Security architect jobs in Virginia

Come Forge the Future of Machine Identity Security for Operational Technology & Industrial Control Systems Where: Tysons, VA (Hybrid) Supporting: Our CTO At Corsha we're not just selling software; we're fundamentally reshaping how the most critical industrial and operational technology (OT) systems are secured. We're a cyber startup in the DC area, driven by a mission to bring trust, resilience, and identity to the operational systems that power our world - from factories to power grids. We're building the future of machine identity security, and we need a dynamic technical evangelist to join our front lines. Tired of the Status Quo? Ready to Secure the Unseen? Here's your Opportunity: If you're an engineer who thrives on solving hard problems, isn't afraid to get your hands dirty with industrial control systems and sees the immense potential of cybersecurity in unconventional environments, then read on. We move fast, we build for impact, and we need a security visionary to help us secure the machines that matter most. Your Mission: Secure the Industrial Edge We're looking for an OT Security Engineer to be a foundational engineer for our Machine Identity Platform (mIDP), specifically tailored for the unique and challenging landscape of OT systems. Your mission: implement, integrate, and defend the security infrastructure that underpins our cutting-edge solutions, with a heavy emphasis on industrial control systems and OT networks. This isn't just about keeping the lights on. It's about building security architectures that are inherently secure, highly available, and resilient against the most sophisticated threats, often in environments where traditional IT paradigms simply don't apply. You'll be bridging the gap between cutting-edge cybersecurity technologies and the operational realities of factories, power plants, and critical infrastructure. What You'll Be Forging: Architect and Implement OT Security Solutions: Design, deploy, and manage secure architectures for our mIDP, specifically tailored for OT environments. This includes network segmentation, routing, switching, firewall configurations, and intrusion detection systems. ICS/OT System Integration: Be the subject matter expert for integrating our mIDP with industrial control systems. This involves understanding and working with common industrial protocols (Modbus, OPC UA) and architectures (e.g., Purdue Model). Machine Identity Integration: Collaborate closely with our product and engineering teams to integrate security configurations with our mIDP, ensuring seamless and secure authentication and authorization for OT devices and applications. OT Network Hardening: Implement and enforce robust security best practices, including vulnerability management and access control for OT networks. Troubleshooting and Optimization: Proactively monitor, troubleshoot, and resolve complex security issues across ICS and OT environments. Identify and implement optimizations to enhance system performance, reliability, and security. Automation and Tooling: Develop and implement automation scripts and tools (e.g., Python, Ansible) to streamline provisioning, configuration management, and operational tasks. Documentation and Knowledge Sharing: Create comprehensive documentation, runbooks, and contribute to internal knowledge sharing to ensure maintainability and scalability of our infrastructure. Stay Ahead of the Curve: Continuously research and evaluate new cybersecurity technologies, security trends, and best practices, particularly as they relate to OT and industrial control systems. Collaborate and Mentor: Work closely with cross-functional teams (software engineers, security analysts, product managers) and provide mentorship to junior team members. What You'll Bring: 5+ years of intense experience in OT security or a related role, with a proven track record in complex, high-performance, and high-stakes environments. Deep, demonstrable expertise in industrial control systems and OT environments. You've implemented security products and solutions in real-world ICS/OT environments. Strong proficiency in network security principles: Firewalls, VPNs, intrusion detection/prevention systems (IDS/IPS), network access control (NAC), and secure communication protocols. Extensive hands-on experience with OT network architectures and protocols. You're comfortable with physical hardware and understand the nuances of industrial networks. Rock solid understanding of cybersecurity principles: vulnerability management, threat modeling, and incident response. Empathy for OT/ICS environments: You totally get the unique security challenges of Operational Technology, and understand common industrial protocols (Modbus, OPC UA) and architectures (e.g., Purdue Model). This isn't just a "nice-to-have"; it's critical. Proficiency in scripting and automation: Python, Ansible, or similar languages for automating security provisioning and operations. A relentless problem-solver: You thrive on diagnosing and resolving intricate security issues under pressure, with an unwavering focus on root cause analysis. Exceptional communication and collaboration skills: You can articulate complex technical concepts clearly and work seamlessly with cross-functional teams. Bachelor's degree in Computer Science, Engineering, or a related technical field, or equivalent practical experience. Self-starter with an insatiable curiosity: You're eager to learn, adapt, and drive solutions in a rapidly evolving, high-impact startup environment. Bonus Points For: Experience with specific machine identity solutions (PKI, certificates, secrets management). Hands-on experience with Kubernetes Knowledge of software-defined networking (SDN) solutions. Relevant industry certifications (e.g., CISSP, GICSP, CISM). Experience in a fast-paced startup environment. Why Forge your Path with Corsha? Real-World Impact: Your work won't just sit on a server; it will actively defend the critical operational systems that underpin our society. This is an opportunity to make a tangible, immediate difference. Bleeding Edge: Be at the forefront of securing the intersection of cybersecurity, machine identity, and OT. We're defining the future, not just following trends. Growth & Ownership: This is a startup - your contributions will directly shape our product, our culture, and our success. You'll work with incredible people that care and have impact. Culture of Innovation: Join a team of brilliant, passionate engineers dedicated to solving the hardest problems. We foster a collaborative, intellectually stimulating, and supportive environment. Competitive Compensation & Benefits: Wellness days, Generous PTO, Company-covered healthcare, 401k matching, paid parental leave, and of course snacks, lunches, and sustenance. Ready to step up and secure the critical future of identity? Join Our Mission Today. Reach out to us with your resume and why you think you'd make a stellar Corshian to *****************. We are an Equal Opportunity Employer and reasonable accommodations may be made to enable individuals with disabilities.

