Security engineer jobs in Urban Honolulu, HI - 122 jobs

# Cyber Security Engineer - Senior# Cyber Security Engineer - SeniorLocationFt. Shafter, Hawaii### DescriptionThe Cyber Security Engineer - Senior is responsible for supporting the Risk Management Framework Body of Evidence (BoE) creation, design, development, and implementation of all activities related to the 9th Mission Support Command's (9th MSC) information technology enterprise systems. The senior engineer ensures protection of information systems from unauthorized access and to protect the data within systems. The senior engineer will support the 9th MSC's Cyber Security/CND program through active implementation of DoD, Cyber Security and Theater Cyber Security Program directives and policies. The senior engineer is responsible for implementation of a patch management and vulnerability mitigation program to ensure compliance with current Information Assurance Vulnerability Alert (IAVA) directives. The senior engineer should be familiar with a diverse range of cybersecurity areas and knowledgeable in Information Security technology and processes. The senior engineer is a critical part of the team, in that this member ensures the design and implementation of the Information Technology are in alignment to real-world cybersecurity operations. This position guarantees techniques and technology used throughout the environment are in alignment with current and future cyber capabilities.Roles and Responsibilities:· Managing, maintaining, and securing information systems· System security measures· Requirements analysis· Performing gap analyses· Supporting system architecture design and development· Developing system, data flow, network, security, and operational diagrams· Writing, preparing, evaluating and supporting documentation development· Provide relevant expertise on Army PM-DCO cybersecurity efforts in support of the ArmyRequired Skills:· Current and Valid DOD 8140 IAM Level III Certification with required CISSP, CISM, GSLC, or CCISO certification number on resume· 10+ Years of Experience in Cybersecurity Management Roles required to meet IAM Level III· Education: BA/BS 12+ years or MA/MS 10+ years· Secret Clearance, Top Secret Eligible· Experience as a Certificate Authority (manage security credentials, private/public keys, etc.), IASO, IANO, IANM, etc.· Completed RMF/eMASS training courses· Extensive working knowledge with NIST, RMF Assessment and Authorization (A&A), eMASS, and Enterprise Systems Accreditation requirements/processes/controls/artifacts.· Extensive working knowledge of IAVA compliance (Retina), STIG enforcement and auditing (DISA Gold Disk), and other IA tools (ACAS, Log Collector, ESS, etc.)· Extensive participation/experience in a successful Cybersecurity Operational Readiness Assessment (CORA)· Able to work on-site at Fort Shafter Flats, Hawaii· Lead Cybersecurity Policy, Plans, and Execution with minimal guidance Preferred Skills:· Customer service mindset with excellent oral and written communication skills· Demonstrable experience with security software and devices· Ability to multitask and rapidly shuffle priorities· Extensive knowledge of USCYBERCOM and U.S. Army Cyber Command policy, plans, and directives· Familiar with Networking fundamentals (VLANs, firewalls, routing)· Understanding of technology used for virtualized environments, container platforms, and cloud capabilities, ie: Kubernetes, OpenStack, and VMware ESXiBenefits: • 401(k) • 401(k) matching • Dental insurance • Health insurance • Paid time off • Vision insurance Schedule: • 8 hour shift • Monday to Friday • On call STEELGATE LLC is a Service-Disabled, Veteran-Owned Small Business (SDVOSB) that prides itself in hiring top-level Subject Matter Experts (SME's) proven to exceed deliverable expectations. STEELGATE LLC is focused on solving the hard problems facing our government and commercial clients. Our success lies in blending together relevant domain/functional knowledge with deep expertise in Information Technology, Cybersecurity, Defensive Cyber Operations, cloud-based DevSecOps, Data Analytics & AI, Acquisition and Acquisition Management, and more. STEELGATE LLC has a positive, inclusive workplace environment where all team members and partners work towards mutual success. We have established a reliable reach-back program whereas all SMEs are available to support, advise and directly complete mission deliverables when necessary. STEELGATE LLC has a worldwide reputation as a valued and trustworthy partner. Our can-do attitude and willingness to support any mission requirement sets us apart from other small business organizations. Find out more about STEELGATE LLC @ *********************** are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. #J-18808-Ljbffr

Posted Tuesday, September 2, 2025 at 4:00 PM Hawaii State FCU is looking for hardworking individuals who want a great work-life balance, and a great work environment. -Voted Hawaii's Best Places to Work 2024 -Voted Hawaii's Best - Best Financial Credit Union 2024 (Star Advertiser) Are you ready to join a dynamic team that values collaboration, growth, and making a positive impact in our community? Look no further than Hawaii State Federal Credit Union (HSFCU)! We're more than just a financial institution; we're a family that believes in being “Always Right By You.” Overview Hawaii State Federal Credit Union is committed to enriching lives by building strong relationships within the community. As an employee, you will be part of a team that values trust, encouragement, and the holistic experience of working together. Hawaii State Federal Credit Union (HSFCU) offers a dynamic and supportive work environment where employees can thrive both personally and professionally. Position Summary Responsible for the development, testing, and maintenance of programs within the credit union's in-house supported systems such as Data Warehouse, Document Management, Data Analytics and Robotics Process Automation. Responsibilities include assisting the IT Solutions Department Manager and Data Administrator with simple to moderately complex data dictionary and database maintenance functions as well as simple to moderately complex requirements gathering for the development of extracts, reports, scripts, ingestion processes and dashboards. This is a key position to ensure that the credit union has accurate and consistent data in their repositories and in their extracts and reports. This position will also be responsible for scoping, implementing and maintaining individual-level technical solutions with minimal guidance, as well as to manage simple to moderately complex corporate and departmental projects and assist with vendor management. Qualifications/Experience At least 3 years of experience in administrating, supporting, and maintaining enterprise platforms. At least 1 year of enterprise IT project management experience. Intermediate knowledge of Microsoft SQL, Oracle, or other database software. Intermediate knowledge of SDLC processes and best practices for managing software releases. Strong oral and written communication skills. Intermediate proficiency in using Microsoft Office suite products (Word, Excel, PowerPoint, Outlook). Able to perform intermediate tasks such as creating complex documents, using advanced spreadsheet functions, and designing professional presentations. Ability to apply intermediate logical or scientific thinking to define problems, collect data, establish facts, and draw conclusions. Ability to interpret intermediate technical instructions and deal with multiple variables. Ability to compute intermediate mathematical functions such as discount, interest, profit and loss, commission markup and selling price, ratio and proportion, and percentage. Ability to work under pressure and meet deadlines. High degree of adaptability. Solid organizational abilities and attention to detail. Salary Range Competitive Compensation: HSFCU offers competitive pay, merit increases, and incentives. Health Coverage: Comprehensive medical and dental coverage, with 100% paid single coverage for full-time employees. Paid Time Off: Enjoy 13 paid annual holidays and up to 29 PTO days. Retirement Savings: Contribute to a 401(k) plan with up to 10% employer contributions. Transportation Subsidy: On-site parking at a small cost, up to $100 parking subsidy, or 100% bus pass reimbursement. Health & Wellness: Access to wellness fairs, flu shot clinics, and on-site fitness centers. Additional Benefits: Flexible spending plans, credit union discounts, life, accident, and disability insurance. Growth Opportunities: HSFCU invests in employee development through in-person and online training programs, workshops, career development assistance, and tuition assistance. Employees are encouraged to further their education and unlock new opportunities. Work Environment: HSFCU's modern headquarters prioritize a balance between wellness and productivity, offering a variety of amenities. The culture is inclusive, with a focus on teamwork and community, often described as an 'ohana' or family atmosphere. Employee Testimonials: Employees appreciate the supportive environment where everyone's voice is heard and valued. The credit union has been recognized as one of Hawaii's best places to work for over 12 years. #J-18808-Ljbffr

