Information Security Analyst Jobs in North Huntingdon, PA

Duration: 12+months Key Responsibilities: Execute complex security administration tasks for applications, ensuring appropriate access for internal and external users. Manage the IAM end-to-end lifecycle (Joiner, Mover, Leaver) and ensure compliance with IAM policies. Facilitate IAM onboarding and adoption by coordinating discussions between stakeholders to define security processes, support requirements, workflows, and form design. Conduct research and investigations on access setup issues and general inquiries. Support IAM-related initiatives and contribute to process improvement efforts. Ensure compliance with security policies and assist in enforcing IAM standards and procedures. Qualifications & Requirements: Experience: 3-5 years in Information Security, IAM, or a related technology role. Education: Bachelor's degree in Computer Science or a related discipline (or equivalent work experience). Industry Experience: Financial industry experience is not required. Technical Skills: Strong knowledge of Identity and Access Management (IAM) processes, including user provisioning, entitlements management, and compliance. Strong analytical skills to collect, organize, and analyze large amounts of security data with attention to detail and accuracy. Ability to research and troubleshoot IAM setup issues while providing clear written and verbal communication. Thanks Drishti LanceSoft Inc

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself, and a better working world for all. The exceptional EY experience. It's yours to build. EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. In an ever-evolving IT landscape, EY stands as a beacon of trust for clients across diverse industries seeking reliable solutions to address their intricate risks and vulnerabilities. As a vital member of our Secure Design Pattern team, you will play a vital role in achieving this objective by empowering clients to comprehend, navigate, and secure all applicable layers of business applications. This is an opportunity to leverage both your technical prowess and business acumen to drive our mission and make a significant impact on global cybersecurity. **The opportunity** We currently offer an exciting career opportunity for a Secure Design Pattern Analyst responsible for establishing blueprints to standardize implementation of security controls across layers of business applications and architectures. At our core, our Secure Design Pattern services play a pivotal role in assisting our clients to implement business applications securely and in line with industry best practices and client policies and standards. The ideal candidate will be responsible for documenting secure design patterns, interfacing with application owners, architects, and subject matter resources, as well as discuss and apply secure patterns, guidelines, and principles. **Your Key Responsibilities** + Create and maintain design patterns documentation and playbooks + Coordinate and streamline the processes to create, update, manage, and control design patterns. at clients. + Engage with security architects, product owners, engineers, and subject matter resources to support new design patterns and updates to design patterns. + Promote security best practices within discussions. + Review and process design pattern service requests, ensuring timely resolution. + Track and report the status of secure design pattern requests, provide regular updates on progress and outcomes. **Skills and Attributes for Success** + Proven experience writing technical documentation, standard operating procedures, policies, standards supporting the implementation of security controls and architecture patterns. + Understanding and apply secure design concepts. + Strong communication skills, with the ability to convey technical information in discussions and documentation. + Knowledge of industry security frameworks and compliance standards and regulations (e.g., CMMC, NIST, ISO 27001, CIS, OWASP, TOGAF, SABSA, etc.) + Familiarity with cloud security platforms (e.g., AWS, Azure) and cloud-native security controls. + Basic understanding of authentication (OAuth, SAML, OpenID), authorization (RBAC, ABAC), and Zero Trust + Understanding of encryption algorithms, key management, digital signatures, and PKI. + Familiarity with SIEM, SOAR, XDR, log management, and anomaly detection. + Familiarity with secure coding practices, DevSecOps, SAST/DAST tools, and software security design. + Familiarity with firewalls, VPNs, TLS, micro-segmentation, and intrusion detection. + Excellent problem-solving skills and the ability to manage multiple tasks effectively. + Strong communication skills to collaborate with team members and stakeholders (e.g., business, information technology, product owners, cybersecurity. + A track record of delivering high-quality client services and work products within expected timeframes. + Ability to managing and maintain inventories of documentation **To qualify for the role you must have** + Understanding of security principles + Bachelor's degree in computer science, information technology, cybersecurity, technical writing, or a related field + Proven experience in technical writing + Hands on experience managing or working on a security architecture and/or GRC team + Basic knowledge of cloud platforms (AWS, Azure) and their security features + Knowledge of common industry security frameworks and regulations (e.g., CMMC, NIST, ISO 27001, CIS, OWASP, etc.) + Knowledge of general security concepts and methods, such as security policy creation, enterprise security strategies, architectures, governance, vulnerability assessments, privacy assessments, intrusion detection, and incident response + Experience in leading process definition, workflow design, and process mapping + Experience in ServiceNow managing tickets and generating basic reports. **Ideally, you'd also have** + Professional certifications in cybersecurity, such as CISSP, CISM, or specific vendor certifications like from AWS, Azure, and Google Cloud. + Hands on experience in cloud-based security solutions + Prior experience as a security architect + Experience in assessing compliance to regulations and standards + Strong interpersonal and communication skills, with the ability to collaborate effectively with clients and cross-functional teams to present solution designs, options, and innovations. **What we look for** We are interested in intellectually curious people with a genuine passion for cybersecurity. With your broad exposure across security architecture and enterprise applications, we will turn to you to speak up with innovative new ideas that could make a lasting difference not only to us - but also to the industry at large. If you have the confidence in both your writing, presentation, and technical abilities to grow into a leading expert here, this is the role for you. **What we offer** We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $57,700 to $94,800. The salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $69,000 to $107,100. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. + **Continuous learning:** You'll develop the mindset and skills to navigate whatever comes next. + **Success as defined by you:** We'll provide the tools and flexibility, so you can make a meaningful impact, your way. + **Transformative leadership:** We'll give you the insights, coaching and confidence to be the leader the world needs. + **Diverse and inclusive culture:** You'll be embraced for who you are and empowered to use your voice to help others find theirs. EY accepts applications for this position on an on-going basis. **If you can demonstrate that you meet the criteria above, please contact us as soon as possible.** EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. For those living in California, please click here (********************************************************************************************************************************************************************** for additional information. EY is an equal opportunity, affirmative action employer providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at **************************

