Security engineer jobs in Hempfield, PA

OpenArc - Empowering Your Career. As a leading IT staffing firm, we are dedicated to connecting talented professionals with your ideal opportunities. We are currently seeking a qualified Network Engineer II to join our client's organization and contribute to their ongoing success. Job summary As the Network Engineer II, you are a part of a Global Engineering Operations Center helping multiple environments ranging in industries on their networking needs. This position requires you to have or obtain technical proficiencies within Cisco Route / Switch, Cisco ASA, F5, Riverbed, Citrix Netscaler, and more. Responsibilities: Troubleshooting experience with WAN technologies (MPLS, MetroE, VPLS, DMVPN) Troubleshooting experience with various routing protocols (EIGRP, OSPF, BGP) Troubleshooting experience with switching and Layer 2 issues (STP, MST, HSRP) Requirements: Knowledge and hands-on experience with designing and implementing hub-and-spoke networking configurations Knowledge and hands-on experience with designing and implementing security devices (Cisco ASA, Cisco FirePower, Palo Alto, Checkpoint, Fortinet) Knowledge and hands-on experience with load balancers and WAN optimization devices (F5, NetScaler, SilverPeak, Riverbed) At OpenArc, we prioritize your career success and strive to build exceptional technical teams for our clients. By understanding your experience and aspirations, we ensure to present you with rewarding and fulfilling opportunities. As an employee of OpenArc and our clients, you will be eligible to participate in a comprehensive benefits package. OpenArc is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About Us Recognized among Pittsburgh's 2024 Top Workplaces and Fastest-Growing Companies, Wolfe has been a leader in the Gift Card and FinTech sectors for over 25 years. We power gift card programs for national merchants like KFC. Our flagship consumer brand, PerfectGift.com, enables customers to create customized gift cards. We are a fast-paced environment, like kayaking down a white-water river, not canoeing on a lake. Learn more about our company culture, core values, and industry recognition on our career page (****************************** Role Summary Wolfe is seeking a Senior Cloud Security Engineer to lead the protection of our cloud-based systems, data, and applications. This is a pivotal role focused on embedding security into every layer of our cloud infrastructure, particularly within AWS environments. You'll work closely with Developers, DevOps, and Infrastructure teams to manage vulnerabilities, mature security controls, and drive secure practices across our technology organization. In this hands-on role, you'll architect and implement cloud-native security solutions, enhance cloud protections, and build tools and procedures that safeguard sensitive data and workloads. You'll help shape how Wolfe builds and maintains secure cloud systems while balancing risk, performance, and delivery. If you are an experienced DevOps engineer looking to grow into a security-focused role, we encourage you to apply! This is a five-day onsite role based in Pittsburgh, PA. Wolfe does not provide visa sponsorship. Responsibilities Analyze cloud security models, protocols, and systems. Monitor and analyze cloud security tools and technologies for potential risks. Develop best practices and processes for cloud security. Implement security measures to protect the cloud infrastructure from external threats. Collaborate with other teams to ensure the security of the cloud environment. Continuously enhance cloud security technologies and services in designated security domains. Analyze, design, and create applications, tests, and infrastructure automation tools. Impact Statement Example expectations for this role include but are not limited to: Lead the initiative to strengthen cloud account security by eliminating user keys and deploying updated policy controls within three months. Deploy enhanced firewall solutions and expand application protection platforms to production environments, achieving cost savings and increased security over the next four months. Manage and mature privileged access management (PAM) solutions for databases, phasing out legacy access methods where possible, and extend PAM deployment to new environments within six months. Perform comprehensive assessments of new accounts and prepare for resource cleanup across multiple cloud projects. Enhance cloud security maturity by improving KPI tracking and maturing security metrics reporting within three months. Assist with developing penetration test scopes and support the execution of penetration tests within six months, while ensuring visibility of cloud vulnerabilities for developers. Qualification 3+ years security engineering or 3+ years cloud infrastructure engineering experience Strong communication skills Proficient with AWS; familiar with Azure and/or GCP Passionate about cloud security and driving secure infrastructure Deep experience in cloud security technologies, processes, and best practices Familiarity of non-cloud native security tools like CrowdStrike, SentinelOne Singularity, Wiz, or Prisma History of developing and implementing security policies and procedures Solid understanding of network security protocols and security architecture Excellent problem-solving abilities Effective team player focused on team goals Experience in a fast-paced environment with the ability to think quickly and creatively to solve problems. Familiar with frameworks: NIST CSF, OWASP DSOMM, CSA STAR, CCM Recommended certifications: CCSP, AWS Certified - Security, GCSA, CISSP Compensation & Benefits Wolfe is committed to providing a comprehensive benefits package to support your well-being, along with competitive compensation targeting the top 25% (75th percentile) in the local market. Our benefits and perks include but not limited to: Restricted Stock Units (RSUs) Profit Share Medical, Prescription, Vision, and Dental insurance for employees and dependents (Wolfe pays 80% of premium) Short-Term Disability Insurance (Wolfe pays 100% of premium) Voluntary Long-Term Disability Insurance, Life Insurance, Critical Illness Insurance, Accident Insurance, and Hospital Indemnity coverage PTO (vacation) Corporate Holidays 401(k) Employee recognition program Charitable Donation to a charity of your choice yearly Employee Referral Bonus Tuition Reimbursement Internal Training and Information sessions Family Picnic, Holiday Party, and other outings Internal Culture Club --- Wolfe is an Equal Opportunity Employer. Wolfe does not sponsor employment visas.

Basic Qualifications Requires a Bachelor's degree in Engineering, or a related Science, Technology or Mathematics field. Also requires 2+ years of job-related experience, or a Master's degree and 6 months of job-related experience. CLEARANCE REQUIREMENTS: Ability to obtain a Department of Defense TS/SCI security clearance is required at time of hire. Applicants selected will be subject to a U.S. Government security investigation and must meet eligibility requirements for access to classified information. Due to the nature of work performed within our facilities, U.S. citizenship is required. Responsibilities for this Position Knowledge, Skills and Abilities: Supports the development of RMF body of evidence for security requirements, including security plans, security testing plans, Security Control Traceability Matrices, and System Impact Analyses. Performs routine security verification tasks using manual and automated methods (Cyber Test Procedures and vulnerability scans). Supports the execution of Assessment and Authorization events. Collaborates with Development and Test teams to plan, implement, and support the verification of security requirements. Actively participates in an Agile team to organize, prioritize, and status work efforts. Champions security perspective for decisions related to implementing and verifying security controls in high-security, cloud-native DevSecOps environments. Self-directed and self-starting ability. Strong written and verbal communication skills. Excellent ability to communicate issues, impacts, and corrective actions. Strong security mindset and comfortable questioning system behavior inconsistent with key security principles. Familiar with NIST SP 800-53 & Risk Management Framework (RMF). Experience with FedRAMP is a plus. Familiar with Linux and Windows operating systems and their security features. Experience with Secure Technical Implementation Guides (STIGs). Understanding of the RMF Assessment and Authorization process. Experience with automation, virtualization, containerized application deployment and orchestration, and cloud-native solutions Strong use and understanding of systems engineering concepts, principles, and theories. Contributes to the achievement of business objectives. Recognizes and incorporates various security designs and lessons learned. Able to sell concepts and ideas effectively. Able to work directly with customers. Proficient in reporting relevant cyber systems engineering design. Regular contact with senior levels of security workgroups. Ability to lead security workgroups. Works under limited direction. Frequent contact with project leaders, other professionals within the Engineering department, project teams, and external customers' security professionals. Creative thinker and good multi-tasker. Strong understanding of Microsoft Office applications. Must be able to obtain a TS/SCI Clearance within six months after hire #LI-Hybrid Salary Note This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled. Combined Salary Range USD $93,014.00 - USD $103,187.00 /Yr. Company Overview General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team! Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

