Information Security Analyst jobs at Veolia Environmental Services North America

About the Opportunity We are a forward-thinking electric utility powered by a diverse team of employees committed to making customers' lives brighter, the environment better and our communities stronger. FirstEnergy (NYSE: FE) is dedicated to integrity, safety, reliability and operational excellence. Headquartered in Akron, Ohio, FirstEnergy includes one of the nation's largest investor-owned electric systems, more than 24,000 miles of transmission lines that connect the Midwest and Mid-Atlantic regions, and a regulated generating fleet with a total capacity of more than 3,500 megawatts. Location: Position may be filled at Akron, OH or Wadsworth, OH. Position is currently remote but may work at or visit a facility based on business need. This position is within FirstEnergy Service Company, a subsidiary of FirstEnergy Corp. This position's base reporting location is in Wadsworth Township, Ohio with significant flexible work location opportunities. This position is part of FirstEnergy's Cyber Security Governance department reporting to the Manager of Cyber Security Policy. The Cyber and Information Security Analyst works across all FirstEnergy subsidiaries and business units to protect the cyber assets of FirstEnergy. We seek a knowledgeable individual well-versed in current cyber security and information security strategies with skills to effectively apply such strategies to a large, dynamic, heterogeneous landscape. Location: Position may be filled at Akron, OH or Wadsworth, OH. Position is currently remote but may work at or visit a facility based on business need. This position is within FirstEnergy Service Company, a subsidiary of FirstEnergy Corp. This position's base reporting location is in Wadsworth Township, Ohio with significant flexible work location opportunities. This position is part of FirstEnergy's Cyber Security Governance department reporting to the Manager of Cyber Security Policy. The Cyber and Information Security Analyst works across all FirstEnergy subsidiaries and business units to protect the cyber assets of FirstEnergy. We seek a knowledgeable individual well-versed in current cyber security and information security strategies with skills to effectively apply such strategies to a large, dynamic, heterogeneous landscape. Responsibilities include Act as a subject matter expert (SME) between cybersecurity and the business units in the development of appropriate policies, standards, and frameworks Continuously monitor trends to anticipate and plan for future impact of cyber risk on a specific business unit (BU) or function Follow all risk remediation protocols to ensure issues are mitigated, risks are accounted for, and exceptions are tracked in accordance with frameworks, policies and standards set by the organization Educate stakeholders on cybersecurity-related matters to increase awareness and improve culture Performs focused information risk assessments of existing or new services and technologies, along with business counterparts Identifies and facilitates implementation of appropriate controls to effectively manage cyber and information risks as needed Understand software and system vulnerability processes, manage vulnerability patches through a process lifecycle, and perform vulnerability assessments on systems and services Qualifications Bachelor's Degree in Computer Science, Information Security, or similar discipline is preferred A minimum of 10 years professional-level experience and subject matter expert knowledge in at least one major cyber security discipline required Ability to identify and assess the severity and potential impact of risks. Communicate risk assessment findings to risk owners outside the cybersecurity program in a way that consistently drives objective, fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance Familiarity with common cyber security related tools such as vulnerability scanners (Tenable preferred), ServiceNow IRM and GRC, Microsoft Power Automate, Microsoft Power BI, and other similar toolchains Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside one's network within an organization An ability to effectively influence others by informing their opinions, plans or behaviors Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner Infrequent business travel to Akron, OH may be required Able to participate in an on-call rotation (cycling daily; on-call once every ~6-8 days) responding to out-of-hours calls and alerts in support of security response Benefits, Compensation & Workforce Diversity At FirstEnergy, employees are key to our success. We depend on their talents to meet the challenges of our changing business environment. We are committed to rewarding individual and team efforts through our total rewards philosophy which includes competitive pay plus incentive compensation, a company-sponsored pension plan, 401(k) savings plan with matching employer contribution, a choice of medical, prescription drug, dental, vision, and life insurance programs, as well as skills development training with tuition reimbursement. Please visit our website at *********************** to learn more about all of our employee rewards programs. FirstEnergy proudly supports workforce diversity. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, or status as a qualified individual with a disability. No recruiters or agencies without a previously signed contract. Unable to sponsor or transfer H-1B visas at this time. Safety Safety is a core value for FirstEnergy and is essential to all of our business activities. We ensure employees have the tools, information, and processes to perform their duties in a manner that assures safety for themselves, their co-workers, our customers and the public. Our goals are to provide a safe work environment, to maintain an accident-free, injury-free workplace, and to promote and maintain public safety. To meet these goals, we dedicate ourselves to achieving world-class safety standards. Position Classification Exempt

Join the Clean Energy Revolution Become a Senior Cyber Security Specialist, Threat Hunt at Southern California Edison (SCE) and build a better tomorrow. In this job, you'll be a part of the Cyber Threat Hunt and Intelligence team, a sub-team under SCE's broader Cybersecurity Operations Center (CSOC) - the team is responsible for keeping SCE's network and grid secure from emerging threats and cyber actors. As a Senior Cyber Security Specialist, Threat Hunt, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future? In this role as Senior Specialist for the Cyber Threat Hunt and Intelligence Team, you will be primarily responsible for not only conducting continuous research on emerging threats and threat actor activity but also actioning that intelligence through proactive and innovate threat hunts using SIEM, EDR, and other technology. We are looking for a Senior Cyber Specialist with a technical and analytical background that can leverage their solid understanding of networks, network architectures, and adversarial tradecraft to enable proactive and innovative approaches to their cybersecurity threat hunting work across the SCE environment, with a specific focus on Operational Technology (OT). Job function examples include: + Leverage technical expertise and adversarial knowledge to hunt across the SCE Admin, cloud, and OT environment + Aid in the development and maturation of the OT hunt program + Breaking down and leveraging technical intelligence reports and analyze Tactics Techniques and Procedures utilized by cyber adversaries and proactively hunt for those across the SCE environment. + Use understanding of Vulnerability Exploitation to Hunt for Evidence of exploitation of emerging vulnerabilities. + Through hunting efforts, proactively identify and document logging gaps, architectural gaps, visibility gaps, misconfigurations and control gaps, and other observations to aid in the maturation SCE's cyber posture. + Articulate hunt findings and advise on remediation methods. Aid in coordinating execution of these remediations. + Work with Threat Hunt Team lead to identify capability and process improvements for threat hunting program. + Assists in the development of relevant detections to identify current and future malicious/suspicious activity. Candidate should be comfortable creating detections within multiple different operating systems and network appliances. **Responsibilities** + Performs security risk, vulnerability assessments, and business impact analysis for medium complexity information systems + Carries out project reporting for assigned projects, monitoring project status, timeline and budgets + Assists in the planning and implementation of current and future security domains including those which may introduce new service areas + Adopts and follows security controls, processes, and procedures to manage risk across all information system environments (infrastructure, network, and applications) with the assistance of the application and infrastructure management teams + Monitors technology risk, identifies root cause or key themes, recommends for resolution + Investigates suspected attacks and manages security incidents. Uses forensics where appropriate + Reviews and shapes the production of evidence to support internal and external audits + Implements appropriate security measures for information systems and applications that control access to data, and prevents unauthorized modification, destruction, or disclosure of information + Develops and maintains metrics, alerts, dashboards, and reports for security monitoring + Maintains incident response plans and performs incident response activities as directed and in accordance with established procedures and guidelines and those of federal authorities + A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. **Minimum Qualifications** + Five or more years of experience in information technology, information security and/or cybersecurity. + US Citizenship Required. Preferred Qualifications + Bachelor's degree in specialized field or an equivalent combination of education, training, and experience. + Two or more years of experience threat hunting. + Experience supporting cyber defense analysis of Operational Technology (OT) Networks to include Integrated Controls Systems (ICS), SCADA, and Process Control Networks (PCN). + Two or more years of experience working in Security Operations Centers. + Two or more years of experience working with Incident Response and Cyber Threat Intelligence functions. + Security +, CISSP, GCIA, GCIH, GMON, GICSP, GRID, etc. Additional Information + This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs. + Visit our Candidate Resource (************************************************************ page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! + Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world. Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at **************.