Data Intelligence LLC is seeking an experienced Senior Security Systems Engineer to support one of our premier Navy customers in Dahlgren, VA. This role provides advanced cybersecurity engineering and systems security support to U.S. Navy tactical and strategic weapons programs. The successful candidate will lead efforts related to Assessment & Authorization (A&A), Risk Management Framework (RMF) implementation, vulnerability management, and secure systems design for complex afloat and shore-based systems. This position is fully on-site in Dahlgren, VA. This position is contingent upon winning contract award. Key Responsibilities Lead cybersecurity engineering and systems security integration for U.S. Navy programs, with specific focus on tactical combat and Submarine-Launched Ballistic Missile (SLBM) systems. Perform system security engineering in accordance with DoD, DON, and NIST cybersecurity policies, standards, and best practices. Execute the full lifecycle of the Systems Engineering Technical Review (SETR) process, including design, review, and validation activities. Conduct and support Assessment and Authorization (A&A) activities under RMF, ensuring systems achieve and maintain Authorization to Operate (ATO). Manage vulnerability analysis and remediation for critical Navy systems and applications. Develop and maintain System Security Plans (SSPs), Cybersecurity Strategy and Evaluation (CSSE) documentation, and related artifacts. Design and evaluate secure network architectures and system boundaries, incorporating cybersecurity technologies such as: Firewalls, Intrusion Detection/Prevention Systems (IDS/IPS) Routers, Switches, and Cross-Domain Solutions (CDS) Host-Based Security Systems (HBSS) Provide cybersecurity guidance for Platform IT (PIT) systems, supporting both land-based and afloat/tactical environments. Contribute to cybersecurity test planning, Model-Based Systems Engineering (MBSE) integration, and secure software/hardware development. Collaborate with multidisciplinary engineering teams and Navy program offices to ensure compliance with DoD cyber and safety standards. Deliver concise technical presentations and reports to senior leadership and stakeholders. Required Skills/Experience SLBM Programs: Minimum 7 years of direct experience with Submarine-Launched Ballistic Missile (SLBM) systems; OR Other Navy Programs: At least 5 years of program-specific security engineering experience with Navy afloat/tactical combat systems (e.g., Aegis, SSDS, Zumwalt); OR General Experience: 10+ years of general security engineering experience supporting DoD systems. Minimum 5 years of engineering experience on Aegis, SSDS, Zumwalt, or other Navy tactical combat systems (for at least six senior positions on this contract). Demonstrated experience in: Cybersecurity engineering and risk management DoD/Navy Assessment & Authorization (A&A) Vulnerability management across complex networked systems Proven understanding of DoD Cybersecurity policies, RMF, and Platform IT (PIT) implementation. Experience with the SSP Validator Handbook (for SLBM programs). Familiarity with combat weapons systems and afloat/tactical environments. Hands-on experience designing and assessing secure network architectures, cyber boundaries, and defense-in-depth strategies. Experience with cyber testing, test analysis, and secure computing system development. Strong written and verbal communication skills with the ability to brief senior leadership. Certifications (Required) IAT II, IAM II, or higher (e.g., Security+, CASP+, CISSP, or equivalent) NQV certification (desired, if applicable) Security Clearance Active Top Secret Clearance required; eligibility for higher-level access may be necessary based on program needs. Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays. Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

We are seeking a Cybersecurity Engineer with strong, hands-on experience implementing Data Loss Prevention (DLP) solutions, specifically using Azure Purview and Microsoft Intune. This role requires a technical practitioner who has directly deployed, configured, and operationalized security controls-not just monitored events. The engineer will design and implement secure architectures across cloud and hybrid environments, conduct threat modeling, integrate security into new platforms, and ensure alignment with industry best practices and regulatory frameworks such as NIST 800-53, FISMA, and FedRAMP. The ideal candidate must have 10+ years of experience that brings advanced knowledge of cloud security, IAM, encryption, authentication protocols, and modern DevSecOps practices. Additional responsibilities include developing reusable security patterns, performing architecture reviews, enhancing automation, and partnering with IT teams to mature the organization's security posture. Strong communication skills, deep technical proficiency, and experience with Azure/AWS infrastructures are essential for success in this role. This is an onsite direct hire opportunity in Arlington, VA, no contract, no sponsorship. Relocation assistance provided within the US. LI #HP-1

ABOUT THE ROLE Individual is able to work without assistance; provides leadership for others; able to manage highly complex work efforts; may have advanced education; has extensive industry experience. The IT Security Analyst monitors and advises on information security issues related to the systems and workflow at an agency to ensure the internal IT security controls for an agency are appropriate and operating as intended. Coordinates and executes IT security related projects for the agency. Coordinates response to information security incidents. Develops and publishes Information Security policies, procedures, standards and guidelines based on knowledge of best practices and compliance with Commonwealth IT Security policies, standards, and guidelines. Conducts campus-wide data classification assessment and security audits and manages remediation plans. Collaborates with IT management, Internal Audit, and VITA to manage security vulnerabilities. Creates, manages and maintains user security awareness. Conducts security research and keeps abreast of latest security issues. Prepares IT security documentation, including department policies and procedures, agency notifications, Web content, and alerts.

In cybersecurity, we help keep our diverse environment from design, merchandizing, supply chain, eCommerce, and enterprise secure in a dynamic space. The IT Security team is looking for a passionate cybersecurity leader who wants to make an impact in multiple environments. Family Dollar is looking for a detailed and results oriented Security Engineering Manager leader who will be responsible for overseeing and managing the security of its information systems and data. This person will lead a team of cybersecurity professionals and work closely with other departments to protect the organization's digital assets, data and systems from cyber threats and breaches. This role is critical to the strategic and tactical success of Family Dollar's cybersecurity program. As the leader of this team, you will be responsible for providing strategic and operational direction of our security engineering solutions and cybersecurity tool stack. Under the direction of Director, Cybersecurity, the Security Engineering Manager takes a lead role in ensuring the security of all protected information collected, used, maintained, or released by Family Dollar. This role plays a vital role in ensuring the confidentiality, integrity and availability of our data. It is a critical role in the face of an ever-evolving landscape of cyber threats and attacks. Principal Duties and Responsibilities Partnering with teams across the organization to influence security by design to help drive overall direction of our technical security solutions. Accountable for end-to-end life cycle of our security tool portfolio (e.g., Firewalls, IDS/IPS, WAF, IAM, DLP, SIEM, Proxy, DDoS, Antimalware, Cloud network infrastructure technologies) Ensuring the hardening of our infrastructure (e.g., authentication, MFA, perimeter edge.) Driving standards and expectations of secure practices across the organization such as data security, defense-in-depth, SASE, Zero Trust etc. Collaborating with senior leadership to assess and understand strategic initiatives to ensure IT Security support. Act as a subject matter expert to provide advisory guidance to other teams. Interface and influence leaders at varying levels and roles within the company to drive security ownership. Keeping up to date with the security landscape to ensure our teams are providing strong defenses. Strong decision-making, problem-solving abilities, and leadership abilities to manage multiple, often conflicting priorities to successful completion. Demonstrate commitment to high standards of ethics and values, regulatory compliance, and business integrity. Excellent management skills to drive the personal development of the team and individuals. Maintain all security tools and technology. In charge of security systems, such as firewalls, data protection controls, patching. Ensures that project/department milestones/goals are met and adhering to approved budgets. Has full authority for personnel actions. Evaluates risks and improves Family Dollar's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities. Implements processes to automate and continuously monitor information security controls, exceptions, risks, testing. Develops reporting metrics, dashboards, and evidence artifacts. Schedules regular testing of effectiveness and efficiency of controls within area of ownership. Remains current on best practices and technological advancements and acts as the technical resource for information security. Minimum Requirements/Qualifications 5+ years of experience in cybersecurity. 2+ years as a security leader of a team (e.g., Incident Response, Engineering team). 5+ years' experience leveraging and implementing cybersecurity frameworks such as, MITRE ATTACK, MITRE D3FEND, OWASP Top 10, CIS Controls, NIST CSF, NIST 800-53, etc. 10+ years of advanced IT skills with high level of information security experience and expertise. Knowledge of securing network technologies, client, and server operating systems. Ability to develop and maintain security baselines based on best practices and industry standards. Experience responding to, analyzing, problem solving, and communicating information security incidents. 6+ years of planning and managing security projects. Excellent interpersonal, communication, and presentation skills, including formal report writing experience. Understanding of common security standards and regulations relating to a retail environment (e.g., PCI DSS, NIST CSF, ISO2700x, etc.) Team leadership and management. Foster a culture of security awareness and compliance within the organization. Ability to work in agile and waterfall frameworks as needed 1-3 years as a technical leader / supervisor with strong analytical and problem-solving skills identifying risks and championing that change. 5+ years of experience interfacing with varying levels of leadership and roles within a company, influencing security change. Minimum of 5 years' experience with modern security tool stacks Network security tools (e.g., WAF, Proxies, IDS/IPS, VPN, Taps, Firewalls) Endpoint security tools (e.g., AV, EDR, Application Control, PKI) Security Operations tools (e.g., SIEM) Authentication and authorization tools (e.g., PAM, SSO, SAML, IAM, MFA) Data Security tools (e.g., eDiscovery, DSPM) Cloud (e.g., CSPM) and other implications of cybersecurity Strong knowledge of cybersecurity concepts Secure protection and detection techniques Application security Vulnerability management Exploitation techniques Incident response Data privacy and encryption Endpoint platforms (Windows, Linux & Mac, iOS/Android) Desired Qualifications Bachelors in Information Technology or other four-year related degree

