Senior security analyst jobs near me - 635 jobs

This remote position supports cybersecurity governance by performing risk and control self-assessments (RCSAs), evaluating cybersecurity controls, and supporting key risk management processes. The role helps identify risk and control gaps, assess cyber risks, and recommends improvements to strengthen the organizations cyber posture. The position provides risk analysis, documentation, and control development support across cybersecurity teams, acting as a resource for process owners and contributing to continuous improvement initiatives. Responsibilities Execute cybersecurity process level RCSAs in partnership with business function owners and stakeholders Document risk and controls assessment results, risk ratings, and supporting evidence in accordance with Enterprise Risk Standards Draft, update, and refine control risk and control statements to ensure clarity, effectiveness, and alignment with cybersecurity processes Review existing risks and controls for design effectiveness, identifying gaps, inconsistencies, or opportunities for improvements Partner with business function owners to periodically update inherent and residual risk ratings for process level risks Assist cybersecurity teams with updating control effectiveness and control environment ratings on a regular cadence Evaluate cybersecurity risks and controls against Enterprise Policies and Standards, regulatory requirements, and industry standards Support remediation planning by documenting gaps, improvement recommendations, and target-state control enhancements Participate in projects, assessments, or escalated tasks requiring risk and control expertise Qualifications Bachelor's Degree and 8 years of experience in Information security, cybersecurity, risk management, or a related field OR High School Diploma or GED and 12 years of experience in Information security, cybersecurity, risk management, or a related field Experience performing risk assessments, RCSAs, or controls testing Working knowledge of cybersecurity processes, controls and risk concepts Familiarity with frameworks such as NIST CSF, NIST SP 800-53 Ability to write clear, actionable control statements and assessment findings Strong analytical, documentation, and communications skills Ability to work collaboratively with technical and non-technical stakeholders Preferred 4-7 years of experience in Information or cyber security risk or control assessment Experience supporting cybersecurity programs within a financial institution or regulated environment Certifications such as Security+, SSCP, CISA, CISM, CISSP, CRISC Understanding of threat landscapes, IT processes, and common control frameworks Experience supporting process improvements, control rationalization, or evidence evaluation The base pay for this position is generally between $120,000 and $180,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. This job posting is expected to remain active for 45 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at **************************************** #J-18808-Ljbffr

A leading data collaboration platform in San Francisco seeks a Senior Security Engineer to enhance threat detection and automation strategies. The role involves implementing detection logic, automating workflows, and developing scalable cloud solutions. Candidates should have a Bachelor's degree in a relevant field and strong skills in security automation and detection engineering. This position offers competitive compensation with a base range of $131,500 to $203,000. #J-18808-Ljbffr

ZetaChain is looking for a Sr. Application Security or DevSecOps Engineer to enhance its security program. This role is crucial for safeguarding applications in the blockchain domain. You will actively shape security strategies while gaining experience across diverse crypto risks in a vibrant and innovative environment. If you possess a strong foundation in application security and are passionate about blockchain technology, you will thrive here. #J-18808-Ljbffr

A financial technology company is seeking a Security Engineer to design and implement security controls for their payment infrastructure. This role involves leading application security, enhancing compliance features, and implementing DevSecOps tooling. Candidates should have over 7 years of experience in DevOps, a strong background in application security, and familiarity with technologies like AWS and Docker. The position supports candidates in various locations including San Francisco or remote. #J-18808-Ljbffr