**Looking for an opportunity to make an impact?** **At Leidos,** we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. **Your greatest work is ahead!** We are looking for a **Substation Physical Engineer** to join our team. As an Career Substation Physical Engineer, candidates will have the opportunity to work on projects for electric utilities at voltages from 12kV up to 500kV. This is an exciting and growing field in the power systems industry and allows candidates to get exposure to how the power generation such as that of renewable energy ties into the electric system. Candidates will be expected to use knowledge of digital logic design, AC and DC circuits to design substation electrical projects. ***Hybrid Schedule Available:** **(2-3 days a week in the Pittsburgh, PA office)** Successful candidates can look forward to a fast paced, diverse work environment and flexible work hours/work arrangements as well as managers who will encourage **career development and growth including:** + Engineer in Training Certificate (EIT). + Professional Engineer License (PE). + Project Management Professional (PMP). + Technical & Non-Technical Training Opportunities. + Leadership Opportunities. + Mentorship & Training Opportunities. + Opportunity to Lead, Grow, and Inspire a Dynamic Team **Are you ready to make an impact? Begin your journey of a flourishing and meaningful career, share your resume with us today!** **The Challenge:** + Experience in executing substation physical projects + Excellent communication skills and ability to interact with the internal team and clients to meet project needs. + Performing quality control checks on substation physical design projects. + Expected to read and design substation physical drawings such as one-line drawings, three-line drawings, plan-section drawings, foundation, grounding drawings. + Create and check bill of materials for substation physical + Expected to attend site visit at customer location Successful candidates must comply with quality control and safe work practices and maintain compliance with project scope, schedule, and budget. This position will be a member of a design team comprised of engineers, designers, and CAD technicians and will work with client standards to implement design. **What Sets You Apart:** + Bachelor's degree in electrical engineering, or related degree with two (2+) or more years of related substation physical design experience. + Experience with grounding studies/lightning protection and lighting studies. + Demonstrate Excellent communication skills and ability to interact with the internal team and clients to meet project needs. + Ability to meet deadlines under pressure situations. + Collaborator and leader who can work effectively in team environment. + Self-starter who works independently with minimal direction. + Strong analytical skills and proven problem solver in both team and independent environments. + High level of computer competency. + Willingness to travel to project / client sites and Portland, OR office as needed. **You Might Also have:** + Engineer Intern ("EI" or "EIT") professional certification. + Professional Engineer ("PE") License. + Working knowledge of protection and control design + Experience with bus calculation + Experience with WinIGS or CDEGS + Master's degree in related field. **WHAT WE DO** Leidos is a trusted and technology-focused solutions provider. Utilities and mobile operators rely on our Power Delivery Services Team for reliable power and telecommunication expertise, as reflected through our work with more than 50 investor-owned utilities, more than 160municipals/cooperatives,as well as a growing number of mobile operators, local utility providers and private developers. In addition to providing engineering and project management services, Leidos works with an established group of industry-leading construction partners delivering meaningful Energy Delivery Solutions. Our recognition as an industry leader is confirmed by the latest national rankings by Engineering News-Record (ENR) ranking Leidos within the Top 10 T&D Firms, and Top 10 Power Firms. To explore and learn more, click here (***************************************************** ! **At Leidos,** we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. **We take care of our employees.** Leidos seeks the best and the brightest, and in return, we invest in you, with an eye on your future, through career advancement, growth opportunities and continuous improvement via mentoring, formal and informal project management training and assistance with obtaining pertinent certifications. We challenge you to help solve some of the world's toughest problems, and reward you (************************************ with a welcoming culture that recognizes the importance of a strong work/life balance, as well as competitive compensation and benefits (******************************************** . We believe that diversity and inclusion make us all better and offer the chance to have fun and make a difference. PowerDelivery PDSSUBSTATION If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares. **Original Posting:** September 4, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. **Pay Range:** Pay Range $69,550.00 - $125,725.00 The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. **About Leidos** Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit ************** . **Pay and Benefits** Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at **************/careers/pay-benefits . **Securing Your Data** Beware of fake employment opportunities using Leidos' name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system - never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at ***************************** . If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission (******************************* . **Commitment to Non-Discrimination** All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws. REQNUMBER: R-00165953 All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

Are you a cybersecurity and/or AI researcher who enjoys a challenge? Are you excited about pioneering new research areas that will impact academia, industry, and national security? If so, we want you for our team, where you'll collaborate to deliver high-quality results in the emerging area of AI security. The CERT Division of the Software Engineering Institute (SEI) is seeking applicants for the AI Security Researcher role. Originally created in response to one of the first computer viruses -- the Morris worm - in 1988, CERT has remained a leader in cybersecurity research, improving the robustness of software systems, and in responding to sophisticated cybersecurity threats. Ensuring the robustness and security of AI systems is the next big challenge on the horizon, and we are seeking life-long learners in the fields of cybersecurity, AI/ML, or related areas, who are willing to cross-train to address AI Security. As part of the Threat Analysis Directorate, you will join a group of security experts focused on advancing the state of the art in AI security at a national and global scale. Our tasks include vulnerability discovery and assessments for AI systems, evaluation of the effectiveness and robustness of defenses and mitigations for AI systems, reverse engineering AI systems and models, and identifying new areas where security research is needed. We participate in communities of network defenders, software developers and vendors, security researchers, AI practitioners, and policymakers. You'll get a chance to work with elite AI and cybersecurity professionals, university faculty, and government representatives to build new methodologies and technologies that will influence national AI security strategy for decades to come. You will co-author research proposals, execute studies, and present findings and recommendations to our DoD sponsors, decision makers within government and industry, and at academic conferences. The SEI is a non-profit, federally funded research and development center (FFRDC) at Carnegie Mellon University. What you'll do: Develop state of the art approaches for analyzing robustness of AI systems. Apply these approaches to understanding vulnerabilities in AI systems and how attackers adapt their tradecraft to exploit those vulnerabilities. Reverse engineer malicious code in support of high-impact customers, design and develop new analysis methods and tools, work to identify and address emerging and complex threats to AI systems and effectively participate in the broader security community. Study and influence the AI security and vulnerability disclosure ecosystems. Evaluate the effectiveness of tools, techniques and processes developed by industry and the AI security research community. Uncover and shape some of the fundamental assumptions underlying current best practice in AI security. Develop thought models, tools and data sets that can be used to characterize the threats to, and vulnerabilities in, AI systems, and publish those results. You will also use these results to aid in the testing, evaluation and transition of technologies developed by government-funded research programs. Identify opportunities to apply AI to improve existing cybersecurity research. Who you are: You have BS in machine learning, cybersecurity, statistics, or related discipline with ten (10) years of experience; OR MS in the same fields with eight (8) years of experience; OR PhD in the same fields with five (5) years of experience. You have a deep interest in AI/ML and cybersecurity with a penchant for intellectual curiosity and a desire to make an impact beyond your organization. You have practical experience with applying cybersecurity knowledge toward vulnerability research, analysis, disclosure, or mitigation. You have experience with advising on a range of security topics based on research and expert opinion. You have familiarity with implementing and applying AI/ML techniques to solving practical problems. You have familiarity with common AI/ML software packages and tools (e.g., Numpy, Pytorch, Tensorflow, ART). You have knowledge or familiarity with reverse engineering tools (e.g. NSA Ghidra, IDA Pro) You have experience with Python, C/C++, or low-level programming. You have experience developing frameworks, methodologies, or assessments to evaluate effectiveness and robustness of technologies. You have excellent communication skills (oral and written), particularly regarding technical communications with non-experts. You enjoy mentoring and cross-training others and sharing knowledge within the broader community. Candidates with strong technical proficiency in either AI/ML or cybersecurity are welcome to apply, provided a demonstrated intellectual agility and commitment required for accelerated learning within the role. You are able to: Travel to various locations to support the SEI's overall mission. This includes within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion (5%). You will be subject to a background check and will need to obtain and maintain a Department of Defense security clearance. Why work here? Join a world-class organization that continues to have a significant impact on software. Work with cutting-edge technologies and dedicated experts to solve tough problems for the government and the nation. Be surrounded by friendly and knowledgeable staff with broad expertise across AI/ML, cybersecurity, software engineering, risk management, and policy creation. Get 8% monthly contribution for your retirement, without having to contribute yourself. Get tuition benefits to CMU and other institutions for you and your dependent children. Enjoy a healthy work/life balance with flexible work arrangements and paid parental and military leave. Enjoy annual professional development opportunities; attend conferences and training or obtain a certification and get reimbursed for membership in professional societies. Qualify for relocation assistance and so much more. Joining the CMU team opens the door to an array of exceptional benefits. Benefits eligible employees enjoy a wide array of benefits including comprehensive medical, prescription, dental, and vision insurance as well as a generous retirement savings program with employer contributions. Unlock your potential with tuition benefits, take well-deserved breaks with ample paid time off and observed holidays, and rest easy with life and accidental death and disability insurance. Additional perks include a free Pittsburgh Regional Transit bus pass, access to our Family Concierge Team to help navigate childcare needs, fitness center access, and much more! For a comprehensive overview of the benefits available, explore our Benefits page. At Carnegie Mellon, we value the whole package when extending offers of employment. Beyond credentials, we evaluate the role and responsibilities, your valuable work experience, and the knowledge gained through education and training. We appreciate your unique skills and the perspective you bring. Your journey with us is about more than just a job; it's about finding the perfect fit for your professional growth and personal aspirations. Are you interested in an exciting opportunity with an exceptional organization?! Apply today! Location Pittsburgh, PA Job Function Software/Applications Development/Engineering Position Type Staff - Regular Full Time/Part time Full time Pay Basis Salary More Information: Please visit “Why Carnegie Mellon” to learn more about becoming part of an institution inspiring innovations that change the world. Click here to view a listing of employee benefits Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran. Statement of Assurance