Xcelligen Inc is hiring a Network Engineer (CCNP) is responsible for designing, implementing, maintaining, and optimizing enterprise network infrastructures to ensure high availability, performance, and security. Leveraging advanced knowledge validated by the Cisco Certified Network Professional (CCNP) certification, this role plays a key part in supporting mission-critical network operations and enabling seamless connectivity across the organization. Location: Honolulu, HI Work Authorization: U.S. Citizens ONLY due to legal or government contract requirements. Key Responsibilities Design, implement, and support scalable LAN, WAN, WLAN, and data center network architectures. Configure, troubleshoot, and maintain Cisco routers, switches, firewalls, wireless controllers, and related network appliances. Monitor network performance, identify bottlenecks, and optimize routing, switching, and overall infrastructure efficiency. Perform advanced troubleshooting using tools such as packet captures, SNMP monitoring, NetFlow, and syslog analysis. Manage routing protocols including OSPF, EIGRP, BGP, and MPLS to ensure efficient, redundant connectivity. Implement and maintain network security measures such as ACLs, VPNs, firewall policies, segmentation, and identity-based security controls. Support Voice over IP (VoIP), QoS configurations, and collaboration technologies. Collaborate with cross-functional teams to support network requirements for applications, cloud services, and business initiatives. Lead or assist in network upgrades, migrations, hardware refreshes, and infrastructure modernization projects. Maintain detailed network documentation, diagrams, and operational runbooks. Participate in on-call rotations to support 24/7 network availability and respond to critical incidents. Ensure compliance with industry best practices, internal standards, and regulatory requirements. Required Qualifications Active Cisco Certified Network Professional (CCNP) certification (Enterprise, Security, Collaboration, Data Center, or equivalent track). 3-7+ years of hands-on experience in network engineering or related roles. Strong understanding of TCP/IP, subnetting, routing, switching, VLANs, STP, NAT, DHCP, DNS, and VPN technologies. Proficient with Cisco IOS/XE, NX-OS, and common network management tools. Preferred Skills Experience with firewalls (Cisco ASA/FTD, Palo Alto, Fortinet, etc.). Knowledge of software-defined networking (SDN) and automation tools (Python, Ansible, Cisco DNA Center). Familiarity with cloud networking (AWS, Azure, GCP). Experience in high-availability environments, disaster recovery planning, and network capacity management. Strong analytical, documentation, and communication skills.

The Instagram Security Ecosystems team is seeking a product-focused security engineer interesting in enabling Instagram product teams to develop features with a focus on security and user safety. You will be relied upon to directly work with Instagram engineers, hardening both product features and our protective frameworks that make life harder for bad actors on the Instagram platform. **Required Skills:** Product Security Engineer, Instagram Responsibilities: 1. Threat Modeling and Security Architecture: Work directly with product managers and technical leads on threat models and security architecture for novel Instagram features or products 2. Security Reviews: Perform manual design and implementation reviews of web, mobile, and native code 3. Developer Guidance: Provide guidance and education to developers that help prevent the authoring of vulnerabilities 4. Automated Analysis and Secure Frameworks: Work with other security teams to improve Instagram's static and dynamic analysis and frameworks to scale coverage 5. Bug Bounty: Help provide technical guidance to our world class bug bounty program and independent security researchers 6. Industry Impact: Push the industry forward through conference talks and open source projects to contribute broadly to security for the world **Minimum Qualifications:** Minimum Qualifications: 7. B.S. or M.S. in Computer Science, Cybersecurity, or related field, or equivalent experience 8. 8+ years of experience finding vulnerabilities in interpreted languages (Python, PHP) 9. Extensive, proven experience in threat modeling and secure systems design 10. Experience with exploiting common security vulnerabilities **Preferred Qualifications:** Preferred Qualifications: 11. Product software engineering or product management experience 12. Experience in security consulting or other leadership-facing security advisory roles 13. Familiarity with cybersecurity investigations, abuse operations, and/or security incident response 14. Contributions to the security community (public research, blogging, presentations, bug bounty, etc.) **Public Compensation:** $184,000/year to $257,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Job Purpose: This is a customer facing position with the mission of managing technical security controls and effectively managing and communicating vulnerabilities, exploits, and incidents to appropriate operations teams while tracking metrics in order to assist the customer in managing risk. Recommending new controls and evaluating new technologies to reduce or mitigate risk. This position is seen as an SME role with a high level of technical ownership. Essential Functions: Perform security assessments or review of both inter-company and external customer's enterprise environment. While working with customer technical and executive staff, review the state of various technical and organizational controls processes, and policies. Perform gap analysis, comparing state to widely accepted best practices from vendors, regulatory and compliance bodies, and the security community at large. Document these gaps, along with sensible and relevant recommendations, in findings reports that satisfy the needs of both a technical and non-technical audience. Perform vulnerability scans and penetration tests of customer environments and controls. Using expertise in operation of commercial and open-source assessment tools, identify configuration flaws, missing patches, and gaps in defenses that could be exploited by attackers. Assessment types will include social engineering and phishing, wireless, mobile device, and physical security, and web application penetration tests. Assist internal staff with security needs. Provide recommendations for security architecture, processes and technologies. Write technical policy, processes, procedures, standards and other documentation. Perform security research, furthering individual and team understanding of the threat landscape, as well as cutting-edge security technologies. Attend security conferences and participate in local security community events. Evaluate products and tools that can improve the security services team's offerings, and provide value to customers. Leadership role in cultivating and maintaining relationship with internal and external customers, vendors and partners. Act as technical SME and work all technical escalations from the global security operations team including outages and incidents. Lead technical troubleshooting or incident handling events/calls on behalf of the client's security operations team and with the Network, Compute, and Client Operations Teams, internal and external information providers, and others as appropriate. Lead all aspects of planning, documentation, and process development of client's global security operations; Drive develop of technical procedures and guidelines for implementation and management of Security services and ensure compliance with requirements. Lead technical project efforts for the client's security operations team. Participate in expansion of new opportunities with existing customers as they expand their global security operations requirements. Provide insight and demonstrated technical leadership to the global security operations marketplace. Must be available 24x7 for emergencies and call outs Education: Four years of College resulting in a Bachelor's Degree or equivalent Certifications, Accreditations, Licenses: One or more of the following certifications dependent on actual role: Advanced GIAC/SANS certifications - GCIH, GCIA, GCFE, GCFA, GREM, GIAC, GSEC, GWAPT Or Offensive Security - OSCP, OSWP, OSWE ISACA CISM, CISA ISC-squared CISSP CompTIA Security+ Experience: 7 to 10 years in related field Experience in senior level roles such as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst Must be able to obtain additional federal security clearances Special Knowledge, Skills and Abilities: Ability to conduct technical training and instruction. Experience with public speaking and ability to present on technical topics. Enterprise IT security architectures experience in a broad range of disciplines including networking, systems, applications, and cloud computing environments. Dependent on position, strong demonstrated skills in multiple enterprise-level OS environments including Microsoft Windows, Linux, and Unix. Strong understanding of network communications (TCP/IP, Ethernet, WAN/LAN technologies) Exceptional research and analysis experience. Risk assessment experience and auditing experience. Dependent on actual role, direct CIRT experience with a targeted (APT) and crimeware threat program Knowledge of information security threat types, their composition, and IOCs Dynamic Malware Analysis Experience. Knowledge of attacker tactics, techniques, and procedures (TTPs) used by the APT, Cyber Crime and other associated threat groups. Experience analyzing common types of attacks, cybercrime, APT, etc. Experience with Splunk or similar Log analysis tools and experience reviewing security events. Knowledge of intrusion analysis, network and host forensics Scripting experience is a plus (Python, Perl, Ruby, etc.) Dependent on actual role, the following direct experiences and knowledge. Working knowledge and experience with standard security solutions and architectures. Working knowledge of application architectures, web architectures, databases, and network architectures Experience in Securing Windows NT, Windows 2000, Windows XP Environments, Unix, and Linux environments Experience in securing J2EE Application (Weblogic, JBOSS) and Web Server (SunOne, Apache) platforms Familiarity with accepted security standards - ISO27K, NIST 800-53, SANS Consensus Audit Guidelines - as well as regulatory compliance regulations - PCI-DSS, Sarbanes-Oxley, HIPAA/HITECH, FFIEC, FISMA, FERC/NERC and trade control regulations (aka export controls) for DoS (State Department), DoC (Commerce Department) and DoE/NRC (Energy Department, Nuclear Regulatory Commission). Experience in secure network configurations Solid communication skills (leading, influencing experience), verbal and written, including documentation (design and training) and the coaching of other developers as they migrate to portal frameworks. Experience securing Relational Databases (e.g. Oracle) Experience with security testing and auditing tools such as WebInspect, Qualys/ISS Scanners and nmap. Supervisory Responsibility: This position does not have employee direct reports but does serve as a "lead" role for others doing similar work Salary range: $100,000-$150,000

