Security engineer jobs in Erie, PA

Are you considering a new role in Cyber Security and want to work in a company that is helping to change the world? Consider joining an organization serving the global scientific research community, supporting the brightest minds on the planet. Are you a collaborative Incident Response Engineer looking to work for a mission driven global organization? About the role, Elsevier is expanding its Global InfoSec Security Incident Response team. As a Security Incident Response Engineer, you will play a crucial role in our internal security support team, assisting with incident response investigations. This team is entrusted with analyzing, triaging, scoping, containing, and providing guidance for remediation, as well as determining the root cause of security incidents. This team also is empowered by collecting and analyzing security incident-related data to identify indicators of attack and compromise. Responsibilities: Assisting in scoping security incidents and identifying indicators of attack and compromise. Analyzing incident data from threat analytics tools. Communicating recommendations and guidance based on security incident analysis. Coordinating responses to security incidents with other security and consulting teams. Developing, documenting, and implementing runbooks, capabilities, and techniques for Incident Response. Performing security triage and analysis on endpoint, server, and network infrastructure. Conducting activities necessary for immediate containment and short-term resolution of incidents. Maintaining current knowledge of the threat landscape, emerging security threats, and vulnerabilities. Investigating the root cause of complex security incidents. Maintaining a high level of confidentiality. Requirements Possess experience in cybersecurity incident response or related fields. Proven ability to analyze, triage, scope, contain, and remediate security incidents. Have current and extensive knowledge of security technologies, tools, and processes. Experience with major cloud providers, including cloud security, networking, and multi-cloud or hybrid deployments. Have current skills in automation using PowerShell, Python, Java, or similar languages. Experience in Linux and/or Mac administration. Experience in Network Security Administration or Systems Administration. Experience supporting large, complex, and geographically distributed enterprise environments. Preferred certifications: CISSP, CISM, SANS, GIAC, ethical hacking/penetration tester, or security risk assessment. Elsevier employs 10,000 people worldwide, including over 2,500 technologists. We have supported the work of our research and health partners for more than 140 years. Growing from our roots in publishing, we offer knowledge and valuable analytics that help our users make breakthroughs and drive societal progress.

[Up to c. $325k Comp Package | Hybrid Working] We're representing a globally recognised quantitative trading firm that combines advanced research, distributed computing, and next-generation AI systems to drive its trading strategies. The business is now seeking an Enterprise Security Engineer to enhance and protect the platforms powering some of the most demanding environments in finance. This is a hands-on engineering role focused on securing large-scale compute and AI workloads across both on-premise and cloud environments. You'll help design, build, and automate scalable security solutions that safeguard the firm's infrastructure, data, and intellectual property - working at the intersection of cloud security, Linux, automation, and AI system protection. The role sits within the Enterprise Security team, which is expanding in New York, and will suit an engineer comfortable balancing deep technical work with strategic platform improvements... Key Responsibilities Design, implement, and maintain secure-by-default architectures across hybrid and multi-cloud environments, ensuring scalability and compliance Strengthen cloud and AI platform security, embedding controls that protect high-performance clusters, GPU-based compute, and distributed research systems Build automation to detect configuration drift, anomalies, and vulnerabilities, partnering with Security Operations to refine response playbooks and workflows Engineer and maintain IAM and authentication solutions, enforcing least-privilege access and integrating identity controls across hybrid infrastructure Lead initiatives to improve Linux and Kubernetes security, implementing configuration baselines, container hardening, and runtime protection Oversee endpoint and workload security, ensuring consistent enforcement of protection, monitoring, and incident readiness Operate and mature vulnerability management processes, prioritising risks and coordinating remediation across global teams Enhance observability and instrumentation for cloud and AI systems, improving detection, visibility, and forensic capabilities Contribute to DevSecOps pipelines, embedding automated checks, compliance testing, and security validation into deployment workflows Collaborate cross-functionally to develop secure-by-design principles that balance performance, scalability, and user experience Continuously assess emerging technologies, AI threat models, and attack vectors to inform long-term enterprise security strategy What You'll Bring... 4+ years' professional experience in security engineering, systems engineering, or a related technical discipline Strong practical knowledge of Linux environments, including configuration, hardening, and observability at scale Hands-on experience in cloud security, ideally within AWS, including IAM, encryption, and network segmentation Proficiency in Python or similar scripting languages for automating security tooling, data collection, and remediation workflows Familiarity with Kubernetes and container security, including runtime controls and image management Understanding of vulnerability assessment and configuration management, including prioritisation and automation of fixes Exposure to endpoint and application security, with awareness of techniques for securing developer or research systems Experience supporting authentication and identity services, with practical knowledge of federation, SSO, and access policies (Preferred) Experience securing AI or machine learning environments, particularly around model access, GPU workloads, or data protection (Preferred) Understanding of DevSecOps practices, integrating automated checks into CI/CD pipelines ...

