Security specialist jobs in District of Columbia - 253 jobs

Meta's Security Governance, Risk and Compliance function (Security GRC) serves as the primary hub for Security risk management and compliance across the company, providing support to Meta and its family of apps. Within Security GRC, the Cloud Security GRC function is a horizontal capability providing guidance and direction to first line teams in making Meta's Cloud platforms secure, available and compliant. At Meta, we understand the significance of security, data protection, and privacy for the billions of people who use our services. We are committed to ensuring compliance with applicable laws and regulations such as the General Data Protection Regulation (GDPR), the European Electronic Communications Code (EECC), the Network and Information Security Directive (NIS2), and others, while enabling the business to rapidly and securely use appropriate Cloud solutions. We are currently seeking highly experienced and motivated information security professionals to join our Cloud Security Function to continue to develop Cloud Security GRC capabilities. This role is critical in driving change and ensuring compliance with these and other obligations. As part of this role, you will collaborate closely with engineers, analysts, technical program managers, business stakeholders, legal teams, and risk & compliance teams across the Meta organization. You will bring a comprehensive understanding of various aspects of information security and the ability to apply this knowledge to solve problems at scale. This role demands a blend of business and technical acumen, proven communication skills, and a keen desire to learn. Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals. Minimum Qualifications * 7+ years experience in information security and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management) * Demonstrable familiarity with key Cloud Security, Risk Management and Compliance concepts * 4+ years of experience in hands on security, with at least one of the major CSPs (AWS, GCP, Azure) * Experience in a GRC function overseeing Cloud implementations at scale * Experience in designing and implementing control frameworks * Experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment * Familiarity with compliance frameworks and regulatory requirements such as NIST, CSA CCM, ISO-27001, ISO27018, SOC2, GDPR, EECC, eDP, NIS2, and other relevant structures * Bachelor's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field or equivalent experience Preferred Qualifications * Security industry qualification (CISSP, CISM, CISA or similar) * Cloud-specific Cloud Certifications (CCSP, AWS Certified Security Specialist, CCSK, etc.) * Master's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field Responsibilities * Lead significant programs of work across various levels of cross-functional (XFN) teams in Cloud Security and Cloud GRC areas * Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact * Design, implement, and/or assess security controls and frameworks * Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks * Assess and document emerging regulatory impact on established policy and control frameworks * Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals * Establish learnings, best practices, standardized frameworks and tools across GRC and related teams * Develop detailed program/project plans in partnership with cross-functional teams * Identify opportunities for information sharing, process improvement and automation * Support business travel on an as needed basis (up to 10%) About Meta Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today-beyond the constraints of screens, the limits of distance, and even the rules of physics. Equal Employment Opportunity Meta is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here. Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, fill out the Accommodations request form.

Job Description Summary of Role: Supports security operations by performing general administrative control, monitoring, and access of employees, contractors, detailees, and task force officers to government facilities. Performs identity proofing, enrollment, and issuance of Personal Identity Verification (PIV) cards, building passes, and facility credentials. Responsibilities: Conducts in-person identity proofing and enrollment for government personnel and contractors. Reviews and verifies identity source documents. Issues, activates, renews, replaces, suspends, and revokes PIV cards and building passes. Performs PIN issuance and resets. Manages access permissions and deactivates credentials upon separation or access changes. Operates and enters data into credentialing system. Maintains accurate records, logs, and credential inventory. Protects Personally Identifiable Information (PII) and sensitive data. Provides customer service and coordinates with government security officials. Supports audits, inspections, and incident reporting. Preferred Qualifications: Experience performing general administrative control, monitoring, and access of personnel to government facilities. Knowledge of security protocols, access control systems, and facility security management. Experience with issuance of PIV cards, building passes, and credentials.

Job Description Site Security Coordinator (SSC) Clearance: ACTIVE Top-Secret The SSC positions will be established for projects where a SSM is not available to assist the cognizant officer with post managed projects. The SSC will assist the DoS officials, coordinate security and other requirements with the key project officials and provide reports back to Security Operations in Washington DC. This position requires exceptional administrative skills such as proficiency with computers, multi-tasking, and an overall understanding of the Security Management Program. Duties and Responsibilities: The SSC will be required to maintain a detailed, daily log of numerous construction activities and render a written report to the Regional Security Officer and Washington DC Desk Officer for review. Coordinate security and other requirements with the key project officials. Provide reports back to Security Operations in Washington DC. Personnel who are well versed in both CAG and CST discipline will be required to interact and efficiently communicate, both orally and in writing, with Embassy personnel. Requirements ACTIVE Top Secret Clearance required. Active CST and/or CAG certification required. 3+ years of security and/or construction experience. Site Security Coordinators must have at least 3 years of experience in the CSM Program. Have and maintain a Top-Secret U.S. Government Security Clearance. In good physical health and meet medical requirements for the position. The SSC will be knowledgeable in both guard and construction surveillance functions, however, they need not be certified in both. The SSC must be capable of independent decision making, possess a high degree of initiative and be capable of functioning with minimal supervision.

