Security engineer jobs in Galveston, TX

Cybersecurity Analyst (FTE, Onsite Houston) Our client is an Oil & Gas Security professional to support day-to-day security operations, tool deployment, and infrastructure improvements. Contract-to-hire: 6 months contract, converting to FTE after this period. Responsibilities: Deploy, configure, and enhance cybersecurity tools. Support operations across firewalls, EDR, PAM, vulnerability management. Collaborate across departments to enhance security posture. Requirements: Familiarity with tools like CrowdStrike, CyberArk, Rapid7, Zscaler, Security Onion. Hands-on knowledge of firewalls, network security, endpoint protection. SANS/GIAC certs preferred Please apply with an up-to-date resume

About The Role The Sr. Security Researcher is responsible for leading and executing offensive security assessments (red teaming) against the organization's systems and networks. This role will leverage advanced penetration testing, social engineering, and other offensive security techniques to identify and exploit vulnerabilities, simulate real-world threats, and enhance the organization's overall security posture. Responsibilities Lead and execute red team engagements: Develop and execute comprehensive red team assessments, including reconnaissance, vulnerability scanning, exploitation, and post-exploitation activities. Lead and mentor junior red team members, providing guidance, training, and hands-on experience. Develop and maintain red team methodologies, tools, and infrastructure. Conduct threat modeling and risk assessments to identify potential attack vectors and prioritize targets. Develop and execute social engineering campaigns, including phishing, vishing, and physical penetration tests. Vulnerability research and exploitation: Stay abreast of the latest threat intelligence, vulnerabilities, and exploits. Research and develop new exploitation techniques and tools. Conduct in-depth analysis of vulnerabilities and their potential impact. Reporting and communication: Prepare detailed and concise reports documenting red team findings, including technical details, impact assessments, and remediation recommendations. Effectively communicate findings to technical and non-technical audiences, including senior management. Present findings and recommendations at security forums and conferences (optional). Security awareness and training: Develop and deliver security awareness training programs to employees on topics such as social engineering, phishing, and secure coding practices. Conduct security awareness campaigns to raise employee awareness of security threats and best practices. Collaboration: Collaborate with other security teams (e.g., blue team, incident response) to improve overall security posture. Work with development teams to identify and remediate security vulnerabilities in applications and systems. Build and maintain relationships with external security researchers and the cybersecurity community. Skills and Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 5+ years of experience in cybersecurity, with 3+ years of hands-on experience in penetration testing, red teaming. Understanding of blended attacks. Proven experience leading and mentoring junior security professionals. Strong understanding of networking, systems administration, and programming concepts. Expertise in penetration testing methodologies and tools (e.g., Cobalt Strike, Outflank, Sliver, PowerShell Empire, Metasploit, Kali Linux, Nmap). Proficiency in scripting languages (e.g., Python, Ruby, PowerShell). Strong understanding of network protocols (e.g., TCP/IP, HTTP, DNS). Experience with vulnerability scanners, intrusion detection systems, and firewalls. Experience with cloud security (e.g., AWS, Azure, GCP) is a plus. Relevant security certifications (e.g., RTO I, RTO II, OSCP, OSCE, GPEN, CRTP) are highly desired. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Strong attention to detail and accuracy. Ability to adapt to new technologies and challenges. Project Management.

The Senior Network Security Engineer will play a key role in the Cybersecurity Engineering team in managing risks to the information assets and systems of the organization by implementing and supporting the enterprise-wide network security architecture. The responsibilities will include implementing, maintaining, and supporting the technology platforms that provide network security (ZTNA, SASE, Zero Trust architecture). Overall Responsibilities: • Work with various application teams to design, install, implement, architect, configure, and maintain one or more network security management platforms (SIEM, SOAR, NDR) for primarily on-premise and cloud deployments • Prepare test cases and regression test plans, as well as perform unit and peer testing • Create documentation of the process, guidelines, standards, and technical specifications, as well as draw network and system architecture diagrams • Perform daily ad hoc support with strong analytical skills for troubleshooting and be available for after-hours emergency support • Perform system and application patching during monthly after-hour maintenance windows Skills Required / Qualifications: • IT professional experience working in network security engineering • Experience working with network security management technology platforms (SIEM, NDR) such as Splunk, ExtraHop, Palo Alto, Firemon, Cisco, etc. • Expert knowledge of Palo Alto Firewall technologies • Expert knowledge of WAN technologies • Expert knowledge of Zero Trust architecture, SASE • Strong foundational knowledge of overall infrastructure functionality and networking design concepts. • Solid understanding of IP routing protocols • Experience maintaining network performance through network monitoring and analysis, QoS service implementation, and performance tuning; troubleshooting network problems • Working knowledge of enterprise-class Infrastructure environments • Able to prioritize and execute tasks in a high-pressure environment • Ability to author technical documents and create procedure manuals • Excellent interpersonal skills, verbal and written communication skills, and proven analytical and problem-solving abilities with attention to detail • Strong understanding of the organization's goals and objectives • Ability to conduct research into current and future technologies • Active member of one or more security associations (ISSA, ISACA, InfraGard, etc.) is preferred Additional Notes Outline: Network Security Engineer Core technologies: Cisco Palo Alto (firewalls) Key Requirements Cloud experience (must-have) Virtual firewalls and security policies Experience in AWS, Azure, or OCI Ability to coordinate work across cloud environments Experience with orchestration tools Nice to Have SCADA experience Tools / Platforms Prisma Cisco Orchestration tools across multiple cloud platforms

