• Analyst/Sr Analyst, Compensation  

    - Dallas County
    IntroAre you ready to explore a world of possibilities, both at work a... Read More
    IntroAre you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you’ll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!Why you'll love this jobThe Analyst, Compensation is a member of the Global Compensation, Mobility, and People Support team within the People Division. This role supports the design, implementation, and administration of the company’s compensation programs. The Analyst takes a consultative approach to supporting business units, partnering closely with HR and operational leaders to provide strategic guidance, data-driven insights, and market-informed recommendations.What you'll doServes as a trusted advisor to HR and business leaders on compensation matters, providing consultative support for hiring, promotions, organizational design, and compensation decisionsPerforms compensation analyses and job evaluations to support business decisions and maintain internal equity.Develops and delivers clear, data-driven compensation recommendations tailored to specific business contextsAssists with annual compensation processes, including merit planning, salary structure adjustments, and incentive plan administrationParticipates in salary surveys and uses market data to price jobs and benchmark compensation practices against the external market.Contributes to the development and refinement of pay structures and compensation modelsConducts develops and maintains job descriptions, and ensures alignment with internal structures and market benchmarksPrepares reports, dashboards, and ad hoc analyses to inform decision-making and track compensation trendsCreates one-page learning tools, presentation materials, and communications to explain compensation programs and updates to business audiencesParticipates in compensation-related system testing, process improvements, and policy developmentEnsures compliance with internal policies and external regulations related to compensationAbility to travel to represent the Company at airline industry conferences or to meet/work with Compensation and Human Resource counterparts, as neededAll you'll need for successMinimum Qualifications- Education & Prior Job ExperienceBachelor’s Degree in related field or equivalent experience/training3+ years of experience in Compensation, Finance, or similar analytical rolePrior experience managing multiple projects concurrently while providing strong customer servicePreferred Qualifications- Education & Prior Job ExperienceExperience presenting to leadershipFamiliarity with operational environments (e.g., airport, maintenance, flight operationsSkills, Licenses & CertificationsKnowledge of Microsoft Office to include Word, Excel, PowerPoint, Access, etc.Effective communicator with ability to translate data into actionable insightsWork experience in analytical roleAdvanced Excel skillsHigh level of professionalism, discretion and objectivityAbility to apply appropriate judgment and discretion in completing work assignments to ensure confidentiality of  employee compensation dataDetail-oriented with ability to work in fast-paced environmentWhat you'll getFeel free to take advantage of all that American Airlines has to offer: Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.Health Benefits: On day one, you’ll have access to your health, dental, prescription and vision benefits to help you stay well. And that’s just the start, we also offer virtual doctor visits, flexible spending accounts and more. Wellness Programs: We want you to be the best version of yourself – that’s why our wellness programs provide you with all the right tools, resources and support you need.401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and moreFeel free to be yourself at AmericanFrom the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life’s journey? Feel free to be yourself at American. Read Less
  • Analyst/Sr Analyst, Executive Compensation  

    - Dallas County
    IntroAre you ready to explore a world of possibilities, both at work a... Read More
    IntroAre you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you’ll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!Why you'll love this jobThe Analyst/Senior Analyst, Executive Compensation is part of the Global Compensation, Mobility, and People Support team within the People Division. This role is responsible for supporting the operational execution of executive compensation programs, with a focus on severance administration, reporting, compliance, and vendor coordination. The position plays a key role in ensuring accurate and timely processing of compensation-related activities, including financial services reimbursements, and supports the development and implementation of compensation policies and procedures. What you'll doAs noted above, this list is intended to reflect the current job but there may be additional essential functions (and certainly non-essential job functions) that are not referenced.  Management will modify the job or require other tasks be performed whenever it is deemed appropriate to do so, observing, of course, any legal obligations including any collective bargaining obligations.Serve as a strategic advisor to senior HR and business leaders on executive compensation matters, including base pay, annual and long-term incentives, equity programs, and executive employment agreementsConduct complex compensation analyses and benchmarking for executive roles using proprietary and third-party data sources to ensure market competitiveness and internal equityDevelop and present data-driven executive compensation recommendations aligned with business strategy, performance outcomes, and shareholder expectationsSupport the design and administration of executive compensation programs, including annual and long-term incentive plans, performance metrics, and payout modelingPartner with Legal, Finance, and Investor Relations to ensure compliance with regulatory requirements and alignment with governance best practicesPrepare materials for senior leadership, Compensation Committee meetings, and Board presentations, including pay-for-performance analyses, peer benchmarking, and scenario modelingParticipate in executive-level compensation surveys and maintain a deep understanding of market trends, regulatory developments, and proxy advisor perspectivesContribute to the development and refinement of executive pay structures, incentive frameworks, and compensation philosophiesDraft and maintain executive job descriptions and ensure alignment with internal leveling frameworks and external benchmarksCreate executive-focused communication materials and tools to support transparency and understanding of compensation programsSupport executive compensation-related system testing, process improvements, and policy developmentEnsure strict confidentiality and compliance with internal policies and external regulations related to executive payRepresent the company at industry conferences and collaborate with executive compensation peers across the airline and broader corporate sectorsAll you'll need for successMinimum Qualifications- Education & Prior Job ExperienceBachelor’s degree in Human Resources, Finance, Business, or related field 3+ years of experience in executive compensation, compensation consulting, or a related analytical roleExperience supporting or preparing materials for senior leadership or Compensation CommitteesPreferred Qualifications- Education & Prior Job ExperiencePreference for 5+ years of compensation experienceExperience in a publicly traded company or with executive compensation governanceFamiliarity with equity compensation, performance-based incentive design, and regulatory filings (e.g., CD&A, proxy statements)Exposure to operational environments (e.g., airline, logistics, or other complex industries)Skills, Licenses & CertificationsExperience benchmarking/market pricing and/or utilizing market data to formulate recommendationsExperience leading and implementing annual pay plansAbility to translate complex data into understandable components for non-executive audiencesAdvanced Excel and strong analytical skills; experience with equity modeling tools a plusStrong communication and presentation skills, with the ability to translate complex data into executive-ready insightsHigh level of professionalism, discretion, and judgment in handling sensitive compensation dataDetail-oriented with the ability to manage multiple priorities in a fast-paced, high-stakes environmentWhat you'll getFeel free to take advantage of all that American Airlines has to offer: Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.Health Benefits: On day one, you’ll have access to your health, dental, prescription and vision benefits to help you stay well. And that’s just the start, we also offer virtual doctor visits, flexible spending accounts and more. Wellness Programs: We want you to be the best version of yourself – that’s why our wellness programs provide you with all the right tools, resources and support you need.401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and moreFeel free to be yourself at AmericanFrom the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life’s journey? Feel free to be yourself at American. Read Less
  • Analyst/Sr Analyst, Compensation  

    - Dallas County
    IntroAre you ready to explore a world of possibilities, both at work a... Read More
    IntroAre you ready to explore a world of possibilities, both at work and during your time off? Join our American Airlines family, and you’ll travel the world, grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life. Feel free to enrich both your personal and work life and hop on board!Why you'll love this jobThe Analyst, Compensation is a member of the Global Compensation, Mobility, and People Support team within the People Division. This role supports the design, implementation, and administration of the company’s compensation programs. The Analyst takes a consultative approach to supporting business units, partnering closely with HR and operational leaders to provide strategic guidance, data-driven insights, and market-informed recommendations.What you'll doServes as a trusted advisor to HR and business leaders on compensation matters, providing consultative support for hiring, promotions, organizational design, and compensation decisionsPerforms compensation analyses and job evaluations to support business decisions and maintain internal equity.Develops and delivers clear, data-driven compensation recommendations tailored to specific business contextsAssists with annual compensation processes, including merit planning, salary structure adjustments, and incentive plan administrationParticipates in salary surveys and uses market data to price jobs and benchmark compensation practices against the external market.Contributes to the development and refinement of pay structures and compensation modelsConducts develops and maintains job descriptions, and ensures alignment with internal structures and market benchmarksPrepares reports, dashboards, and ad hoc analyses to inform decision-making and track compensation trendsCreates one-page learning tools, presentation materials, and communications to explain compensation programs and updates to business audiencesParticipates in compensation-related system testing, process improvements, and policy developmentEnsures compliance with internal policies and external regulations related to compensationAbility to travel to represent the Company at airline industry conferences or to meet/work with Compensation and Human Resource counterparts, as neededAll you'll need for successMinimum Qualifications- Education & Prior Job ExperienceBachelor’s Degree in related field or equivalent experience/training3+ years of experience in Compensation, Finance, or similar analytical rolePrior experience managing multiple projects concurrently while providing strong customer servicePreferred Qualifications- Education & Prior Job ExperienceExperience presenting to leadershipFamiliarity with operational environments (e.g., airport, maintenance, flight operationsSkills, Licenses & CertificationsKnowledge of Microsoft Office to include Word, Excel, PowerPoint, Access, etc.Effective communicator with ability to translate data into actionable insightsWork experience in analytical roleAdvanced Excel skillsHigh level of professionalism, discretion and objectivityAbility to apply appropriate judgment and discretion in completing work assignments to ensure confidentiality of  employee compensation dataDetail-oriented with ability to work in fast-paced environmentWhat you'll getFeel free to take advantage of all that American Airlines has to offer: Travel Perks: Ready to explore the world? You, your family and your friends can reach 365 destinations on more than 6,800 daily flights across our global network.Health Benefits: On day one, you’ll have access to your health, dental, prescription and vision benefits to help you stay well. And that’s just the start, we also offer virtual doctor visits, flexible spending accounts and more. Wellness Programs: We want you to be the best version of yourself – that’s why our wellness programs provide you with all the right tools, resources and support you need.401(k) Program: Available upon hire and, depending on the workgroup, employer contributions to your 401(k) program are available after one year.Additional Benefits: Other great benefits include our Employee Assistance Program, pet insurance and discounts on hotels, cars, cruises and moreFeel free to be yourself at AmericanFrom the team members we hire to the customers we serve, inclusion and diversity are the foundation of the dynamic workforce at American Airlines. Our 20+ Employee Business Resource Groups are focused on connecting our team members to our customers, suppliers, communities and shareholders, helping team members reach their full potential and creating an inclusive work environment to meet and exceed the needs of our diverse world.Are you ready to feel a tremendous sense of pride and satisfaction as you do your part to keep the largest airline in the world running smoothly as we care for people on life’s journey? Feel free to be yourself at American. Read Less
  • IRIS Clinical Analyst - Pharmacy (Days)  

    - Harris County
    We're looking for an IRIS Clinical Analyst-Pharmacy, someone who's rea... Read More
    We're looking for an IRIS Clinical Analyst-Pharmacy, someone who's ready to grow with our company. In this position you will build, implement support and optimize the medication databases across the electronic health record (EHR) software and interfaced applications and systems. Participates in the development of workflows, system configuration, change documentation, application upgrades and promotes activities appropriate to ensuring safe medication use for the ages of patients served (0-adult). Provides ongoing maintenance, testing, support and optimization of pharmacy supported systems within the Integrated System.Think you've got what it takes?Job Duties & Responsibilities Maintains medication-use related systems to support patient safety and in compliance with legal and regulatory requirements. Ensures that all systems with medication databases, including the electronic health software application, Epic has medication records built and configured according to departmental established rules and guidelines; gathers and interprets clinical information required to address the associated medication safety considerations, e.g. sound alike/look alike and high alert concerns, sentinel event propensity, administration and storage requirements. Builds and verifies the medication order entry, to be utilized by physicians, specific to drug, dose, route frequency, administration instructions, ordering instructions and lab associated rules. Ensures best practice medication alerts and warnings are created and appropriate. Ensures the following records in Epic are consistent with current clinical use guidelines: order sets, chemotherapy protocols, investigational medications, compounding and repackaging records, non-formulary/custom medications, and specialty medications. Ensures coordination of medication build with automated dispensing systems Ensures that current workflows and processes are evaluated and working with a Pharmacy Advisory Group, determines appropriateness of current and the development of future workflows to support safe dispensing practices Coordinates updates to the EHR software and associated applications that impact medication inventory (database changes). Validates impact of computer system upgrades on pharmacist computer order entry. Ensures integrity and timely updates to the smart pump drug libraries. Ensures the integration of Epic with other related applications. Participates in the education of Epic. Supports testing, validation, and implementation of systems. Performs other essential functions.As part of our commitment to maintaining a safe and healthy workplace, all successful candidates will be required to undergo respiratory fit testing in compliance with occupational health and safety standards.Skills & Requirements Bachelor's Degree Science degree in Pharmacy required RPH - Pharmacist by the Texas State Board of Pharmacy required EPIC WIL - Epic Certified Willow by Epic preferred 1 year Pharmacy experience requiredABOUT USSince 1954, Texas Children's has been leading the charge in patient care, education and research to accelerate health care for children and women around the world. When you love what you do, it truly shows in the smiles of our patient families, employees and our numerous accolades such as being consistently ranked as the best children's hospital in Texas, and among the top in the nation by U.S. News & World Report as well as recognition from Houston Business Journal as one of this city's Best Places to Work for ten consecutive years. Texas Children's comprehensive health care network includes our primary hospital in the Texas Medical Center with expertise in over 40 pediatric subspecialties; the Jan and Dan Duncan Neurological Research Institute (NRI); the Feigin Tower for pediatric research; Texas Children's Pavilion for Women, a comprehensive obstetrics/gynecology facility focusing on high-risk births; Texas Children's Hospital West Campus, a community hospital in suburban West Houston; Texas Children's Hospital The Woodlands, the first hospital devoted to children's care for communities north of Houston; and Texas Children's Hospital North Austin, the new state-of-the-art facility providing world-class pediatric and maternal care to Austin and Central Texas families. We have also created Texas Children's Health Plan, the nation's first HMO focused on children; Texas Children's Pediatrics, the largest pediatric primary care network in the country; Texas Children's Urgent Care clinics that specialize in after-hours care tailored specifically for children; and a global health program that is channeling care to children and women all over the world. Texas Children's Hospital is affiliated with Baylor College of Medicine, one of the largest, most diverse and successful pediatric programs in the nation. To join our community of 15,000+ dedicated team members, visit texaschildrenspeople.org for career opportunities. Texas Children's is proud to be an equal opportunity employer. All applicants and employees are considered and evaluated for positions at Texas Children's without regard to mental or physical disability, race, color, religion, gender, national origin, age, genetic information, military or veteran status, sexual orientation, gender identity, marital status or any other protected Federal, State/Province or Local status unrelated to the performance of the work involved. Read Less
  • IT Business Analyst II (On-Site)  

