Security engineer jobs in Savannah, GA

Security Engineer - EZ Mainframe Security Tooling Team (W2 Only) Client: Banking Contract Type: W2 Only Duration: Long-term contract with extensions based on performance About the Client Morgan Stanley is a global leader in financial services, offering investment banking, securities, investment management, and wealth management solutions. With a strong culture of integrity, excellence, and collaboration, the firm provides a world-class platform for professionals to grow, innovate, and succeed. About the Team Enterprise Technology & Services (ETS) delivers shared technology services supporting 3,000+ production applications across the firm. The Enterprise Z Security Team engineers and manages mainframe authentication and authorization systems critical to enterprise security. We are seeking a Senior Security Engineer to join the Tooling & Project Team, responsible for engineering solutions around TopSecret (TSS) security products and mainframe platform integrations. Responsibilities Provide engineering support for MS Enterprise Z Mainframe Security products: CA/Broadcom-TSS CA/Broadcom Compliance Manager IBM RACF & IBM ZSecure TSS Admin Express Design and support enterprise mainframe initiatives including: Encryption, authentication, authorization Kerberos, Digital Certificates, Pass Tickets, entitlement provisioning Collaborate with cross-functional infrastructure teams (CICS, Systems Programming, DB2, MQ, etc.) Coordinate and validate software/OS upgrades and patches Integrate new feature sets from security product releases Develop automation tools, utilities, scripts, and reporting solutions Troubleshoot issues and work with vendors for resolution Participate in on-call rotation for production support Review and assess technical feasibility for security proposals Required Qualifications Bachelor's degree + 5+ years of mainframe experience Hands-on experience with Mainframe security software internals (Broadcom/CA-TSS) Proficiency in C, JCL, REXX, mainframe batch programming Experience with UNIX/USS, z/OS utilities (ISPF, TSO, SDSF, JES) Knowledge of DB technologies (DB2, Sybase, SQL) Strong analytical and troubleshooting skills Ability to work independently with minimal supervision Excellent communication skills (verbal + written) Strong organizational, planning, and multitasking abilities Proficiency in MS Office (Excel, PowerPoint, Word, Access) Team-oriented mindset Preferred Qualifications Experience with PKI, Digital Certificates, Kerberos, SSL/SSH Scripting knowledge: PERL, Shell Scripting, OpenSSL Systems Programming background (SMP, SYS1 datasets, assembler) Mainframe networking knowledge Experience with middleware (MQ Series, etc.)

Essential Duties and Responsibilities: Working with security tools and API integration work including writing scripts and development of automation around detection and remediation activities. Given the growing nature of the organization, you will work closely with other internal and external groups and may also assist in other security activities as necessary in response to assessments and/or audits. Implementing and operating vulnerability management and security log collection and monitoring tools, analyzing data from those tools and providing recommendations for security improvements to existing processes and technology, and participating in and leading incident response efforts. Identification and remediation of OS and network security weaknesses and vulnerabilities Respond to internal and/or external reports, events, and incidents (e.g. scanning, hacking, phishing) Qualifications: Bachelor's in computer science (or equivalent) degrees Minimum of 5+ years of documented information security work experience At least 5+ years of system/network security experience, including threat modeling, threat assessments, risk identification techniques, penetration testing Detailed knowledge of network and Web related protocols (e.g., TCP/IP, IPSec, HTTP, SSL, routing protocols) Atalla HSM experience (knowledge of transaction encryption) and Imperva, SecureSphere, WAF, and DB experience. Experience with planning, deployment, and operation of large enterprise security management tools such as IDS/IPS (network and host), advanced anti-malware (network and endpoint), DLP, encryption, anti-virus, firewalls, identity management, NAC, MDM etc. Demonstrated experience with malware remediation. Experience in one or more technical forensic tools Experience with Splunk from systems deployment and endpoint configuration to log analysis and interpretation. Ability to identify signs of intrusion or infection on a variety of systems. Expertise in administration of enterprise OS's Ability to move seamlessly between a hacker / attacker mindset and a security engineer / defender mindset Hands on experience with Nmap, vulnerability scanners, ZAP, Kali, MetaSploit, Wireshark, Kismet, Aircrack-ng Penetration testing experience Application and database security experience, including code reviews Network and security engineering experience, including log and network traffic capture analysis IT security certifications (SANS GIAC, CISSP, CCNA Security, CCNP Security, RHCSA or RHCE, MCP or MCSE ) are a plus Experience with advanced malware technologies is a plus. MerchantE does not provide visa sponsorship for this position. Candidates must be legally authorized to work in the United States without current or future sponsorship.