Are you a cybersecurity and/or AI researcher who enjoys a challenge? Are you excited about pioneering new research areas that will impact academia, industry, and national security? If so, we want you for our team, where you'll collaborate to deliver high-quality results in the emerging area of AI security. The CERT Division of the Software Engineering Institute (SEI) is seeking applicants for the AI Security Researcher role. Originally created in response to one of the first computer viruses -- the Morris worm - in 1988, CERT has remained a leader in cybersecurity research, improving the robustness of software systems, and in responding to sophisticated cybersecurity threats. Ensuring the robustness and security of AI systems is the next big challenge on the horizon, and we are seeking life-long learners in the fields of cybersecurity, AI/ML, or related areas, who are willing to cross-train to address AI Security. As part of the Threat Analysis Directorate, you will join a group of security experts focused on advancing the state of the art in AI security at a national and global scale. Our tasks include vulnerability discovery and assessments for AI systems, evaluation of the effectiveness and robustness of defenses and mitigations for AI systems, reverse engineering AI systems and models, and identifying new areas where security research is needed. We participate in communities of network defenders, software developers and vendors, security researchers, AI practitioners, and policymakers. You'll get a chance to work with elite AI and cybersecurity professionals, university faculty, and government representatives to build new methodologies and technologies that will influence national AI security strategy for decades to come. You will co-author research proposals, execute studies, and present findings and recommendations to our DoD sponsors, decision makers within government and industry, and at academic conferences. The SEI is a non-profit, federally funded research and development center (FFRDC) at Carnegie Mellon University. What you'll do: * Develop state of the art approaches for analyzing robustness of AI systems. * Apply these approaches to understanding vulnerabilities in AI systems and how attackers adapt their tradecraft to exploit those vulnerabilities. * Reverse engineer malicious code in support of high-impact customers, design and develop new analysis methods and tools, work to identify and address emerging and complex threats to AI systems and effectively participate in the broader security community. * Study and influence the AI security and vulnerability disclosure ecosystems. * Evaluate the effectiveness of tools, techniques and processes developed by industry and the AI security research community. * Uncover and shape some of the fundamental assumptions underlying current best practice in AI security. * Develop thought models, tools and data sets that can be used to characterize the threats to, and vulnerabilities in, AI systems, and publish those results. You will also use these results to aid in the testing, evaluation and transition of technologies developed by government-funded research programs. * Identify opportunities to apply AI to improve existing cybersecurity research. Who you are: * You have BS in machine learning, cybersecurity, statistics, or related discipline with ten (10) years of experience; OR MS in the same fields with eight (8) years of experience; OR PhD in the same fields with five (5) years of experience. * You have a deep interest in AI/ML and cybersecurity with a penchant for intellectual curiosity and a desire to make an impact beyond your organization. * You have practical experience with applying cybersecurity knowledge toward vulnerability research, analysis, disclosure, or mitigation. * You have experience with advising on a range of security topics based on research and expert opinion. * You have familiarity with implementing and applying AI/ML techniques to solving practical problems. * You have familiarity with common AI/ML software packages and tools (e.g., Numpy, Pytorch, Tensorflow, ART). * You have knowledge or familiarity with reverse engineering tools (e.g. NSA Ghidra, IDA Pro) * You have experience with Python, C/C++, or low-level programming. * You have experience developing frameworks, methodologies, or assessments to evaluate effectiveness and robustness of technologies. * You have excellent communication skills (oral and written), particularly regarding technical communications with non-experts. * You enjoy mentoring and cross-training others and sharing knowledge within the broader community. * Candidates with strong technical proficiency in either AI/ML or cybersecurity are welcome to apply, provided a demonstrated intellectual agility and commitment required for accelerated learning within the role. You are able to: * Travel to various locations to support the SEI's overall mission. This includes within the SEI and CMU community, sponsor sites, conferences, and offsite meetings on occasion (5%). * You will be subject to a background check and will need to obtain and maintain a Department of Defense security clearance. Why work here? * Join a world-class organization that continues to have a significant impact on software. * Work with cutting-edge technologies and dedicated experts to solve tough problems for the government and the nation. * Be surrounded by friendly and knowledgeable staff with broad expertise across AI/ML, cybersecurity, software engineering, risk management, and policy creation. * Get 8% monthly contribution for your retirement, without having to contribute yourself. * Get tuition benefits to CMU and other institutions for you and your dependent children. * Enjoy a healthy work/life balance with flexible work arrangements and paid parental and military leave. * Enjoy annual professional development opportunities; attend conferences and training or obtain a certification and get reimbursed for membership in professional societies. * Qualify for relocation assistance and so much more. Location Pittsburgh, PA Job Function Software/Applications Development/Engineering Position Type Staff - Regular Full time/Part time Full time Pay Basis Salary More Information: * Please visit "Why Carnegie Mellon" to learn more about becoming part of an institution inspiring innovations that change the world. * Click here to view a listing of employee benefits * Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran. * Statement of Assurance

We are seeking an experienced AI Security Engineer to lead the development of next -generation cybersecurity solutions for advanced AI systems. This individual will be responsible for researching, designing, and implementing cutting -edge security controls to protect AI models, data pipelines, and infrastructure from adversarial attacks, privacy vulnerabilities, and regulatory risks. The ideal candidate has a strong background in AI and understanding of cybersecurity principles, has been published in leading academic conferences (NeurIPS, ICLR, Black Hat, DEFCON, etc.), and has experience working at a frontier AI lab. Requirements Experience: 5+ years in AI/ML with a strong focus on cybersecurity. Education: Bachelor's or Master's in Computer Science, Cybersecurity, AI/ML, or a related field. PhD preferred. Technical Expertise: Strong understanding of AI security challenges, including adversarial ML, LLM backdoor, (in)direct prompt injections, model poisoning, and data leakage. Proficiency in cybersecurity frameworks (NIST, MITRE ATLAS, OWASP AI Top 10) and security tools. Hands -on experience with AI frameworks (TensorFlow, PyTorch, OpenAI API, Hugging Face) and securing AI pipelines. Expertise in cryptography, secure data handling, and privacy -preserving AI techniques (federated learning, differential privacy). Proficiency in Python and security -related programming (e.g., secure coding, AI model evaluation). Familiarity with AI agents, autonomous agents, large language models (LLMs), and multi -modal AI systems. Preferred: Experience in compliance, regulatory, or risk frameworks for AI (e.g., OWASP, MITRE, GDPR, HIPAA, GLBA, NIST AI RMF). An interest in robotics would be preferred as well. Publication & Research: Proven track record of research contributions in top AI/ML and cybersecurity conferences. Industry Experience: Prior work at a leading AI research lab, security -focused AI startup, or a major tech company's AI division. Benefits Competitive salary and equity options. 100% paid medical insurance coverage. Research and publication opportunities. Opportunity to work on cutting -edge AI security challenges that expand beyond software systems. Flexible work environment with remote and in -office options. Access to industry -leading AI security research and resources. A dynamic, mission -driven team shaping the future of AI security.

