Security architect jobs in The Woodlands, TX - 109 jobs

Application Security Architect Reports To: Director, Corporate Security Architecture Employment Type: Full-Time About Us Tokio Marine HCC is a leading specialty insurance group with offices in the United States, the United Kingdom, Europe, Ireland, and other exciting locations. With the strength and stability that comes from being a member of the Tokio Marine Group, and more than forty years of growth, profitability, and stability, we offer important insurance products that most people don't even know exist. Every policy we write is special, enabling our clients to do amazing things. From insuring the crops that feed us to the rock concerts that entertain us, to rescuing international travelers in trouble, we offer more than 100 classes of specialty insurance. Applying our Mind Over Risk philosophy to writing insurance allows our customers to take on opportunity with confidence. That philosophy defines our way of thinking, unites us as a team, and differentiates us from our competitors. We are much more than just an insurance company; we are a good company. Role Overview We are seeking an Application Security Architect to join our Corporate Security team. In this role, you will serve as a trusted advisor and technical leader, driving secure design principles and modern security practices across a global, federated enterprise. You will collaborate closely with software development, infrastructure, and cloud engineering teams to ensure our applications are secure, scalable, and aligned with TMHCC's enterprise standards. As part of a dynamic and collaborative environment, you will influence the adoption of secure coding practices, integrate security into development pipelines, and shape the future of application security across multiple business units. Key Responsibilities • Shape and influence enterprise application security strategy across TMHCC's federated business model. • Define, advocate for, and implement secure design principles across cloud-native, containerized, and on-premises environments. • Develop and maintain secure architecture blueprints and reusable security patterns for enterprise adoption. • Conduct threat modeling and application architecture reviews to proactively identify and mitigate risks early in the lifecycle. • Integrate security testing tools (SAST, DAST, SCA, IAST, secrets scanning) into enterprise and business unit CI/CD pipelines. • Partner with DevOps, Infrastructure, and Cloud teams to embed security into development workflows and platform engineering practices. • Collaborate with developers, architects, and business unit leaders to promote secure development and consistent security standards. • Support incident response, risk, and compliance teams with application-related assessments and investigations. • Research emerging threats and technologies to continuously enhance TMHCC's application security maturity. Qualifications • Bachelor's degree in Computer Science, Cybersecurity, or related technical field (or equivalent experience). • Minimum of 5 years of experience in software development, software security, or application architecture. • Relevant certifications such as CISSP, CSSLP, or GIAC preferred. • Experience with AWS and/or Azure application security best practices. • Background in financial services, insurance, or other regulated industries is a plus. Skills & Experience • Strong knowledge of web application security principles, OWASP Top 10, and secure SDLC. • Experience designing and securing modern architectures (microservices, APIs, containers, serverless). • Proficiency in at least one major programming language (C#/.NET or Python). • Familiarity with application security tools (SAST, DAST, SCA, IAST, secrets scanning). • Excellent communication, influence, and collaboration skills across technical and non-technical stakeholders. Why Join Us? At TMHCC, we value innovation, collaboration, and professional growth. You'll have the opportunity to work on impactful projects, develop your expertise, and advance your career in a supportive and forward-thinking environment. What We Offer • Competitive salary and comprehensive benefits package • Strong learning culture and growth perspectives • 6% 401(k) Match • 20 days of PTO and 2 Floating Days • Paid parental leave • An opportunity to love what you do Equal Opportunity Employer Tokio Marine HCC is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. #LI-SD1

Who We Are At Corebridge Financial, we believe action is everything. That's why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow. We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life: We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners. We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders. We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future. We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work. Who You'll Work With The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles. About The Role The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture. Responsibilities Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization. Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies. Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls. Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes. Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams. Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk. Stay current on security threats, vulnerabilities, and technologies to enhance the organization's security posture. Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows. Skills and Qualifications 7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security. 5+ years of enterprise architecture experience required. Ability to create and review diagrams using tools such as Visio or Lucidchart. Familiarity with secure architecture patterns, reference architectures, and frameworks. Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce. Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM. Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation. Expertise in threat modeling, vulnerability management, and risk assessments. Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR. Relevant certifications such as CISSP, CCSP, or equivalent. Ability to work independently or collaboratively in a team-oriented environment. Bachelor's degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles. Technical Skills Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos. Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies. Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI). Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE. Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices. Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations. Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault. Common Security and Architecture Frameworks Security Frameworks: NIST Cybersecurity Framework (CSF) ISO 27001 and 27002 CSA CCM (Cloud Controls Matrix) CIS Controls Architecture Frameworks: SABSA (Sherwood Applied Business Security Architecture) TOGAF (The Open Group Architecture Framework) AWS Well-Architected Framework Preferred Certifications TOGAF (The Open Group Architecture Framework) SABSA Foundation or Practitioner CISSP-ISSAP (Concentration in Security Architecture) Certified Cloud Security Professional (CCSP) GIAC Security Architecture (GDSA) AWS Certified Solutions Architect - Associate or Professional AWS Certified Security - Specialty Microsoft Certified: Azure Solutions Architect Expert Soft Skills Strong analytical and problem-solving abilities. Excellent interpersonal and collaboration skills. Strong organizational and time management skills. Adaptability and a commitment to continuous learning of new technologies and methodologies. Attention to detail and dedication to delivering high-quality results. High level of integrity and ethical conduct. Industry-Specific Experience Experience in financial services, insurance, or other regulated environments. Proven ability to design and implement security controls that align with industry regulations and standards. Experience conducting security assessments and audits in regulated industries. Familiarity with industry-specific threats and vulnerabilities to tailor security solutions. Compensation The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate's geographic location, skills, experience and other qualifications. In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan. Corebridge also offers a range of competitive benefits as part of the total compensation package, as detailed below. Work Location This position is based in Corebridge Financial's Houston, TX or Durham, NC office and is subject to our hybrid working policy, which gives colleagues the benefits of working both in an office and remotely. #LI-SAFG #LI-CW1 #LI-Hybrid Why Corebridge? At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive. Benefit Offerings Include: Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being. Retirement Savings: We offer retirement benefits options, which vary by location. In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately. Employee Assistance Program: Confidential counseling services and resources are available to all employees. Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000. Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work. Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it. Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy. We are an Equal Opportunity Employer Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives. Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to ******************************************. Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law. We will consider for employment qualified applicants with criminal histories, consistent with applicable law. To learn more please visit: *************************** Functional Area: IT - Information TechnologyEstimated Travel Percentage (%): Up to 25%Relocation Provided: NoAmerican General Life Insurance Company

· Minimum of Bachelor's degree in Information Technology, Computer Science or related field of study required. · At least one professional information security certification required o CISSP, CCSP, CISM, SANS GIAC · Minimum 12 years' progressive experience in multiple information technology areas preferred · Minimum 8 years' experience in information security required Additional Information All your information will be kept confidential according to EEO guidelines.

Candidates can live within commutable distance to any Slalom office in the US. We have a hybrid and flexible environment. Who You'll Work With As a modern technology company, we've never met a technical challenge we didn't like. We enable our clients to learn from their data, create incredible digital experiences, and make the most of new technologies. We blend design, engineering, and analytics expertise to build the future. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are seeking an experienced AWS Security Architect with deep expertise in AWS cloud architecture, native & external security services, and regulatory compliance to provide advisory and delivery services aligned with the standards of a top-tier consulting firm. This role will partner with enterprise clients to design, assess, and implement secure AWS environments that meet business, compliance, and regulatory requirements. This role requires a strong blend of hands-on technical capabilities, architectural leadership, and client-facing advisory skills. As a trusted advisor, you will lead security strategy sessions, assess current cloud security postures, and deliver AWS-native and third-party solutions that align with best practices. You will work across multiple industry verticals, collaborating with engineering, security, risk, and compliance teams, and guiding clients through security transformation journeys and ensuring AWS adoption is secure, compliant, and resilient. This is a strategic technical consulting role suited for individuals who are passionate about cloud security, compliance, and helping clients adopt secure architectures in regulated environments. Key Responsibilities * Serve as a client-facing advisor, providing strategic guidance on cloud security transformation, governance, and operating models. * Lead cloud security assessments, maturity evaluations, and gap analyses, producing recommendations aligned with regulatory frameworks (e.g., NIST, ISO 27001, CIS, PCI DSS, HIPAA). * Design and implement AWS-native security architectures leveraging IAM, KMS, CloudTrail, Security Hub, GuardDuty, Macie, Detective, and Control Tower. * Establish governance, risk, and compliance (GRC) frameworks for AWS adoption, including policy-as-code and automated compliance monitoring. * Define and implement identity and access management (IAM) strategies, including federation, least privilege, and Zero Trust principles. * Guide clients in adopting secure application and data architectures, including encryption, data loss prevention, and secure API integrations. * Support incident response and forensics readiness through AWS-native logging, monitoring, and detection services. * Collaborate with DevOps and platform teams to integrate security into DevOps pipelines (DevSecOps) with automation for vulnerability management, code scanning, and compliance validation. * Collaborate with client executives to articulate cloud security roadmaps, business cases, and investment priorities. * Partner with internal teams to develop accelerators, templates, and reusable security patterns that improve time-to-value for clients. * Author client deliverables such as risk assessments, security architecture design documents, gap analyses, and roadmap plans. * Provide thought leadership via security workshops, executive briefings, and architecture reviews. * Stay current with AWS service releases, regulatory changes, and emerging cyber risks to inform recommendations. Core Qualifications * 8+ years of IT security experience with at least 4+ years focused on AWS security. * Proven consulting experience delivering security assessments, compliance programs, and cloud security roadmaps for enterprise clients. * Strong expertise in AWS security services (i.e. IAM, KMS, CloudTrail, GuardDuty, Macie, Security Hub, Detective, WAF, Shield). * Deep knowledge of cloud governance, risk management, and regulatory compliance frameworks (NIST, ISO, CIS Benchmarks, SOC 2, HIPAA, PCI DSS) and experience designing or assessing AWS environments aligned with these frameworks. * Hands-on experience embedding security into DevOps/DevSecOps pipelines and Infrastructure-as-Code (Terraform, CloudFormation, AWS CDK). * Experience designing ransomware detection, response, and business resilience strategies in AWS including backup, recovery, and isolation patterns. About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position, the target base salary pay range in the following locations: Boston, Houston, Los Angeles, Orange County, Seattle, San Diego, Washington DC, New York, New Jersey, for Consultant level is $119,000-$147,500 and for Senior Consultant level it is $136,500-$169,500 and for Principal level it is $151,000-$187,500. In all other markets, the target base salary pay range for Senior Consultant level it is $125,000-$155,500 and for Principal level it is $138,500-$172,000. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. We will accept applications until 3/31/2026 or until the positions are filled. We are committed to pay transparency and compliance with applicable laws. If you have questions or concerns about the pay range or other compensation information in this posting, please contact us at: ********************. EEO and Accommodations Slalom is an equal opportunity employer and is committed to attracting, developing and retaining highly qualified talent who empower our innovative teams through unique perspectives and experiences. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team or contact ****************************** if you require accommodations during the interview process.

Protects the organization's employees, properties and all items of value on premises from any preventable harm or danger. Develops security policies and procedures that comply with government guidelines and standards. Conducts investigations to protect organization assets. Responds to contingency events, including bomb threats, sabotage and severe weather conditions through on-site security force or with the assistance of government law enforcement agencies. Recommends hiring of outside security contractors as necessary and may oversee contract guard force. Responsibilities are within the Security function as a generalist or in a combination of disciplines. This role supports the U.S. Security Program within the SI organization, working closely with cross-functional teams and external partners to ensure security measures align with company policies and regulatory requirements. The team is responsible for safeguarding facilities and personnel across U.S. operations, and this position plays a key role in maintaining program integrity and collaboration. Responsibilities Identifies efficiencies and resolves system problems to ensure compliance with applicable industry standards. Maintains regular contact with internal stakeholders, including company and functional managers, as well as external partners such as clients, government officials, and peer security professionals. Interactions with agencies such as FBI, NSA, and local law enforcement are routine and integrated into existing programs for information exchange. Aligns physical security initiatives with cybersecurity protocols to support integrated, enterprise-wide protection strategies. Conducts ongoing functionality testing of technical security systems to ensure proper coverage and operation. Deploys physical security infrastructure, including barriers and centralized monitoring systems, to enhance facility protection and situational awareness. May contribute to strategic planning and supports the design, implementation, and maintenance of the security program. Participates in security audits and inspections to ensure compliance with internal and regulatory security standards. Monitors and reports unauthorized attempts to enter secure facilities to site contacts for action and timely response. Participates in security incident investigations, interviews, and/or security assessments. Depending on the nature of the incident, may lead investigations, conduct interviews, and produce formal reports and recommendations as part of the resolution process. Performs other duties as assigned. Administers and maintains the access management and surveillance systems as critical components of the security infrastructure. Access management includes supervision of access control systems, badge activation/deactivation, door locking/unlocking, and ID production. Designs content, coordinates and supports security awareness, education, training, and orientation programs for SI staff. May plan and deliver training sessions, coordinate with other departments.

Egis Cyber Solutions is a top tier infrastructure and security managed services company in the Houston area. As part of the Egis team, you will work alongside our clients and harness new technologies as you improve the efficiency and security of their businesses. You'll be part of an inclusive and diverse team, and you'll receive the training you need to help keep us-and you-greater than our competition. We have competitive salaries and benefits. Join us today. Job Description Senior Security Architect Job Duties: Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates. Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards. Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation. Verifies security systems by developing and implementing test scripts. Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. Upgrades security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements. Prepares system security reports by collecting, analyzing, and summarizing data and trends. Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations. Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments. Qualifications Senior Security Architect Skills and Qualifications: Network Security, Network Hardware Configuration, Network Protocols, Networking Standards, Supervision, Conceptual Skills, Decision Making, Informing Others, Functional and Technical Skills, Dependability, Information Security Policies Additional Information No H1-B sponsorship is available for this position. Local candidates only. No relocation. Benefits Competitive salary Bonus plan Medical, dental and vision insurance Life and short/long-term disability insurance Unlimited vacation and sick time Job Snapshot Employment: Type Full-Time Job Type: Information Technology, Consultant Education: Bachelor's Degree or Equivalent Experience Experience: 8 to 10 Years Manages Others: No Relocation: No Required Travel: Up to 25% Referral Bonus: None. Candidates only please

We're seeking an experienced Director of Information Security to join our dynamic team and help drive our growth. In this role, your job will be to coordinate people and processes to instill a “security first” mindset for information management, systems development, acceptable use of these systems, staff awareness, and oversight of our vendors and partners. This security professional will lead the management of risk and compliance of intellectual property, including day-to-day network and cyber tool monitoring, oversight, and ongoing security testing. The individual performing this role will enforce policies and procedures that ensure compliance with state, federal, and industry standards and requirements, ensuring our customers' and company's data are protected. As the Director of Information Security, you will implement a security-readiness plan and provide guidance on how to quickly and effectively respond to any and all security incidents. In addition, this role will be instrumental in implementing controls and monitoring capabilities that provide visibility into the organization's security posture. At RxVantage we transform how medical practices engage with life sciences resources and expertise to improve patient care. Our platform intelligently connects healthcare providers with the precise life sciences experts that they need, when they need them. As a result, medical practices stay on the cutting edge of patient care without disrupting workflows. Trusted by more than tens of thousands of healthcare practitioners and all major life sciences companies, RxVantage has powered millions of educational exchanges between healthcare teams and life sciences companies. What you'll be doing: Creating and implementing a security roadmap based on current and ongoing assessments Ensuring policies are developed and maintained from both a business & technical perspective for the application, data, and security needs of the organization Working with Legal to ensure agreements are congruent with policies Overseeing the GRC (Governance Risk and Compliance) process Ensuring compliance with industry laws and regulations for data security and privacy to include CCPR, 21 CFR Part 11, SOC2, NIST SP800-53 Monitoring the Identity and Access Management Framework Benefits: Competitive Salary 100% Company-Paid Premiums for Employee's Medical Health (HDHP 4500), Vision, and Dental Plans + $4,400 company sponsored contribution into an HSA Short-term and Long-term Disability Life Insurance 401k Matching Work from Anywhere within the US Flexible PTO 100% Paid Parental Leave Post-Parental Leave Program - $5k stipend to assist with expenses, 4 week 100% paid “Ease-Back” return to work transition period Charitable donation matching Location: Our “Work from Anywhere” philosophy is aimed at making sure that we recruit a diverse range of thought leadership to ensure that our technology is better able to serve local health care providers. Our goal is to hire the country's top talent and allow them to create an environment within the U.S. where they can do their best work. About Our Organization: At RxVantage, we're a small company with a big mission: to connect healthcare providers with the right life science experts and resources they need, exactly when they need them, to improve patient care. We've built a software platform that's changing the way providers learn about the latest medical advancements and technologies. Every year, our platform powers over 1 million educational exchanges between medical practices and life science companies, making it easier for them to stay informed and provide better care. We have a proven product, a strong mission, and a passionate team. Now, we're looking for talented people to help us grow even more. If you're driven, eager to make an impact, and ready to be part of something meaningful, we want to hear from you! --- RxVantage is an equal opportunity employer and dedicated to ensuring that we represent the local communities where our health and wellbeing providers serve as pillars of support to our family, friends, and neighbors. Our representation within these communities allows us to embody a diverse set of backgrounds, experiences, abilities and perspectives; and provide an inclusive environment for our team to feel empowered to be their authentic selves, without fear of harassment or discrimination.

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications PLEASE NOTE: While technical experience is a plus, this is not a technical information security position. It is best filled by someone with information security management or information technology audit experience. This is a leadership position requiring strong communication and analytical skills. Additional Information Job Status: Contract Eligibility: H1B/EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

Senior Security Analyst FLSA Class: EXEMPT Responsible to: Lead Security Architect The Senior Security Analyst plays a critical role in protecting our company's systems, data, and assets by monitoring threats, analyzing incidents, and implementing security measures. This individual will serve as a subject matter expert, providing technical guidance and helping drive improvements in our security posture. In addition, this role will support GRC efforts. What You'll Do: * Threat Monitoring & Incident Response * Monitor security alerts and events across various platforms including EDR, DLP, SIEM, and other tools. * Lead investigations of potential security incidents and coordinate response actions per the Security Incident Response Plan. * Perform root cause analysis and recommend remediation measures. * Vulnerability & Risk Management * Conduct vulnerability assessments, penetration testing support, and threat hunting leveraging tools and industry threat intelligence. * Partner with IT and Engineering teams to remediate findings and strengthen security controls. * Maintain an up-to-date understanding of emerging threats and attack vectors. * Security Operations * Monitor daily alert activities, escalate issues, and provide guidance to key stakeholders. * Tune detection rules, playbooks, and response workflows to improve efficiency. * Develop and maintain security documentation, including incident response playbooks and procedures. * Governance & Compliance Support * Assist with internal and external assessments and audits, evidence gathering, and regulatory requirements (e.g., SOC 2, ISO 27001, etc.) * Ensure security controls align with policies, standards, and best practices. * Collaboration & Leadership * Work cross-functionally with IT, Engineering, Legal, and Compliance teams. * Mentor and coach junior security staff. * Contribute to strategic security initiatives and roadmap planning. Other Requirements: * Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience). * 8+ years of experience in security analysis, SOC operations, or incident response. * Strong knowledge of security tools (SIEM, EDR, IDS/IPS, DLP, etc.) * Experience with vulnerability management and risk assessment. * Familiarity with cloud security (AWS, Azure, or GCP). * Excellent problem-solving, analytical, and communication skills. Nice to have: * Professional certifications such as CISSP, CISM, GIAC, CEH, or Security+. * Hands-on scripting or automation skills (Python, PowerShell, etc.). * Experience with GRC tools and compliance frameworks. * Background in mentoring or leading junior analysts. VoltaGrid is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, creed, color, religion, alienage or national origin, ancestry, citizenship status, age, disability or handicap, sex, marital status, veteran status, sexual orientation, genetic information, arrest record, or any other characteristic protected by applicable federal, state or local laws. Our management team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities, and general treatment during employment. #LI-LM1 #LI-onsite

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls team, you will oversee the security of our Storage product line, with a primary focus on Block products. This role is responsible for ensuring the security posture of file storage solutions through rigorous review, threat modeling, security configuration management, and drift detection. The ideal candidate will have deep expertise in storage security, threat analysis, and enterprise security best practices. **Job responsibilities** + Lead the security strategy, implementation, and ongoing management for all block storage products within the Storage product line. + Conduct comprehensive security reviews of file storage solutions, identifying vulnerabilities and recommending remediation strategies. + Define, implement, and manage security configurations for block storage products, ensuring alignment with JPMC security standards and industry best practices. + Work closely with product owners, engineering teams, and other stakeholders to embed security into the product lifecycle and provide expert guidance. + Stay current with emerging threats, technologies, and best practices in storage security. Drive continuous improvement initiatives for the security of file products. **Required qualifications, capabilities, and skills** + Formal training or certification on security concepts and 5+ years applied experience in security engineering, with a focus on storage and block products. + Strong expertise in threat modeling, vulnerability assessment, and security configuration management. + Experience with drift detection tools and methodologies. + Deep understanding of file storage technologies (NAS, SAN, cloud file storage, etc.). + Familiarity with regulatory requirements and compliance frameworks (e.g., SOX, PCI-DSS, GDPR). + Excellent analytical, problem-solving, and communication skills. **Preferred qualifications, capabilities, and skills** + Experience with automation and scripting (Python, PowerShell, etc.). + Knowledge of storage security (Lightbits, Netapp Solidfire, PowerFlex). + Experience with security monitoring and incident response tools. + Experience working in large enterprise environments, preferably in financial services. JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

Foley & Lardner LLP is a great place to work because of what we do and how we do it. Here, your unique perspectives, experiences, and abilities will be embraced and developed, so you can excel. Being a part of Foley means having the opportunities and resources necessary to gain experience, advance professional goals, and forge meaningful connections. It's a place where you can build your career and enjoy professionally satisfying work. We have over 2,300 people who are #HappyatFoley, and we think you will be too. Foley & Lardner LLP is currently seeking a Senior Security Engineer to join the Architecture team in our Information Security department. The Senior Security Engineer is responsible for engineering and implementing solutions to enhance the Firm's security infrastructure, collaborating with the Information Security team, internal IT, and business units. This role focuses on securing cloud-based environments through initiatives such as Cloud Security Posture Management (CSPM), DevSecOps practices (e.g., automated security testing in CI/CD pipelines), Identity and Access Management (IAM/IDM) administration, and participation in Information Security Architecture reviews. Key responsibilities include implementing and maintaining robust security controls for technology infrastructure and cloud platforms, while ensuring secure integration of emerging technologies, including AI systems. The role also serves as an escalation resource for the Information Security Operations team, providing advanced expertise and support. As part of a small team, you will provide security guidance for the technology environment, aiming to mature the security control framework, develop tailored solutions for cloud workloads, and enhance overall security posture. You will act as a security advocate, advising key stakeholders on technology risk management and balancing security with business needs through effective mitigation strategies, ensuring safe adoption of cloud and related technologies. Responsibilities * Work in active partnership with key stakeholders to perform security architecture risk reviews. * Develop and implement advanced-level Cloud Security solutions. * Support and advance the overall Information Security technology roadmap. * Provide recommendations for advancing the Information Security program, security policies, and security control standards to enhance operational practices. * Create and maintain Information Security standards applicable to all technologies in the portfolio. * Provide requirement, guidance, and vision to the vendor community to cultivate the appropriate combination of technology and feature capabilities to meet current and future security requirements. * Execute on infrastructure threat and vulnerability management processes. * Ensure security systems are upgraded by monitoring security environment, identifying security gaps and evaluating and implementing enhancements. * Define, develop and maintain metrics and measurements for information security controls and processes. * Respond to security-related issues, problems, crises, and critical situations to support resolution and minimize downtime. * Act as a senior-level point of contact for incident investigations and minor security events (e.g., unauthorized access, non-compliance with Firm policies, fraud, service disruptions, etc.) to determine malfunctions, breaches, and remediation steps. * Responsible for Information Security technology selection process to include requirements consolidation into RFI/RFP/RFQ, testing, POC, selection and deployment. * Support audits against internal and industry process, quality, and security standards; drive initiatives and remediation efforts to correct non-conformance. * Provide Information Security consulting on security related issues. * Collaborate with peers to identify and implement improvement initiatives across the Firm, processes and toolsets. * Manage multiple, parallel projects using formal project planning techniques. * Ability to work evening and weekend hours as needed or directed. Some travel may be required. Qualifications * High School Diploma or equivalent required; Associate's Degree or Bachelor's Degree preferably in Engineering, Information Technology, Computer Science, or similar strongly preferred * Minimum of five (5) years in a professional technical Information Technology role required * Minimum of three (3) years of hands-on experience in Information Security with Cloud Security exposure required * Specialized Cloud Security certification(s), CISSP, Microsoft Azure AZ-104 & AZ-500, CCSP, CCSK, or CPT/CEH desired * SailPoint Identity and Access Management (IAM/IDM) vendor-specific certification(s) desired #LI-Hybrid In support of transparency and equity in the workplace, Foley provides salary ranges for all positions. The figures below represent the full compensation range of this position. The actual offered amount will be between the range minimum and midpoint based on the following factors: education, experience, geographic market, and internal pay equity at Foley.Chicago - $111,500 to $167,300

Who are we? Sanlam Group Technology is responsible for the provision of a digitally enabled technology service as a group COE, drive business and transformation and provide group-wide digital and data architecture. We operate the various technology platforms and shared services, ensure Cyber and Information Security resilience, and act as technology governance and risk orchestrator for technology across Sanlam. What will you do? The Business Information Security Officer (BISO) is responsible for identifying and assessing the InformationSecurity requirements of the business. The BISO in conjunction with the Business CIO, is responsible for theestablishment and maintenance of an Information Security Management System (ISMS) and ensure that theappropriate Information Security controls are implemented, maintained and aligned with the GroupGovernance requirements (i.e. Policies, Standards, Procedures and Guidelines and Cyber ResilienceFramework). The BISO is responsible for Security Awareness, Information Risk Management and translatingrisks and the effect thereof to Lines of Business to ensure informed risk assessment. Other responsibilitiesinclude: Participation in Group Information Security bodies and initiatives, logical access management,incident response, vulnerability management, IT audit coordination, ensuring new systems adhere to securitypolicy and Providing management assurance regarding the Cyber and Information Security posture of the Business. What will make you successful in this role? Establish and manage a Business Information Security Programme, effective participation in GroupInformation Security Programme (GISP) initiatives, Information Security Incident response and Cyber CrisisManagement, Information Security Governance and assurance, Application (including cloud) and Infrastructure Security, and Cybersecurity Education, Training and Awareness. The BISO will implement processes and controls as agreed with the CISO and the Business CIO. The BISOwill be responsible for quality and cost effectiveness of delivery of information security services in the BU andwill report on these metrics to the GISP. Outputs * Regular feedback to Business Manco on Group-wide information security issues. * The BISO must have an action plan to implement these initiatives in the Business . * The BISO will report to the GISP Manager on new initiatives, plans and progress which will be discussed at the Cyber Steering Committee. * Review and improve existing IT and Information Risk assessment, reporting and management practices. * Up to date and complete Business IT and Information Security Risk register. * Documented Security risk management action plan. This must include relative priorities of agreed actions; Ownership of the actions; Agree timelines. Priorities will be aligned to Business and GIS Ppriorities. * Up to date and complete Business Cloud register (if these services are used in the Business). * Review and respond to Policies, Standards, Procedures and Guidelines and Risk Acceptance requests within the agreed time. * Document processes and artefacts that prove that the relevant Governance and Assurance processes were implemented as designed. * Clear and timely communication to management and users regarding planned group awareness campaigns. * Risk assessment that identifies a requirement for additional awareness or targeted education, training and awareness interventions. * Maintenance of Business/ Cluster and alignment with the Group annual security education, training and awareness plan. * Documented Logical Access review schedule for Line of Business Applications, review results, facilitate resolution, progress report on resolution of issues that were identified during the reviews. * Review and respond to audit findings related to application logical access and other Business specific Information Security findings. Ensure that the ratings are accurate. * Provide management comment to the audit observations/ findings, that is specific as far as actions anddue dates are concerned. * Track and follow up on audit finding commitments. * Report all cyber security incidents, or information security incidents (including privacy related incidents) where the compromise was through technology to the SGT CSIRT. * Be contactable or provide alternative contact details for Cybersecurity incidents that are identified by the SGT CSIRT. * Ensure appropriate actions are taken when policy breaches are identified in the Business. * Assist by facilitating engagement and communication with key stakeholders in the Cluster during amajor incident. * Provide context on system and process criticality. * Produce Quarterly Group ISO Forum and GISP reports. * Provide input into requirements documents - ensure security roles; auditing; data protection (in transit and rest); monitoring etc. are defined in line with approved. Information Security policies and standards. * Ensure that Security 'gates' are a formal part of the SDLC/ Agile/ relevant solution development methodology. * Interventions and role-players must be clearly specified. * Active participation in Sanlam sanctioned industry bodies (e.g. ISF Live, ISACA). * Timeous escalation of new, high or escalating risks. * Engage with application owners and Group Cyber Security Centre Operations Team to ensure that system vulnerabilities are addressed that were identified during Penetration tests, Red Team exercises or Vulnerability scans. Ensure that the Business CIO's are aware of risk and actions required. * Facilitate workshops and risk documentation during Control Self Assessments, or Crown Jewel Risk Assessment processes. Qualifications * Grade 12 * Bachelor's degree in Information Technology, Commerce, Science, or Social Science (preferable). * In force Information Security Certifications such as CISM, CISSP, CCSP, CISA, ISO 27000 Lead Implementer/ Auditor. Experience and Knowledge * Experience in policy writing and reviews. * Experience in agile/ relevant solution development methodologies. * Familiarity with security practices and standards in development like the security development life cycle (e.g. OWASP). * Understanding of the technical and application environment of the Cluster/ Business. * Experience in analysis and control design, strong written and verbal communication skills. * Knowledge of ISO27k, Cobit, ITIL, CIS and ISF best practices. * Knowledge of Information Risk Methodologies (ideally ISF IRAM2), threat modelling and Operational Risk management methodologies. * Knowledge of the key business processes, key stakeholders and have their contact details readily available. * Understanding of the risk management and governance structures within the Cluster. Knowledge and Skills Infiltration testing (hacking) Risk management Project Management Tools Reporting and Administration Research and trend analysis on IT security leading practice Personal Attributes Tech savvy - Contributing through others Manages complexity - Contributing through others Optimises work processes - Contributing through others Communicates effectively - Contributing through others Build a successful career with us We're all about building strong, lasting relationships with our employees. We know that you have hopes for your future - your career, your personal development and of achieving great things. We pride ourselves in helping our employees to realise their worth. Through its five business clusters - Sanlam Fintech, Sanlam Life and Savings, Sanlam Investment Group, Sanlam Allianz, Santam, as well as MiWay and the Group Office - the group provides many opportunities for growth and development. Core Competencies Cultivates innovation - Contributing through others Customer focus - Contributing through others Drives results - Contributing through others Collaborates - Contributing through others Being resilient - Contributing through others Turnaround time The shortlisting process will only start once the application due date has been reached. The time taken to complete this process will depend on how far you progress and the availability of managers. Our commitment to transformation The Sanlam Group is committed to achieving transformation and embraces diversity. This commitment is what drives us to achieve a diverse, inclusive and equitable workplace as we believe that these are key components to ensuring a thriving and sustainable business in South Africa. The Group's Employment Equity plan and targets will be considered as part of the selection process.

