Cyber Security Engineer
Security Engineer Job In Columbus, OH
Seeking a highly technical Principal Cyber Engineer to drive cybersecurity portfolio growth. This role focuses on reverse engineering, vulnerability research, cybersecurity capture proposals, and client engagement.
Title: Principal Cyber Engineer
Location: Columbus, OH OR Chantilly, VA (Hybrid: Mon-Wed Onsite, Thurs-Fri Remote)
Travel: 25% minimum, up to 60% as needed
Clearance: Active Secret (TS/SCI eligibility preferred)
Key Responsibilities
Analyze and deconstruct software/hardware to identify exploits and security gaps.
Develop cybersecurity strategies, competitive proposals, and technical roadmaps.
Conduct deep-dive security assessments to identify zero-day vulnerabilities.
Oversee project execution, manage risk, and mentor junior engineers.
Technical Skills:
CNO project execution & full program lifecycle management.
Proficiency in x86/x64, ARM, MIPS, PowerPC architectures.
Expertise in IDA Pro, Ghidra, Radare2, Binary Ninja, WinDbg, gdb.
Strong background in exploit development, firmware analysis, and software-defined radio (SDR).
Qualifications
Bachelor's in CS, Computer Engineering, EE, or related field (Master's/PhD preferred).
12+ years in reverse engineering, vulnerability research, and capture proposals.
Proven CNO project leadership, program lifecycle management, and technical solutioning.
Packaging System Engineer
Security Engineer Job 11 miles from Columbus
Engineer - System Owner
Onsite
Top 3 Must Have Skill Sets:
Project Management
Problem Solving & Root Cause Analysis
Communication and Teamwork
Red Flags: No engineering degree
No experience with packaging equipment
Summary:
In this role the Line Owner/System Owner must work under general supervision, owns all the technical aspects in a manufacturing line. The processes were the SO/LO Engineer shall be familiar with are: characterization of process optimization strategies and/or solving problems of operational issues in the packaging operations, manufacturing, pilot technologies or capital projects.
Applies basic engineering principles to the design and implementation of system modifications, experiments and/or capital projects. Organizes, analyzes and presents interpretation of results for operational issues or engineering projects of minor scope and complexity.
As a technical resource of an area, System Owner/ Line Owner Engineer shall interact and provide direction to technical resources such as Mechanics, Automation Techs and IS teams. At the same time, the System Owner/ Line Owner Engineer shall be able to define designs requirement to the service providers to fulfill area technical and equipment needs.
Responsibilities:
Provide solutions to a variety of technical problems of moderate scope and complexity.
Under general supervision will evaluate, select and apply standard engineering techniques and procedures. Assistance given for unusual problems.
Perform assignments that have clear and specific objectives and require investigation of limited number of variables.
Initiate and complete routine technical tasks.
Operations Engineering:
Function as a technical specialist to equipment or systems regarding problem solving operations. Frequently become actively involved in daily operations when required to meet schedules or to resolve problems.
Routinely audit the operational performance and regulatory compliance of a moderate number of equipment items or systems of complexity.
Work with research, manufacturing, maintenance, process development, utilities, facilities, quality assurance and/or validation departments in developing requirements and recommendations for system modifications.
Design Engineering:
Work under the direct supervision of project managers to complete design, engineering, and construction projects within schedule and budget constraints.
Work with consultants, architects and engineering firms on development of standard design documents.
Acquire and critique quotes for equipment modifications or installations.
Generate rudimentary project cost estimates and schedules.
Preferred Qualifications:
Advanced degree in Mechatronics, Computer, Electrical, Mechanical, or Chemical Engineering
Knowledge and/or experience of pharmaceutical/biotech processes, especially in the area of final drug product operations
Knowledge of pharmaceutical/biotech processes
Familiarity with validation processes for Packaging areas
Familiarity with serialization process and networking
Familiarity with documentation in a highly regulated environment
Ability to operate specialized equipment, tools and computers as appropriate.
Ability to interpret and apply GAMPs and GMPs and familiarity with documentation in a highly regulated environment.
Ability to apply engineering science to production.
Able to develop solutions to routine technical problems of limited scope
Comprehensive understanding of protocol requirements.
Organizational, project management, problem-solving, as well as validation protocol, and technical writing capability
Excellent communication (verbal/written) and presentation skills
Demonstrated interpersonal skills including; collaboration, influencing, and facilitation
Protocol and script testing Writing
Dealing with and handling change
Packaging Equipment Technical knowledge
Analytical Problem Solving
Comprehensive understanding of validation protocol implementation requirements as well as knowledge of validation processes and requirements as applied to new equipment installations
Understanding of Operational Excellence and Lean Transformation in the Automation and Engineering Context
Network Engineer
Security Engineer Job 12 miles from Columbus
Title: Network Engineer
The role requires: - 5 years of experience - Associate Degree - Secret / Tier 3
Primary Location: Whitehall, OH
The client seeks a mid-level Network Engineer with storage and backup experience to join the IT Operations team.
Responsibilities include, but are not limited to: Network Experience - Monitor, administer, securely install, configure, and maintain network equipment such as routers, switches, firewalls, Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS), network encryption devices Tactical Fastlane (TACLANE) and Electronic Key Management System (EKMS), load balancers, domain name system (DNS) appliances, F5, AnyConnect, ClearPass, SolarWinds, Palo Alto Firewalls and wireless infrastructure. Perform disaster recovery operations and data backups when required. Protect data, software, and hardware by coordinating, planning and implementing network security measures. Troubleshoot, diagnose, and resolve hardware, software, and network issues. Replace faulty network hardware components as necessary to maintain system integrity. Monitor network performance to determine if adjustments need to be made. Conferring with network users about solving existing system problems Operate master consoles to monitor the performance of networks and computer systems. Provide complete lifecycle support for enterprise network assets. Storage & Backup Experience (Preferred) - Design, install, configure, test, manage, monitor, support, and troubleshoot all storage and backup components, including addressing disaster recovery site requirements and remotely managing datacenter locations. Conduct daily checks for errors on Brocade SAN Switches, monitor storage arrays, and resolve any backup issues.
Responsibilities also include provisioning storage, zoning, and collaborating with other technical teams to troubleshoot performance or other issues across Linux, Windows, and VMware systems. Execute the deployment of Backup Agents and perform upgrades and patching of Storage Devices and Storage Switches. Ensure the infrastructure supporting backups is reliable and available.
