Security engineer jobs in Westtown, PA - 243 jobs

Since 1869, we've connected people through food they love. We're proud to be stewards of amazing brands that people trust. Our portfolio includes the iconic Campbell's brand, as well as Cape Cod, Chunky, Goldfish, Kettle Brand, Lance, Late July, Pacific Foods, Pepperidge Farm, Prego, Pace, Rao's Homemade, Snack Factory, Snyder's of Hanover. Swanson, and V8. Here, you will make a difference every day. You will be supported to build a rewarding career with opportunities to grow, innovate and inspire. Make history with us. Why Campbell's… Benefits begin on day one and include medical, dental, short and long-term disability, AD&D, and life insurance (for individual, families, and domestic partners). Employees are eligible for our matching 401(k) plan and can enroll on the first day of employment with immediate vesting. Campbell's offers unlimited sick time along with paid time off and holiday pay. If in WHQ - free access to the fitness center. Access to on-site day care (operated by Bright Horizons) and company store. Giving back to the communities where our employees work and live is very important to Campbell's. Our “Campbell's Cares” program matches employee donations and/or volunteer activity up to $1,500 annually. Campbell's has a variety of Employee Resource Groups (ERGs) to support employees. Who we are looking for… The Campbell's Company is looking for an senior-level Engineer - Information Security to join our critical and highly visible Information Security team. This position will primarily be responsible for managing the lifecycle and effectiveness of key security tools and processes. You will work closely with the Architecture and Risk Management teams to ensure that security controls are in place and appropriately managing risk throughout the Information Technology, Operational Technology, and Cloud environments. What you will do… Essential responsibilities will include but not be limited to: Design, deploy, and integrate security tools and processes Design, deploy, integrate Privilege Access Management (PAM) services for Linux and Windows environments Experience in developing, testing, and deploying ZeroTrust security strategies focused on identity, device, and network contexts Cloud (Azure / AWS) security engineering Develop and implement automation strategies tied to both administrative maintenance of the environment, as well as contribute to the overall detection engineering efficiency Active Directory security hardening Job Complexity Manage multiple, concurrent project and task assignments, placing proper priorities on tasks and attention to detail to follow through all assignments to completion Create and manage the lifecycle of documentation to support the architecture and operations of security systems Continuously improve operational playbooks and knowledge transfer material to enable operational support teams to handle increasingly complex tasks to enable Engineering time is focused on the most valuable work Serve as an incident escalation point Provide thought leadership and communications expertise in the development of policies, standards, procedures, and other communication for the department Provide thought leadership on key performance indicators for measuring success objectively Integrate existing and new tools and supporting resources into our security intelligence platform, with the goal of deriving actionable data Keep current with the latest news and events surrounding cyber threats and security Evaluate new technologies and processes that enhance security capabilities What you bring to the table… (Must Have) Bachelor's degree in a computer science or information technology discipline 5+ years of relevant work experience, including: 2 years of experience as an Information Security Analyst with experience within at least two of the following disciplines: networking, system hardening, identity and access management, or privileged access management 1 year of experience in system or firewall administration Deep understanding of Linux identity engineering and administration 2 years of experience working with privileged access management platforms across Windows, Linux, network device, and containerized platforms Significant experience working with automation scripting leveraging at least 3 of the following: python, PowerShell, API based integrations, and no/low-code workflow automation platforms. Strong knowledge of L4-L7 protocols such as SSL, HTTP, DNS, SMTP, and IPsec Deep understanding of TCP/IP, computer networking, routing, and switching, and encryption technologies and standards Knowledge of identity and access management principles (SSO, MFA, ModernAuth) It would be great if you have… (Nice to Have) CISSP certification is a plus Cloud security experience is a plus Conceptual understanding of the Cyber Kill Chain and MITRE ATT&CK framework Experience with Manufacturing environments is a plus Experience with leveraging LLM's or statistical analysis to drive operational insights Strong capacity to understand vectors and the risks associated with them Experience with deploying and managing distributed architecture layer 7 firewalls Experience with IDS/IPS, penetration and vulnerability testing Strong security policy knowledge and experience Strong ability to clearly communicate and document complex concepts Data protection tools and processes - Data Loss Prevention [DLP], Rights Management Services [RMS], Cloud Access Security Broker [CASB] More about the job… This position reports to the Senior Manager for Security Architecture and Engineering Compensation and Benefits: The target base salary range for this full-time, salaried position is between $131,400-$188,900 Individual base pay depends on work location and additional factors such as experience, job-related skills, and relevant education or training. Total pay may include other forms of compensation. In addition, we offer competitive health, dental, 401k and wellness benefits beginning on the first day of employment. Please ask your Talent Acquisition Partner for more information about our total rewards package. The Company is committed to providing equal opportunity for employees and qualified applicants in all aspects of the employment relationship, including consideration for employment, without regard to race, color, sex, sexual orientation, gender identity, national origin, citizenship, marital status, protected veteran status, disability, age, religion, or any other classification protected by law.

