Security architect jobs in Spring Hill, FL

The Director of Information Security, reporting to the Head of IT, will ensure security requirements are consistently practiced, improve compliance with security standards and policies globally and own design and enforcement of global information security standards. You will have a broad technical background, a solid grasp of cloud technologies and the courage to most insistent advocate for security and privacy in the company. What You Will Do: Define network security, infrastructure hardening, monitoring, and breach detection infrastructure Own global compliance with GDPR, ISO, SOC and CCPA and all data and security compliance issues. Oversee internal and external IT audits, scans, vulnerability testing, and mitigation. Design, implement and continuously update security requirements, policies and standards for all of OPSWAT, including privileged account access, management, control, and monitoring standards. Manage secure, consistent change management and deployment practices in an enterprise environment. Implement security awareness training programs. Design and approve of platform, application, storage, network, virtualization, cloud and mobile security standards and methodologies. Develop technical designs for a project to meet information security requirements based on approved security architectures/design patterns. Develop, review, and approve the installation requirements for LANs, WANs, VPNs, routers, firewalls, and related network devices. Perform additional duties as assigned. What You Should Have: Bachelor's degree in Technology, Legal, Computer Science/Engineering, Cyber security, or related field/experience. 7+ years of working experience in an cloud environments. 4+ years of experience in cyber security. Deep understanding of AWS, Azure and GCP technologies and architecture. Experience implementing security both on premise and in AWS, Azure and GCP. Inside-out knowledge of Microsoft security technologies, platforms and patterns. Experience with security practices such as security incident response and risk management. Experience in the design, development, implementation and operational support of critical solutions in large scale environments and organizations. Knowledge and understanding of relevant legal and regulatory requirements related to GDPR, ISO, SOC and CCPA. A passion for cyber security. Excellent verbal and written communication skills with a wide variety of audiences including technologists, executives, business partners and IT team members.

ACTIVE TS/SCI SECURITY CLEARANCE REQUIRED We are seeking a TS/SCI-cleared Information System Security Officer (ISSO) to join our team and help strengthen the cybersecurity posture of critical federal systems. What You'll Do As an ISSO at D2, you'll play a key role in protecting high-value government systems. You will: Lead Security Documentation & Compliance Develop and coordinate all key authorization artifacts, including System Categorization, System Security Plans, and System Risk Assessments. Support control assessments, reporting, and ongoing monitoring using the CSAM (Cyber Security and Assessment Management) system. Keep components aligned with Core Controls and A-123 assessment timelines. Ensure all Risk-Based Decisions have current waivers and proper documentation. Strengthen System Security Posture Support security control testing, document results, assist in remediation, and ensure effective POA&M management. Develop or update Business Continuity Plans and Contingency Plans. Guide components on decisions affecting the security of their systems and networks. Prepare teams for tri-annual Security Assessment and Authorization (SA&A) activities. Perform Assessments & Provide Expert Analysis Conduct assessments of information system security requirements and recommend remediation priorities. Review system architecture, infrastructure, and SA&A documentation. Assess NIST 800-53 Rev. 4 controls and document outcomes. Evaluate and enhance standard SA&A documentation processes. Drive Risk Management & Continuous Improvement Perform and document risk assessments, evaluate vulnerabilities, and recommend risk-based mitigations. Develop and manage POA&Ms aligned with federal standards and industry best practices. Create System Security Plans, User Guides, and ST&E review documentation for new and legacy systems. Conduct NIST-based self-assessments and develop improvement plans. Develop Initial Privacy Assessments (IPA) and Privacy Impact Assessments (PIA). Conduct ST&Es and Independent Verification & Validation (IV&V) for federal IT systems. Conduct OMB A-123 security assessments for federal systems. What You Bring Bachelor's degree in Computer Science or a related technical field - or equivalent combination of education, certifications, and experience 8+ years of experience performing system security assessments, producing security documentation, or executing security upgrades across networks, servers, desktops, and databases 8+ years of experience developing and enhancing IT security policies aligned to federal and international standards 8+ years of IT security expertise, including experience developing C&A/SA&A packages and achieving ATO for classified systems Strong working knowledge of NIST SP standards, including NIST SP 800-37, and experience using CSAM TS/SCI clearance required, with eligibility for CI Poly At least one of the following certifications: CISA CRISC CISM CGEIT CISSP CAP Location Onsite at Customer Location U.S. Citizenship Required Additional Information All your information will be kept confidential according to appropriate guidelines. Compensation is unique to each candidate and relative to the skills and experience they bring to the position. The salary range for this position is typically $145k-159k. This does not guarantee a specific salary as compensation is based upon multiple factors such as education, experience, certifications, and other requirements, and may fall outside of the above-stated range. Highlights of our benefits include Health/Dental/Vision, 401(k) match, Accrued PTO, STD/LTD/Life Insurance, Referral Bonuses, professional development reimbursement, and more! D2 Consulting is committed to a merit-based recruitment process and encourages applications from all qualified individuals. As a Veteran-Owned Small Business, we particularly welcome applications from veterans who have the requisite skills and experience. Job applicants that are interested in one of our openings and may require a reasonable accommodation to participate in the job application or interview process, should contact us to request an accommodation.

Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. Job Summary: The Assistant Vice President in Security Engineering will be responsible for supporting and enhancing Unix-based security infrastructure across enterprise environments. This role requires deep technical expertise in AIX and RedHat Linux systems, along with strong scripting skills in Bash, Korn, Shell, and Python to automate security tasks and streamline operations. The candidate should be proficient in using Ansible for configuration management and have a solid understanding of TCP/IP networking principles. Key responsibilities include analyzing system logs to identify and resolve issues, utilizing Splunk and SIEM platforms for threat detection, and ensuring secure configurations across Unix systems. The role also involves working with threat detection tools and file integrity monitoring solutions, as well as managing SSH protocols and secure key access. Responsibilities: * Administer and secure Unix-based systems (AIX, RedHat Linux) across enterprise environments, ensuring compliance with internal security policies and external regulatory standards * Develop and maintain automation scripts using Bash, Korn, Shell, and Python to support security operations and system hardening * Assist in improving Ansible playbooks for secure configuration deployment and infrastructure consistency * Monitor and analyze system logs to identify anomalies, troubleshooting issues, and supporting incident response efforts * Utilize SIEM platforms such as Splunk to detect threats, correlate events, and support forensic investigations * Evaluate and remediate insecure configurations across Unix systems, contributing to continuous improvement of security posture * Support threat detection and file integrity monitoring initiatives, integrating tools and processes into Unix environments * Secure SSH configurations, including key management, access controls, and audit logging * Collaborate with cross-functional teams to support secure application deployments and infrastructure changes * Contribute to the development of security metrics and reporting to track system health, compliance, and risk indicators Qualifications: * 3 to 5 years background in IT administration with emphasis on Unix systems, including AIX and RedHat Linux * Proficient in scripting languages such as Bash, Korn, Shell, and Python, with a focus on security automation and tooling. * Experience with Ansible is a plus, but not required * Familiarity with TCP/IP networking, including secure configuration and troubleshooting * Skilled in log analysis and issue identification using native Unix tools and centralized logging platforms * Hands-on experience with Splunk and other SIEM technologies for monitoring and threat detection * Ability to identify and remediate insecure configurations across Unix-based systems * Exposure to threat detection methodologies and file integrity monitoring tools * Deep understanding of SSH, including secure key management and access control Education: * Bachelor's degree in Computer Science or a closely-related discipline, or an equivalent combination of formal education and experience "Visa sponsorship/support is based on business needs. We do not anticipate providing visa sponsorship/support for this position." The typical base pay range for this role is between $113k - $146k depending on job-related knowledge, skills, experience, and location. This role may also be eligible for certain discretionary performance-based bonuses and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below. MUFG Benefits Summary We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws (including (i) the San Francisco Fair Chance Ordinance, (ii) the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, (iii) the Los Angeles County Fair Chance Ordinance, and (iv) the California Fair Chance Act) to the extent that (a) an applicant is not subject to a statutory disqualification pursuant to Section 3(a)(39) of the Securities and Exchange Act of 1934 or Section 8a(2) or 8a(3) of the Commodity Exchange Act, and (b) they do not conflict with the background screening requirements of the Financial Industry Regulatory Authority (FINRA) and the National Futures Association (NFA). The major responsibilities listed above are the material job duties of this role for which the Company reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of conditional offer of employment, if any. The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified. We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual's associates or relatives that is protected under applicable federal, state, or local law.