Qualification requirements include:
Possess excellent verbal and written communication skills. Practical experience in managing firewalls within a multi-vendor environment, as well as experience with storage (preferred) installations, configurations, and including but not limited to: Commvault Operating Systems: Windows OS (2016-2022) Databases: Oracle Databases, SQL Databases Red Hat Enterprise Linux (RHEL): Versions 6-9 Storage Solutions: NetApp, Hitachi Cloud Services: OCI (Oracle Cloud Infrastructure), AWS (Amazon Web Services) IT Service Management: ServiceNow Experience with DoD STIG Security Technology Implementation Guide Process Excellent problem-solving and analytical skills. Associates degree minimum preferred, but not required Must be able to work on-site daily at the client location in Whitehall, OH.
Required Professional and Vendor Certifications: Security + and 8570 certifications i.e. CCNA Must be able to support on-call rotation and weekend support
**Experience with storage and backup systems is desirable, but not essential. We are open to candidates who have a solid understanding of system administration and are willing to learn and adapt to new technologies and concepts**
Security Engineer - Surface Coverage, Detection Engineering
Security Engineer Job In Columbus, OH
Meta's security team is the central engine driving data and system security. We work across all parts of the company, from corporate infrastructure to production to external services, interfacing with nearly every team in the company.We are looking for a Security Engineer with experience influencing, mentoring, and contributing alongside teams of engineers who focus on threat modeling, TTP identification, and detection engineering securing Meta's surfaces. You'll work alongside Software Engineers, Offensive Security Engineers, Product Managers, and Data Scientists/Engineers to identify critical assets, assess the top risks, and evaluate potential attacks against Meta systems. You will be working with engineering teams supporting Meta's products (including WhatsApp, Instagram, Horizon Worlds, Threads, and others) serving over 3.2 billion daily active user working to understand existing detection coverage, enumerating gaps, and presenting findings to product, security, and legal senior leaders to drive decisions around multi-year risk mitigation efforts.
**Required Skills:**
Security Engineer - Surface Coverage, Detection Engineering Responsibilities:
1. Influence and align the organization's vision and strategy, while engaging our teams to develop and deliver specific, multi-year roadmaps, programs, and projects
2. Collaborate with various functions, drive engineering initiatives and have an impact at an organizational level
3. Lead technical design and strategy leveraging insights from some of the most advanced infrastructure in the world
4. Partner with leadership to influence and drive org design, contribution and prioritization
5. Coach, mentor, support, and care for the team in a way that enables long-term career development, happiness, and success at scale
6. Leverage state-of-the-art graph-based TTP to asset mapping systems to enumerate transitive detection coverage and develop novel approaches to prioritize and scale Product-specific infrastructure coverage
7. Build, cultivate, and maintain positive relationships with cross-functional partners to enable the team's ability to effectively and efficiently execute on project work
8. Assist with hiring, growing, and building a high performing team capable of achieving the team's mission
9. Work across partners in Product Management, Data Science, and Data Engineering to design and iterate on metrics and goals related to attack enumeration and detection coverage and validation
**Minimum Qualifications:**
Minimum Qualifications:
10. 12+ years of work experience in software or security engineering
11. BS in Computer Science or equivalent experience in Security
12. Demonstrated experience in working across organizational boundaries to achieve company-wide impact
13. Experience leading and managing complex cross-functional programs
14. Knowledge of Windows, MacOS, and Linux operating systems, container orchestration, hypervisors, and distributed system security
15. Experience with an interpreted programming language (PHP, Python, Perl, Ruby, etc.)
16. Experience with attacker tactics, techniques and procedures
**Preferred Qualifications:**
Preferred Qualifications:
17. Demonstrated experience in one or more Security domains such as Detection Engineering, Product Security, Cloud Security - Web Application Security experience across the Software Development Lifecycle is a plus
18. Experience working with Legal and Governance, Risk, and Compliance teams to understand and address complex and emerging regulatory requirements
19. Background in security-focused software engineering, designing large scale systems and data pipelines, or in offensive security
20. Demonstrated experience launching, scaling, and obtaining buy-in from Product VP stakeholders on a complex multi-year security initiative
21. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems
**Public Compensation:**
$213,000/year to $293,000/year + bonus + equity + benefits
**Industry:** Internet
**Equal Opportunity:**
Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment.
Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.
Threat Hunt Security Engineer
Security Engineer Job In Columbus, OH
Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're invested in providing the flexibility you need to thrive and deliver lasting impact. Apply now to continue digitally connecting the world and shaping the future.
**The Role**
The Lead Information Security Engineer primary function is to contribute to a team of SOC analysts to provide continuous monitoring, incident response, remediation support, and threat hunting services. This role also provides professional security operations center (SOC) analysis associated with customer monitoring activities through the processing and management of incidents and request tickets, as they are assigned. The role is responsible for investigating novel and complex threats, developing knowledge, playbooks, and automation. Deeper dives into threat hunting are also in scope. The responsibilities include receiving and managing escalations from other Analysts, customers, and other internal groups, as well as contributing to the full incident handling lifecycle with customers. The engineer is expected to contribute to internal documentation and adherence to SLA targets and requirements. Tier 3 engineers are expected to participate in and contribute to planning and implementation of strategic and operational projects in efforts to achieve overall PSS goals. Tier 3 engineers are expected to be able to troubleshoot complex problems with minimal input from peers and leadership. Tier 3 engineers will significantly contribute to an incident handling team for clients with the additional level of service.
**The Main Responsibilities**
+ Continue analysis of the alert queue events/incidents escalated by tier 1; advanced triage of security alerts; collects data and context necessary to resolve the incident or escalate to customer for explanation
+ Conduct Threat Hunting in customer environments leveraging structured frameworks; create future detections based on threat hunting recommendations; provide written reports to customers and be prepared to provide briefings as needed.
+ Trend and Pattern analysis of incidents to expedite current and future incident response efforts, assist customers with response playbooks as needed.
+ Regularly perform tuning and filtering of SIEM alerts and monitor components to ensure only relevant security data is being gathered.
+ Contribute to incident response efforts to identify, investigate, mitigate, and respond to security events and incidents during live incidents, red team incidents, purple team exercises, or tabletop exercises within the customer's environment and otherwise mentor junior analysts.