The Administration for Strategic Preparedness and Response (ASPR) is a public health preparedness and emergency response organization in the Office of the Secretary at the United States Department of Health and Human Services. ASPR was created under the Pandemic and All Hazards Preparedness Act in the wake of Hurricane Katrina to lead the nation in preventing, preparing for, and responding to the adverse health effects of public health emergencies and disasters. Responsibilities Supervise the operation of and administration of security oversight operations within the ASPR SCIF Maintain applicable SCI directives, regulations, manuals, and guidelines adequately discharging the duties and responsibilities Maintain access list of all personnel granted unescorted access to the ASPR SCIF and maintains a visitor's log for the facility Ensure all visitors are appropriately escorted Provide escort training to those personnel assigned as escorts or unescorted access to the facility Serve as the official conduit, through HHS SSO, for certifying and receiving SCI visitor clearances/accesses to the facility Ensure annual Self-Inspections are completed and discrepancies identified and corrected. Monitor all reported SCI security infractions, compromises, and violations that occur Ensure appropriate accreditation documentation is available for the ASPR SCIF facility Ensure prompt submission of written documentation to HHS SSO of any plans to change or modify the ASPR SCIF facility structure, operations, services, and systems Report directly to ONS for all SCI and SCI facility security inquires. Maintain validation of duties and responsibilities along with attendance of SCI related training requirements annually Provide annual reports on classified materials and safes Responsible for necessary new hire NDAs Qualifications Required Education Bachelor's degree (Management or Business) Required Experience 8-10 years of experience Formal training and experience with ICD 704 and ICD 705 Ability to process actions in a timely manner Demonstrated proactive approaches to problem-solving with strong decision-making capability Highly resourceful team-player, with the ability to also be extremely effective independently Proven ability to handle confidential information with discretion, be adaptable to various competing demands, and demonstrate the highest level of customer/client service and response Demonstrated ability to achieve high performance goals and meet deadlines in a fast- paced environment Intermediate level Microsoft Office, Microsoft Visio, and Adobe Acrobat skills Superior time management skills. Desired Experience Center for Development of Security Excellence (CDSE) certification SCIF build experience Required Clearance Favorable adjudicated Tier 5 investigation and be able to obtain and maintain a minimum TS/SCI clearance About Drodex: Drodex LLC provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Security Specialist Reports To: The Customer and Project Manager Clearance Type: Active Top Secret with ability to obtain SCI with CI Poly Job Description: Advantage SCI is seeking Special Security Officers to be considered for full-time employment. Individuals shall provide customer service to include guidance and assistance to customer and external agency customers. Summary of duties: • Processing outgoing clearance certifications messages. • Processing incoming visit certifications and validating SCI accesses of visitors. • Performing various badging functions and updating personnel security systems. • Scheduling and conducting SCI indoctrinations/debriefs, and uploading related documents. • Processing Personal Electronic Devices (PED) and systems access requests. • Badging activities, to include the issuance of badges and in some locations the issuance of CACs. • Submitting outgoing clearance requests. • Processing systems access requests. • Responding to numerous requests for status updates and other routine security questions. • Identifying element personnel that requires updating of their polygraphs and investigations. • Training part-time unit security officers in the use of security databases and tools; other duties as assigned. • 3-5 years of relevant experience • Must possess a Top Secret clearance with ability to obtain SCI and successfully pass CI Poly NO EXCEPTIONS! • Knowledge of the Microsoft Office Suite, particularly Outlook, Word and Excel. • Excellent written and oral reporting skills, interpersonal skills, and the ability to communicate at all levels of the organization and customers across geographically dispersed sites. • Experience working in DIA a plus • Must have a valid certification of completion in PII and Cyber Awareness Challenge from Information Assurance Support Environment (Only valid within 30 days of hire). To obtain the certification, visit ************************** Working Conditions: • Able to sit and work at a computer keyboard for extended periods of time • Able to stoop, kneel, bend at the waist and reach • Able to lift up to 35 pounds occasionally. • Noise level: Low to moderate Advantage SCI, LLC is an Equal Opportunity Employer Advantage SCI is an Equal Opportunity/Affirmative Action employer. All applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Job DescriptionDescription: We are looking for a Security Specialist in Washington D.C. to join our team. Top candidates will have a Top Secret Clearance and have experience ensuring the safety and security of personnel, facilities, and sensitive information. The role involves implementing security protocols, conducting risk assessments, and ensuring security compliance. Personnel Security: Reviewing documentation to determine eligibility of personnel to access classified information and to be assigned to sensitive duties. Assist in the development and coordination of the Command's security awareness and education program Advising all command members of applicable policies and procedures Ensuring that all personnel who will handle classified information or will be assigned to sensitive duties are appropriately cleared, and that requests for personnel security investigations are properly prepared, submitted, and monitored Ensuring that personnel security investigations, clearances, and accesses are properly recorded. Coordinate the Command's program for continuous evaluation of eligibility for access to classified information or assignment to sensitive duties Ensuring all personnel execute a Classified Information Nondisclosure Agreement (SF 312) prior to granting initial access to classified information Conducting security briefings and debriefings of arriving and departing personnel Information Security: Ensuring access to classified information is limited to those who are eligible and have the need to know Coordinating the preparation and maintenance of security classification guides under the Command's cognizance Ensuring compliance on the release of information to public and foreign entities Developing, implementing, and monitoring policies, instructions and procedures; exercise of classification authority; document marking, safeguarding, and use; personnel access controls; need to know criteria; physical storage and control; and transmitting, transferring, reproducing, downgrading, declassifying, and destroying information Industrial Security: Security Specialist in verifying contractor security clearances; badges for contractors; and need for access Working with subject-matter specialists in developing statements of need, descriptions of work, and other considerations relating to the security requirements under a contractual arrangement Assuring that security is considered in the earliest stages of procurement planning and that all requirements are fulfilled. Review DD-254 for completeness and proper language Physical Security: Providing requirements for addressing the general physical protection of personnel, installations, facilities, information, operations, and related assets Administering policies and procedures required to maintain accreditation and physical integrity of the Command's spaces, especially those that require special access Granting badge to all NHHC personnel Administering the Command's Physical Security and Loss Prevention Program Security Management: Developing and updating written command information and personnel security procedures, including an emergency plan In the absence of Government Security Personnel, advise the Commander and staff personnel on all aspects of security Ensuring that threats to security and other security violations are reported and recorded Requirements: Minimum Qualifications: Possess a minimum of 5 years of security experience to include Personnel Security, Industrial Security, Information Security, and Physical Security Be proficient in all Microsoft Office Suites/Programs i.e. Outlook, Excel, PowerPoint, and Word Have administrative support experience and have strong written and oral communication skills Knowledge of Trusted Associate Sponsorship System (TASS), Defense Information System for Security (DISS), Case Adjudication Tracking System (CATS), Joint Verification System (JVS), Secure Web Fingerprint Transmission (SWFT), Secure Web Fingerprint Transmission Plus Enrollment (SWFT+), and National Background Investigation Services (NBIS) Possess and maintain a minimum clearance level of TOP SECRET security clearance based on a T5 (or equivalent level) investigation