Grow your career as a Securities and Derivatives Analyst with an innovative global bank in Getzville, NY. Contract role with possibility of extension. Will require working a hybrid schedule 2 days onsite per week. Join one of the world's most renowned global banks and trusted brand with over 200 years of continuously evolving financial services worldwide. You will work alongside some of the smartest minds in the industry who are excited to share their knowledge and to learn from you. Contract Duration: 12+ Months Required Skills & Experience Bachelor's Degree/University degree. 5+ years of Banking Operations experience. In-depth knowledge of settlement cycle concepts and procedures to resolve settlement issues. Hands-on experience in Securities & Derivatives Settlement payment processing and processing of buys & sells. Demonstrated comprehension of Treasury products, accounting and regulatory policies. Understanding of PNI, Dividend Fixed incomes, equities & global depository notes, fixed income bonds. Intermediate skills in MS Excel spreadsheets. Consistently demonstrates clear and concise written and verbal communication skills. What You Will Be Doing Process cash payment transactions related to Securities Clearance Settlement and Derivative Operations. Analyze data to identify control deficiencies and resolve discovered issues through implementing appropriate procedures. Identify control gaps during settlement cycle and implements appropriate solutions to mitigate any risk or control losses. Escalate control gaps and issues to senior management as needed. Formulate procedures, techniques and contribute to the development of new techniques that increase team productivity, ensuring entire team meets or exceeds performance goals. You Will Receive The Following Benefits: Medical & Dental Insurance Health Savings Account (HSA) 401(k) Paid Sick Time Leave Pre-tax Commuter Benefit Applicants must be currently authorized to work in the United States on a full-time basis now and in the future. Motion Recruitment provides IT Staffing Solutions (Contract, Contract-to-Hire, and Direct Hire) in major North American markets. Our unique expertise in today's highest-demand tech skill sets, paired with our deep networks and knowledge of our local technology markets, results in an exemplary track record with candidates and clients.

Our client is looking for a detail-oriented and proactive Senior Security Analyst to support ongoing security initiatives, maintain compliance, and ensure that security policies and standards are followed within a fast-paced, evolving environment. This position is part of the Information Security team and collaborates across business functions to ensure regulatory requirements and organizational compliance standards are met. Key Responsibilities Ensure compliance with applicable regulations and standards, including SOX, SOC 2, CCPA, HIPAA, and other industry-specific frameworks. Assist with third-party risk management (TPRM), assessing, monitoring, and managing vendor risks. Perform risk assessments, audits, and compliance reviews to identify potential risks and implement mitigation strategies. Map controls across compliance frameworks, translate them into actionable steps, and provide guidance to stakeholders. Deliver and enhance security awareness campaigns to maintain understanding of best practices and compliance requirements across the organization. Update and maintain the risk register, ensuring it reflects the current risk landscape and supports decision-making. Support ongoing maintenance and improvement of GRC solutions, including control testing. Collaborate with cross-functional teams to embed risk management practices into operational processes. Participate in process reviews, identifying opportunities to improve operational efficiency and compliance effectiveness. Stay informed on regulatory changes, industry trends, and best practices to continuously improve security and compliance programs. Perform other duties as required to support the Senior Security Analyst role. Preferred Qualifications Minimum of 5 years of GRC experience within a public company. In-depth knowledge of regulatory requirements such as SOX, CCPA, HIPAA, and other relevant frameworks. Hands-on experience with GRC solutions and third-party risk management programs. Strong understanding of IT governance, information security, and data privacy principles. Excellent communication, management, and interpersonal skills, with the ability to influence stakeholders at all levels. Ability to develop and implement security policies, procedures, and controls. Relevant certifications (e.g., CISA, CISM, CISSP, CRISC) are a plus. Additional experience with Identity and Access Management (IAM), Data Classification, and Data Loss Prevention (DLP) is highly desirable. Minimum Qualifications College degree or equivalent. 6+ years of related experience. Expert technical knowledge and understanding of industry regulations. Ability to lead and coordinate team activities. Ability to formulate, document, and recommend new policies and procedures. Proven ability to work effectively in a team and lead initiatives.