+ Investigate novel and complex threats, then develop detection logic, playbooks, automation, and any other necessary documentation for reoccurring incidents and incident tasks.
+ Contribute to the creation of temporary or permanent reports for customers, as requested
+ Provide professional recommendations to incident response leadership in incident remediation.
+ Provide technical recommendations to improve incident response frameworks and plans for SOC customers based on industry standards, guidelines, and best practices.
+ Document incident response process and create reports for incident stakeholders and facilitate lessons learned.
+ Collaborate with technical and business SMEs including internal leadership to provide technical assistance in identifying gaps to enhance security monitoring and response actions.
+ Work closely with Tier 1 teams to identify and implement automation solutions that enhance the efficiency of triage processes.
+ Participate in a 24x7 Rotating On-Call Schedule.
**What We Look For in a Candidate**
+ 3-5 years of Managed Security Service Provider (preferred)
+ Strong understanding of security principles such as attack frameworks, threat landscapes, attacker TTPs, etc.
+ Knowledge of new and evolving technologies
+ Working experience and knowledge of SOAR platforms and solutions
+ Excellent writing, communications, and presentation skills
+ Familiarization with a variety of information and network security monitoring tools (specifically Securonix SIEM, QRadar SIEM, Splunk, FortiSIEM, Microsoft Sentinel, Falcon Crowdstrike Carbon Black, among others)
+ Ability to work in a dynamic team-centered environment
+ Proven ability to multitask among multiple customers to meet all customer needs outside of a single pane of glass
+ Threat Intelligence or Forensic background is a plus
All Analysts should possess the background and experience necessary to obtain Industry or SOC specific certifications as instructed by management. Possible applicable certifications include, but are not limited to:
+ Certified Information Systems Security Professional (CISSP)
+ Information Systems Security Engineering Professional (CISSP-ISSEP)
+ Systems Security Certified Practitioner (SSCP)
+ Certified Ethical Hacker (CEH)
+ GIAC Certified Security Analyst (GCSA)
+ GIAC Certified Incident Handler (GCIH)
+ GIAC Certified Forensic Analyst (GCFA)
+ GIAC Certified Intrusion Analyst (GCIA)
+ GIAC Certified Forensic Examiner (GCFE)
+ Information Technology Infrastructure Library (ITIL)
**Compensation**
This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors.
Location Based Pay Ranges:
$103,711 - $138,281 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, and WY.
$108,896 - $145,195 in these states: CO, HI, MI, MN, NC, NH, NV, OR, and RI.
$114,082 - $152,109 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, and WA.
Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process.
Learn more about Lumen's:
+ Benefits (***************************************************
+ Bonus Structure
Requisition #: 336343
**Background Screening**
If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page (**************************************** . Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis.
Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
**Equal Employment Opportunities**
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, "protected statuses"). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
**Disclaimer**
The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions.
In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.
Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.
**Application Deadline**
02/15/2025
Identity & Access Management Cloud Security Engineer
Security Engineer Job In Columbus, OH
Senior Security Engineer - IS07FE We're determined to make a difference and are proud to be an insurance company that goes well beyond coverages and policies. Working here means having every opportunity to achieve your goals - and to help others accomplish theirs, too. Join our team as we help shape the future.
The Hartford's Information Protection (THIP) organization is looking for talented individuals to join a high-performing team of Cybersecurity professionals who are charged with supporting and enhancing our core Directory Services platforms. As an Identity & Access Management Cloud Engineer , this position will play a lead role in leveraging Directory Services for our Cloud-based initiatives, specifically focusing on adoption of Directory Services in environments such as AWS and Google Cloud.
The individual will have the opportunity to help shape the direction and use of the technologies that support our company's Cloud-based Identity and Access Management (IAM) processes. This role will provide thought leadership, professional support and valued contributions to a range of cloud and production support, development and project activities. We are looking for an experienced professional, who has a breadth of knowledge and skills across various technical acumens, an understanding of industry best practices, and a desire to learn and grow as a security professional. This is a key role within our Information Security organization, and as a company and organization we are committed to supporting the development of our team members.
Responsibilities:
1) Technical expert for engineering, managing and supporting our Cloud-based Directory Services integrations - specifically focused on AWS and GCP. This includes analyzing and supporting existing integrations, leading identity efforts on new cloud initiatives and ensuring consistency across all of our integrations.
2) Automation support for various Cloud-based Directory Services technologies. This involves helping the existing engineers with support of directory services technologies, including Azure Active Directory, AWS IAM and Google Cloud. This work will range from production support to project related activities.
3) Design and implementation support for Identity Management process improvements. This work includes reviewing current systems and processes and helping to design more efficient and automated solutions, where feasible.
This role will have a Hybrid work arrangement, with the expectation of working in an office location (Hartford, CT, Charlotte, NC, Chicago, IL or Columbus, OH) 3 days a week (Tuesday - Thursday).
Qualifications:
- A broad and diverse technical background.
- Automation & development experience with tools such as Powershell, C#, etc
- Experience working with GCP, AWS and Azure IAM
- Strong overall knowledge of Intel and Unix/Linux servers
- Track record in production support / system support activities.
- Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate actions.
- Confidence to effectively influence others to modify their opinions, plans, or behaviors.
- Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part.
- Organizational skills that enables one to work on several tasks simultaneously, providing management with appropriate insight into the workload and priorities.
- Original and innovative thinking that produces new ideas and creates innovative solutions.
- Demonstrated ability to develop and implement process improvement initiatives.
- BS or MA in Engineering, Computer Science, Information Security, or
experience in related field preferred.
Candidate must be authorized to work in the US without company sponsorship. The company will not support the STEM OPT I-983 Training Plan endorsement for this position.
Compensation
The listed annualized base pay range is primarily based on analysis of similar positions in the external market. Actual base pay could vary and may be above or below the listed range based on factors including but not limited to performance, proficiency and demonstration of competencies required for the role. The base pay is just one component of The Hartford's total compensation package for employees. Other rewards may include short-term or annual bonuses, long-term incentives, and on-the-spot recognition. The annualized base pay range for this role is:
$127,200 - $190,800
Equal Opportunity Employer/Females/Minorities/Veterans/Disability/Sexual Orientation/Gender Identity or Expression/Religion/Age
About Us (************************************* | Culture & Employee Insights (***************************************************** | Diversity, Equity and Inclusion (********************************************************* | Benefits (*********************************************
Human achievement is at the heart of what we do.
