Security engineer jobs in Wanaque, NJ

A Few Words About Us Integrated Resources, Inc is a premier staffing firm recognized as one of the tri-states most well-respected professional specialty firms. IRI has built its reputation on excellent service and integrity since its inception in 1996. Our mission centers on delivering only the best quality talent, the first time and every time. We provide quality resources in four specialty areas: Information Technology (IT), Clinical Research, Rehabilitation Therapy and Nursing. Job Description: Network Security Analyst 6 months CTH • 3+ years of designing, implementing and supporting CISCO ISE is required Responsibilities: Work with vendor to ensure the quality design, implementation, installation/configuration, and provide technical admin support for Cisco ISE Authentication Authorization, Posture Assessment, and AnyConnect end point Malware Prevention solutions. • Upgrade Cisco ISE infrastructure including hardware, software, and AnyConnect • Perform Cisco ISE Authentication and Authorization • Enforce security Posture compliance for wired and wireless endpoints and enhance infrastructure security using the Cisco ISE • Deploy Cisco ISE Profiling and client provisioning services • Integrate Endpoint Malware Protection Services (AMP) with AnyConnect and Cisco ISE • Provide Reports, Monitoring, Troubleshooting, and Security Work with vendor on problem resolution Create policies and reports to meet the business requirements Participate in Planning, Design, and Tests Perform security audits, scan and monitor servers Investigate and report on security alerts and perform security incident reporting Requirements: Expert-level knowledge and experience with design, implementation and support of Cisco ISE 3-5 year of experience working with Network Security applications Complex routing and switching solutions (Cisco is a must, Nexus strongly preferred, other manufacturers are a plus) Advance knowledge of networking, TCP/IP, FTP, SCP, firewalls, ACLs, Authentication protocols, Authorization, VPN, PKI, RSA, and Encryption Knowledge of Directory Services including Active Directory, LDAP, and TDS Knowledge of F5 load balancers Knowledge of IT security principles, HIPAA, SOX and PCI regulations Knowledge of IDS/IPS, Malware Prevention (Sourcefire & Fireye desired, Palo Alto a plus) Business Analysis skills and ability to translate business requirements into technical requirements Excellent oral/written communication and organizational skills Security certification a plus such as CISSP, CEH or CISA Qualifications Bachelor's Degree in Computer Science, Programming, or IT required Additional Information Contact- 732-549-2030 ext 242 Harshad

JobID: 210665461 JobSchedule: Full time JobShift: Base Pay/Salary: Jersey City,NJ $152,000.00-$215,000.00 Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities * Design and build software solutions for security projects * Mentor junior security engineers * Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs * Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability * Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events * Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills * Formal training or certification on software engineering concepts and 5+ years applied experience . * Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) * Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) * Knowledgeable in secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) * Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira * Experience building security engineering products and solutions * Knowledge of the Windows Workstation OSs (Windows 10/Windows 11 and Virtual platforms) and/or Mac OSX * Understanding of Active Directory concept and practical implementation of GPO management * Ability to tackle design and functionality problems independently with little to no oversight Preferred qualifications, capabilities, and skills * Experience within Cyber Security is preferred * Excellent communication and presentation skills * Prior experience in finance industry is a huge plus #CTC

Who We Are At Corebridge Financial, we believe action is everything. That's why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow. We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life: We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners. We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders. We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future. We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work. Who You'll Work With The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles. About The Role The Sr. Security Researcher is responsible for leading and executing offensive security assessments (red teaming) against the organization's systems and networks. This role will leverage advanced penetration testing, social engineering, and other offensive security techniques to identify and exploit vulnerabilities, simulate real-world threats, and enhance the organization's overall security posture. Responsibilities Lead and execute red team engagements: Develop and execute comprehensive red team assessments, including reconnaissance, vulnerability scanning, exploitation, and post-exploitation activities. Lead and mentor junior red team members, providing guidance, training, and hands-on experience. Develop and maintain red team methodologies, tools, and infrastructure. Conduct threat modeling and risk assessments to identify potential attack vectors and prioritize targets. Develop and execute social engineering campaigns, including phishing, vishing, and physical penetration tests. Vulnerability research and exploitation: Stay abreast of the latest threat intelligence, vulnerabilities, and exploits. Research and develop new exploitation techniques and tools. Conduct in-depth analysis of vulnerabilities and their potential impact. Reporting and communication: Prepare detailed and concise reports documenting red team findings, including technical details, impact assessments, and remediation recommendations. Effectively communicate findings to technical and non-technical audiences, including senior management. Present findings and recommendations at security forums and conferences (optional). Security awareness and training: Develop and deliver security awareness training programs to employees on topics such as social engineering, phishing, and secure coding practices. Conduct security awareness campaigns to raise employee awareness of security threats and best practices. Collaboration: Collaborate with other security teams (e.g., blue team, incident response) to improve overall security posture. Work with development teams to identify and remediate security vulnerabilities in applications and systems. Build and maintain relationships with external security researchers and the cybersecurity community. Skills and Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 5+ years of experience in cybersecurity, with 3+ years of hands-on experience in penetration testing, red teaming. Understanding of blended attacks. Proven experience leading and mentoring junior security professionals. Strong understanding of networking, systems administration, and programming concepts. Expertise in penetration testing methodologies and tools (e.g., Cobalt Strike, Outflank, Sliver, PowerShell Empire, Metasploit, Kali Linux, Nmap). Proficiency in scripting languages (e.g., Python, Ruby, PowerShell). Strong understanding of network protocols (e.g., TCP/IP, HTTP, DNS). Experience with vulnerability scanners, intrusion detection systems, and firewalls. Experience with cloud security (e.g., AWS, Azure, GCP) is a plus. Relevant security certifications (e.g., RTO I, RTO II, OSCP, OSCE, GPEN, CRTP) are highly desired. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Strong attention to detail and accuracy. Ability to adapt to new technologies and challenges. Project Management. Compensation The anticipated salary range for this position is $140,000 to $165,000 at the commencement of employment. Not all candidates will be eligible for the upper end of the salary range. The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate's geographic location, skills, experience and other qualifications. In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan. Corebridge also offers a range of competitive benefits as part of the total compensation package, as detailed below. Work Location This position is based in Corebridge Financial's Jersey City, NC, Houston, TX, or Durham, NC office and is subject to our hybrid working policy, which gives colleagues the benefits of working both in an office and remotely. #LI-SAFG #LI-CW1 #LI-Hybrid Why Corebridge? At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive. Benefit Offerings Include: Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being. Retirement Savings: We offer retirement benefits options, which vary by location. In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately. Employee Assistance Program: Confidential counseling services and resources are available to all employees. Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000. Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work. Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it. Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy. We are an Equal Opportunity Employer Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives. Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs. If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to ******************************************. Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law. We will consider for employment qualified applicants with criminal histories, consistent with applicable law. To learn more please visit: *************************** Functional Area: IT - Information TechnologyEstimated Travel Percentage (%): Up to 25%Relocation Provided: NoAmerican General Life Insurance Company

