*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Global Firm is currently seeking a Network Video Engineer. Candidate is responsible for maintaining and developing the video conference infrastructure for all offices. It requires doing off-hour maintenance, software patching, updating firmware, and adding/removing equipment, as well as providing support to local onsite Conference Center technicians and external vendors to service video conference endpoints.

Responsibilities:
This position requires strong technical knowledge of video conference topology. The need to stay current with new unified communication platforms especially those in our environment. Have a macro and micro mindset when thinking of changes to ensure not to negatively impact our users.
Individual must also possess excellent judgment regarding local and firmwide Conference Technology vision. Must be able to assess situations quickly and proactively ensure customer/client satisfaction. Excellent verbal and written communication skills are a must in addition to having a strong customer service commitment.
Maintain video conference bridge, supporting video conference equipment and work with local techs to repair/replace endpoints when required
Work with the server team to make sure video Servers are up to date.
Apply security certificates to the required Servers.
Add video conference endpoints to our environment.
Have expert knowledge using all unified communication platforms. (Cisco, Poly, Zoom, Blue Jeans, etc.)
Keep Firm-wide and local support processes, and procedures documentation up to date
Work with the AV Architecture on new buildouts to apply configurations on the local video endpoints.
Strong understanding of how local endpoints work with other local AV equipment in the room.
Exhibit helpful, customer service-oriented attitude with team members and end-users.
Remain calm yet communicate (and act) with sense of urgency when end-user has an urgent matter requiring resolution
Develop disaster recovery, and plan b scenarios for our video infrastructure
Qualifications:
10 years of AV experience
5 years managing a video network environment
Experience with Polycom RMX
Experience managing CMS, and TMS
Must have a current or working towards Avixa CTS certification and maintained during employment.
Exceptional customer service abilities.
Superior oral and written communication and problem-solving/strategizing skills.
Willingness to learn and adapt to new systems and procedures/stay current with AV technology.
Flexibility in daily work hours to meet the conference client's needs including weekends.
Knowledge connecting to different Unified communication platforms including but not limited to Cisco WebEx, Poly, Zoom, Blue Jeans, Skype
Technologies:
MS Suite, Zoom, Teams, Cisco CMS, TMS, Polycom RMX, RSS, Crestron, Biamp, other Unified Communication platforms,
Certifications:
Avixa CTS

*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Global Firm is currently seeking a Senior Cloud Cyber Security Engineer. Candidate oversees and provides direction, and development for the security assessment and vulnerability management programs. He/She will work with leadership to determine proper security configurations. This position is hands-on and includes performing security risk assessments on new and current technologies, analysis and reporting on vulnerabilities as part of the overall vulnerability management function, collaboration with Security Architecture on projects, and consulting to provide subject matter expertise.

Responsibilities:
Lead and mentor the security engineering team.
Provide input into the strategic decisions that affect the functional area of responsibility and participate in long-term strategy and planning for Information Security.
Manage and mature the security assessment and vulnerability management programs. Create and maintain system, metrics, procedural and support documentation.
Perform security assessments for IT projects, technologies and third-parties (eg, vendors and service providers).
Collect information and assess emerging threats including software vulnerabilities. Coordinate the triage of and response to vulnerability information. Disseminate this information regularly to firm staff and management as appropriate.
Subject matter expert for Information Security, consulting to technical and non-technical management, and attorneys as necessary.
Contribute to the development and maintenance of security policies, standards, processes and guidelines.
Participate in issues management (exception and findings requests) as needed.
Qualifications:
Six (6) years of direct work experience in security assessments, vulnerability management, or similar.
4-year college degree in information technology or equivalent experience
Experience with assessments in Windows and Unix is required
Knowledge of IT security controls and IT infrastructure is required
Experience with cloud technologies such as Microsoft Azure IaaS and SaaS is required
Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required
Scripting/automation experience such as Python, PowerShell and API integrations is preferred
Outstanding communication (verbal, written, visualization and listening) skills
Self-starter who can work independently as well as in a team setting
Interest in understanding customer perspective to aid in the development of the right solution
Commitment to delivering quality solutions
Ability to communicate technical topics to a non-technical audience
The ability to research and solve complex security and networking challenges
Demonstrated personal skills to effectively cooperate and communicate with business partners
Creative problem solving, analytical, industry knowledge, project management and communication
Technologies/Software:
Knowledge of security technology capabilities
Knowledge of cloud capabilities, controls and implementation
Knowledge of security administration and role based security controls
Knowledge of authentication technologies and their interaction with different platforms, both on-site and remote
Knowledge of Identity & Access Management technologies
Knowledge of anti-malware technologies
Knowledge of Intrusion Detection and Intrusion Prevention technical capabilities
Knowledge of both client and server Firewalling technologies and their configuration and administration
Knowledge of security systems log correlation and analysis
Knowledge of data encryption technologies
Knowledge of Endpoint Detection and Response tools
Knowledge of vulnerability assessment and forensic tools
Knowledge of web filtering and email SPAM prevention techniques
Certificates:
Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP) are preferred.