We believe that with the right encouragement and support, people are capable of achieving amazing things.
We put our belief into action by ensuring individuals and businesses are well protected, and by going even further - making an impact in ways that go beyond an insurance policy.
Nearly 19,000 employees use their unique talents in careers that span a variety of disciplines - from developing the latest technology to creating and promoting our products to evaluating future financial risks.
We're also committed to programs that drive education and support volunteerism, which put human beings first. We do it because it's the right thing to do, and because when our customers, communities and employees succeed, we all do.
About Us (*************************************
Culture & Employee Insights (*****************************************************
Diversity, Equity and Inclusion (*********************************************************
Benefits (*********************************************
Legal Notice (*****************************************
Accessibility StatementProducer Compensation (**************************************************
EEO
Privacy Policy (**************************************************
California Privacy Policy
Your California Privacy Choices (******************************************************
International Privacy Policy
Canadian Privacy Policy (****************************************************
Unincorporated Areas of LA County, CA (Applicant Information)
Real Time Cyber Analyst
Security Engineer Job In Columbus, OH
Who We Are… Today's leading government agencies are putting their trust in Newberry Group, and for good reason. Newberry brings strength to our clients, from the inside out through: • client intimacy and superior quality, • presence and accountability in our relationships, and
• integrity and innovation at the forefront of everything we do.
Newberry Group is a professional services firm, providing information security compliance, governance, program/project management, and mission critical project-based consulting to public sector clients nationwide.
The strength of our company is a direct reflection of our highly skilled and talented workforce.
Job Summary
Newberry Group's Public Sector Division is seeking Real Time Cyber Analysts with the expertise to support a 24/7 Cyber Network Defense (CND) Operation for Department of Defense networks in Columbus, OH. This includes performing real-time cyber threat intelligence analysis, correlating actionable security events, performing network traffic analysis using raw packet data, and participating in the coordination of resources during the incident response process.
Candidates must hold an active Top-Secret clearance with the ability to obtain a Top-Secret w/ SCI clearance in the future. *Highly qualified candidates may be considered for the role with only a Secret-level clearance.
Location
Columbus, Ohio
Currently, the customer is operating on a hybrid schedule between in office and telework; the hybrid schedule is as mission allows and is subject to change. There are three available shifts where you can state your preference: 7am-3pm, 3pm-11pm, and 11pm-7am.
Salary
$95,000 to $115,000 dependent on experience
Responsibilities and Duties
Review DoD and open source intelligence for threats.
Identify Indicators of Compromise (IOCs) and integrate those into sensors and SIEMs.
Triage alerts to identify malicious actors on customer networks.
Assist T1 analysts with triage and analysis.
Complete moderate-level cyber analysis of potential events.
Report incidents to customers and USCYBERCOM.
Basic Qualifications and Skills Required
Bachelor's degree and 2+ years of prior relevant experience; additional work experience or Cyber courses/certifications may be substituted in lieu of degree.
Demonstrated understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings
DoD 8570 IAT level II or higher certification such as CompTIA Security+ CE, ISC2 SSCP, SANS GSEC prior to starting.
DoD 8570 CSSP-A level Certification such as CEH, CySA+, GCIA or other certification is required within 180 days of hire.
Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain and an ability to think and work independently.
Strong analytical, troubleshooting, and critical thinking skills.
Willing to perform non-rotating shift work.
Must be a US Citizen.
Preferred Qualifications and Skills
CND experience (Protect, Detect, Respond and Sustain) within a Computer Incident Response organization.
Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs).
Advanced understanding of TCP/IP, common networking ports and protocols, traffic flow, system administration, OSI model, defense-in-depth and common security elements.
Demonstrated hands-on experience analyzing high volumes of logs, network data (e.g. Netflow, Full Packet Capture), and other attack artifacts in support of incident investigations.
In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. ArcSight, Splunk, Nitro/McAfee Enterprise Security Manager, QRadar, LogLogic).
Experience and proficiency with any of the following: Anti-Virus, HIPS/HBSS, IDS/IPS, Full Packet Capture, Network Forensics.
Experience with malware analysis concepts and methods.
Unix/Linux command line experience.
Scripting and programming experience.
Familiarity or experience in Intelligence Driven Defense and/or Cyber Kill Chain methodology.
Existing 8570 CSSP Analyst Certifications (CEH), CySA+ etc.or the ability to obtain within the customer's timeframe.
Benefits and Perks
In addition to competitive wages, Newberry Group offers an outstanding benefits package. This includes medical coverage with two plan options (HDHP or PPO), dental and vision coverage, personal time off, paid holidays, parental leave program, telecommuting if available, retirement savings accounts (Pre Tax and Roth), flexible and dependent care savings accounts, life insurance, long and short-term disability coverage, tuition and training reimbursement, and employee assistance program.
The Newberry Group, Inc. is an Equal Opportunity Employer - EEO/AA/Disability/Veterans.
Cyber Security Analyst/Implementation Specialist
Security Engineer Job In Columbus, OH
Responsibility for information cyber security analysis & response with the mission of protecting the firm from internet attacks / threat actors.
Lead initiatives and the implementation of capabilities in order to advance the Cyber Threat program
Enhance and distribute security incident response and escalation procedures to ensure timely and effective handling of security events and alerts
Apply knowledge of technical, analytical skills to ensure the confidentiality, integrity, and availability of all information systems assets and ensure compliance with company policies, procedures, contractual, and regulatory requirements.
A solid understanding of Penetration Testing, Vulnerability Management, Threat Vector Analysis, Intrusion Detection and Prevention, Incident Management and Response, Web Application Security, Risk Assessment and Mitigation methodologies, and Counter Threat Operations.
Qualifications
Cyber Security Analyst/Implementation Specialist - need someone that has broad cyber security knowledge that can not only recommend solutions, but more importantly also has experience implementing/managing those solutions.