Select Cyber is looking for a Junior Security & Strategy Analyst for a client SOC office in Northern New Jersey. The employer is a world leader in cybersecurity services so your career will be in great hands! The position requires an interest in technology, leadership, and strategy, with a focus on information security. Although we prefer 1-3 years experience, New College Grads (with a computer science degree can apply! This position will assist in duties including, but not limited to, the following: Staying aware of the latest security threats, assessing impact, and suggesting solutions in addressing the emerging risks Use state-of-the-art software to monitor and report on potential cyber threats affecting our client Partnering across a variety of different teams to assess vulnerabilities, and conduct security reviews Help assess organizational cyber risk through industry standard frameworks Requirements Must have a degree in Business, Technology or related field Ability to manage/prioritize projects and tasks In-depth knowledge of diverse and emerging technology concepts, strategies, and methodologies Benefits FULL Competitive Benefits including 401K and medical

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity technology & Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Build and maintain ETL/ELT pipelines and data models, an example pipeline being ingesting data from multiple Cyber Intelligence vendor sources Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, social engineering, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Obtain 6+ years of equivalent experience with a Bachelor's degree in Computer Science, Engineering, or a related field with proven work experience as a Software Engineer. Extensive experience with one or more visualization and report automation Business Intelligence tools such as Qlik (preferred), Splunk, Tableau, PowerBI and business objects. Experience in data integration and data modelling through extracting, transforming, and loading (ETL) data from various sources required, with strong proficiency in SQL required. Experience of Python/ PowerShell/ JavaScript/ HTML Scripting or building QS Mashups or Extensions. Develop and integrate RESTful APIs to support business logic and third-party integrations. Experience in dashboard UI design and best practices. Proficient in all aspects of the Software Development Life Cycle In-depth knowledge of the financial services industry and their IT systems Preferred qualifications, capabilities, and skills Excellent problem-solving skills, attention to detail, and ability to work independently or as part of a team. Strong communication and interpersonal skills, with the ability to effectively collaborate with stakeholders at all levels, provide training, and solicit feedback.

Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada. With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada and is now the largest “Canadian-Owned” IT staffing/consulting company. Procom's areas of staffing expertise include: • Application Development • Project Management • Quality Assurance • Business/Systems Analysis • Datawarehouse & Business Intelligence • Infrastructure & Network Services • Risk Management & Compliance • Business Continuity & Disaster Recovery • Security & Privacy Specialties: • Contract Staffing (Staff Augmentation) • Permanent Placement (Staff Augmentation) • ICAP (Contractor Payroll) • Flextrack (Vendor Management System) Job Description Security Engineer On behalf of our client, Procom Services is searching for a Security Engineer for a contract opportunity in New Jersey City, NJ. Security Engineer Job Details Appropriate candidates should possess at least 3-7 years' experience in a Security Operations role as part of a Managed Security Services offering. We are looking for candidates who can provide a well-rounded knowledge and experience base in incident response and security event analytics. An overall flexibility and willingness to work under unpredictable time and project variables is essential. Key responsibilities: - Coordinate escalations to internal support teams to ensure timely delivery of incident resolutions - Provide operational management of various security toolsets including Bluecoat, Q-Radar, Qualys, Rapid 7, and FireEye. - Perform vulnerability scans, remediation oversight, reporting and metrics for managed infrastructure - Update and maintain policies, schedules and scan parameters for vulnerability scanning tools. - Maintain schedules, reporting requirements, and oversight for scanning requirements including threat assessments using industry standard vulnerability risk assessment standards. - Provide awareness and training to personnel and external customers regarding threats, vulnerabilities and overall risk. - Ensure that Service Level Agreements are met - Maintain standard operating procedures, processes and guidelines for security operations, threat, vulnerability and malware mitigation. - Automate security analysis, administration and remediation procedures, workflows and tasks - Maintain awareness of trends in security regulatory, technology, and operational requirements - Participate in client audits Education or Experience: - Graduation with a degree from a recognized university with specialization in Computer Sciences or a related discipline, combined with a minimum of (3) years of directly related practical experience and demonstrated ability to carry out the functions of the job. OR - Completion of two years of an acceptable post-secondary educational program in Computer Sciences from a recognized community college, or in a related discipline, combined with a minimum of (5) years of directly related practical experience and demonstrated ability to carry out the functions of the job. OR - Minimum of (7) years of directly related practical experience within the last eight years, and demonstrated ability to carry out the functions of the job. Qualifications Security Engineer Mandatory Skills - Experience using various vulnerability scanning toolsets including but not limited to Nessus, nCircle, Critical Watch, Qualys, and IP360 - Experience with traditional and advanced malware mitigation toolsets including but not limited to McAfee Virus Scan Enterprise, Symantec Norton Antivirus, FireEye, Palo Alto Wildfire, and Trusteer. - Knowledge and experience with compliance requirements relating to PCI, SOX, etc. - Experience working in IT Security Operations, using SANS methodology - Experience and extensive knowledge of Security Information Event Management - Experience in Intrusion Detection or Prevention Systems - Knowledge of: TCP/IP, computer networking, routing and switching - Experience in Linux/UNIX and Windows based devices at the System Administrator level - System log forensics (Syslog, Event Viewer) - Strong troubleshooting, reasoning and problem solving skills - Team player, excellent communication skills, good time management - Organizational skills and the ability to work autonomously with attention to processes - Ability to speak and communicate effectively with peers, management and clients - Ability and experience in writing clear and concise technical documentation - Ability to speak and write fluently Desirable: - SIEM experience - Experience in security penetration testing - Experience using ticketing systems such as Remedy - Security certifications: SANS/GIAC (GCIH, GCIA or GCUX), CCNA, CISSP, or CISA certifications would be assets - Knowledge of application security including web applications, web services, XML, SOA, AJAX, JSON, and web scanning tools - Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions - Knowledge of NIST, PCI, HIPAA Additional Information All your information will be kept confidential according to EEO guidelines.