About Us: At Parafin, we're on a mission to grow small businesses. Small businesses are the backbone of our economy, but traditional banks often don't have their backs. We build tech that makes it simple for small businesses to access the financial tools they need through the platforms they already sell on. We partner with companies like DoorDash, Amazon, Worldpay, and Mindbody to offer fast and flexible funding, spend management, and savings tools to their small business users via a simple integration. Parafin takes on all the complexity of capital markets, underwriting, servicing, compliance, and customer service for our partners. We're a tight-knit team of innovators hailing from Stripe, Square, Plaid, Coinbase, Robinhood, CERN, and more - all united by a passion for building tools that help small businesses succeed. Parafin is backed by prominent venture capitalists including GIC, Notable Capital, Redpoint Ventures, Ribbit Capital, and Thrive Capital. Parafin is a Series C company, and we have raised more than $194M in equity and $340M in debt facilities. Join us in creating a future where every small business has the financial tools they need. About the Position We're looking for an experienced security-focused engineer to help shape and scale Parafin's security posture across our cloud and platform environments. Our Security and Infrastructure team owns the foundational systems that power all of Parafin - from compute and networking to identity and compliance - and you'll play a central role in ensuring those systems are secure, reliable, and compliant. In this role, you'll design and operate controls, tooling, and processes that keep our infrastructure resilient and compliant while enabling developers to move quickly and safely. You'll partner closely with teams across engineering and compliance to strengthen how we manage access, secure applications, monitor threats, and respond to incidents. What You'll Be Doing Lead efforts to improve Parafin's overall security posture across infrastructure, applications, and data systems. Develop and maintain frameworks for identity, access management, and least-privilege enforcement. Establish and operate best-in-class security monitoring, alerting, and incident response processes. Partner with product and infrastructure engineers to embed secure-by-default patterns in our systems and applications. Define and enforce standards for vulnerability management, secrets handling, and dependency integrity. Collaborate with compliance and risk teams to build and maintain controls aligned with frameworks such as SOC 2, PCI DSS, and other fintech regulations. Support audits and security assessments by ensuring controls are properly implemented and evidenced. Contribute to security awareness and training efforts across engineering teams. Influence long-term strategy on secure architecture, detection, and response automation. What We're Searching For 8+ years of experience in security operations or application security, preferably in a cloud-native and regulated environment. Strong understanding of AWS security, including IAM, VPC, and network segmentation best practices. Experience with threat detection and response, vulnerability management, and incident response workflows. Familiarity with Kubernetes and container security principles, including RBAC, admission controls, and runtime monitoring. Knowledge of compliance frameworks (SOC 2, PCI DSS, ISO 27001) and how to operationalize them in engineering environments. Strong communication and collaboration skills - comfortable working across engineering, product, and compliance teams. We Prefer If You Have Experience building or maturing a security operations or application security program at scale. Background in security automation, threat modeling, or secure architecture reviews. Familiarity with developer-focused security enablement - e.g., SAST/DAST integration, dependency scanning, or security education. Experience in regulated or fintech environments where security and speed must coexist. What We Offer Salary Range: $235k - $280k Equity grant Medical, dental & vision insurance Unlimited PTO Work From Home flexibility Commuter benefits Free lunches Paid parental leave 401(k) Employee assistance program If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please contact us. #J-18808-Ljbffr