You will provide guidance and technical support to clients deploying security integrations. You'll act as the technical partner, providing strategic guidance around complex systems to secure a digital environment. Interacting directly with the client, you'll partner closely with client personnel to guide and suggest integrations to better serve their success. Your thorough understanding of our product integrations contributes to the development of new principles and concepts - providing detailed analysis around what's working, what's not, and what could be better. You enjoy implementation work, are proactive about resolving potential concerns, and operate well around strict best practices that enable our clients on their road to a more secure digital world. You're creative, innovative, and you love a challenge - learning how integrations might work better around new products and technologies. Responsibilities Communicate with the customer(s), sales teams, peers, engineering and support teams as appropriate Understand the customer environment, requirements, and security roadmap to implement the appropriate security solution Configure, implement, and maintain Security Operating Platform Optimize and migrate policies and objects from the existing environment to our Next-Gen Firewall Test and validate the migration environment Coordinate and execute cutover to production Provide guidance on code upgrades Facilitate the development of new application and threat signatures Interact with our Technical Assistance Center (TAC) to understand and diagnose support cases Some travel may be required, dependent on customer request You work with the customer's security & network teams to build confidence across the business units impacted by the change Experience High level of experience with Panorama and log collectors NGFW Global Protect BS in Computer Science, MIS, business, or equivalent education/training/experience Minimum of 5 years' experience with network/security solutions and technologies (BGP, SD-WAN concepts, VXLAN and general routing and switching) Minimum of 3 years' experience leading security solutions in large environments) Detailed technical experience in the installation, configuration, and operation of high-end firewall appliances, ideally Palo Alto Networks products You're experienced in internetworking, LAN, and WAN technologies You have a good understanding of Internet protocols and applications Any of the following industry certifications or equivalent experience is a plus: CISSP, CCNA, PCNSE, JNCIE-SEC You effectively handle multiple projects and work calmly in high pressure You're an excellent writer, with strong verbal communication skills, with demonstrable ability to communicate to senior leaders and technical peers

Senior Cyber Security Engineer, NYC Hybrid (3 Days a week Onsite) Our client is a financial services provider and they're looking for a senior engineer with real depth in Python OO and CyberArk or Swimlane to step into a high impact role. This is a hands-on position in a stable environment where you will own serious engineering problems and build the next generation of identity and PAM controls. What you will work on: • Engineering CyberArk (IAM/PAM) integrations and custom PAM solutions • Building Python based tooling, APIs, and automation that matter • Strengthening enterprise identity platforms across a complex environment • Collaborating with senior architects while still owning the code What we are looking for: • Python object-oriented engineering, not scripting • CyberArk (IAM/PAM) or Swimlane (SOAR) engineering experience • Infrastructure security background • 15+ years' experience in Engineering and/or Cyber Security • Experience in financial services or large enterprise is a plus Who usually fits this role: • Identity and PAM platform engineers • SOAR engineers who build with Python • Infra security engineers tired of purely operational work

Glocomms is partnered with a premier hedge fund to identify a Senior Security Engineer/Architect with deep expertise in AI Security. The ideal candidate will be a technical leader with a passion for securing complex, AI-driven systems. They will architect and implement cutting-edge security solutions that protect proprietary models, sensitive data, and mission-critical infrastructure. This role demands a blend of hands-on engineering, strategic foresight, and cross-functional collaboration. Key Responsibilities: Architect and implement secure design patterns for AI systems. Prioritize confidentiality, integrity, and availability across model training, inference, and deployment pipelines. Conduct rigorous security reviews of AI applications, infrastructure, and tooling, driving remediation strategy for identified vulnerabilities. Design and build scalable security tools that integrate seamlessly into development workflows. Lead threat modeling and risk assessments for AI and cloud-native environments, and translate findings into actionable engineering solutions. Champion secure access and identity protocols, including TLS, OIDC, FIDO2, and advanced cryptographic techniques. Drive application security initiatives in accordance with OWASP principles, and work with dev teams to support a culture of secure coding across the firm's engineering program. Collaborate with architecture, data science, and infrastructure teams to ensure security is embedded from ideation to production. Stay ahead of emerging threats, particularly those targeting AI systems, and proactively evolve the security posture to meet future challenges. Required Skills & Experience: 10+ years of experience in hands-on security engineering, with a strong track record in high-stakes environments such as finance, defense, or advanced tech. Experience in a lead or founding engineer role is highly desired. Deep understanding of AI/ML systems and the unique security implications they present. Expertise in secure architecture design, cryptography, and identity protocols (TLS, OIDC, FIDO2). Strong command of application security principles, including OWASP Top 10, secure coding, and vulnerability management. Experience building and integrating security tools into CI/CD pipelines and cloud-native environments. Proven ability to influence and lead cross-functional teams in a fast-paced, innovation-driven culture. Exceptional communication skills, with the ability to translate complex technical concepts into business-relevant insights. Preferred Qualifications: Advanced degree in Computer Science, Cybersecurity, or a related discipline. Industry certifications such as CISSP, OSCP, GIAC, or equivalent. Experience with cloud platforms (AWS, Azure, GCP) and container security. Familiarity with regulatory frameworks relevant to financial services (e.g., SEC, FINRA, GDPR). The firm follows a hybrid schedule with employees expected to work in-office three days per week. Candidates must reside within (or be willing to relocate to) a commutable distance of New York City - Midtown, Manhattan. This is a full-time position and is unable to accomodate candidates seeking C2C/C2H employment. Applications must include a concise CV with full name and contact information in order to be considered