About Us: Totally Joined For Achieving Collaborative Techniques (TJFACT) is a minority owned, CVE verified Service Disabled Veteran Owned Small Business (SDVOSB) performance driven professional services government contracting company that provides a broad spectrum of services and solutions to the U.S government agencies and organizations. About the position: TJFACT is seeking to hire a well-qualified Security Specialist to join our team to support our DHS-OIG client in Washington DC. The purpose of this position is to support OIG's Asset Management, Security, and Readiness Support (ASR) which enables OIG mission success through a trusted and engaged workforce who provide and protect employees, assets, and information. ASR is responsible for asset management, managing and maintaining OIG workspaces and building services, emergency management/readiness, and performing all security disciplines and functions to protect OIG personnel, assets, and information. Duties and Responsibilities Greets DHS OIG employees and guests visiting the HQ security suite; guides personnel to the appropriate staff member, utilizes government and commercial sources and databases to identify DHS OIG employees, guests, and visitors; verifies the security status of said individuals, and provides individuals with access and credential support by scheduling, coordinating, arranging, receiving, and/or producing personal identification verification (PIV) cards, OIG credentials, building badges, or similar items to help ensure customer success. Assists custodian(s) and ASR officials maintain accountability of security equipment and infrastructure, to include managing material reports, data entry, and inventory completion. Monitors office physical access control systems (PACS); provide access reports and consolidates facility access records; programs, assigns or removes user permissions from personnel and physical security systems, and remotely opens, bypasses, and secures doors during routine and emergency operations; prepares completed reports; and issues and retrieves government issued keys and/or identification cards. Reviews and evaluates policies, procedures, and guidance documents that pertain to security programs to provide advice, assistance, and support to ASR employees. Assists with implementation and administration of various security program components, which could include such functions as facility access privileges, Access Control Systems, Intrusion Detection System (IDS) and alarm monitoring centers, and closed caption television (CCTV) systems. Prepares for, and participates in official security reviews, internal controls/assessments, and self-inspections. Helps to prepare reports, evaluate findings, and implement corrective actions. Maintains automated and paper records, conducts data entry, and tracks and monitors security information. Researches, interprets, analyzes, and applies security guidelines from various sources for OIG application. Evaluates, develops, and implements security plans and procedures. Determines the classification, declassification, and protection of sensitive and national security information. Assists in developing and implementing security policies and procedures, including classification guides, procedures for document marking, safeguarding, and transmitting, transferring, reproducing, downgrading, and destroying information. Receives and distributes mail, courier, classified materials, and other deliveries for the OIG. Ensure appropriate security screening, recordkeeping, and tracking of items. Coordinate and/or conduct the appropriate destruction of classified and sensitive materials. Required Experience: High School diploma/GED certificate or higher, One (1) - four (4) years of security, identity, and credential experience preferably in the National Security, Interagency Security Committee (ISC), or Intelligence Community. Ability to apply fundamental security, risk management, and program protection concepts, processes, practices, and procedures; implement control and accountability of designated items, conduct inventories, and possess familiarity of HSPD-12, and working knowledge of physical access control systems (PACS). Active Security Clearance Required Benefits Medical, Vision and Dental Insurance 401-K plus match Paid Vacation days Paid holidays Short Term and Long-Term Disability Voluntary Term Life TJFACT is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran. We reserve the right to modify or revise the job descriptions in part or in its entirety. Reasonable accommodations will be made in accordance with governing law.

The team member supports information assurance management, risk and vulnerabilities assessments within enterprise systems and databases. The team member researches remediation of these findings and develops compliance plans. The team member determines the impact of executing the IA remediation solutions provided by IRM, and provides methodology and recommendations. The team member will analyze C&A findings and develops remediation plans. The team member will utilize DOS' iPost application to monitor and push-out security patches to the HR IT enterprise infrastructure. Team member must be able to work till 7 p.m. Monday through Friday and support release nights (Fridays - 7p.m. -12 p.m.) as needed. List of project(s) or duties currently being worked by the individual: iPost monitoring and remediation coordination (database and systems) Development lifecycle support (migrations and support) Mentor team members and daily tasks/tickets VMWare Active Directory Symantec EndPoint Manager Specific role of the individual in the project (i.e., lead, developer, production control, etc.) and % of time dedicated to project(s). Be as specific as possible: Lead Security SME and iPost Administrator (100%) Size of team working the project(s) System Security and iPost (1-2) Required: Strong knowledge of Information Assurance Management best practices Strong knowledge of Security Patch management Strong knowledge of systems and database security best practices Experience with Microsoft Windows server operating system 2008 Experience with PeopleSoft 9.1 administration tasks including installation and configuration Experience with Oracle Database 11g administration tasks including installation and configuration Experience with SQL Server 2005/2008 administration Experience with Linux and/or similar Unix-based servers Bachelor degree in computer management, information security or equivalent job experience Skills Preferred: Familiarity with guidelines to support the implementation of and compliance with the FISMA Familiarity with the DOS' iPost application Experience with NetIQ monitoring tool Experience: 4+ years enterprise level Information Assurance Management and security vulnerability experience, 4+ years enterprise level security scanning and reporting tool experience, 4+ years Microsoft Windows 2003 or above administration and server maintenance, 2+ years PeopleSoft Server database administration, 2+ years Oracle server administration, 2+ years SQL server administration, 2+ Unix/Linux server administration Certification: Advanced training or professional security certifications (e.g. CISSP, CISA, CISM or Security+)

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers . If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Position Title: Administrative Security Specialist Reports To: The Customer and Project Manager Clearance Type: High-Risk Public Trust Background Investigation Work Location: Washington D.C. Metro Area Job Description: Advantage SCI is accepting applications to support a federal agency security program. This administrative position will conduct activities focusing on protective intelligence administrative/insider threat duties. This position is considered to be an emergency response position and may be required to deploy to an Emergency Relocation Site in the Washington DC metro area for exercises or actual incidents. Exercises requiring deployment occur every other year and last one to two days typically. Summary of duties include but not limited to: Creating, reviewing, and maintaining written and computer files and data. Assisting in the coordination of administrative functions to include budget, personnel, meetings, and clerical duties. Conducting basic research on a variety of topics. Performing data entry and management. Coordinating and scheduling training for department personnel Help implement new programs, procedures, methods, and systems. Preparing confidential documents and reports. Liaising with internal department personnel and with outside agencies Serve as administrative assistant to the department Director Perform records management tasks Perform Vehicle Custodian tasks Coordinate operations, including purchasing, equipment, property inventory, building, and equipment. Assist Insider Threat Manager in the development, maintenance, and implementation of agency program and policies. Develop, coordinate, and maintain insider threat policy(ies). Assist with the preparation of the annual insider threat assessment Provide quarterly, or as needed, statistics of Insider Threat program activities Experience and Skills Required Qualifications: Must have a minimum of one-year of relevant experience Must high-risk public trust background investigation Minimum high school diploma or a General Education Development (GED) equivalency Must be a US citizen A minimum age of twenty-one years Demonstrable proficiency and fluency in reading, writing, and speaking the English language to include the ability to construct and write clear, concise, accurate, and detailed reports. Demonstrate courtesy and respect, and impartial enforcement of directives. Possess honesty, integrity, good judgment, courage, alertness, self-reliance. Ability and skills to tactfully and positively interact with stakeholders while maintaining poise and self- control during stressful events and incidents. Ability to demonstrate poise, self-confidence, and sound decision-making. Ability to learn and adapt to changing situations. Ability to understand, and apply printed rules, directives, detailed orders, instructions, procedures, and training materials. Be and remain drug free for the duration of employment on the contract. Have a valid driver's license. Must be able to sit, stand, walk, run, and lift items weighing not exceeding 50 lbs Preferred experience Proficient experience working with Microsoft Office Suite, i.e., Microsoft Word, Microsoft Excel, Microsoft PowerPoint, Microsoft Access Experience with Insider Threat Programs is advantageous but not required Working Conditions: Able to sit and work at a computer keyboard for extended periods of time Able to stoop, kneel, bend at the waist and reach Able to sit, stand, walk, run Able to lift up to 50 pounds

Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do You'll be joining BCG's Federal Risk & Security team as the lead for personnel security-the team member our cleared employees rely on from their very first onboarding steps to their day-to-day work on sensitive programs. You'll work hand-in-hand with our Facility Security Officer and Assistant FSO, shaping how we meet government security expectations while making the process feel seamless for our people. In this role, you'll run the engine that keeps our cleared workforce moving: coordinating clearances, helping teammates navigate investigations and briefings, and keeping our security records and requirements compliant and mission-ready. Your work touches every part of the BCG Federal model-supporting incoming hires, partnering with our staffing teams, guiding employees through training, and ensuring that our program stays aligned with government standards. The Security Specialist will play an essential role in enabling BCG Fed to deliver secure, impactful work across the federal landscape. YOU'RE GOOD AT You enjoy keeping complex things organized and running smoothly-especially when the stakes are high and the details matter. In this role, you'll help manage the day-to-day rhythm of BCG's Federal security program, supporting projects that range from unclassified advisory work to engagements requiring cleared personnel. Here's how your strengths come to life: * Guiding employees through the full lifecycle of their security clearances-launching new investigations, helping them navigate SF-86 requirements, answering questions along the way, and staying on top of periodic reinvestigations and information requests from DCSA * Partnering closely with our Federal People & Ops team to make onboarding for cleared hires feel smooth, timely, and well-supported. * Handling the administrative side of personnel security with fluency-using systems such as DISS and NBIS, processing reports, issuing briefings, and making sure our records stay accurate and compliant with NISPOM rule. * Leading and supporting security trainings for everyone from first-time cleared employees to long-time team members-indoctrinations, refreshers, and debriefings included. * Proactively identifying and documenting potential security issues or violations, using good judgement to navigate sensitive matters * Coordinating visit authorization requests, client site access, badging, CACs, and other needs that keep our teams able to show up and deliver. * Building strong relationships with government and client security officers so that projects stay compliant and teams stay supported. What You'll Bring * US citizen with an active security clearance at Secret or above is required * 2+ years of professional experience in a National Industrial Security Program (NISP) government or contractor security role with expertise in T1-T5 investigations & adjudication * Strong knowledge of USG system of records such as NISS, DISS, NBIS, eAPP, Scattered Castles * In-depth knowledge of NISPOM Rule and related DoD regulations * Foundational understanding of CUI marking, handling, and transmission requirements * Excellent verbal and written skills and timely communication style * Ability to exercise judgment and understanding of how decisions impact overall organization * Ability to exercise judgment in managing confidential/sensitive information * High level of self-motivation and initiative; a drive to follow through seeing tasks to completion with the ability to work effectively independently, multi-task and adapt in an ever changing, often challenging, and consistently fast-paced environment * Ability to anticipate alternate solutions and be prepared with contingency plans as needed in a calm and efficient manner * Superior attention to detail and accuracy with willingness to consistently check and double-check all aspects of the security program with respect to US Government security guidance * Service-oriented, flexible, positive team player * Nice to have: FSO Non-possessing or Possessing certification, ISP, PSP, CPP, APP or other security related certifications or industry memberships Who You'll Work With You will be part of the BCG Federal Risk and Security team, interfacing regularly with internal functions like peoples & operations, finance, contracts, and cybersecurity, IT and directly supporting our Federal case teams, clients, and the DCSA. Additional info Format At BCG, our people and relationships are at the heart of everything we do. We believe that in-person work is essential to our culture, mentorship, and professional development. That's why we operate on a hybrid model, with the expectation that team members will be in the office 3 to 5 days per week. This role is designed for those who thrive in a dynamic, collaborative environment and is not intended for remote or virtual work. Compensation Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role is $79,000-$97,000. This is an estimated range and specific base salaries within the range depend on factors such as office location, experience, and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a discretionary bonus of up to 12% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. At BCG, we are committed to offering a comprehensive benefit program that includes everything our employees and their families need to be well and live life to the fullest. We pay the full cost of medical, dental, and vision coverage for employees - and their eligible family members.* That's zero dollars in premiums taken from employee paychecks. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested retirement contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) * Paid sick time on an as needed basis * Employees, spouses, and children are covered at no cost. Employees share in the cost of domestic partner coverage. Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.

(Personnel) Security Specialist III Hybrid/Washington, DC Softtek Government Solutions is seeking a Personnel Security Specialist III to support the Administration for Strategic Preparedness and Response (ASPR). ASPR is a public health preparedness and emergency response organization in the Office of the Secretary at the United States Department of Health and Human Services. ASPR was created under the Pandemic and All Hazards Preparedness Act in the wake of Hurricane Katrina to lead the nation in preventing, preparing for, and responding to the adverse health effects of public health emergencies and disasters. Responsibilities: The Personnel Security Specialist III conducts complex investigations, provides expert guidance on security policies, and ensures compliance with federal regulations, often in a government or defense contractor setting. Responsibilities include conducting thorough background investigations, analyzing and adjudicating security clearance applications, and developing recommendations for personnel suitability based on findings and regulatory standards. They also maintain security databases, provide training, and assist in the development and maintenance of program policies and procedures. Qualifications: Required Education Bachelor's degree (Management or Business) 6 yrs of experience in lieu of education Required Experience: US Citizenship required/ability to obtain and maintain a minimum secret security clearance Hybrid work schedule/dictated by the needs of the client 5+ years of security experience (personnel security, adjudications training suitability training, personnel vetting, etc.) High degree of experience/knowledge of DISS, SCATTER CASTLES, CVS, e-Qip Expert understanding of personnel security related government standard forms (SF) Ability to process actions in a timely manner Demonstrated proactive approaches to problem-solving with strong decision-making capability Highly resourceful team-player, with the ability to also be extremely effective independently Proven ability to handle confidential information with discretion, be adaptable to various competing demands, and demonstrate the highest level of customer/client service and response Demonstrated ability to achieve high performance goals and meet deadlines in a fast- paced environment Intermediate level Microsoft Office, Microsoft Visio, and Adobe Acrobat skills Superior time management skills. About Softtek Government Solutions: Softtek Gov't Solutions is a professional services firm focused on addressing our nation's most complex threats and challenges. As a small business we're committed to supporting our clients' missions with services delivered by our diverse and experienced staff. With expertise in cybersecurity, emergency preparedness, and public health, our experience base spans federal, state, and local governments, as well as private sector entities. Softtek Gov't Solutions encourages collaborative communication and ongoing learning. Some of our benefits include: Extensive training programs Gym membership reimbursement Education reimbursement Technology benefits Commuter benefits Generous paid time off and much more! Softtek Gov't Solutions is an Equal Opportunity Employer (EOE)