Are you ready to elevate security practices to new heights? Our organization is on the lookout for a dynamic Application Security Engineer who will revolutionize our application security strategies. Located in the vibrant city of Pittsburgh, PA, this on\-site role is the perfect opportunity to collaborate with key stakeholders in Technology, Product, and Strategic Business Units to tackle the most pressing security challenges head\-on. As a Application Security Engineer, you will spearhead the secure software development lifecycle, embedding cutting\-edge security practices at every step of our DevOps pipelines and application security processes. Your expertise in maturity models like DSOMM (DevSecOps Maturity Model), CI\/CD pipelines, and vulnerability management tools will be crucial in transforming our security landscape. Join forces with our engineering, DevOps, Product, and Technology teams to implement automated security controls, threat modeling, and risk mitigation strategies that will shape the future of our software development lifecycle. This role requires minimal travel and the ability to work in a fast\-paced, dynamic environment. The position may involve working outside normal business hours to address urgent compliance or security incidents. Key Responsibilities DevSecOps & Maturity Measurement Implementation: Assess, report, and assist with improving application security and DevSecOps Maturity, utilizing a measurement framework such as DSOMM or BSIMM, across the organization. Define and implement security policies, standards, and best practices for DevOps, CI\/CD pipelines, and cloud security. Work with development and DevOps teams to integrate automated security testing (SAST, DAST, SCA, IaC security scanning, etc.) into pipelines. Establish security gates in CI\/CD workflows to prevent deployment of vulnerable code. Application Security & Code Vulnerabilities: Perform code reviews, static\/dynamic security testing (SAST\/DAST), and secure coding guidance to developers. Identify and remediate vulnerabilities in application code, libraries, containers, and infrastructure as code (IaC). Develop and enforce secure coding standards in alignment with OWASP, NIST, and other frameworks. Conduct threat modeling and security architecture reviews for applications and services. For example, assist application teams with developing accurate data flow diagrams and developing appropriate identity management solutions. Manage and mature Bot Management services for all applications. Assist with WAF management and maturity. Improve secrets management and API security. Vulnerability Management & Risk Reduction: Manage and mature enterprise\-wide Bug Bounty program (e.g. BugCrowd, HackerOne) Manage vulnerability scanning tools (e.g., Tenable, Qualys, Sonar, Snyk) and prioritize remediation efforts. Track, assess, and coordinate the remediation of vulnerabilities across the application, infrastructure, and cloud environments. Develop risk\-based vulnerability management workflows and collaborate with engineering teams to drive fixes. Monitor security dashboards and metrics, ensuring vulnerabilities are patched in alignment with SLAs. Security CI\/CD Automation & Tooling: Implement security automation using APIs, scripts, and cloud\-native security controls. Work with DevOps engineers to integrate security tooling (like SemGrep, Snyk, Cycode) or within Jenkins, GitHub, GitLab CI\/CD, or AWS DevOps. Automate security findings triage, reporting, and prioritization processes. Security Awareness & Collaboration: Train and mentor developers on secure coding, threat modeling, DevSecOps, and vulnerability management best practices. Collaborate with security operations, incident response, and compliance teams on security initiatives. Participate in security assessments, penetration testing, and security incident investigations. Requirements Qualifications & Experience Bachelor's Degree in Information Security, Cybersecurity, Computer Science, or a related field OR a minimum of 6 years' equivalent experience in lieu of a degree 4+ years of experience in application security, DevSecOps, and security engineering OR a combination of 2+ years experience as a developer and 2+ years in application security, DevSecOps, and security engineering Hands\-on experience with DevSecOps tools (SAST, DAST, SCA, container security, IaC security), integrating security solutions within CI\/CD pipelines, strong knowledge of secure coding principles (OWASP Top 10, SANS CWE Top 25), and familiarity with AI ML or LLM usage within security tooling. Experience with vulnerability management, web app penetration testing tooling, and security certifications like CISSP, OSCP, GCPN, GCSA, AWS Security Specialty, or CSSLP are preferred. Proficiency in Bot Management tooling, client\-side monitoring tooling, and implementing maturity measurement frameworks such as DSOMM or BSIMM in an enterprise setting. Ability to understand and communicate best\-practice system architectures, data flows, and security controls within modern web applications and cloud (SaaS\/PaaS, IaaS). Excellent verbal and written communication skills, with the ability to communicate complex security concepts to technical and non\-technical stakeholders. "}}],"is Mobile":false,"iframe":"true","job Type":"Full time","apply Name":"Apply Now","zsoid":"641871163","FontFamily":"PuviRegular","job OtherDetails":[{"field Label":"Industry","uitype":2,"value":"Engineering"},{"field Label":"Work Experience","uitype":2,"value":"5+ years"},{"field Label":"City","uitype":1,"value":"Pittsburgh"},{"field Label":"State\/Province","uitype":1,"value":"Pennsylvania"},{"field Label":"Zip\/Postal Code","uitype":1,"value":"15205"}],"header Name":"Application Security Engineer","widget Id":"**********00072311","is JobBoard":"false","user Id":"**********00133003","attach Arr":[],"custom Template":"5","is CandidateLoginEnabled":true,"job Id":"**********06714003","FontSize":"15","google IndexUrl":"https:\/\/hdjassociates.zohorecruit.com\/recruit\/ViewJob.na?digest=UnBknG4YeUTpH3g.ao7JoWAjgPO2l6C2tdKjPQTIaoc\-&embedsource=Google","location":"Pittsburgh","embedsource":"CareerSite","indeed CallBackUrl":"https:\/\/recruit.zoho.com\/recruit\/JBApplyAuth.do"}

Enterprise Security Architect Duration: Full Time Interview mode: Inperson Brand new role Serve as a member of the enterprise architecture team, providing technical security insight that aligns with business objectives and security requirements. Establish and evangelize the security architecture (principles, policies, standards and patterns) to development groups, business groups and other stakeholders; Govern adherence to the architecture golden rules. Analyze gaps between current and target security architecture and develops plans to close the gaps. Responsibilities: Works with IT departments, information security architects, technical architects, data custodians, and governance groups to develop and update Client security policies, standards, procedures, and solutions for secure application architecture. Ensures that security practices are aligned with Client's overall business strategies. Advises and drives the security maturity of the development lifecycle including secure coding and system security for operations. Recommends and implements changes in security procedures and practices using best-in-class information to ensure that Client is maintaining best-in-class security practices. Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs. Conducts Penetration Test, Vulnerability, and Risk assessments to improve the security architecture and security product toolset. Prepares system security reports by collecting, analyzing, and summarizing data and trends. Executes validation by external vendors. Verifies security systems and network configurations by developing and implementing test scripts while monitoring adherence to standards in architecture, application design, development, and testing frameworks. Qualifications Qualifications: Bachelor degree with Master preferred. Security certification required. 7 to 10 years of experience operating in a cloud environment (e.g. Azure, AWS, Rackspace) along with at least 5 years working in a dedicated information security role with a focus on Security Architecture for at least 3 years. 7 to 10 years of experience with PaaS, IaaS, SaaS, and/or mobile architecture Solid experience with security hacking tools and techniques. Solid understanding in application architectures and technology including web applications, mobile technology, identity and access management, security event and incident management as well as web security controls (e.g. Web Application Firewall, Database Activity Monitor, Distributed Denial of Service controls, etc.) Extensive working knowledge of web application security best practices to include, but not limited to, Cloud Security Alliance controls matrix, OWASP Top 10. Experience with compliance standards such as HIPAA, CMS, SOX, GLBA; as well as security frameworks such as SANS 20 CSC, CoBIT, or NIST. Previous involvement with developing and/or maintaining an Enterprise Security Architecture. Familiarity with TOGAF is a plus Strong understanding and experience of software development methodologies and life cycles Excellent written and verbal communications skills required, with the ability to explain advanced concepts to audiences of varying levels Can be counted on to exceed goals successfully, very bottom-line orientated while steadfastly pushes self and others for results. Has working knowledge of web application security best practices to include, but not limited to, Cloud Security Alliance controls matrix, OWASP Top 10. Demonstrated ability to make sound decisions using a mixture of analysis, wisdom, experience, and judgement coupled with a strong ability to learn on the fly (quickly learns new tasks, open to change). Certifications, licenses or registrations: Security+, CISSP, CISA, CEH Proven ability to organize/manage multiple priorities coupled with the flexibility to quickly adapt to ever-changing business needs. Additional Information All your information will be kept confidential according to EEO guidelines.

