Security engineer jobs in Texas

About The Role The Sr. Security Researcher is responsible for leading and executing offensive security assessments (red teaming) against the organization's systems and networks. This role will leverage advanced penetration testing, social engineering, and other offensive security techniques to identify and exploit vulnerabilities, simulate real-world threats, and enhance the organization's overall security posture. Responsibilities Lead and execute red team engagements: Develop and execute comprehensive red team assessments, including reconnaissance, vulnerability scanning, exploitation, and post-exploitation activities. Lead and mentor junior red team members, providing guidance, training, and hands-on experience. Develop and maintain red team methodologies, tools, and infrastructure. Conduct threat modeling and risk assessments to identify potential attack vectors and prioritize targets. Develop and execute social engineering campaigns, including phishing, vishing, and physical penetration tests. Vulnerability research and exploitation: Stay abreast of the latest threat intelligence, vulnerabilities, and exploits. Research and develop new exploitation techniques and tools. Conduct in-depth analysis of vulnerabilities and their potential impact. Reporting and communication: Prepare detailed and concise reports documenting red team findings, including technical details, impact assessments, and remediation recommendations. Effectively communicate findings to technical and non-technical audiences, including senior management. Present findings and recommendations at security forums and conferences (optional). Security awareness and training: Develop and deliver security awareness training programs to employees on topics such as social engineering, phishing, and secure coding practices. Conduct security awareness campaigns to raise employee awareness of security threats and best practices. Collaboration: Collaborate with other security teams (e.g., blue team, incident response) to improve overall security posture. Work with development teams to identify and remediate security vulnerabilities in applications and systems. Build and maintain relationships with external security researchers and the cybersecurity community. Skills and Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 5+ years of experience in cybersecurity, with 3+ years of hands-on experience in penetration testing, red teaming. Understanding of blended attacks. Proven experience leading and mentoring junior security professionals. Strong understanding of networking, systems administration, and programming concepts. Expertise in penetration testing methodologies and tools (e.g., Cobalt Strike, Outflank, Sliver, PowerShell Empire, Metasploit, Kali Linux, Nmap). Proficiency in scripting languages (e.g., Python, Ruby, PowerShell). Strong understanding of network protocols (e.g., TCP/IP, HTTP, DNS). Experience with vulnerability scanners, intrusion detection systems, and firewalls. Experience with cloud security (e.g., AWS, Azure, GCP) is a plus. Relevant security certifications (e.g., RTO I, RTO II, OSCP, OSCE, GPEN, CRTP) are highly desired. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Strong attention to detail and accuracy. Ability to adapt to new technologies and challenges. Project Management.

One of our client partners is seeking a Cyber Security Engineer who will will play a critical role in designing, implementing, and maintaining our security infrastructure, as well as developing and enforcing security policies and procedures. Title: Cyber Security Engineer Location: Midland, TX (This position requires onsite presence. Must be willing to relocate to Midland, TX. Applicants not willing to relocate will not be considered.) Our client is not seeking to sponsor at this time. NO C2C! General Responsibilities Develop and maintain security policies, procedures, and standards to ensure confidentiality, integrity, and availability of company data. Design and implement security solutions, including firewalls, intrusion detection/prevention systems, and other security tools. Conduct threat analysis and vulnerability assessments to identify and mitigate potential security risks. Lead incident response efforts, including containment, eradication, and recovery. Monitor security systems and logs to detect and respond to security incidents. Collaborate with other IT teams to ensure security is integrated into all aspects of the infrastructure. Research and evaluate new security technologies and solutions. Stay up to date on the latest security threats and vulnerabilities and provide security awareness training to employees. Minimum Qualifications Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. 5+ years of experience in cybersecurity engineering or a related role. Experience with security policy and procedure development. Proven ability to design and implement security solutions. Strong understanding of threat analysis and mitigation techniques, including incident response. Familiarity with industry standards such as NIST CSF and ISO 27001 Technical expertise in one or more of the following security tools and technologies: Firewall Management, Web Application Firewall (WAF), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Cloud Security (e.g., AWS, Azure, GCP), Security Information and Event Management (SIEM), Identity and Access Management (IAM), Privileged Access Management (PAM). Excellent communication and interpersonal skills. Strong analytical and problem-solving skills. Preferred Qualifications Related cybersecurity work experience in OT/Industrial Controls Systems (SCADA) environments. Relevant certifications such as CISSP, Security+, or equivalent experience.