At DuPont, our purpose is to empower the world with essential innovations to thrive. We work on things that matter. Whether it's providing clean water to more than a billion people on the planet, producing materials that are essential in everyday technology devices from smartphones to electric vehicles, or protecting workers around the world. Discover the many reasons the world's most talented people are choosing to work at DuPont. Why Join Us | DuPont Careers (******************************************* At **DuPont** , our paid internship and co-op opportunities are designed to give students more than just a glimpse into the professional world-they're a launchpad for your future. You'll work on real, impactful projects alongside experienced DuPont professionals, applying what you've learned in the classroom to solve real-world challenges. Through this hands-on experience, you'll build essential skills, grow your network, and gain exposure to a collaborative, inclusive workplace that values innovation and leadership. You will have the opportunity to collaborate across teams and functions, gaining exposure to innovative technologies and diverse perspectives that drive real-world solutions. **As a Cyber Security Engineering intern or co-op, you'll:** + Embrace DuPont's core values in safety, sustainability, and innovation + Gain industrial experience and insight into our businesses, products, and customers + Work in team-based environments with mentorship and technical training + Participate in professional development opportunities tailored to your role Our student program offers both internships and co-op assignments tailored to fit your academic schedule and career goals. Assignment length and scope may vary by site and function, but every experience is designed to help you grow, contribute, and lead. Typical roles in manufacturing, operations, and business at DuPont span a wide range of exciting and impactful areas, including Manufacturing Technical and Process Engineering, Capital Projects, Automation and Process Control, Leveraged Engineering, Equipment Reliability and Maintenance, Continuous Improvement, Product Quality, and Technical Service Our US student program includes 10-12 week internships and 3-6 month co-op assignments. Position Specific Information DuPont Information Security & Compliance (ISC) is opening up an exciting opportunity join a growing team that plays a vital and dynamic role in the company. DuPont is on the leading edge of cybersecurity in the manufacturing space. The ISC team is endeavoring to keep the company safe from malicious cyber threats. This exciting role will put the successful candidate on the ground at many of DuPont's sites to help local IT and engineering ensure the manufacturing areas are secure and protected. The primary responsibilities for the Security Engineer will include: + Deploying Cyber Integrity software/hardware + Work with Vendor, vendor teams and PM to follow the playbook, and plan to roll out to as many sites as possible smoothly + Ensuring firewalls are working as intended and rules are up to date, including all other pre-work for site deployments + Site surveys and inventories of the machines on the PCN (Process Control Networks) and OMN (Operations Management Networks) + Work to develop content for the Cyber Champion's network and share learnings across all DuPont sites. + Work in out Computer Integration TEST Center (CITC) where we test out new technologies in the cyber security space A strong candidate will have some knowledge of Network Architecture and/or some knowledge of Automation and Process Control (A&PC) technology. A strong desire to develop cybersecurity skills and interest in working on computers will also be helpful. Where skills are lacking, training will be provided. This is your chance to learn some basic and advanced cyber security tools to build up your skill sets. Beyond these technical skills, the job requires an organized worker and excellent visual and verbal communicator Requirements + Currently earning Engineering Degree or Computer Science or Cyber Certifications or relevant degree programs + GPA of 3.0 or higher (out of 4.0 scale) + Legal right to work in the U.S. without restriction + Effective interpersonal skills to build collaborations with site Cyber Champions and automation engineers to help facilitate the work + Strong organizational skills to manage deployments and to coordinate with several different teams, ISC (Information Security and Compliance), Operations, IT&P, A&PC (Automation and Process Control), etc. Join our Talent Community (**************************************************** to stay connected with us! DuPont is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability or any other protected class. If you need a reasonable accommodation to search or apply for a position, please visit our Accessibility Page for Contact Information (****************************************************** . DuPont offers a comprehensive pay and benefits package. To learn more visit the Compensation and Benefits page (********************************************************** .

Pyramid is a leading Information Technology Consulting services company headquartered in metropolitan Atlanta, GA with prime emphasis on the following service offerings: • Staff Augmentation • Lifecycle IT solutions o Application Development & Support o Outsourced Testing • Mobile Development and Test Automation The company was incorporated in the State of Georgia in 1996 and has grown to over 2500 Information Technology consultants serving clients across the United States and around the globe. In addition to Atlanta, Pyramid has offices worldwide including Charlotte, NC; Chicago, IL; Dallas, TX; Richmond, VA; San Francisco, CA and Somerset, NJ in the United States, London in the United Kingdom, Singapore, and three offices in India (New Delhi, Hyderabad and Chandigargh). Pyramid has been ranked by Staffing Industry Analysts as one of the largest diversity staffing firms specializing in IT and among the fastest growing U.S. staffing firm overall. In addition, Pyramid is a previous winner of the National Minority Supplier Development Council's Supplier of the Year and has won numerous Supplier of the Year awards from the Georgia Minority Supplier Development Council. see less Specialties IT Staff Augmentation, Application Management Services, Enterprise Project Solutions, Mobile Development, Mobile Test Automation, Product and Engineering Services, Enterprise Mobility, Test Automation, QA - Manual and Automated Testing, QA Strategy Website ************************ Industry Information Technology and Services Type Privately Held Company Size 1001-5000 employees Founded 1996 Job Description Description - · We need a Security Engineer who can provide clear and concise security requirements that meet corporate direction. · CISSP certification must Additional Information All your information will be kept confidential according to EEO guidelines.

