Cyber Security Analyst
Security Engineer Job In Pittsburgh, PA
We are seeking a Cybersecurity Analyst III to join our dynamic team and contribute to the development and execution of strategic cybersecurity initiatives. This role focuses on identifying, managing, and mitigating cyber threats using industry-recognized frameworks and quantitative risk analysis tools. The position is based in Pittsburgh, PA and follows a hybrid schedule with 3 days onsite weekly.
Key Responsibilities:
Drive cybersecurity strategy by managing internal cyber assessments and expanding cyber risk quantification efforts using tools such as ISF's IRAM2 and FAIR.
Develop and enforce governance policies, standards, and controls for continuous cyber hygiene and operational risk management.
Collaborate with cross-functional teams to identify operational roadblocks and develop remediation strategies.
Utilize industry-standard frameworks, including CRI Cyber Profile, NIST CSF, and ISO 27001, to ensure compliance and control effectiveness.
Support business intelligence efforts by analyzing data and creating actionable insights through tools like Power BI, Tableau, and SQL.
Provide professional support for the company's information security infrastructure and consult with stakeholders to address risk and control issues.
Qualifications:
Education: Bachelor's degree in Computer Science, Information Security, or a related discipline (advanced degree preferred).
Experience: 3+ years in GRC, cybersecurity, or a related field. Familiarity with the financial services industry is a plus.
Technical Skills: Proficiency in MS Office, ServiceNow, and tools for quantitative risk analysis such as IRAM2. Experience with SQL, Power BI, Tableau, and other data analysis tools.
Soft Skills: Strong analytical, troubleshooting, and communication skills. Ability to manage time effectively and work both independently and collaboratively.
What We Offer:
An opportunity to work with cutting-edge cybersecurity frameworks and tools.
A collaborative environment where innovation and proactive problem-solving are encouraged.
Competitive salary and potential for long-term growth within the organization.
Information Systems Security Manager
Security Engineer Job In Pittsburgh, PA
The Information Systems Security Manager (ISSM) functionally manages the process to protect classified information.
The ISSM's primary function is implementation of all classified security policy, procedures and
government security requirements as required by the United States Government. The ISSM outlines classified security policies and procedures and assures staff compliance with all applicable government regulations. The ISSM serves as the subject matter expert for classified systems security questions and problem solving within the classified security team.
The ISSM reports directly to the Manager, Security Operations.
Performs the Information Systems Security Manager (ISSM) responsibilities and role for classified network, TS/SCI, and SAP/SAR activities; performs oversight administration of classified systems activities.
Supports the FSO as related to classified processing for maintaining secure facility accreditations and joint and co-use agreements with applicable government agencies.
Writes, coordinates, and conducts classified systems security education briefings (SAP, SCI and CLAN) and the User Acknowledgment statement as required.
Supports the Corporate Information System Security Manager, in maintaining detailed records of Security & Classified Operations department functions and activities for monthly reports
Management regarding classified systems; conducts classified security investigations as required by the Corporate Information Systems Security Manager.
Performs computer systems security activities, implementing security controls for systems processing classified information including initial approval, re-approval, decertification and audits.
Coordinates with the Defense Intelligence Agency and other elements of the U.S. intelligence community on inspections, reviews, investigations, and other reportable issues; coordinates with the Defense Counterintelligence and Security Service (DCSA) and Department of Defense sponsors on inspections, reviews, investigations, and other reportable issues.
Responsible for the classified computing protection program at the collateral, TS/SCI, and SAP/SAR levels, as well as the classified computing hardware/software and voice/data communication audits.
Other duties and special projects as assigned.
Information Security Analyst (Local Applicants ONLY)
Security Engineer Job In Canonsburg, PA
Applicants MUST currently live locally to the Canonsburg, PA region
No 3rd Parties/Sub Vendors
Work Authorization: U.S. Citizen or Green Card
Overview:
The A.C. Coy Company is currently seeking candidates for an Information Security Analyst role. This individual will serve as a main contact for compliance and security initiatives within the company. Our ideal candidate will have 5+ years of experience working in information security and specific experience in GRC and cybersecurity. CISSP is strongly preferred. Occasional travel to other office locations is required, but very rarely overnight.
Our client is offering an excellent salary and benefits package and strong career growth opportunities.
Responsibilities:
Lead and manage security initiatives, compliance enforcement, and incident response in accordance with corporate policies and standards
Maintain and improve our ISMP /Process Documents, create and update process documentation, controls, and SOPs
Maintain security policy and procedure documentation, such as ISMP, according to changes in the business and security framework.
Develop and design necessary systems to maintain and improve the organization's security posture
Conduct log reviews and investigations and monitor/report on security systems such as the SIEM, IPS, and VM
Manage third-party risk management and security awareness program
Provide guidance on development and technology security strategy for the IT team
Mentor and grow our high-performing security team
Works closely with Incident Response Team to gather requirements and support their needs
Help maintain Security Operations Center (SOC) to improve incident response time with Network Technician(s)
Support in achieving organizational Objectives and Key Results (OKRs)
Track, analyze, and report threats, risks, vulnerabilities, and incident data as part of our data-driven security operation
Track and improve corporate security Key Performance Indicators (KPIs)
Brief associates and executives at annual reviews, lunch & learns, and training events on security awareness
Develop and sustain long-standing relationships with 3rd party vendors
Assist with RFP and other client requests for security and compliance confirmation documentation
Assist our stakeholders with aligning standard operating procedures, controls, monitoring, and reporting
Qualifications:
Bachelor's degree in Computer Science, Information Systems, Information Security or a related field
5+ years of experience in the working in information security and technology
Willingness to certify in Security+ and Network+ within first year of role placement is required
Preferred:
CISSP certification
Some experience working in networking and server infrastructure
Experience in the commercial print industry preferred
Experience with C# development
Experience with SQL
System Engineer (Signaling - Rail Industry)
Security Engineer Job In Pittsburgh, PA
Hitachi Rail is looking for an enthusiastic self-motivated Signaling System Engineer who thrives in a fast-paced environment. The position is based in Pittsburgh, PA.
About us:
A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organization to the sustainable and innovative ways we work to bring people together, there's something for everyone to get stuck into. And that's where you come in.
Accountabilities:
Ensure the identification, the management and the traceability of Overall Signaling System Requirements for the entire life cycle of the project (Design and Testing)
Ensure the apportionment of Overall Signaling System requirements to each of the subsystems which constitute the Signaling system.
Ensure the Signaling System Design and ATC Gap Analysis from a define version to achieve proper Signaling System Functionalities and performances.
Ensure the identification, management and resolution of all the interfaces between the Signaling Subsystem and the Other Subsystems (e.g. Rolling Stock, TLC) as well as the internal interfaces within the Signaling Subsystem.
Ensure the definition of the Physical Architecture of the Signaling part and Integrate it within the Overall Physical Architecture of the overall System.