About the Role We are seeking a highly strategic and business-minded Business Information Security Officer (BISO) to serve as the primary liaison between our enterprise security organization and key business units. As a Fortune 100 company operating at global scale, we manage complex distribution and supply chain environments that require world-class security, risk governance, and operational excellence. The BISO will help shape and execute a unified security strategy that aligns with business objectives, ensures regulatory compliance, and strengthens our cyber resilience across a diverse technology and operational footprint. Key Responsibilities Strategic Security Leadership Act as the trusted security advisor to senior business leadership, translating technical risks into clear business impacts. Drive alignment between corporate security strategy and business-unit initiatives, ensuring security enables-not hinders-innovation and growth. Represent business needs within enterprise cybersecurity governance forums. Risk Management & Compliance Identify, assess, and prioritize cybersecurity risks across business units, including emerging threats to distribution operations, supply chain systems, and large-scale logistics platforms. Ensure compliance with internal policies, industry standards, and regulatory frameworks (e.g., NIST CSF, ISO 27001, SOX, PCI, data privacy regulations). Oversee remediation plans and ensure timely closure of audit and assessment findings. Program & Policy Execution Support implementation of enterprise-wide security programs (IAM, data protection, vulnerability management, cloud security, OT/ICS security, incident response). Champion best practices for secure architecture, application development, and third-party vendor management. Coordinate with IT, OT, and business operations teams to drive adoption of security controls across complex distributed environments. Incident Response & Business Continuity Liaise between business leadership and Cyber Incident Response teams during major incidents or disruptions. Ensure business units are prepared with effective response plans, communication protocols, and recovery strategies. Stakeholder Engagement & Education Build strong partnerships with executives, technology leaders, and operational teams. Deliver targeted security awareness and training for business units. Communicate risk posture and security metrics to leadership through dashboards, reports, and briefings. Qualifications Required 8+ years of experience in cybersecurity, risk management, or information security leadership roles. Proven experience supporting large-scale, distributed enterprise environments (preferably in supply chain, logistics, distribution, or retail). Strong understanding of cybersecurity frameworks, governance, and risk methodologies. Ability to interact with C-suite executives, translate complex technical issues into business language, and influence decision-making. Experience coordinating cross-functional initiatives in complex, highly regulated organizations. Preferred Experience within a Fortune 100 or Fortune 500 corporate environment. Background working with OT/ICS, distribution center technologies, or supply-chain automation systems. Relevant certifications: CISSP, CISM, CRISC, CISA, CGEIT, or similar. Bachelor's degree in Cybersecurity, Information Systems, Business, or related field; Master's degree a plus. Competencies Executive communication and presentation skills Strategic thinking with strong business acumen Ability to drive change across matrixed organizations Strong analytical, risk evaluation, and problem-solving capabilities Collaborative leadership with a focus on partnership and enablement Why Join Us? Influence security strategy at a world-class, Fortune 100 distribution leader High-visibility role with direct impact on enterprise risk posture Opportunity to shape security across cutting-edge logistics, cloud, data, and automation platforms Competitive compensation, comprehensive benefits, and career growth at a global scale

Join our innovative Cybersecurity Engineering team as a Senior Network Security Engineer where your expertise will safeguard information assets across diverse environments. Key Responsibilities Design and implement enterprise-wide network security platforms, including SIEM, SOAR, and NDR solutions. Prepare and execute test cases and regression plans to ensure platform integrity and security standards. Provide analytical troubleshooting support and maintain comprehensive documentation of network architecture. Required Qualifications Minimum of 5 years in network security engineering, with demonstrable expertise in enterprise-level solutions. Experience with SIEM/NDR technologies such as Splunk and Palo Alto, including a strong grasp of their deployment. Expertise in Zero Trust architecture principles and WAN technologies. If you're ready to make a significant impact in network security, we invite you to apply and join our forward-thinking team. #11301

Join a world-class LNG leader as a Network Engineer, supporting critical infrastructure of an organization at the forefront of the global energy industry. Key Points: Long term contract opportunity (W2), 12 months renewable Onsite in Downtown Houston with flexible work hours Paid Parking Requriements: Hands-on experience with enterprise firewalls (Palo Alto, Cisco Firepower) Skills in routing, switching, and network access layer design (Cisco) Knowledge of voice infrastructure (CUCM)

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. **Job responsibilities** + Design and build software solutions for security projects + Mentor junior security engineers + Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs + Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability + Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events + Adds to team culture of diversity, equity, inclusion, and respect **Required qualifications, capabilities, and skills** + Formal training or certification on software engineering concepts and 5+ years applied experience . + Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) + Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) + Knowledgeable in secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) + Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira + Experience building security engineering products and solutions + Knowledge of the Windows Workstation OSs (Windows 10/Windows 11 and Virtual platforms) and/or Mac OSX + Understanding of Active Directory concept and practical implementation of GPO management + Ability to tackle design and functionality problems independently with little to no oversight **Preferred qualifications, capabilities, and skills** + Experience within Cyber Security is preferred + Excellent communication and presentation skills + Prior experience in finance industry is a huge plus **\#CTC** JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans **Base Pay/Salary** Jersey City,NJ $152,000.00 - $215,000.00 / year