Compensation: $110,000 - $150,000 based on experience and credentials Position Type: Full Time The IT Security Operations Manager oversees the operations of Suncoast Credit Union's security solutions. This individual establishes an enterprise security stance through policy implementation, architecture, and training processes. Key responsibilities include selecting appropriate security solutions and overseeing vulnerability audits and assessments. An ideal candidate is an ambassador who will interface with peers in the Systems and Network departments, along with other leaders, to share the organization's security vision and solicit involvement in achieving higher levels of enterprise security. Responsibilities * Create and maintain the security architecture design * Budget, evaluate, and recommend solutions to current or potential security threats related to the computing environment * Lead the design, implementation, operation, and maintenance of the Information Technology Security Framework based on the SANS Top 20 Critical Controls * Ensure the confidentiality, integrity, and availability of data residing on or transmitted through enterprise workstations, servers, databases, and other data repositories * Create and maintain the enterprise's security documents for standards, baselines, guidelines, and procedures * Ensure the enforcement of enterprise security documents * Collaborate with the Systems and Networking groups and other business units to ensure enterprise-wide understanding of security goals, solicit feedback, and foster cooperation * Assist with the security awareness training program * Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security within the enterprise's existing procurement processes * Oversee the deployment, integration, and initial configuration of new security solutions and enhancements to existing security solutions * Supervise the design and execution of vulnerability assessments, penetration tests, and security audits * Review and recommend new methods or procedures to make daily operations more efficient * Set goals and objectives for team members to achieve operational and strategic results * Direct and guide supervisors * Develop and mentor directly reporting staff and respond appropriately to feedback or concerns * Cultivate strong working relationships and build trust among team members * Interpret and implement management policies, utilizing short-term planning, scheduling, and coordinating for the department * Assist senior management with developing and implementing long-term and short-term business objectives * Develop, monitor, and maintain the department budget in cooperation with senior management * Assist the Vice President with regulatory compliance to ensure the department is in accordance with applicable laws and government regulations * Maintain knowledge and understanding of current trends, laws, and issues affecting the area of expertise Qualifications * Bachelor's degree in information technology, information security, or related field (A comparable combination of education, work experience, and training may be substituted for education requirements) * 7+ years of experience in enterprise security architecture design and enterprise security document creation, including management experience * Ability to temporarily relocate out of state to provide support for business continuity during major incidents such as weather events * Experience with designing and delivering employee security awareness training * Experience with developing Business Continuity Plans and Disaster Recovery Plans * Experience with various network protocols, firewalls, vulnerability assessment, penetration testing tools, remote access, network vulnerabilities, endpoint systems, vulnerabilities, and network management tools * Strong understanding of IP, TCP/IP, and other network administration protocols. * Proficient knowledge of security policies, standards, and procedures * Ability to prioritize tasks by effectively managing competing and changing priorities to meet deadlines * Accurate, detail-oriented, and organized with task management * Ability to analyze and resolve complex problems * Strong written, verbal, and interpersonal communication skills to interact effectively with members, staff, vendors, and government regulators * Ability to influence others regarding policies, practices, and procedures Benefits * Financial Well-Being: Bonus Program up to 18%, 401K Matching up to 8%, Retirement Planning, Pay Increases based on Competency, Employee Loan Discounts, Flex Spending Accounts * Wellness: Medical Coverage, Dental and Vision Coverage, Access to 4,000+ Gyms, Mental Health Resources, PTO Wellness Days, Short Term and Long Term Disability Coverage * Work-Life Balance: 11 Paid Holidays, 3 weeks of Paid Time Off, 4 weeks of Paid Parental Leave, Birthday PTO * Community Involvement: Paid Volunteer Hours * Growth: Degree Assistance up to $5,000 per year For more information, including additional benefits, please visit our benefits website at ************************************************ Responsibilities * Create and maintain the security architecture design * Budget, evaluate, and recommend solutions to current or potential security threats related to the computing environment * Lead the design, implementation, operation, and maintenance of the Information Technology Security Framework based on the SANS Top 20 Critical Controls * Ensure the confidentiality, integrity, and availability of data residing on or transmitted through enterprise workstations, servers, databases, and other data repositories * Create and maintain the enterprise's security documents for standards, baselines, guidelines, and procedures * Ensure the enforcement of enterprise security documents * Collaborate with the Systems and Networking groups and other business units to ensure enterprise-wide understanding of security goals, solicit feedback, and foster cooperation * Assist with the security awareness training program * Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security within the enterprise's existing procurement processes * Oversee the deployment, integration, and initial configuration of new security solutions and enhancements to existing security solutions * Supervise the design and execution of vulnerability assessments, penetration tests, and security audits * Review and recommend new methods or procedures to make daily operations more efficient * Set goals and objectives for team members to achieve operational and strategic results * Direct and guide supervisors * Develop and mentor directly reporting staff and respond appropriately to feedback or concerns * Cultivate strong working relationships and build trust among team members * Interpret and implement management policies, utilizing short-term planning, scheduling, and coordinating for the department * Assist senior management with developing and implementing long-term and short-term business objectives * Develop, monitor, and maintain the department budget in cooperation with senior management * Assist the Vice President with regulatory compliance to ensure the department is in accordance with applicable laws and government regulations * Maintain knowledge and understanding of current trends, laws, and issues affecting the area of expertise Qualifications * Bachelor's degree in information technology, information security, or related field (A comparable combination of education, work experience, and training may be substituted for education requirements) * 7+ years of experience in enterprise security architecture design and enterprise security document creation, including management experience * Ability to temporarily relocate out of state to provide support for business continuity during major incidents such as weather events * Experience with designing and delivering employee security awareness training * Experience with developing Business Continuity Plans and Disaster Recovery Plans * Experience with various network protocols, firewalls, vulnerability assessment, penetration testing tools, remote access, network vulnerabilities, endpoint systems, vulnerabilities, and network management tools * Strong understanding of IP, TCP/IP, and other network administration protocols. * Proficient knowledge of security policies, standards, and procedures * Ability to prioritize tasks by effectively managing competing and changing priorities to meet deadlines * Accurate, detail-oriented, and organized with task management * Ability to analyze and resolve complex problems * Strong written, verbal, and interpersonal communication skills to interact effectively with members, staff, vendors, and government regulators * Ability to influence others regarding policies, practices, and procedures Benefits * Financial Well-Being: Bonus Program up to 18%, 401K Matching up to 8%, Retirement Planning, Pay Increases based on Competency, Employee Loan Discounts, Flex Spending Accounts * Wellness: Medical Coverage, Dental and Vision Coverage, Access to 4,000+ Gyms, Mental Health Resources, PTO Wellness Days, Short Term and Long Term Disability Coverage * Work-Life Balance: 11 Paid Holidays, 3 weeks of Paid Time Off, 4 weeks of Paid Parental Leave, Birthday PTO * Community Involvement: Paid Volunteer Hours * Growth: Degree Assistance up to $5,000 per year For more information, including additional benefits, please visit our benefits website at ************************************************

Our client is a government contractor founded in 2008 whose mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent with a particular focus on Defense and National Security mission sets. They are seeking highly skilled and versatile Systems Security Engineer to join the centralized Zero Trust Leadership Cell (ZTLC) supporting U.S. Special Operations Command (USSOCOM) on the EDAT innovation contract. Qualified Systems Security Engineer should have the below skills: -A minimum of twelve (12+) years of progressive experience in IT/Cybersecurity, with at least 5 years focused on systems engineering, security engineering, or technical integration of complex enterprise systems within the DoD. -Must possess an active DoD 8570 IASAE Level II certification (e.g., CASP+ CE, CISSP, CSSLP). -Technical certifications in relevant domains such as Cloud (AWS/Azure Specialty), Networking (CCNP/JNCIP), or Identity (e.g., Okta, Ping) are highly valued. -Broad technical expertise across multiple ZT pillars, including ICAM, Network Security (SDN, Segmentation), Cloud Security (AWS/Azure), Data Protection, and Endpoint Security. -Strong understanding of Zero Trust Architecture (ZTA) principles (NIST 800-207) and the DoD ZT Reference Architecture. -Knowledge of authentication and authorization protocols (e.g., SAML, OAuth, OIDC) and access control methods (PKI, MFA, ABAC). This work is onsite in Tampa, Florida. Candidates must be a US Citizen with an active Top Secret level government clearance. Salary for this role is up to $160K for qualified candidates.