It's fun to work in a company where people truly BELIEVE in what they are doing! We're committed to bringing passion and customer focus to the business. This position is posted at multiple levels. Please see the job description below for more information. Be part of a high-impact team protecting the digital systems that power one of the most tightly regulated and technically advanced environments in the energy sector. Whether you're early in your cybersecurity career or bringing years of experience, we offer growth opportunities across Analyst Levels 1 through 4. GENERAL SUMMARY Independently designs and implements robust cyber security architectures and ensuring compliance with nuclear power plant cyber security regulations (10 CFR 73.54). Leads development and execution of an effective cyber security program, including procedure development, training, vulnerability management, and project support. Acts as a subject matter expert to individuals throughout the company in regulatory cyber security. PRINCIPAL ACCOUNTABILITIES Design and implement security controls for digital computer and communication systems. Conduct vulnerability assessments to identify potential security weaknesses and recommend appropriate measures. Monitor and analyze network traffic in a supervisory control and data acquisition (SCADA) environment to detect and respond to cyber threats. Prepare and maintain documentation related to cybersecurity policies, procedures, and incident response plans. Conduct activity oversight and documentation reviews to ensure adherence to site procedures and regulatory requirements. Lead program change impacts, self-assessments, audits, and training with impacted organizations. Stay updated on the latest cybersecurity trends, threats, and regulatory requirements. Must participate on the Emergency Response team (ERO) when designated. Must support the biennial refueling outage. Must support plant cyber security on-call rotation when designated. REQUIRED EDUCATION AND EXPERIENCE Plant Cyber Security Analyst IV Bachelor's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 7 years of relevant information technology experience; OR Associate's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 9 years of relevant information technology experience. A high school diploma or GED is required. Plant Cyber Security Analyst III Bachelor's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 5 years of relevant information technology experience; OR an Associate's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 7 years of relevant information technology experience. A high school diploma or GED is required. Plant Cyber Security Analyst II Bachelor's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 3 years of relevant information technology experience; OR an Associate's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university and 5 years of relevant information technology experience. A high school diploma or GED is required. Plant Cyber Security Analyst I Bachelor's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university; OR an Associate's degree in Cyber Security, Computer Science, Information Technology, or a related discipline from an accredited college or university with 2 years of relevant information technology experience. A high school diploma or GED is required. Pay Range: Plant Cyber Security Analyst IV Salary: $122,681 - $184,021 Midpoint: $153,351 Plant Cyber Security Analyst III Salary: $106,670 - $160,006 Midpoint: $133,338 Plant Cyber Security Analyst II Salary: $92,750 - $139,124 Midpoint: $115,937 Plant Cyber Security Analyst I Salary: $80,704 - $121,056 Midpoint: $100,880 Typically, selected candidates are hired between the minimum and midpoint of the range, based on applicable experience and qualifications, market rate, internal equity, and budgetary allowances. Offers will be negotiated based on each candidate's qualifications. Incentive Compensation This role is eligible to participate in our annual incentive plan. Incentives are earned based on employee performance against defined metrics and company goals. Benefits Energy Northwest (EN) offers a highly competitive and substantial benefits package which allows qualifying employees (and their families) to enroll in medical, dental, vision, and basic life insurance. Other voluntary benefits may include flexible spending accounts, tuition reimbursement, supplemental life insurances, credit monitoring, and identity theft insurance. EN offers three retirement programs to qualifying employees including a matching 401(k) deferred compensation plan, the Washington State Pension Plan (PERS), and a 457(b) savings plan. Qualifying employees will also accrue 160 hours of personal time per year and nine paid holidays throughout the calendar year. We are an Equal Opportunity Employer and do not discriminate due to race, color, age, gender, gender identity, sexual orientation, ethnicity, religion, national origin, veteran status or on the basis of disability. EEO is the law, click here to learn more.

Summary of Responsibilities: Bring your positive energy to ATC! We're adding a Cyber Security Analyst to our team that is responsible for continuous monitoring, triaging, and reacting to cyber security events as part of ATC's cyber security operations. The Cyber Security Analyst works closely with Cyber Security Leadership, Engineering and across ATC technology stakeholders to identify threats, mitigate risks and support the Enterprise Security program. ATC embraces flexibility in our work and our workplace, but this role is not 100% remote. This position is primarily located at ATC's Pewaukee Office. Essential Responsibilities: You'll use your bachelor's degree in Cybersecurity, Computer Engineering, Management Information System, or related work experience to build and maintain our cybersecurity program, execute actions under ATC's cybersecurity incident response plan, work with ATC Technology stakeholders to drive security threat mitigations and implement continuous improvement opportunities. In addition, you'll ensure compliance with laws and regulations while staying current with developments in the industry. If you are in search of a role where you'll directly protect the bulk electric system from threat actors, join an organization that's been named a Great Place to Work! The targeted base pay for this position is $93,600 to $109,200 annually.* Base pay is one component of our comprehensive total rewards package which includes an annual incentive bonus, employer-sponsored pension plan, 401(k) match, HSA contribution, life & disability insurance, health care benefits, generous time off plans, flexible work arrangements, and much more. * The pay range is a general guideline. Employment offers are evaluated individually and consider qualifications, experience, academic achievements, internal equity, and business needs. Pay exceeding the posted range is considered for uniquely qualified candidates. Interested internal candidates, with questions, please consult your Human Resources Business Partner. Number of Openings Available: 0 Posting Date: 2025-11-06 Time Type: Full time Equal Opportunity Employer: Applicants have rights under employment laws. ATC is an equal opportunity employer that seeks to foster diverse teams of talented people working safely together. We respect and embrace diversity of all aspects and hire, train and promote employees without regard to race, color, religion, sex, age, national origin, sexual orientation, disability, genetics, protected veteran status, or any other characteristic protected by law. We encourage women, minorities, veterans and individuals with a disability to apply. All qualified applicants will receive consideration for employment without regard to any characteristic protected by law. Family and Medical Leave Act (FMLA) Poster | U.S. Department of Labor Family and Medical Leave Act Poster Employee Polygraph Protection Act (EPPA) Poster | U.S. Department of Labor ERD-10861 Poster Honesty Testing poster WISCONSIN FAIR EMPLOYMENT LAW