Job Description We is seeking a talented Cyber Security Analyst. As a Cyber Security Analyst, you will play a key role in ensuring the security and integrity of our organization's data and systems. Requirements Responsibilities: Monitor, detect, and respond to cyber threats and security incidents, Conduct vulnerability assessments and penetration testing to identify potential weaknesses in our systems, Develop and implement security measures and best practices to protect against cyber attacks, Stay up-to-date with the latest cyber security trends and technologies, Collaborate with cross-functional teams to identify security risks and implement appropriate solutions, Provide training and guidance to employees on cyber security awareness and best practices. Requirements: Bachelor's degree in Computer Science, Information Security, or a related field, Proven experience in cyber security or a related role, Strong knowledge of security protocols and tools, Ability to analyze and interpret complex data and make informed decisions, Excellent problem-solving and communication skills, Relevant certifications (e.g. CISSP, CISM) are preferred but not required. Benefits About Us Zone IT Solutions is an Australia-based Recruitment Company. We specialise in Digital, ERP and larger IT Services. We offer flexible, efficient and collaborative solutions to any organisation that requires IT, experts. Our agile, agnostic and flexible solutions will help you source the IT Expertise you need. If you are looking for new opportunities, your profile at *******************************. Also, follow our LinkedIn page for new job opportunities and more. Zone IT Solutions is an equal-opportunity employer, and our recruitment process focuses on essential skills and abilities.

6+ years of experience in multiple industry risk, control and governance disciplines (e.g. Audit, Business Continuity Planning, and Regulatory Compliance). In-depth understanding of information technology and business continuity principles and best practices across the industry as well as project management principles. Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements. Significant expertise in the collaboration, facilitation and coordination of the mitigation of risks. Adept at navigating governance structures. Ability to manage and analyze data. Experience raising awareness of information and technology risk throughout an organization. Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners. Ability to solve or to collaborate in solving very complex risk issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company. Ability to prioritize and drive difficult decisions among business partners Strong client relationship management experience and influencing skills. Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff. Qualifications PLEASE NOTE: While technical experience is a plus, this is not a technical information security position. It is best filled by someone with information security management or information technology audit experience. This is a leadership position requiring strong communication and analytical skills. Additional Information Job Status: Contract Eligibility: H1B/EAD Green Card/ Green Card/ US Citizens Share the Profiles to ********************* Contact: ************ Keep the subject line with Job Title and Location

Senior Security Analyst FLSA Class: EXEMPT Responsible to: Lead Security Architect The Senior Security Analyst plays a critical role in protecting our company's systems, data, and assets by monitoring threats, analyzing incidents, and implementing security measures. This individual will serve as a subject matter expert, providing technical guidance and helping drive improvements in our security posture. What You'll Do: * Threat Monitoring & Incident Response * Monitor security alerts and events across various platforms including EDR, DLP, SIEM, and other tools. * Lead investigations of potential security incidents and coordinate response actions per the Security Incident Response Plan. * Perform root cause analysis and recommend remediation measures. * Vulnerability & Risk Management * Conduct vulnerability assessments, penetration testing support, and threat hunting leveraging tools and industry threat intelligence. * Partner with IT and Engineering teams to remediate findings and strengthen security controls. * Maintain an up-to-date understanding of emerging threats and attack vectors. * Security Operations * Monitor daily alert activities, escalate issues, and provide guidance to key stakeholders. * Tune detection rules, playbooks, and response workflows to improve efficiency. * Develop and maintain security documentation, including incident response playbooks and procedures. * Governance & Compliance Support * Assist with internal and external assessments and audits, evidence gathering, and regulatory requirements (e.g., SOC 2, ISO 27001, etc.) * Ensure security controls align with policies, standards, and best practices. * Collaboration & Leadership * Work cross-functionally with IT, Engineering, Legal, and Compliance teams. * Mentor and coach junior security staff. * Contribute to strategic security initiatives and roadmap planning. Other Requirements: * Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience). * 5+ years of experience in security analysis, SOC operations, or incident response. * Strong knowledge of security tools (SIEM, EDR, IDS/IPS, DLP, etc.) * Experience with vulnerability management and risk assessment. * Familiarity with cloud security (AWS, Azure, or GCP). * Excellent problem-solving, analytical, and communication skills. Nice to have: * Professional certifications such as CISSP, CISM, GIAC, CEH, or Security+. * Hands-on scripting or automation skills (Python, PowerShell, etc.). * Experience with GRC tools and compliance frameworks. * Background in mentoring or leading junior analysts. VoltaGrid is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived race, creed, color, religion, alienage or national origin, ancestry, citizenship status, age, disability or handicap, sex, marital status, veteran status, sexual orientation, genetic information, arrest record, or any other characteristic protected by applicable federal, state or local laws. Our management team is dedicated to this policy with respect to recruitment, hiring, placement, promotion, transfer, training, compensation, benefits, employee activities, and general treatment during employment. #GC #LI-MB1