We are currently seeking a Sr. Cyber Systems Engineer (Vulnerability Assessment) to become part of the Department of State (DOS) Diplomatic Security Cyber Mission (DSCM) program. requires 5-days per week on-site. Program Overview The DSCM program encompasses cyber security, data analytics, engineering, technical, managerial, operational, logistical and administrative support to aid and advise DOS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting the DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges. About the Role Support the Cyber Security Solutions team within the Emerging Technologies Division. Perform Federal cyber community outreach to further Directorate cybersecurity mandates. Provide guidance to systems owners for compliance with cyber configuration standards and policies. Provide emerging technology analysis and trend reporting to CTS designated recipients. Provide Cloud, wireless, Artificial Intelligence (AI), and mobile security expertise, device assessment, vulnerability analysis, and risk mitigation services. Provide knowledge of Cloud environments and application of Cyber Security baselines. Research and formulate open-source software innovations integration in support of network modernization efforts using industry best practices for cost efficiency solutions. Facilitate the adoption of cyber and technological security solutions (AI enabled). Coordinate Enterprise-wide Common Control Documentation and provide technical expertise as needed to Department partners on proper implementation of NIST Common Controls. Provide technical responses and recommendations to Cyber Policy Support Requests. Qualifications: Bachelor's degree and minimum of 9 years of relevant experience required; 7 years with a Master's, 4 years with a PhD. An additional 4 years will be considered in lieu of the degree requirement. Demonstrate excellence in developing Federal emerging technology cyber challenges with multi-disciplinary assessment of areas such as Cloud, Al, and secure communications. Possess or be able to obtain one or more of the following certifications by hire date: CCNA-Security, CND, CySA+, GICSP, GSEC, Security+ CE, SSCP. Demonstrated experience in one, more or all of the following areas: Minimum of 4 years' experience in administering, maintaining, installing cloud services such as AWS, Active Directory Federation Services (ADFS), Azure, across an enterprise network. Experience developing and managing virtualized IT systems across an enterprise network. Configuration and/or administering enterprise mobile device deployments. Experience with application of cyber security controls for Artificial Intelligence. U.S. citizenship required. An active Secret security clearance. The ability to obtain a final Top Secret security clearance. For any questions regarding this job announcement or the status of your application, please contact our Director of Recruiting, Mr. Brian Jennings, via email at ********************.

Santcore Technologies is seeking a HashiCorp Vault (Enterprise) Specialist for one of our major clients in the secure financial services domain at Culpeper, VA (Hybrid - Onsite 2 days/week required). We are looking for a hands-on security engineer with deep experience in Vault Enterprise, Terraform, Ansible, and RHEL hardening. The selected consultant will work in a high-security environment and contribute to secure automation, platform integrations, and infrastructure hardening. Key Responsibilities Deploy, configure, and maintain HashiCorp Vault Enterprise clusters (including HA architectures). Monitor Vault performance, troubleshoot complex issues, and implement security hardening best practices. Integrate Vault with enterprise systems, authentication methods, and automation pipelines. Develop and maintain Terraform modules for secure infrastructure provisioning. Troubleshoot, monitor, and harden RHEL environments, including SELinux policy management. Build and maintain Ansible roles, playbooks, and automation workflows (including AWX/Ansible Tower). Assist internal teams with Vault onboarding, usage support, and operational readiness. Participate in on-call rotation as required. Maintain at least 2 days/week onsite presence in Culpeper, VA. Required Skills (Must-Have) 3+ years of experience in security engineering, platform security, or security automation. 3+ years hands-on experience managing HashiCorp Vault Enterprise, including: HA deployments Monitoring & debugging Hardening and best practices Secret engines, auth methods, integrations Strong hands-on experience with: Terraform (module development) Red Hat Enterprise Linux (troubleshooting, monitoring, hardening) Ansible (roles, playbooks, AWX/Ansible Tower) Preferred Skills Go development (particularly for custom Vault plugin development) Jenkins (automation pipelines) Splunk (dashboards, alerts, queries) ELK Stack (integration, dashboards, queries) SELinux (policy development and troubleshooting) Nice-to-Have Certifications HashiCorp Certified: Vault Associate HashiCorp Vault Operations Professional Terraform Associate Red Hat Certifications Soft Skills Analytical problem-solving and strong troubleshooting mindset Ability to work cross-functionally within security, cloud, and DevOps teams Strong documentation and communication skills Detail-oriented and committed to enterprise security best practices Adaptability in dynamic and fast-paced technical environments

Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You work with the information security team as a competent and experienced information security and compliance leader. How you will contribute We are seeking a highly skilled and motivated Cyber Threat Intelligence Lead to join our Global Cyber Security team. In this role, you will own and drive the cyber threat intelligence strategy and roadmap for Mondelēz International's international cyber risk function. You will lead the evolution of our threat intelligence capabilities-spanning intelligence tradecraft, platform maturity, automation, and proactive threat hunting-to strengthen our global security posture and reduce operational risk. You will serve as both a strategic leader and hands-on technical expert, working closely with Security Operations, Threat Hunting, Purple Team, Offensive Security, and enterprise stakeholders. This role requires deep experience translating threat intelligence into action, enabling detection and response improvements, and driving intelligence-led security operations. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in: • Defining and owning the cyber threat intelligence strategy and multi-year roadmap, aligned to enterprise risk priorities and evolving threat landscapes. • Driving the maturation of threat intelligence capabilities, including processes, tooling, automation, and intelligence-led operations. • Providing deep technical guidance and subject matter expertise across threat intelligence platforms (TIPs), including automation of ingestion, enrichment, scoring, and dissemination workflows. • Leading and coordinating intelligence-driven threat hunting activities, using internal telemetry and external intelligence to proactively identify adversary activity. • Partnering with Threat Hunting teams to design, execute, and refine hunts informed by real-world adversary TTPs. • Collaborating with Offensive Security and Blue Team partners to plan and execute Purple Team exercises based on emerging threats and MITRE ATT&CK techniques. • Translating adversary behaviors and campaign intelligence into actionable improvements for detections, response playbooks, and control validation. • Monitoring emerging cyber threats, geopolitical risks, and regulatory developments and assessing their impact on international operations. • Conducting quantitative and qualitative cyber risk analysis to inform enterprise decision-making and risk reduction strategies. • Applying strong analytic tradecraft to fuse insights across diverse data sources and deliver high-confidence intelligence assessments. • Producing, reviewing, and editing high-quality intelligence products tailored to executive, technical, and operational audiences. • Presenting complex threat and risk insights clearly and concisely to senior leadership and cross-functional stakeholders. • Defining analytical problems, refining models and frameworks, and validating assumptions to support effective decision-making. • Writing and maintaining policies, standards, procedures, and intelligence workflows that enable consistent and scalable execution. • Continuously improving intelligence processes, templates, tooling, and job aids to increase efficiency and impact. More about this role This position blends strategy, leadership, and hands-on technical execution. You will influence how threat intelligence is operationalized across the organization-guiding proactive defense, enabling threat hunts, and shaping purple team exercises that reflect real adversary behavior. If you are passionate about intelligence-led security, building mature capabilities, and driving collaboration across defensive and offensive teams, we want to hear from you. What extra ingredients you will bring: • High school diploma, GED, or equivalent certification. • Bachelor's degree preferred. • 5+ years of experience in Information Security. • 5+ years of experience in cyber threat intelligence, intelligence analysis, cyber operations, or cyber risk management. • 1-2+ years of hands-on experience in threat hunting, including hypothesis-driven hunts using internal telemetry. • Demonstrated experience providing technical leadership and guidance in a threat intelligence or security operations environment. • Strong written and verbal communication skills, with the ability to tailor analysis to technical and executive audiences. • Ability to work independently, lead initiatives with minimal supervision, and maintain clarity under pressure. • Experience defining and executing a threat intelligence strategy and roadmap at an enterprise level. • Experience implementing, operating, and automating a threat intelligence platform (TIP), including integrations with SIEM, SOAR, EDR, and external intelligence sources. • Experience designing or leading intelligence-driven threat hunting programs. • Experience working in or alongside Purple Team functions, collaborating with offensive and defensive teams to execute adversary emulation or TTP-based exercises. • Familiarity with MITRE ATT&CK and its application across intelligence analysis, threat hunting, and detection validation. • Experience translating intelligence into detection engineering, response improvements, or control validation. • Strong analytical mindset with the ability to synthesize large volumes of data into actionable insights. • Demonstrated leadership presence and the ability to influence cross-functional stakeholders. • Strong desire to continuously learn and adapt to evolving threats, technologies, and intelligence methodologies. Salary and Benefits:The base salary range for this position is $117,400 to $161,425; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results. In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company. No Relocation support available Business Unit Summary The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, we produce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands-including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products -are close at hand for our consumers across the country. Mondelēz Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact ************ for assistance. For more information about your Federal rights, please see eeopost.pdf; EEO is the Law Poster Supplement; Pay Transparency Nondiscrimination Provision; Know Your Rights: Workplace Discrimination is Illegal Job TypeRegularInformation SecurityTechnology & Digital

Cyberspace Solutions, a Crimson Phoenix company, seeks exceptionally qualified Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists to support USSOCOM. Intelligence Analysts responsible for researching, developing, and presenting intelligence products at the operational level for senior leaders including: CT and regional analysis, GEOINT, HUMINT, SIGINT, OSINT/PAI, political/military analysis and support to targeting. Intelligence analysts shall interface with other intelligence organizations to fully prepare teams for exploitation of enemy personnel, as well as prepare post screening analytical products and assessments supporting targeting efforts, and threat analysis. Intelligence Analysts are responsible for the production of intelligence assessments and products in support of deployed SOF Task Forces to enable the F3EAD targeting cycle. Employees must maintain global readiness and be available to deploy on a no-notice basis to hazardous duty/combat zones. Deployments may be to a theater of operations with permissive, uncertain, or hostile environments while living in austere conditions for extended periods. Crimson Phoenix supports the US national security community and its allies with a wide range of analytic and cyber effect solutions that accelerate informed decision made in the telephony, IP messaging, cyber, and multi-source arenas. Our customers require insight from the endless volume and variety of data to make critical, high integrity decisions at mission speed. We are an innovative solutions company striving to be a global leader in multi-source data collection, predictive analysis and mobile/network surveillance (4G/5G) and assurance, from the Edge of Collection to the Core of Exploitation, Tactical to Strategic, Endpoint to the Enterprise. Responsibilities Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists to assist, monitor, and advise on all aspects of security activities. They shall plan and assist in implementation of security activities at the Top Secret and higher classification to ensure JSOTF personnel (Military, Civilians, Contractors) and all supported tenant organizations are prepared to operate in non-traditional environments to perform critical contingency tasks. Personnel performing these functions develop written technical approaches and methodologies with regard to security proposals. Qualifications Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists shall possess the following qualifications: Shall process personnel background investigations for special security clearance actions including: Formulating and ensuring compliance with automated information systems security procedures Suggesting, implementing and monitoring compliance with special security policies and procedures Conducting and coordinating the training for special security representatives Performing as a liaison with Government and industrial security officials, overseeing collateral and higher access and badge procedures. Security Support personnel shall possess the following qualifications : Minimum of six (6) years Physical, Personnel and Special Security experience within DoD or equivalent Government agencies required, with operational level experience preferred. Position requires experience in compartmented programs in DoD, U.S. Intelligence Community, or supporting U.S. Contractors. Experience in security training or security inspections is highly desirable. Solid and varied experience in planning/accrediting facilities in accordance with the ICD 7051 standard. Thorough familiarity with all security processes. Must have a working knowledge of security policies and procedures to include National Industrial Security Program Supplement , and DoD 5105.21 Volumes 1-3. Current Top Secret clearance and SCI eligible. Must possess a valid US passport. Must be able to pass all pre-deployment requirements including a medical, dental, psychological, background, credit, and security screens as deemed necessary to be considered deployable. Must be able to obtain all required immunizations deemed necessary by the contract. Equal employment opportunity employer: All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Crimson Phoenix is committed to providing veteran employment opportunities to our service men and women.