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client.* Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Job Description Forhyre is seeking a talented individual that will be able to provide security architecture support and interface across the program as needed. This support includes, but is not limited to, cybersecurity solutions, providing technical strategy for solutions, guidance, policy, and implementations. The successful candidate for this position is a highly motivated individual, with a strong IT security background who excels integrating, operating, and deploying security technology and solutions and interacts well with both internal teams and clients. Note: U.S. citizens and those authorized to work in the U.S. are encouraged to apply. We are unable to sponsor at this time. Responsibilities: Engineer, implement and monitor security measures for the protection of computer systems, networks and information Develop and implement security policies and controls to support the Cyber Security framework Manage the existing cyber security training program across global, multilingual business Assists in ensuring global Information security program meets all industry regulations, standards, and compliance requirements Drive adoption of infrastructure security best practices and work with Information Technology teams to ensure security standards are maintained Implement technology to proactively scan Information Technology environment for security breaches and suspicious activity Continuous improvement in the areas of Information Security technologies, techniques and processes Develops and maintains an effective system for the distribution of regular key performance indicator reports and dashboard Ability to interpret penetration test results and describe issues and fixes to non-security expert Responsible for leading an accurate & comprehensive status reporting to the executive steering committee Create and implement SOP/ process improvement initiatives to achieve outcomes that align or exceed the expectations of strategic roadmap Skills & Experience Bachelor's degree and 12+ years of experience; additional years of directly applicable experience may be accepted in lieu of a degree. Certified Information Systems Security Professional (CISSP) 8+ years hands-on experience designing or implementing security solutions, including all related documentation and artifacts Analytical ability, problem-solving skills, and ability to break down complex problems into actionable steps Extensive experience in design and development of enterprise security architectures. Experience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology. Strong knowledge and experience in secure enterprise architecture design, especially with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and resultant applications Experience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes Previous experience developing architectures, strategies, strategic plans, roadmaps, and technical standards for the federal IT enterprise environment. Vulnerability Assessment testing and/or Penetration Testing (preferred) Robotic Process Automation/Intelligent Automation (preferred) Business case development supporting security technology solutions (preferred) Additional certifications demonstrating cybersecurity/technical mastery (preferred)

APPLICATION INSTRUCTIONS: * CURRENT PENN STATE EMPLOYEE (faculty, staff, technical service, or student), please login to Workday to complete the internal application process. Please do not apply here, apply internally through Workday. * CURRENT PENN STATE STUDENT (not employed previously at the university) and seeking employment with Penn State, please login to Workday to complete the student application process. Please do not apply here, apply internally through Workday. * If you are NOT a current employee or student, please click "Apply" and complete the application process for external applicants. Approval of remote and hybrid work is not guaranteed regardless of work location. For additional information on remote work at Penn State, see Notice to Out of State Applicants. POSITION SPECIFICS We are searching for a self-motivated Cyber Security Systems Engineer to join our Research Office Information Technology Division at the Applied Research Laboratory (ARL) at Penn State University. The Research Office Information Technology Division provides systems design, administration, and support services for the enablement of key research functions. This is a research support position where building sustained awareness of research activities, documenting emerging needs, and advocating effectively to ensure that critical dependencies are resourced and addressed is paramount. Ideal candidates will possess a broad scope of information technology (IT) skills, the ability to establish and grow partnerships, and adapt quickly to emerging and complex needs. ARL is an authorized DoD SkillBridge partner and welcomes all transitioning military members to apply. You will: * Lead ITS's engagement with the Research Office to: * Bridge communication between researchers and ITS; translating complex research requirements into actionable, prioritized IT strategies * Surface IT needs proactively and co-create solutions * Develop a robust understanding of sponsor and research objectives to anticipate IT dependencies and construct/align technical solutions with sponsor goals * Demonstrate understanding of research needs and priorities by acting as a partner in problem solving to identify solutions * Develop and maintain documentation of current and emerging IT needs and priorities * Advocate for research needs within ITS while providing information to support prioritization at the Lab leadership level * Provide a broad scope of technical support for research related operations * Ensure IT hardware and software follow proper system design, operations, configurations, and maintenance * Generate and maintain system and process documentation * Provide general consultative services to researchers on a broad scope of technology * Provide field testing support at off-site locations Required skills/experience areas include: * Advanced Linux administration and support * Broad scope of IT hardware (server, workstation, networking, peripherals, etc.) * General scripting languages (Bash, PowerShell, Python, etc.) * Containerization technologies (Docker, Podman, Kubernetes, Rancher, etc.) * Ability to communicate clearly with technical and non-technical audiences in written and verbal form * Exceptional ability to translate complex research objectives and technical requirements to both technical and non-technical audiences * Exceptional problem-solving skills and the ability to leverage them to resolve technical and procedural issues * Networking concepts and technologies * Demonstrated ability to problem solve collaboratively, build relationships, and foster cohesion * Current eligibility for access to classified information at the TS/SCI level or higher and may be subject to a government background investigation to upgrade clearance eligibility, if required Preferred skills/experience areas include: * Familiarity with DCSA, DoD, and/or IC Authorization to operate processes, procedures and framework * Support of CI/CD pipelines (Bamboo, Jenkins, GitLab, etc.) * Automation and management of Linux and Windows system configurations with scripting, policy, and management tools (shell scripting, Satellite, Puppet, Ansible, MCM, system and group policy, etc.) * Vulnerability and security scanning tools (ACAS, Nessus, SCC, Trivy, Grype, SCAP, OpenSCAP, Evaluate STIG, etc.) * Commercial, government, and DoD cloud computing environments * Support of research computing environments and projects Your working location can be hybrid on-site/work from home located in State College, PA. This position may require periodic travel to remote locations in support of testing. Questions related to flexible work should be directed to the hiring manager during the interview process. MINIMUM EDUCATION, WORK EXPERIENCE & REQUIRED CERTIFICATIONS If filled as Cyber Security Systems Engineer - Principal Professional, this position requires: Master's Degree 8+ years of relevant experience; or an equivalent combination of education and experience accepted Required Certifications: None If filled as Cyber Security Systems Engineer - Senior Professional, this position requires: Bachelor's Degree 6+ years of relevant experience; or an equivalent combination of education and experience accepted Required Certifications: None ARL's purpose is to research and develop innovative solutions to challenging scientific, engineering, and technology problems in support of the Navy, the Department of Defense (DoD), and the Intel Community (IC). FOR FURTHER INFORMATION on ARL, visit our web site at **************** BACKGROUND CHECKS/CLEARANCES Employment with the University will require successful completion of background check(s) in accordance with University policies. All positions at ARL require candidates to possess the ability to obtain a government security clearance; you will be notified during the interview process if this position is subject to a government background investigation. You must be a U.S. citizen to apply. Employment with the ARL will require successful completion of a pre-employment drug screen. SALARY & BENEFITS The salary range for this position, including all possible grades, is $86,300.00 - $164,000.00.THE PROPOSED SALARY RANGE MAY BE IMPACTED BY GEOGRAPHIC DIFFERENTIAL Salary Structure - Information on Penn State's salary structure Penn State provides a competitive benefits package for full-time employees designed to support both personal and professional well-being. In addition to comprehensive medical, dental, and vision coverage, employees enjoy robust retirement plans and substantial paid time off which includes holidays, vacation and sick time. One of the standout benefits is the generous 75% tuition discount, available to employees as well as eligible spouses and children. For more detailed information, please visit our Benefits Page. CAMPUS SECURITY CRIME STATISTICS Pursuant to the Jeanne Clery Disclosure of Campus Security Policy and Campus Crime Statistics Act and the Pennsylvania Act of 1988, Penn State publishes a combined Annual Security and Annual Fire Safety Report (ASR). The ASR includes crime statistics and institutional policies concerning campus security, such as those concerning alcohol and drug use, crime prevention, the reporting of crimes, sexual assault, and other matters. The ASR is available for review here. EEO IS THE LAW Penn State is an equal opportunity employer and is committed to providing employment opportunities to all qualified applicants without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you are unable to use our online application process due to an impairment or disability, please contact ************. Federal Contractors Labor Law Poster PA State Labor Law Poster Penn State Policies Copyright Information Hotlines