Job Description What Impact You'll Have: GRVTY is seeking experienced Computer Network Defense Analysts (CNDAs) to support core Intelligence Community (IC) missions. As a cyber professional in the intelligence community, you will work as part of a team on the frontlines against our cyber adversaries. What You'll be Owning: Use information collected from a variety sources (e.g., intrusion detection systems, firewalls, network traffic logs, and host system logs) to identify potential vulnerabilities, respond to cyber events that occur, and defend against events that might occur. Help develop mitigations to strengthen network defenses and protect against attacks on network infrastructure devices or systems. Support a wide range of data transport possibilities, such as traditional wired networks, wireless transport (including Wi-Fi and cellular), collaborative platforms such as video teleconferencing, and the hardware and software that enable it all. Advance your career as you develop increasing expertise in networking protocols and architectures, cloud security, Internet of Things protocols, and advanced network security. Be part of a team, working together with government, military, and contractor personnel to develop shared understandings of intelligence needs, mission relevance, and areas of expertise. Apply your innate curiosity and analytical talent to form hypotheses, critically assess and choose analysis techniques, then query, merge, enrich, evaluate, and pivot within data to attain and share insights. Distill, document, contextualize and share your findings--including any new tradecraft that you develop--with teammates, stakeholders, and intelligence consumers. What You Must Have: Active TS/SCI with polygraph clearance. STEM degree in Network Engineering, Systems Engineering, Information Technology, or related field. Extended military cyber training courses may be counted toward degree requirement. Relevant experience must be in computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, and/or systems engineering. Demonstrative experience w/SIGINT and AMOD Must also have experience in network or system administration. Documented foreign language proficiency may count toward experience requirements. 10 years of experience with an associate's degree or 8 years of experience with a bachelor's degree or 6 years of experience with a master's degree or 4 years of experience with a doctorate degree. What Would Be Nice to Have: Strong communication skills Works well in a team and alone Working knowledge of Microsoft Office Suite Pay Range: At GRVTY, we understand that compensation is influenced by many factors-such as geographic location, federal contract labor categories, wage rates, prior experience, skillsets, education, and certifications. We're proud to offer a work environment that empowers our team to achieve a strong work-life balance. GRVTY provides competitive pay, comprehensive benefits, and meaningful opportunities for professional growth. Our benefits package is designed to support the well-being of our employees and their families, and includes coverage in areas such as healthcare, financial wellness, retirement planning, family assistance, continued education, and paid time off. Pay Range$145,000-$175,000 USD Why Choose GRVTY The toughest national security challenges demand vision and ingenuity, not just resources. We deliver mission and technical expertise to outpace our adversaries. We're purpose-built to tackle the most entrenched, systemic national security issues around the world. We partner with our customers to help them overcome challenges in every corner of technology and defense-including the ones still being explored. Our growing capabilities create complementary advantages, giving on-the-ground operations the edge they need to succeed. We muster everything we have to answer every challenge presented, every day of our lives. At GRVTY, we believe that when our employees thrive, our company thrives. That's why we offer a comprehensive and competitive benefits package designed to support your well-being, growth, and work-life balance. • Robust health plan including medical, dental, and vision • Health Savings Account with company contribution • Annual Paid Time Off and Paid Holidays • Paid Parental Leave • 401k with generous company match • Training and Development Opportunities • Award Programs • Variety of Company Sponsored Events EEO Statement GRVTY, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran and will not be discriminated against on the basis of disability. Anyone requiring reasonable accommodations should email ******************** or call ************ with requested details. A member of the HR team will respond to your request within 2 business days. Know Your Rights: Workplace Discrimination is Illegal (eeoc.gov) Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.