Job Title: IA Security Specialist Clearance: Active DoD Secret Foxhole Technology provides robust cybersecurity and IT support capabilities for federal civilian and defense agencies. A recognized leader in navigating technology and security challenges, Foxhole delivers mission-focused innovations to answer evolving and complex needs. Our talented employee-owners provide agile, scalable services and solutions that solve operational gaps, operate critical systems, and protect and secure the enterprise - across the organization and around the world. The IA Security Specialist supports the Engineering Team by providing cybersecurity technical expertise and support to develop requirements and ensure compliance. Support includes providing technical input and insight related to the systems security and the authorization process. Job Description The IA Security Specialist will: Define and maintain the set of security requirements to be implemented in all systems based on, but not limited to, the following: Federal Information Processing Standards (FIPS) Publication 199, National Institute of Standards and Technology (NIST) 800-53, NIST 800-60, US Department of Transportation (DOT) Information Technology Implementation Memorandum (ITIM), FAA policy, Executive Orders, and OMB mandates. Tailor and review the Acquisition Management System (AMS) Process for Cybersecurity Requirements and Capabilities to allow for rapid response to identified threats and/or vulnerabilities. Establish and review baseline security configuration standards for operating systems and applications used in all systems. Review system configuration and network service change requests to ensure only approved network services are configured for additions (new services), modifications to existing services, and discontinuation of services. Provide technical cybersecurity support to all organizational systems. Review, evaluate, and make recommendations on Systems Security Authorization documents (Security Assessment Reports, System Security Plans, System Contingency Plans, System Characterization Documents) to determine if risk is accurately portrayed and/or assessed. Conduct Gap Analysis to accurately document whether additional FIPS-199 controls are applicable. Review and evaluate POA&M funding requests to determine if the proposal remediates or mitigates risk to an acceptable level and provide recommendation based on priorities, risk, and current world events if the request should be funded. Collaborate with System Owners to address any cybersecurity concerns or questions. Create and present risk summaries to management to show the current risk and recommendations for acceptance, corrective actions, deferral, or disconnection(s) required to address the cybersecurity concerns. Review and analyze POA&M to determine if the data effectively supports risk mitigations and make recommendations for improvements for the systems security. Minimum Requirements Bachelor's Degree in information assurance, information technology, computer science, or a degree in a related field Minimum of 6 years of experience Possess applicable industry certifications such as CISSP, CISM, or Security + Must able to obtain Federal Suitability More Information At Foxhole Technology, we are committed to pay transparency as required by law, for our applicants and employee-owners. The salary range for this position is $105,000-$115,0000. Actual compensation will be determined based on a number of factors as permitted by law. Foxhole Technology offers a competitive benefits package for our employees and their dependents, including health, dental, and vision care, paid leave, retirement plans (401K, Roth, and ESOP), life and disability insurance, flexible spending accounts, and education and training assistance. Requirements of position: Think analytically, effective verbal and written communication skills, make decisions, observe/remember details, interpret data, concentrate on tasks, adjust to change, handle stress/emotions. Regular attendance, maintain work schedule, attend meetings, meet deadlines, keyboard/type, handle confidential information, use math/calculations, stay organized, operate office equipment, may direct others. Must be able to see, have eye/hand coordination, and lift up to 10 lbs. May be exposed to dust/dirt, humidity, and noise. Foxhole Technology is an Equal Opportunity Employer and makes hiring decisions without regard to race, color, religion, sex (including pregnancy, childbirth and sexual orientation), national origin, age, disability, genetic information, military/veteran status, or any other protected class. We can recommend jobs specifically for you! Click here to get started.

Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do You'll be joining BCG's Federal Risk & Security team as the lead for personnel security-the team member our cleared employees rely on from their very first onboarding steps to their day-to-day work on sensitive programs. You'll work hand-in-hand with our Facility Security Officer and Assistant FSO, shaping how we meet government security expectations while making the process feel seamless for our people. In this role, you'll run the engine that keeps our cleared workforce moving: coordinating clearances, helping teammates navigate investigations and briefings, and keeping our security records and requirements compliant and mission-ready. Your work touches every part of the BCG Federal model-supporting incoming hires, partnering with our staffing teams, guiding employees through training, and ensuring that our program stays aligned with government standards. The Security Specialist will play an essential role in enabling BCG Fed to deliver secure, impactful work across the federal landscape. YOU'RE GOOD AT You enjoy keeping complex things organized and running smoothly-especially when the stakes are high and the details matter. In this role, you'll help manage the day-to-day rhythm of BCG's Federal security program, supporting projects that range from unclassified advisory work to engagements requiring cleared personnel. Here's how your strengths come to life: * Guiding employees through the full lifecycle of their security clearances-launching new investigations, helping them navigate SF-86 requirements, answering questions along the way, and staying on top of periodic reinvestigations and information requests from DCSA * Partnering closely with our Federal People & Ops team to make onboarding for cleared hires feel smooth, timely, and well-supported. * Handling the administrative side of personnel security with fluency-using systems such as DISS and NBIS, processing reports, issuing briefings, and making sure our records stay accurate and compliant with NISPOM rule. * Leading and supporting security trainings for everyone from first-time cleared employees to long-time team members-indoctrinations, refreshers, and debriefings included. * Proactively identifying and documenting potential security issues or violations, using good judgement to navigate sensitive matters * Coordinating visit authorization requests, client site access, badging, CACs, and other needs that keep our teams able to show up and deliver. * Building strong relationships with government and client security officers so that projects stay compliant and teams stay supported. What You'll Bring * US citizen with an active security clearance at Secret or above is required * 2+ years of professional experience in a National Industrial Security Program (NISP) government or contractor security role with expertise in T1-T5 investigations & adjudication * Strong knowledge of USG system of records such as NISS, DISS, NBIS, eAPP, Scattered Castles * In-depth knowledge of NISPOM Rule and related DoD regulations * Foundational understanding of CUI marking, handling, and transmission requirements * Excellent verbal and written skills and timely communication style * Ability to exercise judgment and understanding of how decisions impact overall organization * Ability to exercise judgment in managing confidential/sensitive information * High level of self-motivation and initiative; a drive to follow through seeing tasks to completion with the ability to work effectively independently, multi-task and adapt in an ever changing, often challenging, and consistently fast-paced environment * Ability to anticipate alternate solutions and be prepared with contingency plans as needed in a calm and efficient manner * Superior attention to detail and accuracy with willingness to consistently check and double-check all aspects of the security program with respect to US Government security guidance * Service-oriented, flexible, positive team player * Nice to have: FSO Non-possessing or Possessing certification, ISP, PSP, CPP, APP or other security related certifications or industry memberships Who You'll Work With You will be part of the BCG Federal Risk and Security team, interfacing regularly with internal functions like peoples & operations, finance, contracts, and cybersecurity, IT and directly supporting our Federal case teams, clients, and the DCSA. Additional info Format At BCG, our people and relationships are at the heart of everything we do. We believe that in-person work is essential to our culture, mentorship, and professional development. That's why we operate on a hybrid model, with the expectation that team members will be in the office 3 to 5 days per week. This role is designed for those who thrive in a dynamic, collaborative environment and is not intended for remote or virtual work. Compensation Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role is $79,000-$97,000. This is an estimated range and specific base salaries within the range depend on factors such as office location, experience, and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a discretionary bonus of up to 12% and a generous retirement contribution that starts at 5% and moves to 10% after 2 years. At BCG, we are committed to offering a comprehensive benefit program that includes everything our employees and their families need to be well and live life to the fullest. We pay the full cost of medical, dental, and vision coverage for employees - and their eligible family members.* That's zero dollars in premiums taken from employee paychecks. All of our plans provide best in class coverage: * Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children * Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs * Dental coverage, including up to $5,000 in orthodontia benefits * Vision insurance with coverage for both glasses and contact lenses annually * Reimbursement for gym memberships and other fitness activities * Fully vested retirement contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan * Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement * Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 15 vacation days per year (earned at 1.25 days per month) * Paid sick time on an as needed basis * Employees, spouses, and children are covered at no cost. Employees share in the cost of domestic partner coverage. Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.