MUST HAVE JAVA DEVELOPMENT BACKGROUND
Need solid remediation experience - how to remediate vulnerabilities in a web application
CISSP certification is nice to have, not mandatory
Additional Information
Job Status: Contract to Hire
Eligibility: EAD Green Card/ Green Card/ US Citizens
Share the Profiles to *********************
Contact: ************
Keep the subject line with Job Title and Location
Security Engineer
Security Engineer Job In Columbus, OH
Must Have - 3+ years experience with customer facing communication skills (both written and verbal) close - 3+ years experience with one or more scripting languages (e.g. PowerShell, Java, Python, VBScript, etc.). - 3+ years experience writing professional level documentation covering topics related to Cybersecurity or SaaS application technologies. These include design and implementation documents, process documents, SLAs, etc.
Nice To Have
- Experience in working with Privileged Access Management (PAM) and Multi-Factor Authentication (MFA)
- Experience with ServiceNow, Workday, Salesforce.com, Adobe Cloud.
- Experience working with an ITIL change management process and agile teams.
- Familiarity in working with industry standards like; NIST, CIS, CSA, and ISO 27001
- Relevant certifications such as CISSP, Security+, or CCSK are desirable
JOB DESCRIPTION
TEKsystems is seeking a skilled and passionate engineer as a national banking client of ours matures its Cybersecurity program with SaaS Security Posture Management. The role is an excellent opportunity to enter the Cybersecurity domain and become part of an organization where teams implement new technology while focusing on implementing effective security solutions. The Cybersecurity Engineer will work directly with Cybersecurity leaders, application owners, and Risk partners to secure the environment.
Pay and Benefits
The pay range for this position is $50.00 - $65.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: - Medical, dental & vision- Critical Illness, Accident, and Hospital- 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available- Life Insurance (Voluntary Life & AD&D for the employee and dependents)- Short and long-term disability- Health Spending Account (HSA)- Transportation benefits- Employee Assistance Program- Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Columbus,OH.
Application Deadline
This position is anticipated to close on Feb 14, 2025.
About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Data Security analyst
Security Engineer Job In Columbus, OH
US Tech Solutions is a global staff augmentation firm providing a wide-range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit our website ************************
We are constantly on the lookout for professionals to fulfill the staffing needs of our clients, sets the correct expectation and thus becomes an accelerator in the mutual growth of the individual and the organization as well.
Keeping the same intent in mind, we would like you to consider the job opening with US Tech Solutions that fits your expertise and skillset.
Job Description
Scope/Responsibilities/Duties:
• 0-2 years general experience, bachelor' s degree or equivalent combo of education/experience;
• Some experience in desired tech area; position functions with high level of supervision;
• Assesses security and/or compliance of university systems; responsible for assessing, monitoring and analyzing data, identifying security, risk or compliance issues and/or events
• Leveraging job aids for common issues or incidents
• Demonstrated ability to work in a team, attention to detail, solid written communications and some technology experience
• To perform system based risk assessments.
• Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Qualifications
• Review risk assessment questionnaires, perform information security control reviews and complete documentation for submission to risk management governance committees for approval or denial.
Additional Information
Thanks & Regards,
Kushal Kumar
Talent Acquisition Specialist
Tel: ************
Application Security Engineer
Security Engineer Job In Columbus, OH
Physna is changing the way software interacts with the physical world. Our industry-leading geometric deep learning technology bridges the gap between physical objects and digital code. Physna partners with large manufacturers and the Department of Defense to reduce risk in supply chain, manage obsolescence, reverse engineering, and identify alternative, more effective sources of supply.
Thangs.com is a consumer SaaS product of Physna and the world's first geometric search engine, 3D-native revision control tool, and 3D social platform. Thangs gives creators access to powerful search, collaboration and AI-powered predictive tools that have never been available before in the world of 3D data.
Physna is a Series B startup backed by Sequoia Capital, Tiger Global, Google Ventures, and Drive Capital. We are working on novel problems in a world experiencing rapid 3D adoption.
What You'll Do
This is an exciting time to join Physna and make a personal difference in a rapidly growing space as a Security Engineer on a lean team. Physna and Thangs are highly visible products that we must protect against damage to our internal information and our reputation. Your main priority at all times will be to help safeguard Physna's technology systems. This role plays a critical function to ensure we are continuously improving the security of our products and services.
What We'll Expect from You
Bachelor's degree in CE, CSE, or Math/Statistics
3+ years of application security engineering experience
5+ total years of experience in any of the following: threat modeling experience, application security risk assessment, secure coding, exploitation paths, secure identity management and authentication, and software development
Thorough understanding of Google Cloud architecture, React, and Node.JS
Experienced in security testing tools and techniques, such as vulnerability management and static and dynamic code analysis
Knowledge of identifying key risk indicators is important
Strong analytical skills with the ability to identify and mitigate security risks
Experience securing CI/CD pipelines enabling strong security controls
Demonstrated ability to operate autonomously in a dynamic and evolving startup
Nice to Have
Experience building and implementing authentication layers
Experience building automation between tools and systems
Experience performing analytics against aggregated log data
Familiarity with enterprise security controls and security best practices
Familiarity with cloud security services, concepts, and best practices
Strong familiarity with software development lifecycle (SDLC) processes and source control technologies,
Track record of getting things done quickly and with quality
Why You'll Like Working for Us
We care about your physical, financial and mental well-being. We cover health, dental and vision insurance premiums at 100% for the family. We also make a meaningful contribution into employees' Health Savings Account (HSA). We believe in competitive and fair compensation, offer a 401k, provide a generous holiday and PTO schedule, monthly WFH stipend, monthly well-being budget, unlimited virtual Mental Health therapy, as well as financial assistance for Alternative Medicine, Financial Wellness, Legal Services, Tax Support, and Caregiver Support.
We care about our culture. We believe in diversity, equity, inclusion & belonging. We believe in treating each other with kindness and respect. We are a culture of innovation, transparency, accountability, failing fast and learning quickly.
Lead Security Engineer
Security Engineer Job In Columbus, OH
Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.
As a Lead Security Engineer at JPMorgan Chase within Cybersecurity Technology & Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.
Job responsibilities
Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
Develops secure and high-quality production code and reviews and debugs code written by others
Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network
Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
Formal training or certification on engineering concepts and 5+ years of applied experience.
Skilled in planning, designing, and implementing enterprise level security solutions
Advanced experience required: Python automation, AWS experience, Security Operations
Proficient in all aspects of the Software Development Life Cycle
Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security
Experience with threat modeling, discovery, vulnerability, and penetration testing
In-depth knowledge of the financial services industry and their IT systems
Preferred qualifications, capabilities, and skills
Pipelines, infrastructure deployment, Data Loss Prevention, Vulnerability Management
Experience effectively communicating with senior business leaders
M&A experience a plus
Associate - Security Engineer III
Security Engineer Job In Columbus, OH
As an Associate - Security Engineer within the Cybersecurity Technology Controls Organization, you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Security Engineer at JPMorgan Chase within the Cyber Operations Engineer team, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.