As a leading provider of insurance and reinsurance with worldwide operations and employees in Bermuda, U.S., U.K., Continental Europe and Asia, we recognize that our success is derived directly from those who matter the most: our people. At Sompo International, our values of integrity, collaboration, agility, execution and excellence underpin our culture and our commitment to providing an employee experience that attracts and engages the best talent in the industry. As we continue to grow, we strive to find diverse, innovative and driven professionals to join our teams and offer a broad range of career and development opportunities at all levels, in multiple business areas, in each of our locations throughout the world. Our compensation and benefits programs are market driven and competitive, with excellent family friendly policies and flexible working provisions. Job Description Are you looking for your next opportunity? Sompo has a unique opportunity for an Application Security Engineer in our Information Security team. Location: This position will be based out of one of our US locations preferably the NYC / Purchase, NY / Garden City, NY / Morristown, NJ / Boston, MA / Conshohocken, PA or Charlotte, NC office. We strive for collaboration which is why we offer a work environment where our employees thrive and develop long lasting careers. Our business, your impact, our opportunity: What you'll be doing: * Develop and implement application-focused security controls during all phases of Sompo's Secure Software Development Lifecycle and production operations. * Collaborate, as needed, with development teams to enhance their secure coding practices, application design patterns, and technology selection. * Maintain a strong familiarity with: * Sompo's full stack of security technologies and common application architectures regulatory requirements for security and privacy technologies. * The various Sompo teams who are non-technical subject matter experts on those regulations. * Industry-standard approaches for aligning development, operations, and security. * Be responsible for continuously improving our suite of troubleshooting documents, SOPs, and support tools so that the IT support teams can self-resolve/diagnose application-level issues related to security incidents and/or controls. * Application security review (development lifecycle, technology selection) * Application security testing and instrumentation (production operations) * Support of security tooling and automation What you'll bring: * Minimum of 5 years of experience in information security. * Systematic thinking - the ability to take a complex sequence of events and isolate the critical/relevant stages. * Excellent interpersonal skills - the ability to engage with both end users and IT colleagues to understand a problem and determine fact patterns, measurable requirements, and success criteria. * Strong understanding of: * HTTP, HTML, REST, SOAP, JSON, XML, YAML, and other data formats, web authentication patterns, especially SAML and OAuth, TLS/X509, and cookies, DNS, TCP/IP, and related tools (e.g., interpreting packet captures), Encryption at rest and in flight. * Development and direct work experience with: * Languages for automation, especially Python and Powershell, Query tools. * Excel for ad-hoc analysis. Must be comfortable aggregating disparate sets of logs and other data for unified analysis. * Packet captures for low level network troubleshooting * Application development building blocks, Web application security components * Native security controls in the Microsoft stack (OS, Office, Edge) * Ability to write ad hoc queries using one or more of the following: * Splunk, Powershell, Regular expressions, SQL, XPATH * Ability to write practical audience-relevant documentation related to troubleshooting. * B.S. in Computer Science or Software Engineering Salary Range: $115,000 - $165,000 Actual compensation for this role will depend on several factors including the cost of living associated with your work location, your qualifications, skills, competencies, and relevant experience. At Sompo, we recognize that the talent, skills, and commitment of our employees drive our success. This is why we offer competitive, high-quality compensation and benefit programs to eligible employees. Our compensation program is built on a foundation that promotes a pay-for-performance culture, resulting in higher incentive awards, on average, when the Company does well and lower incentive awards when the Company underperforms. The total compensation opportunity for all regular, full-time employees is a combination of base salary and incentives that gets adjusted upfront based on overall Company performance with final awards based on individual performance. We continuously evaluate and update our benefit programs to ensure that our plans remain competitive and meet the needs of our employees and their dependents. Below is a summary of our current comprehensive U.S. benefit programs: * Two medical plans to choose from, including a Traditional PPO & a Consumer Driven Health Plan with a Health Savings account providing a competitive employer contribution * Pharmacy benefits with mail order options * Dental benefits including orthodontia benefits for adults and children * Vision benefits * Health Care & Dependent Care Flexible Spending Accounts * Company-paid Life & AD&D benefits, including the option to purchase Supplemental life coverage for employee, spouse & children * Company-paid Disability benefits with very competitive salary continuation payments * 401(k) Retirement Savings Plan with competitive employer contributions * Competitive paid-time-off programs, including company-paid holidays * Competitive Parental Leave Benefits & Adoption Assistance program * Employee Assistance Program * Tax-Free Commuter Benefit * Tuition Reimbursement & Professional Qualification benefits In today's world, what do we stand for? Ethics and integrity are the foundation of delivering on our commitment to you. We believe that core values drive success, and that when relationships are held in the highest regard, there is nothing that cannot be accomplished. At Sompo, our ring is more than a logo, it is a symbol of our promise. Click here to learn more about life at Sompo. Sompo is an equal opportunity employer and we intentionally value inclusion and diversity. Above all, we want you to work in an environment that respects everyone's unique contributions - we are passionately committed to equal opportunities. We do not discriminate based on race, color, religion, sex orientation, national origin, or age.