Join the future of news We're on a mission to deliver riveting storytelling for all of America. At The Washington Post, you'll help reinvent news. Our work is driven by a deep investigative spirit and enhanced by innovation to bring audiences closer to the stories that matter most. About Our Team The Washington Post is powered by the passion and talent of our people. It takes all of us to reinvent news. Beyond our award-winning Newsroom and Opinions teams, we work across many departments, including Brand & Events, Communications, Customer Care, Engineering & Product, Finance, Human Resources, Legal, Marketing & Advertising, Print Operations, and Sales. Why This Role Matters We are looking for an experienced Security Specialist (1099 Contract) for our Security Operations Center (SOC) to help us elevate our corporate security function. In addition to day-to-day responsibilities, this role will be for the weekend shift (9 am-5 pm on Saturday and Sunday plus two (or more) 8-hour weekday shifts.) How You'll Support the Mission * Weekend shift 9 am - 5 pm on Saturday and Sunday. * Weekday shifts (8-hours) will involve stand-in coverage at The Washington Post. Therefore, the candidate must be flexible with scheduling. * Monitor video and data activity throughout the building using Security Operations Center's video and data processing technology. * Act as the main point of contact between building security and WP security management during the weekend shift. * Conduct regular security rounds/surveillance of the properties throughout shifts. * Coordinate with the law enforcement officers, outside security firms, property management company, and the event management staff; checking IDs and badges; and resolving incidents quickly and efficiently. * Act as a point of contact for all emergencies related to the company's security, business continuity, and safety, including medical emergencies, personnel issues, and security threats. Organize and direct emergency responses and supporting activities. * Analyze loss control and accident reports. Conduct internal investigations in accordance with legal requirements and company policies. * Identify gaps in security and safety protocols and develop policies and procedures to close the gaps and ensure compliance with federal and state regulations. Prepare and maintain all required security manuals. * Partner with other functions throughout the company to implement and enforce security procedures. Minimum Qualifications * High school diploma required; Bachelor's Degree preferred; further education in security administration or similar field will be an asset * Hands-on experience with surveillance techniques and technology (e.g. CCTV), as well emergency planning and response, is required * Corporate security experience required * Military, law enforcement, or intelligence experience preferred * Excellent customer service, interpersonal, communication and collaboration skills * Experience with Close Protection Security (CP) preferred * Ability to enforce security protocols in a polite yet assertive way * Independent thinking and forward-looking attitude * Knowledge of best practices in security and safety, as well as federal and state regulations Your story awaits. Apply today! Learn more about The Post at careers.washingtonpost.com.