We are Covestro. We are curious. We are courageous. We are colorful. We refine chemical material solutions with game-changing products. Let us empower you to push boundaries. Join us and our 18,000 colleagues now and together we will make the world a brighter place. The global Cyber Defense Team at Covestro is looking for a Junior Cyber Security Analyst to join a matrixed organization that has its leadership in Germany. The team is organized into different areas of responsibility (e.g., endpoint security, cloud security, monitoring systems) and each employee is independently responsible for the assigned sub-area. Team members are expected to collaborate and support each other's areas and assist in monitoring and responding to the security events generated by those systems. The focus of this position is to help build an incident response framework and as well a framework for regular penetration testing for applications and platforms. Both areas will be supervised by senior experts, and we are looking for someone who has made first experiences in technical security issues and is willing to grow in a challenging environment. Position is based in US (Pittsburgh), but responsibilities are global and include collaboration with Europe/Asia. Overseas travel may be required. Major tasks and responsibilities Support Senior Cyber Security Analysts to detect weaknesses of Covestro applications and systems and build attack frameworks to penetrate the applications/systems Develop mitigation measures based on the result of the pen tests Improve and automate processes for the Cyber Security Incident Response Team at Covestro Fluency in scripting languages to build the attack frameworks and analysis tools Support the Cyber Defense team in regular monitoring activities In-depth analyses of L2/L3 security alarms by our SOC supplier Based on experiences automate incident response activities and implemented them. The possibilities of AI for decision-making should be considered Basic Qualifications Bachelor's degree in computer science or closely related area required with 3+ years of IT cyber security experience/direct professional experience in IT security field Preferred Qualifications Minimum of one relevant certificate (like Certified Incident Handler etc.) Knowledge and Skills Motivated and analytical self-starter who can manage projects, report and stay organized. hands on experience in CERT teams. Basic knowledge of security processes (port-mapping, vulnerability identification and remediation, anomaly detection), platforms (networking, firewalls, proxies, cloud and LAN/WAN), risk categorization frameworks (NIST, ISO, IEC). Scripting experience (Python, PowerShell, regex etc.) Hands on experience in analyzing SIEM/EDR data sets. International travel required #LI-Hybrid YOUR APPLICATION Are you as curious, courageous and colorful as we are? If so, we can offer you an exciting career opportunity. We look forward to receiving your application and resume. Become part of our team - apply now! Equal Employment Opportunity: Hiring and advancement are based on job-related requirements and on an individual's qualifications to perform a job. All aspects of employment are carried out free of discrimination or harassment based on race, color, religion, sex (including pregnancy), national origin, age, disabilities, genetic information, veteran status, sexual orientation, gender identity/gender expression or any unlawful criterion, existing under applicable federal, state, or local law. Contact Us Info-Hotline: ***************If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access this site as a result of your disability. To make a request, please call **************.