Department: Offensive Security Operations Reports to: Offensive Security Operations Manager Employment Type: Full-Time We are seeking an experienced Application Security Engineer to lead our DevSecOps as a Service program. This role bridges the gap between security, development, and operations, helping client organizations integrate security best practices directly into their development lifecycles. You will be responsible for designing, implementing, and maintaining secure automation frameworks that support continuous integration and continuous delivery (CI/CD) pipelines. The ideal candidate will have strong technical experience in secure software development, automation, and infrastructure as code (IaC), as well as excellent communication skills to engage directly with both internal and client engineering teams. Key Responsibilities - Lead the DevSecOps as a Service initiative, guiding client development and operations teams in embedding security throughout the SDLC. - Architect, deploy, and maintain secure CI/CD pipelines leveraging tools such as GitHub Actions, GitLab CI, Jenkins, or Azure DevOps. - Integrate security scanning tools (SAST, DAST, SCA, container scanning, secret detection) into automated build and deployment workflows. - Develop and manage Infrastructure as Code (IaC) security standards using Terraform, Ansible, and related automation frameworks. - Conduct security reviews of application architectures, source code, and deployment configurations. - Define and enforce security baselines, policies, and best practices across client environments. - Partner with development and operations teams to identify and remediate vulnerabilities early in the pipeline. - Build automation to support continuous compliance, drift detection, and threat modeling integration. - Collaborate with the Offensive Security Operations Manager to align DevSecOps services with overall threat exposure management and testing strategies. - Provide mentorship, technical documentation, and training to client and internal teams on secure DevOps practices. Required Qualifications - Bachelor's degree in Computer Science, Cybersecurity, or a related technical field (or equivalent practical experience). - 5+ years of hands-on experience in Application Security, DevSecOps, or Secure Software Engineering. - Strong understanding of CI/CD pipelines, Git-based workflows, and secure deployment practices. - Proficiency in Terraform, Ansible, and related automation tools. - Experience integrating security tools (e.g., SonarQube, Checkov, Trivy, OWASP ZAP, Snyk, or similar) into DevOps pipelines. - Experience with threat modeling, penetration testing, or offensive security assessments. - Familiarity with containerization (Docker, Kubernetes) and securing cloud-native deployments. - Excellent understanding of software supply chain security, secret management, and identity and access controls. - Strong scripting skills in one or more languages (Python, Go, Bash, PowerShell). - Ability to work cross-functionally with development, operations, and security stakeholders. Preferred Qualifications - Certifications such as GIAC GWAPT, GCSA, GCPN, OSWE, or CSSLP. - Experience working with multi-tenant or client-facing DevSecOps programs. - Knowledge of cloud security best practices (AWS, Azure, or GCP). Soft Skills - Strong leadership and collaboration abilities. - Excellent written and verbal communication skills. - Proactive problem-solving and initiative-taking approach. - Comfortable working in fast-paced, client-facing environments.

• Engineering support of MS Enterprise Z Mainframe Security products (CA/Broadcom-TSS, CA/Broadcom-Compliance Manager, IBM-RACF, IBM-ZSecure suite, TSS Admin Express) and project initiatives • Design / support Firm's Enterprise Z mainframe initiatives related to encryption, authentication, and authorization (Kerberos, Digital Certificates, Encryption, Pass tickets, and entitlement provision) • Interaction with technology teams such as Systems Programming, DBA, CICS/MQ Support, etc. • Scheduling/coordination and post implementation validation of software/OS upgrades/patches • Leverage new technology features within new releases of security software products currently installed and integrate into our environment. • Develop technical solutions to business problems based upon security best practices. • Develop automation, tooling, reports, utilities, and batch programs. • Troubleshoot and track issue tickets with various vendors. • Participate in an on-call rotation and address questions / issues. • Coordinate with Security Management team to review security proposals and assess technical feasibility. Required • College graduate with 5+ years related work experience on the mainframe • Experience with Mainframe security software configuration/ internals (Broadcom/CA-TSS) • Ability to program in a command Mainframe batch and reporting languages (C, JCL, and REXX) • Experience with distributed technology (such as: UNIX, USS file systems) • Experience with z/OS utilities and facilities (such as: ISPF, TSO, SDSF, JES) • Experience with database technology (such as: Sybase, DB2, SQL) • Capable of working independently with limited oversight • Good project planning, organization, time management skills and ability to multi-task • MS Office business application experience (Excel, Word, Access, Power Point) • Excellent verbal and written communication skills • Must be a team player and foster a team first environment and culture Desired • Knowledge of PKI and experience working with the implementation and support of digital certificates, Kerberos, SSL, SSH Knowledge of PERL, shell scripting, OpenSSL, SSH. • Systems Programming skills (such as: SMP, SYS1 datasets, assembler language programming) • Mainframe Network knowledge • Experience with middleware (such as: MQ Series, etc.) About US Tech Solutions: US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit ************************ US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Recruiter Details: Name: Sridhar Tiwari Email: ******************************