*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Fortune 500 Company is currently seeking a Senior Manager Cloud Platform Services. Candidate will lead a team of solutions architects, developers, engineers, and project managers who strive to deliver best of breed custom solutions. Candidate will be responsible for managing team of FTEs and/or 3rd party contractors.

Responsibilities:
Responsible for collaborating with business and technology stakeholders and product teams to develop and articulate the Platform Runtime vision, act as the subject matter expert in Cloud Compute discussions with cross functional technical and business stakeholders, as well as deliver and sustain the end-to-end customer experience.
Manage, design, develop, and implement cloud compute platforms, Virtual Machines and Server-less technologies in the various public cloud providers.
Ensure integrations in the platform runtimes are consistent across compute methods and standard for all deployments, including secrets management, logging, observability, and cloud storage technologies.
Ensure the platform runtimes adhere to all global security policies.
Work closely with the Platform Developer Experience team to ensure seamless integrations and handoffs between developer tools and the various runtime platforms.
Create Platform Runtime Onboarding, Data Governance and Policies ensuring best practices and continuous improvements are met.
Work with the Platform Adoption team to ensure viable on ramps exist to meet users where they are to ensure a smooth adoption of the new platform.
Responsible for integrating Platform Runtime information into external firm systems including CMDB, Logging, Observability, etc.
Work closely in a coordinated effort with other Platform Engineering discipline teams to ensure seamless integration of services in support of a friendly developer experience.
Participate in the Architecture Review Process to help steer developers towards platform solutions whilst gathering requirements to ensure we close functional gaps on the platform.
Lead the architecture and design of engagements implementing workflows and integrating with applications by gathering requirements, problem resolutions and providing recommendations ensuring the quality of the runtime environments is maintained and all configuration items are correct, complete and compliant.
Qualifications:
Bachelors Degree in computer science or related technical field
10+ years of experience. Preferable 7+ years in an enterprise-level infrastructure platform role with a strong understanding of concept pertaining to system availability, resiliency, security, and recoverability across Microsoft, Azure, AWS, Cloud Services, Active Directory, VMWare, VDI, Horizon View Windows SCCM, Microsoft end user technology, and Unix/Linux knowledge
Must have at least 5+ years of experience in managing teams in the 5-8 person range.
Must have 5 years of experience designing, developing, and maintaining application system integrations operating in varied complex application environments, with database technologies on Cloud/physical/virtual platforms
Experience in 1 of the primary public cloud providers is a must. Direct experience in Azure and AWS is preferable

*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Financial Institution is currently seeking a Cloud Security Testing Engineer with AWS experience. Candidate is responsible for security testing and managing day to day engineering tasks. This position is a senior engineering position that requires the ability to complete highly technical testing and provide informational updates to leadership and executive staff.

Responsibilities:
Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments
Perform independent reviews of security, network, applications, and cloud environments
Produce reports and artifacts for various levels of leadership and staff relating to security related activities
Ensure alignment of security controls as part of the Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
Participate in developing security road-map, adopt security best practices, and implement new ideas and innovations according to the industry trends
Continue to support, grow, and assist development current processes and tools
Qualifications:
Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing.
Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work.
Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead projects for the entirety of the life cycle.
Experience with AWS Services including automation services (Lambda, JSON, etc )
Experience with DevOps Pipelines and GitHub Repos
Architectural understanding and expertise of cloud and hybrid cloud infrastructure
Education and/or Experience:
Five years Experience with Security Engineering activities and testing.
Three years of experience with DevOps processes
Three years experience with AWS architecture and services.
Certificates or Licenses:
Certification in at least one or more of the following:
AWS Certified Solutions Architect
AWS Certified Security Specialty
Certification Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
GIAC Cloud Security Essentials (GCLD)
GIAC Cloud Security Automation (GCSA)
GIAC Security Essentials (GSEC)
GIAC Defensible Security Architecture (GDSA

*We are unable to sponsor for this permanent Full time role*

*Position is bonus eligible*

Prestigious Financial Institution is currently seeking a Cloud Security Testing Engineer with AWS experience. Candidate is responsible for security testing and managing day to day engineering tasks. This position is a senior engineering position that requires the ability to complete highly technical testing and provide informational updates to leadership and executive staff.