Job responsibilities:
Help deliver world class Phishing and malware protection solutions for enterprise mailing systems
Execute creative security solutions, participate in design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
Minimize security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
Work with stakeholders and partners to understand security needs and apply modern and secure engineering standards to build world class solutions
Identify upstream and downstream applications and help design scalable, robust and resilient end-to-end solutions
Add to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills:
Formal training or certification on information security concepts and 3+ years applied experience
Experience in planning, designing, and implementing enterprise level security solutions
Proficient in all aspects of the Software Development Life Cycle
Sound knowledge of the financial services industry and their IT systems
Solid background, experience and expertise in cyber security, especially malware protection and phishing domains
Strong expertise in infrastructure engineering
Solid understanding of platform engineering and integration engineering with third party products and APIs (Web services, JSON, REST, XML) for on-prem and cloud based services
Strong knowledge and expertise of phishing products such as Cofense, Proofpoint
Strong experience in mailing systems, SMTP/POP3/journaling
Solid understanding of network concepts such as Firewalls, Load-balancers, and complex network designs.
Strong scripting experience with shell/PowerShell/python/ansible
Strong background and understanding of cloud PaaS/IaaS/SaaS
Experience with Agile scrum and Kanban methodology and tools (JIRA, Align, Confluence)
Experience with monitoring tools (Apica/AppDynamics)
Solid understanding of and experience in SIEM (Splunk/LogScale)
Preferred qualifications, capabilities, and skills:
Experience in effective communicating with senior business leaders
Self-motivated professional and strong team player
Passion to learn, apply and share knowledge and skills
Strong analytical and problem solving skills
Strong communication and coordination skills with experience in partnering with various teams and stake holders
Security Engineer III - Vulnerability Management Platforms
Security Engineer Job In Columbus, OH
Your seniority as a security engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the world's most iconic financial institutions where security is vital.
As a Security Engineer III at JPMorgan Chase within the Cyber Security and Technology Controls organization, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm's business objectives
Job responsibilities
Performs deployment, administration, management, configuration, testing, and integration tasks related to the Vulnerability Management Platforms
Help develop new Vulnerability Management Strategies and Implementations for the firm.
Champion a DevOps security model so that security is automated and elastic across all platforms.
Support the Firm's goals in secure Cloud adoption through hands on interaction with development teams to cultivate a Cloud first mindset in transitioning workloads.
Provides support to develop & improve the quality of technical engineering documentation.
Provides support to drive the maturity of the Cybersecurity software development lifecycle.
Ensures all engineering activities are in conformance with JPMC policies and objectives.
Provides technical interface between development, product, and operations teams.
Leverage DevOps tools to build, harden, maintain, and instrument a comprehensive Vulnerability Management orchestration platform for network security and infrastructure as code.
Develop automated security and compliance capabilities in a large-scale multi-cloud hybrid computing environment.
Required qualifications, capabilities, and skills
Formal training or certification on security concepts and 3+ years applied experience.
Experience working in a Public Cloud environment - AWS/Azure/GCP.
Software engineering experience to include implementation of highly scalable systems, release management, software configuration, design, development, and implementation is required.
Experience in a modern programming language - Python.
Wide range of knowledge of Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats & vulnerabilities, including vulnerability management methodologies.
Experience in vulnerability detection, application security, cryptography, or endpoint security.
Preferred qualifications, capabilities, and skills
Experience with API design & development using FastAPI.
Experience with microservice architecture and patterns.
Experience with optimizing large data sets.
Ability to work in large, collaborative teams to achieve organizational goals, and passionate about building an innovative culture.
Experience with container technologies such as Docker, Kubernetes, Mesos, or Open Container Initiative (OCI).
Experience automating Production Support and Site Reliability Engineering Functions.
Lead Security Engineer - AI ML Data Scientist
Security Engineer Job In Columbus, OH
Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers.
As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.
Job responsibilities
Create bespoke data models and algorithms tailored to address Cyber Technology Group's requirements and apply them to data sets while developing and employing the company's A/B testing framework to assess model quality
Apply advanced principles, theories, and concepts in the realm of Artificial Intelligence (AI), Machine Learning (ML), Large Language Models (LLMs), Deep Learning (DL), Generative AI, Transfer Learning, and Reinforcement Learning algorithms to cyber data sets
Utilize open-source and third-party models while contributing to the development of innovative AI capabilities
Coordinate with various functional teams to implement models and track results
Establish processes and tools for monitoring model performance and data accuracy and develop custom models when suitable models are unavailable in JPMC's inventory, from suppliers, or in the open-source domain. Extract and analyze data from JPMC data sources, evaluating the effectiveness and precision of new data sources and data collection techniques
Assess and choose suitable LLM tools and models for diverse tasks including but not limited to curating custom datasets and fine-tune LLM with a focus on parameter-efficient, mixture-of-expert, and instruction methods designing and developing advanced LLM prompts, Retrieval-Augmented Generation (RAG) solutions, and Intelligent agents for the LLMs and executing experiments to push the capability limits of LLM models and enhance their dependability
Orchestrate multiple models and develop innovative approaches for sparse-data situations
Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs
Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability
Triages based on risk assessments of various threats and managing resources to cover impact of disruptive events
Adds to a team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
Formal training or certification on security engineering concepts and 5+ years applied experience
Experience developing ML pipelines, including data gathering from system records, data preparation (analysis and preprocessing), model selection, training, testing, validation, and prediction
Proficient in using algorithms such as Linear Regression, Logistic Regression, Decision Tree, Random Forest, Bagging and Boosting, K-Nearest Neighbor, Support Vector Machine, Single/Multi-Layer Perceptron, Feed Forward, CNN, RNN, LSTM, GRU, BERT, Hugging Face and Spacy Models, Naive Bayes, Markov-Model, Graph Models, and more
Experience in backend development, including databases (SQL/NoSQL/Graph), programming languages (Python/Java/Node.js), web frameworks, APIs, and microservices and possess front-end development skills, including HTML, CSS, and JavaScript
Familiarity with frameworks such as React or Angular
Demonstrate a solid understanding of statistical theory, data mining, or machine learning algorithms. Understand advanced statistical techniques and concepts (regression, properties of distributions, statistical tests and proper usage, etc.) and have experience applying them
Expertise in Python, SQL, and Spark for developing large-scale applications using extensive datasets and have experience working with and creating data architectures
Skilled in planning, designing, and implementing enterprise-level security solutions
Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.)