Job Details Deer Park - Deer Park, TX Full TimeDescription Shift Hours: M-W & F 8:30 AM - 5:15 PM TH 8:30 AM - 5:45 PM and On-Call The Information Security Analyst is responsible for working with and providing support to the ISM and IS&T Team in maintaining security best practices and regulatory requirements. Essential Job Duties and Responsibilities Consistently meet all Shell FCU Service Commitments; Shell FCU Employee Creed and Shell FCU Service Distinctions Accountable to maintain knowledge of and comply with all applicable rules and regulations required within the scope of duties, including, but not limited to, the Bank Secrecy Act Required to attend annual training sessions as instructed or scheduled. Perform job duties and responsibilities in compliance with Shell FCU policies, procedures, philosophy, and standards of performance. Assist security team in identifying current security and compliance requirements and recommend security solutions or actions. Assess network threats such as computer viruses and malware, perform vulnerability assessment in support of penetration analysis, operate host and network intrusion/prevention programs, administer access/ monitoring of critical systems, review critical system logs, identify, and document unique local threats/vulnerabilities and recommend remedial action. Work with ISM/Network Team security standards and practices to install, design, configure and maintain security applications that protect against malware, encrypt information, and ward off hackers and other bad actors. Maintain the security and health of the network from misuse through neglect, lack of training, or malevolence from internal and external sources. Monitor programs and processes that keep outsiders from gaining access to Shell FCU private networks and data. Prepare for and provide rapid response to security threats such as virus, worms, or other malicious attacks. Assist in the preservation, identification, extraction, and documentation of evidence stored in computers. Perform log reviews on a predefined basis, to detect anomalous activity. Perform network vulnerability scans and make recommendations based on findings. Conduct forensic analyses when necessary. Utilize cybersecurity tools to periodically test the corporate environment and verify end user best practices to maintain strong security practices. Work with IS&T staff to continually review and maintain security hardening standards within newly deployed systems, codes, updates, upgrades, or patches. Assist in patch management and firmware updates to maintain optimal levels of security. Support anomaly detection and trending tools to provide in-depth analysis of events detected by these applications. Included in this position will be the overall maintenance of the environments, configuration upgrades and tuning, incident response escalations, and 1st level NOC support for all alerts detected. Respond to network security incidents through remediation efforts including implementation of a secure infrastructure, the secure repair of technology components and assist in the development of incident response and recovery processes. Support IS&T staff on security-related projects including design, configuration, deployment and maintenance of policy enforcement tools, techniques, and reporting. Participate in business continuity / disaster recovery planning and Change Management / Change Configuration processes and reviews. Effectively communicate security information gathered from security tools, logs, evolving risks, and reported incidents by employees, to management or security teams. Perform additional duties, as assigned. Shell Federal Credit Union is an equal opportunity and an affirmative action employer and committed to providing equal opportunity for all employees and applicants for employment, without regard to race, religion, color, sex, sexual orientation, gender identity, national origin, age, citizenship status, marital status, protected veteran status, mental and/or physical disability, pregnancy, or any basis prohibited by State or Federal law. Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Knowledge and Skills Experience: Three or more years' strong Windows and Windows Network administration, database systems and network connectivity skills. Three or more years' experience performing security related tasks for a medium to large enterprise. Education / Training: Two-year degree; Cybersecurity degree and/or equivalent related experience or certification. Two or more years' systems development, information security, PC support and network/systems administration experience. Current, Industry standard recognized certification in information security (ex: Security+, CEH certification) Good knowledge/experience working with following products a plus: Windows Server Technologies, Cisco Routers/Switches/Firewalls, Websense, Symantec Endpoint Protection, IDS/IPS, Cisco CSA, Windows Active Directory Infrastructure, Linux based systems, Kali Linux, Threat Hunting, Honeypots, Wireshark, NESSUS, Penetration Testing Tools, Dell KACE, working knowledge of Python. Job Requirements: Knowledge of credit union products and services Positive, welcoming, and helpful demeanor Must be able to communicate information technology and security procedures and requirements to users and key Management. Must possess functional knowledge regarding regulatory issues pertaining to security in a financial institution. Must have strong analytical and problem-solving skills with the ability to clearly present and communicate technical and management concepts. Advanced computer skills Must possess professional verbal communication skills. Position requires participation in on-call rotations as needed or assigned. Position will at times require participation in after-hours or weekend work. Must be prepared to participate in Disaster Recovery, Business Continuity, or Incident Response scenarios. Ability to multitask in a fast-paced environment. Ability to handle workloads during emergencies or stressful time sensitive situations. Ability to work in open-concept workspace/environment. Physical Demands: While performing the duties of this job, the employee is regularly required to bend and stand. May at times be able to lift, carry and/or move up to 15 pounds. Working Conditions Exposure to potential hazardous conditions-robbery. Employees are to receive detailed instructions and procedures to be followed to minimize risk. In accordance with the American with Disabilities Act, it is possible that requirements may be modified to reasonably accommodate disabled individuals. However, no accommodations will be made which may pose serious health or safety risks to the employee or others or which impose undue hardships on the organization. This is not a complete statement of all duties and responsibilities comprising this position. Job descriptions are not intended and do not create employment contracts. The organization maintains its status as an at-will employer. Employees can be terminated for any reason not prohibited by law. This organization uses E-Verify in its hiring practices to achieve a lawful workforce.