Job DescriptionBe Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. Description of Task to be Performed:AnaVation is seeking a Sr. Security Specialist (ISSO/Risk Assessor duties) for our mission critical customer in Washington, DC. You will work as part of a fantastic team providing security expertise on high priority projects. Daily duties include, but are not limited to:· Integral team member for agency's risk assessment program that will be performing internal audits and building streamlined assessment processes.· Having in-depth security knowledge, is highly technical, and experienced in managing the security of a system's accreditation boundary.· Focusing on the enterprise governance and risk of exposure across a multi-cloud and on-premise environment that will include multiple vendors, customers and XaaS products.· Evaluating agency's current system infrastructure and recommending changes to improve its security posture.· Providing customer support for security compliance and audit liaison activities. Focus is on improving the security posture of the agency's Forensic and Investigative Labs.· Developing, maintaining, and assessing Security Assessment & Authorization (SA&A) packages resulting in an Authority To Operate (ATO) for IT systems.· Creating and maintaining SSPs and supporting documentation in accordance with agency guidelines and directives. This includes writing implementation statements, creating supporting documentation (e.g., Contingency Plans, Incident Response Plans, Account Management Plans, etc.), performing self-assessments, and/or assessing your peer's assessment, while working with system stakeholders.· Develop, coordinate, test, and train personnel on Incident Response Plans and Contingency Plans. · Ensuring that information systems are accredited, maintain their ATO, and are being continuously monitored. · Performing risk assessments for agency systems/applications, to include cloud-based systems. · Performing security control assessments to include collecting supporting artifacts/evidence and interviewing system owner/owner representatives. · Maintaining and tracking system POA&Ms. · Reviewing and analyzing vulnerability scan data and providing recommendations on remediation. · Taking ownership on various projects. · Improving on processes and procedures and making recommendations to improve the security posture of the agency's IT systems and applications. This position is on-site in Washington, DC.Required Qualifications: 6+ years' experience with NIST, FISMA, and Security Assessment & Authorization. FedRAMP and Cloud experience (e.g., Azure, AWS, Oracle (OCI)) Knowledgeable on various security-related NIST publications (e.g., SP 800-53r5, SP 800-53A, SP 800-18r1, etc.) An in-depth knowledge of the Risk Management Framework (RMF). Ability to obtain and maintain a customer Public Trust clearance required. Qualified candidates can be sponsored for this clearance. Certifications: CISSP required Preferred Qualifications: Familiarity with the security control families from the NIST guidance covered by the documents that they are responsible for evaluating. Ability to provide subject matter expert-level knowledge to the project team to ensure compliance with applicable requirements. Demonstrated knowledge of IT Security policy implementation statements, the regulatory structure of policy, the role of the Department of Homeland Security (DHS), the Office of Management and Budget (OMB), and the National Institute of Standards and Technology (NIST). Hands-on experience using a Governance, Risk, and Compliance tool, such as JCAM (CSAM) or eMASS. Ability to conduct gap analysis on non-federated vendor audit results, such as SOC Type 2, HIPAA comparison review and analyze against NIST SP 800-53 Revision 5 security controls. Hands-on experience providing C-Level presentation and reporting. Excellent written communication skills and understand the purpose and use of the System Security Plan (SSP). Possess an understanding of control inheritance as applied to the RMF implementation in the JCAM tool. Ability to accurately manage complex workstreams, comprehend the application of the RMF, and understand the application of security controls across the interface, application, operating system, network, and database layers of modern information systems. Understand the applicable artifacts used as evidence to assess compliance. Experience with multiple tools providing security functions such as vulnerability management (e.g., Nessus), configuration management (e.g., BigFix, SCCM, ePO), endpoint protection (e.g., antivirus, ATP), data loss prevention, and intrusion detection software and hardware. Ability to evaluate data flows, network diagrams, and logical security boundaries. Excellent oral and written communication skills Familiarity with the use of data analysis tools, including the use of Microsoft Excel or PowerBI to combine data from multiple sources. Benefits · Generous cost sharing for medical insurance for the employee and dependents · 100% company paid dental insurance for employees and dependents · 100% company paid long-term and short term disability insurance · 100% company paid vision insurance for employees and dependents · 401k plan with generous match and 100% immediate vesting · Competitive Pay · Generous paid leave and holiday package · Tuition and training reimbursement · Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law.