At Wyetech, you'll be at the center of an award-winning corporate culture, breaking technological barriers and solving real-world problems for our federal government customers. We are committed to hiring the best of the best, and in return, we offer a world-class, truly unique employee experience that is rare within our industry. Use information collected from a variety of computer network defense resources (including, but not limited to, intrusion detection system alerts, firewall and network traffic logs, and host system logs) to identify, analyze, and report events that occur or might occur within their environment. Due to federal contract requirements, United States Citizenship and position appropriate security clearance is required. (e.g. Active TS/SCI security clearance with agency appropriate polygraph). Required Qualifications TS/SCI with agency appropriate poly Ten (10) years of experience and an Associate's Degree in Degree in Network Engineering, Systems Engineering, Information Technology, or related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Computer Science, Computer Forensics, Cyber Security, Software Engineering, Information Assurance, or Computer Security). OR Eight (8) years of experience and an Bachelor's Degree in Degree in Network Engineering, Systems Engineering, Information Technology, or related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Computer Science, Computer Forensics, Cyber Security, Software Engineering, Information Assurance, or Computer Security). OR Six (6) years of experience and an Master's Degree in Degree in Network Engineering, Systems Engineering, Information Technology, or related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Computer Science, Computer Forensics, Cyber Security, Software Engineering, Information Assurance, or Computer Security). OR Four (4) years of experience and an Doctorate Degree in Degree in Network Engineering, Systems Engineering, Information Technology, or related field (e.g., General Engineering, Computer Engineering, Electrical Engineering, Computer Science, Computer Forensics, Cyber Security, Software Engineering, Information Assurance, or Computer Security). Relevant Experience Relevant experience must be in computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, and/or systems engineering. Additionally, must have experience in network or system administration. If not credited toward education requirements, completion of military training in a relevant area such as JCAC (Joint Cyber Analysis Course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards relevant experience requirement (i.e., 20-24 week courses will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). 18 semester hours of military training/ coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree Required Technical Skills Excellent communication and collaboration skills to interface across NSA Be able to ACTIVELY participate in leadership/IC exchanges Strong verbal and written communication skills Be able to identify intrusions and actors current intrusion sets commercial Cybersecurity Firms Need an understanding of Virtual Private Servers, VPNs, and The Diamond Model obfuscation networks Highly proficient Agency tools: DX, BuffaloBuffalo, CLEARVISION, CVEs, SSVE, VirusTotal Author and read highly technical reports The Benefits Package Wyetech believes in generously supporting employees as they prepare for retirement. The company automatically contributes 20% of each employee's gross compensation to a Simplified Employee Pension (SEP) IRA, with no requirement for employee matching. All contributions are fully vested from day one, ensuring immediate ownership of retirement funds. Additional benefits include: Wyetech provides a generous PTO plan of up to 200 hours annually, aligned with applicable state leave regulations. Employees have the flexibility to adjust their PTO allocation at the start of each calendar year, ensuring it meets their evolving needs. Full-time employees have the option to participate in a variety of voluntary benefit plans including: A Choice of Medical Plan Options, some with Health Savings Account (HSA) Vision and Dental Life and AD&D Benefits Short and Long-Term Disability Hospital Indemnity, Accident, and Critical Illness Insurances Optional Identity Theft and Legal Protection Services Company Environment & Perks Employee Referral Bonus Eligibility up to $10,000 Mobility Among Wyetech-supported Contracts Various contract and work locations throughout Maryland, Virginia, Colorado, Texas, Utah, Alaska, Hawaii and OCONUS Various team-building events throughout the year such as: monthly lunches, summer company picnic, and an annual holiday party. Employees receive two complementary branded clothing orders annually. Wyetech, LLC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Affirmative Action Statement: Wyetech, LLC is committed to the principles of affirmative action in all hiring and employment for minorities, women, individuals with disabilities, and protected veterans. Accommodations: Wyetech, LLC is committed to providing an inclusive and accessible hiring process. If you need any accommodations during the application or interview process, please contact Brittney Wood. at 844-WYETECH x727 or ********************. We are happy to provide reasonable accommodations to ensure equal access to all candidates.

Network Security AnalystLOCATIONHonolulu, HI 96815CLEARANCETS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARYWe are looking for a detail-oriented and proactive Network Security Analyst to join our cybersecurity team. In this role, you will monitor, analyze, and protect the organization's network infrastructure against potential threats and vulnerabilities. You will be responsible for identifying security risks, responding to incidents, and implementing measures to safeguard sensitive information. Collaborating with cross-functional teams, you will play a key role in enhancing the organization's overall network security posture. The ideal candidate is passionate about cybersecurity, thrives in a dynamic environment, and is committed to staying ahead of emerging threats and technologies. *** Please note that our job openings are dynamic and can open or close quickly (much faster than we can publish). If you do not see an opening you are looking for, know that we see almost all types of positons. We strive to keep our listings up to date, but please consider submitting your current resume. Our team will work with you to identify the most recent opportunities that align with your skillset and career goals. We look forward to you joining our family. *** SIMILAR CAREER TITLESCybersecurity Analyst, Information Security Analyst, Security Operations Center (SOC) Analyst, Network Defense Analyst, Threat Intelligence Analyst, IT Security Specialist, Vulnerability Analyst, Incident Response Analyst, Security Monitoring Analyst, Cyber Defense Analyst, Infrastructure Security Analyst, etc.DEGREE (Level Desired) Bachelor's DegreeALTERNATE EXPERIENCEGeneral comment on degrees: Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some contracts give 4-5 years experience credit for a Bachelor's Degree. Some contracts give 2 years experience credit for a Master's Degree. We will work with you to find the right fit.POSITION RESPONSIBILITIES Monitor network traffic for anomalies Investigate and resolve security incidents Maintain and update security systems Generate and analyze security reports Assist in developing incident response plans Ensure adherence to security policies REQUIRED SKILLS Proficiency in monitoring tools like IDS/IPS Strong analytical and problem-solving skills Understanding of network protocols (TCP/IP, DNS) Knowledge of malware analysis tools Ability to interpret security logs Familiarity with vulnerability scanning tools DESIRED SKILLS Experience with advanced threat detection Knowledge of forensics methodologies Understanding of regulatory frameworks (e.g., GDPR, HIPAA) Experience with SOC workflows Familiarity with automation and scripting Knowledge of threat intelligence platforms PLUG IN to CYMERTEK - And design your future... YOUR FOREVER CAREER STARTS HERE Are you looking for more than just a job? Join a company where employees are treated like family, and your career is built to last. We are a growing small business and a trusted federal contractor offering full scope consulting services in information technology, cybersecurity, and analyst workforce development. At our company, you come first. We're committed to creating an environment where you'll thrive professionally and personally. We provide meaningful, challenging work using cutting-edge technologies while investing in your growth and success. With direct access to company leadership, a laid-back and inclusive atmosphere, and exceptional work-life balance, you'll feel valued every day. We also believe in taking care of our family - both yours and ours. Our benefits are phenomenal, family-friendly, and designed with your well-being in mind. From employee and family events to career-long support, we create a community you'll never want to leave. Ready to make your next move the best one? Join us and experience the difference. BENEFITS Excellent Salaries Flexible Work Schedule Cafeteria Style Benefits 10% - 401k Matching (Vested Immediately) Additional 401k Profit Sharing 30 days Paid Leave/Holiday (No Use or Lose!) The day off for your birthday Medical/Dental/Vision - 100% employee coverage. ($1200 allowance - or a bonus) HSA/FSA AFLAC Long Term/Short Term Disability - 100% employee coverage. No cost to you. Life Insurance - 100% employee coverage. No cost to you. Additional Discretionary Life Insurance Paid Training No long, wordy reviews with tons of paperwork!!! Referral bonus program with recurring annual payments HOW TO APPLY Email us at ***************** or apply today: **************** Want to see what our employees think? Click here . EQUAL OPPORTUNITY EMPLOYER STATEMENT Cymertek is proud to be an Equal Opportunity Employer committed to fostering an inclusive and diverse workplace. We embrace and celebrate differences in our employees, recognizing that a diverse workforce enhances our creativity, innovation, and overall success. At Cymertek, employment decisions are made based on merit, qualifications, and business needs without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable laws. We believe in creating an environment where all individuals are treated with respect and dignity, and where opportunities for professional growth and advancement are accessible to everyone, regardless of background or identity.