Ensure that the Development of the Products complies with the Requirements and Interfaces of a project.
Ensure the delivery of the assigned tasks on time, on budget and quality.
Ensure efficiency and standardization of signaling systems across different projects (e.g. Design specifications).
Ensure the definition of signaling system integration test procedures, the implementation of any requested test improvement, the execution of such tests and the preparation of final test dossier.
Ensure the definition of lab test procedures, the implementation of any requested test improvement, the execution of such tests and the preparation of final test dossier
Understands and integrates applicable CMMI, CENELEC, AREMA, IEEE, IPC, etc standards.
Responsible for the Engineering Solution
Contribute to system configuration activities, to requirement management activities and Data preparation for ERTMS systems.
Required Skills/Knowledge:
From 3 up to 5 years of Engineering expertise in Signaling Systems
Conventional signaling control designs
CBTC (Communication based train control) systems and designs
Extensive understanding and/or prior experience with engineering lifecycles, delivery, and HW/SW integration lifecycle and demonstrate the ability to deliver solutions to closure
Prior experience managing small-medium sized projects and project teams
Strong prior experience with Microsoft Office suite, requirements management systems, product lifecycle management systems, defect tracking tools, and software configuration tools
Demonstrated ability to lead, engage, and manage tasking of cross-functional teams of varying skills/experience
Builds effective relationships and has exceptional communication and leadership skills
Ability to acquire deep understanding of new technologies with minimal guidance
Ability to communicate complex ideas to peers, management, and customers in a simplified manner
Strong technical troubleshooting and problem solving abilities
Strong prior experience applying fundamental Systems Engineering concepts:
V-lifecycle,
System Architecture
Requirements Management,
Configuration Management,
Interface Management,
Deep competency in interactions between mechanical, electrical, and software components in complex electromechanical systems
Success with multi-tasking across multiple projects at given time
Detail oriented with excellent organizational skills
Rail or rail transit domain experience
Desired Skills/Knowledge:
Prefer Expertise in any ONE or more of the following:
High Speed Railways System and designs
Power systems including traction power and medium to low voltage designs
EMI / EMC system integration and validation
Telecoms and Network designs
Automated control design and development systems
Prior experience collaborating with a diverse, cross-functional team across multiple geographic locations
Education:
Electrical, Electronic, or Computer Engineering or Information Technology Qualifications/ University Degree or Equivalent Technical Background
Language:
English-Proficient
Benefits:
Hitachi Rail employees enjoy a comprehensive benefits package including Competitive Pay, Medical, Dental and Vision Insurance, Short & Long Term Disability, Life & Accident Insurance, Flexible Spending Accounts, a Retirement Savings Plan, and Paid Vacation. We also offer a number of Work/Life Programs such as Flextime and a variety of Training and Development opportunities.
We thank all applicants for their interest; however, only those under consideration will be contacted. Join us at ***************************
It is our commitment at Hitachi Rail to create a diverse environment and we are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
We would be delighted if you would be one of our followers! Have a glance at our LinkedIn page *********************************************
Equal Opportunity Employer (EOE)-Females/Minorities/Protected Veterans/Individuals with Disabilities
If you need a reasonable accommodation to apply for a job at Hitachi, please send the nature of request and contact information to ******************************. Queries other than accommodation requests will not be responded to.
In accordance with the DOT's FRA and FTA programs, Hitachi's substance screening program tests pre-employment candidates and current employees, as required for safety-sensitive positions.
Cyber Security Analyst (2728)
Security Engineer Job In West Mifflin, PA
Navarro Research and Engineering is recruiting for a Cyber Security Analyst in West Mifflin, Pennsylvania. Navarro is a premier contractor providing high-quality technical services to DOE, NASA, and DOD. Navarro's success is based on our customer service focus and our well-known responsiveness and innovation. In all we do, either in corporate management or in our services to our clients, we seek for the most effective and efficient approaches to provide best value to our clients.
The Naval Nuclear Laboratory develops advanced naval nuclear propulsion technology for the safety and reliability of our Navy's submarine and aircraft fleet. Our company is looking for a Cybersecurity subcontractor professional to join our team. The subcontractor will be responsible for execution of all aspects of the National Institute of Standards and Technology (NIST) directives to support the Risk Management Framework (RMF). This includes assisting information system owners with development of System Security Plans (SSPs) and Security Assessment Reports (SARs) using the existing RSA Archer application on the Naval Nuclear Propulsion Network (NNPP Net) to support information system authorization. Additionally, the subcontractor will assist in the development of Plans of Action and Milestone (POA&Ms) and Risk Based Decisions (RBDs) for deficiencies found during the information system authorization process.
Requirements
+ An active DOE Q or DoD Top Secret clearance.
+ At least four years of combined experience in the following roles; security control validator, security control assessor, Information System Security Officer (ISSO), or Information System Security Manager (ISSM)
+ At least two years of experience supporting development of information system security authorization packages in accordance with Risk Management Framework (NIST 800-37, 800-53, 800-53a)
+ At least two years of experience working with Federal Risk and Authorization Management Program (FedRAMP)
+ Security+ Certification
+ Experience with the RSA Archer application\
+ At least two years of experience working on IT security project teams.
+ At least one year of experience managing IT projects.
+ Knowledge of IT infrastructure and services (Data Centers, physical and virtual servers, local and wide area networking components, cloud Infrastructure/Platform/Software as a Service, etc.)
+ Knowledge of security policies such as NIST Special Publications, Security Technical Implementation Guides (STIGs), DOD Cloud Computing Security Resource Guide (SRG)
+ Knowledge of infrastructure security, endpoint protection, vulnerability management tools
+ Previous work authorizing information systems within a classified DoE or DoD environment.
+ Familiarity with NIST 800-171
+ Certified Information Systems Security Professional (CISSP) certification- Certificate of Cloud Security Knowledge (CCSK) certification
Benefits
+ Health Care Plan (Medical, Dental & Vision)
+ Retirement Plan (401k, IRA)
+ Life Insurance (Basic, Voluntary & AD&D)
+ Paid Time Off (Vacation, Sick & Public Holidays)
+ Short Term & Long-Term Disability
Annual Salary Range (based on full-time 40 hours per week)
Salary Range: $85,000 - $160,000 depending on education and years of experience.
In accordance with the Navarro Research and Engineering, Inc (Navarro) salary determination process, Navarro takes into consideration the level of assigned job duties and responsibilities and the candidate's education, training, and/or experience relative to internal peers and the external labor market. A candidate's salary history will not be used in compensation decisions.
Application Security Engineer, Product
Security Engineer Job In Ohio, PA
**Compensation** * $94.5K - $175.5K • Offers Equity • Offers Bonus To provide greater transparency to candidates, we share **base salary ranges** for all United States-based job listings. We set standard base salary ranges for all roles based on function, level, and location, benchmarked against software companies.Individual pay decisions are based on a number of factors, including qualifications for the role, relevant work experience, skillset, internal equity, and other factors, consistent with applicable law.