Job Title: Cybersecurity Specialist Contract Type: 6-month engagement (renewable) Reports To: Head of Information Security We are seeking a highly skilled Cybersecurity Specialist to join our Information Security team. The successful candidate will play a key role in implementing and managing security controls, ensuring compliance with international standards, and supporting critical cybersecurity initiatives. Qualifications & Requirements Education & Professional Background Bachelor's degree in Computer Science, Information Security, Information Technology, or a related field. 7+ years of professional experience in cybersecurity and IT infrastructure, including hands-on roles in network, systems, and security operations. Relevant certifications preferred: CISSP, CISM, CISA, CCSP, ISO 27001 Lead Implementer/Auditor, Okta, CyberArk. Technical Expertise Privileged Access Management (PAM): Design, implement, and manage PAM solutions, including governance, role-based access, and operational workflows. Identity & Access Management (IAM): Hands-on experience with Okta or equivalent IAM platforms (SSO, MFA, identity lifecycle management, federation, automation). Network Security & SOC Operations: Strong knowledge of enterprise network infrastructure (firewalls, routing, VPN, segmentation) and experience in SOC functions (monitoring, detection, incident response). Firewall & Policy Management: Familiarity with AlgoSec or similar tools for firewall analysis and policy management. Cybersecurity Standards: Deep understanding of ISO 27001, NIST CSF, CIS Controls, and security governance best practices. Cloud Security: Experience securing cloud environments (Azure AD/Entra ID, AWS IAM), including access policies and conditional access. Incident Response: Ability to lead or support investigations, containment, mitigation, and reporting. Project Delivery & Documentation Proven ability to deliver complex cybersecurity projects within scope and timeline. Experience with structured project management frameworks (PRINCE2, PMP, Agile). Strong analytical and problem-solving skills; ability to translate technical risks into business impacts. Soft Skills & Professional Attributes Excellent written and verbal communication skills for technical documentation and stakeholder presentations. Strong sense of ownership, accountability, and attention to detail. Ability to work independently and collaborate effectively across IT, security, and business teams. High level of professionalism, integrity, and commitment to confidentiality. Language Requirements Fluency in English, with the ability to tailor communication for technical and non-technical audiences, including senior management.

Sr. Technical Security Engineer, W2 remote Minimum Requirements 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications. Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS). Experience with mobile (iOS/Android) and desktop (Windows/mac OS/Linux) application security models. Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling. Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs. Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#). Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications. Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns). Ability to manage incident response and vulnerability remediation for thick client environments. Strong cross-team communication skills and ability to write clear developer-facing security guidelines.