**Pittsburgh, PA** **Type:** Contract **Category:** Security **Industry:** Financial Services **Reference ID:** JN -032025-101081 **Shortcut:** ********************************** + Description + Recommended Jobs **Description:** Our client is looking for a motivated Information Security Analys for their Identity Access Management Operations to support end to end lifecycle support for access driven processes. This role is required to be on site in Pittsburgh, PA 2 days per week. _Due to client requirement, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance._ _Rate: $30 - $35 / hr. w2_ **Responsibilities:** + Responsibilities include execution of complex security administration of BNYM applications to establish access for new external/internal client users and maintain existing clients. + Identity and Access Management Onboarding and Adoption. Facilitates discussions between stakeholders (technical and non-technical) to ensure a full understanding of security administration process, support requirements, workflow, and form design. + Follows security-related processes and provides assistance on security-related initiatives. + Responsibilities include execution of day-to-day security administration, completion of projects intended to improve operations, client satisfaction, and enforcement of appropriate standards and procedures for assigned operational area. **Experience Requirements:** + Identity and Access Management end-to-end lifecycle, from access driven setup processes (Joiner, Mover, Leaver) to IAM compliance. Technical awareness to support development and implementation for IAM Onboardings and platforms + Strong analytical skills with the ability to collect, organize, analyze, and disseminate significant amounts of information with attention to detail and accuracy + Ability to perform research, investigation on setup issues, and general inquiries. Must have solid written and verbal communication skills **Education Requirements:** Bachelor's degree in computer science or a related discipline, or equivalent work experience required _Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range._ _W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality._ _Please be advised- If anyone reaches out to you about an open position connected with Eliassen Group, please confirm that they have an Eliassen.com email address and never provide personal or financial information to anyone who is not clearly associated with Eliassen Group. If you have any indication of fraudulent activity, please contact ********************._ _About Eliassen Group:_ _Eliassen Group is a leading strategic consulting company for human-powered solutions. For over 30 years, Eliassen has helped thousands of companies reach further and achieve more with their technology solutions, financial, risk & compliance, and advisory solutions, and clinical solutions. With offices from coast to coast and throughout Europe, Eliassen provides a local community presence, balanced with international reach. Eliassen Group strives to positively impact the lives of their employees, clients, consultants, and the communities in which they operate._ _Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status._ _Don't miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!_

Opportunity The Information Security Analyst supports cybersecurity responsibilities and projects for the customer's various network systems. Implement appropriate Risk Management Framework, audit and strategize IT development and monitoring principles, control reviews, monitor system vulnerabilities, data encryption, and oversee security breaches. Perform an assortment of other routine IT tasks with varying degrees of complexity. You will be responsible for protecting computer networks, systems, and data integrity. Salary: 100-130k Qualifications Candidates must have the following combination of knowledge and skill to be considered: Bachelors Degree in Cyber security, IT, or a related field and four (4) years of relevant experience, Associates Degree in Cybersecurity, IT, or a related field and six (6) years experience, High School Degree and ten (10) years experience, or Similar education / work experience via customer approval. Technical Writing experience: shall have a strong working knowledge of the English language and experience performing technical writing to support Cybersecurity compliance. Certification-ISC2 CISSP or similar certification via customer approval Active DoD Top Secret or DOE Q security clearance About IMG Founded in 1987, IMG is a leading small business that exemplifies competence, integrity and follow-through. We consistently provide customer focused professional services, which ensures our company is recognized for continually exceeding expectations. We believe that at the core of our success stand our people. Our people have provided professional services in the Information Technology field for our customers with a commitment to customer satisfaction for over 35 years. IMG Benefits: Health, dental, vision, and life insurance Short term and long term disability insurance 401(k) with generous company match Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA) Personal leave plus paid federal holidays Professional development and training assistance IMG is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.