Azure Security Architect Atlanta, GA - hybrid Direct Hire - Base + Bonus DOE We are seeking a skilled Azure Security Architect to design, implement, and oversee security solutions that protect our organization's infrastructure, applications, and data. The ideal candidate will have expertise in cloud security, particularly Microsoft Azure, along with experience in Zscaler and Microsoft Defender technologies. You will collaborate closely with IT teams, business stakeholders, and security operations/engineering to design and develop robust security frameworks and to ensure that applications, infrastructure, and networking plans adhere to security standards and business objectives and continue to mature our security posture. You will participate in development and execution of future-state cloud design and implementation activities to ensure consistency and standardization of security across our technology infrastructure. KEY RESPONSIBILITIES: Design and implement security architectures and solutions with a focus on Microsoft Azure environments, and in concert with our full stack of security tools. Develop security documentation and best practices to support the protection of enterprise assets and data. Integrate and optimize solutions for secure web gateways, zero trust access, cloud security posture management, data protection, and other areas of security significance. Collaborate with IT, Security, and business stakeholders to ensure that IT projects and security solutions work in support of business objectives, while also reducing and managing technology and security risk. Contribute to security response, analysis and investigative activities to establish root-cause and/or correlations logs, alerts, and other related data sources. Participate in security and technology troubleshooting and analysis efforts. Work with Cyber Risk and Operations organizations to design solutions in response to security assessments and risk analyses to identify vulnerabilities and build/implement remediation strategies. Ensure compliance with industry standards and regulations, such as NIST, ISO 27001, SOC 2, and GDPR. Stay updated on the latest security trends, technologies, and threat landscapes to continuously improve security posture. QUALIFICATIONS: Bachelor's Degree in a related field (or equivalent experience). 5+ years of experience in cybersecurity, with a focus on security tools, architecture, and cloud security. Expertise in Microsoft Azure Security Services, including Azure Security Center, Azure Sentinel, Azure AD, and Azure Firewall. Familiarity with Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA). Knowledge of Microsoft Defender suite, including Defender for Endpoint, Defender for Cloud, and Defender for Office 365. Experience with Zero Trust Security models and frameworks. Proficiency in security tools such as SIEM, EDR, IAM, DLP, and network security solutions. Understanding of security frameworks such as MITRE ATT&CK, NIST CSF, and CIS Controls. Strong problem-solving skills with the ability to assess and mitigate security risks effectively. Excellent communication and stakeholder management skills. Security certifications such as CISSP, CCSP, or Azure Cloud Security certifications preferred. Experience with automating security controls and scripting (PowerShell, Python, etc.) preferred. Knowledge of cloud automation templates, container security and securing modern application architectures in public cloud environments preferred. The compensation range for this position is competitive based on experience and includes a base + performance bonus + full benefits. (dependent on factors including but not limited to client requirements, experience, statutory considerations, and location). *Note: Disclosure as required by the Equal Pay for Equal Work Act (CO), NYC Pay Transparency Law, and sb5761 (WA) Synergis is proud to be an Equal Opportunity Employer. We value diversity and do not discriminate on the basis of race, color, ethnicity, national origin, religion, age, gender, gender identity, political affiliation, sexual orientation, marital status, disability, military/veteran status, or any other status protected by applicable law. For consideration, please forward your resume to ********************* If you require assistance or an accommodation in the application or employment process, please contact us at *********************. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the requirements of applicable state and local laws, including but not limited to, the San Francisco Fair Chance Ordinance, the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Synergis is a workforce solutions partner serving thousands of businesses and job seekers nationwide. Our digital world has accelerated the need for businesses to build IT ecosystems that enable growth and innovation along with enhancing the Total Experience (TX). Synergis partners with our clients at the intersection of talent and transformation to scale their balanced teams of tech, digital and creative professionals. Learn more about Synergis at ww.synergishr.com.

Immediate need for a talented Information Security Analyst - Lead . This is a 09+ months contract opportunity with long-term potential and is located in Atlanta,GA(Hybrid). Please review the job description below and contact me ASAP if you are interested. Job ID:25-93807 Pay Range: $68 - $68.61/hour. Employee benefits include, but are not limited to, health insurance (medical, dental, vision), 401(k) plan, and paid sick leave (depending on work location). Key Responsibilities: Act as a liaison between cybersecurity metric owners, data engineers, and governance teams to ensure accurate and timely metric development. Facilitate metric working sessions to define metric name, definition, calculation, system of record, and critical data elements (CDEs). Support the documentation and validation of metric logic and data lineage. Coordinate and lead standing meetings to provide updates, manage timelines, and escalate blockers or data challenges. Review and validate data quality and completeness of metric inputs in coordination with data engineers. Support the development of root cause commentary and trend analysis for metrics that breach established thresholds. Partner with control and process owners to align metrics with applicable frameworks (e.g., NIST CSF, CIS, FFIEC). Prepare clear, concise executive-level summaries and presentations on metric performance and risk trends. Maintain oversight of multiple metrics in different stages of the build lifecycle, ensuring governance and consistency. Contribute to continuous improvement of the metrics program, including standardization, automation, and data quality enhancements. Key Requirements and Technology Experience: Key Skills;Metrics governance/Risk Metrics/Performance Metrics . Bachelor's degree or five years of related experience or an equivalent combination of education and experience In-depth knowledge of principles, practices, theories, and/or methodologies associated with the professional discipline (e.g., information technology, project management, finance, risk management, etc.) Understands foundational concepts of other related professional disciplines. Experience managing small projects Ability to interpret and explain complex information to a range of audiences and build consensus among different stakeholders. Ability to provide direction and mentor less experienced teammates Strong organizational skills with the ability to manage multiple priorities simultaneously. Excellent written and verbal communication skills, including experience drafting executive summaries. Proficiency in Microsoft Excel, PowerPoint, and collaboration tools (e.g., Teams, SharePoint). 5-7 years of experience in cybersecurity, risk management, technology project coordination, or data analytics. Familiarity with cybersecurity domains (e.g., vulnerability management, DLP, IAM, cloud security, incident management). Working knowledge of risk and performance metric design, including KRIs, KPIs, and operational indicators. Experience gathering and documenting business requirements and translating them into actionable data or metric logic. Basic understanding of SQL or ability to read data dictionaries and data mappings. Exposure to cyber control frameworks such as NIST CSF, ISO 27001, or CIS. Exposure to Agile or iterative project delivery methods. Cybersecurity/Risk management Vulnerability management Stakeholder engagement . Our client is a leading Financial Industry, and we are currently interviewing to fill this and other similar contract positions. If you are interested in this position, please apply online for immediate consideration. Pyramid Consulting, Inc. provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, colour, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. By applying to our jobs you agree to receive calls, AI-generated calls, text messages, or emails from Pyramid Consulting, Inc. and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy here.