We are seeking a Salesforce Security Engineering Lead to strengthen the security posture of our automotive client's multi-org Salesforce ecosystem. This is a high-impact leadership role responsible for driving enterprise-wide security hardening, defining standards, leading vulnerability response efforts, and architecting secure solutions across data, apps, integrations, and identity. You will partner with cybersecurity, cloud, and Salesforce engineering teams across multiple business units to ensure the platform meets the highest levels of security, compliance, and operational excellence. Key Responsibilities: Lead enterprise-wide Salesforce security hardening initiatives across multiple BUs. Own, maintain, and evolve Salesforce security guidelines, checklists, and standards. Build strong stakeholder relationships and influence technical direction with authority. Conduct regular audits and challenge application teams on adherence to security best practices. Architect and implement security controls across authentication/authorization, data access, encryption, sharing/roles, API security, and secure development patterns. Utilize Salesforce Shield, Event Monitoring, Security Health Check, and Security Center to drive improvements. Lead rapid vulnerability remediation using war-room coordination and cross-functional alignment. Develop SIEM integration strategies with Microsoft Sentinel for real-time monitoring and automated responses. Implement protections against Data Loader abuse, bulk extraction threats, and social engineering risks. Evaluate and lead security POCs with vendors including Salesforce Security Center, Varonis, and others. Support secure development with Apex security patterns, SOQL injection prevention, and secure coding practices. Apply cloud engineering knowledge (AWS/Azure/GCP), distributed systems principles, and API security best practices. Automate processes using Python, Bash, or similar scripting languages. Communicate complex security concepts clearly to executives and technical teams. Qualifications 5+ years of hands-on Salesforce experience with deep platform/security architecture expertise. Expert knowledge of Salesforce Shield, Event Monitoring, and platform security tools. Experience leading security initiatives across multiple teams or business units. Strong scripting/automation skills (Python, Bash, etc.). Strong understanding of cloud engineering, distributed systems, and API security. Exceptional communication and leadership presence.

We are seeking a highly skilled Security Engineer with hands-on experience working with Transmit Security's Mosaic SaaS Tool and Flex ID. The ideal candidate will be responsible for designing and implementing seamless and secure identity journeys, leveraging state-of-the-art Passwordless and frictionless authentication capabilities. Key Responsibilities Design and implement identity user journeys using Transmit Security's Mosaic SaaS Tool. Deploy and configure Flex ID to enable passwordless, frictionless identity experiences. Collaborate with security architects, developers, and product teams to integrate authentication flows into web and mobile applications. Ensure robust identity and access management (IAM) implementations using industry best practices. Leverage protocols and standards such as SSO, MFA, OAuth2, OpenID Connect, and SAML to orchestrate secure identity flows. Monitor, troubleshoot, and optimize identity workflows for performance and security. Document technical solutions and provide knowledge transfer to internal teams. Required Qualifications ✅ Proven experience building and optimizing authentication workflows with Transmit Security's Mosaic platform. ✅ Hands-on expertise with Flex ID for enabling passwordless and frictionless identity verification. ✅ Strong understanding of IAM concepts, including SSO, MFA, identity federation, and orchestration. ✅ Demonstrated ability to work in cross-functional teams, solving complex technical problems collaboratively. ✅ Experience with identity protocols: OAuth2, OIDC, SAML, etc. ✅ Strong communication and documentation skills. Preferred Qualifications Experience integrating identity services with CI/CD pipelines or DevOps environments. Familiarity with customer identity and access management (CIAM) and privacy regulations (e.g., GDPR, CCPA). Background in cybersecurity, software engineering, or cloud architecture.

Job Posting Title: Cloud Security Engineer - SRE We are seeking a skilled and motivated Cloud Security Engineer - SRE to join our dynamic team. The ideal candidate will possess a strong technical background in systems administration, cloud computing, and infrastructure as code, with a particular focus on solution engineering/site reliability. This role will involve collaborating with cross-functional teams to enhance our security posture and streamline processes through automation. Technical Skills • Programming and Scripting: Strong proficiency in languages like Python, Go, Bash, or Ruby. SREs often need to write automation scripts and build tooling. • Systems Administration: Deep understanding of operating systems (Linux/Unix), file systems, processes, and system configurations. • Infrastructure as Code (IaC): Experience with IaC tools like Terraform, Ansible, or Chef to manage infrastructure. • Cloud Computing: Knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, including services like EC2, S3, Kubernetes, and serverless functions. • Containers and Orchestration: Expertise in containerization (Docker) and container orchestration (Kubernetes, OpenShift). • Networking: Understanding of networking concepts, including DNS, firewalls, load balancing, and VPNs. • Monitoring and Observability: Experience with monitoring and observability tools like Prometheus, Grafana, Datadog, or New Relic. Ability to set up and maintain monitoring dashboards, alerts, and logs. • Continuous Integration/Continuous Deployment (CI/CD): Familiarity with CI/CD tools like Jenkins, GitLab CI, GitHub Actions, or CircleCI. • A strong understanding of HashiCorp Vault and Terraform will make you stand out. 2. Problem-Solving and Troubleshooting • Incident Management: Ability to manage and respond to incidents, perform root cause analysis, and implement post-mortem reviews. • Automation: Focus on automating repetitive tasks to improve efficiency and reduce human error. • Performance Tuning: Skills in identifying and resolving performance bottlenecks in systems and applications. 3. Collaboration and Communication • Teamwork: Ability to work closely with cross-functional teams, including software engineers, product managers, and DevOps teams. • Documentation: Skill in creating clear and comprehensive documentation for systems, processes, and incident reports. • Communication: Effective communication skills for interacting with stakeholders and explaining technical concepts to non-technical audiences. 4. Reliability and Scalability • Service-Level Objectives (SLOs) and Service-Level Agreements (SLAs): Understanding of setting, monitoring, and maintaining SLOs and SLAs for system reliability. • Scalability: Knowledge of best practices for designing and scaling systems to handle increased loads and demands. • Redundancy and Resilience: Experience in designing systems with redundancy and fault tolerance to minimize downtime. 5. Security and Compliance • Security Best Practices: Understanding of security principles, such as access control, data encryption, and secure coding practices. • Compliance: Familiarity with compliance standards like GDPR, HIPAA, or PCI-DSS, depending on the industry. Minimum Job Qualifications: • Bachelor degree in business or equivalent work experience • 10 years of previous program leadership and/or relevant consulting experience • Knowledge of and demonstrated experience in program management framework, knowledge groups & life cycle • 5+ years' experience in driving large scale data center consolidation efforts • Minimum 5 years' experience with matrix management of cross-functional processes and teams • Proficient with Project Management tools