JobID: 210684456 JobSchedule: Full time JobShift: : As a Lead AIML Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an integral part of a team that works to deliver software solutions that satisfy functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Job responsibilities * Builds AIML technical controls software solutions: design, development, and technical troubleshooting across multiple cloud platforms (AWS, Azure, GCP), with the ability to think beyond routine or conventional approaches to build solutions or break down technical problems * Develops secure high-quality production code, and reviews and debugs code written by others * Produces architecture and design artifacts for complex applications while being accountable for ensuring design constraints are met by software code development * Leads evaluation sessions with external vendors, startups, and internal teams to drive outcomes-oriented probing of architectural designs, technical credentials, and applicability for use within existing systems and information architecture * Contributes to software engineering communities of practice and events that explore new and emerging technologies * Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills * Formal training or certification on software engineering concepts and 5+ years applied experience * Advanced in one or more programming language(s): Python, Java, Golang * Extensive practical experience with at least one public cloud (Google Cloud Platform, Amazon Web Services) * Hands on practical experience in system design, application development, testing, and operational stability across AWS, Azure, and GCP * Subject matter expert in securing AIML systems with practical experience in AI and machine learning technologies * Knowledgeable in AI safety, AI alignment, AI cybersecurity concepts, and trends, including GenAI security * Ability to tackle design and functionality problems independently with little to no oversight * Proficient in all aspects of the Software Development Life Cycle * Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security Preferred qualifications, capabilities, and skills * Experience designing, deploying, and managing solutions across AWS, Azure, and GCP. * Google Cloud Professional is a plus.

Lead Info Security Engineer - (260154) Description The Lead Information Security Engineer plays a crucial role in supervising the improvement, maintenance, and management of Temple Health's information security posture and related technologies. This position entails leading security projects, providing technical guidance and mentorship, overseeing blue team defensive operations and purple team exercises, coordinating vulnerability management, collaborating with business units and stakeholders, representing the security function, and managing vendor relationships including MSSPs, while working with cross functional IT and operational teams to ensure effective implementation and continuous enhancement of security controls and solutions This role requires three days on-site (Tuesday, Wednesday and Thursday) at Temple Health Women's and Families Hospital. Education• Bachelor's Degree in Computer, Information Sciences or Business Administration (Required) or • Combination of relevant education and experience may be considered in lieu of degree (Required) Experience• 3 years experience in a Leading Information Security Programs including mentoring / managing junior security engineers/analysts for organizations (Required) • 5 years experience leading Information security initiatives independently (Required) • 5 years experience with risk assessment tools, technologies, and methods (Required) • 7 years experience with anti-virus software, intrusion detection, firewalls, and content filtering (Required) • General Experience with communicating network security issues to peers and management (Required) • General Experience and knowledge with project management simultaneously leading and coordinating multiple projects (Required) • General Experience leading and mentoring a team in a high performing collaborative team environment (Required) • General Experience and knowledge with an in-depth understanding of hardware configurations, database management tools, query language, and application topologies (Required) • General Experience and knowledge with analyzing, diagnosing, suggesting, and implementing process improvements (Required) • General Experience in Healthcare IT (Preferred) Licenses• Cert Info Sys Security Prof (Required) • GIAC Cert Incident Handler (Preferred) • GIAC Penetration Tester (Preferred) • GIAC Cert Forensic Examiner (Preferred) Your Tomorrow is Here!Temple Health is a dynamic network of outstanding hospitals, specialty centers, and physician practices that is advancing the fight against disease, pushing the boundaries of medical science, and educating future healthcare professionals. Temple Health consists of Temple University Hospital (TUH), Fox Chase Cancer Center, TUH-Jeanes Campus, TUH-Episcopal Campus, TUH-Northeastern Campus, Temple Physicians, Inc. , and Temple Transport Team. Temple Health is proudly affiliated with the Lewis Katz School of Medicine at Temple University. To support this mission, Temple Health is continuously recruiting top talent to join its diverse, 10,000 strong workforce that fosters a healthy, safe and productive environment for its patients, visitors, students and colleagues alike. At Temple Health, your tomorrow is here!Equal Opportunity Employer/Veterans/DisabledAn Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. Your Tomorrow is Here!Temple Health is committed to setting new standards for preventing, diagnosing and treating major diseases in our community and across the nation. Achieving that goal means investing in our employees' success through staff and leadership development. Our recruitment strategy is to attract and retain a diverse, high performing workforce that fosters a healthy, safe and productive environment for our patients and colleagues alike. Primary Location: Pennsylvania-PhiladelphiaJob: Information TechnologySchedule: Full-time Shift: Day JobEmployee Status: Regular