*****NO C2C OR THIRD PARTY INQUIRIES***** Senior Security Engineer 3x Per Week Onsite Minimum if Hybrid Top skills/tools, etc. that are MUST haves: Recent Palo Alto experience Palo Alto SME Nice to haves: Prisma Access Job Summary You will provide guidance and technical support to clients deploying our security integrations. You'll act as the technical partner, providing strategic guidance around complex systems to secure a digital environment. Interacting directly with the client, you'll partner closely with client personnel to guide and suggest integrations to better serve their success. Your thorough understanding of our product integrations contributes to the development of new principles and concepts - providing detailed analysis around what's working, what's not, and what could be better. You enjoy implementation work, are proactive about resolving potential concerns, and operate well around strict best practices that enable our clients on their road to a more secure digital world. You're creative, innovative, and you love a challenge - learning how integrations might work better around new products and technologies. Responsibilities Communicate with the customer(s), sales teams, peers, engineering and support teams as appropriate Understand the customer environment, requirements, and security roadmap to implement the appropriate security solution Configure, implement, and maintain Security Operating Platform Optimize and migrate policies and objects from the existing environment to our Next-Gen Firewall Test and validate the migration environment Coordinate and execute cutover to production Provide guidance on code upgrades Facilitate the development of new application and threat signatures Interact with our Technical Assistance Center (TAC) to understand and diagnose support cases Some travel may be required, dependent on customer request You work with the customer's security & network teams to build confidence across the business units impacted by the change to Palo Alto Networks Experience High level of experience with Panorama and log collectors NGFW Global Protect BS in Computer Science, MIS, business, or equivalent education/training/experience Minimum of 5 years' experience with network/security solutions and technologies (BGP, SD-WAN concepts, VXLAN and general routing and switching) Minimum of 3 years' experience leading security solutions in large environments) Detailed technical experience in the installation, configuration, and operation of high-end firewall appliances, ideally Palo Alto Networks products You're experienced in internetworking, LAN, and WAN technologies You have a good understanding of Internet protocols and applications Possess the following industry certifications: CISSP, CCNA, CNSE, JNCIE-SEC You effectively handle multiple projects and work calmly in high pressure

Prominent is looking for an Azure Cloud Security Architect for a contract to hire in Marietta/Alpharetta, Georgia. The successful Candidate will have senior level experience around design, build and deployment of technology initiatives to secure key government client's cloud environment. The selected candidate will be accountable for assisting in strategic planning and architecture and securing enterprise information by identifying network and application security requirements, implementing and testing security controls and procedures. Additionally, this role collaborates with other teams to embed security into the entire lifecycle, integrating DevSecOps principles and automation into the pipeline. No visa sponsorship is available for this opportunity! C2C or 1099 not available for this opportunity! Experience Required: 5+ years firsthand working with multiple Azure security tools and platforms such as Entra ID, Sentinel, Defender, Monitor, Key-Vault, or similar in other platforms. 5+ years managing security policies and initiatives in Azure. Identity Access and Management (IDAM) concepts, multifactor authentication, SSO/Federation Privileged Access Management (PAM) and Privileged Identity Management (PIM) key concepts Demonstrated ability to Define, Design, and configure the Azure security platforms, and function as an overall lead managing end to end security on the Azure GovCloud regions. Experience automating security baselines and policy enforcement in enterprise Azure environments. Experience automating “Policy-As-Code” using Terraform and ARM templates, with a focus on reusable module design, policy enforcement, and secure CI/CD integration. Demonstratable understanding of Information Security and Risk Management capabilities related to cloud computing across Windows and Linux, with demonstrated direct experience with the following domains: o Identity, Credential and Access Management (ICAM) o Authentication and Authorization including SSO and Identify Federation o Zero-Trust Model o Defense-In-Depth o Governance and Compliance o Securing Data o Securing the Operating System o Protecting the Network Layer o Continuous Diagnostics and Mitigation, Alerting, Audit Trail, and Incident Response o Cloud Core Platform: Compute, Storage, Networking Prior experience supporting federal, defense, or highly regulated commercial clients helpful along with the following skills: Familiarity with compliance frameworks such as FedRAMP, CMMC, FISMA and NIST 800-53. Certifications: CISSP, CCSP, Azure/AWS/Google Training and Certification Crowdstrike Falcon EDR for Azure Experience with secure baseline configurations (CIS Benchmarks, DISA STIGs) for Azure environments. Managing/maintaining FISMA compliance for a government information system in accordance with requirements from NIST. Demonstrated experience collaborating directly with external clients, business leadership, and auditors. Direct technical background, to include familiarity with servers, network devices, and security systems.

We are hiring an IS Security Risk Analyst in Columbia, South Carolina! The Senior Information System Security Officer (ISSO) will be responsible for leading Security, Risk, and Compliance activities in support of new and ongoing Cybersecurity efforts Candidates must be local or within a commutable distance and okay with working onsite in the Columbia SC office. No C2C or 1099 candidates, US work status required, direct hire W2 long term contract assignment. Position Details: Perform detailed architectural reviews and risk analysis of security related requests in order to make sound decision making recommendations, such as: Network Design and Information Flow System and Data Access Models Review Firewall Rule Requests (Ports, Protocols, and Services) Baseline Configuration Management Deviation Requests Vulnerability Management Champion the design, development, implementation, and/or ongoing maturation of SCDHHS security and compliance efforts. Audit and assess internal agency systems as well as business partner/service provider information system security controls. Utilize Microsoft Office software suite, System Center Service Manager (Ticketing system), Archer eGRC system, Bizagi, Atlassian and other products to document and report on information gathered during Audit and Assessment activities or other OCS efforts. Perform security and compliance reviews of Contracts, Business Associate Agreements, Data Usage/Sharing Agreements, and other types of documents and artifacts. REQUIRED EDUCATION/SKILLS: ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required Must have a strong working knowledge of FISMA, NIST, CMS MARS-E and HIPAA Security and Privacy. 5+ years of experience in IT working with and/or auditing Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure, and Web-based Applications. Prior experience working within a FISMA compliant program. Prior experience in working with any eGRC systems. Prior Health Information Technology experience. Ability to work independently and as a member of a team. Ability to collaborate and coordinate with multiple teams and vendors. Ability to multitask and prioritize tasks effectively in order to meet deadlines. Experience and training with eGRC solutions. Ability to engage diverse audiences of varying technical and non-technical skill-levels to ensure effective alignment of technical requirements to business objectives. Ability to collaborate and coordinate efforts amongst multiple teams and vendors in fulfillment of SCDHHS OCS initiatives. Core Technology Solutions is an Equal Opportunity Employer and offers a variety of employment opportunities and benefits. Please check out our website for additional opportunities. Ask about our Employee Referral Program! We offer fees for any placement of referred candidates. Please inquire about details.