Slide Insurance - Fun. Innovation Driven. Fueled by Passion, Purpose and Technology. At Slide, you will not only be part of a successful team, but you will also be a part of our Slide Vibe/award winning culture where collaboration and innovation are expected, recognized and awarded! Duties and Responsibilities Security Strategy & Governance Develop and maintain the enterprise security roadmap aligned with business strategy, insurance-specific risks, and regulatory obligations. Responsible for the cybersecurity program and establish policies, standards, and procedures for cybersecurity, data protection, access control, and technology governance. Prepare executive-level reporting on security posture, key risks, and program maturity for CIO, Executive Leadership, and Audit/Risk Committees. Lead or support compliance with NIST CSF, ISO 27001, NAIC Model Law, state DOI cyber requirements (e.g., NY DFS, FL OIR etc.), SOX, GLBA, PCI, and privacy regulations. Cybersecurity Program Management Oversee the Security Operations Center (internal and/or external), including threat monitoring, incident detection, and incident response. Lead development of modern security architecture including zero-trust principles, cloud security, identity governance, and endpoint security. Mature vulnerability management, penetration testing, and security hardening activities across the organization. Direct development and testing of incident response plans, tabletop exercises, and post-incident analysis. Manage investigation of security alerts, vulnerabilities, and suspicious activities. Regulatory Compliance & Public Company Requirements Ensure compliance with NAIC cybersecurity model law, NIST CSF, ISO 27001, state DOI regulations, PCI, GLBA, and privacy requirements. Oversee preparation of cybersecurity-related SEC disclosures, including incident reporting and governance statements. Partner with internal departments to maintain required documentation and audit readiness. Lead third-party risk programs covering vendors, agents, service providers, and cloud platforms. Business Partnership & Insurance-Specific Risk Management Partner with Underwriting, Claims, Product, and Sales to ensure secure design of systems and workflows. Work with actuarial and underwriting teams on cybersecurity posture assessments relevant to cyber insurance offerings. Ensure contact center, agent portals, field adjuster tools, and policyholder self-service platforms meet security standards. Balance strong controls with operational efficiency in a high-volume insurance environment. Drive remediation efforts in partnership with infrastructure, networking, DevOps, and application teams. Lead business continuity and disaster recovery planning for critical systems. Third-Party Risk Management Lead cybersecurity assessments for vendors, agent platforms, cloud service providers, and third-party partners. Ensure contracts meet required security and privacy standards. Data Protection & Privacy Oversee data protection strategy, including encryption, access management, retention standards, and sensitive data governance. Implement and enforce data protection standards including encryption, retention, and secure data handling for policyholder and agent data. Monitor for data-loss risks and manage DLP tools and processes. Cloud & Application Security Partner with engineering and DevOps teams to implement secure cloud (AWS/Azure) architecture practices. Ensure security controls are embedded in system development, integrations, and modernization efforts. Support secure design reviews for new applications, claims tools, underwriting systems, and customer portals. Team Leadership & Capability Building Provide leadership to employees and regularly conduct effective and timely structured Progress & Growth Structured Dialogue sessions. Coach, train, and develop employees; set goals and lead to success. Conduct employee interviews and make staffing recommendations, as needed. Manage relationships with key technology and security vendors, including MDR/MSSP partners. Build a culture of security awareness across the enterprise, including training, phishing simulations, and workforce engagement. Perform other duties, as assigned. Education, Experience and Licensing Requirements: Minimum 8 years' progressive experience in cybersecurity or information security. 3+ years leading InfoSec or cyber teams, ideally within regulated industries (financial services, insurance, fintech, banking). Experience with cloud security (AWS, Azure), identity access management, and security architecture. Experience with public-company cybersecurity governance and regulatory reporting required. Prior experience in P&C insurance, financial services, or other regulated risk-based businesses highly preferred. Desired Certifications: CISSP, CISM, CISA, CCSP, CRISC. Qualifications/Skills and Competencies: Deep knowledge of cybersecurity frameworks (NIST CSF, ISO 27001, CIS Controls). Strong understanding of NIST CSF, CIS Controls, ISO 27001, and NAIC Model Law. Hands-on experience with SIEM, firewalls, endpoint protection, IAM, cloud security, and vulnerability tools. Proven ability to lead security programs in mid-sized organizations. Excellent communication skills with technical and non-technical stakeholders. Demonstrated ability to brief executives. Exceptional time management skills with ability to prioritize tasks and allocate resources efficiently. Proven ability to be adaptable and flexible; able to adjust to new requirements or unforeseen issues. Expert user of MSO/365 applications such as Microsoft Teams, SharePoint, Word, Excel, PowerPoint, and Outlook. Desire to live Slide's Core Values. What Slide offers to you: The Slide Vibe - An opportunity to be a part of a fun and innovation-driven culture fueled by Passion, Purpose and Technology! Slide offers many opportunities to collaborate and innovate across the company and departments, as well as get to know other Sliders. From coffee chats, to clubs, to social events - we plan it, so all Sliders feel included and Enjoy their Journey. Benefits - Created using Slider feedback, Slide offers a comprehensive and affordable benefits package to cover all aspects of health...Physical, Emotional, Financial, Social and Professional. A Lifestyle Spending Account is set up for each Slider and Slide contributes to it monthly for use on any benefit that individually suits you - Health Your Way! 2023, 2024 & 2025 BEST PLACE TO WORK - Tampa Bay Business Journal 2024 & 2025 TOP WORKPLACE - Tampa Bay Times (Local) & 2024 TOP WORKPLACE - USA Today (National)