Company Details Company URL: ****************************************** Berkley Technology Services (BTS) is a dynamic company committed to providing world class IT services. We offer a unique culture, enabling our team members to be on the cutting edge of technology while delivering high quality solutions. We are looking for outstanding individuals who will bring unique perspectives, insight and innovation to our teams. BTS, a member company of W. R. Berkley Corporation, has facilities located in Des Moines, Iowa and Wilmington, Delaware. Our functions include working with various third parties to develop, integrate, and support insurance systems of WRBC's operating units. BTS strives to provide these functions in a holistic manner including helpdesk support, system connectivity, and operational support. Additional responsibilities include coordinating communications regarding best practices in the use of our supported systems and researching new technology. At BTS, there are opportunities associated with being a part of an established and empowering corporation while maintaining a positive personal working environment. Additionally, we provide a competitive compensation and benefits package including a casual dress code. BTS is constantly growing and expanding to meet the changing demands of one of the most successful insurance organizations in the world. Visit us at berkley-bts.com to learn more information. Berkley Technology Services: Right Team, Right Technology, Simple and Secure. The Company is an equal employment opportunity employer. Responsibilities The Information Security Software Engineer will be responsible for designing, implementing, and maintaining the organization's information security systems, programs and security as code. They will work closely with architects, developers and business units to ensure the protection of sensitive data and minimize the risk of cyber-attacks. Design and implement robust, scalable, and secure APIs Integrations. Collaborate with cross-functional teams to define API requirements and ensure seamless integration. Maintain and enhance existing APIs to improve performance and functionality. Build workflows and pipelines. Troubleshoot and resolve API-related issues in a timely manner. Stay up-to-date with the latest industry trends and best practices in API development. Qualifications Bachelors Degree in Computer Science, Information Technology, Information Systems, or a related discipline. Equivalent experience and/or alternative qualifications will be considered. At least 5 years of coding experience in both Python and Java. Proven experience in API development using languages such as Python, Java, Power Query, and Power Shell. Strong understanding of API design principles. Experience with API testing and documentation tools (e.g., Postman, Swagger). Familiarity with authentication and authorization mechanisms (e.g., OAuth, JWT). Develop and implement custom solutions. #LI-Hybrid The company offers a competitive compensation plan and robust benefits package for full time regular employees including: • Base Salary Range: $88k - $154k • Benefits include: Health, dental, vision, dental, life, disability, wellness, paid time off, 401(k) and profit-sharing plans The actual salary for this position will be determined by a number of factors, including the scope, complexity and location of the role; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. The Company is an equal employment opportunity employer. Additional Company Details We do not accept unsolicited resumes from third party recruiting agencies or firms. Sponsorship Details Sponsorship not Offered for this Role

Provide senior-level cybersecurity and information system security support for Navy systems by leading RMF activities, security authorization packages, continuous monitoring, and cybersecurity compliance in support of mission operations. Key Responsibilities Lead and support RMF Steps 1-6 for assigned Navy information systems Develop and maintain SSPs, SAPs, SARs, POA&Ms, and security artifacts Coordinate system authorization activities with Authorizing Officials (AOs) Conduct risk assessments and vulnerability analysis Support continuous monitoring, audits, and inspections Advise leadership on cybersecurity risk and mitigation strategies Qualifications (Citizenship, Education, Experience, Skills) Citizenship: U.S. Citizenship required Education: Bachelor's degree in Cybersecurity, IT, or related field (or equivalent experience) Certification: Must possess and maintain a DoD 8140 / IAWF-approved Information Assurance Technical (IAT) Level II certification (e.g., CompTIA Security+ CE, CySA+, SSCP, GSEC, or equivalent) Experience: Minimum 8 years cybersecurity / ISS experience; 5+ years RMF support Skills: RMF; NIST 800-53; risk analysis; technical writing; coordination with government stakeholders Required Systems, Tools, and Framework Experience Frameworks: DoD RMF, NIST SP 800-53, 800-37, 800-30 Systems: eMASS, ACAS, HBSS, STIG Viewer Tools: Nessus, SCAP, vulnerability scanning tools Security Handling: CUI, controlled system documentation We are an Equal Opportunity Employer and strive to provide equal employment opportunity to all applicants and staff in accordance with sound employee relations practices and federal and state laws. All qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, marital status, ancestry, genetic information, pregnancy status, or any other characteristic protected by law.

About the Role: The Network Security Engineer will design, implement, and manage secure network infrastructure to ensure uninterrupted business operations. Responsibilities: Configure and maintain firewalls, VPNs, and IDS/IPS systems. Perform network security monitoring and incident response. Conduct penetration testing and simulate attacks to identify weaknesses. Harden routers, switches, and network devices. Optimize performance without compromising security. Requirements: 3+ years experience in network engineering/security. Strong knowledge of Cisco, Palo Alto, or Fortinet firewalls. Experience with network protocols (TCP/IP, DNS, SSL, VPN). CCNA Security, CCNP Security, or equivalent certifications. Required Skills: Information Security Security