Job Title: Security Analyst (Project Lead) Work Mode: Hybrid (3 days onsite/week) Duration: 12 Months Responsibilities Lead and coordinate IRS Safeguards Review preparation across technical and administrative areas. Review and assess Corrective Action Plans (CAPs), SSRs, SSPs, and SSAs for IRS Pub 1075 compliance. Evaluate compliance with IRS SCSEM controls and guide remediation efforts. Manage all stages of Safeguard Review preparation using project management methodologies. Support post-review activities, including CAP development and mitigation planning. Additional Duties Provide expert guidance on technical solutions to meet IRS Pub 1075 requirements. Research technologies/processes needed for system and infrastructure compliance. Communicate with technical and non-technical stakeholders, including state and federal partners. Required Skills (Ranked) 5+ years security analysis (risk assessments, vulnerability management, incident response). 3+ years IRS Safeguard Review experience within a state agency. Deep expertise with IRS SCSEM (implementation, assessments, documentation). 3+ years experience with IRS Publication 1075 (Rev. 11-2021). Proficiency with MS Office, SharePoint, MS Teams. Strong written and verbal communication. Knowledge of ISO, IEEE standards. Preferred Skills (Ranked) Experience with Child Support Enforcement systems. Experience with FISMA, NIST, or IRS Pub 1075 frameworks. Strong technical documentation and audit support experience. Education Bachelor's Degree required.

Title: Security Analyst - Project Lead (8780) Work Mode: Hybrid (3 days onsite per week required) Contract Duration: 12 months (Extension possible) Interview Process: 1 round, virtual video interview required Candidate Requirement: Candidate must be a current South Carolina resident. No relocation allowed. Scope of Work The resource will plan, coordinate, evaluate, document, and report on IRS Pub 1075 compliance activities, including security controls, corrective action plans (CAPs), artifacts, SCSEM requirements, and follow-up remediation. Key Responsibilities • Lead, coordinate, and support preparation efforts for an IRS Safeguard Review. • Review Corrective Action Plans (CAPs) for effectiveness and determine compliance readiness. • Review SSR, SSPs, and SSAs to ensure alignment with IRS Publication 1075. • Identify relevant IRS Safeguard Computer Security Evaluation Matrix (SCSEM) controls and assess agency compliance. • Provide technical advice for remediation of non-compliant SCSEM control areas. • Assist and coordinate follow-up actions after the Safeguard Review, including CAP development for findings. • Provide expert analysis of proposed technical solutions to ensure compliance with IRS Pub 1075. • Conduct research and recommend security improvements for systems and infrastructure. • Use the agency's established project management methods for planning, coordination, communication, and reporting. • Communicate effectively with both technical and non-technical staff, including federal and state stakeholders and executive leadership. Required Skills (Must Have) • 5+ years of expert-level experience as a Security Analyst, including risk assessment, vulnerability management, and incident response. • 3+ years of experience preparing for and actively supporting at least one IRS Safeguard Review at a state agency. • 3+ years of experience working with and applying IRS SCSEM requirements including implementation, compliance assessment, and documentation. • 3+ years of experience with IRS Publication 1075 (Rev. 11-2021) compliance. • Strong proficiency with Microsoft Office, SharePoint, and Microsoft Teams. • Excellent oral and written communication skills across multidisciplinary teams. • Knowledge of applicable IT security standards (e.g., ISO, IEEE). Preferred Skills • Experience with Child Support Enforcement systems or knowledge of Child Support program operations and objectives. • Experience with federal or state regulatory compliance frameworks such as FISMA, NIST, or IRS Publication 1075. • Experience developing and maintaining technical documentation and audit support for safeguard reviews, security audits, and compliance assessments.