Boston, Massachusetts;Washington, District of Columbia **To proceed with your application, you must be at least 18 years of age.** Acknowledge Refer a friend **To proceed with your application, you must be at least 18 years of age.** Acknowledge (******************************************************************************************************************************************************************* **Job Description:** At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! **LOB Overview:** + Global Information Security (GIS) is responsible for protecting bank information systems, confidential and proprietary data, and customer information. GIS develops the bank's Information Security strategy and policy, manages the Information Security program, identifies, and addresses vulnerabilities and operates global security operations centers that monitor, detect, and respond to cybersecurity incidents. Within GIS, Identity and Access Management (IAM) is a security discipline that enables the right individuals to access the right resources at the right times and in the right context. IAM addresses the mission-critical need to ensure appropriate access to the resources across increasingly heterogeneous technology environments, and to meet increasingly rigorous compliance requirements. **Role Description:** + We are seeking a highly experienced and technically proficient **Senior Identity and Access Management (IAM) Specialist** to lead access provisioning initiatives across a complex enterprise environment. This role is critical to ensuring secure, compliant, and efficient access to systems and data, with a strong emphasis on enforcing **least privileged access** principles that eliminate excessive permissioning. + The ideal candidate will bring deep expertise in IAM technologies and platforms-including **Active Directory** , **Microsoft Azure, Amazon Web Services (AWS),** and **Mainframe** , **Oracle** , **SQL** , and various file and storage collaboration systems, password secure controls including keys and tokens -and will be responsible for designing and implementing scalable access provisioning solutions to integrate IAM processes across cloud services. This is a hands-on technical leadership role that requires strategic thinking, cross-functional collaboration, and a commitment to continuous improvements in identity governance and access platforms and controls. **Responsibilities:** + Lead the design, implementation, and ongoing management of **access provisioning solutions** across enterprise platforms, ensuring alignment with security policies and regulatory requirements. + Serve as the subject matter expert for **Active Directory** , **Microsoft Azure, Amazon Web Services (AWS),** and **Mainframe** , **Oracle and SQL databases** , **file systems** , and **enterprise storage** , with a focus on enforcing **least privileged access** . + Develop and maintain **access control policies** , **group structures** , and **role-based access models** to support scalable and secure provisioning. + Collaborate with application owners, infrastructure teams, and business stakeholders to define and implement **access requirements** for new and existing systems. + Drive automation initiatives to streamline **provisioning and de-provisioning workflows** , integrating with identity governance platforms and HR systems and IAM controls. + Conduct periodic **access reviews** , **entitlement audits** , and **certification campaigns** to ensure compliance and identify access anomalies. + Investigate and remediate access-related incidents, working closely with cybersecurity and risk teams to address vulnerabilities and improve controls. + Provide technical leadership and mentorship to junior IAM team members, fostering a culture of security-first thinking and operational excellence. + Stay current with emerging IAM technologies, regulatory changes, and industry best practices to continuously enhance the access provisioning program. + Prepare and present metrics, reports, and recommendations to senior leadership and audit teams regarding access provisioning effectiveness and risk posture. **Required Qualifications:** + **10+ years of progressive experience** in Identity and Access Management, with a strong focus on access provisioning across enterprise environments. + Deep technical expertise in **Active Directory** , **Microsoft Azure AWS, Mainframe** , **Oracle Database** , **SQL Server** , **Windows and Unix file systems** , and **enterprise storage platforms** . + Proven ability to design, implement, and manage access provisioning solutions that enforce **least privileged access** and align with regulatory and internal compliance requirements. + Strong understanding of **IAM governance frameworks** , platforms ( **e.g., SailPoint, Saviynt** ) **role-based access control (RBAC)** , **group policy management** , and **privileged access management (PAM)** tools, **CyberArk, Hashi Corp and Beyond Trust.** + Experience with **automated provisioning/de-provisioning workflows** , including integration with HR systems to demonstrated proficiency in scripting and automation (e.g., PowerShell, Python) to support scalable access provisioning and audit processes. + Familiarity with **cloud infrastructure security** and access controls in hybrid environments, particularly within **Microsoft Azure AWS** and **Oracle Cloud** . + Ability to conduct **access reviews** , **entitlement audits** , and **risk assessments** to identify and remediate access-related vulnerabilities. + Excellent analytical, problem-solving, and communication skills, with the ability to collaborate across technical and business teams. **Shift:** 1st shift (United States of America) **Hours Per Week:** 40 Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates. View your **"Know your Rights (************************************************************************************** "** poster. **View the LA County Fair Chance Ordinance (************************************************************************************************** .** Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment. Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work. This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Meta's Security Governance, Risk and Compliance function (Security GRC) serves as the primary hub for Security risk management and compliance across the company, providing support to Meta and its family of apps. Within Security GRC, the Cloud Security GRC function is a horizontal capability providing guidance and direction to first line teams in making Meta's Cloud platforms secure, available and compliant.At Meta, we understand the significance of security, data protection, and privacy for the billions of people who use our services. We are committed to ensuring compliance with applicable laws and regulations such as the General Data Protection Regulation (GDPR), the European Electronic Communications Code (EECC), the Network and Information Security Directive (NIS2), and others, while enabling the business to rapidly and securely use appropriate Cloud solutions.We are currently seeking highly experienced and motivated information security professionals to join our Cloud Security Function to continue to develop Cloud Security GRC capabilities. This role is critical in driving change and ensuring compliance with these and other obligations. As part of this role, you will collaborate closely with engineers, analysts, technical program managers, business stakeholders, legal teams, and risk & compliance teams across the Meta organization.You will bring a comprehensive understanding of various aspects of information security and the ability to apply this knowledge to solve problems at scale. This role demands a blend of business and technical acumen, proven communication skills, and a keen desire to learn.Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals. **Required Skills:** Cloud Security GRC Specialist Responsibilities: 1. Lead significant programs of work across various levels of cross-functional (XFN) teams in Cloud Security and Cloud GRC areas 2. Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact 3. Design, implement, and/or assess security controls and frameworks 4. Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks 5. Assess and document emerging regulatory impact on established policy and control frameworks 6. Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals 7. Establish learnings, best practices, standardized frameworks and tools across GRC and related teams 8. Develop detailed program/project plans in partnership with cross-functional teams 9. Identify opportunities for information sharing, process improvement and automation 10. Support business travel on an as needed basis (up to 10%) **Minimum Qualifications:** Minimum Qualifications: 11. 7+ years experience in information security and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management) 12. Demonstrable familiarity with key Cloud Security, Risk Management and Compliance concepts 13. 4+ years of experience in hands on security, with at least one of the major CSPs (AWS, GCP, Azure) 14. Experience in a GRC function overseeing Cloud implementations at scale 15. Experience in designing and implementing control frameworks 16. Experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment 17. Familiarity with compliance frameworks and regulatory requirements such as NIST, CSA CCM, ISO-27001, ISO27018, SOC2, GDPR, EECC, eDP, NIS2, and other relevant structures 18. Bachelor's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field or equivalent experience **Preferred Qualifications:** Preferred Qualifications: 19. Security industry qualification (CISSP, CISM, CISA or similar) 20. Cloud-specific Cloud Certifications (CCSP, AWS Certified Security Specialist, CCSK, etc.) 21. Master's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field **Public Compensation:** $153,000/year to $209,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Clearance: ACTIVE Top-Secret The SSC positions will be established for projects where a SSM is not available to assist the cognizant officer with post managed projects. The SSC will assist the DoS officials, coordinate security and other requirements with the key project officials and provide reports back to Security Operations in Washington DC. This position requires exceptional administrative skills such as proficiency with computers, multi-tasking, and an overall understanding of the Security Management Program. Duties and Responsibilities: The SSC will be required to maintain a detailed, daily log of numerous construction activities and render a written report to the Regional Security Officer and Washington DC Desk Officer for review. Coordinate security and other requirements with the key project officials. Provide reports back to Security Operations in Washington DC. Personnel who are well versed in both CAG and CST discipline will be required to interact and efficiently communicate, both orally and in writing, with Embassy personnel. Requirements ACTIVE Top Secret Clearance required. Active CST and/or CAG certification required. 3+ years of security and/or construction experience. Site Security Coordinators must have at least 3 years of experience in the CSM Program. Have and maintain a Top-Secret U.S. Government Security Clearance. In good physical health and meet medical requirements for the position. The SSC will be knowledgeable in both guard and construction surveillance functions, however, they need not be certified in both. The SSC must be capable of independent decision making, possess a high degree of initiative and be capable of functioning with minimal supervision.

ATTENTION MILITARY AFFILIATED JOB SEEKERS - Our organization works with partner companies to source qualified talent for their open roles. The following position is available to Veterans, Transitioning Military, National Guard and Reserve Members, Military Spouses, Wounded Warriors, and their Caregivers . If you have the required skill set, education requirements, and experience, please click the submit button and follow the next steps. Position Title: Security Specialist Reports To: The Customer and Project Manager Clearance Type: Active Top Secret with ability to obtain SCI with CI Poly Work Location: JBAB, Washington D.C. Job Description: Advantage SCI is seeking Special Security Officers to be considered for full-time employment. Individuals shall provide customer service to include guidance and assistance to customer and external agency customers. Summary of duties: • Processing outgoing clearance certifications messages. • Processing incoming visit certifications and validating SCI accesses of visitors. • Performing various badging functions and updating personnel security systems. • Scheduling and conducting SCI indoctrinations/debriefs, and uploading related documents. • Processing Personal Electronic Devices (PED) and systems access requests. • Badging activities, to include the issuance of badges and in some locations the issuance of CACs. • Submitting outgoing clearance requests. • Processing systems access requests. • Responding to numerous requests for status updates and other routine security questions. • Identifying element personnel that requires updating of their polygraphs and investigations. • Training part-time unit security officers in the use of security databases and tools; other duties as assigned. Experience and Skills • 3-5 years of relevant experience • Must possess a Top Secret clearance with ability to obtain SCI and successfully pass CI Poly NO EXCEPTIONS! • Knowledge of the Microsoft Office Suite, particularly Outlook, Word and Excel. • Excellent written and oral reporting skills, interpersonal skills, and the ability to communicate at all levels of the organization and customers across geographically dispersed sites. • Experience working in DIA a plus • Must have a valid certification of completion in PII and Cyber Awareness Challenge from Information Assurance Support Environment (Only valid within 30 days of hire). To obtain the certification, visit ************************** Working Conditions: • Able to sit and work at a computer keyboard for extended periods of time • Able to stoop, kneel, bend at the waist and reach • Able to lift up to 35 pounds occasionally. • Noise level: Low to moderate Advantage SCI, LLC is an Equal Opportunity Employer Advantage SCI is an Equal Opportunity/Affirmative Action employer. All applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.