Full-time Description With more than twenty years of securing some of the U.S. Department of Defense and the Intelligence Community's most critical networks, JFL Consulting, LLC provides advanced network security solutions to a range of US Government and US commercial clients. Our cybersecurity operators are experts at assessing and defending mission-critical data and the networks that facilitate their operation. We are focused on delivering advanced products and industry best practices that meet each customer's unique requirements. Visit ********************* Job Description JFL Consulting, LLC is seeking a Senior Cyber Security Operator to support critical cybersecurity operations within highly secure environments. This role offers the opportunity to work on advanced network defense strategies, with a unique focus on passive vulnerability analysis: a specialized and low-impact method of identifying risks without active scanning. You'll play a key role in detecting anomalies, analyzing complex systems, and strengthening network security for high-value missions. This position is ideal for professionals who enjoy deep technical work, problem-solving, and contributing to meaningful national security efforts within a collaborative, mission-driven team. Job Title: Senior Cyber Security Operator Place of Performance: Pearl Harbor HI, 96701 Mandatory Requirements: Top Secret Clearance (SCI Eligible) Experience Level: Senior-Level (8+ years in cybersecurity, 3+ years in passive vulnerability analysis) Responsibilities: Ensure the safe and proper functional operation of the toolkit and its components. Collect and document measures of performance per approved CONOPS. Analyze and document behaviors, characteristics, and attributes of a network's baseline activity within steady-state operations. Analyze and investigate potential anomalies or outliers from established baseline. Analyze and identify misconfigurations, faults, and vulnerabilities within the network's architecture, subcomponents, and utilized communication protocols. Determine root source of anomalies and extent of vulnerable findings for validation with system users and administrators. Document and report anomalies to appropriate channels for further investigation and notification. Document vulnerable findings and provide recommendations through appropriate channels that increase both security and operational capacity of the respective network. Recommend improvements to current operations for potential incorporation into the overall program. Collaborate with cross-functional teams to support incident response, system hardening, and policy development as needed. Additional duties as assigned 5-10% Conus Travel Requirements Education: Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or a related field preferred. Equivalent work experience may be considered in lieu of a degree. A master's degree is a plus. Certifications: Must hold an IAT Level II certification as defined and described in DoDD 8570.01, 8570.01-M, and 8140.01-03, and as amended. (e.g., Security+ CE, CySA+, CCNA Security, GSEC). Must hold a CSSP Analyst certification as defined and described in DoDD 8570.01, 8570.01-M, and 8140.01-03, and as amended. (e.g., CEH, CySA+, GCIA, GCIH). Preferred: Advanced certifications such as CISSP (Certified Information Systems Security Professional), OSCP (Offensive Security Certified Professional), or similar. Experience: Minimum 8 years in cybersecurity operations or analysis Minimum 3 years of experience with passive vulnerability detection techniques Experience supporting DoD or Intelligence Community networks Technical Skills: Practical experience with firewalls, network TAPs, IDS/IPS, endpoint protection, and other network defense technologies Adept in evaluating network protocols utilizing network analyzers, such as Wireshark, Tshark, and tcpdump Experienced in analyzing network datasets, including Zeek and firewall logs, to support threat hunting and security investigations. Experienced in leveraging data analysis platforms, such as Splunk, Kibana, and Arkime, to detect and analyze anomalous network activity Proficient in triaging Suricata alerts, tuning rules, and creating custom detections. Knowledge: In-depth understanding of network vulnerabilities and misconfigurations Strong knowledge of cybersecurity principles, adversary techniques, and detection/response strategies Experience working within the framework of a CONOPS or similar operational document Awareness of DoD cybersecurity frameworks (e.g., RMF, CMMC, NIST 800-53) and their application in secure system design and monitoring. Knowledge of common enterprise network architectures and defense mechanisms Experienced in analyzing TCP/IP, DNS, HTTP/S, SSL/TLS, SMB, and RDP protocols to identify vulnerabilities, misconfigurations, and indicators of malicious activity. Soft Skills: Strong analytical and investigative mindset Excellent documentation and reporting skills Effective communicator with ability to explain technical issues to both technical and non-technical audiences Comfortable working independently and as part of a cross-functional team Competitive Benefits Package Includes: 100% employer-paid medical, dental, and vision for employees and dependents 401(k) with 3% company contribution and immediate vesting Generous PTO policy (15 vacation, 5 sick, 2 personal days) Reimbursement for job-related certifications, generous training budget and company provided access to training platforms. JFL Consulting, LLC is an Equal Opportunity Employer. We do not discriminate against any applicant for employment on any legally recognized basis including, but not limited to: race, religion or creed, color, national origin, sex, age, disability, marital status, sexual orientation, genetic information, veteran status, status with regard to public assistance or any other protected class under federal, state or local statute. It is also the policy of JFL Consulting, LLC to provide reasonable accommodations for qualified individuals with disabilities.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

This is a U.S. based position. All of the programs we support require U.S. citizenship to be eligible for employment. All work must be conducted within the continental U.S. Who we are: Raft (********************* is a customer-obsessed non-traditional small business with a purposeful focus on Distributed Data Systems, Platforms at Scale, and Complex Application Development, with headquarters in McLean, VA. Our range of clients includes innovative federal and public agencies leveraging design thinking, cutting-edge tech stack, and cloud-native ecosystem. We build digital solutions that impact the lives of millions of Americans. About the role: As an Information System Security Officer (ISSO), you will expertly manage the security aspects of our cutting-edge platforms and systems designed for our esteemed clients. The ISSO will play an instrumental role in generating and maintaining the necessary artifacts to achieve and sustain Authority to Operate (ATO) while working in close collaboration with our development team. This collaboration ensures the seamless integration of security controls early in the development lifecycle. You will audit and monitor all of the platforms & tooling across the customer environment. This role requires a deep understanding of cybersecurity principles, federal compliance requirements, and a passion for safeguarding national security infrastructure. What we are looking for: • Minimum of 4 years' experience in ISSM/O roles • Proven experience in obtaining and maintaining ATO for classified government cloud systems, adhering to DoD policies such as Risk Management Framework (RMF), NIST 800-53 Rev 4 and 5, NIST 800-37, NIST 800-60 and more • Skilled in crafting eMASS packages and implementing DISA STIGs • Proficient in conducting risk assessments, audits, and compliance monitoring within DoD environments • Demonstrated proficiency in managing and creating Body of Evidence (BOE) artifacts, including POA&Ms, SSPs, RARs, Vulnerability Assessments, Security Assessment Plans, etc. • Understanding of and experience with SIEM tools such as Splunk, Grafana, or ELK • Proficient in conducting continuous monitoring activities such as auditing, configuration reviews, policy & procedure reviews, etc. • Demonstrated experience managing compliance activities for both on-prem & cloud-based (AWS) systems & networks • Track record of leading programs/projects in attaining ATO • Experience conducting internal self-assessments and audits with external assessors • In-depth understanding of Network Rules, Platforms, and Application development • Familiarity with cloud-native, scalable services • Experience with common cybersecurity tools and technologies such as vulnerability & compliance scanners, anti-malware, code analyzers, IDS/IPS, DLP, SBOM, etc. • Experience building and maintaining Standard Operating Procedures • Obtain Security+ or other DoD 8570 IAT Level II or higher certification within 6 months of employment with Raft Highly preferred: • Bachelor's degree in Cybersecurity, Information Assurance, Information Technology, or a related field. • CISSP, CISM, CISA, CGRC, or other DoD 8570 IAM Level 2 or higher certifications • Experience in a K8s DevSecOps environment, preferably with Platform One • Experience with FIPS (Federal Information Processing Standards) • Experience with writing/reviewing RMF control policies • Experience with Executive leadership (PMO office) • Knowledge of Cloud platforms and migrations • Previous experience as a Solution Architect • Engineering background • Experience in a software factory setting Clearance Requirements: Active Secret with the ability to obtain and maintain a Top Secret security clearance Work Type: The selected candidate will be onsite in Honolulu, HI, Hanscom AFB, MA, Tampa, FL or in the National Capitol region May require up to 35% travel to both CONUS and OCONUS locations (Must possess a valid, active US passport with at least six months validity beyond intended period of employment to facilitate international travel and meet security requirements for government contracts.) Salary Range: $180,000 - $220,000 The determination of compensation is predicated upon a candidate's comprehensive experience, demonstrated skill, and proven abilities What we will offer you: Highly competitive salary Fully covered healthcare, dental, and vision coverage 401(k) and company match Take as you need PTO + 11 paid holidays Education & training benefits Generous Referral Bonuses And More! Our Vision Statement: We bridge the gap between humans and data through radical transparency and our obsession with the mission. Our Customer Obsession: We will approach every deliverable like it's a product. We will adopt a customer-obsessed mentality. As we grow, and our footprint becomes larger, teams and employees will treat each other not only as teammates but customers. We must live the customer-obsessed mindset, always. This will help us scale and it will translate to the interactions that our Rafters have with their clients and other product teams that they integrate with. Our culture will enable our success and set us apart from other companies. How do we get there? Public-sector modernization is critical for us to live in a better world. We, at Raft, want to innovate and solve complex problems. And, if we are successful, our generation and the ones that follow us will live in a delightful, efficient, and accessible world where out-of-box thinking, and collaboration is a norm. Raft's core philosophy is Ubuntu: I Am, Because We are. We support our “nadi” by elevating the other Rafters. We work as a hyper collaborative team where each team member brings a unique perspective, adding value that did not exist before. People make Raft special. We celebrate each other and our cognitive and cultural diversity. We are devoted to our practice of innovation and collaboration. We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

