud. When on the casino floor, the noise levels increase to loud. Must be able to work in an environment where smoking is permitted. 1. Must be able to stand, walk, and move through all areas of the casino. 2. Maintain physical stamina and proper mental attitude to work under pressure in a fast-paced, casino environment and effectively deal with customers, management, employees, and members of the business community in all situations. Salary Starting Rate:$143,936.95 Compensation is negotiable based on experience and education. Each position has varying minimum qualifications. In the absence of fully qualified candidates, some requirements may be waived.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ***************** We have been retained for providing recruiting assistance, for direct hires, by one of the world-leading information technology consulting, services, and business process outsourcing organization that envisioned and pioneered the adoption of the flexible global business practices that today enable companies to operate more efficiently and produce more value. Job Description Required Skills: • knowledge of SAP Identity Management 7.2 version • knowledge of SAP IDM integration points with SAP and non-SAP products/tools • LDAP/Active Directory, PD-Org, NWBC, Solution Manager 7.1. • Experience in SAP security, SAP GRC is a plus. • Basis experience is a plus • 6+ years of SAP Identity Management Implementation and support experience. • Experience as the SAP IDM SME in at least 2 implementations • Experience with gap analysis and strategic roadmap/blueprint development • Experience in configuring SAP IDM for user provisioning in a complex SAP landscape comprising of ABAP, JAVA and duel stack systems as well as non-SAP systems • Involve in Onsite-Offshore coordination activities (handover-takeover, off business hour activity tracking, offshore reporting) • Provide SAP IDM support to SAP implementation as well as support teams and internal customers/clients Additional Information All your information will be kept confidential according to EEO guidelines.

Job Title:Information Security Risk Compliance Manager Descrption Seeks an Information Security Risk Compliance Manager who will have the responsibility for several functions associated with IT security - from ensuring the security of software to selecting and/or constructing and deploying broader network security systems. Scope of Work Objectives: The Information Security Risk Compliance Manager oversees the organization's efforts in Risk assessment, Risk mitigation, Compliance management, Security governance, incident response, vendor risk management, Security awareness and training, Security audits and assessments, reporting and communication, continual improvement, and cross-functional collaboration. Their role is to ensure that the organization's systems, networks, and processes are secure, compliant with regulations and standards, and aligned with organizational goals and objectives. Requirements Responsibilities: Conduct risk assessments to identify potential threats and vulnerabilities to the organization. Develop and implement risk management strategies and policies to mitigate identified risks. Monitor and evaluate risk exposure across various departments and business units. Coordinate with stakeholders to ensure compliance with regulatory requirements and industry standards. Communicate risk management strategies and findings to senior management and relevant stakeholders. Lead the development and maintenance of the organization's risk register and risk management framework. Provide guidance and support to departments and teams in implementing risk mitigation measures. Conduct training and awareness programs on risk management principles and practices. Continuously monitor and review the effectiveness of risk management strategies and adjust as necessary. Stay updated on emerging risks and industry trends to proactively address potential threats to the organization. Maintain and enhance the company-wide security awareness program. Take ownership of establishing and enforcing security standards both within the team and across the organization. Work proactively and collaboratively to achieve change management and buy-in. Deliverables: Compliance Management: Ensure compliance with relevant regulations, standards, and frameworks such as GDPR, HIPAA, ISO 27001, NIST, etc., by establishing and maintaining appropriate controls and processes. Risk Mitigation: Develop and oversee risk mitigation strategies and controls to address identified security risks, including implementing technical controls, security best practices, and security awareness training programs. Incident Response: Develop and implement incident response plans and procedures to effectively respond to and manage security incidents, including data breaches, cyberattacks, and security breaches. Vendor Risk Management: Assess and manage risks associated with third-party vendors and service providers, including evaluating their security posture, conducting due diligence assessments, and ensuring contractual compliance. Cross-functional collaboration: Collaborate with IT teams, legal, HR, compliance, and other departments to ensure a holistic approach to information security risk management and compliance. Continual Improvement: Monitor industry trends, emerging threats, and regulatory changes to ensure that the organization's information security risk and compliance programs remain up-todate and effective. Preferred Skills: Excellent verbal and written communication skills. Ability to work both independently and as part of a team. Knowledge of Networking (Firewall, Networking Protocols); Working knowledge Frameworks Working knowledge of Information Security Domains Working knowledge of Security protocols Working knowledge of Cloud