CIP Cyber & Physical Security Analyst (Auditor) Texas Reliability Entity, Inc. (Texas RE) is hiring! We are seeking a CIP Cyber & Physical Security Analyst to join our team to conduct compliance engagements (audits) and internal control assessments based on risk within the Bulk Power System (Energy Sector). Who We Are At Texas RE, we affect the lives of millions of people by ensuring effective and efficient reduction of risks to the reliability and security of the Bulk Power System within the ERCOT Interconnection. The ERCOT Interconnection is located within the State of Texas and includes approximately 90% of Texas's electric load and 75% of its land area. Texas RE's teams support this this mission while enjoying a flexible work environment, open collaboration, and a culture that values diversity, equity, and inclusion. Employees work a hybrid work schedule consisting of, at least, two days in the office (Tuesdays and Wednesdays) with the option of working three days remotely. Additionally, employees have the option to take advantage of Flexible Friday, where employees may shift working hours to earlier in the week instead of on Friday afternoon. Considered candidates will be required to reside in the Austin-metro area or be able to reliably commute to the office within a reasonable amount of time. Summary of Responsibilities The Critical Infrastructure Protection (CIP) Cyber and Physical Security Analyst is responsible for performing NERC Reliability Standard compliance engagements and other compliance program activities. The position is expected to develop expertise in the areas of information technology, operational technology, security, electrical power industry, professional auditing, and risk-based compliance processes. This position prepares and performs engagements to evaluate NERC registered entities for compliance with the NERC Reliability Standards. This position has significant contact with personnel who manage, operate, plan, and oversee generation, transmission, distribution, and cyber/physical security. This position ensures information obtained is consistent and accurate and prepares documentation and reports for the engaged NERC registered entity, NERC, FERC, Texas RE management, and the Texas RE Board. The CIP Cyber and Physical Security Analyst works independently and in a collaborative team environment while reporting to the Manager, CIP Compliance Monitoring/Director, Compliance Assessments. The CIP Cyber and Physical Security Analyst is also responsible for assisting with efforts to compose guidance, respond to registered entity questions and provide outreach and training. Essential Job Duties Ability to travel up to 30%. Plans, supports, and conducts: Compliance engagements and internal control assessments of NERC registered entities required for security and reliability issues as a subject matter expert. Data analysis and correlation as necessary through statistical, judgmental, and/or mathematical methods. Internal and external training and outreach. Develops, maintains, and delivers: Detailed, accurate, and concise audit workpapers, findings, presentations, and reports. Adherence to departmental procedures and work instructions. Confidentiality and integrity of evidence, findings, reports, and any other records. Efficiently and effectively: Communicates strongly within the organization and externally with stakeholders. Collaborates with the ERO Enterprise and industry on compliance, reliability, and security matters. Works independently, proactively, and productively to ensure all work responsibilities (audits, projects, outreach, etc.) are successfully completed. General Job Requirements Bachelor's degree in Computer Science or Engineering field of study (or six years applicable experience Between 1 to 5 years in excess of degree requirements stated above of progressively responsible experience Problem solving skills Organizational skills Presentation skills Interpersonal, verbal, and written communication skills Willingness to learn, retain, and share technical knowledge and skills. Preferred Job Skills One of the following active certifications: Security: A+, Network+, Security+, Systems Security Certified Practitioner (SSCP), GIAC Critical Infrastructure Protection Certification (GCIP) Audit: Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Risk and Information Systems Control (CRISC) Knowledge of Industrial Control Systems (SCADA, distributed control systems, relays, etc.) and other utility Operational Technology or Information Technology systems. Self-motivated with the ability to manage work objectives efficiently and effectively to meet deadlines. Solutions-driven with the ability to make sound and independent judgment(s). Ability to adhere to strong professional standards when interacting with others. Company Benefits Texas RE pays 100% of employee-only coverage for medical, dental, vision, life and ADD, short-term and long-term disability, and long-term care insurance, as well as the employee assistance program. Additional benefits are offered at a minimal cost to the employee such as dependent medical, dental, voluntary life and ADD for employees, spouses, and children, additional long-term care coverage for family members, legal services and identity protection. Texas RE provides a generous 401(k) or Roth 401(k) savings plan for employees, contributing 10% of an employee's compensation towards the retirement plan with full vesting after three (3) years. Additionally, Texas RE will match 75%, up to 6%, of employee contributions, with vesting at 20% per year and full vesting at five (5) years of employment. Additional Information for Applicants Background checks (including criminal history and drug screening, education and employment verification) will be conducted prior to employment. Certain positions require travel outside the U.S.; valid passport necessary for those positions. Texas RE has restrictions on employee and employee's household members' employment and financial relationships with NERC registered entities. Additional details furnished upon request. Texas RE is committed to attracting top talent from a diverse candidate pool. During the interview process, candidates will meet with a cross-section of Texas RE employees who bring a broad set of perspectives to the discussion. Our inclusive, friendly work environment encourages employees to collaborate across and outside of our organization, while also offering opportunities for personal growth. Our team of professional, technical, and administrative staff derives its collective strength from our varied backgrounds. Texas RE is an equal employment opportunity employer and prohibits discrimination against employees or job applicants on the basis of race, color, sex (including sexual orientation, gender identity/transgender status, and pregnancy), religion, national origin, age (40 or older), disability, veteran status, marital status, genetic information, or other status protected by law.

Join the Clean Energy Revolution Become a Security & Compliance, Senior Specialist at Southern California Edison (SCE) and build a better tomorrow. In this job, you'll support the implementation of business requirements, assists in gap analyses, and contributes to the development of control strategies and risk mitigation efforts. This role helps identify regulatory challenges and opportunities within the current and evolving compliance landscape. The Senior Specialist provides input on new product structures and ensures they align with applicable regulatory requirements. They assist in meeting NERC CIP and Grid compliance obligations, including security reporting and audit preparation. Working under the guidance of the Program Manager, the specialist helps maintain operational efficiency and supports day-to-day compliance with NERC CIP standards. The role involves collaboration with various departments such as Transmission & Distribution, Corporate Security, Generation, Energy Procurement, and Ethics & Compliance to support program deliverables and ensure effective communication with stakeholders. While the work is largely collaborative, the specialist is expected to operate independently within defined responsibilities and contribute to cross-functional compliance initiatives within the Grid Services and IT departments. As a Security & Compliance, Senior Specialist, your work will help power our planet, reduce carbon emissions and create cleaner air for everyone. Are you ready to take on the challenge to help us build the future? **Responsibilities** + Analyzes existing security systems and makes recommendations for changes or improvements + Prepares reports and action plans in the event of a security breech + Ensures regular penetration testing is completed and any findings are remediated in a timely manner + Assists security team by completing tasks of low to medium complexity for projects of various size and scope as assigned by information security leadership + Creates, revises, and maintains high quality written process documents, methods of procedure, knowledge base articles, flowcharts + Monitors day-to-day security logs and traffic and analyzes for network attacks or intrusions + Participates in rollouts of threat and vulnerability management solutions across various business entities; assists program leader with documentation, testing, and validation of deployed scanning solution + Identifies and manages risk to ensure that risks are mitigated, and problems resolved, in relation to meeting relevant commitments + Reviews policies and procedures for compliance with applicable standards and to identify areas of improvement for finding remediation + Maintains cybersecurity procedures and processes as assigned + A material job duty of all positions within the Company is ensuring the protection of all its physical, financial and cybersecurity assets, and properly accessing and managing private customer data, proprietary information, confidential medical records, and other types of highly sensitive information and data with the highest standards of conduct and integrity. **Minimum Qualifications** + Five or more years of experience in information technology, information security and/or cybersecurity. Preferred Qualifications + Bachelor's Degree in Engineering, Business, Information Technology, JD, or related field. + Two or more years of experience working with industry-standard frameworks such as NIST, ITIL, COBIT, CSF, and ISO 27001, supporting cybersecurity, IT governance, or compliance initiatives. + One or more years of experience with regulatory compliance in utility or other industry with exposure to NERC or FERC standards and audit processes. + Two or more years of experience in supporting diverse IT infrastructure and operating systems, with proficiency in basic scripting (e.g., PowerShell, Bash) or advanced Excel skills for automation, reporting, and data analysis. + Should be a good team playes and detail oriented. + CISA, Security+ or any compliance or cyber security certification. Additional Information + This position's work mode is hybrid. The employee will report to an SCE facility for a set number of days with the option to work remotely on the remaining days. Unless otherwise noted, employees are required to work and reside in the state of California. Further details of this work mode will be discussed at the interview stage. The work mode can be changed based on business needs. + Visit our Candidate Resource (************************************************************ page to get meaningful information related to benefits, perks, resources, testing information, hiring process, and more! + Qualified applications with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. + Position will require up to 10% traveling and being out in the field throughout the SCE service territory. + This position has been identified as a NERC/CIP impacted position - Prior to being hired, the successful candidate must pass a Personnel Risk Assessment (PRA) or Background Investigation. Once hired, the candidate must complete specified training prior to gaining un-escorted access to assigned work location and performing necessary job duties. + This position has an option for a 9/80 Alternate Work Schedule or 40hrs/5 days a week. + Relocation does not apply to this position. About Southern California Edison The people at SCE don't just keep the lights on. Our mission is so much bigger. We're fueling the kind of innovation that's changing an entire industry, and quite possibly the planet. Join us and create a future with cleaner energy, while providing our customers with the safety and reliability they demand. At SCE, you'll have a chance to grow personally and professionally, making a real impact in Southern California and around the world. Southern California Edison is a proud Equal Opportunity Employer, including disability and protected veteran status. We are committed to ensuring that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodations at **************.

Client Name: NYC Office Of Technology & Innovation Contract Legth (In Weeks): 104 (2 years) SCOPE OF SERVICES TASKS: Perform many critical functions within the Threat Management discipline including staffing 24x7x365 coverage at the City's Security Operations Center (SOC) augmenting FTE shift schedules including days, nights, weekends, and holidays. Interface with Cyber Command teams internally, with City agencies, vendors, and information -sharing partners. Monitor City networks and security alerts for intrusion, attempted compromise, and anomalous behavior; apply mitigation techniques or escalation factors; correlate threat intelligence across various logs collected by established security controls. Produce routine SOC metrics & reporting. Maintain situation reports (SITREPS) Perform weekly quality control checks. Works closely with SOC Director on incident preparation including the continuous development of new SOC playbooks and runbooks. RequirementsMANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will not be considered Minimum 8 years of experience in Threat Management/SOC/Incident Response environment. For a senior position, leadership this includes the ability to lead and mentor junior analysts, coordinate team activities, and manage SOC operations effectively. Prior experience working in a SOC environment is mandatory. This includes familiarity with SOC operations, procedures, and tools such as SIEM (Security Information and Event Management) systems, intrusion detection/prevention systems (IDS/IPS), and endpoint detection and response (EDR) tools. DESIRABLE SKILLS/EXPERIENCE: Knowledge of cybersecurity principles, practices, and procedures Strong understanding of network and host technologies Experience applying techniques for detecting host and network -based intrusion using IDS methods and technologies. Experience with SIEM technologies, malware analysis and mitigation techniques Apply cybersecurity and privacy principles to organizational requirements (confidentiality, integrity, availability, authentication, non -repudiation) Interpret information collected by diagnostic network tools (Netflow, security event logs, IDS systems, etc.) Ability to investigate and solve complex problems. Excellent communication skills are crucial for effectively communicating security incidents, risks, and recommendations to technical and non -technical stakeholders, including SOC Director and senior management. Threat Hunting: Proactive threat hunting capabilities to identify and investigate potential security threats or anomalies within the environment before they escalate into incidents. Incident Response: Experience in incident response procedures and methodologies, including the ability to analyze security incidents, contain threats, mitigate risks, and recover from security breaches effectively and efficiently.

Under the direction of the Manager, Security Operations, the Security Operations Analyst protects organizational assets by ensuring an effective information security control environment for Memorial Health System. This role is a combination of project management and incident response through identification, analysis, prioritization, communication and mitigation of incidents as they occur. Please note this is a hybrid position and is required to be onsite in Springfield, IL several days per week. On call rotation is for 1 week approximately every 5 weeks. Qualifications Minimum Qualifications: Education: • Bachelor's degree in health information management, Computer Science, Business, Cybersecurity, Health Care, or related discipline required. Four or more years of relevant prior work experience may be considered in lieu of degree. Licensure/Certification/Registry: • Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or similar security related certification preferred. Experience: • Minimum 2 years of security experience required. • Minimum 2 years of compliance experience preferred. • Minimum 2 years of project management experience preferred. • Demonstrated experience with healthcare clinical and financial applications required. • Experience with audit methodologies and control frameworks (such as ISO27001 or NIST) required. • Experience with MS365 Office suite and collaboration tools required. Other Knowledge/Skills/Abilities: • Demonstrated strong communication skills and diplomacy to work between technical and administrative teams at all organizational levels, as well as to write and update concise and accurate documentation. • Demonstrated knowledge of Microsoft Windows systems, administrator and client/server communications protocol, UNIX, Oracle, LDAP, XML and directory administration. Demonstrated knowledge of computer systems, architecture and process flow. • Evidence of leadership, creativity, integrity, and initiative. Evidence of ability to achieve results and inspire others to do the same, personal accountability, and dedication to continue learning and investigating relevant technology required. • Demonstrated planning, problem-solving, decision-making, analytical and change management skills. • Demonstrated ability to maintain confidentiality, professionalism, and trustworthiness. • Demonstrated ability to drive projects forward and achieve objectives aligned with strategic direction, even in the face of stakeholder resistance or ambiguity. • Must be personally motivated to achieve results alone and through others particularly related to providing exceptional customer service. Must be results oriented and be able to manage time appropriately in order to meet assigned goals. Responsibilities Principle Duties & Responsibilities: 1. Performs various daily operational tasks as assigned by Security Operations Manager to ensure the continued security and protection of MH data. 2. Provides ongoing consulting on industry best practices regarding the securing of information assets. 3. Analyzes department processes and identifies security gaps between teams. 4. Documents control gaps; proactively develop plans to address identified gaps with subject matter expert and stakeholder input. 5. Investigate security incidents and breaches 6. Responds to computer security incidents according to the incident response policy and procedures. 7. Coordinate containment, eradication, and recovery efforts 8. Works with business areas to develop, document, and update policies, plans, processes, procedures, and guidance to ensure a safe, effective control environment. 9. Maintains the organizational security control baseline for security-related compliance. 10. Collaborate with vulnerability management teams to assess and remediate risks 11. Embodies the Memorial Health System Performance Excellence Standards of Safety, Courtesy, Quality, and Efficiency that support our mission, vision and values: • SAFETY: We put safety first. We speak up and take action to create an environment of zero harm. We build an inclusive culture where everyone can fully engage. • INTEGRITY: We are accountable for our attitude, actions and health. We honor diverse abilities, beliefs and identities. We respect others by being honest and showing compassion. • QUALITY: We listen to learn and partner for success. We seek continuous improvement while advancing our knowledge. We deliver evidence-based care to achieve excellent outcomes. • STEWARDSHIP: We use resources wisely. We are responsible for delivering equitable care. We work together to coordinate care. 12. Develops, maintains, and tests incident response plans to ensure organizational compliance with required laws and regulations. 13. Supports the Security Operations Manager in continued development and refinement of Disaster Recovery plans 14. Supports security awareness training, working to expose all departments to new and improved processes. 15. Perform triage on incoming alerts to determine severity and relevance, working with system, application, and network owners to explain, remediate, and document as needed The intent of this job description is to provide a representative summary of the major duties and responsibilities performed by incumbents of this job. Incumbents may be requested to perform tasks other than those specifically presented in this description. Not ready to apply? Connect with us for general consideration.

Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients. We are is seeking a full-time Information Security Analyst to support DoD customer. This position is to provide support in the China Lake, CA area. Responsibilities: Serves as a team member providing network monitoring and scanning functions. Provides network vulnerability scanning to ensure IAVA compliance and remediation. Provides antivirus management using antivirus tools. Provides wireless scanning using network detection software. Implements system security policies, and scans Provides Cybersecurity reporting requirements to appropriate authorities. Provides assistance for personnel / users needing information/assistance with Information Assurance (IA) related issues. Directly supports Information Assurance (IA) requirements, within the immediate area of responsibility (AOR), managing and tracking system administrator elevated level of access to network resources. Works with team members to identify IA trends and suggests long-term strategies to help mitigate IA issues. Assesses procedures and identifies opportunities to improve customer service. Champions customer service and sets and monitors parameters for customer service excellence. Qualifications Requirements: Active SECRET clearance Bachelor's Degree in Engineering, Computer Science, or Information Assurance 6 years' additional work experience may be substituted for a Bachelor's Degree Min 3 to 10 years of relevant focused experience Must meet specific certification and training requirements in accordance with DoD 8570.1-M, DoDD 8570.1 Experience and Skills: Excellent oral and written skills. Excellent critical thinking skills. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. Ability to work independently and as a team member

This is a 30 month opportunity on the Hourly-Based IT Services (HBITS) Contract at the State of New York. (Possibility of extension). Required Experience: 84 months experience evaluating information security, privacy, and compliance for Information Technology systems and/or Operational Technology systems. 84 months experience conducting written risk and compliance assessments for security, privacy, and/or Artificial Intelligence using industry standards and frameworks such as NIST, CIS Critical Controls, ISO 27001, etc. 60 months experience triaging and determining mitigation plans (with and without Vendor) to resolve security risks and/or threats to business information systems and operational technology systems 60 months experience evaluating business systems (Commercial Off the Shelf and Custom Developed) for alignment with Information Technology and/or Operational Technology security policies, standards, laws, regulations, and industry best practices. 60 months experience in evaluating security controls for cloud environments 60 months experience working with cross functional teams to mitigate or remediate system and application vulnerabilities 48 months experience in risk management (including third-party), vulnerability management, and security program management 48 months experience in threat assessment and/or Incident Response management for information security and/or operational technology systems. Bachelor's Degree (or higher) in one or more of the following: Information Security, Information Assurance, Cybersecurity, Computer Science, Information Science, Information System Management, Digital Forensics, Compliance and Risk Management One or more of the following certifications: GICSP, GSEC, CISSP, CCSP, CCSK, CompTIA Cloud+, GCSA, CompTIA Network+, CompTIA Security+, CompTIA CySA+, CIPT, CIPP, CIPM, CISSP, CRISC, ISSAP, ISSEP, CGRC, CSSLP, SSCP, or other applicable information and/or cybersecurity, privacy, artificial intelligence, or risk management certifications

Change Mgmt & IT Compliance; Portland, Oregon (US-OR) Hybrid schedule available for Oregon & Washington residents. Regular FT Posting # 5338 About Us: At NW Natural, we offer more than rewarding career opportunities and a vibrant, inclusive work culture. We invite you to join us in providing safe and reliable utility services and renewable energy to better the lives of the communities we serve. Our vision is to be the leader in service excellence, innovation and environmental stewardship for our customers, while building on our strengths as a trusted energy provider and environmental leader for our industry. In addition to environmental stewardship, we're also deeply committed to Diversity, Equity and Inclusion at NW Natural. Our DEI Council started 21 years ago, and today we continue to foster a culture where all employees can experience a sense of belonging, shared purpose and possibility. The Role: NW Natural is recruiting for IT Compliance Analyst I/II/III positions. These positions will be reporting to the IT&S compliance manager and will work closely with IT&S Security and other technical, non-technical teams as well as internal or external auditors. The primary purpose of this position is to ensure Information Technology & Services (IT&S) department is in compliant with state and federal regulations by creating, monitoring, evaluating, and reporting on the effectiveness of operational controls within Information Technology (IT) and Industrial Control System (ICS) environments. Day to Day: * Ensure company complies with all local, state and federal requirements. * Performing and coordinating the testing of key controls, documenting findings, and ensuring controls are effectively designed and operating as intended. * Collaborate with internal and external auditors to facilitate walkthroughs, evidence collection, and remediation tracking. * Assist in the development and maintenance of IT compliance policies, procedures, and control frameworks. * Monitor and report on control deficiencies, remediation plans, and risk mitigation strategies. * Conduct security risk assessments of third-party vendors, including review of SOC reports, security questionnaires, and contractual obligations. * Evaluate vendor responses and identify potential risks or gaps in security controls. * Work with business units and procurement to ensure vendors meet security and compliance standards. * Maintain a centralized repository of vendor assessments and risk ratings. Come on your first day with: Qualifications: * Bachelor's degree in related field or equivalent education/experience. * Understanding of IT systems, applications, networks and databases. * Knowledge of SOX and Operational Controls. * 2 + years of experience in working on a IT compliance program and/or information security program for level 2. More advanced experience required for level 3 including managing more complex tasks, broader responsibilities, and increased autonomy in decision-making or leading initiatives. * Familiarity with SOX, NIST, ISO 27001, or similar regulatory frameworks. * Experience with third-party risk management tools and processes. * Analytical, communication, and organizational skills. * Ability to work independently and collaboratively in a fast-paced environment. * Understanding of assessing and designing internal and security controls. * Experience in developing and submitting audit and compliance reports to governing. * Understanding of cloud security and modern IT environments. Recommended: * Experience in planning, organizing, and developing information technology policies, procedures, and practices. * Ability to propose creative solutions to successfully remediate identified compliance issues. * Certifications in one or more of the following areas preferred: CISA, CRISC, CISSP, and CISM. What we offer: Health & Wellness - * Rich health insurance benefits with competitive employer contribution * Free access to an online wellness resources platform Work Life Balance - * Up to 23 Vacation Days * 80 Hours of Sick Time * 10 paid holidays and 3 floating holidays * Flexible work arrangements * 3 weeks paid parental leave * Green Team / Diversity, Equity & Inclusion Council / Safety Team / Women's Network and many other Employee Resource Groups * 1500 sq foot exercise facility and secure bike room Financial - * Meaningful annual incentive bonus opportunity in addition to base salary * Competitive 401K company contribution and match * 15% discount on NW Natural stock through Employee Stock Purchase Program * Up to $5250 a year in tuition reimbursement * Wellness incentive program Discounts - * 20% off natural gas service * Up to 30% discount at NW Natural Appliance Center * TriMet Pass for all HQ employees * Generous discounts with Verizon & AT&T Wireless Base salary range: $86,500.00 - $123,250.00 (Level 2) or $96,000.00 - $136,800.00 (Level 3) per year, depending on qualifications Annual Target Incentive: Level 2, 9.5% target Level 3, 9.5% target Targets are calculated using eligible earnings during plan year participation. Payout, if earned, is based on company and individual performance for each plan year and may range from 0% - 200% of target. Targets are subject to change in subsequent plan years. Must be employed by September 30 in order to receive any prorated payout. Application Process: To be considered for this position, submit a complete electronic application including cover letter and resume via our website. ****************************************************** Deadline: 1/5/26 Disclosure: We are a drug free workplace and we comply with Federal Drug Free Workplace Act and Department of Transportation regulations. NW Natural participates in E-Verify. Individuals hired will have their Form I-9 information submitted to E-Verify. E-Verify is an Internet-based system that compares information from an employee's Form I-9, Employment Eligibility Verification, to data from U.S. Department of Homeland Security and Social Security Administration records to confirm employment eligibility. All applications must be submitted through NW Natural's Electronic Application System. Resumes submitted via email, fax or mail will not be accepted in lieu of an electronic application. NW Natural is proud to be an equal opportunity employer. We welcome and embrace our candidates' diversity and take affirmative action to employ and advance individuals without discrimination on the basis of race, color, sex, gender identity or expression, sexual orientation, religion, age, physical or mental disability, veteran status, pregnancy (including childbirth or related medical conditions), national origin, marital status, genetic information, and all other legally protected characteristics. We forbid discrimination and harassment in the workplace based on any protected status or characteristic. A criminal history is not an automatic bar to employment with NW Natural. Instead, we make individualized assessments regarding qualifications and backgrounds. NW Natural is also committed to providing reasonable accommodations for individuals with disabilities, individuals with sincerely held religious beliefs, and disabled veterans in our job application procedures. If you need assistance or an accommodation as part of the application process, please contact us at ************************ or **************. NW Natural does not accept unsolicited submissions or assistance from search firms for posted positions. Resumes submitted by search firms working under a valid and current written contract with NW Natural valid written Statement of Work in place for this position from NW Natural HR/Employment will be deemed the sole property of NW Natural. No fee will be paid in the event the candidate is hired by NW Natural as a result of the referral or through other means.