The SecEng team at Chainalysis is focused on maintaining the security and integrity of our solutions. As Security Engineering, we collaborate with various teams across the company to integrate secure practices into our development processes, build and manage security tools and dashboards, and oversee the security operations and deployment across our products and infrastructure.
The Application Security Engineer at Chainalysis is dedicated to maintaining and enhancing the security of our products.. This role involves collaborating with developers to embed security into every stage of the product lifecycle, building custom security tools, automating assessments, and ensuring a robust security posture within our CI/CD pipelines. The Application Security Engineer also leads proactive efforts in vulnerability management, penetration testing, and security reviews to safeguard our products and continuously enhance our security practices
**In this role, you'll:**
* Conduct penetration testing and security assessments to identify vulnerabilities and ensure robust security measures.
* Develop and maintain custom security tools and scripts to automate and enhance security processes.
* Collaborate with development teams to integrate secure coding practices and solutions into both front-end and back-end systems.
* Review and improve security within CI/CD pipelines, integrating tools like SonarCloud and Wiz for continuous security assurance.
* Perform security audits and code reviews, offering guidance through pull requests and collaborative sessions.
* Analyze and address security issues by providing expert advice and actionable solutions to maintain the integrity of applications.
**We're looking for candidates who have:**
* Experience working within a Security Engineering team.
* Hands-on experience in penetration testing and security assessments, with a strong ability to identify and mitigate vulnerabilities.
* Excellent communication skills, both verbal and written, for effective collaboration with cross-functional teams.
* Proficiency with security tools like Burp Suite, Sonarcloud, Jfrog, and Wiz.
* Ability to create custom scripts using Python to enhance automation.
* Proficient coding skills with a focus on security, particularly in Java, Python or Go.
* In depth knowledge of cloud security practices, specifically on platforms such as AWS or GCP.
* Experience integrating security tools into CI/CD pipelines, and a demonstrated ability to automate security testing within development workflows.
**Nice to have experience:**
* Familiarity with blockchain or cryptocurrency security challenges and solutions.
* Experience with Infrastructure as Code (IaC), particularly reviewing and securing Terraform code.
* Certifications such as CISSP, OSCP, or similar credentials, demonstrating a formalized knowledge of security principles and practices.
**Technologies we use and teach:**
* Coding Languages: Java, Python, and Javascript
* IaC: Terraform
* Cloud: AWS, GCP, Cloudflare
* CI/CD Pipeline: GitHub, GitHub Actions, Jenkins
* APIs: REST APIs
**About Chainalysis**
Blockchain technology is powering a growing wave of innovation. Businesses and governments around the world are using blockchains to make banking more efficient, connect with their customers, and investigate criminal cases. As adoption of blockchain technology grows, more and more organizations seek access to all this ecosystem has to offer. That's where Chainalysis comes in. We provide complete knowledge of what's happening on blockchains through our data, services, and solutions. With Chainalysis, organizations can navigate blockchains safely and with confidence.
**You belong here.**
At Chainalysis, we believe that diversity of experience and thought makes us stronger. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. Some of the ways we're ensuring we keep learning are an internal Diversity Committee, Days of Reflection throughout the year including International Women's Day, Harvey Milk Day, World Humanitarian Day, and UN International Migrants Day, and a commitment to continue revisiting and reevaluating our diversity culture.
We encourage applicants across any race, ethnicity, gender/gender expression, age, spirituality, ability, experience and more. If you need any accommodations to make our interview process more accessible to you due to a disability, don't hesitate to let us know. You can learn more . We can't wait to meet you.
Compensation Range: $94.5K - $175.5K
Manager, Application Security Engineer
Security Engineer Job In Pittsburgh, PA
Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team.
KPMG is currently seeking a Manager, Application security Engineer to join our Global Technology & Knowledge group which is part of the KPMG International organization.
Responsibilities:
* Collaborate with development teams to incorporate security best practices and principles into application design and development
* Conduct manual and automated source code reviews to identify security vulnerabilities in software applications
* Perform application threat modeling to identify potential security weaknesses and risks in software architecture
* Identify, track and remediate vulnerabilities in applications and related infrastructure using security testing tools
* Work closely with Development, DevOps, and Infrastructure teams to automate security checks and ensure secure coding practices are followed
* Support security architects to generate and maintain regular reports on security posture of applications and infrastructure, including metrics, KPIs, vulnerabilities status, and more
Qualifications:
* Minimum four years of recent experience with relevant application development and information technology (IT) security experience
* Bachelor's degree from an accredited college or university in computer science, information technology or engineering or relevant work experience; professional certifications in information technology security
* Minimum four years of recent work experience writing production-level code in any programming language and/or developer frameworks, such as C#, ASP.NET, MVC, Python, Ruby, Go, and more; minimum four years of recent work experience identifying and mitigating security issues in software and knowledge of best practice secure code development
* Experience or knowledge of security tools such as GitHub Advanced Security, Fortify, Fortify On-Demand, Mend, Qualys, Visual Studio Team Suite, Microsoft Defender for Cloud, and more
* Proven communication skills and high attention to detail; experience in designing, analyzing and conducting threat model assessments of enterprise software and services; experience in penetration testing or red team operations preferred
* Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)
KPMG complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, the firm is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year the firm publishes a calendar of holidays to be observed during the year and provides two firmwide breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at "Benefits & How We Work".
Follow this link to obtain salary ranges by city outside of CA:
**********************************************************************
California Salary Range: $101200 - $215100
KPMG LLP (the U.S. member firm of KPMG International) offers a comprehensive compensation and benefits package. KPMG is an affirmative action-equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding the firm's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please.
KPMG does not currently require partners or employees to be fully vaccinated or test negative for COVID-19 in order to go to KPMG offices, client sites or KPMG events, except when mandated by federal, state or local law. In some circumstances, clients also may require proof of vaccination or testing (e.g., to go to the client site).
KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them.
Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
eVinci Safeguards and Security Engineer
Security Engineer Job In Etna, PA
Are you interested in being part of an innovative team that supports Westinghouse's mission to provide clean energy solutions? At Westinghouse, we recognize that our employees are our most valuable asset and we seek to identify, attract and recruit the most qualified talent while recognizing and encouraging the value of diversity in the global workplace.
This position will have the opportunity to work on the eVinci and AstroVinci microreactor programs with responsibilities in analyzing and designing for aspects of the eVinci and AstroVinci reactor designs ranging from physical security systems, cyber security systems, remote operations and monitoring, and domestic and international safeguard protection systems
Job responsibilities
In this position the engineer can expect to be responsible for the following:
* Plan and perform design, analysis, and testing programs in relations to security, remote-enabling systems, and safeguard systems.