Senior Security Engineer - Corporate Security Rippling gives businesses one place to run HR, IT, and Finance. It brings together all of the workforce systems that are normally scattered across a company, like payroll, expenses, benefits, and computers. For the first time ever, you can manage and automate every part of the employee lifecycle in a single system. Take onboarding, for example. With Rippling, you can hire a new employee anywhere in the world and set up their payroll, corporate card, computer, benefits, and even third-party apps like Slack and Microsoft 365-all within 90 seconds. Based in San Francisco, CA, Rippling has raised $1.4B+ from the world's top investors-including Kleiner Perkins, Founders Fund, Sequoia, Greenoaks, and Bedrock-and was named one of America's best startup employers by Forbes. We prioritize candidate safety. Please be aware that all official communication will only be sent from @ Rippling.com addresses. About the role Rippling is looking for a Senior Security Engineer to join our Corporate Security team. Our mission is to reduce organizational risk by securing the tools and platforms Rippling employees use every day-SaaS apps, internal tools, endpoints, and email. We help the business make safer decisions by building secure defaults, automating away risky behavior, and working directly with stakeholders to understand and mitigate threats. As a Senior Engineer on CorpSec, you'll drive projects that span technical execution, stakeholder engagement, and strategic planning. You'll work closely with the Detection and Response, IT products, Infrastructure, Legal, and Compliance teams to improve how we manage access, detect abuse, and remediate risk-often through automation and thoughtful process design. What You'll Do Lead end-to-end security projects that secure core enterprise systems like Google Workspace, Atlassian, Salesforce, and Slack. Design and implement scalable access controls, including least privilege policies, automated approvals, and audit workflows. Deploy and tune security tooling (e.g. email security platforms, CASB/SWG, SaaS DLP tools) to reduce risk across our corp environment. Automate security workflows that reduce manual effort, close the loop on findings, and improve team efficiency. Write one-pagers and RFCs that clarify risk, propose solutions, and drive alignment with cross-functional stakeholders. Partner with Detection & Response to improve phishing protection and support incident investigations involving corp tools or user accounts. Mentor teammates and contribute to the team's technical direction through design reviews and hands‑on collaboration. Sample Projects You Might Work On Rolling out a new email security solution and defining phishing detections in partnership with Detection & Response. Building an approval system for Chrome extensions and auto‑whitelisting trusted ones using Google's API. Automating Slack‑based remediation for publicly shared sensitive Google Docs. Restricting 3rd‑party app access in Google Workspace and driving stakeholder alignment on exceptions. Threat modeling Salesforce and improving visibility into high‑risk integrations and data access patterns. What We're Looking For 5+ years of experience in security or software engineering, ideally with exposure to SaaS, corp IT, or access management. Strong programming skills (e.g. Python, Go) and a track record of building automation that solves real problems. Experience with one or more of: identity and access management, SaaS security tooling, DLP, insider threat detection, or phishing protection. Clear, empathetic communication skills-especially when working with stakeholders outside of engineering. Ability to turn ambiguous problems into scoped projects, define success metrics, and drive them to completion. Comfortable owning projects end‑to‑end and proactively reducing blockers for others. What Success Looks Like You lead multi‑stakeholder projects that reduce security risk and are measurable, repeatable, and automated. You deliver projects that enable safe default behaviours, reduce operational toil, or improve visibility into corp risk. You can clearly communicate security trade‑offs to engineering and business teams, and drive alignment across orgs. You build systems that last-flexible, reusable, and easy for others to extend or maintain. Additional Information Rippling is an equal opportunity employer. We are committed to building a diverse and inclusive workforce and do not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics. Rippling is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process. To request a reasonable accommodation, please email accommodations@rippling.com. Rippling highly values having employees working in‑office to foster a collaborative work environment and company culture. For office‑based employees (employees who live within a defined radius of a Rippling office), Rippling considers working in the office, at least three days a week under current policy, to be an essential function of the employee's role. This role will receive a competitive salary + benefits + equity. The salary for US‑based employees will be aligned with one of the ranges below based on location; see which tier applies to your location here. A variety of factors are considered when determining someone's compensation-including a candidate's professional background, experience, and location. Final offer amounts may vary from the amounts listed below. The pay range for this role is: 159,000 - 278,250 USD per year (US Tier 1) 143,100 - 250,425 USD per year (US Tier 2) 135,150 - 236,513 USD per year (US Tier 3) #J-18808-Ljbffr

A leading security training provider is seeking a Senior Security Engineer for their content engineering team. This role supports security professionals, builds hands-on content, and integrates security into DevOps. Ideal candidates have over 5 years of experience in application security and are passionate about improving security practices. The position is remote-first with competitive compensation and benefits. #J-18808-Ljbffr