Practical cloud native experience
Preferred qualifications, capabilities, and skills
Experience in managing GPU and compute resources in frameworks like PyTorch or TensorFlow
Proficiency in coding with multiple languages, including C, C++, and object-oriented languages
Experience in developing applications in cloud environments such as AWS, Google Cloud, and Azure and familiarity with CI/CD pipelines and Agile methodology
Experience utilizing web services such as Redshift, S3, Spark, DigitalOcean, etc.
Familiarity with distributed data/computing tools like Map/Reduce, Hadoop, Hive, Spark, Gurobi, MySQL, and others
Experience in LLM based solution development and wrapper languages; e.g., OpenAI with LangChain and intelligent Agents
Show proven experience in applying AI to comprehensive and practical technology solutions
Lead Security Engineer
Security Engineer Job In Columbus, OH
Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.
As a Lead Security Engineer at JPMorgan Chase within Cybersecurity & Technology Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.
Job responsibilities
Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
Develops secure and high-quality production code and reviews and debugs code written by others
Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network
Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
Formal training or certification on engineering concepts and 5+ years of applied experience.
Skilled in planning, designing, and implementing enterprise level security solutions
Advanced experience required: Python automation, AWS experience, Security Operations
Proficient in all aspects of the Software Development Life Cycle
Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security
Experience with threat modeling, discovery, vulnerability, and penetration testing
In-depth knowledge of the financial services industry and their IT systems
Preferred qualifications, capabilities, and skills
Pipelines, infrastructure deployment, Data Loss Prevention, Vulnerability Management
Experience effectively communicating with senior business leaders
M&A experience a plus
Security Engineer - Airlock
Security Engineer Job In Columbus, OH
Job Title: Security Engineer - Cloud & Endpoint Security
Pay Rate: $50/hr - $85/hr
Duration: 2/10/2025 - 12/31/2025 (Temp-to-Hire)
Contract Type: W2 (must be authorized to work in the US; no sponsorships or C2C)
Job Overview
Our Cloud and Endpoint Security team is looking for a Security Engineer to drive the deployment and management of an allowlisting/reverse proxy solution (Airlock). This engineer will collaborate with cross-functional teams to ensure integration with existing infrastructure, refine security policies, and contribute to the enhancement of the organization's cybersecurity posture. The role involves hands-on configuration, monitoring, and ongoing maintenance of security solutions, while remaining adaptable to changing threats and technologies.
Key Responsibilities
Allowlisting & Reverse Proxy Deployment: Lead the deployment and configuration of Airlock, ensuring seamless integration with current systems and networks.
Policy Development: Define and implement allowlisting policies to enhance application security, access control, and threat detection.
Incident Response Collaboration: Work closely with the incident response team to optimize alerting and logging capabilities, ensuring swift detection and remediation of potential security incidents.
Security Strategy & Best Practices: Assist in shaping the broader cybersecurity strategy, aligning it with business objectives and recognized frameworks (e.g., NIST, MITRE, ISO 27001).
Automation & Reporting: Identify opportunities to automate configurations, streamline reporting processes, and enhance visibility into system performance.
Monitoring & Analysis: Track solution performance and review security logs for emerging threats or anomalies; implement proactive measures where necessary.
Research & Continuous Improvement: Stay informed about the latest cybersecurity threats and trends, applying relevant findings to enhance Airlock's configurations.
Documentation & Maintenance: Support the development of incident response plans, secure access protocols, and maintain thorough documentation of all configurations and processes.
Qualifications
Minimum Requirements
Bachelor's Degree in a related field or equivalent work experience.
3+ years of experience in cybersecurity, IT, or related roles.
1+ years of hands-on experience deploying or managing application allowlisting or reverse proxy solutions.
1+ years of experience with security frameworks (e.g., NIST, MITRE, ISO 27001).
Proficiency with Windows and Linux environments, including command-line configurations.
Preferred Skills
Experience using Airlock or similar allowlisting tools.
Familiarity with scripting/automation (Python, PowerShell, Bash) for configuration and reporting.
Industry certifications (e.g., Sec+, CCSP, GIAC).
Strong analytical and problem-solving abilities, especially in process development and root cause analysis.
Additional Information
Temp-to-Hire: This is a W2 contract position with potential to convert to a full-time role, contingent on performance and business needs.
Work Arrangements: Local candidates are preferred; remote candidates will be considered if necessary.
Team Environment: The Cloud & Endpoint Security team collaborates with multiple departments, playing a crucial part in establishing security best practices and ensuring incident response readiness.
Senior Security Engineer, Cyber Risk Management
Security Engineer Job In Columbus, OH
Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company, providing customized solutions for hospitals, health systems, pharmacies, ambulatory surgery centers, clinical laboratories and physician offices worldwide.
The company provides clinically-proven medical products and pharmaceuticals and cost-effective solutions that enhance supply chain efficiency from hospital to home. Cardinal Health connects patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with approximately 50,000 employees in 46 countries, Cardinal Health ranks among the top 15 on the Fortune 500.
We currently have a full-time job opening for a Senior Security Engineer of Cyber Risk Management
_Department overview:_
Information Security and Risk Management (ISRM) at Cardinal Health enables Cardinal Health to securely deliver healthcare products and solutions that improve the lives of people every day by ensuring security and controls are embedded into Cardinal Health's people, process and technology. The Cyber Risk and Customer Security Assurance team fulfils our mission to strengthen our shield against cyber threats by providing a framework of processes and methodologies to manage Cardinal Health's cybersecurity risks through issue and exception management, cyber risk management, and customer third party risk assessment engagement.
Job Summary
Sr. Engineer, Cyber Risk Management, applies knowledge of Information Security, Risk Management, and Information Technology to lead the maturity of our Cyber Risk program. The primary responsibility of this role is to collaborate across the enterprise to measure the impact and likelihood of a variety of Cyber Risks.