* Integrate safeguards-by-design (SBD) and security by design (SeBD) into early-stage design and operational thinking for the eVinci microreactor and AstroVinci microreactor across both USA and Canada deployment locations.
* Develop and evaluate safeguards and non-proliferation strategies to ensure that nuclear material is not being diverted and that the plants are not being misused to produce undeclared nuclear material
* Familiarity with NRC or DOE regulations for nuclear design and accident analyses.
* Perform engineering design calculations, specifications, process diagrams, & procedures for the development of our advanced reactor conceptual and preliminary designs.
* Development of test plans to validate models and parameters.
* Identify and define technical issues and challenges, direct efforts to successful resolution.
* Bring engineering rigor to resolution of problems that are sometimes loosely- or only partially-defined, requiring knowledge and experience within given discipline.
* Provide technical guidance and direction to and collaborate with other personnel including partners including laboratories or subcontractors.
Minimum Requirements
The successful candidate for this position will possess the following:
* A bachelor's degree in an Engineering field.
* Advanced Degree preferable or minimum of 2 years of experience required
* Ability to apply existing and new safeguards and non-proliferation methodologies and approaches to a novel application
* Familiarity with existing approaches to enhance proliferation resistance of the nuclear fuel cycle
* Experience working in a challenging or dynamic environment of applied R&D, startup, or new product development is preferred (with relevance of testing and experiments).
No Relocation Assistance Available
Why Westinghouse?
Westinghouse Electric Company is the global nuclear energy industry's first choice for safe, clean, and efficient energy solutions. We enable our delivery of this vision by living our value system:
* Safety and Quality
* Integrity and Trust
* Customer Focus and Innovation
* Speed and Passion to Win
* Teamwork and Accountability
Westinghouse offers competitive benefits to all our employees around the globe to keep them healthy and enhance their well-being. In the U.S. the following are representative of what we offer:
* Competitive Salary
* Comprehensive Health, Wellness and Income Protection Benefits
* 401(k) Savings Plan with Company Match
* Paid Vacations and Holidays
* Opportunities for Flexible Work Arrangements
* Educational Reimbursement Program
* Employee Referral Program
While our Global Headquarters are located in Cranberry Township, PA, we have over 9,000 employees working at locations in 19 different countries. You can learn more by visiting
Cloud Security Engineer
Security Engineer Job In Pittsburgh, PA
**At Dario, Every Day is a New Opportunity to Make a Difference.** Dario is seeking a skilled Cloud Security Engineer to join our Information Security team. In this role, you'll help design, implement, and maintain security controls across our cloud infrastructure while ensuring compliance with industry standards and best practices.
**Responsibilities:**
* Design and implement security architectures for cloud environments (AWS/Azure/GCP)
* Conduct security assessments, vulnerability scanning, and penetration testing of cloud infrastructure
* Develop and maintain cloud security policies, procedures, and standards
* Monitor cloud environments for security incidents and respond to security alerts
* Implement and maintain Identity and Access Management (IAM) policies
* Automate security processes and controls using Infrastructure as Code
* Collaborate with DevOps teams to implement security best practices
* Perform security reviews of cloud architecture designs and deployments
* Implement security controls within CI/CD pipelines
* Develop and maintain security automation scripts for deployment processes
* Implement and manage security logging acquisition to centralized SIEM
* Perform security scanning of container images and dependencies
* Support the Dario Information Security Practice by creating, updating security architecture SOP's
* Review and secure Infrastructure as Code templates
* Monitor and audit configuration changes in cloud environments
* Implement automated security testing in deployment workflows
* Collaborate with development teams to establish secure coding practices
* Maintain security documentation for DevOps processes
* Design and implement secrets management solutions
* Create and maintain security metrics dashboards
Requirements:
* Bachelor's degree in computer science, Cybersecurity, Biomedical Engineering, or related field.
* 3-5 years of experience in cloud security engineering
* Strong knowledge of major cloud platforms (AWS/Azure/GCP)
* Experience with security tools, SIEM solutions, and cloud monitoring
* Proficiency in scripting languages (Python, Bash, PowerShell)
* Understanding of network security concepts and protocols
* Experience with container security and orchestration platforms
* Knowledge of compliance frameworks (SOC 2, ISO 27001, NIST)
* Relevant certifications (CCSP, AWS Security, Azure Security)
* Experience with Infrastructure as Code (Terraform, CloudFormation)
* Knowledge of DevSecOps practices and tools
* Experience with CI/CD security integration
* Incident response and threat hunting experience
Technical Skills:
* Cloud Platforms: AWS, Azure, GCP
* Security Tools: Cloud-native security tools, SIEM platforms
* IAM and Authentication: OAuth, SAML, SSO
* Networking: VPCs, Security Groups, NACLs
* Containerization: Docker, Kubernetes
* Automation: Terraform, Ansible, Python
* Microsoft Cloud / Azure Certification (Architect/Engineer)
* AWS Solutions Architect and/or AWS Security Certification
* DarioHealth promotes diversity of thought, culture and background, which connects the entire Dario team. We believe that every member on our team enriches our diversity by exposing us to a broad range of ways to understand and engage with the world, identify challenges, and to discover, design and deliver solutions. We are passionate about building and sustaining an inclusive and equitable working and learning environments for all people, and do not discriminate against any employee or job candidate. ***
Senior Security Engineer
Security Engineer Job In Pittsburgh, PA
Duolingo Our mission at Duolingo is to develop the best education in the world and make it universally available. It's a big mission, and that's where you come in! At Duolingo, you'll join a team that cares about finding , running countless experiments (300+ at a time!) with our massive user base to make data-driven decisions, and educating our users and employees alike. You'll have limitless learning opportunities, mentorship and collaboration with world-class minds, and a variety of projects with large scopes - while doing work that's both fun and meaningful.
Join our life-changing mission to develop education for our half a billion (and growing!) learners around the world.
****About the role****
Join Duolingo as a Security Engineer and play a pivotal role in safeguarding our systems, employees, learner data, and services across our rapidly-growing language learning platform. With over 650 employees and 21 million daily active users, your expertise will be critical in maintaining the highest security standards, while continuously enhancing our infrastructure security and ensuring compliance.
