Security engineer jobs in Yakima, WA

Role: Kubernetes Security Engineer About the job you're considering Are you passionate about securing the future of cloud-native infrastructure in mission-critical environments? Join our team in Portland, OR, as a Kubernetes Security & Isolation Engineer supporting the aerospace industry, where security, reliability, and precision are paramount. In this onsite role, you'll focus on hardening and isolating Kubernetes clusters to minimize blast radius in the event of compromise. This includes enforcing Linux security modules like SELinux and AppArmor, leveraging Trusted Platform Module (TPM) for secure boot and attestation, implementing least privilege across nodes and workloads, and ensuring multi-tenant isolation within hybrid Kubernetes environments-spanning x86, ARM, and accelerator-based architectures. You'll work hands-on with cutting-edge technologies and collaborate with cross-functional teams to build resilient, secure infrastructure that supports aerospace innovation. Your role Architect and deploy security-first Kubernetes cluster configurations across diverse hardware platforms, including x86, ARM, and accelerators. Enforce Linux security modules (SELinux, AppArmor) and sandboxing techniques (seccomp, gVisor, Kata) to protect workloads and system services. Integrate TPM for secure boot and attestation, ensuring hardware and OS integrity, and support cryptographic operations with HSM/KMS systems. Design multi-tenant isolation strategies using namespaces, node pools, and hardware partitioning to prevent lateral movement and reduce blast radius. Apply least-privilege policies using RBAC, PodSecurityStandards, NetworkPolicies, and resource constraints to secure workload execution and mitigate denial-of-service risks. Harden Kubernetes components (API server, etcd, kubelet) using CIS and NSA benchmarks, and implement kernel-level protections like seccomp-bpf and IMA/EVM. Secure workload secrets using TPM-backed storage and tools like SealedSecrets, HashiCorp Vault, or SOPS for safe distribution and access control. Strengthen supply chain security through image signing (cosign, Notary), SBOM scanning, and CI/CD vulnerability management. Monitor runtime behavior with tools like Falco and Cilium Tetragon, and collaborate with SRE and Security teams to develop incident response runbooks and conduct breach simulation drills. Your skills and experience Bachelor's degree in Computer Science, Engineering, or a related technical field, with 8-10 years of experience in infrastructure, security, or systems engineering. Deep expertise in Kubernetes (especially K3s) internals, including cluster hardening, multi-tenant isolation, and security architecture. Advanced proficiency in Linux security features such as SELinux, AppArmor, seccomp, and kernel-level protections. Hands-on experience with TPM for secure boot, attestation, and integration with HSM/KMS for cryptographic operations and secrets management. Strong understanding of Pod Security frameworks (PodSecurityStandards, OPA, Gatekeeper, Kyverno) and implementation of RBAC, NetworkPolicies, and workload isolation at scale. Familiarity with container runtimes (containerd, CRI-O, gVisor, Kata) and their security implications in hybrid environments. Experience with runtime and supply chain security tools and frameworks, including Falco, Cilium Tetragon, cosign, Notary, SLSA, and NIST 800-190. Knowledge of confidential computing (TEE, SGX, SEV), air-gapped deployments, and hardened Linux distributions like Flatcar and Bottlerocket. Life at Capgemini Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer: Flexible work Healthcare including dental, vision, mental health, and well-being programs Financial well-being programs such as 401(k) and Employee Share Ownership Plan Paid time off and paid holidays Paid parental leave Family building benefits like adoption assistance, surrogacy, and cryopreservation Social well-being benefits like subsidized back-up child/elder care and tutoring Mentoring, coaching and learning programs Employee Resource Group Disaster Relief About Capgemini Engineering World leader in engineering and R&D services, Capgemini Engineering combines its broad industry knowledge and cutting-edge technologies in digital and software to support the convergence of the physical and digital worlds. Coupled with the capabilities of the rest of the Group, it helps clients to accelerate their journey towards Intelligent Industry. Capgemini Engineering has 65,000 engineer and scientist team members in over 30 countries across sectors including Aeronautics, Space, Defense, Naval, Automotive, Rail, Infrastructure & Transportation, Energy, Utilities & Chemicals, Life Sciences, Communications, Semiconductor & Electronics, Industrial & Consumer, Software & Internet. Capgemini Engineering is an integral part of the Capgemini Group, a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2024 global revenues of €22.1 billion. Get the future you want | ***************** Disclaimer Capgemini is an Equal Opportunity Employer encouraging inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law. This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship. Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.Please be aware that Capgemini may capture your image (video or screenshot) during the interview process and that image may be used for verification, including during the hiring and onboarding process.Click the following link for more information on your rights as an Applicant http://*****************/resources/equal-employment-opportunity-is-the-law Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Primary Skills: AWS (Proficient), Python OR Java (Expert), Infrastructure-as-Code (Intermediate), CICD (Proficient), System Design (Proficient) Contract Type: W2 Only Duration: 11+ Months with possibility of extension Pay Range: $65.00-$70.00 per hour #LP Job Summary: We're seeking an experienced Hybrid Systems Development Engineer to join our Field Operations Returns & ReCommerce team. This role combines software development and systems engineering to build and manage our AWS-based infrastructure and operational workflows. The ideal candidate will drive technical innovation and efficiency through automation, enhance operational workflows, and develop solutions to improve system performance and reliability. Key Responsibilities: Design and optimize AWS Step Functions, Lambda, and ECS-based systems for auction and liquidation workflows. Drive automation solutions to resolve operational bottlenecks and reduce ticket resolution time. Implement monitoring, alerting, and self-healing capabilities for distributed AWS services. Lead compliance remediation efforts, including TA Token migration across applications. Develop infrastructure-as-code solutions using AWS CDK/CloudFormation for pipeline migrations. Must-Have Skills: Strong proficiency in Python/Java with a focus on serverless and containerized applications. Experience with Infrastructure-as-Code (CDK, CloudFormation, Terraform). Experience with AWS services (Step Functions, Lambda, ECS, RDS, DynamoDB, SQS/SNS). Strong system design skills for distributed, event-driven architectures Experience with CI/CD pipelines, automated testing, and deployment strategies Domain Experience: Prior experience in large-scale, geographically diverse environments is highly desirable. Understanding of AWS technologies and best security practices within AWS infrastructure. ABOUT AKRAYA Akraya is an award-winning IT staffing firm consistently recognized for our commitment to excellence and a thriving work environment. Most recently, we were recognized Inc's Best Workplaces 2024 and Silicon Valley's Best Places to Work by the San Francisco Business Journal (2024) and Glassdoor's Best Places to Work (2023 & 2022)! Industry Leaders in IT Staffing As staffing solutions providers for Fortune 100 companies, Akraya's industry recognitions solidify our leadership position in the IT staffing space. We don't just connect you with great jobs, we connect you with a workplace that inspires! Join Akraya Today! Let us lead you to your dream career and experience the Akraya difference. Browse our open positions and join our team!