Procom is a leading provider of professional IT services and staffing to businesses and governments in Canada. With revenues over $500 million, the Branham Group has recognized Procom as the 3rd largest professional services firm in Canada and is now the largest “Canadian-Owned” IT staffing/consulting company. Procom's areas of staffing expertise include: • Application Development • Project Management • Quality Assurance • Business/Systems Analysis • Datawarehouse & Business Intelligence • Infrastructure & Network Services • Risk Management & Compliance • Business Continuity & Disaster Recovery • Security & Privacy Specialties• Contract Staffing (Staff Augmentation) • Permanent Placement (Staff Augmentation) • ICAP (Contractor Payroll) • Flextrack (Vendor Management System) Job Description Security Engineer On behalf of our client, Procom Services is searching for a Security Engineer for a contract opportunity in New Jersey City, NJ. Security Engineer Job Details Appropriate candidates should possess at least 3-7 years' experience in a Security Operations role as part of a Managed Security Services offering. We are looking for candidates who can provide a well-rounded knowledge and experience base in incident response and security event analytics. An overall flexibility and willingness to work under unpredictable time and project variables is essential. Key responsibilities: - Coordinate escalations to internal support teams to ensure timely delivery of incident resolutions - Provide operational management of various security toolsets including Bluecoat, Q-Radar, Qualys, Rapid 7, and FireEye. - Perform vulnerability scans, remediation oversight, reporting and metrics for managed infrastructure - Update and maintain policies, schedules and scan parameters for vulnerability scanning tools. - Maintain schedules, reporting requirements, and oversight for scanning requirements including threat assessments using industry standard vulnerability risk assessment standards. - Provide awareness and training to personnel and external customers regarding threats, vulnerabilities and overall risk. - Ensure that Service Level Agreements are met - Maintain standard operating procedures, processes and guidelines for security operations, threat, vulnerability and malware mitigation. - Automate security analysis, administration and remediation procedures, workflows and tasks - Maintain awareness of trends in security regulatory, technology, and operational requirements - Participate in client audits Education or Experience: - Graduation with a degree from a recognized university with specialization in Computer Sciences or a related discipline, combined with a minimum of (3) years of directly related practical experience and demonstrated ability to carry out the functions of the job. OR - Completion of two years of an acceptable post-secondary educational program in Computer Sciences from a recognized community college, or in a related discipline, combined with a minimum of (5) years of directly related practical experience and demonstrated ability to carry out the functions of the job. OR - Minimum of (7) years of directly related practical experience within the last eight years, and demonstrated ability to carry out the functions of the job. Security Engineer Mandatory Skills - Experience using various vulnerability scanning toolsets including but not limited to Nessus, nCircle, Critical Watch, Qualys, and IP360 - Experience with traditional and advanced malware mitigation toolsets including but not limited to McAfee Virus Scan Enterprise, Symantec Norton Antivirus, FireEye, Palo Alto Wildfire, and Trusteer. - Knowledge and experience with compliance requirements relating to PCI, SOX, etc. - Experience working in IT Security Operations, using SANS methodology - Experience and extensive knowledge of Security Information Event Management - Experience in Intrusion Detection or Prevention Systems - Knowledge of: TCP/IP, computer networking, routing and switching - Experience in Linux/UNIX and Windows based devices at the System Administrator level - System log forensics (Syslog, Event Viewer) - Strong troubleshooting, reasoning and problem solving skills - Team player, excellent communication skills, good time management - Organizational skills and the ability to work autonomously with attention to processes - Ability to speak and communicate effectively with peers, management and clients - Ability and experience in writing clear and concise technical documentation - Ability to speak and write fluently Desirable: - SIEM experience - Experience in security penetration testing - Experience using ticketing systems such as Remedy - Security certifications: SANS/GIAC (GCIH, GCIA or GCUX), CCNA, CISSP, or CISA certifications would be assets - Knowledge of application security including web applications, web services, XML, SOA, AJAX, JSON, and web scanning tools - Knowledge of: Strong Authentication, End Point Security, Internet Policy Enforcement, Firewalls, Web Content Filtering, Database Activity Monitoring (DAM), Public Key Infrastructure (PKI), Data Loss Prevention (DLP), Identity and Access Management (IAM) solutions - Knowledge of NIST, PCI, HIPAA Security Engineer Start Date ASAP Security Engineer Assignment Length 3+ months Additional Information All your information will be kept confidential according to EEO guidelines. Please send your resume in Word format only.

EROS Technologies was founded with a simple motive of offering the clients exactly what they want, how they want and when they want it. By leveraging for its clients its technological edge and right-sourcing advantage, EROS in a short period of time has grown to become one of the most trusted strategic technology partners. Treating every client as the top priority, we customize our solutions and services to align with the unique needs of each client. Job Description 5 to 7 years of experience in deployment & implementation of Privileged Identity Management using CyberArk solution for large scale customers across various industry verticals oPlay active role in the execution of the project and demonstrate strong technical leadership oHave a strong knowledge of the Cyber-Ark privileged Identity Management (PIM) suite CyberArk version 7, 8 and 9. oCapture detailed requirements for the Cyber-Ark solution based on input from platform owners, eco-system owners, the target architecture and high-level requirements. oDesign and Architecture of the overall CyberArk implementation. oPerforming compliance checks on CyberArk for IT security safes and to Provide alerts and reports appropriately. Investigate, Provide RCA and resolve Incidents. oOpen to travel as and when required for deployment at customer sites oBe a strong team player oAdvanced knowledge of windows/VMware administration. oAdvanced knowledge of Window Additional Information All your information will be kept confidential according to EEO guidelines.

At BBH, Partnership is more than a form of ownership-it's our approach to business and relationships. We know that supporting your professional and personal goals is the best way to help our clients and advance our business. We take that responsibility seriously. With a 200-year legacy and a shared passion for what's next, this is the right place to build a fulfilling career. We are seeking a highly skilled Cloud Security Engineer with deep expertise in Microsoft technologies, including Active Directory, Certificate Management, and Microsoft Defender for Cloud Apps. This role will be instrumental in designing, implementing, and maintaining secure cloud environments, ensuring compliance, and protecting sensitive data across the enterprise. Key Responsibilities * Design and manage Active Directory infrastructure, including group policies, domain services, and identity federation. * Oversee certificate lifecycle management, including issuance, renewal, and revocation using internal and public CAs. * Configure and manage Microsoft Defender for Identity usage, enforce policies, and mitigate risks. * Collaborate with security, compliance, and IT teams to define and enforce data protection strategies. * Develop automation scripts and workflows to streamline security operations and reporting. * Conduct regular audits and assessments to ensure adherence to security best practices and regulatory requirements. * Provide technical guidance and support during security incidents and investigations. Required Qualifications * 5+ years of experience in IT security or cloud infrastructure roles. * Strong hands-on experience with: * Active Directory and Azure AD * PKI and Certificate Management * Microsoft Defender for Identity * Proficiency in PowerShell or other scripting languages. * Solid understanding of cloud security principles and Microsoft 365 ecosystem. * Experience with regulatory frameworks (e.g., GDPR, HIPAA, ISO 27001). Preferred Qualifications * Microsoft certifications (e.g., SC-400, SC-200, AZ-500, MS-500). * Experience with Microsoft Sentinel, Intune, or other M365 security tools. * Familiarity with Zero Trust architecture and identity governance. Salary Range NJ: $140,000 - $200,000 base salary + annual bonus target BBH's compensation program includes base salary, discretionary bonuses, and profit-sharing. The anticipated base salary range(s) shown above are only for the indicated location(s) and may differ in other locations due to cost of living and labor considerations. Base salaries may vary based on factors such as skill, experience and qualification for the role. BBH's total rewards package recognizes your contributions with more than just a paycheck-providing you with benefits that enhance your experience at BBH from long-term savings, healthcare, and income protection to professional development opportunities and time off, our programs support your overall well-being. We value diverse experiences. We value diverse experiences and transferrable skillsets. If your career hasn't followed a traditional path, includes alternative experiences, or doesn't meet every qualification or skill listed in the job description, please do go ahead and apply. About BBH: Brown Brothers Harriman (BBH) is a premier global financial services firm, known for premium service, specialist expertise, technology solutions and partnership approach to client management. Across Investor Services and Capital Partners, we work with an enviable roster of sophisticated clients who make BBH their first call when they are tackling their hardest challenges. Delivering for our clients and each other energizes us. We believe that how we do our work is just as important as what we do. We are relentless problem solvers who know our best ideas come from collective debate and development-so we are never possessive about our ideas. Every day we come together as a diverse community of smart and caring people to deliver exceptional service and expert advice-creating success that lasts. No matter where you sit in the organization, everyone is empowered to contribute their ideas. BBHers can pick up the phone and call any colleague, and they are happy to help. Expanding your impact beyond your daily role is part of how we operate as trusted partners to one another. We believe stability is a competitive advantage, but being stable means having the knowledge, skill, and discipline to evolve, often-pushing the boundaries of innovation. As a private partnership, every investment we make is in the relationships, technologies, products and development we believe are in the long-term interests of our clients and our people. Our long-tenured leaders are experts in their areas and are actively involved in the day-to day business, taking the time to provide guidance and mentoring to build the next generation of BBHers. Because we know, our success begins with yours. Go to BBH.com to learn more about our rewards and benefits, philanthropy, approach to sustainability or how we support you to thrive personally, physically and financially. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, genetic information, creed, marital status, sexual orientation, gender identity, disability status, protected veteran status, or any other protected status under federal, state or local law.

Responsibilities: The Cloud Security Engineer is principally responsible for researching, designing, and integrating information security solutions and controls across the global enterprise in a way that is transparent to end users, supports executive strategies, and fundamentally ensures the security of the information MMC is entrusted to protect. The Cloud Security Engineer is responsible for conducting industry research on new and emerging security technologies in support of enhancing and maintaining evolving corporate strategies to ensure that security solutions will exhibit high levels of performance, security, scalability, maintainability, appropriate reusability and reliability upon deployment over $13 billion in revenue generation. The Cloud Security Engineer will design cloud security solutions, review internal and external IT projects and applications for risk and adherence to security policies, standards, and industry best practices. This position will lead and participate on multiple internal security project teams to evaluate and deploy cloud security technologies globally and to make design recommendations for security products and services for the firm. Must define, document and design secure infrastructure and application architectures within the primary tenants of Availability, Integrity and Confidentiality. The Cloud Security Engineer is responsible for maintaining and updating multiple product road maps supporting the secure cloud framework. This position will provide thought leadership regarding solutions, designs, architecture, integration, support, strategies across the entire organization to include decision making through successful implementation while employing the highest levels of integrity. Every decision must consider both direct and indirect impacts on the global MMC IT infrastructure. Design, document, and deploy secure cloud solutions globally to enhance and evolve the security posture of the firm ensuring data integrity, availability and confidentiality of all data entrusted to Marsh & McLennan to protect. This includes millions invested in Next Generation Firewall architecture, anti\-virus & anti\-malware controls, proxy solutions, Data Loss Prevention software, whole disk and removable media device encryption, 2FA and MFA authentication, and PKI technologies. Drive and implement key security strategies within the Marsh & McLennan operating companies designed to protect thousands of applications and servers world\-wide from threats. Responsible to design and implement cloud security architecture controls in support of hundreds of internal and external business IT projects and applications contributing to revenue growth globally. Review, assess and signoff on business projects with respect to risk and adherence to security policies, standards, and industry best practices for data protection of Company and client data. Requirements Must have 5 years using Docker, Kubernetes, F5 ASM, Cloud, On Premise, Firewalls, Malware, SaaS, IaaS, PaaS "}}],"is Mobile":false,"iframe":"true","job Type":"Contract","apply Name":"Apply Now","zsoid":"661045476","FontFamily":"Verdana, Geneva, sans\-serif","job OtherDetails":[{"field Label":"Industry","uitype":2,"value":"Technology"},{"field Label":"Work Experience","uitype":2,"value":"5+ years"},{"field Label":"Salary","uitype":1,"value":"151,000 \- 180,000"},{"field Label":"City","uitype":1,"value":"Hoboken"},{"field Label":"State\/Province","uitype":1,"value":"New Jersey"},{"field Label":"Zip\/Postal Code","uitype":1,"value":"07030"}],"header Name":"Cloud Security Engineer","widget Id":"**********00072311","is JobBoard":"false","user Id":"**********00190003","attach Arr":[],"custom Template":"3","is CandidateLoginEnabled":false,"job Id":"**********00658018","FontSize":"12","location":"Hoboken","embedsource":"CareerSite","indeed CallBackUrl":"https:\/\/recruit.zoho.com\/recruit\/JBApplyAuth.do"}

Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Addison, Texas; Jersey City, New Jersey; Boston, Massachusetts; Charlotte, North Carolina; Chicago, Illinois **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (*********************************************************************************************** **:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! **Job Description:** Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the security resilience of the bank's applications to malicious hacking activity. This senior technical role is responsible performing and leading ethical hacking assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include leading and performing research, understanding the bank's security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. These individuals are expected to perform application security-oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code. Key Responsibilities in order of importance: + Perform assigned analysis of internal and external threats on information systems and predict future threat behavior. + Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks. + Developing Proof-of-concepts for exploitation. + Perform assessments of the security, effectiveness, and practicality of multiple technology systems. + Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. + Prepare and present detailed technical information for various media including documents, reports, and notifications. + Provide clear and practical advice regarding managing risks. + Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills. + Respond to security incidents and provide technical assistance to leadership across the Information Security organization. Required Skills: + Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment + Detailed technical knowledge in at least 5 of the following areas: + security engineering + application architecture + authentication and security protocols + application session management + applied cryptography + common communication protocols + mobile frameworks + single sign-on technologies + exploit automation platforms + Web APIs + Cloud environments + LLM security + Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings + Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools + Experience performing manual code reviews for security relevant issues + Experience working with DAST and SAST tools to identify vulnerabilities + Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) + Experience with vulnerability assessment tools and penetration testing techniques. + Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction + Threat Analysis, threat modelling and SBOM analysis + Innovative thinking, threat actor simulation + Technology Systems Assessment + Technical Documentation + Advisory Desired: + CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy] + Strong programming/scripting skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