**You will...**
* Design and develop scalable monitoring and response systems for security alerts to proactively mitigate risks
* Continuously evaluate Duolingo's security posture, anticipating future threats and devising appropriate countermeasures
* Collaborate with development teams to conduct threat modeling, identify risks, and provide guidance on mitigations
* Be a partner to our security champions, organizing and growing the program across Duolingo to ensure the efficient distribution of security knowledge
* Implement dependency checks for open-source software within applications
* Participate in regular product security tabletops with organizational partners
* Work on deploying early alerting systems throughout our environment and the responsive automations that trigger when they alert
* Develop a continuous verification and testing system for security controls and critical features
* Work with our partners in finance to ensure we maintain compliance with our regulatory obligations
* Collaborate with IT to improve the security of our offboarding processes by introducing automation and well documented procedures
**You have...**
* Experience deploying, managing, and troubleshooting security scanning tools in the CI/CD pipeline
* Familiarity with Linux system administration, automation, and Python programming
* A desire to learn more about security and develop the foundational building blocks of the program
* Strong collaboration, emotional intelligence, and communication skills
**Requirements...**
* A Bachelor's degree in Computer Science or related technical field
* Proven experience developing and maintaining microservices
* 2+ years working on collaborative development teams
* Experience in product, application, or cloud security
* Willingness to work in both backend engineering and operational engineering dependent on the needs of the organization
**Exceptional candidates will have...**
* Familiarity with containerization runtimes (Docker, rkt)
* Experience securing a large infrastructure on AWS
* Threat modeling experience across various architectures and understand how to align those with business goals
* Demonstrable experience in designing and managing multi-account cloud environments
* Experience communicating sophisticated technical requirements to audiences of variable technical sophistication
* Experience working in Terraform, developing modules and creating secure by default configurations
* Familiarity with security scanning tools such as SemGrep, Nuclei, Trufflehog, and Checkov
Take a peek at how we care for our employees' holistic well-being with our benefits.
We will do everything we can within reason to make sure that your interview takes place in an environment that fairly and accurately assesses your skills. If you need assistance or accommodation, please contact your recruiter.
Duolingo is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.
By applying for this position your data will be processed as per the.
**We post a multi-level salary range for all of our roles.**
*This is not inclusive of the rest of our awesome portfolio that includes equity compensation and world-class benefits. Our salary ranges are the same for all US locations. Your recruiter can share more details about the range for a specific level during the hiring process.* *The actual salary within the range is determined by many factors including but not limited to, skills, experience, education, and internal equity.*
Salary Range: $196,000 - $354,000 USD
Embedded Security Engineer
Security Engineer Job In Pittsburgh, PA
At Skild AI, we are building the world's first general purpose robotic intelligence that is robust and adapts to unseen scenarios without failing. We believe massive scale through data-driven machine learning is the key to unlocking these capabilities for the widespread deployment of robots within society. Our team consists of individuals with varying levels of experience and backgrounds, from new graduates to domain experts. Relevant industry experience is important, but ultimately less so than your demonstrated abilities and attitude. We are looking for passionate individuals who are eager to explore uncharted waters and contribute to our innovative projects.
****Position Overview****
We are seeking a proficient Embedded Security Engineer to join our team and contribute to the protection of our models deployed on robotic hardware. You will be responsible for conducting comprehensive threat modeling and security assessments, as well as supporting our engineering teams in adhering to established security standards and requirements. This role involves both software engineering techniques and deep learning methods to encode/encrypt trained models. A blend of technical acumen and collaborative skills is essential, as you will develop solutions to identified risks, write test cases for security controls, and actively participate in offensive security assessments.
****Responsibilities****
* Conduct detailed threat modeling and security assessments of critical assets.
* Regularly update threat models to reflect evolving threats and changes in the business environment.
* Identify and explore vulnerabilities in critical software components used across our environment.
* Create and implement technical solutions to mitigate identified risks, and maintain test cases to ensure the effectiveness and resilience of the solutions.
* Collaborate with engineering teams to ensure compliance with defined security standards and requirements.
* Provide support in the implementation of security measures.
* Lead penetration tests and red team exercises.
****Preferred Qualifications****
* BS, MS or higher degree in Computer Science, Robotics, Engineering or a related field, or equivalent practical experience.
* Proficiency developing higher-level languages (e.g., PHP, Python, C++, or Java).
* Experience with deep learning software, frameworks, and APIs (e.g., PyTorch, etc.).
* Experience with enterprise security.
* Proven experience in threat modeling, security assessments, and penetration testing.
* Strong understanding of cybersecurity principles, frameworks, and standards.
* Understanding and experience with securing transfer and storage of deep neural network models.
Mainframe Security Engineer
Security Engineer Job In Pittsburgh, PA
At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere.
We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about.
We're seeking a future team member for the role of Mainframe DB2 Systems Engineer to join our Technology Services Group (TSG) - Mainframe team. This role is preferred to be located in Lake Mary, FL or Pittsburgh, PA - HYBRID.
In this role, you'll make an impact in the following ways:
Support mainframe security environment (Focusing on RACF but also ACF2 and TopSecret)
Improving security setup for existing products and engineering security solutions/setup for new products.
Support of third party vendor software utilities and packages as well as in-house developed solutions that are used to manage the security environments.
Capability to evaluate existing security provisioning/setup, identify possible gaps, recommend solutions and effectively communicate with technical, operational and business teams.
Identify security and system vulnerabilities and work with groups to resolve them.
Interact with auditors and provide information required to complete auditing tasks.
To be successful in this role, we're seeking the following:
College/Technical Degree with 8-10 years' technical experience with increasing responsibilities and knowledge and expertise. Knowing mainframe Db2 operational and processing perspectives with distributed WEB access, SQL performance and tuning, and Db2 operational problem determination skills.
At BNY, our culture speaks for itself. Here's a few of our awards:
America's Most Innovative Companies, Fortune, 2024
World's Most Admired Companies, Fortune 2024
Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024
Best Places to Work for Disability Inclusion, Disability: IN - 100% score, 2023-2024
“Most Just Companies”, Just Capital and CNBC, 2024
Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024
Bloomberg's Gender Equality Index (GEI), 2023
Our Benefits and Rewards:
BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.
BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.
AI and Information Security Analyst
Security Engineer Job In Pittsburgh, PA
**RAND Corporation** Published 09 Nov 2024 **Role Highlights** **Languages used** Python Java C++ CUDA **Key skills** AI Machine Learning Computer Science International Relations Electrical Engineering Information Technology Security Engineer Information Security Applied Mathematics Reverse Engineering Research Infrastructure Quantitative Deployment Operations Data Physics **Tools, Libraries and Frameworks**
FirmWare GPUs PyTorch Tensorflow Ray **Description**
The role involves addressing critical challenges at the intersection of AI, information security, and national security. The position focuses on developing AI-specific threat models, building software tools for evaluating AI cyber capabilities, and analyzing policy implications regarding AI systems. The work will be integrated with multidisciplinary teams to shape recommendations for government and industry. This position offers an opportunity to influence key policy decisions ensuring the responsible development of powerful AI technologies. **Required Qualifications and Skills**
A master's degree in relevant fields such as Computer Science or Cybersecurity is required, or a bachelor's degree alongside at least 10 years of professional experience. Candidates need to demonstrate strong analytical skills and provide evidence of technical abilities in quantitative or qualitative research methodologies. Effective communication skills, both verbal and written, are essential, as well as the ability to work in multidisciplinary teams. A background in security engineering or software development is crucial for executing the responsibilities of the role. **Disclaimer**
Disclaimer: Job and company description information and some of the data fields may have been generated via GPT-4 summarisation and could contain inaccuracies. The full external job listing link should always be relied on for authoritative information.