Skills Required: Experience Required - 7 to 9 years in IT Operations. Relevant Experience - Minimum 4 -5 Years in Networking Technical Skills -OSPF, BGP, Switching and Routing, VRF's, Multicast, DMVPN, VxLan, BGP/EVPN, 802.1x, Palo Alto and RADIUS Technical Certification - CCNA and Palo Alto Certification (Preferred) Job Responsibilities: Design, implement, and support network infrastructure for large scale networks. Experience with Palo Alto firewalls. Monitor firewall logs, network traffic, and security events to detect and respond to security incidents in a timely manner. Troubleshoot and resolve complex network security issues, including firewall misconfigurations, connectivity problems, and performance bottlenecks. Design, deploy, configure, and manage Palo Alto Networks' firewall solutions, including Panorama management platform, Global Protect VPN, and Threat Prevention subscriptions. Develop and implement network security policies, rules, and access controls based on industry best practices and regulatory compliance requirements. Experience in Deploying Cisco and Palo Alto Devices. Administrate Network Access Control Solutions such as Cisco ISE and Cisco DUO. Experience with Cisco Nexus and Catalyst Series switches and Arista switches. Deep understanding of various network protocols and technologies such as OSPF, BGP, MP-BGP, VRFs, multicast, DMVPN, VxLAN, BGP/EVPN, 802.1x and RADIUS Escalation points for network support engineers. Disclaimer HCL is an equal opportunity employer, committed to providing equal employment opportunities to all applicants and employees regardless of race, religion, sex, color, age, national origin, pregnancy, sexual orientation, physical disability or genetic information, military or veteran status, or any other protected classification, in accordance with federal, state, and/or local law. Should any applicant have concerns about discrimination in the hiring process, they should provide a detailed report of those concerns to ****************** for investigation. Compensation and Benefits A candidate's pay within the range will depend on their skills, experience, education, and other factors permitted by law. This role may also be eligible for performance-based bonuses subject to company policies. In addition, this role is eligible for the following benefits subject to company policies: medical, dental, vision, pharmacy, life, accidental death & dismemberment, and disability insurance; employee assistance program; 401(k) retirement plan; 10 days of paid time off per year (some positions are eligible for need-based leave with no designated number of leave days per year); and 10 paid holidays per year

Title Senior Systems Administrator Employment Type Full Time Direct Hire Job Site Onsite City Seattle State WA Pay Rate Range (External) 110K - 135K BENEFITS: Some of the benefits that our employees enjoy: Medical / Dental / Vision* Vacation / Sick/ Holiday Pay 401(k) 100% Fully Pre-Paid College Tuition Employee Stock Option Program Employee Assistance Program Flexible Spending Accounts Voluntary Term Life and AD&D Employee Paid Life Insurance Employer Paid Short Term Disability Insurance Discounted employee produce purchase program Free Smoking Cessation Program Free Wellness Coaching and Healthy Pregnancy Programs Virtual Office Visits ROLE & RESPONSIBILITIES We are seeking a Senior Systems Administrator for a team supporting enterprise Microsoft infrastructure, which would be a great opportunity for someone with experience in Windows Server administration, Intune, Active Directory, and enterprise security looking to further their career in systems engineering and IT operations. Overview: The Senior Systems Administrator will manage and secure the organization's Microsoft Windows infrastructure, ensuring high availability, compliance, and operational excellence. This role requires expertise in Windows OS, Intune, Active Directory, and enterprise security standards. The position includes on-call responsibilities and collaboration across IT and business units. Responsibilities: Administer and maintain Windows Server environments, Active Directory, Azure Entra ID and Group Policy. Familiar with container platforms - Docker and/or Kubernetes. Manage Intune for device compliance, application deployment, and endpoint security. Implement and monitor security baselines using Microsoft Security Compliance Toolkit. Apply patches, updates, and vulnerability remediation across systems. Monitor system performance, uptime, and resource utilization. Develop and maintain Disaster Recovery plans and participate in regular testing. Develop and maintain documentation for systems, processes, and policies. Provide Tier 2/3 support for escalated issues. Handle backup and recovery procedures for critical systems. Work with cross-functional teams on deployments and upgrades. Mentor junior IT staff and enforce best practices. Additional Tasks/Duties as they are assigned. ESSENTIAL QUALIFICATIONS Bachelor's Degree in Computer Science, Information Technology, or equivalent on-the-job experience. 7+ years' experience in Windows Server administration and enterprise environments. Expertise in Microsoft Intune and Endpoint Manager, Active Directory, Entra ID, Windows OS (10/11) and security hardening. Strong knowledge of backup/recovery systems and documentation standards. Familiarity with compliance frameworks and security baselines. Certifications such as MCSE, MCSA, or Microsoft Certified: Modern Desktop Administrator. Experience with cloud platforms including Microsoft Azure and hybrid cloud environments. BONUS QUALIFICATIONS Experience with virtualization (Hyper-V). PowerShell scripting and automation. Knowledge of O365, SharePoint, and cloud-based email systems. Expertise in O365 integration and administration. Participated in large Enterprise based projects and Digital Transformation. Soft Skills Strong communication and interpersonal skills. Excellent problem-solving and analytical abilities. Leadership and team collaboration capabilities. Vendor management and negotiation skills. Ability to work under pressure and manage multiple priorities. On-Call Expectations This position requires participation in on-call rotation to provide after-hours support for critical systems and respond to incidents promptly. Candidates must be able to troubleshoot and resolve issues under pressure and ensure minimal downtime. WHY AVERRO? Averro is an equal opportunity employer, and we are committed to diversity, equity, and inclusion in the workplace. All qualified applicants will receive consideration for employment, regardless of criminal histories, consistent with legal obligations. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. View our privacy policy here: *******************************************

Routing and Switching Network Engineer Duration: Contract The Routing and Switching Network Engineer will be responsible for designing, implementing, and maintaining network infrastructure to ensure optimal performance, security, and scalability. This role requires collaboration with various teams to support business objectives, provide technical guidance, and troubleshoot complex network issues. The position is onsite in Plano, Texas, and requires 10+ years of experience in network engineering. Responsibilities: Develop and implement network architectures that align with business objectives. Oversee the deployment and configuration of network devices, including routers, switches, firewalls, and wireless access points. Coordinate with customers, SMEs, leads, and managers to understand and document network architecture. Troubleshoot L2/L3 level issues and handle high-priority tickets (P1/P2), performing root cause analysis and permanent fixes. Provide hands-on support for wireless networks, including Cisco and Meraki. Handle P3/P4 tickets and guide offshore teams as needed. Liaise with service providers for link-related services and coordinate with vendors/OEMs for hardware/software upgrades or replacements. Train and provide knowledge transfer to other associates as necessary. Monitor and maintain network performance, ensuring minimal disruptions. Respond to network-related incidents and provide immediate solutions or escalate as necessary. Create and maintain comprehensive documentation for network configurations and troubleshooting steps. Implement and manage network protocols such as TCP/IP, OSPF, BGP, and VLANs. Ensure network compliance with industry standards and regulations, conducting security assessments and vulnerability scans. Collaborate with cross-functional teams and communicate effectively with stakeholders. Qualifications: Bachelor's degree in Computer Science, Information Technology, or a related field. 10+ years of experience in network engineering. Active Cisco/Extreme Network equivalent certification (CCNP or CCIE preferred). Strong understanding of networking protocols and technologies (TCP/IP, BGP, OSPF, VLANs, etc.). Experience with network hardware and software from vendors such as Cisco, Juniper, or Arista. Hands-on experience with Extreme network switches, Cisco switches and routers, and Juniper routers. Proficiency in scripting languages (Python, Perl, etc.) and automation tools (Ansible, Terraform, etc.). Experience with network monitoring and management tools (e.g., SolarWinds, PRTG, Zabbix). Strong analytical and problem-solving skills with excellent communication and interpersonal abilities. Ability to adapt to rapidly changing technologies and work independently or as part of a team. About PTR Global: PTR Global is a leading provider of information technology and workforce solutions. PTR Global has become one of the largest providers in its industry, with over 5000 professionals providing services across the U.S. and Canada. For more information visit ***************** At PTR Global, we understand the importance of your privacy and security. We NEVER ASK job applicants to: Pay any fee to be considered for, submitted to, or selected for any opportunity. Purchase any product, service, or gift cards from us or for us as part of an application, interview, or selection process. Provide sensitive financial information such as credit card numbers or banking information. Successfully placed or hired candidates would only be asked for banking details after accepting an offer from us during our official onboarding processes as part of payroll setup. Pay Range: $50 - $55 The specific compensation for this position will be determined by a number of factors, including the scope, complexity and location of the role as well as the cost of labor in the market; the skills, education, training, credentials and experience of the candidate; and other conditions of employment. Our full-time consultants have access to benefits including medical, dental, vision and 401K contributions as well as any other PTO, sick leave, and other benefits mandated by appliable state or localities where you reside or work. If you receive a suspicious message, email, or phone call claiming to be from PTR Global do not respond or click on any links. Instead, contact us directly at ***************. To report any concerns, please email us at *******************