The Systems and Security Administrator will manage, secure, and optimize the company's IT infrastructure, with a strong focus on Microsoft technologies and cloud security. This role is responsible for maintaining Azure resources, administering Entra ID, and ensuring the reliability and security of enterprise systems and applications. The ideal candidate will have hands-on experience with Azure, Microsoft Defender, Sentinel, M365, and Active Directory in both on-premises and cloud environments. Key Responsibilities Azure and Cloud Administration Manage and maintain Azure resources including computers, networking, and storage. Configure, support, and troubleshoot Azure Enterprise Applications and Azure App Registrations. Monitor performance, optimize Azure costs, and implement best practices for scalability and security. Implement and maintain Azure policies, resource tagging, and automation using PowerShell or other scripting tools. Identity and Access Management Administer Microsoft Entra ID (Azure AD) including user accounts, roles, and access controls. Manage on-premises Active Directory and synchronization with Azure AD. Implement and monitor Conditional Access Policies and Multifactor Authentication (MFA). Maintain identity federation, SSO, and secure application integrations. Security Operations and Compliance Deploy and manage Microsoft Defender for Endpoint, Identity, and Office 365. Support threat detection, response, and prevention using Microsoft Sentinel (SIEM). Conduct threat hunting, log analysis, and root cause investigations for security events. Implement and enforce Data Loss Prevention (DLP), Information Protection, and insider risk policies. Manage certificates, encryption protocols, and secure communications. Participate in security assessments, audits, and Zero Trust initiatives. Systems Administration and Collaboration Tools Support and maintain Microsoft Exchange Online, Teams, SharePoint, and OneDrive. Ensure up time, data protection, and disaster recovery for collaboration platforms. Troubleshoot and resolve system, identity, and application issues. Apply updates, patches, and configurations following best practices. Maintain comprehensive system and security documentation. Qualifications Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or equivalent experience. 3-5 years of experience in system administration and security operations with emphasis on Microsoft environments. Strong knowledge of Azure administration, Entra ID, Active Directory, M365, and Microsoft Defender. Experience with Azure Enterprise Applications, App Registrations, and Sentinel for monitoring and incident response. Familiarity with certificates, encryption, and security compliance frameworks. Proficiency in PowerShell scripting for automation and configuration management. Experience managing hybrid environments (on-premises and cloud). Strong understanding of IT security principles, Zero Trust, and compliance standards. Excellent troubleshooting, analytical, and problem-solving skills. Preferred Certifications Microsoft Certified: Azure Administrator Associate Microsoft Certified: Security Operations Analyst Associate Microsoft 365 Certified: Security Administrator Associate CompTIA Security+ or CISSP (a plus)

Hiring: Cybersecurity Engineer Duration: 12 months contract About the Role We are seeking an experienced Lead Cybersecurity Engineer to join our dynamic team and drive secure-by-design principles across our cloud and application environments. In this role, you will collaborate closely with development teams to identify, assess, and remediate security vulnerabilities, ensuring robust protection across our AWS and Azure ecosystems. Key Responsibilities Lead Security by Design and integrate security throughout the SDLC. Perform security defect management - analyze, validate, and consult on issues found via tools like CodeQL, Rapid7, penetration tests, and bug bounty programs. Provide engineering consulting to developers, architects, and product teams on secure design and implementation best practices. Manage tool enablement and monitoring for automated vulnerability detection tools (CodeQL, Rapid7, etc.). Coordinate security testing and onboarding, including penetration testing and assurance assessments. Technical Skills Required: Application Security (OWASP, CWE/CVE, SANS 25) Enterprise Security Architecture, Threat Modeling, and Risk Analysis SDLC, DevSecOps, and API Security Cloud Security (AWS, Azure) SCA / SAST / DAST tools Hands-on development experience in Java, Python, .NET, or JavaScript Automation and scripting for security processes Security certifications preferred (CISSP, CCSP, GWAPT, GWEB, AWS Certified Security, etc.) Preferred: Web Services Security CSSLP, GISCP, or other advanced security certifications Experience integrating security technologies in enterprise environments #Cybersecurity #AWS #DevOps #Python #SDLC #IaC #SAST #DAST #CISSP #CCSP