Senior Consultant-Physical Security; Not Cyber Midtown Manhattan Full Time - Onsite Five Days The Firm, a provider of comprehensive risk management services, is seeking a Senior Consultant to serve as the dedicated Security Lead or virtual Chief Security Officer (CSO) across their client portfolio. This is an end-to-end ownership role. The Consultant will manage engagements from the initial risk assessment and proposal delivery phase through the collaborative development, implementation, and refinement of customized security solutions, working in close partnership with key client stakeholders. The Senior Consultant reports to the Executive Director, Consulting. The Senior Consultant interacts closely with other business units within the firm, including Investigations, Intelligence, Global Security Operations, Protection, and Security Technology. As a relationship manager, the Senior Consultant will constantly consider the needs, preferences and perspectives of each client and address them by leveraging the breadth of the Firm's services and capabilities. Responsibilities: Manage the full life cycle of a client engagement, ensuring client expectations are met, scope changes are addressed and documented, and deliverables are completed on schedule and within budget Develop and implement a strategic roadmap for each client, factoring in their unique circumstances, available Firm resources, and financial viability Manage client relationships in a manner that builds confidence and trust in the delivery of customized solutions, and maximizes strategic growth in accordance with client needs, concerns, and preferences Contribute to the development of proposals, including scoping and pricing, to address identified vulnerabilities and expressed concerns Physical Security Assessments that include technology, personnel and policies; emergency plans and procedures; fire life-safety; executive protection; protective intelligence; threat management; travel risk; training; and other areas Identify program requirements and leverage firm resources to develop, deliver and manage physical security solutions Produce clear, actionable documentation, including assessment reports, travel risk analyses, security policies and procedures, emergency response and crisis management plans, and trainings Present materials and findings in a compelling manner to senior client stakeholders and/or internal leadership Stay current on evolving trends and emerging technologies, conduct security benchmarking studies, and seek opportunities to build knowledge and share new information and resources internally and with clients Track resource utilization and oversee accurate administration and invoicing in support of assigned client programs Experience and Skills: BA/BS or higher in international affairs, criminal justice, or related field required; MA preferred Minimum of seven years of security risk management experience as a senior member of a large security department, as a security consultant, or in an applicable military or law enforcement position Substantial hands-on experience designing, implementing, and managing a physical security program, or major components thereof, for high-value corporate or high-net-worth residential clients Solid knowledge base across physical security domains including: security program design, implementation, and management; security technology; investigations; threat assessment and management; protective intelligence, executive protection; event security; global security operations; travel security; emergency and critical event planning and response; and security training Deep expertise in one or several physical security domains. Hands-on familiarity with leading security technologies for access control, video management, intrusion detection, etc. a major plus Strong analytical skills for assessing risk, vulnerability and threats PSP or equivalent certification; CPP or equivalent preferred; CISSP a plus Exceptional written and verbal communications skills; proficiency in presenting to clients and other stakeholders; strong attention to detail Strong business acumen and strategic development mindset Successful management of highly confidential information Strong project management skills to include organization, multi-tasking and meeting deadlines Highly proficient in MS Office software; Smartsheet proficiency a plus Ability to travel 10% within the United States to conduct risk assessments, attend trainings or conferences, or support special events This role is only open to candidates in the NY metro area. It will not include relocation and requires US work authorization.

Chief Information Security Officer (CISO) 📍 💰 Base Salary: Up to $325,000 + Bonus + Equity 🏢 Our Client: A Blockchain & Digital Asset Infrastructure Company About Our Client Our client is a fast-growing organization building infrastructure, software, and services that support the next generation of blockchain and digital asset ecosystems. They power secure transactions, institutional-grade solutions, and high-performance platforms used across the crypto economy. As the business scales, they are expanding their leadership team with a Chief Information Security Officer (CISO) who will own the strategic direction, operations, and continuous improvement of all information and cybersecurity initiatives. Role Overview The CISO will set the long-term vision for security across the entire organization, covering infrastructure, products, employee environments, and customer-facing systems. This leader will ensure that the company's digital asset capabilities, blockchain networks, APIs, and cloud environments meet the highest standards of protection, resilience, and regulatory readiness. This role requires an executive who can operate across technical, operational, and strategic levels-partnering with engineering, legal, compliance, product, and leadership teams. Key Responsibilities Design and drive a holistic security strategy covering infrastructure security, application security, product security, data governance, and operational risk. Safeguard digital asset environments, including wallets, key management systems, consensus mechanisms, and blockchain-based services. Build and lead an advanced threat detection, monitoring, and incident response program, ensuring rapid response and clear communication pathways. Collaborate with engineering teams to integrate secure development practices into blockchain, smart contract, and cloud-native workflows. Establish and maintain security controls, audits, and certifications, ensuring alignment with industry frameworks and regulatory expectations. Oversee vendor security, supply-chain risk management, and third-party assessments. Develop a culture of security throughout the business, including training, policy development, and ongoing risk awareness. Provide regular reports and briefings to the executive team on emerging threats, risk posture, and security roadmap progress. Experience & Qualifications 15+ years of experience in cybersecurity, with at least 5 years leading security organizations or programs at scale. Strong experience in blockchain security, digital asset custody, exchange or infrastructure security, or related crypto-native environments. Demonstrated success leading enterprise security programs that span cloud infrastructure, distributed systems, and high-availability environments. Skilled in working with frameworks such as SOC 2, ISO 27001, NIST, and global data protection standards. Expertise in cloud security (AWS, GCP, Azure), network security architecture, identity management, and DevSecOps. Comfortable operating in fast-moving, engineering-driven environments. Professional certifications (CISSP, CISM, CCISO, etc.) are a strong plus.