Network Engineer Type: Fully On-site: 9-5pm Contract Length: 6+ Months Pay Range: $40-$50 per hour NO C2C or 3rd parties An wonderful organization in the Vancouver/Portland metro area is seeking a hands-on Network Engineer to support ongoing and upcoming infrastructure projects across multiple sites. This role requires someone highly self-sufficient, adaptable, and comfortable handling both field technician work and advanced engineering tasks. This position is exclusive to our agency. Key Responsibilities Execute a fast-paced 4-week project as an immediate priority. Install, configure, and expand WiFi networks using Aruba hardware. Responsible for FortiGate Firewall Administration and projects Perform network remediation, including large-scale re-IP efforts for sites currently on flat networks. Configure cabling, patch panels, network devices, and end-user equipment. Map, document, and implement IP schemes across locations. Support confidential network changes associated with a recent acquisition. Assist with ERP-related hardware deployment in partnership with internal teams. Install and configure new employee security/badging systems. Deploy and test redundant ISP circuits for site-level failover and redundancy. Travel Requirements Routine travel to bakery facilities across the Portland metro area Must reside locally in the Vancouver/Portland region. Valid driver's license required. Technical Requirements Strong hands-on experience with: Fortinet FortiGate firewalls Aruba switches and access points VLAN architecture and SD-WAN Ability to plan, configure, troubleshoot, and execute work independently with minimal oversight. Ideal Candidate Comfortable working in fast-paced environments across multiple physical locations. Strong troubleshooting mindset with the ability to pivot as project scopes evolve. Capable of handling both technician-level tasks and mid-level engineering duties throughout the contract lifecycle. All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance. For unincorporated Los Angeles county, to the extent our customers require a background check for certain positions, the Company faces a significant risk to its business operations and business reputation unless a review of criminal history is conducted for those specific job positions.

We're seeking a hybrid SDE + Systems Engineer profile The successful engineer in this role will: Understand how commodity servers, operating systems and networks function, perform and scale. Possess superb troubleshooting, project management and problem analysis skills. Drive technical innovation and efficiency in infrastructure operations via automation. Design server monitoring and management solutions using automation and self-repair. Create processes that enhance operational workflow and provide positive customer impact. Dive deep to resolve problems at their root, looking for failure patterns amenable to long-term solutions via simplification and automation. Avoid re-inventing the wheel and prefer appropriately simple, repeatable solutions over more complex and failure prone ones. Recognize and adopt best practices in documentation, testing, security, operational support at scale, and efficient use of resources. Develop appropriate metrics to demonstrate performance at improving operational efficiency. Core Requirements: In depth knowledge of & experience deploying and operating Linux or other UNIX variants in a datacenter environment. Relentless passion for frugality and out-of-the-box engineering. Strong system troubleshooting skills. Proficiency and experience in automation via Perl/Python programming and shell scripting. Good understanding of standard internet protocols (Ethernet, ARP, IP, ICMP, UDP, TCP, SSL, DNS, HTTP, etc.) Demonstrable grasp of security best practices in server configuration, tool development, and access controls. Experience in building SQL queries. Typical Task Breakdown: Understand how commodity servers, operating systems and networks function, perform and scale. Possess superb troubleshooting, project management and problem analysis skills. Drive technical innovation and efficiency in infrastructure operations via automation. Design server monitoring and management solutions using automation and self-repair. Create processes that enhance operational workflow and provide positive customer impact. Dive deep to resolve problems at their root, looking for failure patterns amenable to long-term solutions via simplification and automation. Avoid re-inventing the wheel and prefer appropriately simple, repeatable solutions over more complex and failure prone ones. Recognize and adopt best practices in documentation, testing, security, operational support at scale, and efficient use of resources. Develop appropriate metrics to demonstrate performance at improving operational efficiency. Degrees / Certs and/or Experience Required: In depth knowledge of & experience deploying and operating Linux or other UNIX variants in a datacenter environment. Relentless passion for frugality and out-of-the-box engineering. Strong system troubleshooting skills. Proficiency and experience in automation via Perl/Python programming and shell scripting. Good understanding of standard internet protocols (Ethernet, ARP, IP, ICMP, UDP, TCP, SSL, DNS, HTTP, etc.) Demonstrable grasp of security best practices in server configuration, tool development, and access controls. Experience in building SQL queries. Preferred Qualifications: Knowledge of C, C++ or Java. Knowledge of VCS (git, mercurial, svn). Understanding of AWS technologies. Experience deploying or managing servers in large-scale, geographically diverse environments. Understanding & experience of managing and monitoring large scale disk sub-systems. Operational knowledge of common enterprise switching and routing platforms About US Tech Solutions: US Tech Solutions is a global staff augmentation firm providing a wide range of talent on-demand and total workforce solutions. To know more about US Tech Solutions, please visit ************************ US Tech Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Recruiter Details: Name: Shweta Email: *********************************** Internal Id: 25-54454