Xinnovit is a global leader in technology consulting, outsourcing, and workforce management solutions. Our mission is to enable our clients to become more agile and competitive with the help of innovative technologies. We empower our clients to respond faster and more intuitively to changing market dynamics. The business environment is complex, often under significant constraints and pressures from various sources. We have the knowledge, experience and capabilities to provide our clients the tools they require to achieve better, faster and effective transformation that make them the leaders in their industry. Our Goals Are: • To use our expertise to the benefit of our clients and partners through open communication and collaboration. • To ensure sustainable and profitable long-term growth. • To provide a return on investment to shareholders. • To promote employee development. Job Description • Resource needed to work on T&T project which involves Taking over support for additional 4300 servers (3816 wintel, 696 unix) over current scope. • In addition, expand scope to include Middleware, DB support & Active Directory support, Rollout IBM tools, some customer tools, • Storage - Mix of technology, including EMC & IBM; • iSeries - expand support for additional 59 lpars; • Groupware - Support of gateways and Rightfax; • Security scope includes IAM, Isec, ISA, Malware; • Asset - tracking for new HW, Wall to wall inventory; • Dynamic Hybrid Services (DHS) - Implement vRealize for Cloud; implement Dynamic Automation, and expand Security. • Updates to PIM and IP&C processes; Service Integration implementation,Remedy taken as-is Additional Information All your information will be kept confidential according to EEO guidelines.

· Minimum of Bachelor's degree in Information Technology, Computer Science or related field of study required. · At least one professional information security certification required o CISSP, CCSP, CISM, SANS GIAC · Minimum 12 years' progressive experience in multiple information technology areas preferred · Minimum 8 years' experience in information security required Additional Information All your information will be kept confidential according to EEO guidelines.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications PLEASE NOTE: While technical experience is a plus, this is not a technical information security position. It is best filled by someone with information security management or information technology audit experience. This is a leadership position requiring strong communication and analytical skills. Additional Information Job Status: Contract Eligibility: H1B/EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities Design and build software solutions for security projects Mentor junior security engineers Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on software engineering concepts and 5+ years applied experience . Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) Knowledgeable in secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira Experience building security engineering products and solutions Knowledge of the Windows Workstation OSs (Windows 10/Windows 11 and Virtual platforms) and/or Mac OSX Understanding of Active Directory concept and practical implementation of GPO management Ability to tackle design and functionality problems independently with little to no oversight Preferred qualifications, capabilities, and skills Experience within Cyber Security is preferred Excellent communication and presentation skills Prior experience in finance industry is a huge plus #CTC

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications Develops strong relationships and interacts with Enterprise Risk Management Leadership, Business Line and Regional Leadership, Global Functions, Internal Audit, External Regulators, Legal and Compliance, Privacy and IT teams to coordinate activities Represents Technology Risk in internal councils and committees Works with applicable business, operational and IT organizations to help ensure that business and IT projects are appropriately monitored for IT risks Coordinates with business and regional leadership including Operations, IT, Compliance, Audit, Legal and Communications on information security and risk issues Coordinates with Technology Risk Managers for regions, other Business Lines and Corporate Functions Be accountable for Technology Risk engagement Additional Information Share the Profiles to mahesh(@)techtammina(dot)com Contact: ************ Job Type: W2 Contrcat Rate: $50/hr Eligibility: EAD Green Card/Green Card/US Citizens Keep the subject line with Job Title and Location