    - Napa County
    ABOUT REDWOOD CREDIT UNION (RCU):At Redwood Credit Union, our mission... Read More
    ABOUT REDWOOD CREDIT UNION (RCU):At Redwood Credit Union, our mission is to passionately serve the best interests of our Members and communities. Since 1950, we have been dedicated to supporting the financial well-being of our Members through better rates, low or no fees, and best-in-class customer service. Our purpose is to inspire hope and elevate the financial well-being of our communities one person at a time, through good times and bad. As a not-for-profit financial institution, we are committed to a people-first approach, which is reflected not only in how we serve our Members, but also in how we treat our employees. Our leadership team is deeply focused on fostering a culture of heart and empathy, integrity, passion, inclusion, meaningful relationships, excellence, and ensuring financial well-being for all.   Why work for Redwood Credit Union?•   37th largest credit union in the U.S. and the largest financial institution based in the North Bay •   Awarded a 5-Star Rating based on 6/30/24 financial data by Bauer Financial•   Recognized by Newsweek as one of "America's Best Credit Unions 2024"•   Recognized by Forbes as one of “America’s Best Small Employers 2023" •   Voted Best Places to Work in the North Bay 19 years in a row•   World-class Employee Engagement scores•   Rated Superior in Service by more than 90% of Members, surveyed by SF Gate•   Industry leading Net Promoter Scores across the U.S.                                                                                                                                                                                                                                                Join us and discover why you'll love working at Redwood Credit Union! Redwood Credit Union is looking for an IT Business Analyst II, who will play a key role in technology projects across Redwood Credit Union, working closely with business stakeholders and internal IT team to deliver technology and achieve strategic goals. Use understanding of business processes and technology, critical thinking skills, and ability to collaborate with a diverse set of business partners to design, develop, and deliver solutions for Members, internal team members, and the communities served.Essential FunctionsRequirements Elicitation and Analysis• Partner with internal stakeholders of all levels, from front-line team members to senior leadership, to gain understanding and elicit business requirements for project scope.• Use NPS and other sources of Member feedback to develop user requirements for public-facing systems (such as RCU website, digital banking, and loan applications).• Analyze requirements and develop success criteria and KPIs for technical and process solutions.• Manage requirements in multiple SDLCs, including Scrum, Agile, and Waterfall.System Analysis• Conduct impact analysis of process and technical changes.• Develop conceptual design for technical solutions.• Partner with internal developers and vendor teams to develop detailed designs that meet requirements.• Ensure effective security measures are in place and meet RCU and regulatory standards.Process Analysis• Document, measure, and analyze as-is processes to determine pain points.• Partner with process performers and owners to develop proposed improvements to pain points.• Develop success metrics and monitoring procedures for quantifying improvement process improvement benefits.Leadership• Build and maintain strong relationships with diverse business stakeholders.• Facilitate discussions between business leadership and IT.Other Functions• Train and educate staff on technological understanding.• Participate in community events.• Perform other duties as assigned.\nMinimum Qualifications: Knowledge, Skills and AbilitiesKnowledge of current business analysis techniques.Knowledge of multiple SDLCs, including Scrum, Agile, and Waterfall.Knowledge of process management techniques.Knowledge of project management techniques.Ability to quickly analyze information and make recommendations.Ability to effectively manage multiple tasks and deadlines simultaneously.Ability to manage, develop, and implement technology related projects.Ability to interact and communicate with outside vendors.Ability to establish and maintain effective working relationships with a diverse group of people.Ability and desire to work in a team environment.Ability to communicate and collaborate with both onshore and offshore vendors.Ability to work weekends and late nights when needed.Physical RequirementsAbility to stand for extended periods of time occasionally.Ability to stand, bend, stoop, sit, walk, twist, and turn.Ability to lift objects up to 25 pounds.Ability to use a computer keyboard and calculator.Work environment is indoors, majority of the time is spent sitting at a desk.Licenses and CertificationsIIBA certification in one or more of the following areas is preferred but not required: Certified Business Analyst Professional (CBAP), Agile Analysis Certification (AAC), Certificate in Product Ownership Analysis (CPOA), Certified Cybersecurity Analyst (CCA), or Certification in Business Data Analytics (CBDA).\nThe ideal candidate has a combination of education and experience equivalent to a bachelor’s degree in Computer Information System, Management Information System, Project Management, or closely related field, with a minimum of three years’ of experience in business analysis, process analysis, system design and integration, or similar. Prior experience in programming and / or financial services is a plus.Compensation: Base starting range: $44.00 to $57.00 per hour commensurate with experience. Our base salary starting range is based on scope and responsibilities of the position, candidate's work experience, education/training, key skills, and internal peer equity. We offer a competitive total rewards package including a wide range of medical, dental, vision, financial, and other benefits.Redwood Credit Union offers a robust benefits package to our eligible employees including:•  Competitive medical, dental, and vision insurance, mental health offerings•  Employee performance incentive plan• Salary Advancement– Merit increase based on performance• 401(k) program with employer match• Time Off- Competitive PTO accrual plus 11 paid company holidays and your birthday off!RCU Discounts and Perks:•  RCU employees are eligible for a .75% discount off RCU standard collateral auto loans•  RCU employees are eligible for a 1% discount on all recreational or boat loan products• 2% discount off Visas and LOC Loans through RCU• 0% interest loan to support employees with various immigration related expenses such as visa application fees and relocation costs. Loan amount up to $1,000.• 0% interest loan to support employees with expenses associated with the naturalization process. Loan amount up to $15,000.• 0% interest on garment, fitness, or home office equipment loan of up to $500• 100% financing for employee purchased homes! Internal Team MembersIf you are a current Team Member, please apply through the internal careers page located in RCUNET.                                                                                  We are an Equal Opportunity Employer

    Read Less
  • Analyst, Senior GRC Information Security Analyst  

    - Orange County
    BANC OF CALIFORNIA AND YOUR CAREERBanc of California, Inc. (NYSE: BANC... Read More
    BANC OF CALIFORNIA AND YOUR CAREERBanc of California, Inc. (NYSE: BANC) is a bank holding company headquartered in Los Angeles with one wholly-owned banking subsidiary, Banc of California (the “bank”). Banc of California is one of the nation’s premier relationship-based business banks focused on providing banking and treasury management services to small, middle-market, and venture-backed businesses. Banc of California offers a broad range of loan and deposit products and services, with full-service branches throughout California and Denver, Colorado, as well as full-stack payment processing solutions through its subsidiary, Deepstack Technologies. The bank is committed to its local communities by supporting organizations that provide financial literacy and job training, small business support, affordable housing, and more.At Banc of California, our success is driven by our people, and we take pride in fostering an environment where everyone can reach their full potential. We embrace a culture of empowerment, progressive thinking, and entrepreneurial spirit, ensuring our team members have an opportunity to make an impact and play an important role in the future of Banc of California. Our core values – Entrepreneurialism, Operational Excellence, and Superior Analytics – empower us in creating a dynamic and inclusive workplace. We are committed to supporting your growth and well-being with comprehensive benefits, career development programs, a variety of employee resource groups, and more. TOGETHER WE WIN® THE OPPORTUNITYThe Senior GRC Information Security Analyst role will be part of the Information Security Governance, Risk, & Compliance (GRC) team at Banc of California. The Information Security GRC team is responsible for the overall security posture of Banc of California by ensuring compliance with applicable regulations and contractual obligations and maintaining effective and efficient governance, risk, and compliance programs. In addition, the Information Security GRC team is directly involved with supporting and enabling Information Technology, Information Security compliance initiatives. We seek a Senior GRC Information Security Analyst with extensive experience implementing, managing, and maturing compliance programs, including but not limited to SOC2, ISO27xxxx, GLBA, GDPR, and CCPA. The individual must possess a significant level of technical knowledge that allows for clear communication with security and technology stakeholders and the ability to provide actionable guidance and recommendations on processes. As a member of the Information Security GRC team, this role will be instrumental in supporting the strategy of the GRC program in partnership with senior management. In addition to technical acumen, the role requires an individual who is results-oriented, pragmatic, and demonstrates effective problem-solving and communication skills. The Senior GRC Information Security Analyst often serves as the subject matter expert for colleagues and line-of-business managers, and experience with multiple technologies, compliance requirements and risk management methodologies are crucial. Performs all duties in accordance with the Company’s policies and procedures, all U.S. state and federal laws and regulations, wherein the Company operates. HOW YOU’LL MAKE A DIFFERENCEContribute to the development, management, and ongoing improvement of Information Security risk program, compliance initiatives, and overall security risk posture. Partner with senior management to design and implement maturity strategies and operations into the Information Security GRC team.Lead critical control activities with stakeholders across the business, quantifying risk, evaluating mitigations, and driving actions to measurably reduce risk.Conduct regular risk assessments to identify potential threats and vulnerabilities across the organization analyzing their impact and likelihood of occurrence. Generate reports on risk assessments, compliance status, and control effectiveness to communicate findings to stakeholders at various levels within the organization.  Establish and contribute to risk and compliance activities with an eye toward continuous controls monitoring automation. Validate that information security requirements are built into architecture and new technology projects.Maintain Information Security risk register, report monthly to appropriately address key risk areas. Conduct technical security posture review for annual vendor monitoring and re-assessment processes for new and existing vendors. Provide support to the Information Security Incident Response team during cyber/privacy incidents.Support internal and external audits by providing documentation and supporting evidence of compliance. Support policies and procedures maintenance aligned with in-scope security frameworks, regulations, and internal standards to manage identified risk effectively. Prepare detailed reports for senior leadership, including KRI and KPI. Act as a mentor, advisory, and escalation point for team members and stakeholders. Treat people with respect; keep commitments; inspire the trust of others; work ethically and with integrity; uphold organizational values; accept responsibility for own actions.Demonstrates knowledge of and adherence to EEO policy; shows respect and sensitivity for cultural differences; educates others on the value of diversity; promotes working environment free of harassment of any type; builds a diverse workforce and supports affirmative action.Follows policies and procedures; completes tasks correctly and on time; supports the company’s goals and values.Performs the position safely, without endangering the health or safety to themselves or others and will be expected to report potentially unsafe conditions. The employee shall comply with occupational safety and health standards and all rules, regulations and orders issued pursuant to the OSHA Act of 1970, which are applicable to one’s own actions and conduct.Performs other duties and projects as assigned.  WHAT YOU’LL BRINGBachelor’s degree in information systems, engineering, business, risk management, or related field; and related certifications (e.g., CRISC, CISSP, CISS, CISM, CISA, Security+, CEH, GSEC).5+ years of experience in GRC, security, risk management or related fields, particularly in highly regulated industries such as financial, professional services, or government, with expertise in navigating complex regulatory requirements.  High technical knowledge across Cybersecurity domains, including Security Operations, Incident Response, Security Engineering, Cloud Security, Artificial Intelligence (AI), Data Security, Configuration Management, Log Generation, Security Risk Assessments/testing methodologies, Secure Software Development Lifecycle, evaluating the adequacy and efficiency of internal controls. Expert knowledge of GRC frameworks and regulations (e.g., PCI-DSS, GDPR, CCPA, GLBA, NIST, ISO 27001). Strong knowledge in OWASP, CIS and/or other security standards and secure configuration baselines. Experience developing and implementing GRC framework, policies and procedures.Excellent analytical skills with the ability to assess complex risks and develop effective mitigation security strategies. Proven ability to lead and manage projects, including coordinating cross-functional teams and delivering results on time.Ability to adapt to a fast-paced and dynamic environment, with a focus on continuous improvement and innovation.Ability to work on multiple GRC projects simultaneously. Excellent communication and interpersonal skills.  HOW WE’LL SUPPORT YOUFinancial Security: You will be eligible to participate in the company’s 401k plan which includes a company match and immediate vesting.Health & Well-Being: We offer comprehensive insurance options including medical, dental, vision, AD&D, supplemental life, long-term disability, pre-tax Health Savings Account with employer contributions, and pre-tax Flexible Spending Account (FSA).Building & Supporting Your Family: Banc of California partners with providers that offer adoption, surrogacy, and fertility assistance as well as paid parental leave and family support solutions including care options for your family.Paid Time Away: Eligible team members receive paid vacation days, holidays, and volunteer time off.Career Growth Opportunities: To support career growth of our team members, we offer tuition reimbursement, an annual mentorship program, leadership development resources, access to LinkedIn Learning, and more. SALARY RANGEThe base salary ultimately offered is determined through a review of education, industry experience, training, knowledge, skills, abilities of the applicant in alignment with market data and other factors.Banc of California is an equal opportunity employer committed to creating a diverse workforce. All qualified applicants will receive consideration for employment without regard to age (40 and over), ancestry, color, religious creed (including religious dress and grooming practices), denial of Family and Medical Care Leave, disability (mental and physical) including HIV and AIDS, marital status, medical condition (cancer and genetic characteristics), genetic information, military and veteran status, national origin (including language use restrictions), race, sex (which includes pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), gender, gender identity, gender expression, and sexual orientation. If you require reasonable accommodation as part of the application process, please contact Talent Acquisition.