Location: Atlanta, Chicago, New York, Hoboken, Pittsburgh, Philadelphia, Cleveland, Akron, Dallas, Los Angeles At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Every challenge and every opportunity an organization faces today demands change. And with change comes risk. As a Risk Technology professional, you will be addressing client issues such as business performance variability, business and process controls transformation, application security integrity, governance, risk, and control (GRC) technology enablement, continuous controls monitoring, and IT risk management. You will belong to an international network of specialists helping our clients transform risk functions and implement technology solutions that support risk management and governance. With rapid growth across the SAP and Governance, Risk and Compliance (GRC) space, we're looking for people who understand the challenges of risk management and can focus on improving business performance using GRC technologies. As a member of our Risk Technology national practice, you will belong to a network of professionals helping our clients implement technology solutions to enrich and improve decision making, provide visibility and transparency of risk and compliance to stakeholders, and automate manual processes. The opportunity As our Risk Technology practice continues to expand, we are seeking a highly motivated Senior Associate, focused on SAP application risk and controls and technology enablement, to manage client engagement teams, work with a wide variety of clients to deliver professional services, and manage business development activities on strategic and global priority accounts. We will support you with career-long training and coaching to develop your skills in risk strategy, risk function design, risk management and performance enhancement. Since EY is a global leading service provider in this space, you will be working with the best people in a collaborative environment so that whenever you join and for however long you stay, the exceptional EY experience lasts a lifetime. Your key responsibilities Leveraging your knowledge of IT environments and industry trends, you will work across competencies, service lines and sectors to develop innovation solutions to build and sustain risk management and governance programs for our clients. You will support EY teams responsible for transforming risk functions and implementing leading practice technology solutions. Skills and attributes for success You will leverage your SAP experience and project management skills, to effectively support client engagement teams and provide technical expertise in the assessment, design, and implementation of controls, security, and IT risk solutions. Deliver facts, analyses, and recommendations in an accurate, clear, and concise manner. Foster relationships with client personnel at appropriate levels Drive high-quality work products on your team within expected timeframes and budget. To qualify for the role, you must have A bachelor's or master's degree and approximately 2-3 years of related work experience Demonstrate an understanding of SAP business processes (e.g., purchase-to-pay, record-to-report, order-to-cash) Experience testing controls, sensitive access, and segregation of duties. Basic project management and client service skills Strong written and verbal communication skills Strong analytical and problem-solving skills Excellent teaming skills A valid driver's license in the US and a valid passport required; willingness and ability to travel both domestically and internationally to meet client needs. Ideally, you'll also have Prior experience as a consultant or client-serving professional. Industry related certification (e.g., CPA/CA, CISA, RICS) Strong understanding of IT industry trends Foundational understanding of SAP auditing What we look for We're interested in passionate leaders with strong vision and a desire to stay on top of SAP and GRC industry trends. If you have a genuine passion for helping businesses achieve leading practice risk functions, this role is for you. What we offer you At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more. We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $102,500 to $187,900. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $122,900 to $213,400. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. Are you ready to shape your future with confidence? Apply today. EY accepts applications for this position on an on-going basis. For those living in California, please click here for additional information. EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at **************************.