ADP is hiring a Lead Cloud Security Analyst in our Roseland, NJ office. This is a hybrid role. As a Lead Cloud Security Analyst, you will join a highly skilled team providing world-class infrastructure and network security assessments and security consultation for ADP's Global Security Organization (GSO). This team is responsible for the execution of ADP's global Compliance and Vulnerability Management Program (CVM) program for infrastructure and network across Cloud and on-premises locations. Services provided to the organization include Vulnerability management program management including Zero-day vulnerability response & Secure OS Build Compliance for cloud/container infrastructure as well as on-premises servers/endpoints. You will focus on supporting CVM Cloud initiatives by leveraging a variety of security tools. Working closely with product and technology teams, with your knowledge of industry standards, you will be ensuring our infrastructure meets and maintains the requirements of our CVM security program. To succeed in this position, you'll need knowledge and experience in securing cloud environments (AWS is a MUST) and in developing or being a part of a vulnerability management program working with a variety of product/DevOps teams. Experience with the use of security tools for scanning and detection coupled with the ability to analyze the results across a large data set using database and scripting tools. Balance that with ability to stay ahead of threats and security trends while refining processes in a rapidly changing environment to drive and evolve the program. Like what you see? Apply now! Learn more about ADP at tech.adp.com/careers WHAT YOU'LL DO: Here's what you can expect on a typical day in the life of a Lead Cloud Security Analyst at ADP. Develop: Using existing tools, leverage available data to prioritize what should be addressed to reduce risk in the environment. Measure: Develop metrics to track and show the performance of the program. Communicate: From working with technical teams to understand/solve security issues to summarizing status for senior management. Challenges: Across hundreds of products and a large global infrastructure, no day is the same and we must be prepared to respond to challenges presented. Risk Management: Understand and evaluate/respond to risks/vulnerabilities and how to mitigate them. Experience You'll Need: Deep understanding of information security specifically in the realm of vulnerability management (VM) Deep understanding of Cloud Security (AWS - Must, Other Cloud environments - Preferred) Experience managing/building VM programs - defining and building metrics, automation of response and remediation (guidance) Strong analytical/problem solving skills and cross functional knowledge across multiple development and security disciplines. Understanding of security and compliance tools such as Qualys, Crowdstrike etc. Experience working with CSPM tools such as Wiz, Prisma, Dome9/Cloudguard, etc. Ability to communicate security-related concepts to a broad range of technical and non-technical staff. Experience in scripting languages (Python - Preferred) and SQL Queries (Strong emphasis on Data Analytics) To Succeed in This Role: You'll have a bachelor's degree OR equivalent. Any of the following are a plus but not necessary: CISSP, CISM, etc. YOU'LL LOVE WORKING HERE BECAUSE YOU CAN: Team collaboration. Courage comes from how associates are willing to have difficult conversations, speak up, be an owner, and challenge one another's ideas to net out the best solution. Deliver at epic scale. We deliver real user outcomes using strong judgment and good instincts. We're obsessed with the art of achieving simplicity with a focus on client happiness and productivity. Be surrounded by curious learners. We align ourselves with other smart people in an environment where we grow and elevate one another to the next level. We encourage our associates to listen, stay agile, and learn from mistakes. Act like an owner & doer. Mission-driven and committed to navigating change, you will be encouraged to take on any challenge and solve complex problems. No tasks are beneath or too great for us. We are hands-on and willing to master our craft. Give back to others. Always do the right thing for our clients and our community and humbly give back to the community where we live and work. Support our associates in times of need through ADP's Philanthropic Foundation. Join a company committed to equality and equity. Our goal is to impact lasting change through our actions. What are you waiting for? Apply today! Find out why people come to ADP and why they stay: **************************** (ADA version: **************************** )

Company DescriptionJobs for Humanity is partnering with Capital One to build an inclusive and just employment ecosystem. Therefore, we prioritize individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Deaf or Hard of Hearing, Black, Hispanic, Asian, Military Veterans, the Elderly, the LGBTQ, and Justice Impacted individuals. This position is open to candidates who reside in and have the legal right to work in the country where the job is located. Company Name: Capital One Job Description201 Third Street (61049), United States of America, San Francisco, CaliforniaSenior Manager, Information Security Office Consultant At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates. What You'll Do: Act as a central Information Security point of contact for the Enterprise Platform team Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management Serve as an expert in Capital One's Information Security capabilities, solutions, policies, procedures and standards Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes Escalate and manage cyber security risk Provide ad hoc support on special Information Security hot topics for the business Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment Work with line of business leadership to anticipate their objectives and needs to better serve the line of business Product security consulting in Authentication/Access Management /Identity application and experienced in Authentication and industry-standard protocol for authorization/authorization Basic Qualifications: High School Diploma, GED or equivalent certification At least 8 years of experience working in cybersecurity or information technology At least 7 years of experience providing guidance and oversight of Security concepts At least 7 years of experience performing security risk assessments and security architecture reviews At least 7 years of experience with architecture, software design, networking, and cloud infrastructure At least 5 years of experience with cloud security engineering Preferred Qualifications: Bachelor's Degree 3+ years of experience in securing a public cloud environment (e.g. AWS, GCP, Azure) 4+ years of experience in IAM or related areas Experience building software utilizing public cloud (e.g. AWS, GCP, Azure) Familiarity with Cloud patch management practices such as system rehydration and image management Experience utilizing Agile methodologies Experience with Software Security Architecture Experience with Application Security Experience with Threat Modeling Experience with Penetration Testing or Vulnerability Management Experience with integrating SaaS products into an Enterprise Environment Experience with securing Container services Splunk-Fu / Enterprise Monitoring experience Financial services industry experience Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP) Experience in Offensive and Defensive Security techniques Experience in a regulated environment Strong conceptual thinking, influence and communication skills At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. New York City (Hybrid On-Site): $230,100 - $262,700 for Sr Manager, Cyber TechnicalSan Francisco, California (Hybrid On-Site): $243,800 - $278,200 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at ************** or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to [email protected] Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