We Are Accenture Cybersecurity helps organizations prepare, protect, detect, respond, and recover along with all points of the security lifecycle. Cybersecurity challenges are different for every business in every industry. Leveraging our global resources and advanced technologies, we create integrated, turnkey solutions tailored to our client's needs across their entire value chain. Whether we're defending against known cyberattacks, detecting and responding to the unknown, or running an entire security operations center, we will help companies build cyber resilience to grow with confidence. Our team of the security sector's brightest people uses the coolest tech to out-hack the hackers and help clients build resilience from within. We blend risk strategy, digital identity, cyber defense, application security, and managed service solutions to rethink the entire security lifecycle. Do you have the deep functional and technical experience to help implement security solutions that align with our clients' business objectives? Do you have the expertise to design and deliver solutions for establishing system user's credentials, and processes for applying those credentials to access enterprise systems and applications?If so, read on and apply. Accenture's more than 2,000 security professionals deliver holistic and proactive security solutions in 47 countries, and we'd love to discuss our open Identity and Access Management (I&AM) Security role with you You Are A cyber security savant. You've got the skills and experience to keep data safe from black hat hackers or other threats, whether by coding a threat intrusion module or sharing your latest ideas with the team. Day-to-day, you're all about solving security problems for clients and using your people skills to make sure everyone on your team is working well and happily. You are passionate about security, love what you do and have a genuine desire to outsmart the bad guys. You have the experience to analyze a clients' security posture, anticipate security requirements and help find right-sized solutions based on industry leading practices. You have a proven track record working successfully in a fast-paced, team-oriented environment. You're a creative, analytical problem solver with above average documentation skills who can speak to both technical and non-technical audiences. You are eager to put your skills to use by helping us help our clients inject security at every level of their organization. The Work Working directly with clients and Accenture teams in a multi-disciplined team structure, you will design and implement I&AM solutions using ForgeRock and Ping Identity products. You will develop deep working relationships with Senior Executives and Senior Managers across the client account team and client, understanding the business direction of companies and creating optimized I&AM architectures to meet their business needs. As a Ping Identity/ForgeRock Consultant, you will: + Design, configure, and implement Ping Advanced Identity platform components including Ping AM, Ping IDM, Ping DS, and Ping Identity Gateway, and Ping Advanced Identity Cloud and Remote Connector Server + Lead and manage multiple workstreams + Design and code custom decision nodes using JavaScript and/or Java + Implement custom object models based on client requirements + Configure user stores with custom attributes and policies + Develop implementation and migration plans focusing on service continuity + Implement and configure Single Sign-On (SSO) solutions across diverse application portfolios + Understand and advise clients on secure communication techniques; requires an understanding of SSH, TLS + Work with application owners to integrate applications onto the SSO platform using factory models and bespoke integration techniques + Work with directory services and identity provisioning platforms + Collaborate with cross-functional teams to integrate IAM solutions with existing enterprise systems + Provide technical leadership and guidance on IAM best practices and industry standards + Create comprehensive technical documentation and knowledge transfer materials + Troubleshoot complex IAM issues and provide production support + Work with clients and Accenture colleagues to understand requirements and estimate work efforts + Develop and maintain an implementation work plan using Agile and waterfall methodologies Travel may be required for this role. The amount of travel will vary from 0 to 100% depending on business need and client requirements. Here's What You Need + Bachelor's degree or equivalent (minimum 12 years) work experience. (If Associate's Degree, must have minimum 6 years work experience) + Minimum of 3 years of experience with Ping Identity (formerly ForgeRock) and specific platforms, Ping AM (Access Management), Ping IDM (Identity Management), Ping DS (Directory Services), Ping Identity Gateway (Identity Gateway) and Ping Advanced Identity Cloud + Minimum of 3 years of experience with IAM Functional Skills Access Management, Identity Governance, Directory Services, Identity Provisioning, Identity Management and Identity Management as a Service. + Minimum of 3 years of experience with identity standards and protocols (SAML, OAuth 2.0, OpenID Connect, LDAP, SCIM) + Minimum of 3 years of experience with scripting and programming skills (Java, JavaScript, Groovy, Python, Shell scripting) Bonus points if you have: + Experience with other IAM platforms (Ping Identity suite: PingFederate, PingAccess, PingDirectory, PingID, PingOne) + Strong functional understanding of CIAM or Workforce Access Management + Industry-adopted security certifications (e.g., CISSP, CISM) or IAM vendor certifications + Understanding of DevOps and CI/CD practices for IAM deployments + Experience with API development and integration + Knowledge of containerization and orchestration technologies (Docker, Kubernetes) + Mobile development knowledge with experience in iOS and Android platforms + Front development experience + Demonstrate success building and scaling SaaS products with a focus on customer experience and operational efficiency. + Strong understanding of cloud-based systems and integrations (e.g., APIs, microservices architecture). Compensation at Accenture varies depending on a wide array of factors, which may include but are not limited to the specific office location, role, skill set, and level of experience. As required by local law, Accenture provides a reasonable range of compensation for roles that may be hired as set forth below.We accept applications on an on-going basis and there is no fixed deadline to apply. Information on benefits is here. (************************************************************ Role Location Annual Salary Range California $63,800 to $205,800 Cleveland $59,100 to $164,600 Colorado $63,800 to $177,800 District of Columbia $68,000 to $189,300 Illinois $59,100 to $177,800 Maryland $63,800 to $177,800 Massachusetts $63,800 to $189,300 Minnesota $63,800 to $177,800 New York/New Jersey $59,100 to $205,800 Washington $68,000 to $189,300 Requesting an Accommodation Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you would like to be considered for employment opportunities with Accenture and have accommodation needs such as for a disability or religious observance, please call us toll free at **************** or send us an email or speak with your recruiter. Equal Employment Opportunity Statement We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities. For details, view a copy of the Accenture Equal Opportunity Statement (******************************************************************************************************************************************** Accenture is an EEO and Affirmative Action Employer of Veterans/Individuals with Disabilities. Accenture is committed to providing veteran employment opportunities to our service men and women. Other Employment Statements Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States. Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Further, at Accenture a criminal conviction history is not an absolute bar to employment. The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information. California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information. Please read Accenture's Recruiting and Hiring Statement for more information on how we process your data during the Recruiting and Hiring process.

* Familiarity with security architecture frameworks such as SABSA and TOGAF. * Familiarity with Threat modelling methodologies such as STRIDE. * Familiarity with security frameworks such as NIST800, CIS, ISO27001. * Familiarity with independent assurance frameworks such as SOC2. * Industry recognized technical certifications are desirable (CISSP, CCSP, CompTIA Security+, GIAC security essentials). * Familiarity with security and privacy regulations impacting financial services such as SOX and GDPR. * Prior experience with risk assessments and general understanding of risk management principles. * Excellent written and verbal communications skills. MAJOR DUTIES: * Conduct formal end to end Information Security Assessments (review of questionnaires, third party security audit reports and evidence, onsite assessments, etc.) * Perform security reviews for technical products, identify gaps in security and assist in providing guidance on mitigating controls. * Perform risk analysis on third party capabilities (i.e., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change). * Use third-party risk evaluation tools to monitor and reduce organizational cyber risk associated with third parties. * Assess remediation plans and non-compliance acceptances where Information Security standards compliance cannot be achieved. Review services and data in scope of the assessment and analyze security risk ratings. * Work on projects as directed by management. HOURS/LOCATION: * 8:30 a.m. - 5:00 p.m. (Overtime as required) * Hybrid schedule (in-office / remote) * Warrendale, PA - 15086 * Work at downtown location when required EXPLANATORY COMMENTS: * Good communication and interpersonal skills * Good decision making and problem-solving skills * Good analytical skills with attention to detail and accuracy * Ability to work on multiple projects simultaneously * Ability to work effectively both individually and as a member of a project team