Qualifications Bachelor's degree required. Minimum five years of full-time professional experience in information technology, including evidence of successful and progressively responsible roles in information security or related area (including growth in levels of responsibility, complexity of work, numbers, and sophistication of employees) related to the essential responsibilities listed. Demonstrated fluency in written and spoken English with the sophistication necessary to effectively communicate technical details to both technical and non-technical individuals. Demonstrated willingness and ability to carry out the essential responsibilities listed with humility, grace, and optimism. Demonstrated understanding of, sensitivity to, and respect for the academic, cultural, and social diversity in the Hofstra University community. Preferred Qualifications Advanced degree in computer science, computer engineering, information security, or related field strongly preferred. One or more relevant professional certifications (e.g., CISSP , CISM /A, etc.) strongly preferred. Experience with state and federal information security regulatory requirements ( GLBA , FERPA , HIPAA , etc.) and other compliance requirements ( PCI , etc.). Knowledge of and experience applying industry-standard IT security frameworks ( NIST , IHECF , etc.). Significant experience in computing and information security, network security issues, and security incident response and recovery in a higher education environment. Significant experience in communicating information security principles and concepts to non-technical stakeholders, and success in improving cybersecurity awareness in a higher education environment. Working knowledge of the information security policy and regulatory environment of information security, particularly in higher education. Demonstrated experience and success in advising and collaborating with key stakeholders relevant to the essential responsibilities listed, including senior leadership, Internal Audit, outside auditors, and consultants. Professional experience in a leadership role in a higher education institution.

Toronto, Ontario, Canada **Hours:** 37.5 **Line of Business:** Technology Solutions **Pay Details:** 91,200 - 136,800 CAD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. **Job Description:** TD Bank is seeking a strategic and technically skilled Manager to join our Information Security team, focused on strengthening our fraud detection, authentication, and CIAM (Customer Identity and Access Management) capabilities. This role will lead the expansion of our monitoring and alerting footprint across enterprise platforms, ensuring control effectiveness, regulatory alignment, and rapid incident response in a complex financial environment. Key Responsibilities - Lead the design and deployment of monitoring and alerting strategies using Splunk, Datadog, Dynatrace, and Databricks across TD's digital ecosystem - Define alert thresholds and tuning logic to minimize false positives while maintaining high sensitivity to fraud and access anomalies - Oversee triage workflows for triggered alerts, coordinating with global teams to ensure timely investigation and resolution - Develop governance frameworks for alert lifecycle management, including setup, ownership, escalation, and audit readiness - Monitor control effectiveness across CIAM, authentication, and fraud domains, driving continuous improvement - Collaborate with fraud and cybersecurity teams to support incident investigations and mitigation strategies - Analyze alert trends and performance metrics to inform strategic improvements and risk prioritization - Champion automation and workflow optimization for alert handling, reporting, and compliance documentation - Ensure alignment with TD's enterprise risk management and regulatory obligations (e.g., OSFI, OCC) - Provide mentorship and leadership within the security monitoring team, fostering a culture of accountability and innovation Required Qualifications & Expertise - 5+ years of experience in information security, CIAM/fraud detection, or observability engineering within financial services - Hands-on expertise with Splunk, Datadog, Dynatrace, and Databricks for alert creation, analytics, and dashboarding - Strong understanding of CIAM, authentication protocols, and fraud risk indicators in regulated environments - Experience designing governance frameworks and control monitoring programs aligned with financial compliance standards - Proven ability to lead cross-functional teams and drive incident response processes across geographies - Excellent communication and documentation skills, with a strategic mindset and attention to regulatory detail **Who We Are:** TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues. TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you. **Our Total Rewards Package** Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical, and mental well-being goals. Total Rewards at TD includes a base salary, variable compensation, and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off, banking benefits and discounts, career development, and reward and recognition programs. Learn more (********************************************************************** **Additional Information:** We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home. Please be advised that this job opportunity is subject to provincial regulation for employment purposes. It is imperative to acknowledge that each province or territory within the jurisdiction of Canada may have its own set of regulations, requirements. **Colleague Development** If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals. **Training & Onboarding** We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role. **Interview Process** We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call. **Accommodation** Your accessibility is important to us. Please let us know if you'd like accommodations (including accessible meeting rooms, captioning for virtual interviews, etc.) to help us remove barriers so that you can participate throughout the interview process. We look forward to hearing from you! **Language Requirement (Quebec only):** Sans Objet Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.