ADP is Hiring a Lead Security Engineer - Application Runtime Protection Unlock Your Career Potential: Global Security Organization at ADP. Do you have a passion for going on the offensive to safeguard critical information? As ADP's Global Security Organization (GSO), we know that our clients rely on us for human capital management solutions, but beyond that, they entrust us with one of their most valuable assets -- their employee data. We are honored by this trust and are laser focused on securing data at every step in the information lifecycle, ensuring integrity, confidentiality and compliance with industry and government regulations at all times. From the cloud to the data center and across every emerging device, you'll join a team of experts in the GSO who are always staying one step ahead in this ever-changing world of data by continually evolving our strategies and technologies to protect ADP and our clients. POSITION SUMMARY You're a jack of all trades, leader by nature who has a deep desire to flex their skills in application runtime protection and are always out to help others grow with you. You like getting your hands dirty on everything and anything by contributing and learning in the weeds. One day you'll contribute to development projects and the next you're heads-down on security policy reviews or helping strategize the next great integration or optimization. You're humble about your accomplishments, but everyone recognizes you're not just keeping the lights on, but making them shine. You'll juggle the responsibility of contributing to and becoming the point person on multiple application runtime programs on a regular basis including Web Application Firewall Security, GenAI Guardrail Security, and API Security and you enjoy a little pressure from time to time, because it keeps you challenged and growing. This role is best suited for those who want to truly experience DevSecOps and grow within the Product Security organization at ADP. You will champion security while assessing application policies in a fast-paced environment at scale, getting deep in the weeds on program traffic, making challenging decisions, and contributing in every way possible towards the program (and inevitably your own career growth and skills to add to your utility belt). Like what you see? Apply now! Learn more about ADP at tech.adp.com/careers RESPONSIBILITIES: This is a full-time cybersecurity position for a (DevSecOps) lead security engineer Review policy level traffic on a weekly (or daily) basis in a timely manner and identify actions to tighten security across all programs (WAF, GenAI Guardrails, API) Present recommendations to policy owners (app development leads) and drive them to adopt your recommendations Aggregate metrics for reporting Contribute towards team or program improvements by identifying areas to improve and working with leadership to make Contribute towards software development activities as needed Maintain consistent documentation associated to all operational activities and all developed systems or integrations Be able to take high level directive and self-manage with touchpoints for clarity To Succeed in This Role: You'll have a bachelor's degree or equivalent knowledge demonstration in a relevant field such as computer science, computer engineering, or information technology QUALIFICATIONS REQUIRED: Five years of experience in security OR demonstrated success in at least three years of similar security work Demonstrated expertise in analyzing web traffic for known common attack patterns like SQLi, XSS, and more OR equivalent application security background (shift-left, pen test, etc.) with demonstrated potential to rapidly skill up Demonstrated leadership experience or potential STAR experience with public speaking and examples of ownership situations in team settings (projects, etc) or prior internships to demonstrate capabilities Expertise in reading and writing one core coding or scripting language (Java, Python, etc) Experience in querying (SQL) and data manipulation (RegEx, etc) across various toolsets Ability to self-identify patterns in metadata (security or otherwise) across individual or multiple records and strategize ways to quickly filter data as needed Possess a good understanding application security / shift-left and interest to learn and grow or apply skills in runtime protections (WAF, GenAI Guardrails, API Security, etc.) Preference will be given to candidates who have the following: Experience in detailed & organized documentation Inclination to proactively learn and grow within a cybersecurity organization Have an opinion - the ability to think and judge for yourself is crucial towards helping our application teams reduce their workload in identifying false positives What are you waiting for? Apply today! Find out why people come to ADP and why they stay: https://youtu.be/ODb8lxBrxrY (ADA version: https://youtu.be/IQjUCA8SOoA )

General Responsibilities: The Security Engineer III will be responsible for planning, designing, implementing and supporting various security technologies that are used to protect the network from external and internal threats. The Security Engineer III is a technical, hands-on expert that is responsible for protecting the confidentiality, integrity, and availability of networks, systems, and data based on the security policies, standards, compliance regulations, and industry best practices. Key Responsibilities: Work closely with various internal and external business units to communicate security concepts, define security requirements, controls, vulnerabilities, etc., and maintain a strong working relationship Assist with short-term and long-term security strategies that are aligned with business objectives while working with other team members on tactical projects. Evolve and maintain overall security architecture Participate and contribute to different industry-related security forums Specific Responsibilities: Administer/lead network and application security efforts for a large enterprise and service provider network Audit, optimize, and maintain network security infrastructure including firewalls, VPN, intrusion detection/prevention, Network, and Endpoint Detection and Response platforms (NDR/EDR), netflow based tools, URL filtering, NAC, etc. Assist in evaluating and developing solutions for complex network security and protection technologies for enterprise and service provider environment including but not limited to Advanced Breach Detection/Mitigation, DDoS attack detection/mitigation, etc. Manage and administer Security Incident and Event Management (SIEM) tools, network and system forensics tools Analyze network traffic flow between multiple hosts spanning firewalls in different geographical locations to protect appropriately Assist with periodic threat and vulnerability assessment, penetration testing, and web application assessments to identify security risks across the company Work with an internal and external audit to ensure compliance to appropriate regulations and data protection directives (PCI, CPNI, CCPA/CPRA and CALEA, etc.) Initiate and manage special projects related to information security that may be needed to appropriately respond to ad-hoc or unexpected information security events Assist in developing security policies, standards, guidelines, procedures Assist in developing a security awareness program Perform other duties as requested by supervisor Preferred Experience / Skills: Bachelor's degree in Computer Science, Telecommunications or Information Technology is required 5+ years technical hands-on security experience Extensive experience with firewall technologies, IPS/IDS, VPN, SIEM, netflow, NAC, vulnerability scanning tools, URL filtering, DLP, EDR, AppSec DAST/SAST platforms and other security tools Working knowledge and experience with Cybersecurity and Risk Management frameworks such as COBIT, NIST CSF, and ISO 27001 is a plus Strong analytical and problem-solving skills, with an ability to assimilate, analyze and correlate large amounts of forensic data from the various networks, operating systems, application, and security devices, logs, and alerts Experience in security incident handling, operations, and forensics Experience in security assessments, penetration testing, and web application assessments preferred Experience in handling security for a large enterprise network or service provider network preferred Strong interpersonal and communication skills Ability to work well under pressure, meeting multiple deadlines Ability to present and communicate clearly with technical and non-technical staff as well as senior management Ability and willingness to take on additional tasks as assigned Security certifications such as CISSP, CISA, CISM, CRISC, OSCP ,and SANS GIAC is a plus