SUMMARY: The Cybersecurity Analyst is responsible for monitoring, documenting, and supporting the cybersecurity posture of the organizations's information technology systems. This role involves reviewing alerts, assisting in the maintenance of cybersecurity configurations, assessing weaknesses, vulnerabilities and escalating potential vulnerabilities or incidents to senior team members. The Cybersecurity Analyst also contributes to the documentation of cybersecurity events and helps ensure compliance with established cybersecurity policies and procedures. This role uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purpose of mitigating threats. ESSENTIAL DUTIES AND RESPONSIBILITIES: Provide timely detection, identification, and alerting on potential attacks/intrusions, anomalous activities, and misuse activities and distinguish these incidents and events from benign activities Aid in the protection of the company's network and sensitive information using cyber defense tools for continual monitoring and analysis of systems to identify malicious activity including: Identifying cyber threat tactics and methods Identifying and correcting gaps in the company's cybersecurity posture Testing information systems for vulnerabilities Documenting and escalating incidents Analyzing network alerts from various sources within the enterprise and determining possible causes of such alerts Identifying and analyzing anomalies in network traffic or log data Monitoring risks and implementing cybersecurity systems to prevent attacks or breaches Responding to urgent cybersecurity events and incidents Reviewing events and incidents to understand root causes Monitoring reputation for hostile content directed towards organizational or partner interests Recommend procedures and/or changes to procedures necessary for good cyber hygiene Improve the overall cybersecurity posture of the organization's systems Determine the operational and safety impacts of cybersecurity lapses Prepare threat and target briefings and situational updates Monitor threat activities and prepare threat activity reports Manage and report on adversarial activities EDUCATION AND REQUIRED EXPERIENCE: A degree in business or technology is preferred (associate's or bachelors) 3-5 years of experience in IT security Experience with SIEM, intrusion detection (IDS) and intrusion prevention (IPS) systems preferred Basic scripting (Python, PowerShell, Bash) Experience with vulnerability management Experience with network packet analysis Experience with log analysis and log management Experience with Cloud Security Management interfaces Experience with enterprise authentication systems, such as directory services or identity management platforms Experience with Incident handling and response preferred Working knowledge or core cybersecurity concepts such as the CIA triad, encryption algorithms, and risk management processes Working knowledge of computer networking protocols including how traffic flows within a network Working knowledge of cybersecurity laws and regulations Working knowledge of cybersecurity threats, threat characteristics, and vulnerabilities, and threat hunting Ability to prioritize security requests according to urgency and established criteria Ability to organize information and alerts from multiple sources to create a holistic picture of cybersecurity threats General understanding of security frameworks (NIST, MITRE Attack) preferred Familiarity with the variations, similarities, and differences between IT and OT network environments Experience working on project teams and project management is preferred Intermediate understanding of Threat Intelligence research and methodologies Familiarity with adversarial TTPs SKILLS, QUALIFICATIONS, AND OTHER REQUIREMENTS: Demonstrate excellent communication (written, verbal and listening) and interpersonal skills Superior organizational skills and attention to detail Must possess a proven ability to deliver high-quality customer service Ability to triage and prioritize security related data quickly Ability to respond to work after hours and weekends as needed PHYSICAL DEMANDS: Requires sufficient personal mobility and physical reflexes, to permit the employee to function in a general office environment and accomplish tasks and duties as outlined above. WORK ENVIRONMENT: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. The noise level in the work environment is usually quiet.

One of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position. This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position. Job Description: Perform cloud assessments, web application penetration testing and mobile application testing Carry out reviews of security, network, applications, and cloud environments Plan/Design security activities with automation as the primary driver to align with the security strategy Ensure alignment of security controls, supporting services and related policies with regulations and industry-standard best practices Assist management with the improvement of policy/procedure to support Cloud Security Engineering Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends Experience required: Penetration Testing experience within Network, Application, Web Application or Mobile Applications Experience cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong experience with custom scripting (python, PowerShell, bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys etc. Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Experience with using ServiceNow is a plus. We look forward to receiving your application!

Privileged Access Management (PAM) Architect Westlake, TX Responsibilities: 10+ years of experience in defining and delivering cybersecurity architecture, strategies and solutions with demonstrated experience in the financial services industry or other highly regulated sectors. Bachelor's degree in Information Security, Computer Science, or a related field; a Master's degree is preferred. Strong industry experience in architecting and designing PAM solutions and deployment across the enterprise. Deep technical understanding of PAM capabilities, controls and security technologies in areas related to identity and access management to address privilege-based risk. Familiarity with regulatory requirements related to PAM, such as PCI DSS, HIPAA, or GDPR. Expertise with build vs. buy solution options. Working knowledge and experience with Cloud Architectures and the ability to address the security considerations of secure cloud computing including IAM with enterprise services, SSDLC, data protection, cryptography and key management. Demonstrate leadership and consensus building skills with which you influence decisions and engage across Fidelity and at all levels of the organization Exceptional communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) are highly desirable. They need a minimum of 10 years of Architecture experience, and someone who has recent experience working with Secrets Management (Hashi Vault) Looking for a true Architect, someone who can look at problem, how they can address the problem, and map it out. Someone is an Agent of Change and Patience. They'll be dealing with some high level info within Fidelity, so someone who is open minded, and non emotional when debating thoughts and opinions is key.