ITC is a Woman Owned Small Business delivering exceptional consultation to the U.S. Government in Systems/Software Engineering, Cybersecurity Solutions, Mission Operations/INTEL Analysis, and Management Services in order to enable our customers to solve the most challenging problems. With continued growth comes opportunity, and we are currently searching for a Top-Secret SCI with polygraph-cleared Senior-Level Digital Network Exploitation Analyst. Responsibilities: The Computer Network Defense Analyst will use information collected from a variety of computer network defense resources (including, but not limited to, intrusion detection system alerts, firewall and network traffic logs, and host system logs) to identify, analyze, and report events that occur or might occur within their environment. Relevant experience must be in computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance , and/or systems engineering. Additionally, must have experience in netowrk or system administation. If not credited toward education requirements, completion of military training in a relevant area such as JCAC (Joint Cyber Analysis Course), Undgergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards relevant experience requirement (i.e., 20-24 week courses will count as 6 months of experience, 10-14 weeks will count as 3 months of experience). Requirements TS/SCI with CI or FS Poly Required 18 semester hours of military training/ coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree (applicable to Level 1 - Level 4). With an Associate's Degree, at least 10 years demonstrated experience related to . With a Bachelor's Degree, at least 8 years demonstrated experience related to . With a Master's Degree, at least 6 years demonstrated experience related to . With a Doctorate Degree, at least 4 years demonstrated experience related to job description. Benefits for this position include: 401K plan with company contributions (safe harbor and profit sharing) 11 Federal holidays, 21 Days PTO Medical, Dental, & Vision with substantial company contributions Company provided Life, LTD and STD Insurance Health Savings Accounts/ Flexible Spending Accounts Referral Bonuses Performance Bonuses Tuition Assistance for Education, Training, and Professional certifications Career Development Many factors can influence final salary including, but not limited to relevant prior work experience, specific skills and competencies, education, and certifications. Final salary can also be influenced by a position's geographic location, Federal Government contract labor categories, and contract wage rates. The salary Range for this position is: $100,000-200,000 ITC is an Equal Opportunity employer. Qualified applicants or employees will receive consideration for employment without regard to race, color, religion, ethnic or national origin, ancestry, age, sex, sexual orientation, gender identity, pregnancy (including childbirth or related condition) citizenship, familial status, mental or physical disability status, veteran status, genetic information, other non-disqualifying disability, or any other characteristic protected by law.

Valiant Integrated Services is seeking an experienced, highly skilled Information System Security Analyst to act as Information Systems Security Officer (ISSO) to join our professional team protecting mission training services for a Mission Training Complex (MTC) on Schofield Barracks, HI. Duties and Responsibilities Develop and maintain an organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures. Provide support to the System Owner and the ISSM for maintaining the appropriate operational IA posture for a system, program, or enclave. Provide support to the customer on all matters involving the security of their information systems. Assist with the management of all security aspects of the information system and as assigned performs day-to-day security operations of the system. Assist in the development of the system security policy and ensures compliance with that policy on a routine basis. Prepare, validate, and maintain security documentation including, but not limited to: system security plan (SSP), risk assessment (RA), contingency plan (CP), privacy impact assessment (PIA), eAuthentication assessment, FIPS categorization. Provide configuration management for security-relevant information system software, hardware, and firmware, controlling changes to the system and assessing the security impact of those changes. Identify and mitigate security business and system risks. Identify and manage POA&Ms through remediation as well as develop corrective action plans for each POA&M. Maintain a repository for all organizational or system-level cybersecurity-related documentation such as DIACAP/RMF processes within eMASS or other automated process. Maintain Defense Information Technology Portfolio Registry (DITPR) for client systems and software. Ensure implementation of Information System (IS) security measures and procedures, including reporting incidents to the Command Information System Security Manger (ISSM) and appropriate reporting chains as well as coordinating system-level responses to unauthorized disclosures in accordance with DoDM 5200.01 Vol 3 for classified information or DoDM 5200.01 Vol 4 for CUI, respectively. Implement and enforce all DoD IS and Platform Information Technology (PIT) system cybersecurity policies and procedures, as defined by cybersecurity-related documentation. Ensure that all users have the requisite security clearances and access authorization, and are aware of their cybersecurity responsibilities for DoD IS and PIT systems under their purview before being granted access to those systems. In coordination with the ISSM, initiate protective or corrective measures when a cybersecurity incident or vulnerability is discovered. Establish a process for authorized users to report all cybersecurity-related events and potential threats and vulnerabilities to the ISSO. Ensure that all DoD IS cybersecurity-related documentation is current and accessible to properly authorized individuals. Ensures proper Configuration Management procedures are followed. Prior to implementation and contingent upon necessary approval with the ISSM. Initiates requests for temporary and permanent exception, deviations, or waivers to IA requirements such as Plan of Action and Milestones (POA&Ms). Ensures IA and IA-enabled software, hardware and firmware comply with appropriate security configuration guides. Provide status updates of assigned duties to the appropriate agency heads as defined in their respective Service Level Agreement (SLA). Respond to all applicable data calls, CTO's, FRAGO's, IAVA's ,etc within the requested timeframe. Attend all Cybersecurity Workforce Meetings when requested. Required Education and Experiences A bachelor's degree plus 3 years of recent specialized experience OR an associate's degree plus 7 years of recent specialized experience OR a major certification plus 7 years of recent specialized experience OR 11 years of recent specialized experience. Required to have active U.S. Top Secret/SCI security clearance with the ability to pass a CI/Polygraph exam. Baseline DoDI 8570 IA Certifications are required - a current CompTIA Security+ or greater certification. A higher level certification, such as GSLC, CAP, CASP, CISM, CISSP, is also appropriate. Desired Skills and Qualifications A working knowledge of RMF and the security authorization processes and procedures. Knowledge of NIST Special Publications and their counterparts, especially SP800-37, SP800-53, ICD 503, and CNSS 1253. Ability to communicate clearly and present information to the customer in a format they can understand. Experience in several of the following areas: knowledge of current security tools, hardware and software security implementation; different communication protocols; and encryption techniques/tools. Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services. Must be able to prioritize tasks, deliver solutions on time and be a team player with the ability to work independently and proactively while being flexible and prioritizing competing priorities, often under time constraints. Have strong analysis, oral and written communication, and change management skills with ability to plan, organize, prioritize, track, manage, and learn new skills. It is preferred that a candidate have at least one year of experience under the DoD Information Assurance Certification and Accreditation Process (DIACAP) and/or Risk Management Framework (RMF) accreditation process and has a familiarity with Enterprise Mission Assurance Support Service (eMASS). Technical familiarity with Windows 7 Enterprise/Windows 10 Professional, Windows Server 2012, and Red Hat Linux. Experience with providing IA or IT support to a US Army client desirable, but not required. Proficiency with using the Internet and with Microsoft Office products including e-mail, Word, Excel, Access and Project is required. Completion of required certifications required within six (6) months of hire date. *****************************************