Artech Information Systems is the #1 Largest Women-Owned IT Staffing Company in the U.S. and an employer of choice for over 7,200 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications. Job Title: Security Analyst Location: Pittsburgh, PA/ Lake Mary, FL / Nashville, TN Duration: 12 months contract with possible extension/ conversion FTE Job Description: Client is looking for a talented and self-motivated individual with strong technical skills and the ability to rapidly learn new technologies. We are looking for an exceptional candidate that shares our passion for delivering solutions to complex security problems, while maximizing productivity and minimizing employee friction. The candidate will contribute to IAMO Transformation program by aiding in the configuration and implementation of the new SailPoint LCM product. The candidate will perform business critical analysis to help with the implementation of application access requests and workflows across IAM. This role will support access provisioning, remediation for audit findings, workflow creation and modifications, and ensuring revocations and certifications are completed within the guidelines established by Corporate Policy. This position is critical to ensure Service Level Objectives and Internal project deadlines are met. The candidate will require increased technical and analytical skillsets and provide Sailpoint Product Support with a focus on: • Experience with designing, developing, testing, implementing, and integrating IGA solutions involving SailPoint Identity Now (IIQ). • Experience in SailPoint Identity IQ implementation and configuration for application on-boarding for access request and approval and access certifications o Configuration of simple and advanced LCM workflows within SailPoint o Creating and managing workgroups in SailPoint o Configuration and management of most common direct connectors (i.e. Active Directory, LDAP, Mainframe, etc.) o Creation of preventative and detective Segregation of Duty rules o Experience with role-based access controls and configuring automate provisioning and deprovisioning. • Train and mentor other team members on the use of the SailPoint Identity Now platform. • Experience with identity lifecycle flows including leaver, joiner, and mover. • Experience with consultative and complex technical deployment projects, managing various stakeholder relationships. • Strong knowledge and experience with incident/problem management processes. • Possess critical thinking skills. • Strong functional knowledge of MS Office Suite software products, Jira, and Confluence. • Strong communications skills, oral and written. • Ability to collaborate and interact productively with team members and key stakeholders. • Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner. • Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization. • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business. • Ensures integration end state protects information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss. • Design and code rules, applications, workflows, custom tasks, custom connectors, UI pages and custom reports in SailPoint Identity Now. • Develop working relationship with IT engineering resources to drive solution features adoption. • Develop control adoption templates for IT resources to understand and implement connections required for the SailPoint Identity Now service. • Review SailPoint IGA to ensure the solution is optimized for the highest level of service and establish an ongoing practice to perform periodic reviews. • Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions. • Design and maintain flowchart diagrams, process workflows and standard documentation required to sustain the SailPoint platform. • Promote security policies, standards, and best practices across the organization. • Supports and resolves system incidents, problems, and changes. Qualifications 5 years of Sailpoint experience -Will consider experience over degree -Locations: Pittsburgh, Lake Mary or Nashville -2000+ applications to be migrated into sailpoint -Configure workflows -Create/manage work groups -Create duty rules -Invisio, Confluence, Jira, Excel Additional Information All your information will be kept confidential according to EEO guidelines.

Techstra Solutions is seeking an experienced and dedicated Senior Cloud Security Engineer to join our team. This role is crucial for ensuring the security and compliance of our cloud infrastructure in a highly regulated financial environment. The ideal candidate will have a strong background in cloud security, a deep understanding of regulatory requirements, and the ability to design, implement, and maintain secure cloud solutions. Primary Success Factors · Design, develop, and deploy scalable cloud-based security solutions to protect sensitive financial data and ensure compliance with industry regulations. · Perform comprehensive vulnerability testing, risk analyses, and security assessments to identify and mitigate potential threats. · Develop and coordinate robust cloud security procedures · Monitor for and respond to security incidents in the cloud environment, utilizing advanced security tools and techniques. · Collaborate with IT and development teams to ensure cloud solutions are securely integrated with existing software and infrastructure, following best practices and security standards. · Keep abreast of the latest security issues, regulatory changes, and industry trends to proactively address emerging threats. · Assist with the design of security training and awareness programs to educate staff about cloud security risks and responsibilities, fostering a culture of security within the organization. · Regularly report on the status of cloud security, including any breaches or vulnerabilities, to senior management and stakeholders. · Work with third-party vendors to ensure that security requirements are met and maintain strong relationships with external security partners. · Maintain compliance with all relevant security and privacy laws and regulations, including PCI-DSS, GDPR, SOX, and other industry-specific standards Required Experience · Bachelor's or Master's degree in Computer Science, Information Security, or a related field. Specific experience will be considered in lieu of a degree. · Minimum of 7 years of experience · Relevant certifications in Cyber Security, with Cloud specific certifications a plus. · Proven experience in cloud security engineering, preferably in a financial institution, with a track record of successfully implementing secure cloud solutions. · Strong knowledge of cloud platforms and cloud security best practices, including identity and access management, encryption, and network security. · Experience with regulatory compliance frameworks such as PCI-DSS, GDPR, and SOX, and the ability to navigate complex regulatory environments. · Excellent problem-solving skills and the ability to work under pressure, with a proactive and detail-oriented approach to security. · Strong communication and collaboration skills, with the ability to effectively convey complex security concepts to both technical and non-technical audiences. · Experience with DevSecOps practices and tools, including continuous integration and continuous deployment (CI/CD) pipelines. · Knowledge of infrastructure as code (IaC) and automation tools, such as Terraform, Ansible, or CloudFormation. · Familiarity with security monitoring and incident response tools, such as SIEM, IDS/IPS, and EDR solutions. · Ability to deliver with minimal management oversight Location: This position is based in Pittsburgh, PA and required to be on site (Hybrid) This is a full-time W2 Salaried position. Applicants must be legally authorized to work in the United States now and in the future without the need for sponsorship. At Techstra Solutions, we help top companies and brands achieve the business value of Digital and Talent Transformation. We believe there are three components in successful business transformation: Business Strategy, Technology and Talent. It is the coming together of these three disciplines that enables companies to take full advantage of opportunities. It differentiates us. Our approach is holistic and all-encompassing. We consider the full picture as we guide our clients on this journey. We are experts in transformation, business strategy, technology, innovation, and human capital management. We deliver our expertise through client consulting, innovative staffing solutions and software development. From strategy through implementation, we are dedicated to bringing our clients world-class business and talent solutions that fit strategic requirements and most importantly, deliver results. Equal Employment Opportunity Statement Techstra Solutions is an equal opportunity employer. The Company makes its decisions on merit, and its policy of equal opportunity prohibits discrimination in all phases of the employment process, including, but not limited to, recruitment, hiring, promotion, selection, transfer, demotion, layoff, termination, compensation, benefits, and other terms and conditions of employment. The policy of equal opportunity applies without regard to race, color, creed, religion, gender,, sexual orientation, gender identification, pregnancy, marital status, national origin, ancestry, age, disability that can reasonably be accommodated without undue hardship, military status, veteran status, genetic predisposition or carrier status, alienage or citizenship, domestic partnership status, arrest or conviction record, status as a victim of domestic violence, or any other protected categories under federal, state, or local law. The Company also prohibits discrimination or harassment based upon the perception that a person has, or is associated with a person who has, any of these characteristics.