WorkOS builds tools and services for developers to help them implement authentication, identity, authorization, and overall enterprise readiness. We're a fully distributed team with employees across North American time zones. We're well‑funded, having raised $100m in funding from top investors including Greenoaks Capital, Lachy Groom, and Lightspeed Ventures. Our fast‑growing customer base includes rapidly growing SaaS companies like OpenAI, Cursor, Perplexity, Vercel, Plaid, and hundreds of others. About the Security Team The Security team at WorkOS is responsible for keeping our company and customer data safe. As a CorpSec Engineer, you'll focus on the internal side of security-ensuring our people, devices, and systems are secure by default. We support a remote‑first, fast‑moving engineering organization and need strong, pragmatic security systems that scale with us. You'll work to improve access controls, endpoint security, and tooling across the company. This role is a mix of hands‑on execution and strategic thinking-perfect for someone who wants to shape how security works inside a modern startup. Who we're looking for Have experience with corporate security and endpoint management in a cloud‑native, remote‑friendly environment Enjoy taking ownership of systems like Okta, MDM, and EDR and making them more reliable, secure, and easy to use Can balance security best practices with the realities of usability and speed Like designing scalable controls for access, identity, and device management Are comfortable working independently and cross‑functionally with IT, Infra, and GRC Are curious, proactive, and enjoy simplifying complexity What you'll be doing Own and improve our identity and access management systems (Okta, Google Workspace, etc.) Administer and secure our MDM and endpoint protection tools (e.g. Kandji, EDRs) Partner with Infra to implement controls for least privilege, audit logging, and change management Develop automations and tooling for onboarding/offboarding, access reviews, and audit prep Proactively identify security risks and lead the rollout of mitigations Help shape security policies and practices that work well for engineers, not against them Work with vendors and evaluate new tools as needed Document systems and decisions clearly to support scale and clarity Requirements Experience with identity, access, and endpoint security tools (e.g. Okta, MDM, EDR) Familiarity with cloud‑native IT/security operations and SaaS environments Comfort working in a fast‑paced, high‑autonomy environment A practical mindset and a bias for simplicity and security‑by‑default Nice to have Experience working at a startup or on a small security team Familiarity with SOC 2, ISO 27001, or other compliance frameworks Scripting or automation experience (e.g. Python, Bash, Terraform) The annual US base salary falls within the range of $175,000 to $250,000. This range does not encompass the full spectrum of benefits such as equity, health insurance, vacation time, and paid parental leave. This salary range covers multiple levels of engineering roles and final compensation will be determined considering various factors, including experience, skills, and qualifications. For candidates outside the US, including Canada, compensation is adjusted based on local market benchmarks. Benefits (US Only) At WorkOS, we offer resources that emphasize personal and familial well‑being. We offer healthcare coverage for you and your family, including medical, dental, and vision. We offer parental leave, paid‑time off and fully remote working arrangements. Benefits include: Competitive pay Substantial equity grants Healthcare insurance (Medical, Dental and Vision) for you and your family 401k matching Wellness and fitness monthly allowances PTO + paid holidays + unlimited sick leave Autonomy and flexibility with remote work Please inquire directly with our recruiting team for benefits available to those working outside the US. Equal Opportunity Employer WorkOS is an equal opportunity employer, committed to diversity and inclusiveness. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age. #J-18808-Ljbffr

A leading cybersecurity firm is seeking a Senior Software Applied AI Engineer to develop cutting-edge AI solutions aimed at enhancing cybersecurity. You will build and enhance the AI security agent 'Hai', creating tools that allow organizations to develop more secure software while combating emerging threats. The role embraces flexible remote work within the Seattle area, and offers competitive compensation with substantial benefits. #J-18808-Ljbffr

A modern consumer lending company is seeking a Chief Compliance Officer/CISO to lead compliance and information security programs. The ideal candidate has over 8 years in the industry with a strong background in bank partnerships and regulatory compliance. Key responsibilities include maintaining compliance management systems and overseeing data security. This role offers a highly flexible remote work environment, unlimited PTO, and competitive compensation. #J-18808-Ljbffr

A leading company, OpenAI, is seeking a Software Engineer, Security Observability to enhance their security infrastructure in a collaborative environment. The role focuses on designing scalable systems, improving data visibility, and requires strong software engineering skills, particularly in Python and Golang. Expansion into cloud platforms like Azure is also essential in this high-impact position. #J-18808-Ljbffr

A technology solutions provider seeks a Senior Backend/Middleware Engineer to develop secure, high-performance API and middleware solutions. This remote role requires expertise in Java and Spring Boot, with responsibilities including designing RESTful APIs and implementing security protocols. Ideal candidates will have experience with OAuth 2.0, OpenID Connect, and authorization principles. Benefits include health insurance, 401(k), and paid time off. #J-18808-Ljbffr

A leading tech company based in the US is seeking a Senior Incident Response Security Consultant for Google Cloud, Mandiant. You will lead incident response engagements, investigate, and help organizations effectively respond to cyber threats. The ideal candidate possesses extensive experience in incident response and forensics. This is a remote-eligible role with a competitive salary range of $132,000-$194,000 plus benefits. #J-18808-Ljbffr