Apply Must be a US Citizen to meet customer and compliance requirements, including potential access to classified information. This position requires onsite client-facing work 5 days a week in Honolulu, Hawaii. Bachelor's degree in Computer Science, IT, or related field or equivalent practical experience. 5 years of experience with security assessments, security design reviews, or threat modeling. 5 years of experience with security engineering, computer and network security, and security protocols. Experience delivering comprehensive security solutioning through design, coding, configuration, and deployment. Must possess an active Top Secret/SCI Security Clearance. Must currently have or be able to obtain advanced DoD 8140 DCWF certification. Preferred qualifications Certifications in CISSP, CISM, GCIH, GCIA, or OSCP. Experience in a regulated industry (e.g., finance, healthcare, government). Experience securing cloud environments (Cloud Computing Platform, Google Cloud Platform). Understanding of cloud security principles and best practices. About the job Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal). The GPS Cyber Defense and Security Operations Group leads our Security Operations (SECOPs) function for a range of GPS platforms and services. Combining Mandiant's deep security experience with Google technologies, our team sets the standard in Security Engineering, Assessment, and Operations across Government Cloud programs. Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions. The US base salary range for this full-time position is $166,000-$244,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google. Responsibilities Implement security monitoring strategies, incident response plans, and security awareness programs. Oversee the deployment and operation of security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS) and other security tools. Leverage cyber threat intelligence to conduct ongoing network hunt activities and identify active and dormant threats within the environment. Develop and implement custom-built AI-driven security detections and workflows. Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire. Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting. To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes. #J-18808-Ljbffr

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. **Required Skills:** Security Engineer - IR Threat Intelligence Responsibilities: 1. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 2. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 3. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 4. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems 5. Engage constructively in cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions **Minimum Qualifications:** Minimum Qualifications: 6. 5+ years threat intelligence experience 7. Bachelor's degree or equivalent experience in Security 8. Familiarity with campaign tracking techniques and ability to convert the tracking results to long term countermeasures 9. Familiarity with threat modeling framework, such as Diamond Model or/and MITRE ATT&CK framework 10. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 11. Proven track record of managing and executing on short term and long term projects 12. Ability to work with a team spanning multiple locations/time zones 13. Ability to prioritize and execute tasks with minimal direction or oversight 14. Ability to think critically and qualify assessments with solid communications skills 15. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 16. Experience close collaborating with incident responders on incident investigations 17. Familiarity with malware analysis or network traffic analysis 18. Familiarity with nation-state, sophisticated criminal, or supply chain threats 19. Production of file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 20. Experience in one or more query languages such as SQL 21. Experience writing production code for threat intelligence tooling 22. Experience conducting large scale data analysis 23. Experience working across the broader security community **Public Compensation:** $154,000/year to $217,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

System Security EngineerLOCATIONHonolulu, HI 96815CLEARANCETS/SCI Full Poly (Please note this position requires full U.S. Citizenship) KEY SUMMARYWe are seeking a highly motivated and detail-oriented System Security Engineer to design, implement, and maintain security measures that protect our critical systems and data. In this role, you will work closely with cross-functional teams to identify vulnerabilities, develop robust security solutions, and ensure compliance with industry standards and regulations. The ideal candidate has a strong understanding of system architecture, a proactive approach to mitigating risks, and a passion for staying ahead of evolving cyber threats. If you are a problem-solver who thrives in a dynamic environment, we encourage you to apply and help us safeguard our organization's infrastructure. *** Please note that our job openings are dynamic and can open or close quickly (much faster than we can publish). If you do not see an opening you are looking for, know that we see almost all types of positons. We strive to keep our listings up to date, but please consider submitting your current resume. Our team will work with you to identify the most recent opportunities that align with your skillset and career goals. We look forward to you joining our family. *** SIMILAR CAREER TITLESCybersecurity Engineer, Information Security Engineer, Network Security Engineer, IT Security Engineer, Cloud Security Engineer, Infrastructure Security Engineer, Endpoint Security Engineer, Security Operations Engineer, Security Systems Analyst, Data Security Engineer, Application Security Engineer, Identity and Access Management Engineer, Threat Detection Engineer, Vulnerability Management Engineer, Risk Assessment Engineer, Compliance Security Engineer, Incident Response Engineer, Secure Systems Architect, Security Automation Engineer, etc.DEGREE (Level Desired) Bachelor's DegreeDEGREE (Focus) Cybersecurity, Computer Science, Information Technology, Information Systems, Computer Engineering, Network Engineering, Software Engineering, Systems Engineering, Electrical Engineering, Data Science, Telecommunications, Information Assurance, Security Management, Digital Forensics, Cryptography, Cyber Operations, Applied Mathematics, Artificial Intelligence, Risk Management, Secure Systems Design, etc.ALTERNATE EXPERIENCEGeneral comment on degrees: Most contracts allow additional experience (4-5 years) in lieu of a Bachelor's Degree. Some contracts give 4-5 years experience credit for a Bachelor's Degree. Some contracts give 2 years experience credit for a Master's Degree. We will work with you to find the right fit.POSITION RESPONSIBILITIES Design and implement secure system architectures Monitor and respond to system security incidents Develop and enforce system security policies Conduct risk assessments and mitigate vulnerabilities Ensure compliance with security standards and frameworks Collaborate with teams to integrate security into system development REQUIRED SKILLS Proficiency in configuring firewalls and intrusion detection systems Strong knowledge of operating system security (e.g., Linux, Windows) Experience with endpoint protection tools Familiarity with network protocols and security Ability to perform vulnerability assessments and penetration tests Expertise in implementing encryption and secure authentication methods DESIRED SKILLS Knowledge of cloud security practices (e.g., AWS, Azure) Familiarity with automation tools for security (e.g., Ansible, Terraform) Experience with security incident response and forensics Understanding of DevSecOps principles Strong communication and technical documentation skills Ability to train and mentor team members on security best practices PLUG IN to CYMERTEK - And design your future... YOUR FOREVER CAREER STARTS HERE Are you looking for more than just a job? Join a company where employees are treated like family, and your career is built to last. We are a growing small business and a trusted federal contractor offering full scope consulting services in information technology, cybersecurity, and analyst workforce development. At our company, you come first. We're committed to creating an environment where you'll thrive professionally and personally. We provide meaningful, challenging work using cutting-edge technologies while investing in your growth and success. With direct access to company leadership, a laid-back and inclusive atmosphere, and exceptional work-life balance, you'll feel valued every day. We also believe in taking care of our family - both yours and ours. Our benefits are phenomenal, family-friendly, and designed with your well-being in mind. From employee and family events to career-long support, we create a community you'll never want to leave. Ready to make your next move the best one? Join us and experience the difference. BENEFITS Excellent Salaries Flexible Work Schedule Cafeteria Style Benefits 10% - 401k Matching (Vested Immediately) Additional 401k Profit Sharing 30 days Paid Leave/Holiday (No Use or Lose!) The day off for your birthday Medical/Dental/Vision - 100% employee coverage. ($1200 allowance - or a bonus) HSA/FSA AFLAC Long Term/Short Term Disability - 100% employee coverage. No cost to you. Life Insurance - 100% employee coverage. No cost to you. Additional Discretionary Life Insurance Paid Training No long, wordy reviews with tons of paperwork!!! Referral bonus program with recurring annual payments HOW TO APPLY Email us at ***************** or apply today: **************** Want to see what our employees think? Click here . EQUAL OPPORTUNITY EMPLOYER STATEMENT Cymertek is proud to be an Equal Opportunity Employer committed to fostering an inclusive and diverse workplace. We embrace and celebrate differences in our employees, recognizing that a diverse workforce enhances our creativity, innovation, and overall success. At Cymertek, employment decisions are made based on merit, qualifications, and business needs without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, or any other characteristic protected by applicable laws. We believe in creating an environment where all individuals are treated with respect and dignity, and where opportunities for professional growth and advancement are accessible to everyone, regardless of background or identity.