Chief Information Security Officer Chief Information Security Officer The Chief, Information Security Officer (CISO) is a senior-level leader responsible for establishing and maintaining the enterprise vision, strategy, and program to protect information assets and technologies vital in advancing the institution's commitment to transforming lives and communities through higher education. The CISO ensures the organization's academic and administrative resources are secured against breaches and are in full compliance with applicable regulations. This is an on-campus, in-person position. Required Knowledge, Skills, and Abilities Must demonstrate strong interpersonal and verbal communication skills, with the ability to communicate broadly across the organization and develop and maintain effective relationships with a wide range of constituencies. Must also demonstrate strong written communication skills. Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals. Must possess strong problem-solving skills to effectively influence decision-making in key negotiations. Ability to perform hands-on, operational work when necessary. Ability to maintain the security or integrity of the critical infrastructure of the institution. Qualifications Minimum Qualifications Bachelor's degree and additional education in Information Security. Prior managerial experience in Information Technology and service context. Professional IT security management certification (e.g., CISSP, CISM). 10+ years' experience in information security and/or IT risk management, with focus on security, performance, and reliability. Experience running a security program in a complex environment. Strong understanding of security protocols and operations. Knowledge of current IT risks and experience implementing security solutions. Experience with NIST 800-53 Framework implementation and compliance, and familiarity with Texas public sector cybersecurity requirements, including TX-RAMP. EO Specific Language (IT specific) - Ability to maintain the security or integrity of the critical infrastructure of the organization. Bilingual or multilingual preferred. ***Will be subject to a criminal background check. Some positions may be subject to a fingerprint check.*** Key Responsibilities IT Leadership: Collaborate with peers and key constituents, contribute directly to the organization's mission, and set the IT and IT Security direction. IT Risk Management: Develop, implement, and monitor a comprehensive information security and IT risk management program for the integrity, confidentiality, and availability of organizational assets. Conduct architecture reviews, risk assessments, business impact analyses, and develop risk management plans to anticipate and neutralize threats. Policies and Procedures: Establish and maintain security policies, standards, and procedures in line with best practices and regulatory requirements, including the NIST 800-53 Framework (Texas Cybersecurity Framework). Security Architecture and Operations: Lead strategic security planning with IT leaders, contributing to infrastructure design, application development, and disaster recovery. Establish and operationalize a Security Operations Center (SOC) for 24/7 monitoring and threat detection. Advise and assist with network and endpoint security, cloud strategy, vulnerability scanning, and incident response. Compliance and Audit: Ensure compliance with FERPA, HIPAA, GLB, PCI, and other regulations. Respond to audits and oversee remediation efforts. Vendor and Relationship Management: Manage security aspects of vendor relationships, assist with vendor compliance, and build relationships with internal and external partners, professional organizations, and agencies. Training: Develop and implement security training for faculty and staff. Incident Response and Forensics: Oversee incident response planning and investigations and assist with disciplinary and legal matters related to breaches. Governance and Strategic Initiatives: Participate in governance committees and collaborate across departments to embed data security into organizational operations. Strategic Security Roadmap: Develop and maintain a security roadmap that balances protection and recovery strategies, ensuring business continuity and resilience. Insurance and Risk Transfer: Work with Risk Management to ensure cyber insurance procurement, maintenance, and claims response. Exercises full discretion and decision-making authority in the recruitment, selection, hiring, mentoring, coaching, development & termination of staff, ensuring alignment with organizational goals, budgetary constraints, and workforce planning strategies. Drive high performance by administering the performance management process timely, setting clear expectations, conducting performance evaluations, and implementing initiatives that enhance employee engagement, motivation, and retention. Completes required Professional Development training hours as well as 16 additional leadership development hours per academic year. The intent of this job description is to provide a representative summary of the major duties and responsibilities performed by incumbents of this job and shall not be construed as a declaration of the total of the specific duties and responsibilities of any particular position. Incumbents may be directed to perform job-related tasks other than those specifically presented in this description. Position requires regular and predictable attendance. Physical Requirements Normal physical job functions performed within a standard office environment. Reasonable accommodation may be made for individuals with physical challenges to perform the essential duties and responsibilities.