Job Title: Information Security Analyst - Threat & Vulnerability Management Job Location: Downtown Houston, TX 77002*Prospective candidates MUST be located in the HOUSTON, TX area. Job Type: Contract/Full Time has a duration of 6-months. Job Schedule: Mon-Fri 8AM-5PM *This contract role is hybrid (4-days onsite/1-day WFH). Job Salary:$42-$45/hour *Depending on experience. Project Overview The Information Security Analyst will support key cybersecurity initiatives including SIEM operations, automation, incident response processes, and integration of security tools. This role is critical to advancing our security operations and maturity. Role and Responsibilities Contribute to the development of cybersecurity strategies, objectives, and project plans Assist with design and implementation of improved cybersecurity processes and services Administer and maintain cybersecurity technology platforms for the Elections Administrative Department and the Enclave Department Fulfill customer requests and support daily security operations, including incident monitoring, analysis, and response Analyze cybersecurity threats and vulnerabilities and develop appropriate mitigation strategies Create documentation including procedures, job aids, reports, metrics, and presentations Participate in Cybersecurity Incident Response Team (CIRT) investigations and activities Scheduled Milestones & Deliverables Enhance maturity of SIEM, SOC, and Incident Response processes Integrate automation best practices Improve Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) Performance Metrics Completion of projects related to SIEM and other security platforms (e.g., incidents, alerts, tickets) Availability and uptime of systems SOC effectiveness Compliance with defined processes and procedures Requirements Highlighted Requirements 2+ years of SIEM experience, preferably with Azure Sentinel and Kusto Query Language (KQL) Multi-year, direct experience in Incident Response, ideally in an Incident Response Team or MSSP setting for medium to large organizations Practical experience with tools within the Microsoft security stack Key Skills Cyber Incident Response KQL - Deep understanding and hands-on experience SOC Analyst / Operations - Level 1, 2, and 3 (Triage, Escalation) SIEM Administration - Managing, maintaining, creating custom detections/logging SentinelOne - In-depth knowledge for incident handling, hunting, queries, and detections Linux Administration - Comfortable with navigation, configuration, and server management Microsoft Cloud Security Tools - Understanding of architecture and platform use Additional Skills Data analysis and reporting Education Required: High School diploma or GED equivalent Preferred: Bachelor's degree or currently pursuing a degree in Information Systems, Information Assurance, Cybersecurity, IT, Computer Science, or a related field Certifications Required/Preferred: CompTIA Security+ CompTIA Network+ Other relevant industry certifications Experience Minimum of 5 years of progressive work experience in Information Security, IT, Computer Science, or a related field

The Cyber Security Analyst, under the direction of the Director of Cyber Security & Compliance, assists in developing, implementing, and enforcing IT infrastructure security policies, standards, guidelines and technologies. Ensures these controls effectively safeguard Information Systems against accidental or unauthorized modification, destruction, or disclosure. ESSENTIAL FUNCTIONS Assist with the development, implementation and maintenance of a comprehensive Information Security Program. Assist in the development of a website for the Security Office and be responsible for maintaining the site with up-to-date content. Coordinate and maintain security-related policies, procedures, security standards and best practices. Contribute to the development of Security Risk Assessments and conducts risk assessments as needed. Participate in vulnerability assessments, security evaluations and reviews. Research and stay abreast of new vulnerabilities and exploit that may compromise the Institution. Evaluate risk and works with inter-departmental personnel to address vulnerabilities. Advise Departments on regulatory requirements, institutional policies, and security best practices. Contribute to inter-departmental and cross-functional working groups. Assist to remediate audit and assessment findings. Assist in the development of Business Continuity and Disaster Recovery Plans. Manage security projects and technology implementations. Meet project deadlines. Develop and maintain documentation for all assigned projects. Contribute to the evaluation, implementation and management of security solutions and processes. Provide security guidance and training to personnel. Recommend and implement necessary technologies and processes needed to protect the Institution. Work with the Director of Administrative and IT Security, and other technical/security staff; contributes to the development of project plans and budget proposals to address current needs and potential security issues. Perform other duties, tasks and assignments as required. QUALIFICATIONS Education & Experience * Bachelor's degree in Computer Science or a related field required * 8 years directly-related work experience may be substituted in lieu of degree * 5 years' experience with progressively-increasing responsibility in related subject matter * Experience in security aspects of multiple platforms, operating systems, software, communications and network protocols * Experience in a community college environment preferred Licensing & Certification * Valid Texas Driver License Special Skills * MS Office Programs * Knowledge of Information Management Systems * Knowledge of data security, access control systems, encryption and information protection methodologies and concepts * Able to communicate technical issues to various representatives Competencies * Delivering High Quality Work * Accepting Responsibility * Serving Customers * Supporting Organizational Goals * Driving Continuous Improvement * Acting with Integrity * Thinking Critically * Managing Change * Communicating Effectively Working Conditions General Office. Must be able to perform all job requirements with or without reasonable accommodations; remain in a stationary position during shift; move items weighing up to 25 pounds; position self to operate job equipment; apply established protocols in a timely manner. Must access, input and retrieve information from technology devices; communicate with others to accomplish job requirements. May be required to work after hours to include weekends and holidays. SECURITY SENSITIVE: This job class may contain positions that are security sensitive and thereby subject to the provisions of Texas Education Code § 51.215 The Organization Houston Community College (HCC) is an open-admission, public institution of higher education offering a high-quality, affordable education for academic advancement, workforce training, career development and lifelong learning to prepare individuals in our diverse communities for life and work in a global and technological society. We're proud to say that 98 percent of our graduates step into a job in their field of study immediately upon graduation. One of the largest community colleges in the nation, HCC has served the Greater Houston area for over four decades. Accredited by the Southern Association of Colleges and Schools, and the Schools Commission on Colleges, we offer 300+ associate degree and certificate programs to 75,000+ students across 13 Centers of Excellence and online each semester. We are proud to be No.1 among all community colleges in the nation in providing associate degrees to minorities and No.1 in educating international students, with 10.4 percent of our student population from outside the USA. Our vision is to become the Employer of Choice in support of our mission for Student Success by attracting, retaining and motivating the best employees. The Team Play a central role at HCC as you keep our everyday operations running like clockwork. You'll get the chance to make things happen and work closely with inspiring leaders across different parts of the institution. Whether your role is supportive, administrative, financial or something else, you'll be part of a dynamic team that not only provides HCC students with cutting-edge academic and career tools, it also takes care of its people. Location Houston is a city with limitless possibilities: * Fourth-largest city in the U.S. and home to 54 Fortune 500 companies, second only to New York City's 55. * 145 languages are spoken here. * Overall after-taxes living costs are 5.6 percent below the average for all 308 urban areas recently surveyed. * Houston is a major-league sports town, and don't forget the annual Houston Livestock Show & Rodeo. * The weather is great! Mild winters ensure that outdoor activities can be enjoyed year-round. * World-renowned medical care. The Houston metro area has long been known for its first-rate health care system, with many Houston area hospitals consistently ranking among the nation's top institutions. * With over 150 museums and cultural institutions in the Greater Houston area, museums are a large part of Houston's cultural scene. * Houston is the Culture & Culinary Capital of Texas with more than 7,500 restaurants and eating establishments covering 60+ cuisines. If this sounds like the role for you and you're ready to join an amazing team, please apply right away. EEO Statement Houston Community College does not discriminate on the bases of race, color, religion, sex, gender identity and expression, national origin, age, disability, sexual orientation or veteran's status. The following person has been designated to handle inquiries regarding the non-discrimination policies: * David Cross, Director EEO/Compliance, Title IX Coordinator * Office of Institutional Equity * PO Box 667517 * Houston, TX 77266 * ************ or ***************************** HCC values its employees and their contributions, promotes opportunities for their professional growth and development, and provides a positive working and learning environment that encourages diversity, innovation and creativity, and inclusion. Individuals with disabilities, who require special accommodations to interview, should contact **************.