Responsibilities:
Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments
Perform independent reviews of security, network, applications, and cloud environments
Produce reports and artifacts for various levels of leadership and staff relating to security related activities
Ensure alignment of security controls as part of the Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
Participate in developing security road-map, adopt security best practices, and implement new ideas and innovations according to the industry trends
Continue to support, grow, and assist development current processes and tools
Qualifications:
Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing.
Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work.
Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead projects for the entirety of the life cycle.
Experience with AWS Services including automation services (Lambda, JSON, etc )
Experience with DevOps Pipelines and GitHub Repos
Architectural understanding and expertise of cloud and hybrid cloud infrastructure
Education and/or Experience:
Five years Experience with Security Engineering activities and testing.
Three years of experience with DevOps processes
Three years experience with AWS architecture and services.
Certificates or Licenses:
Certification in at least one or more of the following:
AWS Certified Solutions Architect
AWS Certified Security Specialty
Certification Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
GIAC Cloud Security Essentials (GCLD)
GIAC Cloud Security Automation (GCSA)
GIAC Security Essentials (GSEC)
GIAC Defensible Security Architecture (GDSA

Active Directory (AD) Administrator with robust documentation and security related projects

LOCATION: REMOTE

CONTRACT - 6 months

SELLING POINTS: AD Administration, Windows, File Administration, basic PowerShell Scripting. You will build reports, identify AD domain owners and focus on data clean up efforts. You will have exposer to security related projects and any robust documentation experience is a major plus.

Job Description:

o 3-5 years of experience

o Work with AD group management within Active Directory domain

o Build reports, identify AD domain owners, and appropriately document

o Build category and inventory of service accounts

o Identify all service accounts in environment

o Light windows sys. admin engineering experience (does not need to be full fledged engineer; focus on data cleanup efforts with exposure to security related project)

Skills/Experience:
3+ years experience in one or more of the following:
Active Directory configuration, administration, and troubleshooting
Windows Server platform administration
Scripting PowerShell
Required Skills:
Active Directory Administration
Windows File Server Administration
Basic Scripting using PowerShell

Associate Principal, Security Engineering/Blue Team Security Testing

SALARY: $140k - $160k flex plus 15% bonus

LOCATION: remote if in: IL, TX, FL, GA, MA, MD, MN, NC, NJ, NY, DC, and WI

Looking for a candidate to do blue team security testing. This is a cloud security role, blue team testing, cloud assessments, web applications, mobile testing.
This position is responsible for security testing and managing day to day engineering tasks. This position is a senior engineering position that requires the ability to complete highly technical testing and provide informational updates to leadership and executive staff.
Primary Duties and Responsibilities:
Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments
Perform independent reviews of security, network, applications, and cloud environments
Produce reports and artifacts for various levels of leadership and staff relating to security related activities
Ensure alignment of security controls as part of Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
Qualifications:
Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing.
Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work.
Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead projects for the entirety of the life cycle.
Technical Skills:
Experience with AWS Services including automation services (Lambda, JSON, etc )
Experience with DevOps Pipelines and GitHub Repos
Architectural understanding and expertise of cloud and hybrid cloud infrastructure
Education and/or Experience:
Five years' Experience with Security Engineering activities and testing.
Three years of experience with DevOps processes
Three years' experience with AWS architecture and services.
Certificates or Licenses:
Certification in at least one or more of the following:
AWS Certified Solutions Architect
AWS Certified Security Specialty
Certification Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
GIAC Cloud Security Essentials (GCLD)
GIAC Cloud Security Automation (GCSA)
GIAC Security Essentials (GSEC)
GIAC Defensible Security Architecture (GDSA)

Red Team, Network/Mobile Application Penetration Tester

Salary: $170-$180k + 20% Bonus

Location: 100% Remote

*We are unable to provide sponsorship for this role*

*Bonus Eligible*

Seeking a Red Teamer that will engage in targeted simulations consisting of threat intelligence gathering, network & application penetration testing, social engineering, physical security testing, mobile device testing, and more.