DNI is on the lookout for a Senior Cyber Security Analyst - Information Systems Security Manager (ISSM) to deliver expert guidance in Information Systems Security and cybersecurity support for the Enterprise Information Services at the Department of Energy (DOE) Savannah River Operations Office (DOE-SR), located at the Savannah River Site (SRS) in Aiken, SC. Requirements Reports to the Chief Information Security Officer (CISO) and Program Manager. Oversee the Authority to Operate (ATO) lifecycle, manage risk assessments, develop and monitor Plan of Action and Milestones (POAMs), ensuring compliance with security standards and timely mitigation of organizational boundary security risks. Actively participate in the bi-weekly accreditation boundary meetings and keep the AODR informed of any changes/updates to eRAMS/POA&Ms/STAR items or any new VPM and CM issues that may arise. Provide technical and procedural cyber security advice to DOE, associate contractor partners, and Industrial Control Systems (ICS) teams as necessary. Oversee operational information systems security implementation programs. Coordinate with Information System Security Officer (ISSO) or PSO on approval of External Information Systems (e.g. guest systems, interconnected system with another organization). Oversee ISSOs to ensure they follow established policies and procedures and timelines. Ensure CM policies and procedures for authorizing the use of hardware/software on an IT system are followed. Any additions, changes or modifications to hardware, software, or firmware must be coordinated with the AODR prior to the addition, change or modification. ISSM shall have authority to veto any proposed change they feel is detrimental to security in boundaries under their purview. Appeals on an ISSM/ISSO veto may be taken to the AODR. Ensure approved procedures are used for sanitizing and releasing system components and media as necessary. Ensure proper measures are taken when cyber security incident or vulnerability is discovered. Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures. Support necessary compliance activities (e.g., ensure that system security configuration guidelines are followed, compliance monitoring occurs).Continuously validate the organization against policies/guidelines/procedures/regulations/laws to ensure compliance. Manage, maintain, and execute the information security continuous monitoring plan. Ensure a record is maintained of all security-related vulnerabilities and ensure serious or unresolved violations are reported to the AODR; and assess changes to the system, its environment, and operational needs that could affect the security authorization. Other related tasks as assigned. Support information technology (IT) security goals and objectives and reduce overall organizational risk; Advise senior management (e.g., Chief Information Security Officer [CISO] and Chief Information Officer [CIO] on risk levels and security posture.); Advise appropriate senior leadership of changes affecting the organization's cybersecurity posture; Communicate the value of information technology (IT) security. Knowledge, Skills, and Abilities: Highly organized individual with exceptional communication skills, ensuring all stakeholders are consistently informed and updated as required. Excellent written and oral communication skills (writing samples may be requested). Attention-to-detail is critical, proven ability to look closely at your work to identify and correct errors, spot and improve weaknesses and produce a near-perfect end-result. Ability to identify problems, brainstorm and analyze answers, and implement the best solutions. Ability to develop and review security related procedures or processes and reports. Demonstrated ability to provide clear, precise, and factual information to senior leaders, team members, and external stakeholders. Capable of attending all customer-required meetings and promptly providing responses as requested. Familiarity with applicable regulations affecting Cyber Security NIST 800 Series Standards. Clearance: Must possess (or be able to obtain) a “Q” level security clearance. Education: A bachelor's degree in information technology systems, computer science, or related field and experience in information technology systems or related area. Relevant experience may be substituted for education on a year-for-year basis. Experience: 7+ years in IT security or related field. Authority to Operate Life Cycle (ATO), Risk Management, POAMS & Milestones Certification: Highly desired certifications: Certified Information System Security Professional (CISSP) Certified Information Security Manager (CISM) Benefits Covers 100% of employee benefit premiums, including Medical (PPO or HDHP Option), Vision, Dental Matching 401K Short- and Long-Term Disability Pet Insurance Professional Development/Education Reimbursement Parking and Transit Benefits for NY, NJ, ATL, and DC Metro areas Other Duties: Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

Job Title:Network Engineer III Job Duration: 6 month contract-to-hire Work Schedule: (Onsite first couple weeks; then hybrid (3 days week remote / 2 days a week on-site) Our client is looking for an experienced CISCO Network Engineer who will work in a team environment with other Network and IT Administrators installing, configuring, and supporting network software and hardware components. Performs network administrative duties for all networking, which may include but are not limited to, physical and virtual LANs, firewalls, routers, switches, security and network access control systems for wired and wireless networks Minimum qualifications 6+ years of experience in the following criteria: CISCO Secure firewalls, Intrusion Detection and Prevention CISCO's Secure Firewall Management Center (FMC) CISCO Secure Connection Virtual Private Network (VPN) & AnyConnect Client Network monitoring and alerting management Microsoft Windows 10 or 11 Perform problem research, diagnosis, troubleshooting and resolution. Document standard operating procedures for network administration activities Recommends standards, specifications and methodologies for network and network security operations Work with Telecom and other IT vendors to resolve technical/application issues Preferred Qualifications Bachelor's degree (Computer Science or related) CISCO Identity Services Engine (ISE) CISCO or other Unified Communication / VOIP systems Network Security and Vulnerability Management Wireless networking Network Technical Certification(s) Non-Technical Skills Strong analytical and problem solving skills Excellent verbal and written communication Ability to work after business and provide on-call support Ability to work independently and as team member Ability to schedule and prioritize Ability to multi-task and meet deadlines

The Position Will Work As A Security Identity And Access Management Engineer Within The Division Of Information Security And Will Assist With The Implementation, Integration, And Operationalizing Security Technologies. Additionally, This Position Will Develop Automation Integration Among Security Tools. This Position Requires Experience In Information Security Architecture And Solution Design To Assist In The Strategic Planning, Designing, And Implementation Of New Systems And Changes In Current Systems In ASecure Manner. Note: Looking for Independent Contractors who do not require sponsorship Responsibilities: Identity And Access Management - Ensuring That Appropriate Identity Management, Single Sign On, Multi-Factor Authentication, Active Directory And Applications Are Properly Implemented And Configured To Support It And Security Operations Responsible For Automation Development And Implementation Of Disparate Security And Enterprise It Tools Responsible For Planning, Designing, Development And Implementation Of Enterprise Security Solutions That Align With Business Goals And Risk Tolerance. Design, Deploy And Manage Countermeasures To Known Security Threats And Develop Preventative Mitigation Strategies For New And Emergent Threats To Enterprise Data, Networks And Associated Services. Ensure, Validate And Measure The Consistent Application Of Protective Measures Throughout The Enterprise Business Application And Infrastructure Support Environments. Take Appropriate Action To Protect Data And Technology Services. Qualifications: 5+ years of experience and expert understanding of identity and access control, logging and reporting systems 5+ years of experience and expertise in automation development using tools such as python and bash 5+ years of experience with Linux, windows, network security protocols and procedures 5+ years of experience in supporting large IT environments and/or system deployments Preferred Skills Knowledge of SIEM analysis and reporting Certification Education LicenseOther Skill Knowledge of Security Frameworks including: NIST, CSF, CJIS, IRS 1075, CMS MARS-E Knowledge of application security (APPSEC) REQUIRED EDUCATION/CERTIFICATIONS: • Bachelor's Degree In An Information Technology Or Information Security Related Field • Eight Years Of Relevant Work Experience May Be Substituted In Lieu Of Education