Our client is growing a highly trusted Cybersecurity function with executive level support and the freedom to implement advanced solutions. This team plays a critical role in protecting company systems and data, minimizing risk, and staying ahead of evolving threats. If you're looking to escape repetitive security work and focus on strategy, architecture, and innovation…this is your opportunity. You'll be part of a growing cybersecurity architecture team with visibility across every part of the business, from financial services and data platforms to HR systems and customer facing applications. What You'll Be Doing Partner with application, platform, and network teams to embed security directly into design and delivery. Review IaC, APIs, and cloud architectures; identify risks and define secure patterns that teams can actually build against. Architect guardrails across application, cloud, and network layers-secure SDLC, WAF/CDN, and multi-cloud landing zones. Translate complex technical risks into clear, actionable recommendations for engineers and business stakeholders. Drive adoption of cloud-native controls (AWS/Azure) and logging/detection improvements that make security measurable. Collaborate with peers across Cyber, Engineering, and DevOps to strengthen patterns and scale secure delivery. What You Bring to the Table ~10+ years in IT or cybersecurity, including 3-5 years focused on AppSec or Cloud Security architecture/design. Recent hands-on experience with one or more: Terraform/CloudFormation, WAF/CDN tuning, detection engineering, or cloud-native controls. Deep understanding of application security principles, service-to-service auth, and threat modeling. Solid networking fundamentals (DNS, routing, hybrid connectivity, L7/WAF). Clear, structured communicator able to hold your own with delivery and product teams. Experience working in or with highly regulated environments (financial services a plus). Preferred Certification Certifications such as CISSP, AWS Security Specialty, or CCSK. Exposure to SIEM/SOAR tooling (Sentinel, Splunk, GuardDuty, XSOAR). Familiarity with identity modernization (SSO, OIDC, PAM) and data protection (KMS, key rotation). What You Can Expect Join a builder first culture that values practical solutions over PowerPoints. Work as part of a high-visibility architecture team influencing systems across the enterprise-data, finance, HCM, and customer facing platforms. Career progression along an individual contributor track Hybrid flexibility (3 days on site in Irving). Comprehensive benefits from day one-401(k), medical, 12 weeks paid parental leave, and strong professional development support.

Network Engineer (Encryption/Security)- Mainframe Systems Plano, TX and Tampa, FL- Nearby candidates only W2 Candidates Infrastructure Developer within the Mainframe Network Space - Focus on security/encryption This is basically security around the network Should be very strong in mainframe space, not looking for a router person - Should be able to analyze and understand crypto data - Should be good with understanding of encryption Should be very strong communication and ability to lead/coordinate project - This is a must have Will be running upgrades in mainframe space Experience with mainframe modernization and migration projects. • Understanding of ICSF, Network Security on the Mainframe, and zERT. • Knowledge of regulatory frameworks impacting cryptography (NIST 800-53, ISO). • Certifications in security or mainframe technologies (CISSP, IBM z/OS Mainframe Practitioner, Marist z/OS Certificate) • Expertise in mainframe network products and protocols (z/OS, VTAM, TCP/IP, APPN, IPSEC). • Demonstrated experience with cryptographic protocols, including Post-Quantum Cryptography and quantum-safe algorithms (lattice-based, hash-based, code-based). • Proficiency in scripting and automation (REXX, JCL, Python) is a huge plus, not must have

The Senior InfoSec GRC Analyst is responsible for driving the development, implementation, communication, and maintenance of technology policies, standards, and procedures that are aligned to industry standards and regulatory requirements. This role ensures that technology processes adhere to regulatory requirements, manage risks effectively, and establish strong governance practices. The position also develops and implements controls, monitors compliance, and supports risk management activities. Responsibilities: Lead the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines. Continuously evaluate and update cybersecurity and IT policies to ensure they remain current and effective. Ensure policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Collaborate with cross-functional teams, including IT, legal, compliance, and business stakeholders, to ensure cybersecurity policies align with organizational objectives. Translate complex information and documentation into clear and simple concepts for end-users. Provide specialized expertise to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommend actionable solutions to mitigate risks and strengthen overall security posture. Stay informed about the latest cybersecurity threats, trends, and best practices. Maintain accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses. Benchmark policies against industry standards and best practices. Develop and implement governance frameworks for cybersecurity policy management. Monitor key performance indicators, conduct gap analyses and risk assessments, and implement frameworks as needed. Test and monitor the effectiveness of controls. Establish feedback loops and analyze metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats. Lead and support internal and external audits and assessments of cybersecurity policies and practices. Ensure identified audit and assessment findings and actions are tracked to closure. Maintain comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicate policy requirements and updates to relevant stakeholders. Identify opportunities for innovation and improvement in cybersecurity policies and practices. Propose mitigation strategies and verify the effectiveness of remediation plans. Requirements: Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field (preferred). Minimum of six (6)+ years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field. Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust). Proficiency with data analysis and reporting tools (e.g., Excel, Power BI). Relevant certifications such as CISM and/or CISA (highly desirable). Strong knowledge of regulatory frameworks (NIST, FFIEC, GLBA, NYDFS, SOX, PCI-DSS). Understanding of risk management concepts, control frameworks, and compliance auditing. Ability to provide consultation and recommendations to management. Strong communication skills with the ability to present effectively to both technical and non-technical audiences.