Starting Salary Range is $71,905.60 - $75,573. The initial salary offer is commensurate with education and related work experience. The Information Security Compliance Analyst is the designated administrator of the Lee College Information Security Program TAC 202. This position provides assistance to the Chief Information Officer in the operations of the Lee College Information Security Program, as well as oversight and implementation of system-wide information security strategies and solutions. Specific areas include IT policy, continuity of IT operations, information security risk assessment, information security operations review, and security life cycle for information systems. Please Note: This position offers a hybrid work arrangement, blending onsite presence with remote flexibility. * Develop, recommend, and establish policies, procedures, and practices as necessary to protect Lee College information resources against unauthorized or accidental modification, destruction, or disclosure. * Design, coordinate and execute audit process, monitoring and procedures to assess and measure company Governance, risks, compliance with its security policies and procedures. Monitor advancements in information privacy laws to ensure organizational adaptation and compliance. * Identify and implement proactive and reactive technical measures to detect vulnerabilities and to defend against external and internal security threats. * Plan, implement and overseeing risk-related programs as per TAC 202 and other industry related frameworks & compliances. Creating and coordinating proper reporting channels for compliance issues. Developing compliance communications. Coordinating and scheduling required compliance training for employees. * Provide consulting and technical support services to owners, custodians, and users in defining and deploying cost-effective security controls and protections. * Ensures College functions in a legal and ethical manner while meeting its business goals. Responsible for developing Risk & compliance programs, reviewing company policies, and advising management on possible risks as per TAC202 state program and other best practices. * Establish, maintain, and institutionalize security incident response procedures to ensure that security events are thoroughly investigated, documented, and reported; that damage is minimized, that risks are mitigated, and that remedial actions are taken to prevent recurrence. * Investigate or direct Governance, Risk and compliance security issues, assess product, vulnerabilities, compliance, or operational risks and develop risk management strategies. * Establish and publicize a security awareness program to achieve and maintain a security-conscious user community. * Document, maintain, and obtain ongoing support for all aspects of the information security program. * Monitor the effectiveness of strategies, activities, measures, and controls designed to protect the College information resources. * Assure executive management's awareness of legal and regulatory changes that might impact the College information security and privacy policies and practices. * Serve as Lee College internal and external point of contact for information security matters. * Report frequently (at least annually) on the status and effectiveness of the information security program as directed by the Chief Information Officer (see TAC §202.73(a)). * Have authority for information security for the entire institution (see TAC §202.71(a)(2)). * Develop and recommend policies and establish procedures and practices, in cooperation with the information-owners and custodians, necessary to ensure the security of information and information resources against unauthorized or accidental modification, destruction, or disclosure. * Coordinate the review of the data security requirements, specifications, and, if applicable, third-party risk assessment of any new computer applications or services that receive, maintain, and/or share confidential data. * Verify that security requirements are identified, and risk mitigation plans are developed and contractually agreed to and obligated prior to the purchase of information technology hardware, software, and systems development services for any new high impact computer applications or computer applications that receive, maintain, and/or share confidential data. * Serve as liaison with assigned Lee College educational centers for the purpose of monitoring information security program effectiveness and compliance with program requirements. Perform other duties as assigned. * Bachelor's (or higher) degree in a related field * Five (5) years of experience designing, implementing, auditing, and/or managing information resources, information security, or risk management projects, operations, and/or programs * Experience in the implementation of governance, risk, and compliance strategies preferred * Experience working in a higher education setting preferred * Experience in Texas State government preferred * Must be able to work evenings and weekends as required