Job DescriptionDescription: is contingent upon successful contract award. Prevailance is seeking a highly skilled Senior Information Security Analyst to support the planning, design, implementation, operation, and reporting of cybersecurity systems across complex network environments. This role requires deep experience with the DoD Risk Management Framework (RMF), system accreditation processes, cyber incident response, and vulnerability management. The ideal candidate brings strong technical expertise, the ability to interpret and action tasking orders, and the capability to train and mentor military personnel on cybersecurity best practices. Responsibilities include, but not limited to: Support planning, design, implementation, and operation of cybersecurity systems and architectures Manage RMF accreditation processes for new and existing systems, using service-level RMF tools Identify, track, and resolve cybersecurity vulnerabilities across networked systems and platforms Review network security configurations and assess system health and compliance status Monitor systems, activate remote terminals, and support resolution of cybersecurity incidents Receive, interpret, and respond to Cyber Tasking Orders (CCTOs), enterprise OpDirs, and other cybersecurity directives Support development and maintenance of cybersecurity diagrams, including system-level and operational-level views Execute robust change management processes and maintain configuration documentation Train military personnel in cybersecurity processes, best practices, and unit training requirements Assist in developing and executing cybersecurity training and education programs Provide subject matter expertise on vulnerability remediation, risk management, and cyber readiness reporting Requirements: Qualifications: 5-8 years of experience in cybersecurity system planning, design, implementation, operation, reporting, and RMF accreditation Experience identifying, tracking, and resolving vulnerabilities across networked systems Desired Qualifications: Senior-level cybersecurity and defensive cyber operations experience Skilled in accrediting systems using service RMF tools and managing lifecycle compliance Capable of interpreting and responding to CCTOs and OpDirs and managing incident resolution workflows Proficient in reviewing network security settings and monitoring system health Ability to train military personnel and support cybersecurity education initiatives Capable of producing system-level cybersecurity diagrams and maintaining change control documentation Strong analytical, documentation, and communication skills Education: Bachelor's degree (BA/BS) DoD IAT Level II or higher certification (e.g., Security+, CISSP, CASP+) Security+ plus Cybersecurity Workforce Master Certification also meets the requirement Clearance: Possesses Top Secret Clearance ( SCI preferred ) Secret may be acceptable depending on mission needs If you meet these qualifications and are ready to make an impact, we encourage you to apply today! Prevailance, Inc. proudly supports veterans as a member of the V3 (Virginia Values Veterans) program and the Hire Vets initiative. Recognized as a Top Workplace in 2025, Prevailance fosters a supportive, mission-driven environment for its team members. We provide a comprehensive benefits package to eligible employees, designed to support health, wellness, and financial security. Our benefits include: Medical Insurance TriCare Supplemental Dental Insurance Vision Insurance Life & Accidental Death & Dismemberment (AD&D) Coverage 401(k) Plan with Company Matching Contributions Paid Time Off (PTO) 11 Paid Holidays Education Reimbursement Program Computing Device Reimbursement Program Prevailance, Inc. is an Equal Opportunity/Affirmative Action Employer. All qualified candidates will receive consideration for employment and will not be discriminated against based on race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, age, pregnancy, genetic information, citizenship status, marital status or any other consideration prohibited by law or contract. Prevailance, Inc. participates in E-Verify and is VEVRAA Compliant.

Job DescriptionISSOEmployment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success:- Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership.- Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies.- Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO).- Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes.- Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF.- Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.- Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring.- Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications:- Bachelor's Degree.- A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc.- eMASS experience.- Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher.- Strong desktop publishing skills using Microsoft Word and Excel.- Experience with industry writing styles such as grammar, sentence form, and structure.- Ability to multi-task in a deadline-oriented environment. Ideally, you will also have:- CISSP, CASP, or a similar certificate is preferred.- Master's Degree in Cybersecurity or related field.- Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking.- Demonstrated ability to work well independently and as a part of a team.- Excellent work ethic and a high commitment to quality. Our Commitment:Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package.Health, Dental, and VisionLife Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation!Explore additional job opportunities with CGS on our Job Board:**************************************** more information about CGS please visit: ************************** or contact:Email: ******************* #CJ We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Overview Location: MacDill AFB - Tampa, FL Clearance Required: Active TS clearance (eligibility for SCI and ability to obtain a CI poly is required upon application for initial consideration) **We are not able to upgrade or sponsor clearances** Certification Required: CISA, CRISC, CISM, CGEIT, CISSP or CAP At Bcore, our strength comes from how we deliver impact to the mission. Whether it's architecting critical IT solutions, producing actionable intelligence, or developing cutting edge technology, we succeed because of the expertise, collaboration, and agility of our teams. Our Mission Services division combines enterprise IT, cloud solutions, DevSecOps, systems engineering, software development, and operational support. Bcore accelerates decisive advantage for warfighters and intelligence professionals by fusing human insight, rapid-fire engineering, precision-measured outcomes, and relentless grit into mission-ready solutions. Do you want to join a team that is building tailored technical solutions to modernize our government's mission and our client's business? Do you have a desire to change how people work? Are you interested in helping to protect our nation's cyber interests? Join our growing team supporting the NGA customer missions as an Information System Security Officer (ISSO). Responsibilities What you get to do every day: Develop and coordinate all authorization documentation associated including the Systems Categorization, Systems Security Plan, and Systems risk assessment Support the control assessment, reporting and monitoring processes using the Cyber Security and Assessment Management (CSAM) system Assist the component with staying on track with Core Controls and A-123 control assessment schedules Work with components to ensure each Risk Based Decisions (RBD's) has a current Waivers. Coordinate with CSS Customer Liaison support, including status of the process and POA&Ms. Support and document security controls tests, assist in remediation and ensure that POA&Ms are being appropriately managed. Develop or update the Business Continuity and Contingency Plan for the component. Assist the components with decisions that affect security of their systems and networks. Facilitate preparations for the tri-annual Security Assessment and Authorization (SA&A) component's Information System. Conduct assessments of information systems security requirements, evaluate current security posture and recommend priorities for remediation. Review information system infrastructure and application architecture to assess security requirements Review existing SA&A documentation, Security Assessment Report and security infrastructure (i.e. IDS, firewalls, vulnerability scan tools, etc.) Assess NIST 800-53, Rev 4. Control and document results Evaluate and strengthen standard SA&A Documentation Perform and document risk assessments, analyzing security vulnerabilities, and the metrics to measure the risks associated with those vulnerabilities; Based on the risk profile of the analyzed systems, development and documentation of a Plan of Action and Milestones (POA&M) for mitigating those risks; Design and development of comprehensive Systems Security Plan, covering at a high level the infrastructure, policies and procedures which define the systems security profile for the analyzed systems; Development of Systems Security Users Guides specific to selected networks, desktop computers, servers and data base systems; Design, development, and validation of System Test and Evaluation (ST&E) reviews for new and/or legacy systems. Review and conduct NIST-based Self Assessments, identifying any weaknesses which need to be addressed, and developing a POA&M for each of those weaknesses based on industry best practices. Design and development of Initial Privacy Assessment (IPA) and Privacy Impact Assessments (PIAs) for each major Federal Government IT Systems Developing and conducting System Test and Evaluations (ST&Es) and Independent Verification and Validation (IV&Vs) of the security profiles of Federal Government IT Systems Conduct OMB A-123 security assessments of Federal Government IT Systems. Qualifications Clearance Required: Active TS clearance (eligibility for SCI and ability to obtain a CI poly is required upon application for initial consideration) **We are not able to upgrade or sponsor clearances** Certification Required: Current certification in one or more of the following IT Security disciplines: ISACA - Certified Information Systems Auditor (CISA) ISACA - Certified in Risk and Information Systems Control (CRISC) ISACA - Certified Information Security Manager (CISM) ISACA - Certified in Governance of Enterprise IT(CGEIT) (ISC)2 - Certified Information Systems Security Professional (CISSP) (ISC)2 - Certified Authorization Professional (CAP) Education/Experience: Requires Bachelor's degree 8+ years' experience performing systems security assessments, preparing system security documentation, and/or performing security upgrades for live networks, desktop systems, servers, and enterprise data bases leading to successful certification and accreditation or security authorization of such systems. 8+ years' experience assessing and enhancing IT systems security policies and procedures in response to the regulatory requirements associated with Federal and International standards. 8+ years IT Security experience with extensive knowledge in security regulations and security assessments having developed numerous security C&A (or SA&A) and ATO on a range of systems including classified systems Strong working knowledge with NIST Special Publications and the NIST SP 800-37 SA using CSAM system What is ideal? Intelligence Community Experience preferred What you can expect from us Recognizing great achievements do not go unnoticed by bcore through service anniversaries, spot awards, and employee referral bonuses You'll join a growing organization of passionate, top-shelf, IT engineering professionals with extensive experience in actively developing the technology revolution in the Intelligence community Highlights of our benefits include Health/Dental/Vision, 401(k) match and potential Profit Sharing, Universal Leave, STD/LTD/Life Insurance/Voluntary Life Insurance, Stipends, Referral Bonuses, and more! Compensation is unique to each candidate and compensation packages are based on education, experience, and other requirements. BCore is proud to be an equal opportunity workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, sexual orientation or any other characteristic protected by law.

The Cyber Security Systems Engineer provides cyber defense analysis and engineering support for MARCENT systems, ensuring resilience and compliance against advanced threats. This role engineers security solutions for MARCENT communications systems, conducts vulnerability assessments and security audits, implements DoD cybersecurity standards, and provides documentation and training on cyber defense posture. With 7-10 years of experience, the engineer applies expertise in network security analysis, packet inspection, threat hunting, vulnerability assessment, SIEM operations, and forensic analysis. By integrating technical expertise with operational awareness, the Cyber Security Systems Engineer ensures MARCENT systems remain secure, compliant, and ready to counter evolving cyber threats. *THIS EMPLOYMENT IS CONTINGENT UPON CONTRACT AWARD* Responsibilities/Duties: * Engineer security solutions for MARCENT communications and information systems. * Conduct vulnerability assessments, penetration testing, and security audits to identify risks. * Implement DoD cybersecurity standards and RMF requirements. * Provide documentation, training, and guidance on MARCENT's cyber defense posture. * Perform network security analysis, including packet inspection and traffic monitoring. * Conduct threat hunting and vulnerability assessments to proactively identify risks. * Operate SIEM platforms, triage alerts, and conduct malware behavior and forensic analysis. * Apply frameworks such as the cyber kill chain and ATT&CK models to enhance defense strategies. Supplemental Duties: * Assist in developing SOPs for cyber defense operations and incident response. * Support compliance audits and RMF documentation requirements. * Contribute to after-action reviews and lessons learned from cybersecurity incidents. Administrative Duties: * Maintain compliance with MARCENT administrative procedures and reporting requirements. * Ensure cybersecurity documentation is archived according to records management standards. Supervisory Responsibilities: None. Education/Experience/Qualification: * Bachelor's Degree in Cybersecurity, Computer Science, or related discipline required. * 7-10 years of experience in cybersecurity engineering for DoD or military systems. * DoD IAT II or above certification required (e.g., Security+, CISSP). * Experience in network security analysis, packet inspection, and threat hunting. * Proficiency in SIEM operations, alert triage, and forensic/malware behavior analysis. * Experience with RMF documentation and compliance auditing. * Familiarity with frameworks such as kill chain and ATT&CK models. * Strong communication and briefing skills for both technical and non-technical audiences. * TS/SCI clearance required. Additional Skills: * Ability to engineer innovative cybersecurity solutions tailored to operational needs. * Strong analytical skills to assess risks and develop mitigation strategies. * Proficiency with Microsoft Office Suite and cybersecurity tools. * Attention to detail in documentation, compliance, and reporting requirements. Location: Primary workplace is MARCENT Headquarters, MacDill Air Force Base, Tampa, Florida. Work Environment: Office environment within a joint military/civilian/contractor staff. Includes coordination with cybersecurity teams, IT personnel, and external DoD partners. Physical Demands: Primarily sedentary office work with extensive computer use. May involve occasional travel to support cybersecurity inspections, training, or incident response activities. Work Schedule: Full-time, 40 hours per week. Monday-Friday, 0800-1600. May require flexibility during cybersecurity incidents or system upgrades. License and Other Requirements: Valid U.S. Driver's License. Eligibility for issuance of a Common Access Card (CAC). Salary and Benefits: As stated during the hiring process. Security Clearance: TS/SCI clearance required. Travel: May include CONUS and OCONUS travel to support cybersecurity operations, training, and system sustainment.

At LaForce, we specialize in delivering access control, video surveillance, and intercom solutions that keep people and businesses secure. We're looking for a dedicated and skilled Security Integration Field Laborer in our Tampa, FL location to join our team. This role assists with installing and maintaining access control systems, video surveillance, and other electro-mechanical security products for commercial businesses. What You'll Do: As a Field Laborer, you will help with ensuring secure and functional installations for our customers. Every day will bring new challenges, from problem solving complex technical issues to learning new technologies in the security industry. Your day-to-day will include: * Helping with installing and programming access control systems, CCTV, intercoms, security systems, and electrical hardware with precision and efficiency. * Troubleshooting and adjusting new or existing systems to meet customer needs. * Safely handling disassembly and removal of electrical products and door hardware. * Training customers on new and existing systems and software. * Producing quality results on time and within budget, representing the company professionally, and fostering strong customer relationships. * Helping with accurate wiring diagrams upon project completion for future reference. * Maintaining clear, professional communication with customers, sales staff, and supervisors. * Operating a company vehicle safely and respectfully in accordance with company policy. What You'll Bring: We welcome applicants with technical certificates, equivalent professional experience, or relevant military experience in electrical or mechanical fields. The ideal candidate has knowledge of low-voltage electrical wiring, the ability to read wiring diagrams and blueprints, strong problem-solving skills, and a valid driver's license with a clean record. Physical Requirements This role demands physical stamina and precision, including: * Frequently standing, walking, climbing ladders, and lifting up to 40 pounds. * Occasionally carrying loads up to 75 pounds * Performing tasks requiring elevated activity. Why Join LaForce? At LaForce, you're part of a team dedicated to growth, innovation, and excellence. From competitive pay to a supportive culture that values your ideas, we're here to help you thrive. You'll receive a cell phone stipend, company-provided tools, and comprehensive hands-on training. How to Apply Screening includes a drug test, background check, and driver's license verification. If you're passionate about security systems and looking to make a difference in the field, apply today! We look forward to meeting you!

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity SAAS Intelligence Group, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on Java/Python concepts and 5+ years applied experience in front end or back end development, enterprise code development. Skilled in planning, designing, and implementing enterprise-level security solutions. Proficiency in Python and/or Java for building secure, scalable software. Solid understanding of SaaS architectures, especially cloud-native patterns (AWS, GCP, or Azure). Experience implementing security controls across the SDLC (e.g., SAST, DAST, SCA). Ability to implement and maintain tools for application telemetry, event correlation, and threat detection. Proficient in all aspects of the Software Development Life Cycle. Experience with APIs, OAuth2/OIDC, and token management. Familiarity with SSPM (SaaS Security Posture Management). In-depth knowledge of the financial services industry and their IT systems. Preferred qualifications, capabilities, and skills Bachelors or Master's degree in data science/analytics, mathematics or engineering preferred.

Job Description Participate in the development and support of customer technical requirements Champion a collaborative, team-based environment, sharing standard methodologies and success and building positive relationships Plan, Design, Develop, Implement and Operate F5 products such as LTM, ASM, BIG-IQ and APM Manage the configuration on multiple physical and virtual F5 across multiple data centers Develop scripts and tools to automate configuration of a large number of network security devices distributed across multiple data centers Propose and implement system enhancements that will improve the performance and reliability of the network security infrastructure Applies capacity planning configuration changes as demanded by the business Address performance, scalability, and service architecture administration issues Design, install, configure, maintain network security services, equipment and devices Plan and support network security infrastructure Provide clear technical documentation and written procedures for issues identified and addressed Monitoring and troubleshooting of platform and OS based problems, network security infrastructure and connectivity issues Perform launch testing for new software releases and the introduction of new features Coordinate equipment orders including physical or virtual appliances, as well as upgrading, monitoring, testing and servicing the systems as needed Demonstrates knowledge of a broad range of technology towers i.e.: Storage, Virtualization, Intel, Networking, Data Center Migration and Disaster Recovery Knowledge of risk and controls landscape, ensuring company-wide standards are met Participate in change and incident management Anticipating potential problems and acting to minimize the impact they may have on the project or unit Ability to collaborate with different technology towers to achieve common goals Requirements Bachelor's degree in computer science, information systems, telecommunications, or an engineering focused field Must have an Active TS/SCI and willing to obtain a CI Poly 5+ years of relevant F5 experience with F5 LTM, ASM, BIG-IQ, and/or APM administration and life cycle management including experience with advanced iRule creation and troubleshooting Ability to handle multiple complex F5 configurations and deployments at once Understanding of networking at all layers of the OSI model; and Previous experience with web application technologies Experience deploying, managing, and troubleshooting network systems, switching, and routing protocol standards such as: TCP/IP, MPLS, OSPF, BGP, SDN, and 802.1x. Experience managing and troubleshooting DNS, DHCP, IPAM, and NTP in a large multi-site environment Ability to manage multiple stands of work simultaneously. Executes within a customer-centric environment. Excellent verbal and written communication skill Hands on experience with Python and APIs Self-driven with the ability to manage workload without direct supervision Must have the F5 201 certification 8570 IAT Level II Certification required Preferred Skills/Qualifications Experience with Infoblox DDI, Microsoft DNS, Dyn, VMWare Automation products (vRO, vRA) Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers' Compensation Relocation Assistance

Introduction This is highly responsible work in system and security administration across a variety of computer platforms and departments. Nature Of Work The Senior Security Systems Analyst plays a crucial role in safeguarding the integrity, confidentiality, and availability of sensitive information within the City of Tampa's digital infrastructure. As a key member of the Technology & Innovation Security Office, the incumbent will be responsible for designing, implementing, and maintaining robust security systems to protect against cyber threats, ensuring compliance with regulatory standards, and responding to security incidents. The Senior Security Systems Analyst will collaborate with various departments to assess security needs, recommend solutions, and contribute to the overall enhancement of the City of Tampa's cybersecurity posture. Examples of Duties Develops, implements, and maintains security architectures for critical systems and networks. Designs and oversees the implementation of security measures to protect digital assets and sensitive information. Monitors and analyzes security alerts, incidents, and vulnerabilities. Conducts regular security assessments and penetration tests to identify and address potential weaknesses. Responds promptly to security incidents and provides detailed post-event analyses. Contributes to the development and enforcement of security policies, standards, and procedures. Ensures compliance with relevant regulatory requirements and industry best practices. Collaborates with other IT staff and departments to integrate security measures into the overall IT architecture. Provides training and awareness programs to educate staff on security best practices. Assess and prioritizes security risks, recommending appropriate mitigation strategies. Conducts regular risk assessments and audits to identify and address potential vulnerabilities. Leads the response to security incidents, including coordinating with internal and external stakeholders. Conducts thorough investigations into security breaches, documenting findings and recommending corrective actions. Evaluates and manages third-party security vendors and tools. Collaborates with vendors to implement and maintain security solutions. Knowledge, Skills & Abilities Extensive knowledge of: cybersecurity principles, practices, and technologies; conducting internal security audits and assessments; conducting comprehensive risk assessments and presenting findings to stakeholders; coordinating with vendors and external partners to implement security solutions; implementing and managing security technologies, including firewalls, antivirus software, intrusion detection systems, and endpoint protection solutions. Knowledge of: developing, implementing, and enforcing security policies, standards, and procedures; identifying and implementing improvements to enhance the overall security posture of the organization; security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls; leading incident response efforts, including the ability to analyze and contain security incidents effectively. Ability to: assess and prioritize security risks, understanding their potential impact on the organization; communicate technical details to non-technical stakeholders during incident response efforts; understand regulatory requirements applicable to government entities and the ability to ensure compliance; provide security training and awareness programs for staff; prioritize and manage multiple tasks efficiently, meeting deadlines and delivering high-quality results; troubleshoot and resolve security incidents promptly; pursue relevant certifications and professional development opportunities; staying current with emerging cybersecurity threats, trends, and technologies. Skills in: critical thinking and a proactive approach to identifying and addressing security vulnerabilities; developing and implementing risk mitigation strategies and controls; conducting thorough security investigations, documenting findings, and recommending corrective actions; managing security projects from inception to completion; strong interpersonal skills for effective collaboration with cross-functional teams and various departments; strong analytical skills to assess complex security issues and provide effective solutions; excellent written and verbal communication skills to articulate complex security concepts to both technical and non-technical audiences. Physical Requirements Mostly sedentary, indoors, requires extended use of computer, typing and viewing monitor. Minimum Qualifications Bachelor's degree in Information Technology, Computer Science, or a related field. Proven experience (minimum of 5 years) in a senior-level security role, preferably within a government or public sector environment. Licenses or Certifications Possession of a valid drivers license may be required. Relevant certifications (e.g., CISSP, CISM, or equivalent) is preferred. Examination Evaluation of education and experience. Drug testing is included in all pre-employment processing. Comments Employees may be required to work rotating shifts, including nights, weekends, holidays, and overtime as needed. During periods when the Mayor issues an emergency declaration for the City of Tampa, all employees may be required to work in preparation, response or recovery activities related to the stated emergency. Conclusion HELPFUL HINTS FOR COMPLETING YOUR APPLICATION: Please register before you begin the application process. This will enable you to view and re-use information from previously submitted applications to complete and submit any future applications. Please make certain your application is complete and the information you provide clearly demonstrates that you possess the minimum job qualifications as stated in the job announcement. Resumes can be submitted in support of an application, but not in lieu of an application. Resumes and copies of certifications or other required documents may be attached to your online application.

We are seeking a Channel Security Engineer (SE) based in Miami to partner closely with our Channel Sales team. This role is instrumental in driving technical alignment and growth across Fortinet's partner ecosystem. The SE will play a key role in pre-sales technical support, partner enablement, solution development, and driving joint strategy with our channel partners. The ideal candidate will possess a strong network security background, with additional experience in cloud security, SASE, application security, OT, and SecOps being highly desirable. Experience working with or for resellers, MSSPs, or security vendors is considered a strong asset. We are looking for: Develop and execute a joint strategy in collaboration with your aligned Channel Account Manager (CAM), aligning partner initiatives with Fortinet's overall goals. Collaborate with Fortinet field teams (sales, SEs, marketing, overlays) and partner stakeholders (sales, technical, professional services, managed services) to build and launch joint go-to-market solutions. Drive sales growth in core network security while expanding partner capabilities across the broader Fortinet portfolio. Consult on the development of managed service offerings with key partners to address evolving customer and market demands. Act as the primary technical contact for assigned partners, working closely with the aligned CAM(s) to support and advance the partnership. Maintain a deep technical understanding of Fortinet products, the competitive landscape, and the latest security trends to articulate Fortinet's value and differentiation. Confidently present Fortinet solutions through whiteboarding, demonstrations, technical planning, and collaborative customer discussions…both remotely and in person. Manage multiple deals and initiatives simultaneously while ensuring a positive and professional experience for partners and customers. Deliver weekly updates to leadership on progress, partner engagement, and strategic initiatives. Host and participate in technical webinars, hands-on demos, and other partner-facing enablement activities. Support partner technical training events, including Fast Tracks and workshops, for SEs, Solutions Architects, and Professional Services engineers. Travel to partner sites and attend partner events (including occasional after-hours commitments) as needed to support relationship development and technical engagement. Engage across multiple business units within the partner ecosystem, including Cloud, Security, Pre-Sales, and Managed Services, prioritizing efforts based on mutual objectives. Candidates experience: 5-8 years of experience in technical pre-sales roles such as Pre-Sales Engineer, Solutions Architect, or Security Specialist. A proven ability to think strategically and act independently to drive sales opportunities to technical closure. A background in managing end-to-end technical aspects of deals, including scoping, solution design, and closure. Demonstrated problem-solving skills that have directly contributed to successful outcomes and key wins. Experience in building and maintaining technical relationships with channel partners, and the ability to effectively communicate with both internal and external stakeholders. Strong public speaking, presentation, and training skills, with the ability to convey complex technical topics to diverse audiences. Excellent written and verbal communication skills. Ability to clearly explain technical solutions and architectures using whiteboarding, Visio, or similar diagramming tools. A strong foundation in networking and security protocols, including TCP/IP, IPv4/IPv6, subnetting, DNS, HTTP, SMTP, RADIUS, LDAP, Active Directory, PKI, IKE, certificates, L2TP, SSL VPN, IPSEC, 802.1Q, VLANs, LACP, MD5, SSH, SSL, SHA1/512, 3DES, AES. Hands-on experience with technical troubleshooting in complex network or security environments. Deep technical knowledge in key technologies such as encryption and authentication, Wi-Fi, load balancing, application delivery, Ethernet switching, APIs, two-factor authentication, malware sandboxing, secure email gateways, WAF, cloud platforms (AWS, Azure), SDN, NFV, virtualization, centralized management tools, and security operations platforms (SIEM, EDR, MDR, XDR, NDR). Previous experience working for a vendor or reseller is considered an asset. Fortinet NSE certifications are an asset. Why Join Us: We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being. Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

Job Title: Junior GRC Analyst Openings: 1 Duration: 1 year +, potential to go perm Pay Rate: $40 Interview Process: 1 virtual, final onsite with team Minimum Qualifications & Experience Required Bachelor's degree in Information Security, Computer Science, Risk Management, or related field 1+ year experience in IT, cybersecurity, or healthcare Ability to assess and evaluate technical documentation (data flow and network architecture diagrams) and attestations /certifications (SOC 2, ISO) Familiarity with the HIPAA Security Rule, NIST CSF 2.0, and PCI-DSS Strong analytical, documentation, and problem-solving skills Excellent written and verbal communication skills for both technical and non-technical stakeholders Ability to manage multiple projects, collaborate across IT and business teams, and drive remediation efforts Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint) Nice To Have Qualifications & Experience Exposure to ServiceNow and Safe Security Exposure to Factor Analysis of Information Risk (FAIR) for quantitative risk analysis Basic understanding of first and third-party risk management concepts and practices Familiarity with AI security concepts and emerging frameworks (NIST AI RMF, OWASP COMPASS) Industry certifications such as CompTIA Security+, CRISC, or CISA Day-to-Day Responsibilities Conduct and document third-party risk assessments, reviewing security questionnaires, attestation/certification reports, BAAs, and technical diagrams Assist with risk quantification by gathering scenario inputs, impact drivers, and control maturity data. Support AI governance intake reviews and documentation for new use cases Track remediation and corrective actions related to findings, risks, and audit outcomes Assist in maintaining and updating risk registers and compliance documentation Assist in incident response documentation, root cause analysis, and identifying control improvements Support internal audits, e-discoveries, and evidence collection for regulatory and certification requirements Monitor and track remediation of identified risks and compliance gaps Help develop, document, and enforce security policies, standards, and procedures Collaborate with IT and business teams to ensure adherence to standards Prepare reports and dashboards for management on risk and compliance status Stay current on emerging regulations and security best practices

Slide Insurance - Fun. Innovation Driven. Fueled by Passion, Purpose and Technology. At Slide, you will not only be part of a successful team, but you will also be a part of our Slide Vibe/award winning culture where collaboration and innovation are expected, recognized and awarded! Duties and Responsibilities Security Strategy & Governance * Develop and maintain the enterprise security roadmap aligned with business strategy, insurance-specific risks, and regulatory obligations. * Responsible for the cybersecurity program and establish policies, standards, and procedures for cybersecurity, data protection, access control, and technology governance. * Prepare executive-level reporting on security posture, key risks, and program maturity for CIO, Executive Leadership, and Audit/Risk Committees. * Lead or support compliance with NIST CSF, ISO 27001, NAIC Model Law, state DOI cyber requirements (e.g., NY DFS, FL OIR etc.), SOX, GLBA, PCI, and privacy regulations. Cybersecurity Program Management * Oversee the Security Operations Center (internal and/or external), including threat monitoring, incident detection, and incident response. * Lead development of modern security architecture including zero-trust principles, cloud security, identity governance, and endpoint security. * Mature vulnerability management, penetration testing, and security hardening activities across the organization. * Direct development and testing of incident response plans, tabletop exercises, and post-incident analysis. * Manage investigation of security alerts, vulnerabilities, and suspicious activities. Regulatory Compliance & Public Company Requirements * Ensure compliance with NAIC cybersecurity model law, NIST CSF, ISO 27001, state DOI regulations, PCI, GLBA, and privacy requirements. * Oversee preparation of cybersecurity-related SEC disclosures, including incident reporting and governance statements. * Partner with internal departments to maintain required documentation and audit readiness. * Lead third-party risk programs covering vendors, agents, service providers, and cloud platforms. Business Partnership & Insurance-Specific Risk Management * Partner with Underwriting, Claims, Product, and Sales to ensure secure design of systems and workflows. * Work with actuarial and underwriting teams on cybersecurity posture assessments relevant to cyber insurance offerings. * Ensure contact center, agent portals, field adjuster tools, and policyholder self-service platforms meet security standards. * Balance strong controls with operational efficiency in a high-volume insurance environment. * Drive remediation efforts in partnership with infrastructure, networking, DevOps, and application teams. * Lead business continuity and disaster recovery planning for critical systems. Third-Party Risk Management * Lead cybersecurity assessments for vendors, agent platforms, cloud service providers, and third-party partners. * Ensure contracts meet required security and privacy standards. Data Protection & Privacy * Oversee data protection strategy, including encryption, access management, retention standards, and sensitive data governance. * Implement and enforce data protection standards including encryption, retention, and secure data handling for policyholder and agent data. * Monitor for data-loss risks and manage DLP tools and processes. Cloud & Application Security * Partner with engineering and DevOps teams to implement secure cloud (AWS/Azure) architecture practices. * Ensure security controls are embedded in system development, integrations, and modernization efforts. * Support secure design reviews for new applications, claims tools, underwriting systems, and customer portals. Team Leadership & Capability Building * Provide leadership to employees and regularly conduct effective and timely structured Progress & Growth Structured Dialogue sessions. * Coach, train, and develop employees; set goals and lead to success. * Conduct employee interviews and make staffing recommendations, as needed. * Manage relationships with key technology and security vendors, including MDR/MSSP partners. * Build a culture of security awareness across the enterprise, including training, phishing simulations, and workforce engagement. * Perform other duties, as assigned. Education, Experience and Licensing Requirements: * Minimum 8 years' progressive experience in cybersecurity or information security. * 3+ years leading InfoSec or cyber teams, ideally within regulated industries (financial services, insurance, fintech, banking). * Experience with cloud security (AWS, Azure), identity access management, and security architecture. * Experience with public-company cybersecurity governance and regulatory reporting required. * Prior experience in P&C insurance, financial services, or other regulated risk-based businesses highly preferred. * Desired Certifications: CISSP, CISM, CISA, CCSP, CRISC. Qualifications/Skills and Competencies: * Deep knowledge of cybersecurity frameworks (NIST CSF, ISO 27001, CIS Controls). * Strong understanding of NIST CSF, CIS Controls, ISO 27001, and NAIC Model Law. * Hands-on experience with SIEM, firewalls, endpoint protection, IAM, cloud security, and vulnerability tools. * Proven ability to lead security programs in mid-sized organizations. * Excellent communication skills with technical and non-technical stakeholders. * Demonstrated ability to brief executives. * Exceptional time management skills with ability to prioritize tasks and allocate resources efficiently. * Proven ability to be adaptable and flexible; able to adjust to new requirements or unforeseen issues. * Expert user of MSO/365 applications such as Microsoft Teams, SharePoint, Word, Excel, PowerPoint, and Outlook. * Desire to live Slide's Core Values. What Slide offers to you: The Slide Vibe - An opportunity to be a part of a fun and innovation-driven culture fueled by Passion, Purpose and Technology! Slide offers many opportunities to collaborate and innovate across the company and departments, as well as get to know other Sliders. From coffee chats, to clubs, to social events - we plan it, so all Sliders feel included and Enjoy their Journey. Benefits - Created using Slider feedback, Slide offers a comprehensive and affordable benefits package to cover all aspects of health...Physical, Emotional, Financial, Social and Professional. A Lifestyle Spending Account is set up for each Slider and Slide contributes to it monthly for use on any benefit that individually suits you - Health Your Way! 2023, 2024 & 2025 BEST PLACE TO WORK - Tampa Bay Business Journal 2024 & 2025 TOP WORKPLACE - Tampa Bay Times (Local) & 2024 TOP WORKPLACE - USA Today (National)