    Read Less
  • Cybersecurity Analyst (Cleared)  

    - Hillsborough County
    Founded in 2003, IT Concepts’ core values – customer-centricity, teamw... Read More
    Founded in 2003, IT Concepts’ core values – customer-centricity, teamwork, driven to deliver, innovation, and integrity – ensure we work together to be the best, realize objectives, and make a positive impact in our communities. We intentionally created and sustain our ITC culture that embraces change, experimentation, continuous learning, and improvement. We bring our design thinking problem-solving approach that challenges assumptions, prioritizes curiosity, and invites complexity to deliver innovative, efficient, and practical solutions. As we continue to grow in the support of our government customers, we are looking for driven and innovative individuals to join our team.IT Concepts, Inc. (ITC) is seeking an experienced Software Engineer to support a DOD SOCOM opportunity. ITC will provide the Government with program management and services related to emerging technology solutions including Enterprise Architecture (EA) and data science, application development and management support, training, and enterprise ecosystem support.Responsibilities: Tests, implements, deploys, maintains, reviews, and administers security infrastructure and documentation. Performs assessments and validates controls. Conducts validation and verification assessments and analyzes test results for compliance with cybersecurity requirements. Conducts internal audits and testing to validate compliance with system and operational requirements. Identifies and assesses vulnerabilities and risks and provides mitigation actions. Identifies information assurance control impacts and identifies risk reduction measures. Location: On-site in Tampa, FL Junior level: 0-3 years relevant experience and a BA/BS degree, Journeyman level: A Bachelor's Degree and 3 - 10 years of relevant experience Senior level: 10 years of experience and a MA/MS degree.Substitutions for education: Associate's Degree plus 4 years work experience may be substituted for a Bachelor's Degree Bachelor's Degree plus 8 years work experience may be substituted for a Master's Degree 6 years work experience may be substituted for a Bachelor's Degree 12 years work experience may be substituted for a Master's Degree Preferred Skills: Strong problem-solving and analytical skills Excellent communication and collaboration abilities ability to work with Teams, but self-motivated to complete projects on your own. Ability to work fully on-site with minimal accommodation Clearance Requirements:Must have at a minimum active DOD Secret, TS/SCI may be required for some positions. The CompanyWe believe in generating success collaboratively, enabling long-term mission success, and building trust for the next challenge. With you as our partner, let’s solve challenges, think innovatively, and maximize impact. As a valued member of our team, you have the unique opportunity to work in a diverse range of technology and business career paths, all while supporting our nation and delivering innovative technology solutions. We are a close community of experts that pride ourselves on creating an environment defined by teamwork, dedication, and excellence.We hold three ISO certifications (27001:2013, 20000-1:2011, 9001:2015) and two CMMI ML 3 ratings (DEV and SVC).Industry RecognitionGrowth | Inc 5000’s Fastest Growing Private Companies, DC Metro List Fastest Growing; Washington Business Journal: Fastest Growing Companies, Top Performing Small Technology Companies in Greater D.C.Culture | Northern Virginia Technology Council Tech 100 Honoree; Virginia Best Place to Work; Washington Business Journal: Best Places to Work, Corporate Diversity Index Winner – Mid-Size Companies, Companies Owned by People of Color; Department of Labor’s HireVets for our work helping veterans transition; SECAF Award of Excellence finalist; Victory Military Friendly Brand; Virginia Values Veterans (V3); Cystic Fibrosis Foundation Corporate Breath AwardBenefitsWe offer great benefits – Competitive Paid Time Off, Medical, Dental and Vision Insurance, Identity Theft Protection, Legal Resources Coverage, 401(k) with company matching with NO vesting period.  ITC Health benefits have a $0 premium for certain plans for eligible employees.We invest in our employees – Every employee is eligible for education reimbursement for certifications, degrees, or professional development.  Reimbursement amounts may fluctuate due to IRS limitations. We want you to grow as an expert and a leader and offer flexibility for you to take a course, complete a certification, or other professional growth and networking. We are committed to supporting your curiosity and sustaining a culture that prioritizes commitment to continuous professional development.We work hard, we play hard. ITC is committed to incorporating fun into every day. We dedicate funds for activities – virtual and in-person – e.g., we host happy hours, holiday events, fitness & wellness events, and annual celebrations. In alignment with our commitment to our communities, we also host and attend charity galas/events. We believe in appreciating your commitment and building a positive workspace for you to be creative, innovative, and happy.AAEO & VEVRAAITC is an Affirmative Action/Equal Opportunity employer and a VEVRAA (Vietnam Era Veterans' Readjustment Assistance Act) Federal Contractor. As such, any personnel decisions (hire, promotion, job status, etc.) on applicants and/or employees are based on merit, qualifications, competence, and business needs, not on race, color, citizenship status, national origin, ancestry, sexual orientation, gender identity, age, religion, creed, physical or mental disability, pregnancy, childbirth or related medical condition, genetic information of the employee or family member of the employee, marital status, veteran status, political affiliation, or any other factor protected by federal, state or local law.ITC maintains a strong commitment to compliance with VEVRAA and other applicable federal, state, and local laws governing equal employment opportunity. We have developed comprehensive policies and procedures to ensure our hiring practices align with these requirements.As a part of our VEVRAA compliance efforts, ITC has established an affirmative action plan that outlines our commitment to the recruitment, hiring, and advancement of protected veterans. This plan is regularly reviewed and updated to ensure its effectiveness.We encourage protected veterans to self-identify during the application process. This information is strictly confidential and will only be used for reporting and compliance purposes as required by law. Providing this information is voluntary, and it will not impact your eligibility for employment.Our commitment to equal employment opportunity extends beyond legal compliance. We are dedicated to fostering an inclusive workplace where all employees, including protected veterans, are treated with dignity, respect, and fairness.How to ApplyTo apply to IT Concept Positions- Please click on the: “Apply for this Job” button at the bottom of this Job Description or the button at the top: “Application.”  Please upload your resume and complete all the application steps. You must submit the application for IT Concepts to consider you for a position.  If you need alternative application methods, please email careers@useitc.com and request assistance.   AccommodationsTo perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable Accommodations may be made to enable qualified individuals with disabilities to perform the essential functions. If you need to discuss reasonable accommodations, please email careers@useitc.com.  

    Read Less
  • Cybersecurity Analyst  

    - Cascade County
    D.A. Davidson Companies is an independent, employee-owned company with... Read More
    D.A. Davidson Companies is an independent, employee-owned company with a rich history spanning more than 80 years. We are dedicated to conducting our business in accordance with the highest standards of integrity and ethics, and delivering outstanding service to our clients and each other. We support a friendly, open and supportive culture, and encourage candid communication and productive engagement that make our companies and each of us better. Just as we work to improve our clients’ financial well-being, we also work to strengthen local communities—and giving back is one of our core values. You can learn more about our company culture and impact in our latest annual report.Summary/Function:The Cyber Security Analyst is responsible for assisting with the day-to-day operations in securing the Firm’s technology assets. The Cyber Security Analyst is responsible for providing technical expertise in several areas including network, system, and application security. The Cyber Security Analyst works closely with various IT teams to ensure systems and networks are designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management controls. The Cyber Security Analyst triages security alerts with the goal of suggesting detection improvements and mitigating security threats. Ability to think critically and solve problems with limited support from management.A two-year college degree or equivalent industry training, certification, and/or experience.Two or more of the following certifications or proven expertise in these areas: Security+, Network+, CCNA, CySA+, CEH, etc. Two or more of the following certifications or proven expertise in these areas: MS-900 : Microsoft 365 Fundamentals, SC-900: Microsoft Security Fundamentals, CSC-200: Microsoft Security Operations Analyst, SC-300: Microsoft Identity and Access Administrator, SC-401: Information Security Administrator, Microsoft Certified: Identity and Access Administrator Associate etc preferredGood knowledge of Agile frameworks preferredGood knowledge of the Software Development Lifecycle (SDLC) preferredWorking knowledge of multiple programming languages including, but not limited to: XML, HTML, CSS, SQL, JavaScript, and Bootstrap preferredExperience creating and consuming web-based services preferredExperience with Static and Dynamic Application Security Testing preferredExperience with enterprise-class technologies including firewalls, VPNs, desktop and server operating systems, SIEM, WAF, DLP, EDR, web gateways, and physical security.Strong ability to communicate concepts and initiatives effectively through phone, email, instant messaging, and video conferencing platforms with all levels of the Firm.Prior experience performing security reviews and risk assessments.Experience working and collaborating effectively with business management, technical subject matter experts, and internal/external partners in finding solutions.Experience with the monitoring and evaluation of technology processes and controls including design and operating effectiveness, testing and reporting on results, and recommendations.Experience with creating and maintaining high quality documentation related to IT processes including flow charts and data flow diagrams.Strong project management and organizational skills with demonstrated ability to complete assignments timely and effectively. Proficiency in scripting languages including Powershell and Python preferred.Familiarity with MITRE ATT&CKPrior experience working within a financial service organization preferred.Individual must be able to perform with minimal supervision of routine duties; demonstrate ability to solve problems and deal with a variety of variables and situations where only limited standardization may exist; interpret instructions furnished in written, oral, diagram, or schedule formats; and be able to handle multiple tasks simultaneously.The qualifications and demands described in this job description are representative of those most appropriate for successful performance of the essential functions of this job. Upon request, reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.Duties:Monitor and respond to security inquiries, requests, and incidents as part of our security operations center (SOC) to support the business through sound and timely cybersecurity response.Review and maintain department standards, procedures, and guidelines.Troubleshoot security tools and answer general inquiries regarding information security practices and secure access.Follow established processes to ensure compliance with policies. Report all suspicious activity or non-compliance to management.Assess new and existing technologies to determine potential value and risk to the enterprise and ensure risk beyond defined thresholds is appropriately treated.Perform and support forensic/e-discovery investigations as directed by management. Identify improvement opportunities and provide recommendations to further mature existing IT processes and controls to align with best practices including use of automation and optimization.Assist in continual design, implementation, and operationalization of security operations lifecycle to continually mature the security of our business environment and SIEM reporting. Prepare ongoing reports with specified metrics/ key performance indicators related to the security operations lifecycle.Recommend and assist in the remediation of security controls and enhancements to reduce risk throughout the enterprise.Participate in other special projects or strategic initiatives at the direction of management.This description indicates the kinds of tasks and level of work difficulty required for this position. It is not intended as a complete list of specific duties and responsibilities. Nor is it intended to limit or modify the right of any supervisor to assign other duties not mentioned.What we offer:Competitive salary plus excellent benefits and perks including, but not limited to:  Medical, Dental and VisionCompany 401(k)and ESOP contribution Generous sick, vacation, and maternity/parental leavePaid holidaysProfessional Development OpportunitiesTuition Reimbursement ($15,000 lifetime cap)Charitable gift-matching programDavidson Day of Giving – Our tradition of positively impacting communities in which we live and work.  The potential base pay hiring range for this role is $28.00 to $32.00 per hour. The compensation offered will be determined on a case-by-case basis considering a variety of factors including, but not limited to, the skills, relevant work experience, and geographic location of each specific candidate. This role is eligible to participate in applicable D.A. Davidson variable compensation programs.$28 - $32 an hourAt D.A. Davidson, we are committed to fostering a diverse environment that supports the development and inclusivity of all employees.We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.Please answer all questions carefully: incomplete or inaccurate answers may impact your potential employment. By clicking Submit Application, you declare that all statements in this application are truthful to the best of your knowledge. California applicants please see D.A. Davidson's California Resident . Read Less
  • Security Risk Analyst  

    - San Diego County
    Why PlayStation?PlayStation isn’t just the Best Place to Play — it’s a... Read More
    Why PlayStation?PlayStation isn’t just the Best Place to Play — it’s also the Best Place to Work. Today, we’re recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation®5, PlayStation®4, PlayStation®VR, PlayStation®Plus, acclaimed PlayStation software titles from PlayStation Studios, and more.PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team.The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Group Corporation.PlayStation is looking for an Information Security Analyst to join our team and operate the day-to-day Information Security, Risk and Compliance management processes. This is a mixture of processing requests from the business and driving internal security projects such as security audit and assessment. This role requires a sound understanding of technical and engineering terminology, outstanding ability to articulate risk across any security domains (technical and governance) with the demonstrable ability to work independently and process high volumes of security requests on a weekly basis. This role also provides ample opportunity to work across technical and game-related projects with studio and PlayStation engineering teams and therefore requires risk advisory and influencing experience.Based in San Diego, the candidate will be the key business relationship partner on behalf of Information Security and work on Information Security processes as well as strategic projects across PlayStation and the Studios group. This role will collaborate closely directly with business, technical and third party collaborators, as well as work multi-functionally with our other Information Security specialist teams across the globe to protect PlayStation’s intellectual property, data and infrastructure whilst delivering new and evolving games, services and hardware to the market. This is an opportunity to provide security directly to the global PlayStation business, our PlayStation Network and global Studios and their game development.What you’ll be doing:Review, triage, risk assess and process security requests from technical, engineering and business partners that require security input and approvals.Work independently to understand collaborator requirements and the security risk involved. Use security policy, process and information security expertise to advise collaborators on appropriate solutions that do not open PlayStation up to security risks.Review security requirements associated with third party engagement requests and determine what level of third party assurance is required.Initiate and support the third-party due diligence and assurance assessment processes and able to articulate and advise on associated risks to the business, contractual requirements and resulting recommendations.Articulate and communicate risk to relevant collaborators, whilst with technical teams, partners, and leadership teams to translate security risk into mitigation plans into action items.Negotiates, tracks and reports these remediation efforts within the PlayStation risk programme.Coordinates all aspects of information security and provides consulting services to business units and other partners.Works with business partners from across Playstation and Studios to identify and implement information security requirements related to projects and engagements.Monitors and reviews IT security controls to identify operational efficiency.Performing security audits related to critical systems and prioritized business scopes.Triage information security incidents, working with our 24/7 SOC teams, business partners and related third parties, as well as be responsible for reporting and raising where necessary.Works with GRC and other security tools to collect and maintain security and risk information.Maintains broad knowledge of industry trends in the field of information security and other technologies relevant to systems handled by the operations teams.Advances the InfoSec program via partnerships with shared services teams within information security.What we’re looking for:At least four years of related work experience within Information Security risk management or security audit, with a sound technical understanding of information technology, network or infrastructure management.Must be a self-starter, comfortable with processing security requests independently initiating discussion with collaborators to drill down on exact requirements and how it aligns to process and policy.Experience in business partner/collaborator management, across technical and non-technical partners.Used to working within critical metrics and SLAs to ensure efficient responses and smooth ticket management.Experience in Jira, Confluence and GRC tracking and assessment tools.Can independently perform information Security due diligence and audits, identifying gaps and require mitigations.Proven technical background in Information Security including work related to cloud infrastructure, SaaS applications, emerging technology.Ability to understand technical terminology to understand and assess security environment.Experience with third party due diligence and contract reviews.Excellent communicator, able to translate both technical and business requirements and terminology to the applicable audience.Desirable Knowledge and Skills:Familiarity with AWS (or similar) cloud security and infrastructure.Knowledge of and experience with SaaS and web infrastructure securityAwareness of security risks associated with AI and other emerging technologiesMicrosoft Windows and Apple Mac OS hardeningPolicy administrationSecurity standards such as SOX, ISO 27001, NIST, PCIAbility to handle parallel tasks and accurately detail resolutionsBachelor’s degree in Computer Science, Information Security, or related field or equivalent experience #LI-GM1 Please refer to our Candidate Privacy Notice for more information about how we process your personal information, and your data protection rights. At SIE, we consider several factors when setting each role’s base pay range, including the competitive benchmarking data for the market and geographic location.Please note that the base pay range may vary in line with our hybrid working policy and individual base pay will be determined based on job-related factors which may include knowledge, skills, experience, and location. In addition, this role is eligible for SIE’s top-tier benefits package that includes medical, dental, vision, matching 401(k), paid time off, wellness program and coveted employee discounts for Sony products. This role also may be eligible for a bonus package. Click here to learn more. The estimated base pay range for this role is listed below.$140,000 - $210,000 USDEqual Opportunity Statement:Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy, maternity or parental status, trade union membership or membership in any other legally protected category.We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond. PlayStation is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment. Read Less
  • Information Security Analyst (Remote)  