The IT Network/Security Analyst is responsible for safeguarding and supporting the organization's IT infrastructure by blending network operations expertise with cybersecurity best practices. This hybrid role ensures both the reliability of network services and the protection of data across enterprise systems and cloud services. The analyst will monitor, analyze, and respond to incidents while maintaining the performance, availability, and security of network systems in a dynamic threat landscape. Duties and Responsibilities: Network Operations & Monitoring Monitor and support daily network operations, ensuring uptime, availability, and performance across routers, switches, firewalls, VPN's, and other network components. Continuously monitor network traffic and performance metrics, using NMS (Network Management Systems), IDS/IPS, and SIEM tools to identify anomalies, outages, or threats. Collaborate with customers to optimize configurations and resolve connectivity issues impacting business operations. Travel as required (up to 25%) to support field locations. Incident Response & Troubleshooting Investigate, contain, and remediate cybersecurity incidents involving network components (e.g., DDoS attacks, unauthorized access, malware propagation). Perform root cause analysis on network-related issues and security events to reduce recurrence and improve resilience. Participate in on-call rotations for critical incident response. Network Security Administration Configure and maintain network devices i.e. firewalls, routers, switches, access points with an emphasis on security hardening and policy enforcement. Implement and support network segmentation, access controls, and VPN technologies to protect sensitive data. Oversee security patching and firmware upgrades across network infrastructure. Vulnerability & Compliance Management Conduct vulnerability assessments and penetration testing on network systems, tracking and remediating identified weaknesses. Support compliance with frameworks such as NIST or CIS as they apply to both network and security operations. Assist with periodic audits, reporting findings, and driving corrective actions. Threat Intelligence & Reporting Stay up to date on evolving attack vectors, especially those targeting enterprise networks. Leverage threat intelligence to proactively adjust network defenses. Produce operational dashboards and executive-level reports detailing network health, incidents, and security posture. Collaboration & Training Work closely with IT infrastructure, Security Architect, and Application teams to integrate security into network design and operations. Provide guidance and training to IT staff and end-users on secure network practices, phishing awareness, and incident reporting. Knowledge, skills, and abilities: Technical Knowledge Strong foundation in networking protocols (TCP/IP, BGP, OSPF, VLANs, DNS, DHCP) and enterprise network architectures. Hands-on experience with network monitoring and analysis tools (e.g., Wireshark, SolarWinds, Nmap, Nessus). Familiarity with security technologies such as SIEM (Splunk, ELK) a plus. Hands-on experience with enterprise network firewalls and network equipment. Experience with enterprise endpoint protection. Understanding of threat detection, DDoS mitigation, VPNs, and secure remote access. Familiarity of compliance requirements Sarbanes-Oxley Act of 2002 (SOX) as they apply to both network and security operations. Skills Proficiency in troubleshooting complex network and security issues in enterprise environments. Strong analytical mindset with the ability to distinguish between performance-related issues and security threats. Clear communication skills for cross-team collaboration and reporting to both technical and non-technical audiences. Effective multitasking and prioritization in 24/7 operations environments. Abilities Ability to balance proactive network performance management with rapid cyber threat response. Commitment to continuous learning in both network operations and cybersecurity trends. Adaptability to shifting operational demands and evolving attack landscapes. Strong teamwork skills with the discretion to handle sensitive information responsibly. Education and Experience Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field (or equivalent practical experience) preferred. 3-5 years of combined experience in network operations and cybersecurity, with at least 2 years in a security-focused network role preferred. Relevant certifications highly desirable, such as: Network-focused: CCNA, CCNP, CompTIA Network+ Security-focused: CISSP, CompTIA Security+, CEH, GIAC (GCIA, GCIH) Equal Opportunity Employer Prospective employees will receive consideration without discrimination because of race, color, religion, marital status, sex (including pregnancy, gender identity, and sexual orientation), national origin, age, veteran status, disability, or genetic information.

We are seeking an experienced Senior Vulnerability Management Engineer to support the organization's vulnerability management program and strengthen our overall security posture. The successful candidate will be responsible for configuring the platforms and identifying, assessing, prioritizing and coordinating the remediation of security vulnerabilities across our enterprise infrastructure. Expertise with vulnerability management platforms - such as Nucleus Security, Rapid7 InsightVM, Microsoft Defender, SentinelOne, ServiceNow, BitSight, or similar solutions is essential. This role requires collaboration with cross-functional teams to effectively reduce risk exposure. Qualifications: Vulnerability Management Experience: Minimum of five years' experience managing vulnerabilities within complex IT environments (cloud, on-premises, hybrid). Comprehensive knowledge of operating systems (Windows, Linux, Unix), networking protocols, cloud platforms (AWS, Azure, GCP). Familiarity with web application vulnerabilities (OWASP Top 10) and application security testing. Proficiency with Security Tools: Advanced expertise in leading vulnerability management and security platforms, such as Nucleus Security, Rapid7 InsightVM, Microsoft Defender for Endpoint, ServiceNow, BitSight, or equivalent. Executive Reporting: Ability to prepare and deliver clear, actionable reports for executive audiences, translating technical findings into business risks and impacts. Compliance & Risk Management: Strong understanding of regulatory frameworks and experience implementing controls to meet compliance requirements. Process Improvement & Automation: Demonstrated skill in designing, optimizing, and implementing automated workflows for vulnerability tracking, reporting, and remediation. Analytical Thinking: Exceptional attention to detail, with a track record of leveraging data analysis to drive security decisions and process improvements. Communication & Collaboration: Excellent verbal and written communication skills; ability to engage stakeholders at all levels and facilitate training or awareness initiatives as needed. Preferred Skills: Cloud Security Expertise: Familiarity with cloud security best practices and emerging threats. Project Management: Experience managing complex security projects, including tool migrations, integrations, and process enhancements. Certifications: Relevant industry certifications (e.g., CompTIA Security+, CISSP, CISM, or equivalent) are desirable. Regex (Regular Expressions): Experience using Regex for building automation rules, data parsing, and workflow customization within vulnerability management platforms. SQL: Basic understanding of SQL for querying, analyzing, and manipulating data as part of reporting or automation tasks. Purdue Network Model: Familiarity with the Purdue Enterprise Reference Architecture (PERA) or Purdue Model for Industrial Control System (ICS) network segmentation and security. Problem-Solving: Creative approach to addressing complex security challenges. Attention to Detail: Precise identification and documentation of security vulnerabilities. Security Operations: Active participation in incident response activities during exploitation events and coordination with threat intelligence teams to monitor emerging vulnerabilities and threats. Continuous Learning: Commitment to staying current with evolving threat landscapes and security technologies.