A well-respected law firm in Washington, DC is seeking an experienced Information Security Engineer to enhance its security operations. This role offers the flexibility to work entirely remote or on-site. The ideal candidate will have a strong background in information security, excellent communication skills, and the ability to collaborate remotely. Competitive salary range is $122,000 to $160,000 annually, with additional benefits available. #J-18808-Ljbffr

Within our Unilin Infrastructure team, we are looking for an Information Security Engineer with strong technical expertise, entrepreneurship and a passion for applying innovative technology to strengthen our Unilin Group's cybersecurity posture. You will be part of the Unilin Information Security team, part of the global Mohawk cybersecurity organization, giving you exposure to international operations and standards. You will be working with leading security platforms andwill have a wide variety of responsibilities including incident management, vulnerability management, security assessments, awareness initiatives and several security projects. As Information security engineer, you will: Enhance and maintain cybersecurity operations processes, identifying gaps, analyzing trends, and recommending improvements to strengthen detection, response, and prevention capabilities. Support incident management activities by assisting with investigations, coordinating mitigation efforts with the MDR partner, and ensuring that procedures are followed correctly to minimize business impact. Maintain strong technical expertise in key platforms used across the environment, such as Palo Alto Cortex XDR, SIEM, and Tanium. Contribute to the vulnerability management programme, including scanning, prioritization, and coordination of remediation efforts with IT and OT teams. Support cybersecurity assessments, assisting with internal vulnerability assessments, penetration testing, and cyber exercises. Contribute to cybersecurity awareness and training initiatives through the KnowBe4 platform, helping to strengthen the organization's overall security culture. Lead or support cybersecurity projects that enhance the overall security posture of the Unilin Group Who are you? Bachelor's or Master's degree in IT, Computer Science, Engineering, or equivalent practical experience. At least 5 years of experience in cybersecurity operations, system administration, or incident response. Proven expertise in network and endpoint security and threat analysis. Experience with tools such as Cortex XDR, Tanium, or Prisma is an advantage. Strong analytical skills with a solution-oriented, hands-on mindset. Independent and self-motivated, able to manage tasks and projects autonomously. Proficient in English and Dutch; knowledge of French is a plus. What can you expect? A competitive remuneration package. An extensive leave system and a flexible work schedule with the option of home working. Luncheon vouchers, hospitalisation and group insurance. Possibility of bike leasing. We invest in your development and we believe in lifelong learning. In our state-of-the-art training centre The Dive you are bound to find training courses that will help you grow. Countless possibilities to build your career. An employer with a transparent sustainability strategy (for our planet, customers and employees). In different locations we have a company restaurant with a varied menu. Benefit from attractive discounts on our products. Child care is an option during a number of school holidays. Make the most of discounts at a number of partners through our Benefits at Work platform. You will often find us at sporting events. You and your family can participate for free. In short, you'll be working for a Top Employer! Who are we? Unilin is a global reference in interior design and construction with a strong focus on sustainability and innovation. Our floors, panels, insulation materials, and technologies can be found in the homes and workplaces of millions of people and public spaces around the world. Our brands Quick-Step, Pergo, and Moduleo probably ring a bell. Worldwide, around 7,900 employees work every day to push boundaries and innovate. Want to know more about our story? Be sure to check out our website. #J-18808-Ljbffr

Clearance: Active Secret Clearance Required Employment Type: Full-time Performance-Based Position Description Nationwide IT Services (NIS) is seeking a seasoned Cybersecurity Architect for a potential opportunity supporting our DOD customer. In this role, you will be instrumental in securing complex systems, conducting risk assessments, designing secure system architectures, and ensuring compliance with DoD cybersecurity policies and frameworks. This is a remote opportunity requiring a proactive, independent leader with deep experience in systems security engineering and architecture.Key Performance Responsibilities Security Architecture & Engineering Design and implement secure enterprise architectures aligned with DoD RMF (Risk Management Framework) and NIST standards. Develop architecture artifacts (e.g., DoDAF, diagrams, threat models) to support system development life cycles (SDLC). Cybersecurity Compliance & Risk Management Lead the development and assessment of cybersecurity strategies and technical solutions in alignment with DSCA's security objectives. Ensure system compliance with IASAE Level II frameworks and DoD regulations. Conduct security assessments, gap analyses, and vulnerability mitigation planning. Technical Leadership & Collaboration Serve as the cybersecurity SME, providing guidance to system administrators, engineers, and program leadership. Work collaboratively with stakeholders to integrate security requirements across project lifecycles. Present findings, risks, and recommendations to senior leadership and decision-makers. Documentation & Reporting Author and maintain key security documentation (SSPs, POA&Ms, risk assessments). Provide weekly and monthly security status reports, ensuring traceability and audit readiness. Required Qualifications Experience 10+ years of information technology experience 8+ years in technical engineering (requirement analysis, systems/network administration, cybersecurity, systems engineering) Education Bachelor's degree in information technology or a related field from an accredited institution Certifications IASAE Level II Certification (e.g., CASP+ CE, CISSP, CSSLP) Clearance Active Secret Clearance is required for consideration About Nationwide IT Services NIS is a CVE-verified Service-Disabled Veteran-Owned Small Business specializing in IT and Management Consulting. We focus on delivering mission-critical services to federal clients, leveraging cutting-edge technology and industry best practices.Why Join NIS? Competitive compensation Remote flexibility Medical, Dental, and Vision Insurance 401(k) with Employer Match Generous PTO, Holidays, and Sick Leave Education Reimbursement & Professional Development Pet Insurance & Employee Assistance Program Equal Employment Opportunity Nationwide IT Services, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, national origin, sexual orientation, gender identity, disability, or protected veteran status.

Government IT Division REMOTE MKS2 Technologies, LLC, an award-winning high growth small business, creates innovative and customer‑centric technology solutions in the areas of Cyber Security, Instructional Design and Training, Software Engineering and IT Support Services to improve the security and well‑being of our clients. Our commitment to excellence and our “Mission First” orientation has resulted in steady growth and an expanding client base across government agencies. We have employees nationwide and for the past three consecutive years were named one of the fastest growing Veteran‑owned companies in the nation. Please take a moment to browse through our website and learn more about what it means to serve with MKS2. Senior Information System Security Engineer / Solutions Architect Location: Remote - must be within US and able to obtain Public Trust Clearance - US Citizen Pay: $100,000 - $120,000 annually (based on qualifications). Full Government benefits (W‑2) Job type: Contract We are seeking a hands‑on Senior Information System Security Engineer / Solutions Architect who will also serve as the Information System Security Engineer (ISSE) for key cybersecurity systems supporting the Department of Veterans Affairs (VA). This role is ideal for someone with deep technical engineering skills, cloud and DevSecOps experience. This individual will also lead teams to develop and implement technical solutions to remediate vulnerabilities and other complex cybersecurity challenges. Candidates will have a solutions‑oriented mindset to help the VA problem‑solve complex cybersecurity and IT challenges. The candidates should also be well‑versed with facilitating working sessions and have the ability to distill complex concepts into non‑technical/common language. The role will focus on analyzing and recommending system security architectures, vulnerability mitigation, policy‑driven compliance implementation, and full‑lifecycle support for the Department of Veteran's Affairs systems. Key Responsibilities Cybersecurity Engineering & Architecture (Primary) Analyze complex technical findings and determine necessary resources needed to solve problem‑sets across multiple cybersecurity and technical domains Partner with technical teams to develop and implement technical solutions Design, build, and deploy secure cloud‑native architectures and infrastructure components for VA information systems Develop and maintain CI/CD pipelines with integrated security scanning, policy enforcement, and remediation tools Implement secure infrastructure as code/policy as code using tools such as Terraform/CloudFormation, including writing and implementing PaC scripts Align security architectures with Federal Zero Trust strategy, VA directives, and OMB policies Enable automation of system telemetry and analytics pipelines for cyber situational awareness ISSEResponsibilities Provide engineering and technical analysis on behalf of Agency Authorizing Officials (AOs) for System Security Plans (SSPs), Risk Assessments, Security Controls Traceability Matrices (SCTMs), and POA&Ms Support system authorization and compliance activities including continuous monitoring and system audits Conduct regular and ad‑hoc analysis of security control findings and develop and implement remediation strategies Minimum Qualifications Bachelor's degree in computer science, engineering, or technical equivalent with 10 years of technical experience or a total of 18 years in lieu of education 8+ years of security engineering, DevSecOps, or cloud architecture experience Expertise in securing platforms hosted in AWS GovCloud and Azure Government Strong experience with NIST RMF, FISMA, FedRAMP, and Zero Trust architecture implementation Hands‑on skills in IaC tools like Terraform and CI/CD tools such as GitLab/Jenkins, with ability to adopt new technologies if procured by the agency Experience with network isolation tools such as Palo Alto Next Generation Firewalls (NGFW) and Juniper Mist Network Access Control (NAC) solutions or comparable Demonstrated experience securing modern applications, APIs, and automated infrastructure Excellent written and oral communication skills; ability to explain complex, technical information in easily understood terms; ability to brief Senior VA leadership regularly U.S. Citizenship and ability to obtain Public Trust clearance Preferred Qualifications Prior VA experience supporting VA OIS or major cybersecurity initiatives Experience authoring and maintaining ATO documentation in VA or HHS environments Experience with IoT/IoMT security solutions is a plus Knowledge of federal cybersecurity standards Equal Employment Opportunity Diversity creates a healthier atmosphere: MKS2 Technologies is proud to be an Equal Employment Opportunity / Affinitive Action employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law. As set forth in MKS2 Technologies's Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law. Voluntary Self‑Identification For government reporting purposes, we ask candidates to respond to the below self‑identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file. #J-18808-Ljbffr