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Cybersecurity, Event Security, Security Audit, Splunk (Inactive) Certifications: None Experience: 8 + years of related experience US Citizenship Required: Yes Job Description: Cyber Security Analyst - Full time position, but must include working one weekend day (Sunday) Own your career as a Cyber Security Analyst at GDIT. Here, you'll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients' missions and ensuring we anticipate the threats of tomorrow. At GDIT, people are our differentiator. As a Cyber Security Analyst you will help ensure today is safe and tomorrow is smarter. Our work depends on a Cyber Security Analyst joining our team of analysts, stationed in diverse CONUS and OCONUS locations tasked with monitoring and protecting the classified and unclassified systems of a major Intelligence Community Agency for fraud, waste, and abuse, to include inappropriate content, illegal activity, Identity leakage, and Insider threat activity. HOW A CYBER SECURITY ANALYST WILL MAKE AN IMPACT Gather and handle forensic evidence in accordance with Rules of Evidence and perform forensic analysis of digital information. Monitor, detect and report indicators of misuse, abuse, data spillage, insider threat, and security violations. Identify acceptable use policy infractions. Review event logs to determine events of interest. Monitor for fraud, waste and abuse, including content inappropriate to the workplace, Illegal Activity, Productivity Loss and Non-Compliant Activity, as well as Identity Leakage (PII). Prepare case evidence and incident reports. Work on special projects as assigned. WHAT YOU'LL NEED TO SUCCEED: Bachelor's Degree and 8+ years of relevant experience, equivalent combinations of education, certifications, and experience will be considered. DoD Approved Baseline 8570 IAT level III (CASP, CISSP, CISA, etc.) certification is required prior to start date. DoD Approved Baseline 8570 CSSP Auditor (CEH, CySA, CISA, etc.) certification is required prior to start date. Security Clearance Level: TS/SCI clearance and ability to obtain and maintain a Polygraph Preferred Skills: Splunk, Microsoft O365, Fidelis, Solera, Windows, and Linux Operating Systems Saturday and Sunday weekend Day Shift work required. Willing to work holidays supporting your assigned shift. Location: 100% On Customer Site Bolling AFB, Washington D.C. Reston, VA Colorado Springs, CO Riverdale, MD Pearl Harbor, HI Tampa is available for part time weekend only support GDIT IS YOUR PLACE: 401K with company match Comprehensive health and wellness packages Internal mobility team dedicated to helping you own your career Professional growth opportunities including paid education and certifications Cutting-edge technology you can learn from Rest and recharge with paid vacation and holidays The likely hourly rate for this position is between $61.30 - $82.94. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: Less than 10% Telecommuting Options: Onsite Work Location: USA DC Washington Additional Work Locations: USA CO Colorado Springs, USA FL MacDill AFB, USA HI Pearl Harbor, USA MD Riverdale, USA VA Reston Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Denver, Colorado;Seattle, Washington; Jersey City, New Jersey; Boston, Massachusetts; Washington, District of Columbia; Charlotte, North Carolina; Jacksonville, Florida; Chicago, Illinois **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (****************************************************************************************** **:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! **Job Description:** Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the vulnerability of the bank's applications to malicious hacking activity. This intermediate technical role is responsible for performing application security assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include performing research, understanding the bank's security policies, working with the appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. Key Responsibilities in order of importance: + Perform assigned analysis of internal and external threats on information systems and predict future threat behavior + Incorporate threat actors' tactics, techniques, and procedures into offensive security testing + Perform assessments of the security, effectiveness, and practicality of multiple technology systems + Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. + Prepare and present detailed technical information for various media including documents, reports, and notifications + Provide clear and practical advice regarding managed risks + Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills Required Skills: + Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment + Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services + SQL injection/XSS attack without the use of tools + Experience performing manual code reviews for security relevant issues + Experience working with SAST tools to identify vulnerabilities + Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings + Experience performing manual web application assessments i.e., must be able to simulate a + Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) + Experience with vulnerability assessment tools and penetration testing techniques + Solid programming/debugging skills + Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map + Threat Analysis + Innovative Thinking + Technology Systems Assessment + Technical Documentation + Advisory Desired: + CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar + Strong programming/scripting skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Knight Federal Solutions is a trusted provider to industry leading prime contractors, the Department of Defense and the Intelligence Community. We have established a company culture that supports our employees, their families and the communities in which they live and work. When you join our team you belong to a group of people that work hard, strive for greatness and care about people. Our hard work is evident in everything we do. Whether it be supporting large government programs in the areas of Simulation and Training, Information Technology, Intelligence or Engineering we always strive to be the best. It is for this reason that we have been recognized as a World Class Team Supplier by Northrop Grumman and were also named one of Florida's fastest growing companies by Inc. Magazine. As Knight Federal Solutions continues to grow, we look forward to hiring the best and the brightest to join us in our success! Responsibilities Conducts analysis using intelligence and information from multiple sources to assess, interpret, forecast, and explain a range of national security issues and developments that are regional or functional in nature. Provides all-source analytic support to collections, operations, investigations, and other defense intelligence analytic requirements. Support the Mobility & Sustainment team Requirements 3+ years of experience producing all-source intelligence analysis reports and briefings and input to IC databases Experience with all-source intelligence analysis and production on foreign national cyber military capabilities and foreign use of cyberspace, including but not limited to doctrine, intent, operations, supporting services and infrastructure, and vulnerabilities Ability to develop high-quality deliverables tailored to senior policymakers or defense stakeholders, including complex written products and formal or informal briefings Knowledge of IC and Combatant Command environments Ability to develop high-quality deliverables tailored to senior policymakers or defense stakeholders, including complex written products and formal or informal briefings TS/SCI clearance, willingness to take a CI polygraph Bachelor's degree, or 7+ years of experience in all-source analysis in lieu of a degree Preferred 3+ years of experience with transportation and logistics systems, including railroads, roads/highways, bridges, storage facilities, ports, and airfields TS/SCI with a CI Polygraph Experience with network development tools and methods Knowledge of ICD 203/206 analytic tradecraft standards Knowledge of the COMBATANT COMMANDS Knight Federal Solutions provides equal employment opportunities to all qualified individuals without regard to race, color, religion, sex, gender identity, sexual orientation, pregnancy, age, national origin, physical or mental disability, military or veteran status, genetic information or any other protected classification.

is Subject to Contract Award JANUS Research Group is currently seeking a Cyber Systems SSO for a contract to support the Deputy Chief of Staff (DCS, G8. The DCS G-8 is the principal military advisor to the Chief of Staff, Army (CSA) and the Assistant Secretary of the Army, Financial Management and Comptroller (ASA(FMC)) for the Programming phase of the Planning, Programming, Budgeting, and Execution (PPBE) process. The DCS, G-8 coordinates with the Assistant Secretary of the Army, Acquisition, Logistics, and Technology (ASA(ALT)) on all proposed programming and process recommendations related to ongoing and future acquisition programs and science and technology initiatives. The DCS, G-8 coordinates with Army Futures Command (AFC) for program funding for all elements of the future force materiel modernization enterprise. Position Description: Manages Army cyber capability development within the Intelligence Division. Provides analytical and technical expertise on cyber defense, network operations, and offensive cyber modernization. Develops information papers, briefings, and SPAR/POM inputs addressing capability gaps, performance, and operational integration. Coordinates with ASA(ALT), T2COM, ARCYBER, INSCOM, and ARSTAF to align cyber initiatives with Army and Joint modernization strategies. Relevant Competencies / Skill Levels: A Bachelor's Degree in Engineering and/or Business A minimum of four (4) years of experience and expertise in Force Development duties Demonstrates expert analytical and technical skills in cyber systems architecture, network defense, and offensive cyber capabilities. Proficient in evaluating system performance, security posture, and modernization impacts to ensure resilient and adaptive cyber operations. Possesses advanced analytical and communication abilities to deliver clear, data-driven assessments that enhance Army cyber capability development and operational readiness Benefits: 401(k), Paid Time Off (PTO), Paid Holidays, Medical and Dental Plans, Life and Disability insurance, Education Assistance (and more). JANUS strives to provide opportunities for career growth through training and development. We also offer an attractive comprehensive benefit package to include health and welfare plans and financial products. As part of a total rewards program, employees can benefit from our referral bonus program, and other various employee awards. JANUS Research Group takes pride in our benefit package and rewards program which has earned us the certification of a Great Place to Work JANUS Research Group provides reasonable accommodation so that qualified applicants with a disability may participate in the selection process. Please advise us of any accommodations you request to express interest in a position by e-mailing: Judy Pagac, Chief Human Resources Officer at **************************** or calling **************. Please state your request for assistance in your message. Only reasonable accommodation requests related to applying for a specific position within JANUS Research Group will be reviewed at the e-mail address and phone number supplied. Thank you for considering a career with JANUS Research Group. JANUS Research Group participates in the Electronic Employment Verification Program. Please click the E-Verify link below for more information. E-Verify JANUS Research Group is an equal opportunity/ affirmative action employer. It is company policy to provide equal opportunity in all areas of employment practice without regard to race, color, religion, sex, sexual orientation, national origin, age, marital status, veteran status, citizenship, or disability. This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on their race, color, religion, sex, or national origin. Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment qualified individuals without regard to race, color, religion, sex, national origin, protected veteran status or disability.

TITLE: N/A JOB CODE: FLSA: Exempt SALARY GRADE: 7 CATEGORY: Full-time UNION REPRESENTATION: NA SCHEDULE: Hybrid SUPERVISORY ROLE Y/N: 11.2025 The Information Security Analyst I plays a critical role in safeguarding the organization's systems and information assets. This position supports the development and implementation of security strategies, tools, and guidelines to protect against unauthorized access, data breaches, and system disruptions. Responsibilities include monitoring and responding to Information Security-related alerts, supporting audit and risk assessment activities, evaluating internal controls, and recommending improvements to enhance security posture. The analyst assists in migrating non-compliant environments to meet regulatory standards and ensures adherence to data protection laws and banking industry compliance requirements. This role is foundational to maintaining the confidentiality, integrity, and availability of sensitive financial data and supporting the organization's overall cybersecurity framework. ESSENTIAL DUTIES Identity and Access Management Support access provisioning, modification, and termination processes to ensure timely and secure access control. Conduct administrator activity and user access reviews across IT systems, including privileged access audits and firewall/cloud app usage monitoring. Maintain asset and access inventories, perform recurring audits of critical systems, and reconcile against endpoint and network tools. Security Monitoring and Incident Response Monitor and respond to alerts from SIEM, IDS, firewalls, and endpoint protection systems. Conduct vulnerability scans, track remediation efforts, and facilitate related meetings. Maintain readiness for incident response activation, including participation in tabletop exercises. System Administration and Tool Management Administration of cloud computing environments, conditional access, and guest provisioning following established best practices. Manage software controls, browser extensions, and patching processes. Administer security camera system and ensure system uptime. Administer Mobile Device Management system. Threat Intelligence and Continuous Improvement Stay informed on emerging threats in the banking sector and contribute to threat intelligence reporting. Research and test new security tools, controls, and AI applications to enhance the Bank's security posture. Correctly identify true and false positives in alerting systems and tune these systems for continuous improvement. Security Awareness and Training Support phishing simulations and training campaigns, track completion, and report metrics to management. Documentation and Reporting Log findings, remediation efforts, and audit results in a structured ticketing system. Assist with vendor management program administration and reporting. Data Protection and Compliance Ensure compliance with GLBA, FFIEC, and other applicable regulations through log retention, configuration management oversight, and DLP monitoring. Administer data classification tools and respond to violations involving PII or sensitive data. Audit VPN usage and test controls across email, endpoint, and network security platforms. Completes mandatory compliance training in accordance with established deadlines. The position performs duties specific to the position and other functions as assigned. ROLE COMPETENCIES/SKILLS Attention to Detail Collaboration & Communication Diversity & Inclusion Execution & Ownership Time Management Compliance Innovation Systems Thinking Data Analysis & Management Information Security Network Operations Critical Thinking Consulting Analytical Thinking ENVIRONMENT, PHYSICAL & MENTAL ACTIVITIES The incumbent is in a non-confined office-type setting in which they are free to move about at will. It may include some minor annoyances such as noise, odors, drafts, etc. For Hybrid and Remote roles, work may also be performed away from BSB worksites depending on the position and requirements. For Hybrid/Remote work, employees are required to have an environment when working at home that has a dependable, high-speed internet connection and environment conducive to frequent phone or internet calls where private, confidential or other information is not visible, able to be overheard, or physically or electronically accessible to anyone else. The incumbent in the course of performing this position spends time writing, typing, speaking, listening, lifting (up to 10 pounds), driving, carrying, seeing (such as close, color and peripheral vision, depth perception and adjusted focus), sitting, pulling, walking, standing, squatting, kneeling and reaching. The incumbent for this position may operate any or all of the following: personal computer, cellular telephone, printer, fax, and other standard office equipment. The incumbent in this position must be able to accommodate reading documents or instruments, detailed work, problem solving, customer contact, reasoning, math, language, presentations, verbal and written communication, analytical reasoning, stress, multiple concurrent tasks and constant interruptions. The work environment characteristics, physical and mental demands described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. POSITION REQUIREMENTS Minimum Qualifications Bachelor's degree in Information Technology, Cybersecurity, or a related field, or equivalent combination of education and experience. 5 years of professional experience in IT support or related technical roles. Foundational understanding of cybersecurity principles, including access control, endpoint protection, and network monitoring. Familiarity with Microsoft 365, Active Directory, and basic system administration tasks. Ability to conduct audits, manage tickets, and document findings accurately. Strong analytical and troubleshooting skills. Effective communication skills and ability to collaborate across departments. Preferred Qualifications Bachelor's degree in Information Technology, Cybersecurity, or a related field. Experience with banking industry compliance standards (e.g., GLBA, FFIEC). Hands-on experience with security tools such as SIEM, DLP, IDS/IPS, EDR, Email Filtering, and Firewalls. Exposure to vulnerability management platforms and identity/access management processes. Familiarity with Microsoft cloud services and Mobile Device Management. Experience supporting or administering phishing simulations, security awareness programs, or similar efforts. Knowledge of vendor management platforms and data classification tools. Management reserves the right to change this position description at any time according to business needs. #LI_Hybrid

McAfee, Microsoft, Cisco AMP, Cylance, DLP, SIEM, WAF, Palo Alto, Tufin , F5, Cisco ISE, Jump Servers, Segmentation Job Description:- • 7 to 8 Years' Experience in End Point Protection, Data Protection, Network Security, Network Segmentation, Application Security • Experience in in Architecture, Design, and Configuration of Network Security Tools - Firewall, Intrusion Prevention, Proxy • Experience in Architecture, Design, and Configuration of Network Security Tools - Firewall, Intrusion Prevention, Proxy • Experience in Security Transformation Projects - Design, Document, Build, Transition. SDLC Documentation • Strong Security credentials with certifications like Security +, CISSP, SANS certification • Good understanding on the Infra security architecture, Experience in engineering infra security solutions • Strong oral and written English communications skill ITM Lead and responsible for managing customer expectations and implementation of security solution

Anthropic's mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed researchers, engineers, policy experts, and business leaders working together to build beneficial AI systems. About the Role We're looking for an Operating Systems Security Engineer to harden and secure the OS layer of our infrastructure. You'll be responsible for designing and implementing OS-level security controls, from kernel hardening to runtime protection, ensuring our systems can withstand sophisticated attacks while maintaining the performance required for AI model training. This is a hands-on role where you'll work with cutting-edge hardware and implement novel security solutions for environments that don't exist anywhere else in the world. You'll need to balance extreme security requirements with the operational needs of researchers training models at unprecedented scale. What You'll Do: Design and implement hardened OS configurations for AI workloads across diverse hardware platforms Minimize attack surfaces by removing as many unnecessary components as possible from kernelspace and userspace Develop kernel security policies using SELinux, AppArmor, and custom Linux Security Modules and runtime enforcement mechanisms Implement and maintain full-disk encryption solutions for diverse storage systems Build security infrastructure for AI systems, research environments, and production services Create OS-level attestation and integrity monitoring systems Apply security patches, develop patches for custom kernel modules, and kernel hardening configurations Design secure boot processes and trusted execution environments Work with container teams to ensure proper workload isolation at the kernel level Design privilege separation and mandatory access control policies Implement secure update mechanisms for OS components Build tooling for security configuration management and compliance verification Serve as a subject matter expert for OS security questions and designs Who You Are: 5+ years of experience in operating systems security or kernel development Deep knowledge of Linux internals, including kernel subsystems and security frameworks (SELinux, AppArmor, seccomp, etc.) Experience with kernel hardening techniques and exploit mitigation Strong programming skills in C and systems programming languages Experience with eBPF for security monitoring and enforcement Understanding of virtualization and containerization security Track record of identifying and fixing OS-level security vulnerabilities Experience with security-focused Linux distributions Strong candidates may also have: Kernel development experience or contributions to Linux kernel Experience with real-time or embedded operating systems Knowledge of hardware security features and their OS integration Experience with secure boot technologies Experience with confidential computing and memory encryption technologies (SEV, TDX, SGX) Background in vulnerability research, exploit development, or fuzzing Experience with formal methods for OS verification Knowledge of hardware security features and their OS integration (TPM, HSM, secure enclaves) Deadline to apply: None. Applications will be reviewed on a rolling basis. The expected base compensation for this position is below. Our total compensation package for full-time employees includes equity, benefits, and may include incentive compensation. Annual Salary:$300,000-$405,000 USDLogistics Education requirements: We require at least a Bachelor's degree in a related field or equivalent experience. Location-based hybrid policy: Currently, we expect all staff to be in one of our offices at least 25% of the time. However, some roles may require more time in our offices. Visa sponsorship: We do sponsor visas! However, we aren't able to successfully sponsor visas for every role and every candidate. But if we make you an offer, we will make every reasonable effort to get you a visa, and we retain an immigration lawyer to help with this. We encourage you to apply even if you do not believe you meet every single qualification. Not all strong candidates will meet every single qualification as listed. Research shows that people who identify as being from underrepresented groups are more prone to experiencing imposter syndrome and doubting the strength of their candidacy, so we urge you not to exclude yourself prematurely and to submit an application if you're interested in this work. We think AI systems like the ones we're building have enormous social and ethical implications. We think this makes representation even more important, and we strive to include a range of diverse perspectives on our team. How we're different We believe that the highest-impact AI research will be big science. At Anthropic we work as a single cohesive team on just a few large-scale research efforts. And we value impact - advancing our long-term goals of steerable, trustworthy AI - rather than work on smaller and more specific puzzles. We view AI research as an empirical science, which has as much in common with physics and biology as with traditional efforts in computer science. We're an extremely collaborative group, and we host frequent research discussions to ensure that we are pursuing the highest-impact work at any given time. As such, we greatly value communication skills. The easiest way to understand our research directions is to read our recent research. This research continues many of the directions our team worked on prior to Anthropic, including: GPT-3, Circuit-Based Interpretability, Multimodal Neurons, Scaling Laws, AI & Compute, Concrete Problems in AI Safety, and Learning from Human Preferences. Come work with us! Anthropic is a public benefit corporation headquartered in San Francisco. We offer competitive compensation and benefits, optional equity donation matching, generous vacation and parental leave, flexible working hours, and a lovely office space in which to collaborate with colleagues. Guidance on Candidates' AI Usage: Learn about our policy for using AI in our application process

Job Title: “Information Security Specialist” (Cyber security analysis) Duration: 9+ Months (with high possibility of extending into full time) Job Description: This position is in Corporate Information Security and under the direction of the Manager, Third-Party Cybersecurity Assessments. The Cybersecurity Assessment Analyst will perform cybersecurity assessments on new and existing third parties. The Analyst will construct detailed and summary reports of assessments, including customized reports, as needed. The Analyst will work with Subject Matter Experts (SME) to develop and apply risk assessment criteria (aligned with Policy) to new and existing suppliers using internal and external business intelligence. The Analyst will work with Third-Party Risk Management, Privacy and Legal Counsel, Procurement and Contract Managers, Compliance, and Business Owners to develop and maintain an internal service model that informs the business of key risks in a timely manner to limit unnecessary impediments and avoid bureaucracy. Specific responsibilities: - Coordinate the development of information security policies, standards and procedures. Work with key IT offices, data custodians and governance groups in the development of such policies. Ensure that company policies support compliance with external requirements. Oversee the dissemination of policies, standards and procedures to the user community - Coordinate the development and delivery of an education and training program on information security and privacy matters for employees, other authorized users, and vendors - Serve as the company compliance officer with respect to state and federal information security policies and regulations. Work with the -designated internal audit, SOX compliance, legal, and HR on compliance issues as necessary. Prepare and submit and submit required reports to external agencies. - Develop and implement an Incident Reporting and Response System to address security incidents (breaches), respond to alleged policy violations, or complaints from external parties. - Serve as the official company contact point for information security, privacy and copyright infringement incidents, including relationships with law enforcement entities. - Develop and implement an ongoing risk assessment program targeting information security and privacy matters; recommend methods for vulnerability detection and remediation, and oversee vulnerability testing. Required Qualifications: Talent management, results focus and inspirational leadership. Essential Functions • Conduct third-party cybersecurity risk assessments, applying established criteria • Support assessment team with quality assurance reviews over work product and reporting • Collaborate with internal partners and third parties to mitigate and otherwise resolve third-party cyber risks • Consistently deliver on commitments, deadlines and objectives while remaining in scope and leveraging appropriate tools, methods, frameworks, and professional standards • Demonstrate consistent credibility with business partners and leadership while recommending initiatives, identifying gaps, and potential issues • Continuously demonstrate the ability to work independently while representing the services of the department with the highest level of professionalism • Demonstrate the ability to appropriately influence business decisions, and the professional judgment for selecting the appropriate methods and techniques to do so Preferred Qualifications: • Solid background both educationally and via professional experience. No less than 3 years' professional experience in business operations, project/program management, finance, risk management, information security, business analytics or similar. • Experience in large companies and/or complex environments, or providing professional consulting services for them. • Demonstrated abilities in problem-solving and analysis: identifies issues, analyses information to assess root cause and relationships, risks, and potential risk responses. Proven ability to synthesize and summarize complex data into concise recommendations and reports. • Demonstrated strong business writing and professional oral communication skills. • Proven ability to balance multiple priorities, adapt to a constantly changing business environment, work independently, drive projects to completion, and meet deadlines in a fast-paced environment-with only periodic supervision. • Ability to work collaboratively and manage and initiate effective cross-functional relationships. • Strong computer skills, including MS Office products (e.g. Word, Excel, PowerPoint, Visio) and other business software to prepare reports, memos, summaries, and analyses. Desired • Analytical - Synthesizes complex or diverse information; Collects and researches data; employs intuition and experience to complement data; Designs work flows and procedures. • Quality Management - Looks for ways to improve and promote quality; Demonstrates accuracy and thoroughness. Applies feedback to improve performance; Monitors own work to ensure quality • Planning/Organizing - Prioritizes and plans work activities to achieve success; Sets and achieves goals and objectives; Develops realistic action plans • Professionalism - Reacts well under pressure; Keeps commitments; Accepts responsibility for own actions. • Career Growth: Focus on cyber security auditing with potential advancement goals in engineering or threat analysis roles • Self-directed team player with Agile environment experience Education Minimum Required • Bachelor's Degree • Equivalent experience is acceptable. License or Certification Desired: (one of the following): CISA (Certified Information Systems Auditor) GSEC (GIAC Security Essentials Certification) CompTIA - Security+ ECSA - EC-Council Certified Security Analyst SSCP (Systems Security Certified Practitioner) Other: Six Sigma, PMP or Agile certificates Other comments - suppliers: Organizational skills; office suite knowledge; and good communication skills are “must haves”. Cyber security analysis experience is preferred. Additional Information All your information will be kept confidential according to EEO guidelines.