ISSOEmployment Type: Full-Time, Experienced Department: Information Technology CGS is seeking an Information Systems Security Officer (ISSO) with DIACAP and/or RMF experience who has deep expertise in security assessment documentation to support Dept. of Commerce systems and efforts to achieve their Authorization to Operate (ATO). This position is located at the client site in the Herbert Hoover building in Washington, DC. The scope of this position includes full life-cycle Assessment and Authorization (A&A) management through all 6 Steps of the RMF process in support of the Government ISSM.In this role, you'll conduct security assessment, and information system security oversight activities in accordance with NIST 800.53 that support systems from the perspective RMF requirements. CGS brings motivated, highly skilled, and creative people together to solve the government's most dynamic problems with cutting-edge technology. To carry out our mission, we are seeking candidates who are excited to contribute to government innovation, appreciate collaboration, and can anticipate the needs of others. Here at CGS, we offer an environment in which our employees feel supported, and we encourage professional growth through various learning opportunities. Skills and attributes for success:- Review systems to identify potential security weaknesses and recommend improvements to amend vulnerabilities, implement changes, and document upgrades. - Maintain responsibility for managing cybersecurity risk from an organizational perspective. - Identify organizational risks, prioritize those risks, and maintain a risk registry for escalating and presenting those risks to senior leadership.- Provide security guidance and IS validation using the National Institute of Standards and Technology (NIST) RMF, DoC, and local security policies.- Providing configuration management (CM) recommendations for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO).- Maintain vulnerability scanning tool compliance, such as HBSS or ACAS, and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, manage system changes, and assess the security impact of those changes.- Support security authorization activities, including transitioning from the legacy Information Assurance Certification and Accreditation Process (DIACAP) to compliance with the DoC RMF.- Provide subject matter expertise for cyber security and trusted system technology. - Apply advanced technical knowledge and analysis of specialized functional areas in task requirements to develop solutions to complex problems.- Research, write, review, disposition feedback, and finalize recommendations regarding cyber security policy, assessment and authorization assessments (A&As), security test and evaluation reports, and security engineering practices and processes. - Conduct research and write risk assessment reports to include risk thresholds, evaluation, and scoring.- Support analysis of the findings and provide expert technical guidance for mitigation strategies, including implementation advice on the cyber security risk findings, and other complex problems. Qualifications:- Bachelor's Degree.- A minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role in ATO package development, including generating security documentation for requirements, security control assessment, STIG and IAVA compliance, Standard Operating Procedures, test results, etc.- eMASS experience.- Professional security certification such as: CCNA Security, CySA+, GICSP, GSEC, CompTIA Security+ CE, SSCP, or higher.- Strong desktop publishing skills using Microsoft Word and Excel.- Experience with industry writing styles such as grammar, sentence form, and structure.- Ability to multi-task in a deadline-oriented environment. Ideally, you will also have:- CISSP, CASP, or a similar certificate is preferred.- Master's Degree in Cybersecurity or related field.- Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking.- Demonstrated ability to work well independently and as a part of a team.- Excellent work ethic and a high commitment to quality. Our Commitment:Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources. We combine cutting-edge technology with world-class personnel to deliver customized solutions that fit our client's specific needs. We are committed to solving the most challenging and dynamic problems. For the past seven years, we've been growing our government contracting portfolio, and along the way, we've created valuable partnerships by demonstrating a commitment to honesty, professionalism, and quality work. Here at CGS we value honesty through hard work and self-awareness, professionalism in all we do, and to deliver the best quality to our consumers mending those relations for years to come. We care about our employees. Therefore, we offer a comprehensive benefits package.Health, Dental, and VisionLife Insurance 401k Flexible Spending Account (Health, Dependent Care, and Commuter) Paid Time Off and Observance of State/Federal Holidays Contact Government Services, LLC is an Equal Opportunity Employer. Applicants will be considered without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Join our team and become part of government innovation!Explore additional job opportunities with CGS on our Job Board:**************************************** more information about CGS please visit: ************************** or contact:Email: ******************* #CJ

Job Description The Cyber Security Systems Engineer provides cyber defense analysis and engineering support for MARCENT systems, ensuring resilience and compliance against advanced threats. This role engineers security solutions for MARCENT communications systems, conducts vulnerability assessments and security audits, implements DoD cybersecurity standards, and provides documentation and training on cyber defense posture. With 7-10 years of experience, the engineer applies expertise in network security analysis, packet inspection, threat hunting, vulnerability assessment, SIEM operations, and forensic analysis. By integrating technical expertise with operational awareness, the Cyber Security Systems Engineer ensures MARCENT systems remain secure, compliant, and ready to counter evolving cyber threats. ***THIS EMPLOYMENT IS CONTINGENT UPON CONTRACT AWARD*** Responsibilities/Duties: - Engineer security solutions for MARCENT communications and information systems. - Conduct vulnerability assessments, penetration testing, and security audits to identify risks. - Implement DoD cybersecurity standards and RMF requirements. - Provide documentation, training, and guidance on MARCENT's cyber defense posture. - Perform network security analysis, including packet inspection and traffic monitoring. - Conduct threat hunting and vulnerability assessments to proactively identify risks. - Operate SIEM platforms, triage alerts, and conduct malware behavior and forensic analysis. - Apply frameworks such as the cyber kill chain and ATT&CK models to enhance defense strategies. Supplemental Duties: - Assist in developing SOPs for cyber defense operations and incident response. - Support compliance audits and RMF documentation requirements. - Contribute to after-action reviews and lessons learned from cybersecurity incidents. Administrative Duties: - Maintain compliance with MARCENT administrative procedures and reporting requirements. - Ensure cybersecurity documentation is archived according to records management standards. Supervisory Responsibilities: None. Education/Experience/Qualification: - Bachelor's Degree in Cybersecurity, Computer Science, or related discipline required. - 7-10 years of experience in cybersecurity engineering for DoD or military systems. - DoD IAT II or above certification required (e.g., Security+, CISSP). - Experience in network security analysis, packet inspection, and threat hunting. - Proficiency in SIEM operations, alert triage, and forensic/malware behavior analysis. - Experience with RMF documentation and compliance auditing. - Familiarity with frameworks such as kill chain and ATT&CK models. - Strong communication and briefing skills for both technical and non-technical audiences. - TS/SCI clearance required. Additional Skills: - Ability to engineer innovative cybersecurity solutions tailored to operational needs. - Strong analytical skills to assess risks and develop mitigation strategies. - Proficiency with Microsoft Office Suite and cybersecurity tools. - Attention to detail in documentation, compliance, and reporting requirements. Location: Primary workplace is MARCENT Headquarters, MacDill Air Force Base, Tampa, Florida. Work Environment: Office environment within a joint military/civilian/contractor staff. Includes coordination with cybersecurity teams, IT personnel, and external DoD partners. Physical Demands: Primarily sedentary office work with extensive computer use. May involve occasional travel to support cybersecurity inspections, training, or incident response activities. Work Schedule: Full-time, 40 hours per week. Monday-Friday, 0800-1600. May require flexibility during cybersecurity incidents or system upgrades. License and Other Requirements: Valid U.S. Driver's License. Eligibility for issuance of a Common Access Card (CAC). Salary and Benefits: As stated during the hiring process. Security Clearance: TS/SCI clearance required. Travel: May include CONUS and OCONUS travel to support cybersecurity operations, training, and system sustainment.