Daily Duties / Responsibilities: • The Senior ISSO will report to the ISSO Team Lead in OCS and operate as an experienced cybersecurity consultant to Client leadership, business units, business partners and vendors. Security Program Experience: • Leadership experience with CMS MARS-E, ARC-AMPE, or other FISMA Risk Management Framework (RMF) compliant programs is strongly desired and will be given the highest weight. • Experience should include well documented success in the development and maintenance of System Security Plans (SSPs), Privacy Impact Assessments (PIAs), Interconnection Security Agreements (ISAs), Computer Matching Agreements (CMAs), and related interviews and audit/assessment activities to complete and verify these and other RMF/Assessment and Authorization (A&A) tasks and artifacts. • Experience with development and integration of RMF/A&A tasks and artifacts in RMF type roles such as; ISSO, Information Security Architect, Security Control Assessor, etc., into the System Development Life Cycle (SDLC) is ideal. • Experience in security as related to Cloud services and vendor management is considered desirable for this position. Technical Knowledge: • Archer (eGRC) • Enterprise NoSQL Database • IBM System 390/zSeries • Linux and Windows servers • Network Firewalls, Intrusion Prevention Systems (IPS), Switching and Routing Infrastructure • Security Information and Event Management (SIEM) solutions • Identity and Access Management (IAM) solutions General Duties and Responsibilities: • Perform detailed architectural reviews and risk analysis of security related requests in order to make sound decision making recommendations, such as: Network Design and Information Flow, System and Data Access Models, Review Firewall Rule Requests (Ports, Protocols, and Services), Baseline Configuration Management Deviation Requests, Vulnerability Management • Champion the design, development, implementation, and/or ongoing maturation of Client security and compliance efforts. • Audit and assess internal agency systems as well as business partner/service provider information system security controls. • Utilize Microsoft Office software suite, System Center Service Manager (Ticketing system), Archer eGRC system, Bizagi, Atlassian and other products to document and report on information gathered during Audit and Assessment activities or other OCS efforts. • Perform security and compliance reviews of Contracts, Business Associate Agreements, Data Usage/Sharing Agreements, and other types of documents and artifacts. • Serve as primary point of contact for third-party audits and/or assessments of agency and business partner systems • Collaborate with agency leadership, business partners, and other parties/ stakeholders to provide recommendations for security and compliance risk mitigation efforts. Required Knowledge/Skills: • Must have a strong working knowledge of FISMA, NIST, CMS MARS-E and HIPAA Security and Privacy. • 5+ years of experience in IT working with and/or auditing IBM System 390/zSeries, Windows, Linux, Databases (Relational and Non-Relational), Networking Infrastructure, and Web-based Applications. • Prior experience working within a FISMA compliant program. • Prior experience in working with any eGRC systems. • Prior Health Information Technology experience. • ISC(2), ISACA, SANS GIAC and/or other Information Security Certification is required. • Ability to work independently and as a member of a team. • Ability to collaborate and coordinate with multiple teams and vendors. • Ability to multitask and prioritize tasks effectively in order to meet deadlines. • Experience and training with eGRC solutions. • Ability to engage diverse audiences of varying technical and non-technical skill-levels to ensure effective alignment of technical requirements to business objectives. • Ability to collaborate and coordinate efforts amongst multiple teams and vendors in fulfillment of Client OCS initiatives. • Ability to multitask and prioritize tasks effectively in order to meet deadlines in a results-oriented environment. • Must have intermediate to advanced skills in Microsoft Office products (Word, Excel, PowerPoint, Visio) to include working with templates and style guidelines for branding consistency. • Keen attention to detail while maintaining the ability to see the big picture. • Ability to absorb, retain and communicate complex processes. • Ability to accept changes and constructive criticism and remain flexible in dealing with leadership and teams of varying technical and business knowledge. Preferred Requirements/Skills: • BS degree in computer science or similar discipline or 10+ years of experience in the field or a in a related area. • Prior ITIL experience in the area of Information Security Management.