Responsibilities: Assists the Information System Security Managers (ISSM) in executing their duties and responsibilities. Ensures compliance with all cybersecurity policies. Ensures relevant Cybersecurity (CS) policy and procedural documentation is current and accessible to properly authorized individuals. Coordinates cybersecurity processes and activities for assigned systems. Maintains and reports Assess Only (AO) and Assessment and Authorization (A&A) status to Program Managers, Information System Owners, and ISSMs. Provides oversight of Security Plans for assigned systems throughout their lifecycle. Manages and maintains Plan of Actions and Milestones (POA&M), ensuring vulnerabilities are properly tracked, mitigated, and where possible, remediated. Assists with the identification of security control baselines and applicable overlays. Coordinates the validation of security controls with Navy Qualified Validators (NQV). Performs Risk Management Framework (RMF) Standard Operating Procedure (SOP) reviews. Adjudicates findings from Package Submitting Officer (PSO). Registers and maintains systems in Enterprise Mission Assurance Support Service (eMASS). Plans and coordinates security control testing during Risk Assessments and Annual Security Reviews. Reports changes in system security posture to the ISSM. Ensures the execution of Continuous Monitoring related requirements as defined in the System Level Continuous Monitoring (SLCM) Strategy. Reviews all data produced by Continuous Monitoring activities, updates the eMASS record as necessary, and escalates to leadership for action, if required. Correlates findings from non-RMF vulnerability assessments, penetration testing, Command Cyber Operational Readiness Inspection (CCORI), etc.) to RMF controls for tracking, ensuring a holistic risk assessment. Participates in change control and configuration management processes. Maintains vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Education: Bachelors degree in computer science, information technology, communications systems management, or an equivalent science, technology, engineering & mathematics (STEM) degree from an accredited institution as recognized by the U.S. Department of Education Experience: Six (6) years of DoD experience coordinating and enacting required security changes, within various levels of an organization, ensuring compliance with published policies; conducting cybersecurity vulnerability and threat analysis; and support cyber incident response by isolating potentially effected assets, initial investigation and data collection, through status updates/reporting. Minimum Certification Requirement: CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, or HCISPP is required. Other: An Active Secret Security Clearance is required. Benefits Information: We offer a generous benefits package including a 401k with employer match. Full time employees are also eligible for family medical, dental and vision benefits; as well as ancillary benefits including life and accidental death and dismemberment insurance; short- and long-term disability; flexible spending accounts; long-term care insurance; and accident, hospital, and critical illness insurance. Full-time employees are also eligible for 2 weeks vacation leave accrual per year (this accrual increase as tenure with company increases), 7 days sick leave, and 11 paid holidays, with additional leave time available for bereavement, jury duty, and military training days throughout the year.

Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients. We are is seeking a full-time Information Security Analyst to support DoD customer. This position is to provide support in the China Lake, CA area. Responsibilities: Serves as a team member providing network monitoring and scanning functions. Provides network vulnerability scanning to ensure IAVA compliance and remediation. Provides antivirus management using antivirus tools. Provides wireless scanning using network detection software. Implements system security policies, and scans Provides Cybersecurity reporting requirements to appropriate authorities. Provides assistance for personnel / users needing information/assistance with Information Assurance (IA) related issues. Directly supports Information Assurance (IA) requirements, within the immediate area of responsibility (AOR), managing and tracking system administrator elevated level of access to network resources. Works with team members to identify IA trends and suggests long-term strategies to help mitigate IA issues. Assesses procedures and identifies opportunities to improve customer service. Champions customer service and sets and monitors parameters for customer service excellence Oversee the efforts of less senior staff and/or be responsible for the efforts of all staff assigned to a specific job Qualifications Requirements: Active SECRET clearance Master's Degree in Engineering, Computer Science, or Information Assurance 6 Bachelor's Degree plus 4 years' additional experience years' additional work experience may be substituted for a Master's Degree Min 10 years of relevant focused experience Must meet specific certification and training requirements in accordance with DoD 8570.1-M, DoDD 8570.1 Experience and Skills: Excellent oral and written skills. Excellent critical thinking skills. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. Ability to work independently and as a team member

Full-time Description CI Cyber Threat Analyst Level IV Primary Location: Springfield, VA and St. Louis, MO Clearance: Active TS/SCI Ability to work remotely: No The Senior CI Cyber Threat Analyst will ensure all required reports are complete with minimal errors and that all processes, activities, and reports are conducted within established timeframes. The analyst will ensure team members are trained in and follow current standard operating procedures while contributing to annual production requirements including weekly, monthly, quarterly, and annual cyber threat reports. Specific Responsibilities Produce weekly actionable Technical CI (Cyber) status reports in collaboration with teammates, NGA partners and intelligence community peers; provide relevant input for 36 weekly cyber status reports due NLT 0800 each Monday morning Produce monthly Technical CI threat reports for non-quarterly/non-annual report months; provide relevant input for 8 monthly reports due NLT 5th day of each applicable month Produce quarterly Technical CI threat reports in collaboration with teammates, NGA partners and Intelligence Community peers; provide relevant input for three quarterly reports due NLT 5th day of January, April, and July Produce relevant input to the CI Cyber Branch annual Cyber Threat Assessment in collaboration with teammates, NGA partners and Intelligence Community peers; annual assessment due NLT 11 December Produce a minimum of 9 Intelligence Information Reports (IIRs) within the fiscal year from data collected by the Technical CI team, NGA cybersecurity personnel, or partner agencies Perform inquiries of anomalous activity using automated investigative tools (e.g., M3, Palantir, TAC, ARCSIGHT, RSA Security Analytics, CCD, QLIX, TIDE or Criss Cross) Provide Technical CI advice and expertise in support of CI inquiries, operations and issues Develop leads by detecting anomalous activity, conducting open source and classified research, and liaison with internal and external partners Conduct research, evaluate collection, and perform analysis on Technical CI intelligence topics of interest to leadership, analysts and customers Demonstrate ability to draw high-quality, appropriate and objective conclusions from information in a timely manner Research, analyze, and synthesize All-Source data to identify patterns, commonalities, and linkages Demonstrate current subject matter expertise on Technical CI issues, threats and trends (e.g., Cyber threats and Technical Surveillance threats) Demonstrate proficiency in bottom-line-up-front (BLUF) writing and produce clearly written, properly sourced and grammatically correct intelligence products that adhere to established style guide and template standards Display ability to collaborate with internal NGA and external IC/Cyber community members Coordinate CI Cyber activities originating from Enterprise Incident Response Events Conduct liaison between CI Office, Insider Threat, Cyber Security Operations Center (CSOC), other NGA Offices, and IC/DoD partners as applicable to the CI Cyber Mission Perform threat analysis, threat forecasts, threat alerts, and recommend countermeasures Requirements Required Qualifications Minimum of 11 years Threat Analysis experience, of which at least 5 years include Technical Threat Analysis experience or cyber investigations Possess or obtain DoD 8570.01-M Information Assurance (IA) II certification within one calendar year of assignment at the sole expense of the vendor Active TS/SCI clearance required Desired Qualifications Credentialed graduate of an accredited federal or DoD CI training academy Bachelor's degree in science, Technology, Engineering or Mathematics disciplines Post-graduate degree in Science, Technology, Engineering, or Mathematics disciplines Knowledge and understanding of foreign adversaries' security and intelligence services, terrorist organizations, and threats posed to US Government Experience translating Government vision into understandable and achievable measures Experience using supervisory skills to coach teammates to achieve objectives Ability to monitor and track progress towards achievable measures Physical Requirements and Work Environment Standard office environment with extended periods of computer work Travel Minimal travel may be required Company Description Obsidian Solutions Group LLC (OSG) is a fast-growing professional services firm based in Fredericksburg, VA. We create value for our customers by delivering technology-enabled & mission-oriented technical solutions that solve complex problems, protecting people, information, and assets. Our core capabilities are in providing Enterprise IT, Intelligence Analysis, Production & Development and Knowledge-Based Professional Services Solutions that enable the customer's mission. Obsidian Solutions Group LLC is a certified 8(a), service-disabled, veteran-owned small business. A career at Obsidian Solutions Group means you are able to put your expertise, credentials, and talents to great use working with customers in the DOD and Intelligence Community, while enjoying the excitement of working in a fast-growing organization committed to making a difference for our customers and in our community. Contribute independently and collaboratively alongside our amazing team of doers and thinkers. Obsidian Solutions Group is small enough to offer a family atmosphere yet large enough to deliver a highly competitive compensation package. We hire and retain the best in the industry, offering exceptional benefits that protect the well-being of our employees, their spouses and domestic partners, and their families. Our corporate philosophy is centered on hiring and retaining employees with the requisite skills, professional experience, personal commitment, and ethical standards necessary to foster a culture of operational excellence necessary to surpass our customer's expectations. Disclaimer The above information on this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Obsidian Solutions Group is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, parental status, protected veteran status, and any other non-merit factor, or any other characteristic protected by law.