Title: Cyber Security Engineer Type: Contract to Hire Sector: Energy About the Role We are seeking a skilled and proactive Cyber Security Engineer to join our growing security team. You will design, implement, and maintain security controls that protect our organization's networks, systems, cloud environments, and sensitive data from evolving cyber threats. Key Responsibilities Design, deploy, and manage security tools and technologies (firewalls, IDS/IPS, SIEM, EDR/XDR, WAF, vulnerability scanners, etc.) Perform security architecture reviews and provide actionable recommendations for new systems and applications Conduct threat modeling, risk assessments, and security hardening of infrastructure (on-prem and cloud: AWS, Azure, GCP) Respond to and investigate security incidents; perform digital forensics when needed Lead or contribute to penetration testing, red/blue/purple team exercises Develop and automate security processes using scripting (Python, PowerShell, Bash) and infrastructure-as-code (Terraform, Ansible, etc.) Monitor, analyze, and respond to security alerts from SIEM and other detection systems Implement and maintain identity & access management controls (MFA, RBAC, Zero Trust principles) Create and update security policies, standards, and procedures Collaborate with DevOps, engineering, and IT teams to integrate security into the SDLC (DevSecOps) Stay current with emerging threats, vulnerabilities (CVEs), and industry best practices Participate in compliance efforts (SOC 2, ISO 27001, NIST, GDPR, HIPAA, PCI-DSS, etc., as applicable) Required Qualifications Bachelor's degree in Computer Science, Information Security, or equivalent experience 2-5+ years of hands-on experience Strong knowledge of network security, operating systems (Windows, Linux), and cloud security Proficiency with security tools such as Splunk, CrowdStrike, Palo Alto, Tenable/Nessus, Qualys, Burp Suite, Metasploit, etc. Experience with scripting/automation (Python strongly preferred) Solid understanding of security frameworks (NIST CSF, MITRE ATT&CK, CIS Controls, Zero Trust) Relevant certifications (at least one required; more are a plus): - CISSP, CCSP, CEH, OSCP, CompTIA Security+, GSEC, GIAC (GCIH, GCIA, GNFA, etc.), AWS/Azure/GCP security certifications

The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture. Responsibilities Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization. Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies. Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls. Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes. Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams. Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk. Stay current on security threats, vulnerabilities, and technologies to enhance the organization's security posture. Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows. Skills and Qualifications 7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security. 5+ years of enterprise architecture experience required. Ability to create and review diagrams using tools such as Visio or Lucidchart. Familiarity with secure architecture patterns, reference architectures, and frameworks. Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce. Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM. Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation. Expertise in threat modeling, vulnerability management, and risk assessments. Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR. Relevant certifications such as CISSP, CCSP, or equivalent. Ability to work independently or collaboratively in a team-oriented environment. Bachelor's degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles. Technical Skills Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos. Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies. Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI). Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE. Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices. Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations. Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault. Common Security and Architecture Frameworks Security Frameworks: NIST Cybersecurity Framework (CSF) ISO 27001 and 27002 CSA CCM (Cloud Controls Matrix) CIS Controls Architecture Frameworks: SABSA (Sherwood Applied Business Security Architecture) TOGAF (The Open Group Architecture Framework) AWS Well-Architected Framework Preferred Certifications TOGAF (The Open Group Architecture Framework) SABSA Foundation or Practitioner CISSP-ISSAP (Concentration in Security Architecture) Certified Cloud Security Professional (CCSP) GIAC Security Architecture (GDSA) AWS Certified Solutions Architect - Associate or Professional AWS Certified Security - Specialty Microsoft Certified: Azure Solutions Architect Expert Soft Skills Strong analytical and problem-solving abilities. Excellent interpersonal and collaboration skills. Strong organizational and time management skills. Adaptability and a commitment to continuous learning of new technologies and methodologies. Attention to detail and dedication to delivering high-quality results. High level of integrity and ethical conduct. Industry-Specific Experience Experience in financial services, insurance, or other regulated environments. Proven ability to design and implement security controls that align with industry regulations and standards. Experience conducting security assessments and audits in regulated industries. Familiarity with industry-specific threats and vulnerabilities to tailor security solutions.