Job Title : Cyber Security Identity & Access Management Engineer Experience Required - 7+ Years Must Have Technical/Functional Skills * Deep understanding of Access Management - Authentication & Single Sign-On, authentication protocols like OAuth2.0, OpenID Connect and SAML2.0 * Experience with development of Transmit Security Journeys, WebSDK & scripting (AuthScript) * Hands on experience in implementation of user authentication and authorization using Transmit Security * Hands on with development and deployment of custom developed applications using Java/J2EE technologies. * Hand on with development of REST API using Java Spring Framework * Full understanding of HTTP Request/Response tracing, Session Handling * Good understanding of Secure HTTP communication - client to server and server to server secure communication * Good understanding of Java Spring Boot application development, deployment * Good understanding of NoSQL databases like MongoDB, Casandra, etc. * Good understanding of DevOps tools like Git, Eclipse/IntelliJ, Jenkins, Docker, Puppet, Kubernetes, Ansible, etc. Non-Technical: * Scheduling & Planning - should be able to plan and execute the deliverables as per the proposed design. * Communication - Ability to communicate Up, Down, and Across All Levels of the Organization and Technical Backgrounds * Detail Oriented - Good Understanding of IAM concepts * Analytical, Self-motivated - Critical thinker who can analyze issues and is able to troubleshoot, along with the developers, to find root cause of the problem. * Interpersonal skills and Professional demeanor - Respond to customer inquiries in a timely manner, guiding and advising customers on security best practices in a friendly customer facing manner. * Team Player - Ability to work in a team & collaborate with other application team and infrastructure teams * Problem-Solver - Processes tactical mitigations based on results of analysis and determination of issues found in the incident and issues found in inherited legacy systems. Provide recommendation for improvements on the existing set up Roles & Responsibilities * Incident Triaging - Performing incident resolution through analysis and technology support * Daily Health checks and Monitoring * Operation status reports and metrics: Incident management, Service request management * SLA Management for respond, restore and resolve, Troubleshooting and resolution of issues, Configuration Management, Enhancements, Product Vendor Connect, Platform Support * Knowledge management - SOP creation and updates. Knowledge transition. Provide complete knowledge of system flow and interdependence between various internal and external systems. * Auditing & Reporting - Support Health Equity in audits and provide Out-of-the-box reports Project Management Salary Range - $100,000 to $160,000 per year TCS Employee Benefits Summary: Discretionary Annual Incentive. Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans. Family Support: Maternal & Parental Leaves. Insurance Options: Auto & Home Insurance, Identity Theft Protection. Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement. Time Off: Vacation, Time Off, Sick Leave & Holidays. Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing. #LI-JS2

Period of Performance: Part-time, maximum 30 hours per week, within a three-year contract term starting on or about January 1, 2026 Work Environment: Onsite work required on an as-needed basis Citizenship Requirement: Must be a U.S. citizen Company Overview: About Enlightened: Enlightened is a leading provider of IT and federal program support services, committed to delivering innovative solutions and ensuring mission success. Position Overview: Enlightened is seeking a highly motivated Security Grants Consultant to provide subject-matter expertise to ensure security projects are planned and executed in line with grant requirements and best practices. The role connects security program needs, grant rules, and management practices to support strategic use of homeland security grants. Key Responsibilities Advise on structuring and prioritizing projects to meet both security objectives and grant eligibility criteria. Support development of multi-year security investment plans, timelines, and funding strategies using UASI and related programs. Review proposed and active projects for compliance with grant conditions, cost allowability, and documentation standards. Provide guidance and training to internal stakeholders on grant processes, requirements, and best practices. Required Qualifications: Bachelor's degree, preferably in Accounting, Business, Finance, Public Administration, or five (5) years of comparable experience. Strong research and writing skills, with experience in grant writing or grant program administration. Familiarity with federal, state, or local grant processes, particularly homeland security-related programs such as UASI and general reimbursement programs. Minimum of three (3) years of experience managing grant awards, including completing required financial reporting and monitoring project costs, schedules, and budgets. Strong financial analysis, budgeting, and reporting skills, with experience in grant administration or grant-funded programs preferred. Excellent organization and attention to detail, with the ability to manage multiple grants and deadlines. Must be a U.S. citizen. Support post-award activities, such as responding to funder questions, assisting with amendments, and preparing required progress documentation. Benefits: Actual compensation will be determined based on experience and qualifications as well as internal equity and alignment with market data. At Enlightened, we pride ourselves on offering a comprehensive and industry-competitive benefits package to our full-time employees. Our benefits include: Medical/Dental/Vision Insurance with Health Savings Accounts (HSA) Flexible Spending Accounts (FSA) 401(k) Retirement Plan Paid Holidays, Vacation, & Sick Leave Professional Training & Development Reimbursement Please note, these benefits are available exclusively to full-time employees of Enlightened. Equal Opportunity Statement: Enlightened is proud to be an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, disability, or any other federal, state, or local protected class.

E*Pro Consulting service offerings include contingent Staff Augmentation of IT professionals, Permanent Recruiting and Temp-to-Hire. In addition, our industry expertise and knowledge within financial services, Insurance, Telecom, Manufacturing, Technology, Media and Entertainment, Pharmaceutical, Health Care and service industries ensures our services are customized to meet specific needs. For more details please visit our website ****************** Job Description Dallas, TX/Charlotte, NC/ Newark, DE Senior Security Engineer position on the team responsible for all engineering aspects of the company's Public Key (PKI) infrastructure. This technical team also supports both internally and externally hosted Certification Authorities (CAs) as well as SSL and Code Signing. Responsibilities include: Assist in the Design, test, implement changes/additions to the PKI infrastructures Provide consulting to all lines of business's within the bank on security related topics to include encryption and certificates etc. Interface with vendors that provide security/encryption related services to the bank Participate in defining and developing the strategic plan for PKI for the enterprise Lead the definition and implementation of POCs around PKI and other certificate related technologies Ensure 24x7 uptime of the PKI services Salary Range: 120K Qualifications Bachelors degree or higher in engineering or a related field with 6-8 years of IT infrastructure integration experience with a recent focus on security Demonstrated expertise in PKI infrastructure Strong Linux/UNIX experience Understanding of networking concepts Strong Windows experience Enterprise integration and migration experience Ability to coordinate and Support large & complex projects including product upgrades and deployment of new capabilities and enhancements. Experience leading (or being a senior member of) a highly technical team Background in delivering full-life cycle projects Strong analytical skills to solve problems, perform research and derive solution opportunities Strong written and oral communications skills Additional InformationAll your information will be kept confidential according to EEO guidelines.