About the Role We are seeking a Security Analyst II to support our IAMO Transformation Program, contributing to the configuration, implementation, and support of the new SailPoint IdentityIQ (IIQ) platform. This role plays a key part in advancing our Identity and Access Management (IAM) capabilities through automation, governance, and improved operational efficiency. The ideal candidate will leverage technical expertise in SailPoint and IAM processes to help reduce manual provisioning, streamline access management, and strengthen security controls across the enterprise. Key Responsibilities Configure, customize, and implement SailPoint IdentityIQ (IIQ) solutions to support enterprise IAM transformation. Provide ongoing SailPoint product support including design, implementation, maintenance, and troubleshooting activities. Develop and maintain workflows, forms, roles, policies, reports, certifications, and segregation of duties (SOD) controls. Perform business-critical analysis to improve application access request and workflow processes within IAM. Support access provisioning and remediation for audit findings, client onboarding, and offboarding activities. Ensure compliance with corporate access certification and revocation policies. Partner with internal stakeholders to meet Client Service Level Objectives and internal project deadlines. Required Skills & Experience 3-5 years of experience in Identity and Access Management (IAM) or Cybersecurity. Hands-on experience with SailPoint IdentityIQ (IIQ) design, customization, and support. Strong understanding of IAM processes including Joiner, Mover, Leaver, Certification, and SOD workflows. Proficiency in Project Management and Business Analysis practices. Ability to identify, troubleshoot, and resolve complex IAM functional and technical issues. Preferred Technical Skills Excel, PowerPoint, SharePoint, and Jira proficiency.

Design and implement advanced security architectures across cloud, on-prem, and hybrid environments while driving Zero Trust, SASE, and cloud-native security initiatives. Lead global strategic programs, network modernization efforts, and rapid tactical responses to critical incidents, converting gaps into standards and governance. Develop security reference architectures, HLD/LLD solution packages, and Infra-as-Code-driven delivery models aligned with enterprise transformation goals. Conduct threat modeling, risk assessments, and gap analysis across applications, infrastructure, APIs, containers, and third-party integrations. Implement cloud and DevSecOps security controls, integrating tooling into CI/CD pipelines and enforcing secure coding and IaC policies. Build security automation, SOAR playbooks, and SIEM integrations to streamline detection, vulnerability management, compliance, and response workflows. Enhance detection engineering through custom rules, behavioral analytics, log enrichment, and purple-team/adversary emulation exercises. Provide cross-functional leadership for initiatives involving cloud migration, AI/ML, M&A, and digital modernization, presenting strategies and risk posture to executive stakeholders.

This role is responsible for designing, deploying, and maintaining secure, high-performance network solutions across Cisco switches, routers, Meraki office systems, and Firepower/ASA in the data center, all integrated with Azure cloud networking. The position focuses heavily on cybersecurity, including implementing and managing firewalls, intrusion prevention systems, and security appliances, performing vulnerability assessments, and enforcing security policies and incident response protocols. The individual will act as the backend resource for a 3rd party managed service, handling escalations and unresolved threats, while collaborating with internal teams on risk identification and security improvements. Daily tasks include configuring virtual networks and security groups in Azure, managing identity and access controls such as MFA, monitoring network performance, troubleshooting connectivity issues, and optimizing configurations for scalability and security. The role also involves working with SIEM tools for threat detection, generating compliance and performance reports, maintaining documentation, and providing security training to staff. Continuous improvement is key, requiring the candidate to stay current on emerging threats and technologies while ensuring the overall security posture of the environment. This position is a 6-month contract to hire. It is a hybrid position in Bethpage, NY, Tues-Thurs. Insurance and 401K are offered during contract period as well as upon conversion. The converting salary for this role is $145,000-152,000. REQUIRED SKILLS AND EXPERIENCE 8+ years of experience in cybersecurity and network administration roles 5+ years of experience with various firewall platforms (Cisco Meraki, Palo Alto, Fortinet) Experience with endpoint protection, SIEM solutions, and log management tools Proficiency and knowledge of Azure Cloud Networking Knowledge of compliance standards NICE TO HAVE SKILLS AND EXPERIENCE CCNA, CCNP, Azure Network Engineer Associate Telecom Industry experience Experience partnering with 3rd party vendors for escalations

Title: Information Security Admin || Full-Time Must have any checkpoint certification Client is seeking an Information Security Analyst to strengthen our cybersecurity operations and protect our enterprise systems. This role requires hands-on firewall management experience, a strong grasp of cybersecurity fundamentals, and the ability to implement and communicate security best practices across the organization. Required Qualifications 3+ years of hands-on firewall administration experience (Check Point required; Palo Alto or Fortinet a plus). Strong knowledge of cybersecurity fundamentals, including the CIA Triad and core security principles. Experience with SIEM tools, IDS/IPS, and endpoint protection. Ability to explain and apply security concepts to both technical and non-technical audiences. Solid troubleshooting, analytical, and problem-solving skills. Excellent communication and documentation abilities.