Cyberspace Solutions, a Crimson Phoenix company, seeks exceptionally qualified Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists to support USSOCOM. Intelligence Analysts responsible for researching, developing, and presenting intelligence products at the operational level for senior leaders including: CT and regional analysis, GEOINT, HUMINT, SIGINT, OSINT/PAI, political/military analysis and support to targeting. Intelligence analysts shall interface with other intelligence organizations to fully prepare teams for exploitation of enemy personnel, as well as prepare post screening analytical products and assessments supporting targeting efforts, and threat analysis. Intelligence Analysts are responsible for the production of intelligence assessments and products in support of deployed SOF Task Forces to enable the F3EAD targeting cycle. Employees must maintain global readiness and be available to deploy on a no-notice basis to hazardous duty/combat zones. Deployments may be to a theater of operations with permissive, uncertain, or hostile environments while living in austere conditions for extended periods. Crimson Phoenix supports the US national security community and its allies with a wide range of analytic and cyber effect solutions that accelerate informed decision made in the telephony, IP messaging, cyber, and multi-source arenas. Our customers require insight from the endless volume and variety of data to make critical, high integrity decisions at mission speed. We are an innovative solutions company striving to be a global leader in multi-source data collection, predictive analysis and mobile/network surveillance (4G/5G) and assurance, from the Edge of Collection to the Core of Exploitation, Tactical to Strategic, Endpoint to the Enterprise. Responsibilities Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists to assist, monitor, and advise on all aspects of security activities. They shall plan and assist in implementation of security activities at the Top Secret and higher classification to ensure JSOTF personnel (Military, Civilians, Contractors) and all supported tenant organizations are prepared to operate in non-traditional environments to perform critical contingency tasks. Personnel performing these functions develop written technical approaches and methodologies with regard to security proposals. Qualifications Security Support - Physical, Personnel, Special, SAP and Industrial Security Support (PPS&I) Specialists shall possess the following qualifications: Shall process personnel background investigations for special security clearance actions including: Formulating and ensuring compliance with automated information systems security procedures Suggesting, implementing and monitoring compliance with special security policies and procedures Conducting and coordinating the training for special security representatives Performing as a liaison with Government and industrial security officials, overseeing collateral and higher access and badge procedures. Security Support personnel shall possess the following qualifications : Minimum of six (6) years Physical, Personnel and Special Security experience within DoD or equivalent Government agencies required, with operational level experience preferred. Position requires experience in compartmented programs in DoD, U.S. Intelligence Community, or supporting U.S. Contractors. Experience in security training or security inspections is highly desirable. Solid and varied experience in planning/accrediting facilities in accordance with the ICD 7051 standard. Thorough familiarity with all security processes. Must have a working knowledge of security policies and procedures to include National Industrial Security Program Supplement , and DoD 5105.21 Volumes 1-3. Current Top Secret clearance and SCI eligible. Must possess a valid US passport. Must be able to pass all pre-deployment requirements including a medical, dental, psychological, background, credit, and security screens as deemed necessary to be considered deployable. Must be able to obtain all required immunizations deemed necessary by the contract. Equal employment opportunity employer: All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Crimson Phoenix is committed to providing veteran employment opportunities to our service men and women.

Job Description T-Rex Solutions is seeking a results-driven Information System Security Officer (ISSO) to support our U.S. Customs and Border Protection (CBP) Network Operations Center (NOC). The program objective is to provide ongoing support for CBP's NOC and Wireless Network Operations Center (WNOC), which are critical components within the Office of Information and Technology. These centers perform real-time monitoring, proactive maintenance, incident detection and response, problem resolution, and network performance reporting across CBP's nationwide enterprise. They ensure network stability, availability, and the rapid escalation and resolution of technical issues. This is a 24x7x365 operation with work performed on-site in Ashburn, VA. Responsibilities: The ISSO shall ben assigned to one or more existing FISMA Systems of Record as well as new IT Systems that are slated as new work products to develop an Authority to Operate (ATO) and follow-on Continuous Monitored system. Develop and maintain all required FISMA system documentation. Ensure systems adhere to Technical Reference Architecture (TRA) foundational and supplemental documents as additional security specifications, when applicable (available upon request). Use approved security tools for continuous monitoring and management of security baselines. Implement audit tools or processes for auditing and reporting services that support Continuous Diagnostics and Monitoring (CDM). Provide engineering services and participation in Continuity of Operations Planning (COOP) and Disaster Recovery (DR) planning and exercises. Develop and implement Configuration Management and Change Management plans when necessary. Perform or participate in threat and vulnerability management for applicable FISMA systems. Perform POA&M management. Requirements: Bachelor's degree in related technical field such as Management Information Systems, Computer Science, Engineering, IT, Networking and Telecommunications. A minimum of ten (10) plus years of related experience Certifications, such as Network+ and Security +, CISSP and Security auditing are recommended. Proficient in network and information system security principles and best practices. In-depth knowledge of the Risk Management Framework (RMF), the NIST publications, and the DHS 4300A Policy Directive. Experience with implementing the NIST 800-53 Security Controls in an Assessment & Authorization (A&A) process. Experience reviewing Nessus scans, managing vulnerability mitigation and the information security process in an Enterprise environment. Basic understanding of Enterprise networking concepts. Ability to work well within a team environment and build reports with government and customer organizations. US citizenship required Ability to obtain and maintain a CBP public trust clearance Desired Skills: Experience directly supporting DHS, CBP or ICE Network Operations Active CBP clearance, or DOD Secret clearance or higher T-Rex Overview Established in 1999, T-Rex Solutions, LLC is a proven mid-tier business providing data-centric mission services to the Federal government as it increasingly tries to secure and leverage the power of data. We design, integrate, secure, and deploy advanced technical solutions for our customers so they can efficiently fulfill their critical objectives. T-Rex offers both IT and professional services to numerous Federal agencies and is a leader in providing high quality and innovative solutions in the areas of Cloud and Infrastructure Services, Cyber Security, and Big Data Engineering. T-Rex is constantly seeking qualified people to join our growing team. We have built a broad client base through our devotion to delivering quality products and customer service, and to do that we need quality individuals. But more than that, we at T-Rex are committed to creating a culture that supports the development of every employee's personal and professional lives. T-Rex has made a commitment to maintain the status of an industry leader in compensation packages and benefits which includes competitive salaries, performance bonuses, training and educational reimbursement, Transamerica 401(k) and Cigna healthcare benefits. T-Rex is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, sex (including pregnancy and sexual orientation), parental status, national origin, age, disability, family medical history or genetic information, political affiliation, military service, or other non-merit based factors. In compliance with pay transparency guidelines, the annual base salary range for this position is $120,000 - $160,000. Please note that the salary information is a general guideline only. T-Rex considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/training, key skills, internal peer equity, as well as market and business considerations when extending an offer. T-Rex offers a diverse and collaborative work environment, exciting opportunities for professional growth, and generous benefits, including: PTO available to use immediately upon joining (prorated based on start date), paid parental leave, individual and family health, vision, and dental benefits, annual budget for training, professional development and tuition reimbursement, and a 401(k) plan with company match fully vested after 60 days of employment among other benefits.