**Description**
RAND is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND researchers and analysts continue to be on the cutting edge of their fields, working with decisionmakers in both the public and private sectors to find solutions to today's difficult, sensitive, and important problems. The high caliber of our researchers is well-known, as evidenced by the many Nobel Laureates who have been affiliated with RAND, either as employees, consultants, or in an advisory capacity. RAND provides an exciting intellectual environment and opportunities for career growth. We hire highly qualified applicants and provide challenging assignments. Diversity is an essential operating principle at RAND. We look for unique backgrounds, original views and diversity in academic training, work experience and ideological outlook. We are committed to Equal Opportunity and Affirmative Action. To view current job openings visit *****************************
Security Analyst
Security Engineer Job In Frazer, PA
Artech Information Systems is the #1 Largest Women-Owned IT Staffing Company in the U.S. and an employer of choice for over 7,200 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications.
Job Title: Security Analyst
Location: Pittsburgh, PA/ Lake Mary, FL / Nashville, TN
Duration: 12 months contract with possible extension/ conversion FTE
Job Description:
Client is looking for a talented and self-motivated individual with strong technical skills and the ability to rapidly learn new technologies. We are looking for an exceptional candidate that shares our passion for delivering solutions to complex security problems, while maximizing productivity and minimizing employee friction. The candidate will contribute to IAMO Transformation program by aiding in the configuration and implementation of the new SailPoint LCM product. The candidate will perform business critical analysis to help with the implementation of application access requests and workflows across IAM. This role will support access provisioning, remediation for audit findings, workflow creation and modifications, and ensuring revocations and certifications are completed within the guidelines established by Corporate Policy. This position is critical to ensure Service Level Objectives and Internal project deadlines are met. The candidate will require increased technical and analytical skillsets and provide Sailpoint Product Support with a focus on:
• Experience with designing, developing, testing, implementing, and integrating IGA solutions involving SailPoint Identity Now (IIQ).
• Experience in SailPoint Identity IQ implementation and configuration for application on-boarding for access request and approval and access certifications
o Configuration of simple and advanced LCM workflows within SailPoint
o Creating and managing workgroups in SailPoint
o Configuration and management of most common direct connectors (i.e. Active Directory, LDAP, Mainframe, etc.)
o Creation of preventative and detective Segregation of Duty rules
o Experience with role-based access controls and configuring automate provisioning and deprovisioning.
• Train and mentor other team members on the use of the SailPoint Identity Now platform.
• Experience with identity lifecycle flows including leaver, joiner, and mover.
• Experience with consultative and complex technical deployment projects, managing various stakeholder relationships.
• Strong knowledge and experience with incident/problem management processes.
• Possess critical thinking skills.
• Strong functional knowledge of MS Office Suite software products, Jira, and Confluence.
• Strong communications skills, oral and written.
• Ability to collaborate and interact productively with team members and key stakeholders.
• Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
• Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
• Ensures integration end state protects information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss.
• Design and code rules, applications, workflows, custom tasks, custom connectors, UI pages and custom reports in SailPoint Identity Now.
• Develop working relationship with IT engineering resources to drive solution features adoption.
• Develop control adoption templates for IT resources to understand and implement connections required for the SailPoint Identity Now service.
• Review SailPoint IGA to ensure the solution is optimized for the highest level of service and establish an ongoing practice to perform periodic reviews.
• Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions.
• Design and maintain flowchart diagrams, process workflows and standard documentation required to sustain the SailPoint platform.
• Promote security policies, standards, and best practices across the organization.
• Supports and resolves system incidents, problems, and changes.
Qualifications
5 years of Sailpoint experience
-Will consider experience over degree
-Locations: Pittsburgh, Lake Mary or Nashville
-2000+ applications to be migrated into sailpoint
-Configure workflows
-Create/manage work groups
-Create duty rules
-Invisio, Confluence, Jira, Excel
Additional Information
All your information will be kept confidential according to EEO guidelines.
Mainframe Security Engineer
Security Engineer Job In Pittsburgh, PA
At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere.
We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about.
We're seeking a future team member for the role of Mainframe DB2 Systems Engineer to join our Technology Services Group (TSG) - Mainframe team. This role is preferred to be located in Lake Mary, FL or Pittsburgh, PA - HYBRID.
In this role, you'll make an impact in the following ways:
* Support mainframe security environment (Focusing on RACF but also ACF2 and TopSecret)
* Improving security setup for existing products and engineering security solutions/setup for new products.
* Support of third party vendor software utilities and packages as well as in-house developed solutions that are used to manage the security environments.
* Capability to evaluate existing security provisioning/setup, identify possible gaps, recommend solutions and effectively communicate with technical, operational and business teams.
* Identify security and system vulnerabilities and work with groups to resolve them.
* Interact with auditors and provide information required to complete auditing tasks.
To be successful in this role, we're seeking the following:
* College/Technical Degree with 8-10 years' technical experience with increasing responsibilities and knowledge and expertise. Knowing mainframe Db2 operational and processing perspectives with distributed WEB access, SQL performance and tuning, and Db2 operational problem determination skills.
At BNY, our culture speaks for itself. Here's a few of our awards:
* America's Most Innovative Companies, Fortune, 2024
* World's Most Admired Companies, Fortune 2024
* Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024
* Best Places to Work for Disability Inclusion, Disability: IN - 100% score, 2023-2024
* "Most Just Companies", Just Capital and CNBC, 2024
* Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024
* Bloomberg's Gender Equality Index (GEI), 2023
Our Benefits and Rewards:
BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.
BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.
Cloud Security Engineer Company Hidden Pittsburgh, PA Contract-to-Hire DevOps 2 Openings Posted today $2,000 reward per hire
Security Engineer Job In Pittsburgh, PA
**Cloud Security Engineer** Company Hidden Other Pittsburgh, PA Base pay $12,345 - $678,910 or to view salary and company information DevOps Contract 2 Openings $2,000 reward per hire **About this Role** Agility Partners is seeking a qualified Cloud Security Engineer to fill an open position with one of our banking clients. This is an exciting opportunity to join a security engineering team dedicated to mitigating risks, fraud, and security operations within the technology industry.
Key Responsibilities:
* Deploy Amazon Cloud tools and integrate them into Splunk Cloud
* Deploy Splunk Cloud
* Design and develop components of application and technical architecture
* Execute tests for application or technical architecture components
* Assist in selecting appropriate platforms and integrating and configuring solutions
* Develop software components and hardware for new and emerging technology projects
* Provide consultation on common issues and best practices for junior staff
* Ensure quality of project deliverables and maintain compliance with relevant standards and processes
**Benefits and Perks**
This is a great opportunity to work for a coast-to-coast financial services firm, with tremendous opportunity to grow, develop and move internally to pursue your passions. An organization that develops tools and technologies that incorporate some of the most modern and cutting-edge approaches, working collaboratively and continuously developing as experts in their respective fields.
* Amazing opportunity for growth, healthy work/life balance and a community focused environment
* Working for an organization that focuses on company culture, inclusion and diversity
* 50% medical coverage for you and your entire family, short/long term disability and life insurance options
* 401(k)
* Life Insurance
* Disability coverage
**The Ideal Candidate**
Qualifications:
* Technical Skills: AWS (Kinesis Firehose) Onboarding Mechanism, Cloud Architecture, Splunk Cloud
* Flex Skills: AWS Security, Security Hub, Security Lake, Cloud Trail, Ansible
* Soft Skills: Good documentation skills (Confluence), work tracking (JIRA), good communication
* Education: Bachelor's degree in computer science, software engineering, or relevant field preferred; AWS Certifications preferred
* Experience: 5-7 years of experience in a similar role; experience with security tools onboarding into AWS, integration with Kinesis Firehose, and engineering with Splunk Cloud
Share this job. Make $2,000.
When a friend applies to this position and gets hired, you'll get credited with a referral reward!*
*Reward paid upon hire of your candidate according to our Recruiting Agreement Policy (see right).
Senior Cloud Security & Automation Engineer
Security Engineer Job In Pittsburgh, PA
At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere.
We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about.
We're seeking a future team member in the role of Senior Cloud Security & Automation Engineer to join our Information Security Division (Cyber Cloud Security) team. (ISD). This role is located in Pittsburgh, PA or Lake Mary, FL - Hybrid (2-3 days/week in-office. Must live within a commutable distance.)
Click here to view our Information Security Division Career Brochure.
What to expect:
Be part of team that is laser focused on delivering a transformative cloud security program that is in alignment with BNY's overall cloud strategy.
Provided with an opportunity to further finetune and specialize in skills across all cyber disciplines.
You will collaborate with passionate leaders, technologists, architects, engineers, and cyber professionals that strive to enable business securely with innovative technology and solutions.
Strong partnership and support from the Cloud Service Providers (Azure, GCP, AWS) and Cyber Security partners and vendors we do business with.
An opportunity to influence the bank's cloud security and automation strategy.
In this role, you'll make an impact in the following ways:
Design, implement, and maintain secure cloud environments in accordance with industry best practices and regulatory requirements.
Optimize cloud security controls and capabilities (e.g., CSPM, DSPM, etc.) to ensure IaaS, SaaS, PaaS, and FaaS cloud service compliance with relevant regulations, standards, organizational policies, and design patterns through continuous assessment and reporting.
Integrate security tools and practices into our continuous integration and continuous delivery (CI/CD) pipeline, ensuring security is embedded in all stages of the software development lifecycle.
Partner closely with cloud architecture, cloud engineering, developers, and other line-of-business representatives to develop and refine automation capabilities for a multitude of Cloud Service design patterns.
In partnership with SOC and IR implement monitoring and logging solutions to detect and respond to security threats and incidents in real-time.
Provide security domain expertise on protective controls, to include system, network, encryption, and authentication services.
Collaborate with stakeholders to define security requirements and provide guidance on secure development practices.
Develop and maintain documentation related to security policies, procedures, and best practices.
Provide training and support to development and operations teams on security-related topics and tools.
To be successful in this role, we're seeking the following:
Bachelor's or Graduate degree in engineering, computer science or a related discipline or equivalent work experience required.
10+ years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus.
3-4 years of larger scale application scripting/development experience combined with 2-3 years of direct experience working with and securing cloud native workloads in one or more of the three major cloud service providers (Microsoft Azure, Google Cloud Platform, and AWS).
Expertise in cloud-native container and container orchestration security (e.g., Azure Kubernetes Service).
Experience developing Infrastructure-as-code/Policy-as-code components and automation using languages and tools like Python, Terraform, ARM/BICEP to name but a few.
Experience in implementing security controls in CI/CD pipelines, third party security tools (e.g., Rego) and cloud native policies.
Experience in API Security and implementation of appropriate security controls.
Experience with software architectures and development/scripting experience in at least one programming language.
Experience with cyber security related processes and tooling (e.g., Vulnerability management, IAM).
Familiarity with adopting cloud security frameworks and best practices (e.g., NIST, CIS, CSA CCM, and OWASP).
At BNY, our culture speaks for itself. Here's a few of our awards:
America's Most Innovative Companies, Fortune, 2024
World's Most Admired Companies, Fortune 2024
Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024
Best Places to Work for Disability Inclusion, Disability: IN - 100% score, 2023-2024
“Most Just Companies”, Just Capital and CNBC, 2024
Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024
Bloomberg's Gender Equality Index (GEI), 2023
Our Benefits and Rewards:
BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter.
BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.
This is a Talent Pipeline requisition.
Security Engineer (Tokenization / SSH Key & Certs)
Security Engineer Job In Pittsburgh, PA
location Pittsburgh, Pennsylvania, United States of America category Technology Full time Job ID: R177035 Posted: Nov 6th 2024 * Provides subject matter expertise when applying security concepts. Leverages technical knowledge and industry experience to design, build, and maintain technology solutions. Responsible for deliverables related to project timelines.
* Responsible for working with architecture to take high level architectural designs and determine the specifics around implementation details (ex: sizing) integration details, onboarding and operationalization.
* Evaluates patches, updates, and ongoing maintenance. Determines impacts to existing solutions when new standards are implemented. Utilizes change control and other governance processes to ensure alignment of solutions .
* Develops detailed implementation, configuration, design, and engineering documentation. Build and implement solutions.
* Works with operational partners to enable transition and day-to-day supportability.
* Provides engineering support to existing technology in a production environment and collaborating with other groups as required. Seeks opportunities to grow a broad knowledge base to complement specific subject matter expertise.
KNOWLEDGE-FUELED TEAM BUILDING TEAMS' FUTURE Career-development opportunities include robust networking and mentoring programs, employee-led affinity groups, a world-class learning experience platform, dedicated career advisors and more. Location Pittsburgh, Pennsylvania, United States of America Category Technology Location Pittsburgh, Pennsylvania, United States of America Category Technology Location Pittsburgh, Pennsylvania, United States of America Category Technology Location Fredericksburg, Texas, United States of America Category Branch Banking Location Joliet, Illinois, United States of America Category Branch Banking PNC complies with all U.S. Federal and State employment posting requirements.
The information you provide to the chatbot will be collected to improve your experience. Please read our privacy policy to see how we are storing and protecting your data Today 07:57 pm Bot message
Cyber Security Engineer
Security Engineer Job In Pittsburgh, PA
Primary Office Location: 626 Washington Place. Pittsburgh, Pennsylvania. 15219. Join our team. Make a difference - for us and for your future. Cyber Security Engineer Business Unit: Risk Management Reports to: Manager of Cyber Security
This position is primarily responsible for system administration of the Information Security department applications and systems. The incumbent serves as a liaison between Technology, Project Management, vendors and the department. The incumbent is responsible for ongoing administration, training and project leadership as it relates to the platforms.