    - Multnomah County
    Atmosera empowers businesses to Redefine Possible with Modern Technolo... Read More
    Atmosera empowers businesses to Redefine Possible with Modern Technology and Human Expertise. Our exceptional experience across Applications, Data & AI, DevOps, Security, and the Microsoft Azure platform enables organizations to accelerate innovation, enhance security, and optimize operational agility. As a Microsoft Partner with nine specializations, GitHub AI Partner of the Year, a member of the GitHub Advisory Board, and a member of the prestigious Microsoft Intelligent Security Association (MISA), Atmosera expertly delivers cutting-edge, integrated solutions that deliver business value.Our InfoSec team is hiring a Security Analyst. As a Security Analyst, you will join a team of cybersecurity professionals delivering proactive Managed Security and Managed Governance services. In this role, you'll help safeguard our clients' environments by identifying vulnerabilities, deploying effective protective measures, and working collaboratively to mitigate risks while ensuring compliance with industry standards and regulations. The ideal candidate is highly analytical, possesses hands-on experience with Microsoft security solutions, and is passionate about staying ahead of emerging cyber threats.\nWhat You'll DoSecurity Monitoring & Analysis: Analyze cloud security posture on Azure-hosted systems and networks using Defender for Cloud and Defender XDR/EDR. Continuously monitor security logs and data sources integrated into Microsoft Sentinel, ensuring comprehensive coverage and efficient analysis that identifies potential security incidents or vulnerabilities using alert guides and methods based on the MITRE ATT&CK framework. Respond to security incidents by investigating alerts, performing triage, and executing remediation actions. Automate incident response workflows using Azure Logic Apps. Conduct real-time, proactive threat hunting analysis using KQL to identify and mitigate potential security risks and perform forensic investigations as necessary. Perform continuous vulnerability scans of the attack surface. Develop and publish alert guides, knowledge base articles, and training material. Configure and analyze threat Intel feeds to identify cyber threats and make recommendations proactively. Develop and optimize analytic rules in Azure Sentinel to detect potential threats and anomalies. Analyze client environments and configurations to identify issues and opportunities for improvement proactively.Incident Response: Lead or assist in the incident response process from detection through resolution. Develop, document, and implement incident response plans and playbooks. Collaborate with cross-functional teams to mitigate and recover from security incidents. Document Root Cause Analysis and Incident Event Reports. Analyze and improve security automation rules to reduce mean time to remediation.  Vulnerability and Risk Management: Perform regular vulnerability assessments and risk analyses. Recommend and implement measures to address identified security risks. Stay current on emerging threats, vulnerabilities, and Microsoft security technologies. Perform Phishing Attack exercises across the enterprise and MSSP clients.Policy Development & Compliance: Assist in creating and enforcing security policies, procedures, and guidelines. Ensure adherence to industry regulations and standards (e.g., NIST SP 800-171, ISO 27001 (2022), GDPR, PCI-DSS, HIPAA). Participate in security audits, security questionnaires, penetration tests, and provide reports and recommendations for improvements.Collaboration & Communication: Produce monthly security posture reports with Security KPIs for MSSP clients.  Communicate security issues and recommendations to technical and non-technical stakeholders. Provide security awareness training and support to employees across the organization. Work closely with other security teams and stakeholders to enhance the overall security posture of client organizations. Provide recommendations for improving threat protection practices. Excellent verbal and written communication skills. Ability to present findings and recommendations effectively.The Skills You NeedTechnical Skills: Hands-on experience with Azure Sentinel, including developing analytic rules and automated workflows. Familiarity with network security tools (IDS/IPS, firewalls, antivirus solutions) and endpoint protection technologies. Experience with vulnerability assessment tools and risk management frameworks. Proficiency in Kusto Query Language (KQL.  Must have experience in creating and optimizing queries for threat detection and investigation.Soft Skills: Strong interpersonal and presentation skills. Strong analytical and problem-solving abilities. Excellent verbal and written communication skills. Ability to work effectively both independently and as part of a team. Detail-oriented with a proactive approach to security challenges. Team player, task-oriented, and eager to learn. QualificationsEducation & Experience: Bachelor’s degree in computer science, Information Security, related field, or equivalent work experience. Minimum of 3 years in cybersecurity, focusing on security operations and incident response. At least 2 years of experience with Azure Sentinel.Certifications: SC-200 - Security Operations Analyst Associate AZ-500 - Azure Security Engineer Associate Certifications such as CompTIA Security+, Certified Cyber Security Analyst, CCSP, or equivalent preferred. \n$100,000 - $110,000 a year\n#LI-PS1#LI-RemoteWe value our employees and are committed to providing a comprehensive and competitive benefits package designed to support your well-being and financial security. Here's what you can look forward to:Financial Security & Growth: Competitive Salary: We offer competitive salaries commensurate with experience and skills. Generous 401(k) Plan: Secure your financial future with our generous 401(k) plan, featuring a 100% company match on your contributions up to 4% of your salary! This is a fantastic opportunity to build your retirement savings with our support. Performance-Based Compensation: Your hard work and dedication will be recognized and rewarded through our performance-based compensation program, which includes bonus potential in addition to your base salary.Health & Well-being: 100% Employer-Paid Health, Vision, and Dental Insurance for employees: Say goodbye to expensive premiums! We cover 100% of the cost of your health, vision, and dental insurance premiums, saving you potentially thousands of dollars each year. Focus on your health, not your healthcare costs. Company-Paid Life, AD&D, Short and Long-Term Disability Insurance: We provide company-paid life, accidental death & dismemberment, and short- and long-term disability insurance to protect you and your family.Time Off & Work-Life Balance: Generous Paid Time Off (PTO): Enjoy a healthy work-life balance with three weeks of paid time off, allowing you to relax, recharge, and pursue your personal interests. This flexible PTO can be used for vacation, personal time, or sick leave. 11 Paid Holidays: We observe 11 paid holidays throughout the year, giving you additional time to spend with family and friends. Community Service Leave: We believe in giving back to the community and offer paid time off for you to volunteer with organizations that are meaningful to you.Additional Perks & Recognition: Employee Recognition and Reward Program: We celebrate and reward outstanding performance and contributions through our employee recognition program. We value your dedication and are committed to showing our appreciation.This is a full-time position in the United States with the ability to work from home, or from one of our many US offices if local. Atmosera is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. All employment is decided on the basis of qualifications, merit, and business need.

    Read Less
  • Technical Support Specialist - Threat Intelligence Analyst - Tier II  

    - Kennebec County
    OFFICE OF INFORMATION TECHNOLOGY - MAINE ITSECURITY OPERATIONS / THREA... Read More
    OFFICE OF INFORMATION TECHNOLOGY - MAINE ITSECURITY OPERATIONS / THREAT INTELLIGENCEOpening Date: June 25, 2025Closing Date:  July 10, 2025Job Class Code: 0870Grade: 27Salary: $66,952.08 - $94,077.37/Annually (includes 15% recruitment & retention stipend and eligible for an additional 5% annual training bonus)Position Number: 020241543Position Summary:We are seeking a detail-oriented and highly analytical Tier 2 Threat Intelligence Analyst to join our growing Security Operations group. In this role, you will serve as a critical escalation point within the Threat Intelligence team, focusing on threat detection, analysis, and response coordination. You will enrich, correlate, and contextualize threat data to produce actionable intelligence that helps proactively defend the organization against evolving cyber threats.Key Responsibilities:Threat Analysis & EnrichmentPerform in-depth analysis of cyber threat intelligence from multiple internal and external sources (e.g., OSINT, commercial feeds, ISACs).Correlate intelligence findings with internal telemetry (e.g., SIEM, EDR, firewall logs) to identify potential threats.Conduct indicator of compromise (IOC) and Tactics, Techniques, and Procedures (TTPs) mapping to frameworks such as MITRE ATT&CK.Incident SupportSupport incident response efforts by providing timely and relevant threat intelligence during active security events.Collaborate with Security Operations Center analysts to triage alerts and with Tier 3 responders on complex investigations.Reporting & CommunicationProduce high-quality tactical and operational threat intelligence reports tailored for different stakeholders (technical, executive, operational).Present findings to internal teams, management, and possibly external partners.Tool & Feed ManagementMaintain and tune threat intelligence tools, feeds, and platforms.Evaluate new sources of intelligence and recommend improvements to threat detection capabilities.Threat HuntingProactively hunt for threats using intelligence-driven hypotheses and behavioral analysis.Assist in developing detection use cases and tuning security technologies.MINIMUM QUALIFICATIONS:A minimum of 6 years of a combination of related post-secondary education, technical certifications, or technology related work experience.  Related training, internship experience etc. may be credited as related experience on a month-per-month basis.Preference will be given to those who possess:Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or a related field (or equivalent experience); and2–4 years of experience in a cybersecurity or threat intelligence role, ideally in a SOC or threat intel team.Preferred Certifications:GIAC Cyber Threat Intelligence (GCTI)Certified Threat Intelligence Analyst (CTIA)CompTIA Cybersecurity Analyst (CySA+)Certified Ethical Hacker (CEH)Other relevant certifications a plusTechnical Skills:Proficiency with threat intelligence platforms (TIPs), SIEMs, and EDR tools (e.g., Splunk, MISP, CrowdStrike, Microsoft Defender for Endpoint, Trellix, SentinelOne).Solid understanding of malware analysis, threat actor profiling, and campaign tracking.Experience with scripting or automation (e.g., Python, PowerShell) is a plus.Knowledge:Familiarity with MITRE ATT&CK, NIST, and cyber kill chain frameworks.Understanding of global threat landscapes and threat actor motivations.Awareness of regulatory and compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) as they relate to threat intelligence.Soft Skills:Strong critical thinking, problem-solving, and analytical skills.Excellent verbal and written communication abilities.Ability to work independently and collaboratively in a fast-paced environment.MaineIT is seeking a highly talented individual who will represent our C.A.R.E. values in all that they do.  At MaineIT we:  Practice Customer-focus, ensuring that our customers are heard, and their needs are met.Hold ourselves to a high level of Accountability by being transparent with our stakeholders.Maintain an effective level of Responsiveness by providing timely updates in a proactive manner.Strive to provide Empathy driven, people-focused services by applying emotional intelligence skills and behaviors.The selected candidate will be required to pass the required background checks(fingerprinting may be required) as a condition of employment.This position is not eligible for visa sponsorship or STEM OPT extensions.Benefits of working for the State of Maine:No matter where you work across Maine state government, you find employees who embody our state motto—"Dirigo" or "I lead"—as they provide essential services to Mainers every day. We believe in supporting our workforce's health and wellbeing with a valuable total compensation package, including:Work-Life Fit – Rest is essential. Take time for yourself using 13 paid holidays, 12 days of sick leave, and 3+ weeks of vacation leave annually. Vacation leave accrual increases with years of service, and overtime-exempt employees receive personal leave.Health Insurance Coverage – The State of Maine pays 85%-95% of employee-only premiums ($11,196.96 - $12,514.32 annual value), depending on salary. Use this chart to find the premium costs for you and your family, including the percentage of dependent coverage paid by the State. Dental Insurance – The State of Maine pays 100% of employee-only dental premiums ($387.92 annual value).Retirement Plan – The State contributes the equivalent of 18.09% of the employee's pay towards the Maine Public Employees Retirement System (MainePERS). State employees are eligible for an extensive and highly competitive benefits package, covering many aspects of wellness. Learn about additional wellness benefits for State employees from the Office of Employee Health and Wellness.Note: Benefits may vary somewhat according to specific collective bargaining agreements and are prorated for anything less than full-time.There's a job and then there's purposeful, transformative work. Our aim is to create a workplace where you can learn, grow, and continuously refine your skills. Applicants demonstrate job requirements in differing ways, and we appreciate that many skills and backgrounds can make people successful in this role. As an Equal Opportunity employer, Maine State Government embraces a culture of respect and awareness. We are committed to creating a strong sense of belonging for all team members, and our process ensures an inclusive environment to applicants of all backgrounds including diverse race, color, sex, sexual orientation or gender identity, physical or mental disability, religion, age, ancestry, national origin, familial status or genetics. If you’re looking for a great next step, and want to feel good about what you do, we’d love to hear from you. Please note reasonable accommodations are provided to qualified individuals with disabilities upon request.Thinking about applying?Research shows that people from historically excluded communities tend to apply to jobs only when they check every box in the posting. If you’re currently reading this and hesitating to apply for that reason, we encourage you to go for it! Let us know how your lived experience and passion set you apart. Read Less
  • Information Security Analyst  

    - Fulton County
    Launch Your Career with Cook SystemsReady to elevate your career? Cook... Read More
    Launch Your Career with Cook SystemsReady to elevate your career? Cook Systems, a certified veteran-owned IT consulting firm, has been transforming businesses and careers since 1990. Whether you’re aiming to work with a Fortune 500 company or a small business, we’ve got you covered. Our core values—integrity, investment, and innovation—drive everything we do, ensuring you grow and succeed in a dynamic, supportive environment. We understand the importance of work-life balance and personal growth. Our cutting-edge IT consulting partners and FastTrack talent program are designed to help you excel.Join our forward-thinking team where excellence and creativity are valued every day. Check out what our associates have to say on Glassdoor. Ready to take your career to new heights? Cook Systems is where your journey to success begins!This role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements. The analyst will also support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives.Key ResponsibilitiesSecurity Operations & MonitoringConduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks.Vulnerability & Risk ManagementPerform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.Support patch management and configuration management processes to reduce the attack surface.Deliver metrics and risk posture updates to leadership.Compliance & DocumentationMaintain and update System Security Plans (SSPs) to document the implementation of security controls.Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking.Assist in compliance with evolving frameworksIncident ResponseTriage, analyze, and document security incidents across enterprise systems.Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.Deliver incident reports, root cause analysis, and lessons learned documentation.Security Awareness & TrainingDevelop and deliver security awareness programs, emphasizing CUI handling, phishing defense, and insider threat mitigation.Conduct specialized training for privileged users and administrators.Track participation and report effectiveness of awareness initiatives.Reporting & CommunicationProvide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.Deliver executive-level updates highlighting risks, compliance status, and incident trends.Track remediation activities and ensure timely closure of findings.  Required QualificationsBachelor’s degree in information security, Cybersecurity, IT, or related field; or equivalent 1 year; Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).Experience with incident response, vulnerability management, and risk assessments.Strong analytical, documentation, and communication skills.SummaryThe role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements. The analyst will support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives.ResponsibilitiesConduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.Maintain dashboards, alerts, and reports for proactive detection and escalation of risks.Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.Support patch and configuration management processes to reduce the attack surface.Deliver metrics and risk posture updates to leadership.Maintain and update System Security Plans (SSPs) for documenting security controls.Support audits (IRS, CMS, SSA, NIST, FISMA) by providing required documentation and remediation tracking.Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5).Triage, analyze, and document security incidents across enterprise systems.Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.Deliver incident reports, root cause analysis, and lessons learned documentation.Develop and deliver security awareness programs emphasizing CUI handling, phishing defense, and insider threat mitigation.Conduct specialized training for privileged users and administrators.Track participation and report the effectiveness of awareness initiatives.Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.Deliver executive-level updates highlighting risks, compliance status, and incident trends.Track remediation activities and ensure timely closure of findings.Required QualificationsBachelor’s degree in information security, Cybersecurity, IT, or related field; or equivalent experience. Preference for candidates with relevant State of Georgia experience.Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).Experience with incident response, vulnerability management, and risk assessments.Excellent analytical, documentation, and communication skills.  SummaryThe role is responsible for monitoring, detecting, analyzing, and responding to security events, managing vulnerabilities, and ensuring compliance with federal, agency, and organizational security requirements. The analyst will support audit readiness, maintain the System Security Plan (SSP), and lead targeted security awareness initiatives. ResponsibilitiesConduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management).Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security.Maintain dashboards, alerts, and reports for proactive detection and escalation of risks.Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings.Support patch and configuration management processes to reduce the attack surface.Deliver metrics and risk posture updates to leadership.Maintain and update System Security Plans (SSPs) for documenting security controls.Support audits (IRS, CMS, SSA, NIST, FISMA) by providing required documentation and remediation tracking.Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5).Triage, analyze, and document security incidents across enterprise systems.Coordinate with IT and business stakeholders on containment, eradication, and recovery efforts.Deliver incident reports, root cause analysis, and lessons learned documentation.Develop and deliver security awareness programs emphasizing CUI handling, phishing defense, and insider threat mitigation.Conduct specialized training for privileged users and administrators.Track participation and report the effectiveness of awareness initiatives.Provide leadership with actionable insights through Splunk dashboards, Tenable vulnerability reports, and CrowdStrike incident summaries.Deliver executive-level updates highlighting risks, compliance status, and incident trends.Track remediation activities and ensure timely closure of findings.Required QualificationsBachelor’s degree in information security, Cybersecurity, IT, or related field; or equivalent experience. Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA).Experience with incident response, vulnerability management, and risk assessments.Excellent analytical, documentation, and communication skills.#Ll:HybridWhy Work with UsAt Cook Systems, we don’t just offer jobs—we build futures. Our team is the heart of everything we do, and we’re committed to supporting you with benefits that go beyond the basics. We want you to feel secure, valued, and empowered from the very beginning of your journey with us. When you join Cook Systems, here’s what you can look forward to:Your Health, Your Way: Choose from two comprehensive medical plans through Blue Cross Blue Shield, complete with dental and vision coverage. With access to one of the nation’s largest networks, you’ll get the care you need for yourself and your family—wherever life takes you.Peace of Mind, Every Step of the Way: Protect what matters most with life, critical illness, and accident insurance through Unum. Because your loved ones deserve security no matter what the future holds.Flexibility for Life’s Needs: Save money and plan ahead with a Flexible Spending Account and Daycare FSA through Navia, helping you manage healthcare and dependent care expenses on your terms.Bridging the Gaps: Unexpected costs? No problem. Our Health Gap Insurance through Sunlife helps ensure you’re covered when it counts.Your Future Starts Now: Dream big with our 401(k) retirement plan through The Standard. After just six months, you will be eligible to participate, because your future deserves a strong foundation.At Cook Systems, you’re not just another employee—you’re a vital member of our team. Here, your ideas matter, your contributions shine, and your career will thrive. Together, we innovate, grow, and celebrate success every step of the way. Are you ready to be part of something bigger? Let’s build the future together at Cook Systems. #IND1 #LI-CS1 Read Less
  • Senior Cyber Security Analyst  

    - King County
    Cascade Asset Management Company (“Cascade”) is proud to protect and g... Read More
    Cascade Asset Management Company (“Cascade”) is proud to protect and grow capital in service of Bill Gates and the Gates Foundation Trust in support of their mission-related and philanthropic activities.  Mr. Gates and the Foundation Trust are committed to creating a world where every person has the opportunity to live a healthy, productive life.   Located in the Seattle area, Cascade applies its fundamental, long-horizon investment approach across asset classes and geographies, primarily through direct investing, as well as through a select group of funds and segregated accounts.  Cascade offers the unique blend of being part of a team that manages a multi-billion-dollar portfolio while also working with professionals in a culture that values intellectual curiosity, collaboration, and respect.Team DescriptionThe Technology team is responsible for providing high-quality technical support to our internal clients. We are comprised of world-class Technology Service Desk, systems administration, development, cybersecurity and project management teams.  We are small and adaptable; this role will have the opportunity to support a wide variety of key IT initiatives, programs, processes, and daily activities.Position Description Reporting to the Director of Information Security, the Senior Cyber Security Analyst plays a key role in maintaining the organization’s security posture. The Senior Analyst is responsible for identifying, assessing, and mitigating security risks across the organization. This role entails risk analysis and reporting, hands-on operations, and a variety of project work. The successful candidate will have a broad set of technical skills, knowledge, and excellent interpersonal abilities. As a member of a small team facing varied and competing requests, adaptability and versatility are crucial.\nKey Responsibilities Risk Assessment and Analysis:Identify and assess potential cyber risks across the organization's IT infrastructure, systems, and data.Analyze security incidents and vulnerabilities to understand their potential impact and recommend remediation actions.Develop and implement risk mitigation plans and controls to address identified vulnerabilities.Conduct regular risk assessments, security audits, and threat modeling exercises.Monitor and track the effectiveness of implemented security controls. Participate in security assessments, including third-party vendor security evaluations and risk assessments.Work with internal assurance and risk functions on periodic assessments, process reviews and projects. Third Party Cyber Risk Management:Work closely with Third Party Risk team to define cyber risk assessment standards and procedures.Act as an escalation point and a subject matter expert for third party cyber risk assessments.Work with external cyber risk service to ensure cyber risk assessments are properly managed, remediated and reported.  Coordinate with business owners on vendor cyber risk assessments.Monitor and report on the Third-Party Cyber Risk Management program.Threat Intelligence:Use various tools and platforms, including open source, to monitor and interpret threat data.Generate reports and briefings on threat intelligence findings, detailing threats, potential impact, and recommended mitigation strategies. Work with threat intelligence service providers to ensure appropriate continuous monitoring and coverage for key events and assets relevant to the company. Reporting and Collaboration:Prepare and present regular reports on cyber risk posture, security incidents, and key performance indicators (KPIs) to the Director of Information Security and other stakeholders.Communicate complex security information in a clear and concise manner to both technical and non-technical audiences.Contribute to the development and maintenance of security policies, procedures, and standards.Enhance and maintain security dashboards, tracking key security metrics, providing transparent reporting for key stakeholders.Work with internal assurance and risk functions to ensure the organization complies with appropriate standards.Security Operations and Projects:Act as an escalation point and coordinator for the external 24/7 SOC and other key security vendors.Assist with and participate in post-incident reviews and lessons learned sessions to improve incident response processes and procedures.Use tools such as SIEM, EDR, and identity management platform for monitoring, alerting, and mitigating security incidents, ensuring prompt response and resolution across teams.Serve as a liaison between Cascade and key security vendors. Assist with patch & vulnerability management, vulnerability tracking, and timely SLA management, while collaborating with cross-functional teams to prioritize and address critical vulnerabilities.Evaluate, select, deploy and maintain new security tools, technologies, or platforms to enhance security posture.Plan, coordinate and execute cybersecurity projects.Assist as needed with day-to-day tasks, maintaining ongoing security operations and responding to security escalations.Support incident response efforts in the event of a major security incident or breach, working with other teams to resolve issues and restore systems.Perform other related duties as assigned.Skills and QualificationsBachelor’s degree in CS, Information Systems, Engineering, Business, or a related field.8+ years of experience in a cybersecurity role in an enterprise environment. Excellent communication (oral, written, presentation) and interpersonal skills.Strong analytical and problem-solving abilities. Proficiency in basic data analysis and reporting. Ability to work well in a team environment.Proficiency with Microsoft Windows, M365, Microsoft Active Directory, Microsoft Azure.Familiarity with security and privacy risk frameworks like NIST, SOC 2, SOX, HIPAA, ISO 27001.Experience working with security operations-related functions, including working cross-functionally with IT, GRC, legal, and other departments.Must show attention to detail and the ability to multi-task in a rapidly changing environment, and the ability to work independently.Maintains a high standard of ethics, professional judgement and personal conduct. Certifications (Preferred):Security management certifications such as ISC2, CISSP, CISM. Other:This position requires some weekend and evening assignments as well as availability during off-hours for participation in scheduled and unscheduled activities.Occasional lifting, handling, pushing, or moving objects up to 50 lbs.\n$175,000 - $200,000 a yearWhat We OfferCascade is committed to paying employees equitably for substantially similar work. A reasonable estimate of the current base salary range for this position is listed above, with the exact amount driven by several factors including relevant experience, knowledge, education, degree to which a candidate meets the role requirements, and other qualifications. We believe that our employees are the reason for our success, and in recognition of their contributions, eligible employees may participate in a generous annual performance-based discretionary bonus program. Cascade proudly supports our employees and their families with a comprehensive fully paid benefits package, including medical, dental, vision, life, AD&D, long-term disability insurance, and a generous employer match to 401(k) retirement savings contributions. Employees are also eligible for 18 days of paid vacation each year for the first four years of employment, eight paid holidays, up to three floating holidays per year, up to 14 days of sick leave, and generous paid parental and family leave. Our benefits also include several employee wellness programs and mental health resources, a charitable giving match, and reimbursement for fitness, daycare, and/or commuter expenses.\nWhat We ValueCascade values diversity, equity, and inclusion and is deeply committed to providing equal employment opportunies for all employees and all applicants seeking employment. All employment decisions are based on a candidate’s or employee’s capabilities and qualifications without regard to race, color, creed, religion, sex, sexual orientation, gender expression or identity, age, national origin, citizenship, veteran, military, marital status, sensory, physical, or mental disability, genetic information, or any other status or characteristic protected by applicable law. Questions regarding accommodation requests due to a disability should be directed to Human Resources.  Employment RequirementsUpon hire, you are required to present proof of your eligibility to legally work in the U.S.

    Read Less
  • Information Security Analyst-SQL/ Python Data Reporting  

    - Maricopa County
    You Lead the Way. We’ve Got Your Back.With the right backing, people a... Read More
    You Lead the Way. We’ve Got Your Back.With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you create a career journey that’s unique and meaningful to you with benefits, programs, and flexibility that support you personally and professionally.At American Express, you’ll be recognized for your contributions, leadership, and impact—every colleague has the opportunity to share in the company’s success. Together, we’ll win as a team, striving to uphold our company values and powerful backing promise to provide the world’s best customer experience every day. And we’ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong.Join Team Amex and let's lead the way together.As part of our diverse tech team, you can architect, code and ship software that makes us an essential part of our customers’ digital lives.  Here, you can work alongside talented engineers in an open, supportive, inclusive environment where your voice is valued, and you make your own decisions on what tech to use to solve challenging problems.  American Express offers a range of opportunities to work with the latest technologies and encourages you to back the broader engineering community through open source.  And because we understand the importance of keeping your skills fresh and relevant, we give you dedicated time to invest in your professional development.  Find your place in technology on #TeamAmex. How will you make an impact in this role?This position will be the part of Identity Analytics and Controls operations team in Identity and Lifecycle Management. This role is responsible for completing key deliverables to support the entitlement lifecycle control management, policy-based access control and access revocation process, engineer and implement new controls measures to further improve data quality and drive least privilege. We are seeking a candidate with a solid grasp of information security and technology controls.Job Responsibilities This is a Mid-level professional and technical role, developing new strategy, and implementing control measures effectively.Design, Implement and Support the entitlement lifecycle management, policy-based access control (PBAC), access revocation, supporting its technologies, processes, and project initiatives.Engineer solutions that proactively reduce the need for human intervention in IAM controls.Identify trends and opportunities for access revocation through analysis of datasets from various sources.Participates in the development of plans and strategies for information security processes, and programs.Perform exploratory analysis to identify patterns and insights in the data and automate access revocations based on insights.Provides day-to-day operational management over functional processes and project delivery.Creating and updating process and technical documentation. Accountable for ensuring security standard methodologies, policies, and procedures are implemented and adhered to.Project requirements analysis, technical design, and implementation activities.Minimum qualificationsBachelor’s degree in computer science, computer engineering, or related field5+ years of experience in Information systemsUnderstanding of Identity and Access Management. Ability to understand all facets of the Identity and Access Management lifecycle including the threats and vulnerabilities therein.Interpreting data from various sources to provide valuable insights and implement the recommendations to drive least privilege. Proficiency in Python for data wrangling, transformation, writing modular reusable scripts, automation of data pipelines and reporting.Strong command of SQL for data querying, filtering and transformation. Comfortable with complex joins, aggregations and familiarity with databases.Experience in automating report or dashboards, knowledge on data quality checks and exception handling.Ability to understand, analyze data and produce meaningful conclusions.Experience with Web Services and REST APIs.Demonstrate ability to prioritize and handle multiple concurrent assignments with strong attention to details. Self-motivated and dedicated, with the ability to work effectively as a member of a team and independently. Ability to learn quickly, work effectively in ambiguous situations, and a willingness to take charge and drive results.Excellent time management skills, and the ability to prioritize and multi-task.Understanding of the audit and regulatory environment of financial institutions.Salary Range: $85,000.00 to $150,000.00 annually + bonus + benefitsThe above represents the expected salary range for this job requisition. Ultimately, in determining your pay, we’ll consider your location, experience, and other job-related factors.We back our colleagues and their loved ones with benefits and programs that support their holistic well-being. That means we prioritize their physical, financial, and mental health through each stage of life. Benefits include:Competitive base salaries Bonus incentives 6% Company Match on retirement savings plan Free financial coaching and financial well-being support Comprehensive medical, dental, vision, life insurance, and disability benefits Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need 20+ weeks paid parental leave for all parents, regardless of gender, offered for pregnancy, adoption or surrogacy Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunitiesFor a full list of Team Amex benefits, visit our Colleague Benefits Site.American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law. American Express will consider for employment all qualified applicants, including those with arrest or conviction records, in accordance with the requirements of applicable state and local laws, including, but not limited to, the California Fair Chance Act, the Los Angeles County Fair Chance Ordinance for Employers, and the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance. For positions covered by federal and/or state banking regulations, American Express will comply with such regulations as it relates to the consideration of applicants with criminal convictions.We back our colleagues with the support they need to thrive, professionally and personally. That's why we have Amex Flex, our enterprise working model that provides greater flexibility to colleagues while ensuring we preserve the important aspects of our unique in-person culture. Depending on role and business needs, colleagues will either work onsite, in a hybrid model (combination of in-office and virtual days) or fully virtually.US Job Seekers - Click to view the “Know Your Rights” poster. If the link does not work, you may access the poster by copying and pasting the following URL in a new browser window: https://www.eeoc.gov/posterEmployment eligibility to work with American Express in the United States is required as the company will not pursue visa sponsorship for these positions.

    Read Less
  • Information Security Analyst  

    PointClickCare is a leading North American healthcare technology platf... Read More
    PointClickCare is a leading North American healthcare technology platform enabling meaningful care collaboration and real‐time patient insights. For over 20 years, the company has been focused on realizing its vision: to help create a world in which providers and plans can confidently deliver frictionless care. Since its inception, PointClickCare has grown exponentially, with over 2,200 employees working to impact millions across North America. Recognized by Forbes as one of the top 100 private cloud companies and acknowledged by Waterstone Human Capital as Canada’s Most Admired Corporate Cultures, PointClickCare leads the way in creating cloud-based healthcare software. At PointClickCare, we offer a wealth of opportunities and a vibrant culture that empowers our employees. Our dynamic environment is the perfect place to advance your career while engaging in meaningful work alongside incredible colleagues. Here, you’ll discover a space where your talents can thrive, your career can grow, and your work will have a lasting impact on healthcare across North America. We believe that work becomes profoundly fulfilling when driven by a higher purpose. Join us and be part of a team that is making a real impact. To learn more about us, check out Life at PointClickCare and connect with us on Glassdoor and LinkedIn.Position Summary:The Information Security Analyst will plan and carry out security measures to protect PointClickCare’s networks, data centers, cloud deployments, endpoints and systems, including a Software and a Service footprint and corporate environments. The Information Security Analyst will be responsible for identifying opportunities for improvement in security posture in collaboration with other security team members and other PointClickCare business units. In addition, the Security Analyst will act as lead on specific projects and technologies, assuring effective implementation and management of security tools to continue to improve the security posture of PointClickCare. Key Responsibilities•Primary point of contact to facilitate with the daily monitoring, assessing and reporting of security incidents from the  SIEM platform•Assist with ongoing Vulnerability Management program to perform routine vulnerability scans and working closely with SaaS Operations and Corporate Technology teams to coordinate remediation of identified findings.  •Provide advice and apply your experience to help tune alerting to reduce false positives•Actively assist with Security Incident Response process and support security investigations by documenting findings and root causes as and when needed•Manage processes relating to the installation, maintenance and operation of security infrastructure including SIEM, anti-virus, DLP, PAM, IAM, etc.•Work closely with key business groups across the organization to develop and maintain a proactive company-wide security presence•Act as a technical lead in security related projects/initiatives such as new security solutions to improve the overall security posture of PointClickCare•Assist with periodic security audits on current PointClickCare infrastructure, and work with appropriate team(s), such as Security, Corporate Technology, SaaS Operations and other departments to remediate any vulnerabilities found•Participating in security investigations and compliance reviews, as requested by  the GRC team. •Assist with the evaluation of security tools and processes in conjunction with Director, Security Operations. Recommend improvements to security tools, configurations, processes and policies.•Report monthly security KPIs, change requests, incidents and threats/events.•Perform ad hoc threat risk assessment (TRA) on infrastructure and systems as well as cloud-based solutions and facilitate remediation tasks with other operational teams.•Researching and assessing new threats and security alerts and determining relevance to PointClickCare environments and staff.•Ability to work independently, engage leadership as needed, and be proactive in advancing PointClickCare’s security posture.•Complete other duties as assigned.Qualifications•College diploma or university degree in the field of computer science OR relevant work experience as an Information Security Analyst.•Proven experience with security software, such as: SIEM, Vulnerability Scanning, Advance Endpoint Protection (Anti-virus/Anti-Malware), Privilege Access Management, Data Loss Prevention solutions, Cloud Security Posture Management, and Asset Management.•Extensive working knowledge of information security and vulnerabilities/threats, security best practices, tools, and techniques, including encryption.•Working technical knowledge of IT technical environments with a strong understanding of IP, TCP/IP, network administration protocols, Access Control methods, WAFs, Firewalls, and virtualized access control solutions (e.g., Network Security Groups).•Understanding/working knowledge of Windows, Active Directory, Group Policy, DNS, and Apple operating systems.•Critical thinking skills, detail oriented, well developed troubleshooting, analytical and problem-solving skills.•Good working knowledge of MS Office, MS Project, MS Excel and Visio.•Team player with ability to work autonomously and collaboratively.•Ability to prioritize, and re-prioritize work as required•Solid written & verbal communicationOther Requirements:•1-3 years’ experience as a Security Analyst or similar role.•Certifications desired are: Security+, CompTIA Security are desired but not mandatory.•AWS or Azure Cloud Certifications are desired•Associate of (ISC)2 is desired•Knowledge of relevant security standards such as NIST, ISO and HITRUST and privacy legislation such as PHIPPA, HIPPA, PIPEDA.•High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.•Excellent analytical skills, ability to manage multiple projects under strict timelines, as well as the ability to work well in demanding, dynamic environment and meet overall infrastructure and data protection objectives.•Experience with AI enabled security tooling or methods of utilizing AI in analysis of log or vulnerability data is an asset.\n\n$100,000 - $107,000 a year\nPointClickCare Benefits & Perks:Benefits starting from Day 1!Retirement Plan Matching Flexible Paid Time OffWellness Support Programs and ResourcesParental & Caregiver LeavesFertility & Adoption SupportContinuous Development Support ProgramEmployee Assistance Program Allyship and Inclusion CommunitiesEmployee Recognition … and more!It is the policy of PointClickCare to ensure equal employment opportunity without discrimination or harassment on the basis of race, religion, national origin, status, age, sex, sexual orientation, gender identity or expression, marital or domestic/civil partnership status, disability, veteran status, genetic information, or any other basis protected by law. PointClickCare welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection process. Please contact recruitment@pointclickcare.com should you require any accommodations.When you apply for a position, your information is processed and stored with Lever, in accordance with Lever’s Privacy Policy. We use this information to evaluate your candidacy for the posted position. We also store this information, and may use it in relation to future positions to which you apply, or which we believe may be relevant to you given your background. When we have no ongoing legitimate business need to process your information, we will either delete or anonymize it.  If you have any questions about how PointClickCare uses or processes your information, or if you would like to ask to access, correct, or delete your information, please contact PointClickCare’s human resources team: recruitment@pointclickcare.com PointClickCare is committed to Information Security. By applying to this position, if hired, you commit to following our information security policies and procedures and making every effort to secure confidential and/or sensitive information. Read Less
  • Sr. Cybersecurity Analyst - Regulatory, Audit, and Compliance  

    - Travis County
    Company DescriptionVisa is a world leader in payments and technology,... Read More
    Company DescriptionVisa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.Job DescriptionThis Sr. Cybersecurity Analyst position will serve as part of Visa's Cybersecurity Regulatory, Audit and Compliance function within the Cybersecurity Governance Risk and Compliance and M&A Integration (GRC) team, reporting to Director/Sr. Director. This position will provide oversight, coordination, and deliver the activities that support successful internal audits, external audits and compliance, regulatory activities, and external customer/client requests while effectively balancing the individual elements of these activities.  In addition, this role will ensure ongoing design and effectiveness of Cybersecurity controls across Visa (both automated and manual), working with technology/business control owners across the Visa organization, and using a variety of industry standards during the assessments.Essential FunctionsProvide oversight, coordination, and delivering the activities that support successful internal audits, external audits and compliance, regulatory activities, and external customer/client requests.Assist with validating the ongoing effectiveness of Cybersecurity controls across Visa (both automated and manual), working with a variety of control owners within the Cybersecurity organization, and evaluating control design and standards in a variety of program areas. You will be assessing the security on various platforms and technologies from attacks like:Payment processing platforms, Payment Wallet solutions, Consumer facing applications, COTS products deployed in house,SaaS, PaaS, and IaaS public cloud offeringsMainframe, Linux, Windows, and virtual machinesIDS, SIEM, WAF, FirewallsHSMs, Tokenization systems, data encryption solutionsAPIs, Web technologies,Relational and noSQL databasesAccess Management solutionsStay up to date on new security tools & techniques in the information security spaceGood understanding of regulatory standards that will help Cyber teams to achieve various compliance certifications like PCI, FFIEC, RBI, etc.Influence beyond immediate team and with those of more experience/seniorityDevelop data points into Information Security risk management reporting activities, including dashboards, metrics, and executive reporting contentUpdate Cybersecurity leadership on the status of technology risk and compliance issues based on assessment results and information from various monitoring and control systems.Develop dashboards and automate tasks to increase efficiency and reduce redundancy.This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager.QualificationsBasic Qualifications:• 5+ years of relevant work experience with a Bachelor’s Degree or at least 2 years of work experience with an Advanced degree (e.g. Masters, MBA, JD, MD) or 0 years of work experience with a PhD, OR 8+ years of relevant work experience.Preferred Qualifications:• 6 or more years of work experience with a Bachelors Degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD• Bachelor’s degree in Computer Science, Information Systems, Management Information Systems, or Business Administration or another related field.o Significant and relevant technical experience meeting the job description may be substituted for degree requirements.• 5+ years of work experience in Information Security, Audit, Risk, and/or Complianceo Open to experience in other relevant fields (e.g., finance, business administration, information technology, etc.) if candidate can demonstrate relevancy to this Information security-based role• 3+ years direct participation and experience across common industry security policy areas, including, but not limited to ISO, NIST, COSO, COBIT, PCI, FFIEC, SOX, SSAE16/ISAE3402, SOC 2 and others• Experience working with multiple individuals on internal and external delivery• Ability to synthesize a variety of data points, problem solve and formulate comprehensive and effective execution and risk mitigation plans• Exceptional communication skills - both written and verbal to support compliance and certification audits• Must be extremely flexible and able to manage multiple tasks and priorities on very tight deadlines.• Experience in Audit/Compliance/Regulatory discussions and proactive readiness activities in a large global financial institution or a matrix organization.• Providing ongoing gap analysis of current policies, practices, and procedures as they relate to established guidelines outlined by Industry standards• Conducting in-depth technical reviews of enterprise systems to identify the appropriate mitigation strategies required to bring these systems into compliance with established policy and industry guidelines.• Understanding of creating, testing, and deploying automated workflows using Microsoft Power Automate, including integrating Power Automate with other Microsoft 365 applications and third-party services.• Working knowledge of scripting and programming languages, such as Java, Python, PowerShell• Proficiency in SQL for querying and managing relational databases• Demonstrated ability to create, manage, and share interactive dashboards and reports using Microsoft PowerBI or other data analysis tool.• Working knowledge in extracting, cleaning, and processing data from various sources including databases, APIs, and flat files.• Understanding of database structures, principles, and optimization techniques.• Understanding of data warehousing concepts and cloud platforms (e.g., Azure, AWS).• Experience in Risk and Control Self-Assessment activities related to Cybersecurity function.• CISSP, CISA, CISM, PCI QSA/ISA Certifications preferred.Additional InformationWork Hours: Varies upon the needs of the department.Travel Requirements: This position requires travel 5-10% of the time.Mental/Physical Requirements: This position will be performed in an office setting.  The position will require the incumbent to sit and stand at a desk, communicate in person and by telephone, frequently operate standard office equipment, such as telephones and computers.Visa is an EEO Employer.  Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.  Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.Visa will consider for employment qualified applicants with criminal histories in a manner consistent with applicable local law, including the requirements of Article 49 of the San Francisco Police Code.U.S. APPLICANTS ONLY: The estimated salary range for a new hire into this position is 124,700.00 to 180,650.00 USD per year, which may include potential sales incentive payments (if applicable). Salary may vary depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position may be eligible for bonus and equity. Visa has a comprehensive benefits package for which this position may be eligible that includes Medical, Dental, Vision, 401 (k), FSA/HSA, Life Insurance, Paid Time Off, and Wellness Program. Read Less
  • Information Security Analyst  

    - Williamson County
    EnableComp provides Specialty Revenue Cycle Management solutions for h... Read More
    EnableComp provides Specialty Revenue Cycle Management solutions for healthcare organizations, leveraging over 24 years of industry-leading expertise and its unified E360 RCM™ intelligent automation platform to improve financial sustainability for hospitals, health systems, and ambulatory surgery centers (ASCs) nationwide. Powered by proprietary algorithms, iterative intelligence from 10M+ processed claims, and expert human-in-the-loop integration, EnableComp provides solutions across the revenue lifecycle for Veterans Administration, Workers’ Compensation, Motor Vehicle Accidents, and Out-of-State Medicaid claims as well as denials for all payer classes. By partnering with clients to supercharge the reimbursement process, EnableComp removes the burden of payment from patients and provider organizations while enabling accelerated cash, higher and more accurate yield, clean AR management, reduced denials, and data-rich performance management. EnableComp is a multi-year recipient the Top Workplaces award and was recognized as Black Book's #1 Specialty Revenue Cycle Management Solution provider in 2024 and is among the top one percent of companies to make the Inc. 5000 list of the fastest-growing private companies in the United States for the last eleven years. Position Summary The Information Security Analyst is responsible for assisting with the day-to-day operations of security program. The Information Security Analyst is tasked with providing technical expertise in all areas of information security. They will work closely with the security team and other various teams across the business to ensure that systems and networks are designed, developed, deployed, and managed securely.  The Information Security Analyst leads the departmental KPI activities, roadmap tracking as well as monitoring and administering the annual third-party security assessments and client related compliance requests. This role is responsible for managing quarterly security program activities, including access reviews and Internal audit activities. The Information Security Analyst will research and report on best of breed security products and remain current with emerging cyber technologies and threats that help educate and maintain a secure environment according to Confidentiality, Integrity, Availability control requirements.  \nKey ResponsibilitiesAnalyze internal security systems and security related controls to help ensure annual audit compliance, healthcare regulation adherence and corporate ethical standards.Assist in the planning and deployment of ongoing security training and education efforts for employees across the organization.Liaise with other departmental personnel to ensure that all operational security mechanisms are in place and functioning per compliance controls.Assists with developing work plans, roadmaps, meeting schedules, agendas, and other related security project management activities including scheduling meetings, outlining phases, documenting meeting notes, and follow-up activities. Help streamline, track, and administer the daily, monthly, quarterly, and annual security compliance related tasks and compliance controls. Perform quarterly access review procedures ensuring reviews are conducted, reporting data is collected and stored properly, and any anomalies are identified and properly addressed for remediation. Help to lead, manage, and document the third-party vendor procedures and well as answering client requested security questionnaires. Learn current audit procedures and assist in the collection and oversight of control evidence. Review real-time and historical reports for security and/or compliance violations. Monitor online security-related resources for new and emerging cyber threats. Help to support and enforce physical security requirements. Help to identify and implement security related improvements.Other additional duties as assigned. Requirements & QualificationsBachelor’s degree in Computer Science, IT, Business or equivalent work or educational experienceSecurity related certifications: S+, CEH, Azure, etc.  1-2 years of IT security and compliance-related experience preferred.Previous experience within the healthcare industry a plusWorking experience with the following technology vendors and products: Microsoft Azure cloud, Microsoft O365, Cortex, Qualys, DUO 2FAPrevious experience in IT systems and networkingMust have strong computer proficiency and understand how to use basic office applications, including MS Office (Word, Excel, and Outlook).Regular and predictable attendance.Special Considerations and PrerequisitesPractices and adheres to EnableComp’s Core Values, Vision and Mission.Engineer, implement and monitor security measures for the protection of computer systems, networks and information.Identify and define system security requirements.Experience managing servers, particularly virtualized environments.Ability to work well with team members to produce results.Excellent communication skills, utilized to collaborate both within IT and across all functions of the company to drive IT security initiatives.Excellent mentoring and coaching skills to assist in training staff on security directives.Design computer security architecture and develop detailed cyber security designs.Prepare and document standard operating procedures and protocols.Problem solving skills and ability to work under pressure.Advises senior management by identifying critical security issues; recommending risk-reduction solutions.Solid understanding of HIPAA and applicable compliance frameworks (SOC2, HITRUST)Strong project management and technical troubleshooting abilityStrong writing\documentation skills necessary.Ability to articulate security-related concepts to a broad range of technical and non-technical staff. Ability to work on larger projects as well as balance day to day requirements.\nEnableComp is an Equal Opportunity Employer M/F/D/V. All applicants will be considered for this position based upon experience and knowledge, without regard to race, color, religion, national origin, sexual orientation, ancestry, marital, disabled or veteran status. We are committed to creating and maintaining a workforce environment that is free from any form of discrimination or harassment.EnableComp recruits, develops and retains the industry's top talent.  As the employer of choice in the complex claims industry, EnableComp takes pride in our continuous commitment to building and maintaining a culture centered around fostering the professional growth and development of our people.  We believe that investing in our employees is the key to our success, and we are dedicated to providing them with the tools, resources, and support they need to thrive and grow their career here. At EnableComp, we are committed to living up to our core values each and every day, and we believe that this commitment is what sets us apart from other companies.  If you are looking for a company that values its employees and is dedicated to helping them achieve their full potential, then EnableComp is the place for you. Don’t just take our word for it!  Hear what our people are saying:“I love my job because everyone shares the same vision and is determined and dedicated. People care about you as a person and your professional growth. There is a genuine spirit of cooperation and shared goals all revolving around helping each other.” – Revenue Specialist“I enjoy working for EnableComp because of the Core Values we believe in. EnableComp stands true to these values from empowering employees to ecstatic clients. This company is family oriented and flexible, along with understanding the balance of work, life, and fun.” – Supervisor, Operations Read Less
  • Cybersecurity Operations Center Analyst  

    - Rensselaer County
    The New York Independent System Operator (NYISO) manages the efficient... Read More
    The New York Independent System Operator (NYISO) manages the efficient flow of electricity on more than 11,000 circuit-miles of high-voltage transmission lines, dispatching power from hundreds of generating units across the state.The NYISO’s Information Technology department invites applications for a full-time Cyber Security Operations Center AnalystThe NYISO Cybersecurity Operation Center’s (CSOC) mission is to provide a central point for 24x7x365 continuous security monitoring of NYISO’s computing environments and for responding to cyber threats, vulnerabilities and incidents that can disrupt and/or compromise the mission and operation of the NYISO.Cybersecurity Operations Center Analysts will perform a wide range of technical cybersecurity services with a focus on responding to cyber threats, intrusions, and incidents; Preventing or mitigating cyber threats and intrusions from adversely impacting the NYISO; Incorporating security operations into NYISO’s business continuity and disaster recovery operations; Providing metric, context, and risk-based driven cyber and business reporting; Collaborating and cooperating with NYISO IT Operations and Administrative groups to provide monitoring and security related oversight of critical infrastructure; Keeping all stakeholders informed of evolving threats and vulnerabilities that could impact NYISO infrastructure with the goal of enabling quick mitigation and/or remediation if such threats or vulnerabilities are ever acted upon.This position involves critical duties and responsibilities that must continue to be performed during crisis situations and contingency operations. Analysts are required to work shift rotations to support around the clock (24x7x365) coverage of the CSOC.ESSENTIAL DUTIES AND RESPONSIBILITIESAs an active member of the team, provide around the clock monitoring, analysis, and response to cyber security events.Stay ahead of and remain knowledgeable about new threats. Analyze all sourced cyber- intelligence of attacker tactics, techniques, and procedures (TTPs) across a large heterogeneous network of security devices and end-user systems.Participate in threat modeling collaboration with other members of the IT security team.Use automation to orchestrate solutions (SOAR) that automate repetitive tasks, and mature monitoring and response capabilities.Assist with incident response activities, including triage, remediation and documentation.Provide aid in threat and vulnerability research by assessing event data collected by systems both inside and outside of the CSOC.Investigate and document events to aid incident responders, managers and other CSOC team members on security issues and the emergence of new threats.Work alongside other security team members to hunt for and identify possible indication of compromise to the organization computing environments.Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event information. Escalate intrusions and compromises to NYISO’s network infrastructure, applications, and operating systems to the CSIRT as needed.Execute defined standard operating procedures, event and job aides required for successful task completion.Analyze and mitigate or remediate software and hardware vulnerabilities.Integrate and share information with other analysts and other teams.Recommend changes to Standard Operating Procedures and other similar documentation.Generate end-of-shift reports for documentation and knowledge transfer to subsequent analysts on shift.Maintain records of security monitoring and incident response activities, utilizing case management and ticketing technologies.Other duties as assigned.Provide threat and vulnerability analysis reporting as well as security advisory services. REQUIRED QUALIFICATIONSBachelor's Degree (BS) in Information Security, Computer Science, Computer Information Systems or similar fields required. In lieu of degree requirements, significant security and/or industry experience may be considered1-3 years of experience as a Cyber Security Analyst or a Bachelor of Science or other advanced degree or cyber security experience may be considered.Knowledge of various security methodologies and processes, and technical security solutions (firewall, intrusion detection systems, and Security Information and Event Management (SIEM) platforms).Knowledge of TCP/IP Protocols, network analysis, and network/security applications.Knowledge of common Internet protocols and web applications.Ability to multi-task, prioritize, and manage time effectively.Strong attention to detail.Excellent interpersonal skills and professional demeanor.Excellent verbal and written communication skills.Excellent customer service skills.Proficient in Microsoft Office Applications.PREFERRED QUALIFICATIONSExperience administrating various operating systems (e.g., Windows, OS X, Linux, etc.) commonly deployed in enterprise networks. A conceptual understanding of Windows Active Directory is also desired.Working knowledge of network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.)Experience working with various event logging systems and be proficient with security event log analysis. Previous experience with Security Information and Event Monitoring (SIEM) platforms that perform log collection, analysis, correlation, and alerting is also desired.Experience in analyzing net flow data and packet capture (PCAP). CERTIFICATES, LICENSES, REGISTRATIONSGCIA, GCIH, GIAC, CISSP, CISA, CEH, or similar certification preferred. DHS Secret Clearance or above preferred. ADDITIONAL REQUIREMENTSAbility to read, analyze and interpret general business periodicals, professional journals, technical procedures and governmental regulations. Ability to write reports, business correspondence and procedure manuals. Ability to write presentations and articles for publication that conform to prescribed style and format. Ability to effectively communicate security and risk-related concepts to technical and non-technical audiences.Ability to add, subtract, multiply and divide in all units of measure, using whole numbers, common fractions and decimals. Ability to compute rate, ratio and percent and to draw and interpret bar graphs.Ability to define problems, collect data, establish facts and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.Proficient with personal computers running the Windows operating system; experience with productivity software such as Microsoft Office applications, e-mail and Internet programs. PHYSICAL DEMANDSWhile performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand, walk, sit and use hands to perform routine office tasks. The employee is occasionally required to reach with hands and arms. The employee must occasionally lift and/or move up to 15 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. WORK ENVIRONMENTThe noise level in the work environment is usually moderate. Contact with staff and public will occur. Travel may be required to attend and/or conduct meetings, conferences and training. This position may require work on nights, weekends or holidays. Department supports a 24-hour business operation every day of the year and staff will be required to rotate on-call coverage. At the NYISO, we realize the importance of balancing the availability of remote work with the inherent value of bringing people together to attain success in the areas of maximum collaboration, relationship building and growth, teamwork, innovation and problem solving, as well as professional development and mentoring. In this role, you will be required to work onsite from our Rensselaer, NY location several days per workweek, with the option to work remotely on the remaining days. You will also be expected to respond to all business needs that may require any increase to the regular onsite requirements.The NYISO takes pride in recruiting, developing and retaining highly talented individuals. In addition to competitive salaries, we offer a comprehensive benefits package and innovative reward programs.All offers of employment will be made contingent upon the successful completion of a drug screening and background check.The NYISO is an Equal Opportunity Employer and as such, does not discriminate in its hiring or employment practices.#LI-OnsiteSalary Range$78,500 - $131,100 USD Read Less
  • OPPORTUNITYThe New Jersey Office of Homeland Security and Preparedness... Read More
    OPPORTUNITYThe New Jersey Office of Homeland Security and Preparedness is seeking to hire a full-time position assigned to the New Jersey Cybersecurity and Communications Integration Cell (NJCCIC).We offer a generous benefit package for our full-time employees which includes vacation, personal and sick leave as well as 13 annual paid holidays, medical, dental and prescription plans, retirement plans, life insurance, flexible spending account plans, commuter Tax$ave program and professional development courses. For more information on careers at NJOHSP please visit: Careers | New Jersey OHSP.This position is in the unclassified service and applicants must meet the minimum job requirements specified below.  POSTING NUMBER:              25-14-SCSC TITLE:                             Intelligence Analyst ApprenticeOHSP TITLE:                          Cybersecurity Analyst 1 ISSUE DATE:                          July 8, 2025      CLOSING DATE:                    July 17, 2025      SALARY:                                $77,143.55 - $84,367.59*                                                 LOCATION:                            Hamilton, New Jersey or Newark, New Jersey JOB DESCRIPTIONThe New Jersey Cybersecurity and Communications Integration Cell (NJCCIC) is a Division within the New Jersey Office of Homeland Security and Preparedness (NJOHSP) responsible for leading and coordinating New Jersey's cybersecurity efforts while building resiliency to cyber threats throughout the State.The Cybersecurity Analyst 1 assigned to the NJCCIC will learn to perform basic to moderately complex cybersecurity work in one or more cybersecurity categories, specialty areas, or work roles to protect organizational and/or partner networks, systems, applications, and data from cyber threats. Work will involve computer and network defense operations and activities, incident response and investigations, forensics, cyber threat intelligence, data analysis, security architecture and engineering, risk and vulnerability assessments, governance and compliance activities, and cybersecurity training. Duties will include but are not limited to:• Assist with the analysis of application, network, and endpoint security data, the design and implementation of web application firewall (WAF) capabilities.• Assist with the identification, analysis, and remediation of application security vulnerabilities and issues, performing risk assessments and providing mitigations.• Learn how to conduct technical investigations and analysis of application security incidents. • Learn how to conduct research, perform analysis, and produce intelligence products and briefings regarding threat actor tactics, techniques, and procedures as well as best practices necessary to defend against such attacks.• Participate in industry groups such as the Multi-State Information Sharing and Analysis Center (MS-ISAC), Department of Homeland Security - Cybersecurity and Infrastructure Security Agency (DHS-CISA), Federal Bureau of Investigations (FBI), New Jersey State Police (NJSP), and other government and industry peers and partners to gain and understand security threats and intelligence. • Learn how to provide direct cybersecurity intelligence and operational support to New Jersey state and local government organizations with respect to the security of application, network, and endpoint security threats. • Assist with administrative taskings for the Bureau, to include data review, collation and analysis. REQUIREMENTS  Education: Bachelor's Degree from an accredited college or university in Political Science, Criminal Justice, International Relations, Economics, Homeland Security or related areas of studies.Note: Applicants who possess a Juris Doctorate from a school of law accredited by the American Bar Association, and who have received credit for course work in international law, may substitute this degree for the required education. Special Note: Applicants accepting employment as Intelligence Analyst Apprentice in the Office of Homeland Security & Preparedness may be required to adhere to the employment restriction that they may not pursue outside gainful employment during their tenure of employment.Special Note: Applicants will be required to undergo a law enforcement candidate background investigation and record review. In addition, special and top secret security clearances by the federal government are mandated by Presidential Executive Order #12958. The Executive Order requires these procedures be adhered in order for a federal security clearance to be granted to an individual engaged in performing said duties and responsibilities.License: Appointees will be required to possess a driver's license valid in New Jersey only if the operation of a vehicle, rather than employee mobility, is necessary to perform essential duties of the position.Preference: Preference will be given to candidates with Bachelor's Degree from an accredited college or university, in the areas of Information Assurance, Cybersecurity, Computer Science, Information Technology Management, or related Science, Technology, Engineering, or Math (STEM) areas of studies; Strong IT knowledge and prior experience providing support for enterprise IT functions in order to analyze and troubleshoot both technical and security issues; Relevant cybersecurity certifications (e.g. CompTIA Security +, Network +, CySA+, SANS, Google, etc.).Resume Note:  Eligibility determinations will be based upon information presented in resume only.  Applicants who possess foreign degrees (degrees earned outside of the U.S.) are required to provide an evaluation indicating the U.S. equivalency. Advancement: Appointee's work performance will be reviewed and rated in accordance with the agency’s evaluation program, at minimal twice during each twelve (12) months of the three (3) year apprenticeship program. Upon successful completion of the thirty-six (36) month apprenticeship program, appointees will advance to the title of Intelligence Analyst 1, in accordance with New Jersey Civil Service Commission procedures.The inability of an employee in the Intelligence Analyst Apprentice title, to attain the required level of performance stipulated in each of the twelve (12) month apprenticeship period shall be considered cause for separation from employment.*Salary: Starting salary will be at the minimum of the salary range. SECURITY CLEARANCE REQUIREMENT: Applicants should be aware that all NJOHSP employees must be a U. S. Citizen due to the fact that they need to be eligible to obtain a Secret or Top-Secret Clearance from the federal government.  U. S. citizenship is a requirement for obtaining such clearance.  Additionally, a criminal and personal background investigation is conducted on all NJOHSP personnel.REMOTE WORK OR ALTERNATE WORKWEEK PROGRAM: NJOHSP currently offers a hybrid work schedule up to 2 days remote work provided you meet requirements of NJOHSP’s Pilot Telework Program. NJOSHP also offers a flexible work week with one day off per week or per pay period.  Approval is based on nature of work and operational needs. NJ RESIDENCY REQUIREMENT: In accordance with the New Jersey First Act P.L. 2011 c70, effective September 1, 2011, new public employees are required to obtain New Jersey residency within one (1) year of employment.NJ ETHICS REQUIREMENT: Applicants accepting employment with NJOHSP are required to adhere to the Conflicts of Interest Law N.J.S.A. 52:13D-12 et seq., the Uniform Ethics Code N.J.A.C. 19:61-1.1. et seq., and LPS Supplementary Ethics Code which may limit or preclude outside activities and/or outside employment.  Employees in certain positions are required to annually file financial disclosure statements.EQUAL OPPORTUNITY: NJOHSP is an Equal Opportunity Employer and is committed to inclusive hiring and dedicated to diversity in our staff.  We strongly encourage people from all groups and communities to apply.SAME Applicants: NJOHSP participates in the “State as a Model Employer of People with Disabilities”. If you are applying under the NJ “SAME” program, your Schedule A or B letter must be submitted along with your resume and any other required supporting documents indicated on the announcement by the closing date indicated below.  For more information on the SAME Program please visit https://nj.gov/csc/same/overview/index.shtml, email: CSC-SAME@csc.nj.gov or call CSC at (609) 292-4144, option 3.NJOHSP provides reasonable accommodations to applicants with disabilities where appropriate. If you need a reasonable accommodation for any part of the application hiring process, please notify the agency via careers@njohsp.gov and request the ADA Coordinator contact you.  Determinations on requests for reasonable accommodation will be made on a case-by-case basis.TO APPLY: Interested applicants should submit a letter of interest/cover letter, resume, writing sample, unoffical transcript, and State of NJ Application for Employment.  All submissions must be received no later than 4 p.m. on the closing date.  Failure to submit all required documentation may result in your disqualification from consideration.  Read Less
  • Insider Threat Analyst IV  