A leading consulting firm in Washington is seeking an experienced IDS and IPS Cyber Security Engineer to join their cybersecurity team. The role requires expertise in Linux and YAML configuration management for network intrusion systems. Responsibilities include designing and maintaining IDS/IPS across multiple networks, optimizing YAML configurations, and troubleshooting system issues in a Red Hat environment. The compensation range is competitive, offering a long-term career with strong professional development opportunities. #J-18808-Ljbffr

The ideal candidate will have deep experience in adversary simulation, red teaming, and offensive security operations across hybrid environments (on-prem, cloud, and physical). This role requires strong technical acumen, creativity, and the ability to communicate complex findings to both technical and executive audiences. Key Responsibilities * Lead and execute adversary emulation engagements using intelligence-driven threat scenarios aligned with frameworks such as MITRE ATT&CK. * Design and conduct full-scope red team operations, including initial access, lateral movement, privilege escalation, and data exfiltration simulation. * Conduct physical, external/internal, and wireless network assessments, as well as web and mobile application testing. * Perform security assessments across cloud platforms (Google Cloud, Microsoft Azure, AWS) and embedded systems. * Develop and test threat actor emulation tools, tactics, and procedures for the Red Team to employ on-demand in assessments of application, system, and network security controls. Preferred Certifications * Offensive Security Certified Professional (OSCP) * Offensive Security Certified Expert (OSCE) * Offensive Security Experienced Penetration Tester (OSEP) * Certified Red Team Professional (CRTP) * GIAC Penetration Tester (GPEN) * GIAC Web Application Penetration Tester (GWAPT) * CREST Registered Penetration Tester / CBEST Qualifications *Skills* Security, Cyber security, Cloud, automated pen testing, tenable, servicenow, cobalt strike, metasploit, metahound *Top Skills Details* Security,Cyber security,Cloud *Additional Skills & Qualifications* -Looking for 6+ years of experience in Red Teaming for the mid-level role -any experience with automated pen testing is a plus *Job Type & Location* This is a Permanent position based out of Cleveland, OH. *Pay and Benefits*The pay range for this position is $115000.00 - $130000.00/yr. More details in file. Medical, Dental, Vision offered through United Health Group. 4 weeks of PTO Holidays: 8 observed and 3 floating *Workplace Type*This is a fully remote position. *Application Deadline*This position is anticipated to close on Jan 16, 2026. h4>About TEKsystems: We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company. The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law. About TEKsystems and TEKsystems Global Services We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com. The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.