Job Description Type: Full Time Overtime Exempt: Exempt Reports To: ARMADA HQ Travel Required: Yes Security Clearance Required: Active Secret Security Clearance ************CONTINGENT UPON AWARD*************** Duties & Responsibilities: Specialist, Information System Security III (SISS3) will conduct risk and vulnerability assessments of planned and installed systems to identify vulnerabilities, risks and protection needs; conduct systems security evaluation, audits, and reviews; determine the residual risk of a package based on package content and assessment results and documenting for the Security Controls Assessor's (SCA) and higher level review. Execute Security Assessment Plans (SAPs) by conducting on-site testing for afloat and PIT ashore systems. Examples include executing STIGs, SRGs, ACAS scanning, and applying patches assets to obtain cybersecurity compliance and remediate vulnerabilities. Specialist, Information System Security III (SISS3) will conduct systems security reviews, audits, or evaluations, as appropriate, to ensure accreditation documents are accurate and represent the current risk posture of the system. Perform analysis of logs, events, and reporting of various data collections tools including: vulnerability monitoring via Assured Compliance Assessment System (ACAS) and related tools, Host Based Security Systems (HBSS), web content filters, Security Information and event management (SIEM), firewall systems, network devices, server devices, workstations, and intrusion detection and prevention systems (ID/PS). Specialist, Information System Security III (SISS3) will assess impacts from observed risks and report via the Cybersecurity Program chain of command. Executing Security Assessment Plans (SAPs) by conducting on-site testing for afloat and PIT ashore systems. Examples include executing STIGs, SRGs, ACAS scanning, and applying patches assets to obtain cybersecurity compliance and remediate vulnerabilities. Perform the evaluation of system administrator, security engineer, and/or system owner proposed corrections to ensure compliance and best-fit solution. Specialist, Information System Security III (SISS3) will present and submit data to management, develop reports, and produce procedural documentation in a comprehensive and cohesive manner. Perform risk management and security engineering for Research, Development, Testing, and Evaluation (RDT&E) RMF Afloat systems include Information Assurance Vulnerability Management (IAVM) support, remediation, patching, scanning and associated boundary maintenance. Specialist, Information System Security III (SISS3) will document residual risks in a plan of actions and milestones formatted in compliance with the current package system, currently eMASS. Specialist, Information System Security III (SISS3) will maintain current vulnerability scan data and residual risk plan of actions and milestones in Vulnerability Remediation Asset Manager (VRAM). Manage, attend, and support configuration control board practices. Create and verify the accuracy of POA&Ms/RARs as identified by vulnerability actual test results. Specialist, Information System Security III (SISS3) shall write technical documentation such as user manuals, reports, documentation, policies, presentations, Plan of Action and Milestones (POA&Ms), risk assessments, proposals, outlines, and summaries in support of both ashore and afloat systems across multiple platforms. Support developing of technical documents across multiple platforms including configuration management, milestone, issue tracking, web site content management and RMF documentation. Specialist, Information System Security III (SISS3) may be required to travel CONUS (any state in USA) and OCONUS (primarily Japan, and any country in Europe). The estimated number of trips is 14 per year (estimated 25%-30% travel). Other duties as assigned. Knowledge, Skills, and Abilities (KSAs): Ability to travel CONUS (any state in USA) and OCONUS (primarily Japan, and any country in Europe). Proficient in Microsoft Windows Operating System Administration, including Windows 11, Windows 10, Windows 7, and Windows XP (at a minimum). Ability to work as a team member, communicate, perform office functions and use office tools, customer focused and deliver exceptional performance. Possess excellent organizational and file management skills and the ability to plan and execute administrative work with little supervision. Possess excellent oral and written communication skills. Required Certifications: Minimum of one (1) IAT Level II listed certificate required: CompTIA Security+ (CE) CompTIA CySA+ GIAC Security Essentials (GSEC) ISC² SSCP (Systems Security Certified Practitioner) Minimum/General Experience: Five (5) years of experience in the following: Cybersecurity, Engineering, Test and Evaluation (T&E) or Authorization and Assessment (A&A) (formerly C&A) related field. Information Assurance tools such as Defense Information Systems Agency (DISA) Enterprise Mission Assurance Support Service (eMASS), Assured Compliance Assessment Solution (ACAS). Command line interface, PowerShell, and performing automated tasking through use of code. Minimum Education: College degree in any technical discipline from an accredited college or university. Disclaimer: The above information has been designed to indicate the general nature and level of work to be performed. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the contractor assigned to this position. Applying: If you feel you have the knowledge, skills and abilities for this position visit our careers page at ****************** Special Notes: Relocation is not available for these jobs ARMADA provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. ARMADA complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Must be able to successfully pass a background check, and pre-employment drug testing. Job offers are contingent upon results of background check and drug testing.