JobID: 210680882 JobSchedule: Full time JobShift: Day : Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls you will oversee the security of our Storage product line, with a primary focus on File products. This role is responsible for ensuring the security posture of file storage solutions through rigorous review, threat modeling, security configuration management, and drift detection. The ideal candidate will have deep expertise in storage security, threat analysis, and enterprise security best practices. Job responsibilities * Lead the security strategy, implementation, and ongoing management for all file storage products within the Storage product line. * Conduct comprehensive security reviews of file storage solutions, identifying vulnerabilities and recommending remediation strategies. * Define, implement, and manage security configurations for file storage products, ensuring alignment with JPMC security standards and industry best practices. * Work closely with product owners, engineering teams, and other stakeholders to embed security into the product lifecycle and provide expert guidance. * Stay current with emerging threats, technologies, and best practices in storage security. Drive continuous improvement initiatives for the security of file products. * Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills * Formal training or certification on security concepts and 5+ years applied experience in security engineering, with a focus on storage and file products. * Strong expertise in threat modeling, vulnerability assessment, and security configuration management. * Experience with drift detection tools and methodologies. * Deep understanding of file storage technologies (NAS, SAN, cloud file storage, etc.). * Familiarity with regulatory requirements and compliance frameworks (e.g., SOX, PCI-DSS, GDPR). * Excellent analytical, problem-solving, and communication skills. Preferred qualifications, capabilities, and skills * Experience with automation and scripting (Python, PowerShell, etc.). * Knowledge of storage security (AWS, Azure, GCP, Dell Isilon, OnTap, Netapp Solidfire, Dell PowerFlex). * Experience with security monitoring and incident response tools. * Experience working in large enterprise environments, preferably in financial services.

Job Title: Fortinet Network Engineer The Fortinet Network Engineer is responsible for designing, implementing, managing, and supporting network and security infrastructure centered around Fortinet technologies. This role ensures the stability, security, and performance of firewalls, VPNs, routing, switching, and secure access solutions across enterprise or multi-site environments. The position includes both project-based engineering work and day-to-day operational support. Key Responsibilities Design, configure, deploy, and maintain Fortinet security solutions including FortiGate firewalls, FortiManager, FortiAnalyzer, FortiSwitch, and FortiAP Implement and manage security policies, firewall rules, UTM features, SD-WAN, and advanced threat protection Monitor network and security systems to ensure optimal performance, availability, and security posture Troubleshoot complex Layer 2-7 network and security issues Configure and maintain VPN technologies (IPSec, SSL) and secure remote access solutions Support routing and switching infrastructure (static routing, BGP, OSPF, VLANs, HA configurations) Conduct regular system audits, firmware upgrades, patching, and configuration backups Develop and maintain accurate network documentation, including diagrams, standards, and runbooks Collaborate with cross-functional IT teams to support new applications, services, and architecture changes Assist with incident response, risk mitigation, and security best-practice implementation Participate in on-call rotation and provide after-hours support when required Required Qualifications and Experience 3-5+ years of hands-on experience with Fortinet security and networking technologies Strong understanding of firewall policies, NAT, security profiles (IPS, AV, Web Filtering, Application Control), and SSL inspection Experience with FortiGate configuration in both standalone and HA environments Proficiency with FortiManager and FortiAnalyzer for centralized management and reporting Solid understanding of TCP/IP, VLANs, routing protocols (BGP, OSPF), and network troubleshooting Experience with VPN configuration and remote access solutions Familiarity with network monitoring and logging tools Strong problem-solving and analytical skills Preferred Qualifications Fortinet certifications such as NSE 4, NSE 5, or NSE 7 Experience with SD-WAN deployment and optimization Familiarity with cloud networking and cloud-integrated security models (AWS, Azure, GCP) Knowledge of zero trust principles and identity-based access Experience with security frameworks and compliance standards (NIST, ISO, CIS) Education Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field preferred Equivalent professional experience will be considered

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls you will oversee the security of our Storage product line, with a primary focus on File products. This role is responsible for ensuring the security posture of file storage solutions through rigorous review, threat modeling, security configuration management, and drift detection. The ideal candidate will have deep expertise in storage security, threat analysis, and enterprise security best practices. Job responsibilities Lead the security strategy, implementation, and ongoing management for all file storage products within the Storage product line. Conduct comprehensive security reviews of file storage solutions, identifying vulnerabilities and recommending remediation strategies. Define, implement, and manage security configurations for file storage products, ensuring alignment with JPMC security standards and industry best practices. Work closely with product owners, engineering teams, and other stakeholders to embed security into the product lifecycle and provide expert guidance. Stay current with emerging threats, technologies, and best practices in storage security. Drive continuous improvement initiatives for the security of file products. Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security concepts and 5+ years applied experience in security engineering, with a focus on storage and file products. Strong expertise in threat modeling, vulnerability assessment, and security configuration management. Experience with drift detection tools and methodologies. Deep understanding of file storage technologies (NAS, SAN, cloud file storage, etc.). Familiarity with regulatory requirements and compliance frameworks (e.g., SOX, PCI-DSS, GDPR). Excellent analytical, problem-solving, and communication skills. Preferred qualifications, capabilities, and skills Experience with automation and scripting (Python, PowerShell, etc.). Knowledge of storage security (AWS, Azure, GCP, Dell Isilon, OnTap, Netapp Solidfire, Dell PowerFlex). Experience with security monitoring and incident response tools. Experience working in large enterprise environments, preferably in financial services. JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans