Senior Security Analyst jobs at UPS

Crown Equipment Corporation is a leading innovator in world-class forklift and material handling equipment and technology. As one of the world's largest lift truck manufacturers, we are committed to providing the customer with the safest, most efficient and ergonomic lift truck possible to lower their total cost of ownership. Remote Work: Crown offers hybrid remote work for this position. A reasonable commute is necessary as some onsite work is required. Relocation assistance is available. Primary Responsibilities Define security architecture standards and blueprints for web, mobile, cloud, and Application Programming Interface (API)-based applications. Review design documents and perform architecture risk assessments for new and existing applications. Collaborate with DevOps, Engineering, and Infrastructure teams to ensure architectures align with secure design principles. Integrate automated security testing/scanning tools (Static Application Security Testing (SAST), Software Composition Analysis (SCA)) into Continuous Integration (CI) or Continuous Delivery (CD) pipelines. Define and enforce secure coding standards and practices across development teams. Provide training and guidance to developers on secure development principles and vulnerability prevention. Conduct threat modeling and attack surface reviews for high-risk or critical applications. Identify potential security flaws and recommend mitigations early in development process. Track and communicate technical risk to product managers, developers, and leadership teams. Develop and maintain application security policies, baselines, and architecture frameworks. Ensure application security practices align with regulations including General Data Protection Regulation (GDPR) and Payment Card Industry Data Security Standard (PCI-DSS). Support audit and compliance initiatives by providing documentation and evidence of secure development practices. Minimum Qualifications Bachelor's degree in Information Technology, Cyber Security, Computer Science, or related field is required, along with 2-4 years related experience. Non-degree considered if 12+ years of related experience along with a high school diploma or GED Preferred Qualifications 5+ years in cybersecurity with at least 3 years in application security or secure software development experience. Secure Software Development Life Cycle (SDLC) in development. Deep knowledge of Open Web Application Security Project (OWASP) Top 10, National Institute of Standards and Technology (NIST), and secure coding frameworks. Experience with Securing Secrets and Service Accounts desired. Experience with Web Application Firewall (WAF) implementation/support preferred. Familiarity with Identity and Access Management and cloud security practices (AWS, Azure). Certified Information Systems Security Professional (CISSP), or similar certification (Certified Secure Software Lifecycle Professional, Certified Ethical Hacker (CEH) certified). Familiarity with container security (Docker, Kubernetes). Understanding of authentication protocols (Open Authorization (OAuth) and Security Assertion Markup Language (SAML)). Experience with DevSecOps tools and container security tools desired. Work Authorization: Crown will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas or who need sponsorship for work authorization now or in the future, are not eligible for hire. No agency calls please. Compensation and Benefits: Crown offers an excellent wage and benefits package for full-time employees including Health/Dental/Vision/Prescription Drug Plan, Flexible Benefits Plan, 401K Retirement Savings Plan, Life and Disability Benefits, Paid Parental Leave, Paid Holidays, Paid Vacation, Tuition Reimbursement, and much more. EOE Veterans/Disabilities

This young and agile company, providing identity risk solutions is currently seeking a Senior Cloud Security Engineer with a focus on Infrastructure and Security to join their growing team. You will assist with the continuous maturation of their Cloud Security services within the Security division. This is an excellent opportunity for an experienced Cloud Security Engineer with experience in both Infrastructure and Security to take the next step into a challenging position with a company offering significant growth potential. About the Company: Founded in the last 10 years, they are one the fastest growing companies in their space. They are a fast-growing company that have built a platform that allows finance organisations and fintechs to strengthen their security defences. Their mission is to allow companies to manage their identity and fraud risk. Everything they do is entrenched in achieving engineering excellence. Their culture is not corporate, and they like to trust their employees to take on a lot of responsibility and have input into the shape of growth of the organisation. About the Senior Cloud Security Engineer (Infrastructure and Security) Vacancy: What you will be doing: • Serve as a cloud security subject matter expert, advise on and implementing best practices • Respond to security incidents and provide timely and appropriate solutions • Conduct cloud security risk assessments and audits • Conduct investigations into security incidents and potential threats • Take part in on call rotations for incident response and remediation • Assist with policy management, security audits, and due diligence for cloud security concerns • Advise on, configuring, and managing a variety of security tools • Keep informed about and respond to emerging security threats and vulnerabilities • Assist with cloud security reviews of potential vendors Ideal Requirements for the Senior Cloud Security Engineer (Infrastructure and Security) Vacancy: • Several years of experience working in a similar role with a focus on Cloud Security in AWS • Experience provisioning infrastructure in AWS using Terraform, CloudFormation, CDK, or similar tools • Experience configuring VPCs, route tables, NACLs, Security Groups, iptables, Web Application Firewall, Config, GuardDuty, Inspector, KMS, IAM, etc. • In depth knowledge of AWS security best practices around systems hardening, monitoring, and incident response • Experience taking part in an on-call rotation • You are passionate about securing infrastructure, reducing risk, and protecting data! • You are a subject matter expert on cloud security in AWS • You have a solid understanding of network architecture and protocols • You can advise on cloud security policies and procedures Apply to the Role: Roles like these are snapped up very quickly, so act now if you do not want to miss out! Reply to this advert or email your CV to **********************

In this role, you will work closely with IT teams to secure our applications throughout the development lifecycle. You'll help build a secure-by-design culture, drive security automation, and protect our systems against evolving threats. This position reports to the Manager of Information Security. ESSENTIAL JOB FUNCTIONS: Work with the Information Security Team to improve security for the company by configuring and administering security systems and tools Monitor and respond to security events using SIEM and SOAR tools Investigate security incidents to determine root cause and remediation tactics Help automate security monitoring and remediation processes Prepare and analyze security incident data and metrics for periodic reporting Collaborate on vulnerability management, remediation, and penetration testing efforts Implement and manage SAST, DAST, and Burp Suite across GitHub CI/CD pipelines and development workflows Champion secure coding practices based on OWASP Top 10 and SSDF guidelines Help secure cloud environments (Azure, AWS) and container-based deployments Conduct regular security assessments to ensure alignment with SSDLC standards After-hours configuration changes and on-call support required MINIMUM QUALIFICATIONS: Bachelor's degree in Computer Science, Information Systems (or related degree), or equivalent experience. 3+ years of experience in Application or Information Security Strong understanding of SSDLC, NIST SSDF, and DevSecOps principles. Experience with SAST/DAST tools (e.g., GitHub Advanced Security, BURP). Solid knowledge of OWASP Top 10 and secure coding best practices. Proficiency in GitHub for code review, pipeline security, and automation. Hands-on with scripting (Python, PowerShell, Bash) and API security. Experience in Azure and AWS cloud security, containers, and infrastructure-as-code. Familiarity with SIEM/SOAR platforms and incident response workflows. Experience with Windows, MacOS, and Linux operating systems Proficient in Microsoft Office applications such as Microsoft Outlook, Word, Excel, PowerPoint, and SharePoint ** This is a full-time, W2 position with Hub Group - We are NOT able to provide sponsorship at this time ** Salary: $95,000-150,000/year + bonus eligibility ** This is an estimated range based on the circumstances at the time of posting, however, may change based on a combination of factors, including but not limited to skills, experience, education, market factors, geographical location, budget, and demand** Benefits We offer a comprehensive benefits plan including: Medical Dental Vision Flexible Spending Account (FSA) Employee Assistance Program (EAP) Life & AD&D Insurance Disability Paid Time Off Paid Holidays BEWARE OF FRAUD! Hub Group has become aware of online recruiting related scams in which individuals who are not affiliated with or authorized by Hub Group are using Hub Group's name in fraudulent emails, job postings, or social media messages. In light of these scams, please bear the following in mind Hub Group will never solicit money or credit card information in connection with a Hub Group job application. Hub Group does not communicate with candidates via online chatrooms such as Signal or Discord using email accounts such as Gmail or Hotmail. Hub Group job postings are posted on our career site: ******************************** About Us Hub Group is the premier, customer-centric supply chain company offering comprehensive transportation and logistics management solutions. Keeping our customers' needs in focus, Hub Group designs, continually optimizes and applies industry-leading technology to our customers' supply chains for better service, greater efficiency and total visibility. As an award-winning, publicly traded company (NASDAQ: HUBG) with $4 billion in revenue, our 6,000 employees and drivers across the globe are always in pursuit of "The Way Ahead" - a commitment to service, integrity and innovation. We believe the way you do something is just as important as what you do. For more information, visit ****************

Information Security Analyst [CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).] 47 Trinity Ave SW Atlanta, GA/Hybrid 8+ months This role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements (NIST, FISMA, IRS Pub 1075, CMS, SSA). The analyst will also support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives. Key Responsibilities Security Operations & Monitoring Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management). Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security. Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks. Vulnerability & Risk Management Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings. Support patch management and configuration management processes to reduce the attack surface. Deliver metrics and risk posture updates to leadership. Compliance & Documentation Maintain and update System Security Plans (SSPs) to document the implementation of security controls. Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking. Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5). Incident Response Triage, analyze, and document security incidents across enterprise systems. Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts. Deliver incident reports, root cause analysis, and lessons learned documentation. Security Awareness & Training Develop and deliver security awareness programs, emphasizing CUI handling, phishing defense, and insider threat mitigation. Conduct specialized training for privileged users and administrators. Track participation and report effectiveness of awareness initiatives. Reporting & Communication Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries. Deliver executive-level updates highlighting risks, compliance status, and incident trends. Track remediation activities and ensure timely closure of findings. Required Qualifications Bachelor's degree in information security, Cybersecurity, IT, or related field; or equivalent 1 year; or Preference will be given to candidates with relevant State of Georgia Experience Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc. Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA). Experience with incident response, vulnerability management, and risk assessments. Strong analytical, documentation, and communication skills.

Discover your future at DAT Freight & Analytics, where innovation meets impact. For over four decades, DAT has been at the forefront of transportation and logistics, helping businesses move freight with greater efficiency and confidence. We are a technology company that removes uncertainty from freight for truckers, brokers, and shippers every day. Our advanced tools and data intelligence empower professionals to make smarter decisions, optimize costs, and operate more successfully. Through the industry's largest digital freight marketplace and insights derived from over $1 trillion in freight transactions, we provide the mission-critical information that keeps supply chains running smoothly across the country. DAT is proud to be an award-winning workplace that fosters innovation, celebrates success, and values professional growth. With strategic offices in Beaverton, Oregon, Denver, Colorado, Springfield, Missouri, and Bangalore, India, our teams collaborate to solve the transportation industry's most complex challenges. Ready to shape the future of freight technology? Learn more at dat.com/company. Application Deadline: 12/30/2025 The Opportunity DAT is looking for a Sr. Security Analyst, GRC to join our security team. This position can be based in our Denver, CO office. The Sr. Security Analyst, GRC will play a key role in helping to plan, organize, and manage governance, risk, and compliance efforts in alignment with the company's overall security and data privacy programs. You will also work to perform risk assessments on current internal systems, as well as assess the security controls of current and proposed vendors in alignment with DAT's security policies and standards. What You'll Do Own and lead internal and external audit engagements, including evidence collection, control testing, and remediation follow-up, ensuring continual compliance across multiple business units. Drive risk management activities, including risk identification, assessment, tracking, and reporting, to inform leadership and strengthen the enterprise risk posture. Lead Business Impact Assessments (BIA) and collaborate with stakeholders to align critical processes with recovery objectives. Oversee Disaster Recovery (DR) and Business Continuity Planning (BCP) activities, including tabletop exercises, plan maintenance, and validation of recovery strategies. Partner with business and technology leaders to mature governance, risk, and compliance processes, streamline reporting, and reduce recurring issues. Provide mentorship and guidance to junior analysts across GRC domains, fostering a culture of compliance and risk awareness. The Skills and Experience You'll Bring Team Player with strong communication, organizational, and relationship management skills. Self-motivated, with keen attention to detail and excellent judgment skills. Strong knowledge of security frameworks and regulations (e.g., NIST CSF, ISO 27001, SOX, PCI-DSS, HIPAA). Demonstrated ability to own audit engagements end-to-end, from planning through evidence submission and remediation follow-up. Strong stakeholder management skills with the ability to communicate clearly at both technical and executive levels. Experience leading cross-functional initiatives to improve compliance posture or remediate findings. Excellent organizational and project management skills, with attention to detail and deadlines. Ability to write and present articulated documentation and processes. Knowledge of hybrid IT systems, networking, co-locations, and cloud environments. S. degree in cybersecurity, computer science, information technology or 1+ years IT work experience in the area of Governance, Risk and Compliance. Proven experience (5+ years) in IT audit, compliance, or security control assessment within a regulated industry. Professional certification preferred (e.g., CISA, CISSP, CISM, or equivalent). Why DAT? DAT is an award winning employer of choice. For starters, we have a hybrid work environment, but we also know what makes a great workplace. We have a time-tested and resolute set of operating values predicated on integrity, mutual respect, open communication, and executing with excellence. These values inform our strategic vision as much as any one of our products does. We've been an employer of choice in the Portland metropolitan area for four decades, and within one year of opening our Denver office, DAT was #26 on Built In Colorado's 100 Best Places to Work In Colorado. Medical, Dental, Vision, Life, and AD&D insurance Parental Leave Up to 20 days of paid time off starting in year one An additional 10 holidays of paid time off per calendar year 401k matching (immediately vested) Employee Stock Purchase Plan Short- and Long-term disability sick leave Flexible Spending Accounts Health Savings Accounts Employee Assistance Program Additional programs - Employee Referral, Internal Recognition, and Wellness Free TriMet transit pass (Beaverton Office) Competitive salary and benefits package Work on impactful projects in a cutting-edge environment Collaborative and supportive team culture Opportunity to make a real difference in the trucking industry Employee Resource Groups For Colorado-based candidates, in compliance with Colorado's Equal Pay for Equal Work Act, the minimum salary for this role is $113,000 + benefits. The maximum compensation for this role can vary significantly depending on your job-related skills and experience. DAT considers factors such as scope and responsibilities of the position, candidate's work experience, education and training, core skills, internal equity, and market and business elements when extending an offer. DAT embraces the value of a diverse workforce, and believes it is a core strength of our company that we encourage those values in every DAT employee, at every level of our organization, regardless of tenure or rank. We provide equal employment opportunities (EEO) to all employees and applicants without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c) #LI-DR1

LS Technologies, a Tetra Tech Company, is seeking a System Security Analyst (Onsite) with technical expertise and Enterprise Information Display System (E-IDS) knowledge and experience to support the Federal Aviation Administration (FAA). Responsibilities Advise on security requirements throughout system lifecycle phases including procurement, development, implementation, operation, and disposal. Determine appropriate security levels based on system impact levels in alignment with applicable frameworks. Develop and maintain Security Authorization and ISCM documentation, including System Security Plans, Characterization Documents, and Information System Contingency Plans. Conduct periodic risk assessments to re-evaluate system sensitivity, threats, vulnerabilities, and mitigation strategies. Oversee remediation actions and update POAMs to ensure timely resolution of identified security deficiencies. Notify responsible parties of suspected incidents and assist in investigation and incident response. Guide implementation and monitoring of security policies, compliance requirements, and system audits. Apply modern computer science technologies for secure system design and integration across networks and platforms. Perform encryption, penetration testing, and vulnerability analysis to strengthen system security. Coordinate with multidisciplinary teams and external stakeholders to ensure collaborative and secure project execution. Highly Desired - Integrate security monitoring and compliance protocols within the Enterprise Information Display System infrastructure. Assess risks specific to E-IDS architecture and operational workflows to ensure secure system performance. Education Bachelor of Science degree in engineering, mathematics, or science with 8 years of experience is required. Qualifications Demonstrated experience with lifecycle security management, authorization documentation, and risk analysis. Strong background in federal security compliance frameworks (e.g., NIST SP 800-37, 800-53, FISMA). Prior involvement in incident response, POAM remediation, and configuration management boards. Experience applying information assurance principles in enterprise-level systems. Proficient in security technologies such as encryption protocols, vulnerability assessment tools, SIEM platforms, and penetration testing methodologies. Familiarity with enterprise IT infrastructure, network architectures, and electronic data protection. Hands-on experience with Enterprise Information Display System (E-IDS) preferred. Knowledge of scripting languages, system hardening, and secure software development practices. Work Requirements: Work location: WJHTC, Atlantic City, NJ Work Hours: Onsite 5 days per week. Normal working hours Travel: 0% Physical requirements: Extended Computer Use: Regular and prolonged periods of working at a computer terminal. Lifting and Carrying: Occasional lifting of equipment and materials weighing up to 50 pounds may be required during installations or maintenance. Mobility: Ability to move around the office environment to access computer hardware, networking equipment, and server rooms. Dexterity: Manual dexterity and visual acuity to operate computer equipment, troubleshoot issues, and perform tasks requiring precision. Sitting/Standing: Both prolonged sitting and occasional standing may be required for troubleshooting and attending to system issues. Background check: Must have ability to obtain and maintain a Public Trust. About LS Technologies At LS Technologies, a Tetra Tech Company, we're enhancing our nation's critical infrastructure by providing engineering, technical, and professional services to Federal Government agencies. The quality of our work, deep technical expertise, and genuine passion for public service sets us apart. As a growing organization we are expanding our benefits and communication with our employees, offering add-ons that speak to our growing employees' needs. Join us in delivering high-quality solutions and shaping the future of safety and innovation for our government partners. EEO Commitment LS Technologies, a Tetra Tech Company, is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sex, marital or familial status, status as a protected veteran, or any other characteristic protected by law. Tetra Tech is a VEVRAA federal contractor, and we request priority referral of veterans. We invite applications from all interested parties. Requesting an Accommodation LS Technologies is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by LS Technologies and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you would like to be considered for employment opportunities with LS Technologies and have accommodation needs for a disability or religious observance, please send us an email ********************* or speak with your recruiter. Compensation (Pay Bands) Salary at LST is determined by a wide array of factors, such as (but not limited to) education, certifications, knowledge, skills, competencies, and experience, location, and clearance level, as well as contract-specific affordability and organizational requirements and applicable employment laws. Please note that the salary information is a general guideline only. The projected compensation range for this position is provided within the posting and is based on full-time, 40 hour/week status. Part-time staff receive compensation at an hourly rate. The estimated minimum and maximum displayed represents the broadest range for this position (inclusive of high geographic and high clearance requirements) and is just one component of LSTs total compensation package for employees. ** In compliance with local laws, LS Technologies presents this reasonable compensation range as a guideline for roles in California, Colorado, New York, or Washington D.C." Benefits offered to all employees who work 30+ hours per week: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Annual Leave, and Holidays. About Tetra Tech: Tetra Tech is the leader in water, environment, and sustainable infrastructure, providing high-end consulting and engineering services for projects worldwide. With 30,000 employees working together, Tetra Tech provides clear solutions to complex problems by Leading with Science to address the entire water cycle, protect and restore the environment, design sustainable and resilient infrastructure, and support the clean energy transition. Explore our open positions at ********************************** Follow us on social media to learn more about our people, culture, and opportunities: LinkedIn: @TetraTechCareers X (Twitter): @TetraTechJobs

LS Technologies, a Tetra Tech Company, is seeking a System Security Analyst (Onsite) with technical expertise and Enterprise Information Display System (E-IDS) knowledge and experience to support the Federal Aviation Administration (FAA). Responsibilities * Advise on security requirements throughout system lifecycle phases including procurement, development, implementation, operation, and disposal. * Determine appropriate security levels based on system impact levels in alignment with applicable frameworks. * Develop and maintain Security Authorization and ISCM documentation, including System Security Plans, Characterization Documents, and Information System Contingency Plans. * Conduct periodic risk assessments to re-evaluate system sensitivity, threats, vulnerabilities, and mitigation strategies. * Oversee remediation actions and update POAMs to ensure timely resolution of identified security deficiencies. * Notify responsible parties of suspected incidents and assist in investigation and incident response. * Guide implementation and monitoring of security policies, compliance requirements, and system audits. * Apply modern computer science technologies for secure system design and integration across networks and platforms. * Perform encryption, penetration testing, and vulnerability analysis to strengthen system security. * Coordinate with multidisciplinary teams and external stakeholders to ensure collaborative and secure project execution. * Highly Desired - Integrate security monitoring and compliance protocols within the Enterprise Information Display System infrastructure. * Assess risks specific to E-IDS architecture and operational workflows to ensure secure system performance. Education * Bachelor of Science degree in engineering, mathematics, or science with 8 years of experience is required. Qualifications * Demonstrated experience with lifecycle security management, authorization documentation, and risk analysis. * Strong background in federal security compliance frameworks (e.g., NIST SP 800-37, 800-53, FISMA). * Prior involvement in incident response, POAM remediation, and configuration management boards. * Experience applying information assurance principles in enterprise-level systems. * Proficient in security technologies such as encryption protocols, vulnerability assessment tools, SIEM platforms, and penetration testing methodologies. * Familiarity with enterprise IT infrastructure, network architectures, and electronic data protection. * Hands-on experience with Enterprise Information Display System (E-IDS) preferred. * Knowledge of scripting languages, system hardening, and secure software development practices. Work Requirements: * Work location: WJHTC, Atlantic City, NJ * Work Hours: Onsite 5 days per week. Normal working hours * Travel: 0% * Physical requirements: * Extended Computer Use: Regular and prolonged periods of working at a computer terminal. * Lifting and Carrying: Occasional lifting of equipment and materials weighing up to 50 pounds may be required during installations or maintenance. * Mobility: Ability to move around the office environment to access computer hardware, networking equipment, and server rooms. * Dexterity: Manual dexterity and visual acuity to operate computer equipment, troubleshoot issues, and perform tasks requiring precision. * Sitting/Standing: Both prolonged sitting and occasional standing may be required for troubleshooting and attending to system issues. * Background check: Must have ability to obtain and maintain a Public Trust. About LS Technologies At LS Technologies, a Tetra Tech Company, we're enhancing our nation's critical infrastructure by providing engineering, technical, and professional services to Federal Government agencies. The quality of our work, deep technical expertise, and genuine passion for public service sets us apart. As a growing organization we are expanding our benefits and communication with our employees, offering add-ons that speak to our growing employees' needs. Join us in delivering high-quality solutions and shaping the future of safety and innovation for our government partners. EEO Commitment LS Technologies, a Tetra Tech Company, is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sex, marital or familial status, status as a protected veteran, or any other characteristic protected by law. Tetra Tech is a VEVRAA federal contractor, and we request priority referral of veterans. We invite applications from all interested parties. Requesting an Accommodation LS Technologies is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by LS Technologies and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you would like to be considered for employment opportunities with LS Technologies and have accommodation needs for a disability or religious observance, please send us an email ********************* or speak with your recruiter. Compensation (Pay Bands) Salary at LST is determined by a wide array of factors, such as (but not limited to) education, certifications, knowledge, skills, competencies, and experience, location, and clearance level, as well as contract-specific affordability and organizational requirements and applicable employment laws. Please note that the salary information is a general guideline only. The projected compensation range for this position is provided within the posting and is based on full-time, 40 hour/week status. Part-time staff receive compensation at an hourly rate. The estimated minimum and maximum displayed represents the broadest range for this position (inclusive of high geographic and high clearance requirements) and is just one component of LSTs total compensation package for employees. In compliance with local laws, LS Technologies presents this reasonable compensation range as a guideline for roles in California, Colorado, New York, or Washington D.C." Benefits offered to all employees who work 30+ hours per week: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Annual Leave, and Holidays. About Tetra Tech: Tetra Tech is the leader in water, environment, and sustainable infrastructure, providing high-end consulting and engineering services for projects worldwide. With 30,000 employees working together, Tetra Tech provides clear solutions to complex problems by Leading with Science to address the entire water cycle, protect and restore the environment, design sustainable and resilient infrastructure, and support the clean energy transition. Explore our open positions at ********************************** Follow us on social media to learn more about our people, culture, and opportunities: LinkedIn: @TetraTechCareers X (Twitter): @TetraTechJobs

We are seeking a Lead Information Security Analyst to serve as our Incident Response/SOC SME, ideally with prior experience as a Security Incident Response Leader (SIRL). This role will lead incident response strategy and execution, with hands-on expertise in operational Splunk Enterprise Security (SIEM), Microsoft Defender security suite (including Endpoint, Identity, and Servers), and SOAR playbook automation. The successful candidate will be responsible for leading complex incident investigations, coordinating responses across IT and clinical teams, and driving ongoing improvements in security operations. You will also mentor SOC analysts, enhance detection capabilities, and ensure that lessons learned are integrated into practices. Incident Response Leadership (SIRL) Act as the Security Incident Response Leader during high-severity events, directing containment, remediation, and recovery efforts. Serve as the escalation point for SOC analysts and ensure timely, coordinated response actions. Develop and maintain incident response frameworks, including runbooks, playbooks, and post-incident reviews. Partner with executive leadership, clinical staff, and external stakeholders (law enforcement, MSSPs) to manage incident communications. Splunk Enterprise Security SME Maintain and optimize Splunk ES detections, correlation rules, dashboards, and reporting. Guide SOC analysts on triage, alert enrichment, and threat-hunting practices. SOAR & Automation Build and manage security orchestration and automated response playbooks. Orchestrate integrations across SIEM, EDR, vulnerability management, and identity systems...etc. Documentation & Reporting Produce accurate documentation for incidents, including executive-level summaries and technical after-action reports. Ensure incident response processes and playbooks are continuously updated. Preparedness & Training Lead tabletop exercises, red/blue team simulations, and cyber range events. Mentor and coach SOC analysts to elevate detection and response maturity. Minimum Education Bachelor's degree in a computer science, math, engineering, or another relevant discipline or equivalent training and work experience (Required) Minimum Work Experience 10+ years of experience in cybersecurity with a focus on vulnerability management, cybersecurity operations, analysis, forensics and/or investigations (Required) Required Skills/Knowledge Experience leading in the application of key cybersecurity practices, controls, and frameworks Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related concepts to technical as well as nontechnical audiences Experience leading cybersecurity auditing, compliance, and policy Experience leading cybersecurity risk assessments, vulnerability management, penetration testing, and threat identification. Experience leading the management of access controls including identity, active directory, privileged account management, and authentication Experience leading cybersecurity incident response, risk remediation, business continuity, disaster recovery, and cyber operations. Functional Accountabilities Cybersecurity Analysis Oversees the Identification, documentation, and reporting of cybersecurity risks Leads the development of Information Security policies, standards, and procedures. Leads engagement with senior leaders of CNH business units to ensure security of assets, applications, and data Leads the application of procedures and systems associated with managing access to CNH systems, data, and other assets Leads the execution of responses associated with cybersecurity incidents, as required

Saab, Inc. is seeking an experienced and results-driven Information Security Manager to lead our cybersecurity initiatives. In this pivotal role, you will be responsible for developing, implementing, and managing a comprehensive information security program designed to protect our computer systems, networks, and data from unauthorized access, use, disclosure, alteration, or destruction. You will lead a team of security professionals, oversee security operations, ensure regulatory compliance, and respond swiftly to potential security incidents. This position is located in Syracuse, NY. Relocation will be provided. Key Responsibilities Strategy and Policy: Develop, implement, and maintain the organization's information security policies, standards, and procedures, aligning security strategy with business objectives. Risk Management: Conduct regular risk assessments and vulnerability analyses to identify potential security threats and determine appropriate mitigation strategies. Incident Response: Manage and lead the response to security incidents and breaches, including investigation, containment, recovery, and reporting. Security Operations: Oversee the deployment, configuration, and monitoring of security tools and technologies (e.g., firewalls, SIEM, data encryption, antivirus). Compliance & Auditing: Ensure compliance with relevant laws, regulations, and industry standards such as GDPR, HIPAA, PCI DSS, NIST, or ISO 27001. Team Leadership: Manage, mentor, and train the information security team members, fostering an environment of continuous learning and growth. Disaster Recovery & Business Continuity: Create, maintain, and test business continuity and disaster recovery plans to ensure data availability and system functionality in the event of an outage or breach. Security Awareness: Train and educate employees on information security best practices and compliance, promoting a security-conscious culture across the organization. Budget Management: Develop and manage the information security budget, ensuring cost-effective implementation of security measures and technologies. Compensation Range: $146,800 - $190,800 The compensation range provided is a general guideline. When extending an offer, Saab, Inc. considers factors including (but not limited to) the role and associated responsibilities, location, and market and business considerations, as well as the candidate's work experience, key skills, and education/training. Skills and Experience: Required Qualifications and Skills: Education: A Bachelor's degree in Computer Science, Information Security, or a related field. A Master's degree is a plus. Technical Knowledge: Knowledge of operating systems, network security architecture, cloud platforms, and security software solutions. Certifications: Relevant professional certifications such as CISSP (Certified Information Systems Security Professional) or CISM (Certified Information Security Manager) are highly desirable. Strong leadership, interpersonal, and team management skills. Excellent written and verbal communication skills, with the ability to explain complex technical issues to non-technical stakeholders. Strong analytical, problem-solving, and critical-thinking abilities, especially when working under pressure. Citizenship Requirements: Must be a U.S. citizen. Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. Drug-Free Workplaces: Saab is a federal government contractor and adheres to policies and programs necessary for sustaining drug-free workplaces. As a condition of employment, candidates will be required to pass a pre-employment drug screen. Benefits: Saab provides an excellent working environment offering professional growth opportunities, competitive wages, work-life balance, a business casual atmosphere and comprehensive benefits. Highlights include: Medical, vision, and dental insurance for employees and dependents Generous paid time off, including 8 designated holidays 401(k) with employer contributions Tuition assistance and student loan assistance Wellness and employee assistance resources Employee stock purchase opportunities Short-term and long-term disability coverage About Us: Saab is a leading defense and security company with an enduring mission, to help nations keep their people and society safe. Empowered by its 19,000 talented people, Saab constantly pushes the boundaries of technology to create a safer, more sustainable and more equitable world. In the U.S., Saab delivers advanced technology and systems, supporting the U.S. Armed Forces and the Federal Aviation Administration, as well as international and commercial partners. Headquartered in Syracuse, New York, the company has business units and local employees in eight U.S. locations. Saab is a company where we see diversity as an asset and offer unlimited opportunities for advancing in your career. We are also a company that respects each person's needs and encourage employees to lead a balanced, rewarding life beyond work. Saab values diversity and is an Affirmative Action employer for protected veterans and individuals with disabilities. Saab is an Equal Employment Opportunity employer, all qualified individuals are encouraged to apply and will be considered for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, age, veteran, disability status, or any other federal, state, or locally protected category.

LS Technologies, a Tetra Tech Company, is seeking a System Security Analyst (Onsite) with technical expertise and Enterprise Information Display System (E-IDS) knowledge and experience to support the Federal Aviation Administration (FAA). Responsibilities Advise on security requirements throughout system lifecycle phases including procurement, development, implementation, operation, and disposal. Determine appropriate security levels based on system impact levels in alignment with applicable frameworks. Develop and maintain Security Authorization and ISCM documentation, including System Security Plans, Characterization Documents, and Information System Contingency Plans. Conduct periodic risk assessments to re-evaluate system sensitivity, threats, vulnerabilities, and mitigation strategies. Oversee remediation actions and update POAMs to ensure timely resolution of identified security deficiencies. Notify responsible parties of suspected incidents and assist in investigation and incident response. Guide implementation and monitoring of security policies, compliance requirements, and system audits. Apply modern computer science technologies for secure system design and integration across networks and platforms. Perform encryption, penetration testing, and vulnerability analysis to strengthen system security. Coordinate with multidisciplinary teams and external stakeholders to ensure collaborative and secure project execution. Highly Desired - Integrate security monitoring and compliance protocols within the Enterprise Information Display System infrastructure. Assess risks specific to E-IDS architecture and operational workflows to ensure secure system performance. Education Bachelor of Science degree in engineering, mathematics, or science with 8 years of experience is required. Qualifications Demonstrated experience with lifecycle security management, authorization documentation, and risk analysis. Strong background in federal security compliance frameworks (e.g., NIST SP 800-37, 800-53, FISMA). Prior involvement in incident response, POAM remediation, and configuration management boards. Experience applying information assurance principles in enterprise-level systems. Proficient in security technologies such as encryption protocols, vulnerability assessment tools, SIEM platforms, and penetration testing methodologies. Familiarity with enterprise IT infrastructure, network architectures, and electronic data protection. Hands-on experience with Enterprise Information Display System (E-IDS) preferred. Knowledge of scripting languages, system hardening, and secure software development practices. Work Requirements: Work location: WJHTC, Atlantic City, NJ Work Hours: Onsite 5 days per week. Normal working hours Travel: 0% Physical requirements: Extended Computer Use: Regular and prolonged periods of working at a computer terminal. Lifting and Carrying: Occasional lifting of equipment and materials weighing up to 50 pounds may be required during installations or maintenance. Mobility: Ability to move around the office environment to access computer hardware, networking equipment, and server rooms. Dexterity: Manual dexterity and visual acuity to operate computer equipment, troubleshoot issues, and perform tasks requiring precision. Sitting/Standing: Both prolonged sitting and occasional standing may be required for troubleshooting and attending to system issues. Background check: Must have ability to obtain and maintain a Public Trust. About LS Technologies At LS Technologies, a Tetra Tech Company, we're enhancing our nation's critical infrastructure by providing engineering, technical, and professional services to Federal Government agencies. The quality of our work, deep technical expertise, and genuine passion for public service sets us apart. As a growing organization we are expanding our benefits and communication with our employees, offering add-ons that speak to our growing employees' needs. Join us in delivering high-quality solutions and shaping the future of safety and innovation for our government partners. EEO Commitment LS Technologies, a Tetra Tech Company, is proud to be an Equal Opportunity Employer. All qualified candidates will be considered without regard to race, color, religion, national origin, age, disability, sex, marital or familial status, status as a protected veteran, or any other characteristic protected by law. Tetra Tech is a VEVRAA federal contractor, and we request priority referral of veterans. We invite applications from all interested parties. Requesting an Accommodation LS Technologies is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by LS Technologies and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired. If you would like to be considered for employment opportunities with LS Technologies and have accommodation needs for a disability or religious observance, please send us an email ********************* or speak with your recruiter. Compensation (Pay Bands) Salary at LST is determined by a wide array of factors, such as (but not limited to) education, certifications, knowledge, skills, competencies, and experience, location, and clearance level, as well as contract-specific affordability and organizational requirements and applicable employment laws. Please note that the salary information is a general guideline only. The projected compensation range for this position is provided within the posting and is based on full-time, 40 hour/week status. Part-time staff receive compensation at an hourly rate. The estimated minimum and maximum displayed represents the broadest range for this position (inclusive of high geographic and high clearance requirements) and is just one component of LSTs total compensation package for employees. ** In compliance with local laws, LS Technologies presents this reasonable compensation range as a guideline for roles in California, Colorado, New York, or Washington D.C." Benefits offered to all employees who work 30+ hours per week: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Annual Leave, and Holidays. About Tetra Tech: Tetra Tech is the leader in water, environment, and sustainable infrastructure, providing high-end consulting and engineering services for projects worldwide. With 30,000 employees working together, Tetra Tech provides clear solutions to complex problems by Leading with Science to address the entire water cycle, protect and restore the environment, design sustainable and resilient infrastructure, and support the clean energy transition. Explore our open positions at ********************************** Follow us on social media to learn more about our people, culture, and opportunities: LinkedIn: @TetraTechCareers X (Twitter): @TetraTechJobs Job Posted by ApplicantPro

Information Security Analyst Indianapolis IN/On-Site 6+ Months Contract Local candidates only. Resource will works as Information Security Analyst responsible for auditing and monitoring systems containing confidential information. Resource will work as an Information Security Analyst responsible for auditing and monitoring systems containing confidential information. This position is also responsible for helping the organization manage its risks by monitoring the organization's IT systems for inefficiencies, inaccuracies, mismanagement, etc. Tasks will include assisting with the configuration of data, application, network, and IAAM logs; assisting with log reporting tools; and monitoring systems for security problems. The position participates in all aspects of the technology audit and monitoring including the planning, control analysis, testing, issue development, and reporting phases. This position will also participate in all federal and state audits against DCS technology systems. Employee works in an Information Technology Division of a State Agency, the Department of Child Services (DCS-IT) under the guidance of the Security Manager. The essential functions of this role are as follows: • Monitors and keep supervisor informed of status of information security and confidentiality conditions, including problem areas and recommended enhancement; • Interfaces with user customers to understand their security needs and implement procedures to accommodate them including training and assessment. • Assists with preparing for security audits (e.g. IRS, SSA, OCSE, FBI, SBOA) and remediating any findings; assists with creating and submitting reports relevant to security audits. • Develop information security policies and standards for protection of information systems in compliance with state and federal requirements (e.g. IRS, SSA, OCSE, FBI, IOT) and guidelines (e.g. NIST SP 800-53). • Develops Standard Operating Procedures (SOP) for implementing security polices; • Recommends appropriate security safeguards to be included during development of new information technology systems and legacy systems; • Ensures maximum utilization of computer hardware and software features to secure automated systems and associated data; • Develops and implements procedures for use of information security management software; • Proposes information security software enhancements; • Performs periodic audits to assure security policies and standards are being followed and are effective. • Develops recommendations for enhancements and generates reports where necessary; • Keeps abreast of new laws and changes affecting privacy standards, network security, cloud security, remote access, and physical security; • Mentors and provides guidance to new or other staff as needed; • Performs related duties as assigned. • Assist on other task as assigned. Thorough knowledge of information security management tools, policies, and standards of information security procedures; • Thorough knowledge of state and federal legislation and regulatory laws pertaining to information system security and privacy; • Thorough knowledge of software vulnerabilities, vulnerabilities scanning tools, and vulnerabilities remediation; • Familiarity with domain structures, user authentication, and digital signatures; • Ability to develop and maintain information security standards; • Ability to understand and apply complex computer logic to work; • Ability to work effectively with a wide range of information technologists, including systems administrators, technical support, application development, end users and management; • Experience in assessing security needs of teams and assist in their security training. • Ability to communicate effectively both orally and in writing; • Ability to be a team member as well as a team leader depending on the situation; • Degree in information security or technology preferred; • Security certification preferred (e.g. CISSP). • Network Admin experience preferred. Supervisory Responsibilities/Direct Reports: This role does not provide direct supervision to direct reports.

Discover your future at DAT Freight & Analytics, where innovation meets impact. For over four decades, DAT has been at the forefront of transportation and logistics, helping businesses move freight with greater efficiency and confidence. We are a technology company that removes uncertainty from freight for truckers, brokers, and shippers every day. Our advanced tools and data intelligence empower professionals to make smarter decisions, optimize costs, and operate more successfully. Through the industry's largest digital freight marketplace and insights derived from over $1 trillion in freight transactions, we provide the mission-critical information that keeps supply chains running smoothly across the country. DAT is proud to be an award-winning workplace that fosters innovation, celebrates success, and values professional growth. With strategic offices in Beaverton, Oregon, Denver, Colorado, Springfield, Missouri, and Bangalore, India, our teams collaborate to solve the transportation industry's most complex challenges. Ready to shape the future of freight technology? Learn more at dat.com/company. Application Deadline: 11/15/2025 The Opportunity DAT is looking for a Information Security - Security Operations, to join our security team. This position can be based in our Seattle, WA office. The Information Security Analyst - Security Operations, will serve as a member of the Security Operations team, responsible for daily operational security activities that serve at the eyes and ears of incident response. This role is central to DAT's ability to detect, investigate, and respond to security incidents. You will be responsible for collaborating and maturing the SOC's structure, workflows and operational cadence, while ensuring our security posture is continually improved through monitoring, threat intelligence, and testing. What You'll Do Execute Security Operations Center Excellence including alerting, detection, investigation, and incident response activities across the organization. Support and triage security alerts and incidents using SIEM, EDR, and other monitoring platforms; ensure timely escalation, investigation, and remediation. Leverage threat intelligence feeds and IOCs to improve detection coverage and proactively identify emerging threats relevant to our environment. Conduct and coordinate security testing including penetration testing with roadmapped plans to expand to more red/purple team testing to validate defenses. Perform root cause analysis of incidents and drive improvements in monitoring and detection to reduce recurrence. Document and refine incident response playbooks and ensure junior analysts are trained on consistent execution. Contribute to security projects across multiple domains to help mature security programs Collaborate with cross-functional teams to ongoing security control maturation and build trust based relationships throughout the organization Ask questions and be forever curious, fostering a culture of continuous learning and operational excellence. The Skills and Experience You'll Bring Team Player with communication, organizational, and relationship management skills. Self-motivated, with keen attention to detail and excellent judgment skills. Knowledge threat detection and investigation tools such as SIEM (Splunk, QRadar, etc.), EDR/XDR solutions, and network monitoring platforms. Knowledge of threat intelligence integration (IOCs, TTPs, threat feeds) into detection and response workflows. Working knowledge of hybrid IT systems, networking, co-locations, and cloud environments. Understanding of incident response frameworks, including NIST and SANS, with ability to perform forensic analysis and post-incident reviews. 1-3 years of experience in Security Operations, Incident Response, or related cybersecurity functions. Professional Certification preferred (e.g., Security +, CEH, CySA, OSCP or equivalent) Why DAT? DAT is an award winning employer of choice. For starters, we have a hybrid work environment, but we also know what makes a great workplace. We have a time-tested and resolute set of operating values predicated on integrity, mutual respect, open communication, and executing with excellence. These values inform our strategic vision as much as any one of our products does. We've been an employer of choice in the Portland metropolitan area for four decades, and within one year of opening our Denver office, DAT was #26 on Built In Colorado's 100 Best Places to Work In Colorado. Medical, Dental, Vision, Life, and AD&D insurance Parental Leave Up to 20 days of paid time off starting in year one An additional 10 holidays of paid time off per calendar year 401k matching (immediately vested) Employee Stock Purchase Plan Short- and Long-term disability sick leave Flexible Spending Accounts Health Savings Accounts Employee Assistance Program Additional programs - Employee Referral, Internal Recognition, and Wellness Free TriMet transit pass (Beaverton Office) Competitive salary and benefits package Work on impactful projects in a cutting-edge environment Collaborative and supportive team culture Opportunity to make a real difference in the trucking industry Employee Resource Groups For Washington-based candidates, in compliance with the Washington State Pay Transparency Law, the salary range for this role is $71,000 - $91,000. DAT considers factors such as scope and responsibilities of the position, candidate's work experience, education and training, core skills, internal equity, and market and business elements when extending an offer. DAT embraces the value of a diverse workforce, and believes it is a core strength of our company that we encourage those values in every DAT employee, at every level of our organization, regardless of tenure or rank. We provide equal employment opportunities (EEO) to all employees and applicants without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c) #LI-DR1

JOIN THE CYBERCORE TECHNOLOGIES TEAM . We are Growing! Bring your Technical Capabilities, Enthusiasm, and Team Focus. Seeking Candidates for a New Computer Systems Security Analyst (Splunk) US Citizenship or Permanent Residency (Green Card holder) required. Job Description: •Write complex SPL to develop advanced Splunk dashboards and queries. •Work with customers to develop custom content, maintaining consistently high-quality communications. •Develop processes and schedule to review existing methodologies and queries for all divisional metrics. •Become knowledgeable on the CDM technical requirements for the CDM Program. •Understand role in CDM activities. •Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access. •Design, manage and maintain SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data. Maintenance, configuration and implementing products, appliances and devices on the network. Required Candidate Qualifications: United States Citizenship or Permanent Residency Required due to Clearance /Security /Government Needs. Bachelor's degree and 7 years of related experience, Master's degree and 5 years of related experience, or 11 years of experience in lieu of degree. At least 6 years' experience using Splunk, specifically Splunk scripting and on-boarding of large collection of meta data from different sources into Splunk A minimum of 4 years of experience with: In-depth knowledge of designing, upgrading, maintaining and implementing network devices on a large-scale enterprise. Coordination and communication with other remotely deployed team members. Developing documentation with processes and procedures. Proposing, implementing automation features in a large enterprise environment. Hold Active Splunk Core Certifications of User, Power User and Admin Minimum of 3 year of experience in developing and tailoring reporting from network security tools. Must be able to obtain and maintain US Public Trust Clearance. . At CyberCore, Our Goal is to Maintain a Healthy Work-Life Balance and Provide Interesting Work Supporting Our Nation's Security. For more information on CyberCore Technologies, go to ********************* CyberCore Technologies is proud to be an Equal Opportunity Employer. CyberCore has, on many occasions, expressed support and commitment to the principles of diversity and equal employment opportunity. It is CyberCore's policy to recruit, hire, train, and promote individuals, as well as administer all personnel actions, without regard to race, color, national or ethnic origin, age, religion, disability, sex, sexual orientation, gender identity and expression, veteran status or any other characteristic protected under applicable federal or state law. CyberCore will not tolerate unlawful discrimination and any such conduct is prohibited. CyberCore is committed to ensuring that CyberCore's workforce and volunteers reflect America's diverse population. CyberCore knows that such diversity will enrich the company with the talent, energy, perspective and inspiration we need to achieve our mission.

Write complex SPL to develop Advanced Splunk Dashboards and Queries. Perform on-boarding of data via Splunk Tools and Automation method. Work with customers to develop custom content, maintaining consistently high quality communications with the Client. Create Splunk Dashboards and Queries Familiar with automating in Splunk Develop scripts and code with security tools. Develop processes and schedule to review existing methodologies and queries for all divisional metrics. Become knowledgeable on the CDM technical requirements for the CDM program. Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access. Design, manage, and maintain agency SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data. Maintenance, configuration, and implementing products, appliances and devices on the network. Required Candidate Qualifications: US Citizenship Required and ability to obtain and maintain a Public Trust Bachelors Degree and 7 experience; or Masters Degree and 5 years of relevant Cyber Security experience; or 11 years experience in lieu of Degree. Active Splunk Core Certifications of User, Power User and Admin Minimum 3 years of experience developing and tailoring reporting from network security tools. At least 6 years experience using Splunk (specifically Splunk Scripting and on-boarding of large collection of meta data from different sources into Splunk. At least 4 years of experience with: In depth knowledge of designing, upgrading, maintaining, and implementing network devices on a large scale enterprise. Coordination and communication with other remotely deployed team members Developing documentation with processes and procedures. Proposing, implementing automation features in a large enterprise environment. At least 2 years experience with: Splunk Enterprise Security product. Risk-based Alerting. Analytics Driven Security CyberCore has, on many occasions, expressed support and commitment to the principles of diversity and equal employment opportunity. It is CyberCore's policy to recruit, hire, train, and promote individuals, as well as administer all personnel actions, without regard to race, color, national or ethnic origin, age, religion, disability, sex, sexual orientation, gender identity and expression, veteran status or any other characteristic protected under applicable federal or state law. CyberCore will not tolerate unlawful discrimination and any such conduct is prohibited. CyberCore is committed to ensuring that CyberCore's workforce and volunteers reflect America's diverse population. CyberCore knows that such diversity will enrich the company with the talent, energy, perspective and inspiration we need to achieve our mission.

Salary range is $104k to $206k with a midpoint of $155k. New hires typically receive between minimum and midpoint, however, we may go slightly higher based on experience, internal equity and market. Sound Transit also offers a competitive benefits package with a wide range of offerings, including: * Health Benefits: We offer two choices of medical plans, a dental plan, and a vision plan all at no cost for employee coverage; comprehensive benefits for employees and eligible dependents, including a spouse or domestic partner. * Long-Term Disability and Life Insurance. * Employee Assistance Program. * Retirement Plans: 401a - 10% of employee contribution with a 12% match by Sound Transit; 457b - up to IRS maximum (employee only contribution). * Paid Time Off: Employees accrue 25 days of paid time off annually with increases at four, eight and twelve years of service. Employees at the director level and up accrue additional days. We also observe 12 paid holidays and provide up to 2 paid floating holidays and up to 2 paid volunteer days per year. * Parental Leave: 12 weeks of parental leave for new parents. * Pet Insurance discount. * ORCA Card: All full-time employees will receive an ORCA card at no cost. * Tuition Reimbursement: Sound Transit will pay up to $5,000 annually for approved tuition expenses. * Inclusive Reproductive Health Support Services. * Compensation Practices: We offer competitive salaries based on market rates and internal equity. In addition to compensation and benefits, you'll find that we provide work-life balance, opportunities for professional development and recognition from your colleagues. GENERAL PURPOSE: Under general direction, the Information Security Engineering Manager oversees and operates several essential Information Security functions including Security Engineering and information security tool management. The Information Security Engineering Manager's role is to lead and support service owners, system owners, and relevant stakeholders in ensuring their respective (or proposed) systems are compliant with the Agency's information security standards. In addition, the Information Security Engineering Manager supports the operations of several other functions of the Agency's Information Security Management System (ISMS). ESSENTIAL FUNCTIONS: The following duties are a representative summary of the primary duties and responsibilities. Incumbent(s) may not be required to perform all duties listed and may be required to perform additional, position-specific duties. * Acts as Service Owner for related Information Security Engineering services of the Information Security business unit. * Support Information Security Architecture and Security Operations services * Manages personal for the Information Security Engineering components of the Information Security Division. * Provides guidance to the technical professionals that comprise the Security Engineering functions of the Information Security Division * Participates in the overall implementation of the agency's information security program, under the direction of the Chief Information Security Officer (or delegate), where appropriate. * Participates in the creation of information security governance documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Chief Information Security Officer (or delegate), where appropriate. * Identifies and assesses technology-related risks to information security associated with prospective technology solutions; and recommends appropriate mitigating controls. * Influences the design of any prospective technology solution for adherence to documented agency standards, policies, and regulatory responsibilities. * Evaluates, implements, and supports security-focused tools and services required to support information security controls. * Collaborates with other IT engineering and administration disciplines to ensure security best practices are incorporated into design, implementation and sustainment of systems and services within the agency. * Consults with internal customers on risk assessment, threat modeling and mitigation of vulnerabilities * Conducts security assessments, evaluates controls, and provide feedback to management and system owners on the design and effectiveness of control processes. * Conducts regular security reviews of both software and processes. Reviews and creates threat models and recommends security enhancements consistent with information security strategy and evolving threats * Participates in ongoing information security education, awareness, and outreach activities. * Participate with information security incident investigation and response efforts, leading as needed. * Participate with computer and network forensic investigations in support of incident response activities. * Prepares regular reports on relevant metrics for different stakeholders. * Coaches, manages, mentors, and develops staff. * Focuses on keeping professional skills current. * Keeps up to date on latest information security threats and countermeasures. * Champions and models Sound Transit's core values and demonstrates values-based behaviors in everyday interactions across the agency. * Contributes to a culture of diversity, equity and inclusion in alignment with Sound Transit's Equity & Inclusion Policy. * It is the responsibility of all employees to follow the Agency safety rules, regulations, and procedures pertaining to their assigned duties and responsibilities, which could include systems, operations, and/or other employees. * It is the responsibility of all employees to integrate sustainability into everyday business practices. * Other duties as assigned. MINIMUM QUALIFICATIONS: Education and Experience: Bachelor's degree in Computer Science, Information Technology, Business Administration, Engineering, or closely related field. Five years of information technology experience with a focus on security engineering and operations, OR an equivalent combination of education and experience. Three years of leadership, budgetary, planning and workforce management experience. Required Licenses or Certifications: * Certified Information Systems Security Professional (CISSP), orobtain within 12 months of hire. Preferred Licenses or Certifications: One or more of the following certifications is strongly preferred: * Certified Information Security Manager (CISM) * Information Technology Infrastructure Library (ITIL) * Certified Ethical Hacker (CEH) * Certified Cyber Forensics Professional (CCFP) * GIAC Certified Incident Handler (GCIH) Required Knowledge and Skills: * Strong command of ITIL core processes and principles. * Strong command and experience with information security architecture and engineering principles * General knowledge of the NIST 800 series standards, PCI DSS standard, and the ISO 27001/2 frameworks. * Demonstrated work experience in a few of the following areas: Information Security, Security Architecture, Security Engineering, Security Operations and implementing best practices, tools and technology. * Strong understanding of information technology and security controls. * Strong understanding of and experience with security-related technologies, systems, and tools. * Proven competency in the use of MS Office applications (Microsoft Project, Word, Excel, PowerPoint, and SharePoint) * Strong team leadership and communicational (verbal/written) skills. * Ability to work in highly collaborative environments. * Strong workload prioritization and self-organization skills * Strong project management skills. Preferred Knowledge and Skills: * Understanding of Cloud Computing environments (Microsoft Azure preferred). Physical Demands / Work Environment: * Work is performed in a hybrid office environment. * This position is responsible for communicating with stakeholders, and using specialized security tools; may be subject to bending, hearing, sitting, standing, talking, seeing, and carrying and lifting 25 lbs or less. * The Agency promotes a safe and healthy work environment and provides appropriate safety and equipment training for all personnel as required. Sound Transit is an equal employment opportunity employer. No person is unlawfully excluded from employment action based on race, color, religion, national origin, sex (including gender identity, sexual orientation and pregnancy), age, genetic information, disability, veteran status or other protected class.

Community Health Network of Connecticut, Inc. (CHNCT) is currently seeking an Information Security Specialist. This is a full-time, hybrid position requiring 2 days per week onsite in our Wallingford, CT office. Primary Responsibilities: Under the direction of the Director of Information Security, the Information Security Specialist is responsible for operations, auditing, and technical monitoring of CHNCT's Information Security and related activities. These activities include but are not limited to implementing and maintaining Information Security related systems, policies and processes in compliance with applicable security regulations (i.e., HIPAA and State of CT Security laws), and establishing and developing security-related operating procedures and standards. Works directly with contracted vendors for the implementation and maintenance of security hardware, software and services. Assists with the selection and evaluation of security related state-of-the-art systems. Tasks Performed: Monitors and maintains all aspects of the information security program. As a COMPUTER SECURITY INCIDENT RESPONSE TEAMS (CSIRT) member, logs and responds to incidents including communication of potential violations of the company's information security policies to CHNCT's Chief Information Security Officer. Independently acts to prevent or deter security breaches or intrusions that threaten the integrity of mission critical data or applications. Monitors email and Data Loss Prevention logs and responds to potential policy or regulatory violations. Monitors Phishing alerts and end user notifications. Audits network and file permissions structure and password and account maintenance. Assists in the development and testing of the Disaster Recovery and Business Continuity Plans. Processes exception requests and performs risk analysis on these and other customer requests. Actively reviews threat alerts and determines relevance and criticality to the organization. Contributes to project activities as a project team member or ad-hoc as requested. Other duties as assigned. Essential Functions: Implementation and maintenance of Information security related software, hardware and systems. Systems include but are not limited to phishing identification and prevention, Internet content filtering, Data Loss Prevention (DLP), Intrusion Detection/Prevention (IDS/IPS), Endpoint Detection and Response (EDR), Log Management, and Advanced Threat Mitigation. Duties include information security policy administration and configuration, security related server management, Disaster Recovery Planning, proactively identifying or rapidly responding to customer security issues and security events. Desired Education: 2 years post-secondary schooling Desired Degree: Associate's degree Desired Major: Computer Assurance or Computer Science Desired Job Experience: 3+ years' direct information security experience, preferably in healthcare Other Qualifications: Security+ or other security-related certification. Hands on exposure to providing information security operational support in a medium to large scale healthcare organization preferred. Knowledgeable in the management and setup of security related software and hardware Working knowledge of security administration, DLP, or other information security systems. Knowledge of EDR, EPP, IDS/IPS, AD and network infrastructure. Detail oriented, with meticulous attention to system and procedure documentation. CHNCT Offers Great Benefits: Medical, dental and vision coverage options Flexible spending and health savings accounts Group term life insurance A 401(k) plan with company-match and immediate vesting Voluntary accidental injury coverage Tuition reimbursement and continuing education opportunities A generous paid-leave bank and company holidays Wellness program We are dedicated to having a workplace where everyone feels valued, respected, and empowered to succeed. We embrace a wide range of perspectives and backgrounds, ensuring fair treatment and opportunities for all employees. We value our team's rich array of experiences and viewpoints, which contribute to our innovative and collaborative environment.

Build an Aviation Career You're Proud Of At StandardAero, we use our ingenuity and know-how to find solutions for the simple to the most complex challenges in aviation. Together, we get the job done and done well. Our stability, resources, and respectful culture supports you in building a solid career with a great team you can count on day in and day out for the long term. Summary: As an IT Security Analyst position is a critical role in protecting StandardAero's business and technology operations. In this role you will be accountable in securing the enterprise technology and operations against an ever evolving and growing threat landscape. The role is an integral position in supporting StandardAero's global cyber-security defenses, providing tactical cyber security objectives and implementing the security strategy across the organization. What you'll do: Conduct risk and security assessments through vulnerability analysis and reporting Perform mitigation support for both internal and external security audits Investigate, analyze and document security incidents to identify and document the root cause Provides incident response support including mitigating actions to contain activity and facilitating forensics analysis when necessary Partner with IT Operation teams to remediate system vulnerabilities Participates in the production of documentation and management reporting Research security enhancements and make recommendations for improved policy and process Analyze IT requirements and provide objective advice on the use of new IT security offerings Stay up-to-date on information technology and cybersecurity trends and standards Other IT Security-related duties as required Capable of identifying, evaluating and mitigating significant risks within an enterprise. Strong working experience with Microsoft Office Suite. Strong oral and written communication skills and the ability to work well with people from many different disciplines with varying degrees of technical experience. Possess strong analytical skills attention to detail. Ability to prioritize assignments while working on multiple projects Ability to work independently and proactively to meet assigned objectives Flexible with the ability to multi-task, effectively prioritize and work under pressure Basic project management Design, implement, administer, support and maintain cybersecurity technology systems (Endpoint Protection, IDS/IPS, Web and Email Security, SIEM, Multi-Factor Authentication, Network Access Controls, DLP, etc.) Analyze, report and respond to security alerts within the various IT technologies and global locations Proactively remediate information technology security threats as a member of the security team Assist in the designing, documenting, architecting and implementing IT security measures and controls Provide support through ‘Threat Hunting' against anomalous behavior within the enterprise. Correlates activity across assets (endpoint, network, apps) and environments to identify patterns of anomalous activity Conducts log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources Threat mitigation; malicious code detection, response and prevention; operating system security oversight Minimum Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field; equivalent experience may be considered. 5+ years of progressive experience in cybersecurity and IT, including hands-on security operations, threat detection, or engineering. 5+ years of experience in SIEM Administration, endpoint protection, vulnerability management tools, and security automation. 5+ years of experience of network and application security, threat actor tactics (MITRE ATT&CK), and incident response frameworks. 5+ years of experience working in regulated environments or with industry frameworks (e.g., NIST, ISO 27001, CIS, or CMMC). Preferred Qualifications: IT Security Certification, specifically GSEC, CEH, CISSO, CISA or CISSP, GCIA, OSCP and ITIL SDLC, and understand application security. Containerization and Development Security Operations Benefits that make life better: Comprehensive Healthcare 401(k) with 100% company match; up to 5% vested Paid Time Off starting on day one Bonus opportunities Health- & Dependent Care Flexible Spending Accounts Short- & Long-Term Disability Life & AD&D Insurance Learning & Training opportunities Raising the Standard of Excellence since 1911 With over a century of proven excellence, StandardAero has become an industry leader in MRO services and customized solutions in the aerospace field. Our shared values and learning-based culture inspire our team to exceed their potential and power our customers' missions worldwide. With on-the-job training, advancement opportunities, and excellent benefits, StandardAero invites you to experience a fulfilling and meaningful career with us. Inclusivity Is Our Standard It is StandardAero's policy to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information. Our supportive environment celebrates diversity with no room for harassment or discrimination of any kind. We invite you to bring your authentic self to our team and experience our welcoming culture.

Job DescriptionSalary: Cybersecurity and Information Security Manager Reports To: Director of Technology Position Type: Permanent Full-Time ABOUT US du Pont REGISTRY Group proudly marks four decades as a cornerstone of the luxury automotive market in 2025. Renowned for connecting millions of buyers and sellers worldwide, du Pont REGISTRY Group has facilitated billions in automotive transactions while setting the standard for excellence in the industry. POSITION OVERVIEW This role serves as the companys primary cybersecurity resource, responsible for securing du Pont Registrys systems, data, websites, and third-party platforms. The Cybersecurity & Information Security Manager balances business enablement with security oversight, managing everything from endpoint protection and incident response to vendor assessments and user awareness training. The ideal candidate is self-sufficient, technically curious, and comfortable wearing multiple hats. They will perform both operational security tasks and higher-level program design in a fast-paced, entrepreneurial environment. They are also comfortable communicating and managing at the technical, configuration levels while providing key insight to executive boards through targeted high-level reporting. KEY RESPONSIBILITIES Security Operations & Infrastructure Perform daily monitoring of security logs, alerts, and reports from firewalls, EDR, SIEM, and cloud environments. Manage endpoint, network, and email security solutions; ensure systems are patched, updated, and compliant. Oversee security of cloud and hosted services (AWS, Azure, Google Workspace, Microsoft 365, etc.). Respond to and manage security incidents, data breaches, and vulnerabilities in coordination with IT vendors. Perform internal security assessments, penetration testing coordination, and vulnerability scans. Governance, Risk & Compliance Develop, maintain, and implement cybersecurity policies and procedures aligned with modern frameworks (NIST CSF, CIS Controls). Assist with risk assessments and vendor evaluations, especially for technology partners and marketing platforms. Support compliance efforts related to privacy and payment requirements (CCPA, GDPR, PCI-DSS). Maintain documentation for audits and leadership reporting. Awareness & Training Conduct regular employee security awareness and phishing simulation campaigns. Promote a culture of cybersecurity across departments with practical, business-friendly approaches. Strategic Support & Reporting Provide regular reports to the CFO and leadership on cybersecurity posture, incidents, and key risks. Participate in budgeting and planning for cybersecurity tools and services. Stay current on emerging threats and technologies to continuously enhance the companys defenses. QUALIFICATIONS Bachelors degree in Information Security, Information Technology, Computer Science, or related field (or equivalent experience). At least seven years of experience in IT security, cybersecurity operations, or systems administration. Hands-on experience with key technologies: firewalls, endpoint protection, cloud security, Google cloud, Microsoft 365, and SIEM. Working knowledge of network security principles, web application security, and vulnerability management. Solid understanding of risk-based decision-making and practical security implementation in small/medium business environments. Preferred: Security-related certifications such as Security+, CEH, GSEC, CISSP, or CISM. Exposure to ecommerce, media, or marketing technology environments. Experience implementing or managing security standards such as NIST, CIS Controls, or ISO 27001.

: Crown Equipment Corporation is a leading innovator in world-class forklift and material handling equipment and technology. As one of the world's largest lift truck manufacturers, we are committed to providing the customer with the safest, most efficient and ergonomic lift truck possible to lower their total cost of ownership. **Information Security Analyst 2** **Job Duties** + Governance, Risk, & Compliance (GRC) Application Subject Matter Expert - Operate and maintain Company's Governance, Risk and Compliance (GRC) platform, its libraries, reports, portals, and data integrations to effectively support operations, data accuracy and user processes. Serve as the primary liaison for GRC software vendors, by maintaining contact with vendor representatives, submitting troubleshooting tickets and software feedback to improve the user experience. Support Company's Enterprise Risk Management, Compliance, Vendor Management, Business Continuity Planning, Information Technology and Security, Project Management and Audit Programs with data entry, maintenance, and configuration. Develop, maintain, and distribute custom and ad hoc reporting of risk data including taxonomy analytics and Key Risk Indicators (KRI's). + Security Architecture & Control Design - Develop/integrate cybersecurity designs for systems and networks for the processing of company data. Document and address organization's information security, cybersecurity architecture, and systems security engineering requirements. Ensure that acquired or developed systems and architectures are consistent with company's cybersecurity architecture guidelines. + Risk Assessment - Coordinate external risk assessments including audits, gap assessments, and penetration testing to evaluate security architectures and designs to determine the adequacy of security design and architecture. Determine protection needs (i.e., security controls) for company's information processing and document appropriately. Perform security reviews, identify gaps in security architecture, and develop a security risk management plan. + Incident Response Communication- Coordinate communication and information sharing aspects of incident response. Draft messages and updates to internal and external audiences for Incident Response Team (IRT) review, such as employees, customers, partners, media, or public. Handle crisis management issues and provides guidance and education on incident prevention and response best practices. Perform other duties as assigned. **Minimum Qualifications** + 2-4 years related experience + Associate's degree (Information Technology, Cyber Security, Computer Science) + Non-degree considered if 6+ years of related experience along with a high school diploma (GED) **Preferred Qualifications** Intermediate knowledge of various Information Security & Privacy Frameworks such as the Secure Controls Framework, NIST CSF, NIST 800-171, NIST 800-53, NIST Privacy Framework, ISO-27001, ISO-27701, GDPR, US & other global privacy regulations. Work experience in other Information Technology disciplines such as software development, help desk, networking, systems administration or similar in conjunction with professional certifications such as CASP+, CISSP Associate, or AWS Associate Level Certifications. Intermediate level of knowledge in at least one scripting or software development language such as PowerShell, Bash, Java, or Python. Good written and oral communication skills, deductive reasoning, and analytical investigative skills. Good interpersonal skills to facilitate positive relations between business groups. Requires excellent verbal and written communication skills, as well as a knowledge of company's culture and values. **Work Authorization:** Crown will only employ those who are legally authorized to work in the United States. This is not a position for which sponsorship will be provided. Individuals with temporary visas or who need sponsorship for work authorization now or in the future, are not eligible for hire. No agency calls please. **Compensation and Benefits:** Crown offers an excellent wage and benefits package for full-time employees including Health/Dental/Vision/Prescription Drug Plan, Flexible Benefits Plan, 401K Retirement Savings Plan, Life and Disability Benefits, Paid Parental Leave, Paid Holidays, Paid Vacation, Tuition Reimbursement, and much more. EOE Veterans/Disabilities