Primary Office Location:626 Washington Place. Pittsburgh, Pennsylvania. 15219.Join our team. Make a difference - for us and for your future. Cyber Security Specialist Business Unit: Risk Management Reports to: Manager of Cyber Security Position Overview: This position is primarily responsible for performing all procedures necessary to ensure the safety of information systems assets and protecting systems from intentional or inadvertent access or destruction under the supervision of the Manager of Cyber Security. The incumbent demonstrates the ability to develop IT security standards and procedures, has demonstrated knowledge and understanding of IT industry trends and emerging technologies and an ability to relate them to the corporation and it's objectives. Primary Responsibilities: Investigates, escalates and documents cyber security events or incidents according to standard operating procedures (SOP), as needed. Writes comprehensive reports of incident investigations. Evaluates and improves Security Information and Event Management (SIEM) rule set based on threat and vulnerability indicators. Analyzes information from variable threat sources and provide necessary awareness to management, IT and impact business areas. Tracks remediation of identified issues based on incident investigations. Utilizes forensic resources to understand event impacts and generates incident reports. Assists management in preparation of reports of current threats. Uses PowerShell scripting or other programming languages to automate tasks. Leverages various toolsets to gain awareness of potentially suspicious activity and alerts to threats, intrusions and/or compromises. Performs other related duties and projects as assigned. All employees have the responsibility and the accountability to serve as risk managers for their businesses by understanding, reporting, responding to, managing and monitoring the risk they encounter daily as required by F.N.B. Corporation's risk management program. F.N.B. Corporation is committed to achieving superior levels of compliance by adhering to regulatory laws and guidelines. Compliance with regulatory laws and company procedures is a required component of all position descriptions. Minimum Level of Education Required to Perform the Primary Responsibilities of this Position: BA or BS Minimum # of Years of Job Related Experience Required to Perform the Primary Responsibilities of this Position: 3 Skills Required to Perform the Primary Responsibilities of this Position: Excellent communication skills, both written and verbal Excellent customer service skills Excellent project management skills Detail-oriented Strong security background in network/systems/physical security, authentication, authorization and usability. Comprehensive knowledge of the OSI model. Working knowledge of packet collection and analysis tools. Licensures/Certifications Required to Perform the Primary Responsibilities of this Position: Valid Drivers License CISSP, Security+, Network+, GCIA, GCIH, CEH, CISM, CSX Physical Requirements or Work Conditions Beyond Traditional Office Work: Heavy Lifting over 45 lbs. Equal Employment Opportunity (EEO): It is the policy of FNB not to discriminate against any employee or applicant for employment because of his or her race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, or status as a protected veteran. FNB provides all applicants and employees a discrimination and harassment free workplace.

We specialize in Staffing, Consulting, Software Development, and Training along with IT services to small to medium size companies. AG's primary objective is to help companies maximize their IT resources and meet the ever-changing IT needs and challenges. In addition, AG offers enterprise resource planning and enterprise application integration, supply-chain management, e-commerce solutions, and B2B public exchanges and B2B process integration solutions. Our company provides application analysis, design, development and programming, software engineering, systems development, testing, integration, and implementation, and management consulting services to various clients - including governmental agencies and private companies - throughout the United States and India. We provide these services in multiple computing environments and use technologies such as client/server architecture, object-oriented programming languages and tools, distributed database management systems, state-of-the-art networking, and communications infrastructures. Our honest and realistic approach to recruiting dictates that AG does not entice or lure engineers from their employers. We represent only high caliber technical professionals who have committed to making a change required by career. Job Description Security Analyst MUST HAVE: Experience with implementing a vulnerability scanner Familiarity with both Windows and Linux platforms Experience with a log management system (Splunk, Elastic Search, etc) General understanding of incident management systems Experience patching operating systems/applications Experience configuring operating systems/applications Knows and applies the fundamental concepts, practices and procedures of IT security hardware, software, management software, and troubleshooting tools Candidate should have a strong knowledge of IT security, including demonstrated knowledge of current security trends and issues Ability to effectively and professionally communicate with customers and technical support staff at remote locations including team members in foreign countries; excellent verbal and written communication skills Highly self-motivated and flexible Manage priorities for timely completion of assignments Strong analytical and problem-solving skills Demonstrated success managing confidential/secure information with a high level of integrity NICE TO HAVE: Nessus experience HP Service Manager Additional Information Good comm skills are a big priority Duration: 3+ Months Phone+F2F Local Candidates Preferred

The Systems Engineer position is responsible for providing full cycle implementation and support of customer systems, while working across multiple company departments to ensure full client satisfaction. Under the direction of a manager or dispatcher, coordinates the design and maintenance of all access control, intrusion, and video surveillance systems. Incumbent receives and evaluates work orders and requests, investigates requests and troubleshoots problems where appropriate, establishes priorities and coordinates with contractors, when required. Requirements Essential functions and responsibilities: Assists with security systems integration, mapping and software updates and helps train personnel in the use of these systems. Assists on new projects in both existing areas and new construction helping with security assessments, vendor selection, technology upgrades, product selections, testing, field verification of systems and inspection of work in progress for compliance with standards Assess work sites, conditions, and logistics for each project; Develop Method of Procedure based on pre-project assessment. Design, develop and provide documentation of systems, configurations, and other pertinent information for the customer. Communicate with clients to resolve issues in a professional and confidential manner; Develop and execute client specific solutions. Manage the allocation of project resources, including software, hardware, tools, and related items specific to each customer and/or project. Direct the work responsibilities of union labor personnel based on specific project needs. Design and oversee training programs for new and existing customers; Determine which customers receive training. Collaborate with Customer Relationship Managers on demonstrations for new and potential clients. Perform installation, configuration, programming, and final commissioning of customer systems. Work collaboratively with installation, project management and engineering teams. Perform infrastructure services, including pulling cables, installing wall, and ceiling cabling, and installing surface mounted devices, as required. Perform system wiring and terminations services, as required. Deliver on-going remote and on-site technical support for existing customers and systems. Additional responsibilities may be required as necessary, including but not limited to: Provide internal support for basic trouble shooting. Organizes and manage parts stock and tools. Perform other duties as needed. Success factors/job competencies: Effectively communicate both in writing and verbally Work independently and prioritize multiple tasks and adapt to needed change Analysis Mechanical aptitude Comprehend technical language and read and interpret blueprints, wiring diagrams, and schematics Safety orientation Customer Focus Attention to Detail Teamwork/Collaboration Stay abreast of changes in security technology Physical demands and work environment: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Individual will be required to travel to customer sites as needed. While performing the duties of this job, the employee is occasionally exposed to moving mechanical parts. The employee is occasionally exposed to outside weather conditions and risk of electrical shock. Individual will regularly be required to lift, push, pull, and carry up to 50 pounds, and occasionally up to 75 pounds. Incumbent will be required to use a computer with keyboard, telephone, or handheld mobile device for extended periods of time, and office machinery as needed. Incumbent must be able to read, see, hear, and speak. Workdays and Shifts: Position works Monday-Friday, daylight hours, and additional time as needed to complete work. Education/Certification(s)/License(s) required: Bachelor's Degree in Electronics, Information Technology or related field, or equivalent experience. May be required to participate in safety trainings and/or certifications provided by the Company or customers. Valid driver's license, as employee will be required to travel to local and overnight client sites as needed. Manufacturer specific certifications, as required. Responsible to maintain active certifications and obtain new and updated certifications as required by the Company. Experience/Other required: Position requires two (2) to three (3) years of relevant experience in the electronic services. Strong knowledge of Microsoft Office. Strong computer skills with advanced software aptitude. Security systems to include, service and maintenance across a broad spectrum of access control, intrusion and video surveillance systems such as, Genetec, Milestone, Bosch, and DMP. Applicants must be currently authorized to work in the United States on a full-time basis. Visa sponsorship is not available for this position. This is a full-time, in-person position, and candidates must be able to work from our office located in Pittsburgh, Pennsylvania.