Responsibilities: Conduct Security Assessment and Authorization (A&A) support for IT systems Conduct Security A&A documentation review Update IT Security Compliance SOPs Monitor and report on FISMA Compliance activities Conduct Plan of Action and Milestone (POA&M) management and quality control activities and ensure accuracy of the organization's Security A&A tool. Support Ongoing Authorization (OA) by review of the security controls The Need-to-Have Skills & Qualifications: Working knowledge and experience with CSAM and RMF Experience working with system stakeholders to assess and manage system cybersecurity risk Knowledge of the process to obtain a system ATO and requirements to maintain the ATO Working Place: Washington, D.C., District of Columbia, United States Company : Sept 25 - Tria

We have a fantastic new job opportunity for an IT Security Analyst II at Bloodworks Northwest. As a member of the Information Technology department, the IT Security Analyst II position supports Bloodworks' cybersecurity by monitoring, analyzing, and responding to security events and incidents; assisting with the daily operations of security tools and technologies; maintaining documentation; and ensuring compliance with established security policies and procedures. Works closely with senior security staff and consultants to identify potential threats, escalate incidents, and contribute to the continuous improvement of Bloodworks' security operations. Principal responsibilities include, but are not limited to, being a member of the Information Technology department: Professional Conduct: Exhibit respect and a problem-solving mindset in all interactions to foster a positive work environment. Effective Communication: Ensure clear, concise communication, both orally and in writing, to foster mutual understanding with colleagues and users. Professionalism: Maintain a professional appearance and demeanor at all times, demonstrating the Information Technology department's values. Quality Service: Commit to delivering the highest level of service, continuously seeking to improve and enhance client satisfaction with IT support. Team Support: Collaborate effectively with team members, contributing to a supportive and successful work environment through mutual assistance and shared goals. Principal responsibilities include, but are not limited to, those as an IT Security Analyst II: Monitor Security Alerts and Events: Identify and resolve problems, often anticipating issues before their occurrence; use existing endpoints and network monitoring tools to detect suspicious activity across networks, systems, and applications. Provide Incident Response: Identify, investigate, and escalate security incidents in accordance with established processes and procedures. Perform Log Analysis: Review system and application logs to identify anomalies or indicators of compromise. Support Vulnerability Management: Lead efforts in vulnerability detection and remediation with a primary focus on endpoint systems. Security Policy Management: Provide subject matter expertise in systems security policies, standards/practices, protocols, and technologies. Maintain Security Tools: Configure, deploy, maintain, and support security tools. Document Security Incidents and Procedures: Keep accurate records of incidents, resolutions, and operational procedures. Perform Account Reviews: Support periodic audits of user accounts and permissions to ensure adherence to least-privilege principles. Support Security Awareness Training: Lead the organization's security awareness training program. Patch Management Support: Assist operations teams with patch management for systems. Email Protection: Assist with email protection efforts. Collaborate with IT teams: Work with other IT teams to ensure security policies are followed and assist in troubleshooting. Ticket Management: Efficiently create, evaluate, prioritize, and maintain the appropriate status for all incidents and service requests documented in the IT ticketing system. Use the Knowledgebase to guide troubleshooting and resolution. Knowledgebase and Documentation: Contribute to the creation and maintenance of Knowledgebase articles and self-service guides to enhance user independence and reduce future support requests Professional Development and Compliance: Stay up to Date with current industry best practices and emerging technologies to continuously improve service quality. Adhere to all applicable Standard Operating Procedures (SOPs) and regulatory requirements. Fully participate as a member of the Information Technology and Bloodworks teams by ensuring interactions with colleagues promote collaboration and effective communication. Additional Duties and Project Work: Perform assigned duties, demonstrating flexibility and a willingness to support the team and the organization's changing needs. Policy and Procedure Compliance: Comply with all applicable Policies and Standard Operating Procedures (SOPs) as written. REQUIREMENTS: EDUCATION & EXPERIENCE: A high school diploma or equivalent is required. An Associate's degree (or a Bachelor's degree) or an equivalent combination of education and work experience in information technology is preferred. 3+ years of cybersecurity experience in an enterprise network required. Experience working in an enterprise network supporting such systems or platforms as endpoint detection and response (EDR), email protection (spam filtering, encryption configuration, etc.), network scanning, data loss protection (DLP), identity and access control, as well as web application firewalls (WAF). A strong understanding of Microsoft Windows in an enterprise environment is required. Linux experience is considered a plus. Familiarity with IBM iSeries platforms is also considered a plus. Scripting experience is not required, but is regarded as a plus. Familiarity with security policy frameworks (e.g., NIST, CMMC, GDPR) CompTIA A+, Network+, and Security+ certifications are preferred. Certified Ethical Hacker (CEH) or similar certifications are considered a plus. Specific job skills include, but are not limited to: Customer Service Excellence: Demonstrated Ability to deliver outstanding customer service. Capable of maintaining a professional demeanor in stressful situations and managing multiple customer requests simultaneously. Interpersonal and Communication Skills: Exceptional interpersonal skills with proficiency in both oral and written communication. Ability to effectively translate between business needs and technical requirements, ensuring a clear understanding across all levels of the organization. Technical Proficiency: Strong foundational knowledge in IT security principles, with a preference for candidates holding CompTIA A+, Network+, and Security+ certifications. Strong experience with Windows environments, both servers and workstations, required; familiarity with Linux and IBM iSeries is a plus. Analytical and Problem-Solving Skills: Excellent analytical and problem-solving abilities. Must be adept at analyzing situations, identifying issues, and proposing practical solutions. Teamwork and Collaboration: Demonstrated Ability to work well both independently and as part of a team. Emphasizes mutual support, cooperation, and the achievement of shared goals. Adaptability and Learning: Openness to learning new technologies and staying updated with current industry best practices-Ability to adapt to changing priorities and work conditions. Required mental activities involve continuous use of teamwork and problem analysis. Required mental activities used less frequently include interpersonal skills, and the Ability to read, write, speak and comprehend English (all used frequently); decision making, creativity, customer service, independent judgment and/or independent action, the performance of basic mathematics, and the performance of accurate proofreading and correct spelling (all used occasionally); and the use of discretion, presentations/teaching, problem analysis, negotiation, mentoring, the performance of basic mathematics and programming, and the performance of advanced programming (all used rarely). Required physical activities include frequent standing, walking, talking, reaching, feeling, hearing, and handling, as well as repetitive hand and wrist motions. Required physical activities used less frequently include stooping, sitting, bending, and repetitive foot motions (all used occasionally); and kneeling, crawling, and climbing (all used rarely). The Ability to push, pull, and lift an average of 15 pounds throughout the day is required, as is the Ability to carry an average of 10 pounds. WORKING CONDITIONS: Telecommuting is not offered in this role initially; it is an occasional, not permanent, condition. Primarily based in an office setting, with occasional travel required to other locations for support or project activities. Occasional overtime may be required to support critical projects or operational demands. Job conditions to be expected include extensive close work with computers and monitor use (frequent), travel (occasional), some overtime, on-call emergency status, sleep deprivation, and evening meetings (rare)-Ability to work scheduled holidays and weekends as assigned. As this is an essential position to Bloodwork's operations, incumbents should be prepared to work extended and/or consecutive shifts, and possibly at a different location, during periods of inclement weather or other emergencies. Bloodwork is a community-supported non-profit organization. As such, the incumbent can expect to work with volunteers from time to time. When working at a Bloodworks location, this position has indirect exposure to bloodborne pathogens. Benefits and Perks: Employees regularly scheduled for 24+ hours per week are covered by medical, dental, vision, and life insurance, with family coverage also available. Also able to participate in retirement plans (401a & 403b), consolidated paid leave program (4.8 - 6.8 weeks of time off accrued per year, based on length of service), subsidized transit program, and educational reimbursement. Candidates hired from outside of our service area may be eligible for a relocation assistance bonus* * Conditions apply PPE2500