Tools - Spectrum, Moogsoft, Service Now, Change Management, RCA Report preparation, Handling Incident, Knowledge Article Document preparation. Cisco ACI - EPG, Bridge Domain, Contract, VPC, Software Upgrade, Replacement of Leaf, Spine, APIC Controller, VXLAN Configuration, Troubleshooting Knowledge Troubleshooting knowledge on routing & switching - BGP, OSPF, EIGRP, switching protocol, B2B VPN, DMVPN, IP SLA, Dual router knowledge with redundancy by using Dynamic Protocol, BGP Route-map, Prefix-list, AS-Path Catalyst - 9500/9300 Stack Switch - L2 Vlan, L3 Vlan, HSRP, Stack configuration, IP DHCP, Port-Channel Configuration Troubleshooting Knowledge on SDWAN & Meraki Operations Troubleshooting Knowledge on Data Center Setup, VMware, Storage, Backup, Application Slowness issues, Application reachability issues, Understanding of Private & Public Subnets, AWS Cloud Knowledge - VPC, End Point Instance, Security Gateway, AWS Direct Connect, Redundancy Setup, Route 53 Nexus Infrastructure - Nexus 9K, Nexus 6K, Nexus 5K, Nexus 4K, Nexus Fabric extender Strong troubleshoot knowledge, Software Upgrade, Configuration Build, Port-Channel Configuration, VPC, VXLAN Concept, VLAN Design with redundancy, Single homes and Multi Homes setup. Infoblox - Host Record, A Record, CNAME, Nodes, Naming Server, HA Redundancy, Alerts Monitoring Troubleshooting Knowledge & Handling the High priority bridge calls - P1, P2 Campus LAN Routing & Switching (Cisco Catalyst Series): DNS, DHCP & IPAM Design/Installation/Configuration: Provision network infrastructure at new sites by designing, installing & configuring various network devices like switches, Routers, & ISP circuits Collaborate with OEM vendors, ISP, Workplace Services, and other teams throughout the site build process to deliver network infrastructure. Create and maintain network standards for LAN, WAN, network infrastructure. TCS Employee Benefits Summary Discretionary Annual Incentive. Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans. Family Support: Maternal & Parental Leaves. Insurance Options: Auto & Home Insurance, Identity Theft Protection. Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement. Time Off: Vacation, Time Off, Sick Leave & Holidays. Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing. Salary Range-$100,000-$140,000 a year

We are seeking a skilled Senior Network & Systems Engineer to support and enhance our client's enterprise infrastructure. This role combines network engineering, systems administration, and virtualization expertise to ensure a secure, reliable, and high-performing IT environment. Responsibilities Operate and support a Cisco-based network, including routers, switches, chassis, and related infrastructure. Install, configure, and maintain network equipment across the organization. Manage and troubleshoot Fortinet firewalls, routing, VPN tunnels, and security configurations. Oversee Aruba wireless solutions using Aruba Central. Administer Windows server environments, including DHCP, DNS, and Active Directory domain controllers. Create and manage Group Policy Objects (GPOs) aligned with company standards and access requirements. Provide systems administration for data center hardware, servers, and storage provisioning. Configure and maintain VMware hosts, virtual machines, performance monitoring, and resource allocation. Support Tier 3 service desk escalations, including break/fix issues and application upgrades. Perform regular system backups and ensure environment reliability. Complete additional tasks as assigned. Desired Qualifications 5+ years of experience in network infrastructure. 3+ years of experience in system administration. 3+ years of experience with Azure cloud services. 3+ years of VMware experience. 3+ years working in disaster recovery environments. Bachelor's degree in Information Systems or equivalent experience with relevant Microsoft certifications. 5+ years of combined networking and systems experience; strong familiarity with Microsoft 365. Preferred Certifications: CCNA/CCNP, Microsoft MCSE. About GSquared Group: Shouldn't your recruiting partner put as much effort and value into your career as you do? With GSquared Group, we take the time to understand where you would like to take your career and what is important to you. GSquared Group is a woman-owned boutique technology services company in the Atlanta area. Founded in 2010, we are a premier provider of IT talent search, management consulting, and software development services. We support a diverse client base that spans all industries and includes Fortune 100 to mid-market companies. We offer direct hire placement, contract, and contract-to-hire positions. We are proud to be known by our community for putting relationships at the core of everything we do. GSquared Benefits: Competitive & Comprehensive Healthcare Package (available only for W2 hourly consultants) Simple IRA with company match (available only for W2 hourly consultants) Professional development & networking opportunities A family-friendly environment Nice bonuses for referrals A culture that supports you and your career Hear what others are saying on Glassdoor: ********************************************************************************************

Endpoint / SCCM / Intune Engineer Contract-to-Hire Atlanta-based 1x per week onsite We're looking for an engineer who has strong experience with modern endpoint management. You will take ownership of SCCM, Intune, OSD, packaging, and patching in a large and live environment. Role Leading OSD and task sequence work end-to-end Owning SCCM/MECM administration, deployment, and troubleshooting Building and maintaining custom application packages (MSIX/App-V/PowerShell-based) Driving Intune configuration, policies, enrolment, and Autopilot Supporting co-management across MECM + Intune Managing patching cycles and update compliance Cleaning up, improving, and modernizing the endpoint estate Responsibilities Strong hands-on experience in SCCM/MECM Proven Intune administration experience Solid OSD experience (task sequences, imaging, troubleshooting) Real custom app packaging exposure (not just repackaging wizards) Co-management experience in a hybrid environment Confident with patching and update management Comfortable working with autonomy and fixing things properly If this looks like a good option for you, put through your application today.

We are looking for CCIE Certified (Mandatory) Network Engineer who is having 10+ Years of experience with LAN/WAN network design, engineering, and certification. Strong knowledge of OSPF, BGP, MPLS, IPSEC, QoS, L2/L3 VXLAN, Multicast Knowledge of Software Defined Access, LISP, VXLAN, SD-Access Knowledge of Cisco DNA Center, and Cisco ISE. IP Routing: BGP, MP-BGP, OSPF, MPLS, LISP Routing Platforms ISR4K, ASR1K, ASR 9k Switching Platforms: Cisco Cat3K, 4K, 6K, 9K, Arista 7200 series Switching Protocols: VLAN, DOT1Q, RSTP, Ether channel (LACP & PAgP) Technologies/Tools: QoS, Multicast, SD Access" Thanks & Regards,