SES's Senior Insider Threat Security Analyst focuses on advancing SES's Information Security threat and compliance program by security monitoring, threat & vulnerability management, and delivering professional reports including findings and recommendations. The Senior Insider Threat Security Analyst is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. PRIMARY RESPONSIBILITIES / KEY RESULT AREAS Lead incident response in response to Insider security events and incidents. Correlation and trend analysis of security logs, network traffic, security alerts, events, and incidents. Perform in-depth root cause analysis and diligently gather information prior to escalation for future root cause analysis. Event and incident handling consistently with applicable plans and processes. Analyzing, triaging, aggregating, escalating, and reporting on Insider security events including investigation of anomalous network activity, and responds to cyber incidents within the network environment. Continuous & persistent monitoring of security technologies/tool data and network traffic which result in security alerts generated, parsed, triggered, or observed on in-scope networks, systems, or security technologies. Rapidly assess network traffic, detect data anomalies, and provide detailed reporting on the same. Correlation and trend analysis of security logs, network traffic, security alerts, events, and incidents. Perform in-depth root cause analysis and diligently gather information prior to escalation for future root cause analysis. Insider threat event and incident handling consistent with applicable plans and processes. Integration of activities with standard reports, such as Insider security metrics reports. Lead team/project meetings and technical meetings appropriate for the content. Ensure tasks and projects are completed on schedule. COMPETENCIES Strong organizational skills and ability to stay focused while managing multiple tasks concurrently. Understanding of current attack tools, tactics, procedures, and how to detect and/or mitigate them. Strong critical thinking/analytical skills, creativity, and a proven drive for quality QUALIFICATIONS & EXPERIENCE Must Have Four-year college degree in the technical field of study or equivalent work experience Technical knowledge and aptitude in the areas of networks, network topologies, remote network access, servers, applicable software and troubleshooting techniques required. Experience working in a SOC or similar environment. Experience with reviewing IDS/IPS, EDR, Firewall and other security/audit logs Experience monitoring and analyzing Security Information and Event Management (SIEM) to identify security issues for remediation, and rules fine tuning. Consolidate and conduct comprehensive analysis of Insider threat data obtained from security tools and make recommendations for optimizing various tools. Nice to Have Participates in the planning, design, and implementation of enterprise security architecture. Experience with Insider threat management tools and experience working on an Insider threat management team. One or more of the following security certifications: Security+, CEH, CYSA+, GCIA, GSEC, GCIA, GMON and GCDA SES and its Affiliated Companies are committed to providing fair and equal employment opportunities to all. We are an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, gender, pregnancy, sex, sexual orientation, gender identity, national origin, age, genetic information, protected veteran status, disability, or any other basis protected by local, state, or federal law. For more information on SES, click here.

Client Solution Architects (CSA) is currently seeking a Systems Security Engineer to support a program at Dahlgren Naval Base. For nearly 50 years, CSA has delivered integrated technology and operational support services to meet the defense and federal sector's most complex enterprise needs. Working from operations centers and shipyards to training sites and program offices, CSA deploys experienced teams, innovative tools and proven processes to advance federal missions. This position is contingent upon award. How Role will make an impact: * Perform vulnerability analysis, risk analysis, scanning for viruses and other software that is detrimental * Accreditation of systems and audits Requirements What you'll need to have to join our award-winning team: * Clearance: Must possess and maintain an active Secret Clearance * Four (4) years of professional experience in relation to IT security with the DoD or Navy. * Experience with vulnerability analysis, risk analysis, scanning for viruses and other software that is detrimental. * Qualified experience in accreditation of systems and audits. * This position is required to be designated as IAT II level

Together, We Enhance Innovation and Growth i2G specializes in advanced physical electronic security and life safety solutions. I2G has proven experience in surveillance, access control, and intrusion detection systems, biometrics, fence sensors, radars, ground sensors, anti-drone technologies, and more. We excel in design, project management, commissioning, and enterprise technology integrations. i2G's mission is to provide the products and services that meet our customers' needs to give them a vital advantage in today's market, helping to protect what matters most. This position will provide engineering design and support for security solutions for new and existing clients while working alongside internal teams, external teams, clients, and subcontractors to ensure project success. Responsibilities Possess a thorough understanding of standard Electronic Security technology (ACS, IDS, FDS, CCTV) and supporting equipment such as computer software/hardware, databases, and networking infrastructure. Ability to review architectural, electrical, telecommunication, security engineering floor plans, riser drawings, device schedules, and detail drawings. Design, develop, and implement solutions for system installations, upgrades, repairs, and conversions. Review of Field Site Survey documentation and provide technical assistance with RFI/RFP responses. Create solution design documentation (drawings, BOMs, solution design summaries). Provide technical support for in-office and on-site team members. Support management in the process of creating documentation for implementing new technology with new and existing customers. Maintain familiarity with current and emerging electronic security technologies such as access control, video surveillance, intrusion detection, biometrics, etc. and industry leading vendors. Qualifications A minimum of 3-7 years previous experience in the industry. Associate or bachelor's degree in relevant field preferred or applicable amount of experience in the appropriate field may be substituted for the educational background. Experience in the design and planning of access control and video systems. Professional Electronic Security Certifications or training (Lenel, Genetec, C-Cure. Avigilon, Axis, Bosch, Milestone, etc.) preferred. Other Eligibility Requirements Ability to manage time and multiple tasks without supervision. Organizational skills & detail oriented. Good analytical and problem-solving skills. Excellent presentation, writing skills, verbal, and written customer communication skills. Experience in computer programs such as Microsoft Office, Adobe, etc. preferred. Microsoft Project, Visio, BlueBeam, AutoCAD, or Revit is a plus. Company Overview This is a Security Systems Engineer career opportunity with i2G Systems. Learn more about i2G: *************************************** "Kastle Systems Makes Strategic Investment in i2G Systems, Strengthening Leadership in Serving High-Security Industries and High-Value, Large Scale Facilities" Read More About the Partnership Here: *********************************************************************************************************************************************************************************** Equal Opportunity Statement We are an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, marital status, pregnancy or any other basis protected by applicable federal or state laws. #PhysicalSecurity #SecurityEngineer #ElectronicSecurity #SecurityDesign #AccessControl #ClosedCircuitTelevision #SecuritySystems #SecurityIntegration #SecurityJobs #SecurityCareers #SecurityTechnology #LenelSystems #GenetecSecurity #CureSecurity #AvigilonSystems #AxisCommunications #BoschSecuritySystems #MilestoneSystems #AutoCAD #Bluebeam #RevitSoftware #MicrosoftVisio #ProjectManagement #C-Cure #ccure #softwarehouse #genetec