Job DescriptionDescription: CI Cyber Threat Analyst Level IV Primary Location: Springfield, VA and St. Louis, MO Clearance: Active TS/SCI Ability to work remotely: No The Senior CI Cyber Threat Analyst will ensure all required reports are complete with minimal errors and that all processes, activities, and reports are conducted within established timeframes. The analyst will ensure team members are trained in and follow current standard operating procedures while contributing to annual production requirements including weekly, monthly, quarterly, and annual cyber threat reports. Specific Responsibilities Produce weekly actionable Technical CI (Cyber) status reports in collaboration with teammates, NGA partners and intelligence community peers; provide relevant input for 36 weekly cyber status reports due NLT 0800 each Monday morning Produce monthly Technical CI threat reports for non-quarterly/non-annual report months; provide relevant input for 8 monthly reports due NLT 5th day of each applicable month Produce quarterly Technical CI threat reports in collaboration with teammates, NGA partners and Intelligence Community peers; provide relevant input for three quarterly reports due NLT 5th day of January, April, and July Produce relevant input to the CI Cyber Branch annual Cyber Threat Assessment in collaboration with teammates, NGA partners and Intelligence Community peers; annual assessment due NLT 11 December Produce a minimum of 9 Intelligence Information Reports (IIRs) within the fiscal year from data collected by the Technical CI team, NGA cybersecurity personnel, or partner agencies Perform inquiries of anomalous activity using automated investigative tools (e.g., M3, Palantir, TAC, ARCSIGHT, RSA Security Analytics, CCD, QLIX, TIDE or Criss Cross) Provide Technical CI advice and expertise in support of CI inquiries, operations and issues Develop leads by detecting anomalous activity, conducting open source and classified research, and liaison with internal and external partners Conduct research, evaluate collection, and perform analysis on Technical CI intelligence topics of interest to leadership, analysts and customers Demonstrate ability to draw high-quality, appropriate and objective conclusions from information in a timely manner Research, analyze, and synthesize All-Source data to identify patterns, commonalities, and linkages Demonstrate current subject matter expertise on Technical CI issues, threats and trends (e.g., Cyber threats and Technical Surveillance threats) Demonstrate proficiency in bottom-line-up-front (BLUF) writing and produce clearly written, properly sourced and grammatically correct intelligence products that adhere to established style guide and template standards Display ability to collaborate with internal NGA and external IC/Cyber community members Coordinate CI Cyber activities originating from Enterprise Incident Response Events Conduct liaison between CI Office, Insider Threat, Cyber Security Operations Center (CSOC), other NGA Offices, and IC/DoD partners as applicable to the CI Cyber Mission Perform threat analysis, threat forecasts, threat alerts, and recommend countermeasures Requirements: Required Qualifications Minimum of 11 years Threat Analysis experience, of which at least 5 years include Technical Threat Analysis experience or cyber investigations Possess or obtain DoD 8570.01-M Information Assurance (IA) II certification within one calendar year of assignment at the sole expense of the vendor Active TS/SCI clearance required Desired Qualifications Credentialed graduate of an accredited federal or DoD CI training academy Bachelor's degree in science, Technology, Engineering or Mathematics disciplines Post-graduate degree in Science, Technology, Engineering, or Mathematics disciplines Knowledge and understanding of foreign adversaries' security and intelligence services, terrorist organizations, and threats posed to US Government Experience translating Government vision into understandable and achievable measures Experience using supervisory skills to coach teammates to achieve objectives Ability to monitor and track progress towards achievable measures Physical Requirements and Work Environment Standard office environment with extended periods of computer work Travel Minimal travel may be required Company Description Obsidian Solutions Group LLC (OSG) is a fast-growing professional services firm based in Fredericksburg, VA. We create value for our customers by delivering technology-enabled & mission-oriented technical solutions that solve complex problems, protecting people, information, and assets. Our core capabilities are in providing Enterprise IT, Intelligence Analysis, Production & Development and Knowledge-Based Professional Services Solutions that enable the customer's mission. Obsidian Solutions Group LLC is a certified 8(a), service-disabled, veteran-owned small business. A career at Obsidian Solutions Group means you are able to put your expertise, credentials, and talents to great use working with customers in the DOD and Intelligence Community, while enjoying the excitement of working in a fast-growing organization committed to making a difference for our customers and in our community. Contribute independently and collaboratively alongside our amazing team of doers and thinkers. Obsidian Solutions Group is small enough to offer a family atmosphere yet large enough to deliver a highly competitive compensation package. We hire and retain the best in the industry, offering exceptional benefits that protect the well-being of our employees, their spouses and domestic partners, and their families. Our corporate philosophy is centered on hiring and retaining employees with the requisite skills, professional experience, personal commitment, and ethical standards necessary to foster a culture of operational excellence necessary to surpass our customer's expectations. Disclaimer The above information on this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Obsidian Solutions Group is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy and gender identity), national origin, political affiliation, sexual orientation, marital status, disability, genetic information, age, membership in an employee organization, parental status, protected veteran status, and any other non-merit factor, or any other characteristic protected by law.

GardaWorld Security Services is Now Hiring a GSOC Security Dispatcher! Ready to suit up as a GSOC Analyst in MT Laurel NJ? New Jersey SORA License Required We are seeking a detail-oriented and reliable Security Dispatcher to join our security operations team. The Security Dispatcher will play a critical role in ensuring the safety and security of personnel, property, and assets by monitoring security systems, coordinating responses, and maintaining clear communication with on-site staff and law enforcement when necessary. What matters most about a role like this is your sharp eye, capturing every detail as you scan a series of screens. Tell us about your strong observation skills with attention to detail. As a Dispatch Operator, you will be the person spotting threats before they escalate in a security operations center (SOC, GSOC, Command Center) Qualifications of a GSOC Analyst * You have a minimum of 1-year of experience in the Global Security Operations Center (GSOC), central station monitoring operations, Dispatch or equivalent. * You have a bachelor's degree or an associate degree with progressive experience preferred * You have shift work experience in a 24-hour operation. * If you have Security, Military, Law Enforcement experience - even better! What's in it for you: * Set schedule 1 - Third Shift, 12AM-8AM. Rotating Days off. (40 Hours Per Week) * Set schedule 2 - Second Shift, 4PM-12AM. Rotating Days Off. (40 Hours Per Week) * Location: Mt Laurel, New Jersey * ACTIVE NJ SORA License Required. * Competitive hourly wage of $23.00 / hour * A comprehensive benefits package including medical, dental, and vision insurance plans, a 401(k) retirement savings plan with employer matching contributions, paid time off (PTO) policy, paid holidays, disability coverage, and life insurance options * Career growth opportunities at GardaWorld * Uniforms provided at no cost Responsibilities of a GSOC Security Analyst * Monitors for and identifies threats, trends, and incidents that could negatively impact the security of client personnel, facilities, operations, and reputation. * Monitor CCTV systems to detect and respond to unusual or suspicious activity. * Dispatch security officers and field personnel via radio, phone, and other communication platforms. * Maintain accurate logs of calls, incidents, and officer activity throughout the shift. * Prioritize and coordinate responses to emergencies, alarms, and service requests. * Assist with access control and provide support to on-site security teams. * Communicate effectively with clients, visitors, and employees in a professional manner. * Prepare and submit daily reports detailing shift activity, incidents, and responses. * Collaborate with supervisors and management to ensure compliance with safety and security protocols. * Responsible for detailed report writing that will involve a general understanding of critical incident escalation. * Handles sensitive and confidential information with limited supervision. * Consults with all risk functions in the development and documentation of policies, procedures, and controls, for all department processes. * Coordinates security guards and paid police details as needed. * Actively monitors and facilitates the occurrence of security-related incidents. * Assesses threats based on incoming data and makes decisions based on findings. * Participates in numerous Physical Security projects including Physical Security technology, employee photo identification, card access, video monitoring, and retrieval. * Monitors access control systems and acts in response to an alarm, breach, or malfunction. * Appropriately responds to security operations notifications and requests made by internal and external parties. * Liaises with emergency medical services, the fire department, and law enforcement in the event of an emergency. * Supports onsite contract security staff. * Conducts open-source research to answer specific questions and develops intelligence products. Skills of a GSOC Security Analyst: * Strong Customer service and communication; Call center/phone experience preferred. * Previous experience in security, dispatch, or a related field preferred. * Familiarity with CCTV monitoring and security operations. * Experience with Genetec (or other access control/video management software) preferred but not required. * Strong verbal and written communication skills. * Ability to remain calm and make quick decisions under pressure. * Proficient in multitasking and maintaining attention to detail in a fast-paced environment. * Basic computer literacy, including Microsoft Office Suite. * Strong documentation, investigative, and report-writing skills. * Intermediate computer skills * Google suite, Ontic, Motorola Wave, Genetec, and Oncloud preferred * Strong attention to detail * Demonstrated proficiency with Microsoft Office and other PC-based programs * Internal Personal presence, intellect, energy, and drive to succeed in a high-performance environment * Comfortable with ambiguity and working with large amounts of data and information * Ability to prioritize tasks while working with competing priorities * Ability to collaborate in and support a team environment * Ability to work independently * Ability to plan and successfully complete tasks within specified timelines * Ability to solve problems Physical Requirements of a Security Control Center Operator * Ability to continuously perform multiple tasks, operate standard office equipment and respond quickly to sounds * Ability to occasionally sit, stand, walk, squat, bend, reach forward, and/or move safely in confined spaces * The ability to occasionally lift and/or carry weight under 25 lbs. * Ability to read, write, and comprehend instructions on a regular basis * Ability to apply common sense reasoning to handle problems involving standardized situations * Ability to problem solve basic mathematical problems including addition, subtraction, multiplication, and division. In the United States, GardaWorld Security remains the only guarding security company to be Certified by Great Place to Work. Apply today - this could be more than a job! 26% of our corporate employees started as frontline workers. If you're ambitious with an entrepreneurial spirit - someone who wants to be a GardaWorld Ambassador - a promising career awaits you! GardaWorld Security is a global champion in sophisticated and tailored security solutions, employing and training highly skilled and dedicated professionals across the globe. Not the job for you? Make sure to check out all our jobs! We also have tactical, concierge, and even casual roles available. It is the policy of GardaWorld Security Services to provide equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, veteran status, or disability in accordance with applicable federal laws. In addition, GardaWorld Security Services complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment including, but not limited to hiring, placement, assignment, promotion, termination, layoffs, recalls, transfers, leaves of absence, compensation, and training. It is also the policy of GardaWorld Security Services not to honor requests that employees be assigned on the basis of sex or any other classification protected by law, unless such request is based on a bona fide occupational qualification for that assignment. CP-51-MD-0000581-2018 Qualifications Education

Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Information Systems Security Engineer II (ISSE II). This position is an exempt role that will provide on-site support at the government customer's area of operation in the Philadelphia, PA location. --------------------------------------- ACTIVE SECRET CLEARANCE REQUIRED ------------------------------ RESPONSIBILIES Assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans, which include System Categorization Forms, Platform Information Technology (PIT) Determination Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). Identify and tailor IT and Cyber Security (CS) control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements. Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). Develop and maintain system level IT and CS policies and procedures for respective RMF boundaries in accordance with guidance provided by the command ISSMs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. Assist with removal of Solid-State Drive (SSD), Hard Disk Drive (HDD) or other critical components of assets before destruction and removal from the RMF boundary. Support configuration change documentation and control processes and maintaining DOD STIG Compliance. Support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware; This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. Report compliance issues of network hardware to management to avoid operational loss of the network. EXPERIENCE AND EDUCATION REQUIREMENTS: Secret security clearance required Bachelor's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university. Minimum three (3) years professional relevant experience Must Meet DoD IAT-II level Certification Requirements: At a minimum one (1) of the following certifications: CCNA-Security, CySA+, GICSP, GSEC, Security+/CE, CND, GCIH, SSCP

Job Description Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Information Systems Security Engineer II (ISSE II). This position is an exempt role that will provide on-site support at the government customer's area of operation in the Philadelphia, PA location. --------------------------------------- ACTIVE SECRET CLEARANCE REQUIRED ------------------------------ RESPONSIBILIES Assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans, which include System Categorization Forms, Platform Information Technology (PIT) Determination Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). Identify and tailor IT and Cyber Security (CS) control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements. Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). Develop and maintain system level IT and CS policies and procedures for respective RMF boundaries in accordance with guidance provided by the command ISSMs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. Assist with removal of Solid-State Drive (SSD), Hard Disk Drive (HDD) or other critical components of assets before destruction and removal from the RMF boundary. Support configuration change documentation and control processes and maintaining DOD STIG Compliance. Support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware; This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. Report compliance issues of network hardware to management to avoid operational loss of the network. EXPERIENCE AND EDUCATION REQUIREMENTS: Secret security clearance required Bachelor's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university. Minimum three (3) years professional relevant experience Must Meet DoD IAT-II level Certification Requirements: At a minimum one (1) of the following certifications: CCNA-Security, CySA+, GICSP, GSEC, Security+/CE, CND, GCIH, SSCP

Dynamic Solutions Technology, LLC, a premier strategic services firm that meets IT and Service needs for commercial and government clients, is seeking a full-time Information Systems Security Engineer III (ISSE III). This position is an exempt role that support will be provided on site in the government customer's area of operation in the Philadelphia, PA location. ----------------------------------------------------- Active Secret Clearance Required -------------------------------------- RESPONSIBILIES Assist with the developing, maintaining, and tracking Risk Management Framework (RMF) system security plans, which include System Categorization Forms, Platform Information Technology (PIT) Determination Checklists, Assess Only (AO) Determination Checklists, Implementation Plans, System Level Continuous Monitoring (SLCM) Strategies, System Level Policies, Hardware Lists, Software List, System Diagrams, Privacy Impact Assessments (PIA), and Plans of Action and Milestones (POA&M). Execute the RMF process in support of obtaining and maintaining Interim Authority to Test (IATT), AO approval, Authorization to Operate (ATO), and Denial of Authorization to Operate (DATO). Identify and tailor IT and Cyber Security (CS) control baselines based on RMF guidelines and categorization of the RMF boundary. Perform Ports, Protocols, and Services Management (PPSM). Perform IT and CS vulnerability-level risk assessments. Execute security control testing as required by a risk assessment or annual security review (ASR). Mitigate and remediate IT and CS system level vulnerabilities for all assets within the boundary per STIG requirements. Develop and maintain Plans of Actions and Milestones (POA&M) in Enterprise Mission Assurance Support Service (eMASS). Develop and maintain system level IT and CS policies and procedures for respective RMF boundaries in accordance with guidance provided by the command ISSMs. Implement and assess STIG and SRGs. Perform and develop vulnerability assessments with automated tools such as Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Compliance Check (SCC) and Evaluate STIG. Deploy security updates to Information System components. Perform routine audits of IT system hardware and software components. Maintain inventory of Information System components. Participate in IT change control and configuration management processes. Upload vulnerability data in Vulnerability Remediation Asset Manager (VRAM). Image or re-image assets that are part of the assigned RMF boundary. Install software and troubleshoot software issues as necessary to support compliance of the RMF boundaries' assets. Assist with removal of Solid-State Drive (SSD), Hard Disk Drive (HDD) or other critical components of assets before destruction and removal from the RMF boundary. Support configuration change documentation and control processes and maintaining DOD STIG Compliance. Support cyber compliance of assets that are part of an enterprise IT network to include Windows server and CISCO networking hardware; This includes assessing vulnerabilities, patching and meeting requirements of the STIG for the hardware. Report compliance issues of network hardware to management to avoid operational loss of the network. EXPERIENCE AND EDUCATION REQUIREMENTS: Secret security clearance required Bachelor's degree in computer science, information technology, or an equivalent STEM l degree from an accredited college or university. Minimum Seven (7) years professional relevant experience Must Meet DoD IAT-III level Certification Requirements: At a minimum 2-3 of one of the following certifications: CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP Experience and Skills: Excellent oral and written skills. Excellent critical thinking skills. Proficient in Microsoft applications such as Word, Excel, PowerPoint, and Outlook. Ability to work independently and as a team member Ability to learn and apply technical concepts to assigned duties