Primary Responsibilities:
Serves as the system administrator for the Information Security department applications and systems including development and configuration efforts, system upgrades, user security settings, profile maintenance and licensing coordination. Evaluates system performance and provides configuration or reconfiguration to meet business needs.
Acts as the liaison between the software and services providers and Lines of Business management. Works with IT teams including Infrastructure and Business Solutions to guarantee that Information Security applications function properly and are maintained. Participates in PMO lead and other projects when directly or indirectly related to the tools.
Manages and oversees systemic change required due to vendor, compliance and policy shifts. Follows the established change control process for documentation. Communicates system upgrades and changes to users.
When appropriate, manages user setup, security access and training. Completes periodic user review.
Develops and maintains training plans, materials and documentation for application users and coordinates new user and ongoing training sessions for employees.
Performs other related duties and projects as assigned.
All employees have the responsibility and the accountability to serve as risk managers for their businesses by understanding, reporting, responding to, managing and monitoring the risk they encounter daily as required by F.N.B. Corporation's risk management program. F.N.B. Corporation is committed to achieving superior levels of compliance by adhering to regulatory laws and guidelines. Compliance with regulatory laws and company procedures is a required component of all position descriptions.
Minimum Level of Education Required to Perform the Primary Responsibilities of this Position:
BA or BS
Minimum # of Years of Job Related Experience Required to Perform the Primary Responsibilities of this Position:
3
Skills Required to Perform the Primary Responsibilities of this Position:
Excellent organizational, analytical and interpersonal skills
Excellent project management skills
Excellent communication skills, both written and verbal
Ability to work and multi-task in a fast paced environment
Detail-oriented
MS Excel - Intermediate Level
MS Word - Basic Level
Prior System, Server, and/or Network Administration experience
Bachelors or a combination of education and equivalent experience may be considered
Licensures/Certifications Required to Perform the Primary Responsibilities of this Position:
Valid Drivers License
At least one relevant Information Technology or Information Security Certification
Physical Requirements or Work Conditions Beyond Traditional Office Work:
N/A
Equal Employment Opportunity (EEO):
It is the policy of FNB not to discriminate against any employee or applicant for employment because of his or her race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, or status as a protected veteran. FNB provides all applicants and employees a discrimination and harassment free workplace.
Network and Security Engineer
Security Engineer Job In Brighton, PA
* Before submitting your application, you should read our to understand how Bupa will use, store and share your information. * For Australia or New Zealand candidates - Before submitting your application, you should read our to understand how Bupa will use, store and share your information.
Job Description:
**Network and Security Engineer**
**Staines (TW18), London (EC2), Brighton, or Salford (M50)**
**Flexible / Hybrid working options**
**Permanent**
**Competitive Salary + fantastic benefits**
**Full time 37.5 hours PW**
**Here you'll be welcomed. We champion diversity and we understand the importance of our people representing the communities and customers we serve. You'll find an inclusive environment where you can be yourself and where everyone is driven by the same purpose - helping people live longer, healthier, happier lives and making a better world.**
At Bupa, we're passionate about technology. With colleagues, customers, patients and residents in mind you'll have the opportunity to work on innovative projects and make a real impact on their lives.
Right from the start you'll become part of our digital strategy, joining us on our journey and developing yourself along the way.
**Role Overview:**
As part of the Network Connectivity department, you will use your technical expertise and leadership to support the maintenance of functions across a portfolio of connectivity services. As a subject matter expert, you will deploy highly complex industry leading technical systems and work closely with all levels of stakeholders, IT teams, vendors and supplier providers.
As a Network and Security Engineer, you will be responsible within the team for service operation, consultation, delivery and implementation of critical Information Services. This is an expert level position.
**What you'll do:**
* Provide technical leadership and ownership for network security solutions, such as WAF, Firewall, Network Security, DDoS, Cloud technologies, General Network areas WAN/LAN/WLAN
* Manage WAF and firewall environments whilst continuing to support network services to the business and direct with our IT consumers
* Develop and maintain high-level and low-level designs through to deployment and providing SME support for Bupa's IT services
* Integrate solutions with other necessary components such as security, service management and operations and supporting services
* To deliver and maintain key ITIL processes in support of Connectivity services: Configuration, Release, Availability, Capacity, Financial and Service Continuity Management
* Technical ownership in relation to Connectivity Services especially related to network security areas
* Contribute to integrate core IT solutions creating a strong infrastructure foundation for business systems development and deployments
* Develop appropriate test and monitoring plans to check infrastructure and systems technical performance
**What you'll bring:**
* Certified to CCNA R&S (required)
* Certified to CCNP (desired)
* Firewall/Security and Web Application Firewall certification an advantage
* Minimum 5 years experience in supporting complex network data and security environments and systems with at least 3 years at SME level
* Experience as a Technical Project Lead in connectivity service delivery using best practice methodologies
* Experience of complex technical network and network security environments
* In-depth experience in the design and implementation of network services; on premise and within cloud infrastructures
* Excellent stakeholder, internal team and vendor management
* Operational excellence approach
* Essential extensive knowledge in the following areas.
+ WAF (Barracuda, Cloudflare)
+ Firewall (PA, Firepower, Checkpoint)
+ DDoS solutions
+ Cloud security solutions (Zscaler preferred)
+ Routing and Switching
+ Wireless
+ SDWAN
+ Cloud solutions (Azure preferred)
+ Data Centre Design
+ Meraki solutions (Routing/Switching/Wireless)
**Benefits**
Our benefits are driven by what matters to our people. It's important to us that these benefits support a work-life balance that keeps people healthy, both mentally and physically.
As a Network and Security Engineer, you'll be eligible for:
* 25 days holiday, increasing through length of service, with option to buy or sell
* Bupa health insurance as a benefit in kind
* An enhanced pension plan and life insurance
* Onsite gyms or local discounts where no onsite gym available
* Various other benefits and online discounts
**Diversity and Inclusion**
Bupa is committed to making sure that every applicant is assessed solely on personal merit and qualifications. We actively celebrate the diversity of our colleagues and provide an inclusive environment so you can truly be you at Bupa. We want to ensure you are treated fairly. That's why we're happy to offer reasonable adjustments as part of our recruitment process to anyone that needs them.
Whether you've found your feet or are discovering a new path.
Welcome to a place that celebrates you.
This isn't where you've been.
This is where you're going.
This is what we have belief in
Time Type:
Full time Job Area:
ITLocations:
Angel Court, London, Bupa Place, Staines - Willow House, Victory House, Brighton**Get In Touch**
Please introduce yourself to our recruiters and we'll get in touch if there's a role that sounds like a good match.