Assist with the day-to-day operation and maintenance of network infrastructure (LAN, WAN, WLAN, Business Internet) and voice communications systems. Assist in continuous improvement efforts of existing solutions and provide support and expertise to the implementation of new solutions. Serve as an escalation point for the help desk and desktop support team as needed. Support IT infrastructure projects as needed. Essential Functions & Duties/Responsibilities - Support business critical functions by achieving the highest possible availability of infrastructure at all times - Provide top tier first-class customer service - Provide both operational and project support within IT in order to achieve departmental and business goals - Responsible for day-to-day monitoring and support of the corporate computing network - Responsible for monitoring and support of corporate firewalls - Administer and maintain enterprise NAC solution - Maintain network monitoring solutions - Support required infrastructure changes during and after normal business hours as needed - Support audio visual and collaboration solutions - Troubleshoot and resolve network related incidents - Work with other IT teams to implement projects as needed in a timely manner - Adhere to all IT policies - Other duties as assigned Minimum Qualifications/Work Experience - Minimum of 3 years? experience supporting computer and network systems - Network certification (CCNA/JNCIA or greater)

Company: L3 Harris Duration: 6 month contract to hire Clearance: minimum secret Required Skills & Experience • 5+ years of experience as a Network Engineer • Minimum of a Secret clearance • Experience as an Army Warrant Officer with Network Engineering experience • Security + or CCNA certification • Experience with WAN administration • Experience working with ISPs • Intermediate network engineering experience including IP addressing, switching and routing, VLANs, VPNs, video teleconferencing, VoIP telephony, and LANs/WANs • Configuration, integration, and troubleshooting of routers, switches, voice, and video teleconferencing equipment Nice to Have Skills & Experience • DoD Air Force (“DODAF”) knowledge Job Description The Senior Specialist, Systems Engineering - Network Engineer (NE) performs technical planning, system integration, verification, and validation, and troubleshooting for total systems and/or subsystems. The Sr. Specialist NE is part of a team that supports the requirements, design, development, test, and integration of complex, specialized hardware/software systems installed on ground and airborne communication platforms. This position includes an expectation of 10 to 15% shift, on-call, or weekend work.

IT Systems & Network Engineer A Fort Worth-based private investment firm is seeking a highly technical IT Systems & Network Engineer with strong communication skills to manage and evolve our IT infrastructure. This role blends hands-on systems administration, network engineering, and strategic problem solving, and requires the ability to clearly convey technical concepts to both technical and non-technical stakeholders. You'll be joining a small, tight-knit team that values initiative, ownership, and creative problem-solving. We're looking for someone who's not just technically sharp, but also eager to contribute to a fast-paced, high-impact environment. Responsibilities include: Network & Systems Administration: Design, maintain, and troubleshoot LAN/WAN, VPN, wireless, and Windows-based server environments. Automation & Scripting: Develop scripts to automate routine tasks and improve system efficiency. Security & Compliance: Manage endpoint protection, disaster recovery, backups, and access controls. Collaboration Tools & Support: Administer email systems, videoconferencing, and media production tools. Infrastructure Projects: Lead initiatives involving storage, virtualization, and office/home automation. Emerging Technologies: Explore and support the integration of AI tools and services into internal workflows and infrastructure. Technology Stack We operate in a Windows-based environment and utilize a broad range of technologies, including: Cloud & Collaboration: Microsoft Azure, Office 365, SharePoint Infrastructure & Virtualization: Windows Server, VMWare, Remote Desktop Services Security & Management: Intune, Active Directory Group Policy, Patch Management, Systems Auditing, CrowdStrike Networking & Storage: Cisco, EMC, Azure files Backup & Recovery: BackExec, Azure backups Scripting & Automation: PowerShell Applications & Tools: SQL Server, Bloomberg, Microsoft stack applications AI & Machine Learning: Azure OpenAI, Sonnet, and other models under active evaluation Work Schedule & On-Call Rotation This is a full-time, in-office position based in Fort Worth, requiring a commitment of 50 hours per week. The role includes participation in a rotating On-Call schedule to ensure coverage for critical systems and infrastructure outside of regular business hours. Candidates should be flexible and prepared to respond to urgent issues as needed. The ideal candidate will: Be offered up to 20% over current pay or current offers Hold a bachelor's degree with a 3.25+ GPA from a top college or university Have 0-5 years of experience Be flexible regarding work hours and availability Apply technical knowledge to solve unique problems Communicate clearly and effectively Deliver high-quality results under pressure Commit to the position for at least two years If you have any questions please reach out to *************************.