We are seeking a pragmatic, collaborative individual that can draw on their experience with real-world cyber risks and industrial system constraints. This person will lead the deployment of cybersecurity tools, improve network segmentation, enhance threat detection, and close critical gaps in patching, access control, and asset management. This person will directly strengthen Carmeuse's ability to prevent, detect, and respond to cyber threats across its global operations - always with IT/OT convergence in mind. Responsibilities: Own and drive the execution of Carmeuse's global OT cyber security strategy, in alignment with the Global Security and Technology Team, and broader IT/OT convergence objectives. Lead the implementation and ongoing operation of core cyber security platforms in the OT landscape, including asset inventory, vulnerability management, network segmentation, and secure remote access. Participate in the design and architecture of cybersecurity controls and technologies that span both IT and OT environments, ensuring practical fit-for-purpose solutions in industrial settings and aligned to the Carmeuse strategy. Plan, coordinate, and execute OT cyber security assessments in collaboration with internal stakeholders, external partners, and OT engineering teams. Define and maintain OT cyber security governance with monthly IT/OT security steerco, including clear roles and responsibilities, decision rights, and escalation paths across sites and functions. Lead the Continuous Improvement Program, regularly testing OT/IT security policies and operational readiness through drills, tabletop exercises, and lessons-learned reviews. Develop and maintain OT security standards and implementation guidelines for global use, and guide regional and site-level teams in building and executing local adoption roadmaps. Manage and scale a targeted cyber security awareness and training program for OT and production site personnel, tailored to the realities of operational teams. Research, evaluate, and participate in the selection of IT/OT security technologies and partners through structured RFPs, PoCs, and integration planning - ensuring long-term sustainability and compatibility with Carmeuse's industrial and IT environments. Serve as a trusted, hands-on advisor to plant managers, engineers, and IT teams - balancing cyber risk reduction with operational continuity and practical constraints. Basic Requirements: Master's degree in industrial automation, cybersecurity, computer science, information technology, or equivalent experience. Minimum 7 years of combined IT or OT experience, including at least 2 years in an OT/industrial cybersecurity environment (e.g., production sites, SCADA, PLCs, DCS). Demonstrated hands-on experience implementing cybersecurity controls in OT environments - including asset visibility, network segmentation, secure remote access, and vulnerability remediation. Solid knowledge of cybersecurity fundamentals and domains such as risk assessments, access control, incident response, vulnerability management, and security policy development. Deep understanding of the threat landscape for industrial environments, including risks tied to network-connected OT/ICS systems. Strong generalist profile in cyber/information security, with the ability to dive deep into technical topics when needed and explain risks in a practical, business-relevant way. Demonstrated ability to balance security with operational reality - applying common sense, working within real-world constraints, and finding consensus between conflicting priorities across IT, OT, and production teams. Comfortable making progress in imperfect environments, where legacy systems, technical debt, or limited resources are part of the challenge - without losing focus on risk reduction and long-term improvement. Proven ability to lead global, cross-functional security projects and work with both technical and non-technical stakeholders in a manufacturing environment. Holds or working toward relevant certifications such as CISSP, CISM, GICSP, or equivalent. (nice to have) Strong awareness of emerging trends in both IT and OT technologies, with a pragmatic view on what's feasible in industrial operations. Willingness to travel globally up to 20% and engage with on-site teams and partners. Knowledge: Solid knowledge of OT security tools and platforms, such as Nozomi Networks, Claroty, Dragos, or similar industrial cybersecurity solutions. Experience with firewall management, preferably with Checkpoint firewalls; familiarity with firewall policies, segmentation, and industrial DMZ design. Hands-on experience with Endpoint Detection and Response (EDR) solutions, such as CrowdStrike Falcon or Microsoft Defender for Endpoint, including deployment and integration. Strong understanding of Microsoft Azure and Microsoft 365 security solutions, including identity, access, and threat protection features. Knowledge of OT security best practices, including secure remote access, industrial asset management, and network segmentation. Familiarity with cybersecurity frameworks and standards, including IEC 62443, NIST SP 800-82, NIST CSF, and ISO/IEC 2700x series. Practical knowledge of IT/OT convergence principles and ability to apply best practices across both domains. Fluent in English (written and spoken); additional languages are an asset. Skills: Strong sense of ownership and accountability - able to take initiative and follow through without needing constant direction. Proven ability to collaborate across teams (IT, OT, engineering, operations) and align people around common goals. Applies common sense and sound judgment when navigating complex or unclear situations. Skilled at finding practical consensus between often conflicting priorities - balancing security needs with operational realities. Comfortable working in imperfect environments, where legacy systems, resource constraints, or organizational complexity are part of the daily reality. Clear and effective communicator, able to tailor messages to both technical and non-technical audiences. Benefits & Compensation Package Includes: Salary range for this position is $130,000-$150,000 as well as an annual bonus plan Paid holidays and vacation time Group medical/pharmacy insurance options with company funded health care spending accounts Dental insurance & Vision insurance A 401k account with company matching contribution A robust Wellness program with financial rewards Company-paid life insurance and short-term and long-term disability insurance Options to purchase additional life insurance (employee, spouse, and child) and additional employee long-term disability insurance. Employee Assistance Program (EAP) Tuition benefits including professional certifications Employee referral program #LI-Hybrid

We are focused on imparting effective business staffing services through high level cost effective solutions. We have a strong foundation built on legacy and emerging technologies, including excellent track record of on-time delivery. We are leaders in providing additional custom IT Services with a proficient approach towards development of emerging mobile-based applications and web based application development. We are emerging as one of the largest private talent sourcing and management firms in the US. Our client- one of the leading ICT for development - ICT4D - organization, providing low cost solutions using ICT to tackle poverty and to overcome disadvantage, working closely with local communities seeks an accomplished IT Security Leader. Job Description Title: Information Risk Consultant Location: Pittsburgh PA Duration: 12+ months Responsible for providing support to technical professionals with regard to a variety of administrative, systems, and business operations problems, and participation in related system development projects of the most complex nature. Requires a seasoned expert on the integration of multiple systems or large-scale development projects. Responsibilities may include: determining and defining system specifications, process improvement, quality assurance, interaction with customers and technical staff, strong emphasis on problem resolution, and project-lead activities. Other Skills: Information Risk Governance/Information Security Additional Information I would love to talk to you if you think this position suits your interest. If you are looking for rewarding employment and a company that puts its employees first, we would like to work with you. We also offer group health insurance. NOTE: “Candidates that are offered a position are required to pass pre-employment drug and background screening”

* Bachelor Degree in Computer Science, Information Systems, Information Security or Networking, or equivalent work experience required; Master Degree preferred * Minimum of 5 years of practical experience in leading development and implementation of at least two information technology disciplines Azure or other Cloud environment, including technical architecture, network management, application development, middleware, database management or operations required * Advanced, specialized technical skills in Security Technologies, including IAM, PAM required * Experience with implementing and configuring Identity Security tools required * Demonstrated ability to estimate the financial impact of architecture alternatives; to apply solutions to business problems; and, to quickly comprehend the functions and capabilities of new technologies required * Functional knowledge of cloud environments such as Azure, Office 365, AWS and related security tools such as Security Center, Sentinel or similar tools required * Extensive experience with Delinea, SailPoint, Active Directory and CrowdStrike technologies and Just-in-Time access methods * Experience applying best practices to management and best practices for privileged accounts and privileged entitlements * Experience applying best practices to service account management * Experience applying best practice methodologies to securing cloud environments, such as Cloud Security Alliance, NIST required MAJOR DUTIES: * Design, develop, test and implement solutions to problems involving multiple technologies utilizing advanced specialized technical skills in the context of defined Reference Architectures * May establish and administer standards and conventions in relevant technologies * Stand up Microsoft Servers and other Security products * Develop system documentation to convey designs and develop support documentation as appropriate * Keep abreast of advances and developing trends and standards in technology * Upgrade and patch security Equipment * Develop interfaces from Corporate/Cloud servers to IAM/PAM technologies * Assist in the identification, response, investigation, and remediation of potential breaches of and issues surrounding data security * Consult and assist internal IT staff in proving out concepts to support migration of existing on-premises applications and infrastructure to Azure hybrid PaaS/IaaS deployment * Assist in implementing CIS Controls for hardware and Software environments * Ensure deliverables relative to project needs * Apply best practice methodologies to securing the company's cloud environments and applications * Review technical designs and specification for adherence to standards * Conduct third party Vendor Security Reviews as needed * Participate in task estimation and planning HOURS/LOCATION: * 8:30 a.m. - 5:00 p.m. (Overtime as required) * Warrendale location (Hybrid schedule) * Work at downtown location when required EXPLANATORY COMMENTS: * Good communication and interpersonal skills * Good decision making and problem solving skills * Good analytical skills with attention to detail and accuracy * Ability to work on multiple projects simultaneously * Ability to work effectively both individually and as a member of a project team