Qualifications
BS in Computer Science, Information Management, Information Security, or other comparable technical degree from an accredited college/university desired
Security-related certifications (CISSP, CISA, CRISK, ISSAP, GSLC, OSCP, OSCE, GPEN, or GXPN, etc.) highly desired
10+ years' experience in an IT environment with 8+ years' experience penetration testing
Excellent focused domain areas of expertise as well as a good breadth of experience across Network/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing, Social Engineering and Open-Source Intelligence, Basic Emissions Testing, Physical Security Testing, and more
Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, IaaS/PaaS/SaaS)
Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed
Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications
Exhibit ability to understand and probe/exploit a diverse range of Network and Internet Protocols
Must have direct practical experience with one or more high level programming language
Strong proficiency in network, application, emissions, and physical security
Strong proficiency in social engineering and intelligence gathering
Strong experience with custom Scripting (python, powershell, bash, etc.) and process automation
Strong experience with database security testing (MSSQL, DB2, MySQL, etc.)
Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark, Recon-NG, Netsparker, Ettercap/Bettercap, Hashcat, Bloodhound, Ida Pro, Ghidra, Sublist3r, Rubeus, Mimikatz, CrackMapExec, Exploitdb, Yersinia, Impacket, etc.)
Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls
Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus
Experience with using ServiceNow a plus.
Responsibilities
Conduct various Red Team activities such as: Intelligence Gathering, Network/Operating System/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Testing, Social Engineering, Basic Emissions/Signals Testing, Physical Security Testing, etc.
Execute Open-Source Intelligence Collection and Analysis Techniques (OSINT); leverage available resources and develop custom tools.
Understand vulnerabilities and develop relevant exploits/payloads for use during Red Team activities.
Perform security risk assessment, threat analysis and threat modelling.
Perform independent reviews of security, network, and applications.
Plan/Design/Execute security related activities and create artifacts.
Assist management with the improvement of policies and procedures to support Security Testing and Red Team activities as well as other security duties which may arise.
Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends.
Consult with technical experts and system owners on all aspects of Information Security and Compliance.
Work closely with Production Support staff, Incidence Response, and IT infrastructure to increase organizational security posture.
Supports and successfully completes Audits.
Cross-train the other Security Red Team members
Cross-train other teams within Security Services and IT departments to provide subject matter knowledge of a specific adversarial threat/risk, or to assist with remediation path recommendations
Participate in Lessons Learned process to provide information to help improve practices, methodologies, tools, and other technologies
Participate on various technical committees and provide input and feedback to department
Stay current on emerging technology trends and the threat landscape
Advise IT on current and emerging threats, their attack vectors, and how to mitigate them

Database Administrator

Salary: $100k-$115k + bonus

Location: Chicago, IL

Hybrid Schedule

*We are unable to provide sponsorship for this role*

Qualifications
Bachelor's Degree (or equivalent) in Computer Science, Engineering, Mathematics, or Business
1+ years' experience with DB2 in a z/OS environment
1+ years' experience with DB2 LUW, preferably on Solaris
1+ years' experience with SQL Server
Experience with Embarcadero/similar tools (E/R Studio, DBArtisan, and Schema Manager)
Experience with BMC tools for DB2 (Change/Catalog Manager, MainView, Log Master)
Proficient with coding and review of SQL, stored procedures, and triggers
Basic Java, REXX, Perl, or C++ skills (preferred)
Responsibilities
Assists with the design, implementation, and maintaining databases
Provides consultation support in database analysis, modelling, coding and production problem resolution
Maintains metadata repositories
Provides support in database access methods, device allocations and organization
Develops maintenance, backup and recovery procedures and documentation
Manages database performance and disk usage
Participates in Disaster Recovery drills
Provides Primary On-Call Support for production problems

Internal Audit Manager

Salary: $130k-$145k + $15k-$20k Bonus

Location: Hybrid role 2 days remote, 3 days in-office in either location

Plano, TX/McLean, VA

*We are unable to provide sponsorship for this role*

*Bonus Eligible*

Qualifications
8+ years proven experience, including public accounting, risk management, internal audit, and 2+ years of management/supervisory experience.
Proficient in fundamental audit skills including risk/control assessments, setting testing strategy, root cause analysis, audit documentation and audit methodology
Experience in coaching/training, workpaper reviews and providing timely written project evaluations.
CIA or CPA certification required
Solid understanding of the financial services industry
Experience auditing financial institutions across different risks
Responsibilities
Be an inspiring leader while ensuring audit work is completed timely and in keeping with professional standards.
Maintain, track and communicate project status to partners.
Provide consultative advice to business management on current or emerging risks, control, and governance matters.
Monitor management's remediation of identified issues and supervise the testing related to the effectiveness of the remediation.
Based on the work performed, identify and draft strategic, business focused issues and effectively communicate results to relevant partners.
Conduct internal training sessions to share knowledge and standard methodologies.