Role: Network Deployment engineer - LAN/WAN Primary Skill : LAN/WAN, Cisco, Juniper Secondary Skill: Arista, Aruba Key Responsibilities: • Design, deploy, and maintain network infrastructure across multiple vendors (Cisco, Juniper, Arista, Aruba). • Configure and optimize routers, switches, firewalls, and wireless networks for enterprise and data center environments. • Perform network upgrades, migrations, and expansions while ensuring minimal downtime. • Implement network security policies, access controls, and monitoring solutions. • Conduct site surveys and assessments to determine optimal network configurations. • Troubleshoot and resolve complex Layer 2 and Layer 3 network issues. • Work closely with cross-functional teams to integrate networking solutions with business applications. • Provide documentation, network diagrams, and knowledge transfer to operations teams. • Ensure compliance with industry standards and best practices. • Support network automation and scripting initiatives (Python, Ansible, etc.). Required Skills & Qualifications: • Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent work experience). • Min 4+ years of exp. for L2 and 6+ years exp. for L3 in network deployment, administration, and troubleshooting • Expertise in configuring and managing Cisco, Juniper, Arista, and Aruba network devices. • Strong understanding of routing protocols (BGP, OSPF, EIGRP, IS-IS) and switching technologies (VLANs, STP, VXLAN, EVPN). • Proficiency in network security technologies (firewalls, IPS/IDS, VPNs, NAC solutions). • Hands-on experience with wireless networks (Aruba ClearPass, Cisco Wireless Controllers, 802.1X authentication). • Experience with network automation (Ansible, Python, Terraform) is a plus. • Familiarity with cloud networking ( Azure) and scripting knowledge (python) is an advantage. • Strong problem-solving skills with the ability to work independently and in a team environment. • Excellent communication and documentation skills. Certifications (Preferred but Not Mandatory): Cisco: CCNP, CCIE Juniper: JNCIP, JNCIE Arista: ACE-A, ACE-P Aruba: ACMP, ACDP Network Automation: DevNet, JNCIA-DevOps, Ansible Education: Bachelor of Engineering (Computer Science, Information Technology, Electronics etc.) with CCNA & CCNP (preferred) Disclaimer HCL is an equal opportunity employer, committed to providing equal employment opportunities to all applicants and employees regardless of race, religion, sex, color, age, national origin, pregnancy, sexual orientation, physical disability or genetic information, military or veteran status, or any other protected classification, in accordance with federal, state, and/or local law. Should any applicant have concerns about discrimination in the hiring process, they should provide a detailed report of those concerns to ****************** for investigation. Compensation and Benefits A candidate's pay within the range will depend on their work location, skills, experience, education, and other factors permitted by law. This role may also be eligible for performance-based bonuses subject to company policies. In addition, this role is eligible for the following benefits subject to company policies: medical, dental, vision, pharmacy, life, accidental death & dismemberment, and disability insurance; employee assistance program; 401(k) retirement plan; 10 days of paid time off per year (some positions are eligible for need-based leave with no designated number of leave days per year); and 10 paid holidays per year.

Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Addison, Texas; Jersey City, New Jersey; Boston, Massachusetts; Charlotte, North Carolina; Chicago, Illinois **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (*********************************************************************************************** **:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! **Job Description:** Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the security resilience of the bank's applications to malicious hacking activity. This senior technical role is responsible performing and leading ethical hacking assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include leading and performing research, understanding the bank's security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. These individuals are expected to perform application security-oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code. Key Responsibilities in order of importance: + Perform assigned analysis of internal and external threats on information systems and predict future threat behavior. + Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks. + Developing Proof-of-concepts for exploitation. + Perform assessments of the security, effectiveness, and practicality of multiple technology systems. + Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. + Prepare and present detailed technical information for various media including documents, reports, and notifications. + Provide clear and practical advice regarding managing risks. + Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills. + Respond to security incidents and provide technical assistance to leadership across the Information Security organization. Required Skills: + Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment + Detailed technical knowledge in at least 5 of the following areas: + security engineering + application architecture + authentication and security protocols + application session management + applied cryptography + common communication protocols + mobile frameworks + single sign-on technologies + exploit automation platforms + Web APIs + Cloud environments + LLM security + Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings + Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools + Experience performing manual code reviews for security relevant issues + Experience working with DAST and SAST tools to identify vulnerabilities + Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) + Experience with vulnerability assessment tools and penetration testing techniques. + Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction + Threat Analysis, threat modelling and SBOM analysis + Innovative thinking, threat actor simulation + Technology Systems Assessment + Technical Documentation + Advisory Desired: + CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy] + Strong programming/scripting skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.