Job Description This is a U.S. based position. All of the programs we support require U.S. citizenship to be eligible for employment. All work must be conducted within the continental U.S. Who we are: Raft (********************* is a customer-obsessed non-traditional small business with a purposeful focus on Distributed Data Systems, Platforms at Scale, and Complex Application Development, with headquarters in McLean, VA. Our range of clients includes innovative federal and public agencies leveraging design thinking, cutting-edge tech stack, and cloud-native ecosystem. We build digital solutions that impact the lives of millions of Americans. About the role: As an Information System Security Officer (ISSO), you will expertly manage the security aspects of our cutting-edge platforms and systems designed for our esteemed clients. The ISSO will play an instrumental role in generating and maintaining the necessary artifacts to achieve and sustain Authority to Operate (ATO) while working in close collaboration with our development team. This collaboration ensures the seamless integration of security controls early in the development lifecycle. You will audit and monitor all of the platforms & tooling across the customer environment. This role requires a deep understanding of cybersecurity principles, federal compliance requirements, and a passion for safeguarding national security infrastructure. What we are looking for: • Minimum of 4 years' experience in ISSM/O roles • Proven experience in obtaining and maintaining ATO for classified government cloud systems, adhering to DoD policies such as Risk Management Framework (RMF), NIST 800-53 Rev 4 and 5, NIST 800-37, NIST 800-60 and more • Skilled in crafting eMASS packages and implementing DISA STIGs • Proficient in conducting risk assessments, audits, and compliance monitoring within DoD environments • Demonstrated proficiency in managing and creating Body of Evidence (BOE) artifacts, including POA&Ms, SSPs, RARs, Vulnerability Assessments, Security Assessment Plans, etc. • Understanding of and experience with SIEM tools such as Splunk, Grafana, or ELK • Proficient in conducting continuous monitoring activities such as auditing, configuration reviews, policy & procedure reviews, etc. • Demonstrated experience managing compliance activities for both on-prem & cloud-based (AWS) systems & networks • Track record of leading programs/projects in attaining ATO • Experience conducting internal self-assessments and audits with external assessors • In-depth understanding of Network Rules, Platforms, and Application development • Familiarity with cloud-native, scalable services • Experience with common cybersecurity tools and technologies such as vulnerability & compliance scanners, anti-malware, code analyzers, IDS/IPS, DLP, SBOM, etc. • Experience building and maintaining Standard Operating Procedures • Obtain Security+ or other DoD 8570 IAT Level II or higher certification within 6 months of employment with Raft Highly preferred: • Bachelor's degree in Cybersecurity, Information Assurance, Information Technology, or a related field. • CISSP, CISM, CISA, CGRC, or other DoD 8570 IAM Level 2 or higher certifications • Experience in a K8s DevSecOps environment, preferably with Platform One • Experience with FIPS (Federal Information Processing Standards) • Experience with writing/reviewing RMF control policies • Experience with Executive leadership (PMO office) • Knowledge of Cloud platforms and migrations • Previous experience as a Solution Architect • Engineering background • Experience in a software factory setting Clearance Requirements: Active Secret with the ability to obtain and maintain a Top Secret security clearance Work Type: The selected candidate will be onsite in Honolulu, HI, Hanscom AFB, MA, Tampa, FL or in the National Capitol region May require up to 35% travel to both CONUS and OCONUS locations (Must possess a valid, active US passport with at least six months validity beyond intended period of employment to facilitate international travel and meet security requirements for government contracts.) Salary Range: $180,000 - $220,000 The determination of compensation is predicated upon a candidate's comprehensive experience, demonstrated skill, and proven abilities What we will offer you: Highly competitive salary Fully covered healthcare, dental, and vision coverage 401(k) and company match Take as you need PTO + 11 paid holidays Education & training benefits Generous Referral Bonuses And More! Our Vision Statement: We bridge the gap between humans and data through radical transparency and our obsession with the mission. Our Customer Obsession: We will approach every deliverable like it's a product. We will adopt a customer-obsessed mentality. As we grow, and our footprint becomes larger, teams and employees will treat each other not only as teammates but customers. We must live the customer-obsessed mindset, always. This will help us scale and it will translate to the interactions that our Rafters have with their clients and other product teams that they integrate with. Our culture will enable our success and set us apart from other companies. How do we get there? Public-sector modernization is critical for us to live in a better world. We, at Raft, want to innovate and solve complex problems. And, if we are successful, our generation and the ones that follow us will live in a delightful, efficient, and accessible world where out-of-box thinking, and collaboration is a norm. Raft's core philosophy is Ubuntu: I Am, Because We are. We support our "nadi" by elevating the other Rafters. We work as a hyper collaborative team where each team member brings a unique perspective, adding value that did not exist before. People make Raft special. We celebrate each other and our cognitive and cultural diversity. We are devoted to our practice of innovation and collaboration. We're an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.