Are you passionate about protecting digital assets and ensuring robust cybersecurity? We are seeking a dedicated and motivated Cybersecurity Network Engineer to join our team. Collaborate with engineers to secure network, cloud, and system infrastructure through implementing controls and monitoring. You Will: Work with engineering teams to define and fulfill operational requirements while upholding the highest standards of security protocols and compliance. Monitor and maintain security for network, cloud, PKI, and system environments, implementing controls to safeguard information systems, applications, and infrastructure. Ensure access control systems effectively prevent unauthorized modification, destruction, or disclosure of sensitive information. Monitor, assess, and and respond to security risks in systems, networks, and clouds; identify causes, threats, and suggest solutions in accordance with established policies. Conduct security risk and vulnerability assessments, as well as business impact analyses for threats of moderate complexity in both on-premises and cloud environments. Provide expert troubleshooting and support for complex security-related issues that have been advanced, including those beyond the Help Desk's scope. Develop detailed reports to pinpoint security risks and propose suitable mitigation strategies. Oversee and resolve user access issues, enforce least-privilege principles, and develop solutions to prevent future access-related security concerns. Assist with internal and external audits, providing necessary evidence and contributing to change management reporting and security impact assessments. Manage cloud security services like cloud proxy/VPN and XDR platforms for secure access and threat detection. Support PKI infrastructure, including certificate lifecycle management and secure key handling. Operate and monitor cloud network components and integrations, applying Secure Access Service Edge (SASE) principles to protect distributed users and cloud access. Implement and maintain network security controls such as firewalls, IDS/IPS, segmentation strategies, and enforce access control policies (ACLs, NACLs, identity-based segmentation) across hybrid environments. Investigate, contain, and resolve network-based security incidents, and contribute to comprehensive post-incident reviews. Collaborate with network and cloud engineering teams to ensure the secure design and implementation of cloud-native and hybrid solutions. You Have: Proven experience in information security, cybersecurity operations, or a related field. Hands-on experience with cloud-based security services, network security controls, and incident response. Familiarity with SASE, firewalls, IDS/IPS, PKI infrastructure, and certificate management. Strong analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies. Excellent communication and collaboration abilities. Relevant certifications (e.g., CISSP, CISM, CEH, or similar) are a plus.

Delta Information Systems, Inc. is seeking a highly skilled Information Security Specialist to protect and secure critical systems, data, and intellectual property in a fast-paced Aerospace & Defense environment. This role is responsible for implementing and managing security controls, ensuring compliance with strict regulatory requirements, and defending against advanced cyber threats. The ideal candidate will bring deep technical knowledge, strong problem-solving skills, and the ability to work across teams to maintain the confidentiality, integrity, and availability of sensitive information that supports our national security mission. This is a fully onsite position located in Horsham, PA. Key Responsibilities Implement, monitor, and maintain security tools, including firewalls, intrusion detection/prevention systems, endpoint protection, and SIEM platforms. Perform continuous monitoring, vulnerability assessments, penetration testing, and risk analysis of systems and networks. Ensure compliance with DoD, NIST 800-171, CMMC, ITAR, DFARS, and other regulatory frameworks. Champion the company's certification to CMMC Level 2. Develop, document, and enforce cybersecurity policies, procedures, and incident response plans. Support Government and customer security audits, preparing evidence and remediation plans as required. Investigate and respond to cybersecurity incidents, performing root-cause analysis and recommending corrective actions. Collaborate with IT, Engineering, Program Management, and Security teams to embed cybersecurity best practices into operations and product development. Provide cybersecurity awareness training to employees with a focus on handling sensitive defense-related data. Stay current on emerging cyber threats, nation-state tactics, and evolving compliance regulations impacting aerospace and defense. Qualifications Required: Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience). 5+ years of experience in information security, IT security operations, or cybersecurity. Strong knowledge of NIST 800-171, CMMC, and DFARS cybersecurity requirements. Experience developing, implementing and achieving CMMC compliance. Experience supporting DoD or government contracts with cybersecurity compliance needs. Hands-on experience with security infrastructure: SIEM, IDS/IPS, endpoint security, and network monitoring tools. Strong understanding of Windows, Linux, and cloud environments (Microsoft Office 365, Deltek Costpoint). Excellent analytical, documentation, and communication skills. U.S. Citizenship (required due to defense industry regulations). Preferred: Active security clearance (Secret or higher), or ability to obtain one. Relevant certifications: CISSP, CISM, Security+, CEH, or GIAC. Experience with RMF (Risk Management Framework) and STIG compliance. Familiarity with secure software development, DevSecOps practices, or classified system security. Compensation Competitive salary Outstanding benefits package 100% Paid Coverage for Medical, Dental, and Vision 401(k) Employer Match Employee Stock Ownership Program (company funded) Life Insurance (company funded) Short-Term Disability (company funded) Long-Term Disability (company funded) Vacation & Sick Holidays: 11 days HealthCare FSA Dependent Care FSA What We Offer Opportunities for training, certifications, and career growth. A mission-driven culture where your work contributes to national security. Exposure to advanced technologies and programs critical to the aerospace and defense sector. About Delta Information Systems, Inc. Delta Information Systems (DIS) is an industry-leading supplier of high-quality aerospace telemetry products for Flight Test, Missile Test, Range Safety, Launch Support and Satellite Command and Control applications. Their products address the complete telemetry chain from Data Acquisition, Storage, Transport and Distribution to Telemetry Processing and Display. DIS customers include all DoD entities, all Major Primes, Integrators, Gov Labs, Aircraft & Missile Manufacturers, & Launch Facilities. In addition, Delta Information Systems (DIS) designs and develops sophisticated electronic equipment that is specifically designed to reliably operate in harsh environments. They deliver critical video communications capability for manned and unmanned Intelligence, Surveillance and Reconnaissance (ISR) programs.