Data Intelligence, LLC (DI) is seeking a qualified and experienced Information Systems Security Officer III to support the Naval Surface Warfare Center (NSWC) in Philadelphia, PA. The successful candidate will be responsible for coordinating security efforts to ensure the safety and integrity of classified and unclassified information systems and assist in maintaining a secure operating environment. This position requires a strong understanding of cybersecurity protocols, as well as the ability to coordinate and implement security measures to meet the specific needs of the organization. **This position is contingent upon award of contract** Key Responsibilities: Collaborate with various levels of the organization to implement required security changes and ensure compliance with established security policies and standards. Conduct comprehensive cybersecurity vulnerability and threat assessments to identify and mitigate risks to information systems. Lead cyber-incident-response efforts, including isolating affected systems, conducting initial investigations, collecting relevant data, and providing status updates and reports to leadership. Provide guidance on best practices and recommend improvements to the organization's security posture. Perform risk assessments and develop mitigation strategies to protect sensitive data from internal and external threats. Support continuous monitoring of information systems and provide regular status reports on security compliance. Maintain up-to-date knowledge of emerging cybersecurity threats and industry best practices. Required Skills/Experience: Bachelor's degree in Computer Science, Information Technology, Communications Systems Management, or an equivalent science, technology, engineering, and mathematics (STEM) field. A minimum of 6 years of relevant experience in cybersecurity or information systems security. Prior experience supporting Navy programs. Current IAM Level II certification (or higher) in accordance with DoD 8570.01-M. At least a Secret-level security clearance is required, with the ability to obtain higher-level clearance if necessary. Proficiency in cybersecurity frameworks, risk management processes, and security controls. Strong analytical and problem-solving skills with attention to detail. Excellent communication and interpersonal skills, with the ability to work effectively with a diverse team. Preferred Qualifications: Experience with DoD security requirements and systems. Familiarity with NIST, RMF, and other relevant cybersecurity standards. Ability to work in a potentially remote environment with occasional on-site requirements. Why Work with Data Intelligence, LLC? At Data Intelligence, LLC, we are committed to delivering cutting-edge technology solutions and security expertise to our government clients. Our team members play an integral role in the development and protection of critical national security systems. Join our team and contribute to the defense of vital information assets while advancing your career in a collaborative and rewarding environment. About Us: Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays. Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status. Data Intelligence, DI is an established small business that has supported the critical missions of our government clients since 2005. We provide full life cycle system development, systems engineering, cybersecurity, and supporting analytical and logistics support to C4ISR and other complex systems. We are an equal opportunity employer that offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays. Data Intelligence is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Job Description Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Information Systems Security Engineer III (ISSE III). This position is an exempt role that support will be provided on site in the government customer's area of operation in the Philadelphia, PA location. ----------------------------------------------------- Active Secret Clearance Required -------------------------------------- RESPONSIBILIES Assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans, which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). Identify and tailor IT and Cyber Security (CS) control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements. Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). Develop and maintain system level IT and CS policies and procedures for respective RMF boundaries in accordance with guidance provided by the command ISSMs. Implement and assess STIG and SRGs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Maintain inventory of Information System components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. Assist with removal of Solid-State Drive (SSD), Hard Disk Drive (HDD) or other critical components of assets before destruction and removal from the RMF boundary. Support configuration change documentation and control processes and maintaining DOD STIG Compliance. Support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware; This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. Report compliance issues of network hardware to management to avoid operational loss of the network. EXPERIENCE AND EDUCATION REQUIREMENTS: Secret security clearance required Bachelor's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university. Minimum five (5) years professional relevant experience:; or 7 years of professional experiance without bachalors degree Must Meet DoD IAT-III level Certification Requirements: At a minimum 2-3 of one of the following certifications: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP Experience and Skills: Excellent oral and written skills. Excellent critical thinking skills. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. Ability to work independently and as a team member Ability to learn and apply technical concepts to assigned duties

Posting Type Remote As a Lead Cyber Security Engineer, you will ensure the security of Relativity's network and infrastructure. In this role, the main responsibilities will be to investigate and analyze emerging threats against our assets, identities, and clients. You will also provide actionable remediation guidance to end users and collaborate with highly skilled cyber experts to anticipate and mitigate evolving threats using world-class toolsets and next generation capabilities. Job Description and Requirements Responsibilities: Review, validation, and triage of alerts and technical analysis of log data from a diverse inventory of sensors, correlated signature logic, and threat intelligence sources. Assess the impact of security events by leveraging host, cloud and network-based indicators and evidence to deliver actionable incident escalations. Develop and deploy detection and prevention signatures with response actions as part of a layered defensive strategy leveraging multiple technologies and data types. Build automation to search through collected telemetry to detect and isolate advanced threats that evade existing security solutions. Create Standard Operating Procedures, SOC playbooks, configuration guides, and secure standards. Automate incident handling processes. Engage in the continuous research of emerging threats and apply appropriate countermeasures within the context of a rapidly changing environment. Serve as a subject matter expert in the mechanism and analysis of observed malicious activity. Clearly document and communicate investigation findings to both technical and executive stakeholders. Identify and automate away technical burden. Build automation to deploy, operate and connect multiple cyber security tools and applications. Preferred Qualifications: 7+ years of experience in a Security Operations Center, Incident Response, or Threat Detection team for Cloud applications and corporate networks Exposure to threat detection development and tuning Experience in software design and development DevSecOps experience Ability to perform threat hunting, threat emulation, and/or purple teaming exercises Familiarity with industry standard security devices and their configuration Experience in reverse engineering malicious code to explore infection and propagation mechanisms Experience with threat intelligence tools and processes Certifications: One or more of the following certifications are preferred (GCFA, GCIA, GCIH, GNFA, GREM, OSCP, OSEP, OSED, OSWE, OSDA, OSCE3, CompTIA Security+, CCNA CyberOps, or CEH) 5+ years of experience in a Security Operations Center, Incident Response, or Threat Detection team Strong cyber incident response skills (such as: Network forensics, memory forensics, and/or packet analysis) Ability to read, write and analyze PowerShell, C#, and Python Capability to independently manage the prioritization of complex security events Advanced understanding of common SOC/CIRT operational processes and documentation Advanced knowledge of TCP/IP, network services, cryptography, cloud, and web application attacks Ability to collaborate within a global cross-functional team to execute on high-level objectives and drive the maturation of Relativity's security posture Deep understanding of infection mechanisms, malicious behavior, exploitation techniques, and mitigating controls Good understanding of tools, tactics, and procedures utilized by attackers to access private systems and data Strong analytical and problem-solving skills Minimum Qualifications: 5+ years of experience in a Security Operations Center, Incident Response, or Threat Detection team Strong cyber incident response skills (such as: Network forensics, memory forensics, and/or packet analysis) Ability to read, write and analyze PowerShell, C#, and Python Capability to independently manage the prioritization of complex security events Advanced understanding of common SOC/CIRT operational processes and documentation Advanced knowledge of TCP/IP, network services, cryptography, cloud, and web application attacks Ability to collaborate within a global cross-functional team to execute on high-level objectives and drive the maturation of Relativity's security posture Deep understanding of infection mechanisms, malicious behavior, exploitation techniques, and mitigating controls Good understanding of tools, tactics, and procedures utilized by attackers to access private systems and data Strong analytical and problem-solving skills Ability to leverage programming and scripting languages to build automations and develop SOAR playbooks Relativity is committed to competitive, fair, and equitable compensation practices. This position is eligible for total compensation which includes a competitive base salary, an annual performance bonus, and long-term incentives. The expected salary range for this role is between following values: $150,000 and $226,000 The final offered salary will be based on several factors, including but not limited to the candidate's depth of experience, skill set, qualifications, and internal pay equity. Hiring at the top end of the range would not be typical, to allow for future meaningful salary growth in this position. Suggested Skills: Cybersecurity, Infrastructure Security, Network Security, Penetration Testing, Security Architecture Design, Security Audit, Security Information, Security Information and Event Management (SIEM), Security Operations, Vulnerability Management