    At Agile Defense we know that action defines the outcome and new chall... Read More
    At Agile Defense we know that action defines the outcome and new challenges require new solutions. That’s why we always look to the future and embrace change with an unmovable spirit and the courage to build for what comes next.Our vision is to bring adaptive innovation to support our nation's most important missions through the seamless integration of advanced technologies, elite minds, and unparalleled agility—leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation’s vital interests.Requisition #871Job Title: Insider Threat Analyst IV | ExemptLocation: Hybrid 2x week onsite - 600 Dulany StreetAlexandria, Virginia 22314Clearance Level: Active DoD - Top SecretRequired Certification(s): ·       N/ASUMMARYThe United States Patent and Trademark Office (USPTO), Cybersecurity Division, has a requirement to support a Cyber Threat Intelligence (CTI) capability within USPTO. This support includes monitoring activities, developing cyber threat analysis, identifying mitigation and remediation courses of action, sharing actionable cyber threat intelligence used in organizational IT asset protection, trending strategic cyber threats and situational awareness.A successful candidate will enable our government operational counterparts to promote the rapid analysis of national level cyber threats and incidents.  The hours for the position are Monday through Friday core hours but the ideal candidate will provide technical support on-call to a 24x7 cyber program in the areas of cyber threat intelligence, cyber hunt, and incident response.JOB DUTIES AND RESPONSIBILITIES·       Assist with the USPTO Security Operations Center (SOC) with identifying valid Indicators of Compromise (IOC’s) and implementing appropriate monitoring, alerting, or blocking.·       Assist with development and contributions to cyber threat intelligence products for distribution to Federal Partners over classified and unclassified communication networks.·       Compile cyber threat data gathered including the following and related cyber threat data present and emerging adversarial tactics, techniques, and procedures through independent research and analysis of identified activity combined with current SOC operations.·       Analyze unclassified and classified sources of information and cyber threat intelligence on foreign and domestic cyber threats, including recommended mitigation and remediation actions, as well as indicators of compromise (IOC’s) that could affect USPTO information systems and /or networks.·       Perform cyber and technical threat analyses of hostile nation state actors, cybercriminals, terrorist organizations, and other malicious actors that could harm USPTO information systems and networks and report on any suspected or verified findings.·       Conduct link analysis of technical data using software tools to identify trends in attacks, targeting, and timing of suspicious/malicious activity.·       Report on key trends in cyber threat-related technology development or cybersecurity concerns associated with USPTO information systems and networks.·       Produce situational, incident-related reports on cyber threats that could affect USPTO networks.·       Assist the Government in historical tracking and reporting current trends on cybersecurity events and incidents, including to the following and related activities phishing, malware, and scanning/probing activity.·       Assist the Government with information requests, perform specialized cyber threat analyses, and produce reports for the Government and external organizations.·       Assist the USPTO SOC with advanced intrusion detection capability by providing the adversarial tactics, techniques, and procedures along with IOC’s and recommended detection rules.·       Recommend countermeasures to malware and other malicious activity that could exploit USPTO information systems and networks.·       Assist the Government with the dissemination of cyber threat information to senior management, security personnel, and key stakeholder communities, including the U.S. Intelligence Community, the U.S. Department of Defense, U.S. Federal Law Enforcement entities, and others as required.·       Assist the USPTO SOC with development of cybersecurity content, such as rules, signatures, and other methods to detect cyber threat activity·       Assist with formatting reports from various outputs targeting diverse audience (e.g., other analysts, management).·       Create metrics and Key Performance Indicators (KPIs) detailing the operational status and performance of CTI.·       Proactively utilize USPTO cybersecurity capabilities to search through USPTO information systems to detect and work with the USPTO SOC to isolate advanced threats that may evade existing security solutions.·       Develop Cloud IOC detection and response.·       Ensure threat intelligence is machine readable allowing it to be easily stored, analyzed, and transmitted in a structured format and allowing REST API integration (STIX/TAXII).·       Identify AI/ML or innovative solutions to automate threat intelligence feeds and analysis.QUALIFICATIONSRequired Certifications·       N/AEducation, Background, and Years of Experience·       Bachelor of Arts / Science·       Minimum 7 year of experience·       A Master’s Degree or higher may substitute for two (2) years of experience.ADDITIONAL SKILLS & QUALIFICATIONSRequired Skills·       A minimum of seven (7) years of professional experience with a solid understanding of incident response, insider threat investigations, forensics, cyber threats, and information security.·       A minimum of seven (7) years of experience as a Tier III senior cyber security analyst performing intelligence analysis, collection management, and technical analysis. Out of those, a  minimum of five (5) years of hands-on experience that includes host-based and network-based security monitoring using cybersecurity capabilities.  Some of the hands-on experience must be recent within the past 2 years.·       The candidate must possess a strong cyber security background with experience in host-based and network-based forensics related to the identification of advanced cyber threat activities, intrusion detection, incident response, malware analysis, security content development (e.g., signatures, rules etc.), and cyber threat intelligence.·       Must have experience in developing scripts to support cyber threat detection that outputs result in a variety of formats, such as Powershell and Javascript and REST API, Python, C++, and HTML, XML or other type most appropriate for the task.·       Must have experience in conducting cyber threat analysis, identifying mitigation and remediation courses of action; developing actionable intelligence used to protect organizational IT assets; and trending cyber threat metrics for leadership situational awareness.·       Must have experience in maintaining a comprehensive understanding of the cyber threat landscape, including identifying and analyzing cyber threats actors and activities to enhance cybersecurity posture of the organization’s IT operating environment.·       Ability and experience extracting and managing complex large data sets.·       Strong documentation and written communication skills with technical report writing experience.Preferred Skills·       Certificates Preferred:  GCTI, CTIA, CCSP, Cybersecurity Analyst+ or similar cert.·       Bachelor’s degree in a cyber related field·       Familiarity with DIA writing standards, and applicable knowledge of Intelligence Community Directive (ICD) 203 & ICD 106 standards·       Cyber related Certificates showing SME in Threat Intel, Defense/Blue teaming, digital forensics, and/or working with the cyber kill chain, IOCs, TTPs of APTs etc.·       Such certs include: GCTI, CTIA, CCSP, Cybersecurity Analyst+ etc.·       Experience working with ICS/SCADA/OT equipment and/or have certifications/education relating to industrial control systemsWORKING CONDITIONSEnvironmental Conditions·       Traditional office setting.Strength Demands·       Sedentary – 10 lbs. Maximum lifting, occasional lift/carry of small articles.  Some occasional walking or standing may be required.   Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.Physical Requirements·       Stand or Sit; Walk; Repetitive Motion; Use Hands / Fingers to Handle or Feel; See\n\nEmployees of Agile Defense are our number one priority, and the importance we place on our culture here is fundamental. Our culture is alive and evolving, but it always stays true to its roots. Here, you are valued as a family member, and we believe that we can accomplish great things together. Agile Defense has been highly successful in the past few years due to our employees and the culture we create together. What makes us Agile? We call it the 6Hs, the values that define our culture and guide everything we do. Together, these values infuse vibrancy, integrity, and a tireless work ethic into advancing the most important national security and critical civilian missions. It's how we show up every day. It's who we are.We also believe in supporting our employees by offering a competitive and comprehensive benefits package. To explore the benefits we offer, please visit our website under the Careers section.Happy - Be Infectious.Happiness multiplies and creates a positive and connected environment where motivation and satisfaction have an outsized effect on everything we do.Helpful - Be Supportive.Being helpful is the foundation of teamwork, resulting in a supportive atmosphere where collaboration flourishes, and collective success is celebrated.Honest - Be Trustworthy.Honesty serves as our compass, ensuring transparent communication and ethical conduct, essential to who we are and the complex domains we support.Humble - Be Grounded.Success is not achieved alone, humility ensures a culture of mutual respect, encouraging open communication, and a willingness to learn from one another and take on any task.Hungry - Be Eager.Our hunger for excellence drives an insatiable appetite for innovation and continuous improvement, propelling us forward in the face of new and unprecedented challenges.Hustle - Be Driven.Hustle is reflected in our relentless work ethic, where we are each committed to going above and beyond to advance the mission and achieve success.Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

    Read Less

For Jobseekers
For Employers
Contact Us
Astrid-Lindgren-Weg 12 38229 Salzgitter Germany