Hi, Hope you are doing good We have an immediate need for our client, below are the details requirement. Please let me know your interest ASAP Comments: The role is for SAP Security person who has working knowledge of SAP HCM Security Workday LCD , iTools Needs solid communication skills to interact with management teams SAP Senior Security HCM & Workday Location: FALLS CHURCH, Virginia Duration:6 Months Job Description: Should have working knowledge in SAP HR Security, Workday, LCD, iTools. SAP HR Security & Workday: User administration - Create, modify and delete User Ids, password resets, generating audit logs, creation of secondary user IDs, system users o Role administration - Should be able to create, modify roles and aware of process to move changes to production environment o User group assignments in workday o Should be able to contribute for Audit Support/Research along with validation team LCD: o Create interface files, Move files, Load files in different tables. o Create new organization in LCD and update time types, wage types, allocation rules, Permissions in LCD o Modify/ Delete/ Create User Ids in LCD o Audit Support/Research relevant to LCD o eTES/LCD/iTools deployment for quarterly releases o Monitor and maintain eTES, LCD, Cognos, Citrix servers iTools: o Create new ORGs in eTES o Create calendar, departments, time types etc o Create user Ids o Change/update parameters Other: o Prior experience on RSSSA, USD ticketing tools would be an advantage. o Must have great communication skills to communicate well in team meetings. Additional Information Please forward resume to my Mail Id, as mentioned below, keep subject line as job title & location. Email id: ********************* Phone: ************

SG2 Recruiting is seeking an information security manager to support IC client in the Washington DC Metro area. The information security manager (ISM) will apply their proactive approach to safeguarding organizational data and systems. Key responsibilities will include leading incident response, implementing security measures, managing system vulnerabilities, and ensuring compliance through evaluation and accreditation processes. The ISM will also develop security policies, provide training, and oversee the maintenance of security infrastructure, all while analyzing threat intelligence to mitigate risks and maintain a robust security posture. What You Will Be Doing: Recommending, scheduling, and implementing IA-related repairs. Coordinating and supporting all applications and operations. Leading teams and supporting actions to quickly resolve or mitigate IA problems for the IS environment. Supporting the installation of new or modified hardware, operating systems, and software applications, ensuring integration with security requirements. Identifying and determining whether a security incident indicates a violation of law requiring specific legal action. Directing and implementing operational structures and processes to ensure an effective security program, including boundary defense, incident detection and response, and key management. Providing direction and supporting system developers regarding the correction of security problems identified during testing. Evaluating functional operations and performance in light of test results and recommending actions regarding Certification and Accreditation (C&A). Examining IS vulnerabilities and determining actions to mitigate them. Monitoring and evaluating the effectiveness of IS security procedures and safeguards. Analyzing security incidents and patterns to determining remedial actions to correct vulnerabilities. Supporting the development and implementing of the IS termination plan to ensure that security incidents are avoided during shutdown and long-term protection of archived resources is achieved. Implementing vulnerability countermeasures. Providing support for IA customer service performance requirements. Providing support for the development of IA-related customer support policies, procedures, and standards. Writing and maintaining scripts required to ensure security. Implementing and maintaining perimeter defense systems, including, but not limited to, intrusion detection systems, firewalls, and grid sensors. Scheduling and performing regular and special backups. Establishing logging procedures, such as important IS events, services and proxies, and log archiving facilities. Providing training for IAT Level I and II personnel. Analyzing IAVAs, ICVAs, and IAVBs for impact and taking or recommending appropriate action. What You Will Need: Active TS/SCI with a CI polygraph Ability to commute to Alexandria, VA office five (5) days per week Doctorate degree in a STEM-related technical field with 8 years of relevant experience Or master's degree with 10 years of related experience Or bachelor's degree with 12 years of experience, OR associate's degree with 14 years of experience OR high school diploma with 16 years of experience One or more of the following certifications: GIAC Security Expert (GSE) Certified Information Systems Auditor (CISA), GIAC Certified Incident Handler Certification (GCIH), or Certified Information Systems Security Professional (CISSP) required About Client: Client does not discriminate based on race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in providing employment opportunities and benefits.

CADRE is relied upon for delivering superior insight and leadership to solve the nation's most critical national security challenges in the most demanding environments. This Systems Engineer position is located in Northern Virginia with flexible core hours and includes 10% or less domestic travel. The Systems Engineer is responsible for developing, engineering, and deploying technical solutions within a dedicated network. This individual will work within a small, mission focused team of network and systems engineers to implement technical solutions to challenging collaboration and data protection problems. Duties: This Systems Engineer performs the following core functions: Develop / Test / Scale / Deploy / Maintain technology solutions Build solutions with a focus on information security principals Work extensively with Microsoft technologies and virtualization platforms Monitor networks Performs other duties as assigned at the direction of Project Management Required Qualifications: Ability to obtain and maintain a TS/SCI with poly Bachelor's degree preferred, in Computer Science, Information Systems, Engineering, Business, or a scientific or technical discipline related to the specific skill No degree + ten (10) years relevant experience Associate's degree + eight (18) years relevant experience Bachelor's degree + six (6) years relevant experience Minimum of six (6) years of relevant experience in the areas of Computer Science, Engineering, Information Technology, Information Systems (or comparable documented work experience) Ability to travel on an infrequent, but as needed basis, primarily domestic Knowledge of and hands on experience with modern server operating systems and virtualization technologies Knowledge of and hands on experience with Virtual Desktop technologies Knowledge of and hands on experience with Cloud platforms Knowledge of and hands on experience with collaboration and ticketing tools Knowledge of high availability technologies and concepts Knowledge and hands on experience with networking and network security technologies Experience with managing engineering projects (i.e., design, build, deploy) Knowledge and hands on experience with scripting languages such as, Bash, Powershell, Python, etc. Knowledge of and hands on experience implementing IT and Cyber Security best practices Ability to assess emerging technologies, determine their impact on corporate systems and incorporate them into technical plans Strong analytical and problem-solving skills; demonstrated ability to analyze complex situations, determine course of action and act promptly and effectively when problems arise Demonstrated outstanding interpersonal skills and strong verbal and written communications skills Desired Qualifications: Active TS/SCI with poly with most recent BI/Poly dates within the last five years Experience building, deploying, maintaining, Windows and RedHat/CentoS servers Experience building, deploying, maintaining, Citrix VDI Desktops Knowledge and hands on experience with Microsoft Azure, and Azure Stack Hub Experience building, deploying, maintaining, Atlassian products such as JIRA and Confluence Experience building, deploying, maintaining, Microsoft Exchange Experience building, deploying, maintaining clusters, load balancers, multi-datacenter applications Experience with Cisco Application Centric Infrastructure (ACI) Experience designing, building, deploying, and maintaining sensitive networks Experience with Enterprise database platforms such as MS SQL Server and Oracle databases Experience with One Way Transfer Solutions and data flow management Knowledge of SIEM and security analytical technologies (e.g. Splunk, pcap, Netflow, etc) Experience with Active Directory and identity management Experience with hyper-converged infrastructure such as Cisco HX, Microsoft Storage Spaces Direct Knowledge of DevOps/DevSecOps methodologies and tools

As a Manager of Information Security Compliance, you will support Bloomberg Industry Group's Governance, Risk, and Compliance (GRC) programs. You will be part of a team that delivers customer trust, vendor risk oversight, and compliance with regulatory and industry standards. This role requires balancing hands-on expertise with enabling cross-functional teams to achieve security and privacy objectives, and serving as a key representative to clients, auditors, and regulators. What you will do: * Strategy: * Support ownership of the information security compliance roadmap, ensuring alignment with organizational priorities. * Act as a trusted advisor to senior leadership, providing insights on security risk, compliance obligations, and emerging regulations. * Program Execution: * Support all security & privacy compliance efforts including but not limited to, SOC, GDPR, CCPA, privacy by design, etc. * Develop, maintain, and enforce internal information security compliance policies, standards, and controls across diverse systems and platforms. * Manage the vendor risk management lifecycle: onboarding, due diligence, and ongoing monitoring. * Interface with vendors and business leads to clearly understand their risk profile. * Represent Information Security in customer security assessments, RFPs, and compliance discussions. * Conduct investigations of data security risks and provide consultation to internal and external stakeholders to mitigate risk. * Develop and implement companywide information security training and awareness programs. * Define and drive risk management and compliance goals for the organization * Participate in both internal and external audit activities; aid in compliance audits in support of ISO 27001/2, SOC, etc. * Collaborate with teams across the organization to ensure continued compliance to policies and security standards. * Innovation & Emerging Risk * Monitor and assess risks related to emerging technologies such as Artificial Intelligence, data governance platforms, and cloud-native architectures. * Support development of AI governance policies and frameworks that align with regulatory expectations and customer trust requirements. * Raise organizational awareness of new and evolving security risks, and ensure controls evolve to address them. You need to have: * Bachelor's Degree or equivalent experience; advanced degree or industry certifications (CISM, CISA, CISSP, ISO 27001 Lead Auditor/Implementer) a plus. * 4 years of progressive experience in Risk Management, Compliance, Information Security or Technology Management role. * Experience with common Information Security Compliance standards and frameworks (such as, ISO 27001/2, PCI, SOC 1/2/3, and NIST etc.). * Demonstrated security assessment, risk analysis, gap analysis, auditing, causal analysis, corrective action planning, and compliance assessment experience. * Strong communication and presentation skills, with the ability to influence executives and collaborate with technical teams. * Demonstrated success in managing customer trust initiatives, vendor risk processes, and audit readiness. * Ability to balance strategic program oversight with hands-on execution when necessary. Equal Opportunity Bloomberg Industry Group maintains a continuing policy of non-discrimination in employment. It is Bloomberg Industry Group's policy to provide equal opportunity and access for all persons, and the Company is committed to attracting, retaining, developing, and promoting the most qualified individuals without regard to age, ancestry, color, gender identity or expression, genetic predisposition or carrier status, marital status, national or ethnic origin, race, religion or belief, sex, sexual orientation, sexual and other reproductive health decisions, parental or caring status, physical or mental disability, pregnancy or maternity/parental leave, protected veteran status, status as a victim of domestic violence, or any other classification protected by applicable law ("Protected Characteristic"). Bloomberg prohibits treating applicants or employees less favorably in connection with the terms and conditions of employment, in all phases of the employment process, because of one or more Protected Characteristics ("Discrimination").

We are currently seeking a Cybersecurity Engineer to become part of the Federal Strategic Cyber group. Location: Arlington, VA. This is a full-time, working on-site role. The DSCM program encompasses cyber security, data analytics, engineering, technical, managerial, operational, logistical and administrative support to aid and advise DOS Cyber & Technology Security (CTS) Directorate. This includes protecting a global cyber infrastructure comprising networks, systems, information, and mobile devices all while identifying and responding to cyber risks and threats. Those supporting the DSCM program strive to leverage their expert knowledge and propose creative solutions to real-world cybersecurity challenges. About the Role Support the Security Standards & Baselines (SSB) section within the Technology, Innovation, and Engineering (TIE) Office. Identify and provide solutions to enhance and/or streamline processes and automate work flow. Need to have a strong technical background and expertise in various areas of cybersecurity. Promote awareness of security issues among management and ensure sound security principles are reflected in organizations' visions and goals. Communicate complex security concepts to both technical and non-technical stakeholders, including senior management. Possess strong problem-solving and decision-making abilities to guide the organization in making informed security decisions. Perform extensive research and documentation of security threat vectors. Provide guidance and coaching to team members. Create bulletins, alerts, and/or advisories related to published or developmental standards and/or security principal documents. Ensure that rigorous application of information security/information assurance policies, principles, and practices are implemented in the delivery of all IT services. Evaluate a wide array of existing, new, modified, and/or emerging technologies and develop recommended security configuration baselines documents that implement Departmental policy, technical security solutions, and industry best practices in alignment with Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG) as much as possible. Respond to various technical and policy questions from a wide range of customers/users with guidance and clarifications. Promote awareness of cybersecurity standards and principles among the customer stakeholders, coworkers, and the Department users. Collaborate with fellow team members and various internal and external stakeholders to share information and knowledge to establish and maintain a productive line of communication. Streamline processes to improve efficiency of Mission goals. Manage information and updates in SharePoint repositories. Keep awareness of items involving fellow team members to provide back up support and coverage as needed. Qualifications: Bachelor's degree and a minimum of 5 years' of relevant experience. An additional 4 years of experience will be considered in lieu of degree/education. Either possess or obtain prior to start date ONE of the following certifications: CAP, CASP+ CE, CCISO, CCNA-Security, CISM, CISSP (or Associate), CISSP (or Associate), CND, CSSLP, CySA+, GICSP, GSEC, GSLC, Security+ CE, SSCP, PPDA, Agile IC, SNOW App Dev. Experience with DISA STIG - Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG). Experience developing and executing research plans. Experience working with Windows Server on an enterprise level. Experience managing Active Directory in a multi-domain environment. Experience working with server/application virtualization on an enterprise. Demonstrated excellence in business acumen, team orientation and strong customer service skills. U.S. citizenship required. Active Secret security clearance. Ability to obtain a final Top Secret security clearance. Highly Desired: Experience with process automation. Technical writing skills. Engineering/maintaining database infrastructure including SQL and Oracle experience. Active Directory Federation Services (ADFS), Azure, Active Directory experience. Experience developing and managing virtualized IT systems. Networking technologies experience. Configuration and/or administrating enterprise mobile device deployments experience. Experience working with Red Hat Enterprise Linux servers on an enterprise level. For any questions regarding this job announcement or the status of your application, please contact our Director of Recruiting, Mr. Brian Jennings, via email at ********************.