The Lead Information Security Engineer plays a crucial role in supervising the improvement, maintenance, and management of Temple Health's information security posture and related technologies. This position entails leading security projects, providing technical guidance and mentorship, overseeing blue team defensive operations and purple team exercises, coordinating vulnerability management, collaborating with business units and stakeholders, representing the security function, and managing vendor relationships including MSSPs, while working with cross functional IT and operational teams to ensure effective implementation and continuous enhancement of security controls and solutions This role requires three days on-site (Tuesday, Wednesday and Thursday) at Temple Health Women's and Families Hospital. Education * Bachelor's Degree in Computer, Information Sciences or Business Administration (Required) or * Combination of relevant education and experience may be considered in lieu of degree (Required) Experience * 3 years experience in a Leading Information Security Programs including mentoring / managing junior security engineers/analysts for organizations (Required) * 5 years experience leading Information security initiatives independently (Required) * 5 years experience with risk assessment tools, technologies, and methods (Required) * 7 years experience with anti-virus software, intrusion detection, firewalls, and content filtering (Required) * General Experience with communicating network security issues to peers and management (Required) * General Experience and knowledge with project management simultaneously leading and coordinating multiple projects (Required) * General Experience leading and mentoring a team in a high performing collaborative team environment (Required) * General Experience and knowledge with an in-depth understanding of hardware configurations, database management tools, query language, and application topologies (Required) * General Experience and knowledge with analyzing, diagnosing, suggesting, and implementing process improvements (Required) * General Experience in Healthcare IT (Preferred) Licenses * Cert Info Sys Security Prof (Required) * GIAC Cert Incident Handler (Preferred) * GIAC Penetration Tester (Preferred) * GIAC Cert Forensic Examiner (Preferred) '395778

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client.* Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Provide senior-level cybersecurity and information system security support for Navy systems by leading RMF activities, security authorization packages, continuous monitoring, and cybersecurity compliance in support of mission operations. Key Responsibilities Lead and support RMF Steps 16 for assigned Navy information systems Develop and maintain SSPs, SAPs, SARs, POA&Ms, and security artifacts Coordinate system authorization activities with Authorizing Officials (AOs) Conduct risk assessments and vulnerability analysis Support continuous monitoring, audits, and inspections Advise leadership on cybersecurity risk and mitigation strategies Qualifications (Citizenship, Education, Experience, Skills) Citizenship: U.S. Citizenship required Education: Bachelors degree in Cybersecurity, IT, or related field (or equivalent experience) Certification: Must possess and maintain a DoD 8140 / IAWFapproved Information Assurance Technical (IAT) Level II certification (e.g., CompTIA Security+ CE, CySA+, SSCP, GSEC, or equivalent) Experience: Minimum 8 years cybersecurity / ISS experience; 5+ years RMF support Skills: RMF; NIST 800-53; risk analysis; technical writing; coordination with government stakeholders Required Systems, Tools, and Framework Experience Frameworks: DoD RMF, NIST SP 800-53, 800-37, 800-30 Systems: eMASS, ACAS, HBSS, STIG Viewer Tools: Nessus, SCAP, vulnerability scanning tools Security Handling: CUI, controlled system documentation We are an Equal Opportunity Employer and strive to provide equal employment opportunity to all applicants and staff in accordance with sound employee relations practices and federal and state laws. All qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity or expression, marital status, ancestry, genetic information, pregnancy status, or any other characteristic protected by law.

Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Information Systems Security Engineer III (ISSE III). This position is an exempt role that support will be provided on site in the government customer's area of operation in the Philadelphia, PA location. ----------------------------------------------------- Active Secret Clearance Required -------------------------------------- RESPONSIBILIES Assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans, which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). Identify and tailor IT and Cyber Security (CS) control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements. Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). Develop and maintain system level IT and CS policies and procedures for respective RMF boundaries in accordance with guidance provided by the command ISSMs. Implement and assess STIG and SRGs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Maintain inventory of Information System components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. Assist with removal of Solid-State Drive (SSD), Hard Disk Drive (HDD) or other critical components of assets before destruction and removal from the RMF boundary. Support configuration change documentation and control processes and maintaining DOD STIG Compliance. Support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware; This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. Report compliance issues of network hardware to management to avoid operational loss of the network. EXPERIENCE AND EDUCATION REQUIREMENTS: Secret security clearance required Bachelor's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university. Minimum five (5) years professional relevant experience:; or 7 years of professional experiance without bachalors degree Must Meet DoD IAT-III level Certification Requirements: At a minimum 2-3 of one of the following certifications: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP Experience and Skills: Excellent oral and written skills. Excellent critical thinking skills. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. Ability to work independently and as a team member Ability to learn and apply technical concepts to assigned duties