Must Have Technical/Functional Skills: Palo alto Firewall Checkpoint Firewall Device installation & Upgrade Roles & Responsibilities: Monitoring & Management of Network Security Solutions (8*5 on weekdays) Implement hardware, install patches and perform periodical upgrades Configure, maintain and manage IPSec and SSL Virtual Private Networks environments Support Tufin tool for incident management and reporting Implement Approved Policy Changes Create Certificates, Check the Partition and Issue New certificates Troubleshoot NAC Related Issues & Operations Support Add / Modify / Delete - Switch / Router / Wireless device to respective Plugin's Continuity & Incident Mgmt. Coordination Implement Approved Plugins & upgrades Salary Range: $64,000-$100,000 a year #LI-CM2

If you have experience with accounting information systems, a problem-solving mindset, and enjoy working with complex data sets and delivering solutions, then we want to talk with you! Hodgson Russ LLP, a regional law firm with two hundred plus attorneys in nine offices, is seeking a Accounting Systems & Applications Analyst to join our busy accounting team. This is a hybrid role. Some on-site work is required in Buffalo and/or Rochester. In this role, you will be responsible for maintaining and supporting the Accounting Department's information systems, including upgrade management, data maintenance and user support, implementation of new modules and features, and managing integrations with third party applications. This position is project management-oriented and includes the following key responsibilities: Ownership of Elite 3E accounting software; expense management, collections management, and other accounting applications; overseeing design, system set ups, user accounts and permissions, customization, architecture, and nomenclature of each application. Liaison between Accounting and IT. Provide accounting software support as point-of-contact for problem-solving and/or escalating internally to IT or to vendor support channels as needed. Contributing to the design of financial reports using PowerBI, SSRS, and AFS (Xcelerate). Driving data consistency and integrity through record maintenance across all Accounting applications. To succeed in this role, you will need excellent communication and project management skills, as well as the ability to prioritize and meet deadlines, identify and anticipate needs, and deliver highly accurate and reliable results. Strong computer skills, including proficiency in Microsoft Office and significant practical experience with enterprise accounting applications are required. A Bachelor's Degree in Information Technology & Management, Finance, or Accounting is preferred, with eight years' full-time experience in an accounting and/or information technology role preferably working within the business services sector. Hodgson Russ offers competitive compensation and a comprehensive benefit package, including medical, dental, vision, life, long term disability, flexible spending, 401(k), Paid Time Off, pension plan, and more. At this time, the good faith estimate of the annual salary range for this position, if the successful applicant is based in Buffalo or Rochester is $87,043 to $107,130. Where a successful applicant is slotted within this range will vary based on legitimate criteria, such as experience and skill level. Please apply by clicking through application. If your skills and experience match this position, a member of the human resources team will contact you directly. Thank you for your interest in Hodgson Russ. Hodgson Russ LLP is an Equal Opportunity Employer. The Firm is committed to providing equal employment opportunities regardless of race, color, religion, sex, gender, gender identity, gender expression, sexual orientation, national origin, age, disability, veteran status, familial status, or any other legally protected basis. *************************************************