This role is a senior position within the team and will work with all members of the Information Security team as well as Senior Leadership, Enterprise Risk Management, Business leaders, and IT teams.
Responsibilities:
+ Provide senior leaders and executives with information summarized at the correct level to make efficient, cost-effective, risk management decisions about the technology and information processing supporting their business functions
+ Work with all members of the Information Security team to drive information risk governance processes throughout the Cardinal Health enterprise
+ Implement the information risk management framework and related governance processes to cover not just the IT function, but all technology and information processing regardless of where the processing is in the enterprise (e.g., "shadow IT", manufacturing systems, operational technology, etc.)
+ Leverage and integrate with existing IT risk management and risk escalation / approval processes
+ Create an information risk register that catalogs key IT risks through an ongoing "top-down" risk assessment process
+ Define processes for summarizing "bottom-up" risk identified throughout various risk and compliance activities to add to risk register
+ Define and measure risk metrics that can be used to evaluate risk trends
_Qualifications:_
+ Excellent written and verbal communication skills
+ Experience in Information Technology, Information Security, and Risk Management
+ Experience implementing and maintaining processes at large enterprises
+ Experience with IT security principles, practices, technologies, programs and procedures, accompanied by an understanding of risk management methodologies and cybersecurity assessment frameworks
+ High-quality analytical skills, relationship management competencies
+ Relevant Information Security Certifications
**Anticipated salary range:** $121,600 - $182,385
**Bonus eligible:** Yes
**Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being.
+ Medical, dental and vision coverage
+ Paid time off plan
+ Health savings account (HSA)
+ 401k savings plan
+ Access to wages before pay day with my FlexPay
+ Flexible spending accounts (FSAs)
+ Short- and long-term disability coverage
+ Work-Life resources
+ Paid parental leave
+ Healthy lifestyle programs
**Application window anticipated to close:** 2/27/2025 *if interested in opportunity, please submit application as soon as possible.
The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity.
_Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._
_Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._
_To read and review this privacy notice click_ here (***************************************************************************************************************************
SaaS Security Engineer
Security Engineer Job In Columbus, OH
A client of Insight Global is seeking a passionate IT Security Administrator who is skilled and passionate engineer as we mature our Cybersecurity program with SaaS Security Posture Management (SSPM). The role is an excellent opportunity to enter a Cybersecurity domain and become part of an organization where teams implement new technology while focusing on implementing effective security solutions. The Cyber Security Engineer is expected to provide technical and engineering expertise for the Cyber Security Department. The successful candidate will need to demonstrate their expertise on provisioning, supporting, and ongoing maintenance of Cyber Security operating platforms, applications and services. The CyberSecurity SSPM Engineer will work directly with Cybersecurity leaders, application owners, and Risk partners to secure the environment. You will be a key role to manage security and compliance of our Software as a Service (SaaS) applications while driving real change in organizational security posture. The ideal candidate will have good soft skills, experience with governance, risk, security controls, scripting, and SaaS applications. Pay rate $40.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ******************** .
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: *************************************************** .
Skills and Requirements
3+ years experience with one or more scripting languages (PowerShell, Java, Python, VBScript)
3+ years experience writing professional level documentation covering topics related to Cybersecurity or SaaS application technologies. These include design and implementation, documents process documents SLAs etc.
3+ years experience with customer facing communication skills ( both written and verbal close
Experience in working with Privileged Access management (PAM) and Multi Factor Authentication (MFA)
Experience working with an ITIL change management process and agile teams
Experience with ServiceNow, Workday, Salesforce.com and Adobe Cloud Banking or Financial Services Experience
Relevant Certifications Such as CISSP, Security+ or CCSK are desirable
Familiarity in working with industry standards, like NIST, CIS, CSA and ISO 27001 null
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to ********************.
Cloud Security Engineer- Global Technology Strategy Team
Security Engineer Job In Columbus, OH
Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies.
Our Global Technology Strategy Team is seeking a cloud security engineer. In this role you will be responsible for designing, implementing, and managing robust security measures for our cloud-based systems. You will work closely with cross-functional teams to ensure the confidentiality, integrity, and availability of our cloud environments. Your expertise will be pivotal in identifying and mitigating security risks, enabling our organization to operate securely in the cloud.
What You'll Do
* Analyze and review cloud architecture diagrams to identify potential security vulnerabilities and ensure secure design practices.
* Perform threat modeling to anticipate and mitigate potential security threats to our cloud systems.
* Execute static code reviews, both automated and manual, to identify and address security vulnerabilities in the codebase.
* Assess the privacy readiness plan to ensure compliance with data protection regulations and best practices.
* Evaluate the incident response plan to ensure effective handling and mitigation of security incidents.
* Offer expert guidance and coaching on each logged remediation effort, and monitor progress to ensure timely resolution.
* Lead organized, structured, and proactive communication efforts, providing status updates upwards and towards the owning developer(s) to ensure alignment and transparency.
* Collaborate with DevOps, engineering, and other cross-functional teams to integrate security tools and practices into workflows.
What You'll Bring
* Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent work experience.
* Proven experience as a Cloud Security Engineer or in a similar role with hands-on experience securing cloud environments.
* Strong knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, and their security offerings.
* Experience with security frameworks and standards such as NIST, ISO 27001, or CIS.
* Proficiency in scripting languages (e.g., Python, Bash) for automation and security tool integration.
* Familiarity with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection.
* Excellent problem-solving skills and the ability to work independently and collaboratively.
* Familiarity with NIST, ITAR, CUI and Privacy data and related obligations, cyber architecture solutions / approaches
About Us
Slalom is a purpose-led, global business and technology consulting company. From strategy to implementation, our approach is fiercely human. In six countries and 43 markets, we deeply understand our customers-and their customers-to deliver practical, end-to-end solutions that drive meaningful impact. Backed by close partnerships with over 400 leading technology providers, our 13,000+ strong team helps people and organizations dream bigger, move faster, and build better tomorrows for all. We're honored to be consistently recognized as a great place to work, including being one of Fortune's 100 Best Companies to Work For seven years running. Learn more at slalom.com.
Compensation and Benefits
Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance.
Slalom is committed to fair and equitable compensation practices. For this position, the targeted base salary for a Principal for this position is $122,000 to $225,000. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time.
EEO and Accommodations
Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process.
We will accept applications on an ongoing basis until February 21st, 2025.