Job Type: Full Time / Contract Work Authorization: No Sponsorship The A.C.Coy company has an immediate opening for an Information Security Specialist. Ideal candidates must have 5+ years of experience in information technology and 3+ years of information security experience. The following technical experience is also required: Report generation/data analysis, ITSM tools/SharePoint, using Active Directory for user provisioning/deprovisioning, customer follow up to resolve outstanding issues/escalation. Responsibilities Ability to use Excel and other Microsoft Office tools to generate reports, conduct data analysis Familiarity with different tools for managing work, ITSM Tools (Cherwell, ServiceNow, etc), SharePoint, etc. Ability to review reports and determine actions required for follow up based on defined processes Ability to work independently with appropriate guidance Ability to follow up with customers to resolve outstanding issues and escalate as needed Prior experience with Active Directory user provisioning/deprovisioning Experience with Sailpoint, Varonis, and Delinea (FKA Thycotic) preferred but not required Experience with IT auditing and/or access certifications preferred Qualifications Education: Bachelor's degree or equivalent experience Experience Required: Active Directory user provisioning/deprovisioning -3+ years ITSM tool (ServiceNow, Cherwell), SharePoint - 3+ years MS Office/Excel to generate reports and conduct data analysis - 3+ years Sailpoint, Varonis and Deli (FKA Thycotic) - Preferred

Responsibilities of Senior Cyber Security Analyst: Review and update the Detailed Architecture Diagram, Detailed Hardware/Software Inventory, and other system artifacts to determine the DoD IT type. Develop the baseline set of impact values for medical devices. Identify and document common controls in the Security Plan, obtaining supporting documentation for inherited controls. Initiate the tailoring process in eMASS to modify the control set based on specific system conditions. Add relevant supplemental security controls and mark irrelevant controls as "Not Applicable." Identify security controls for ongoing monitoring. Review site/organization change control policies and document the application of policies to specific controls. Coordinate with the IV&V Team to clarify information required for SAP. Lead the execution of self-assessment activities, assess NIST SP 800-53 Revision 4 controls, and document results in eMASS. Provide support for remediation and mitigation efforts. Create the Risk Assessment Report (RAR) and upload it into eMASS, along with all self-assessment results and artifacts documentation. Coordinate with the ISSM to confirm the completion of the Security Authorization Package before eMASS submission. Assist the program with status reports, white papers, weekly activity reports, and other ad hoc requirements. Perform other job-related duties as assigned. Qualifications for the Position: Bachelor's Degree. Minimum of seven (7) years of relevant experience in cyber logistics. Technical Training in Cyber Security, Information Assurance, Network Design, or Information Technology, coupled with 15 years of hands-on experience supporting network operations centers, Cyber Security Service Providers, or Cyber Red Teams within the DoD or Federal government. This should include expertise in three (3) of the following five (5) areas: Systems Requirements, Operational Requirements, Data Analysis, Test & Evaluation, and Training. Certification in IAT Level I / IAM Level I, II, III is required. Knowledge of the DHA mission and environment. Familiarity with DoD Networks and the orders process. Proficiency in briefing Senior Leadership and General Officer / Flag Officer (GO/FO) leadership. Strong knowledge of computer security principles and best practices. Skillful with eMASS and the Risk Management Framework. Proficient in developing briefing materials, administrative, and logistic support. Advanced communication and presentation skills (verbal and written) enabling precise conveyance of information across all customer sections with proper enunciation of the English language. Strong interpersonal, organizational, and critical thinking/problem-solving skills. Flexibility, dependability, and ability to multitask with priorities. Demonstrated skills in providing excellent customer service. Proficiency in using Microsoft Office Suite. Working knowledge of Combatant Command operations. Skillful in building extended cyber security analytics. Active DoD Secret clearance.

At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world's financial system we touch nearly 20% of the world's investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere. We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what #LifeAtBNY is all about. We're seeking a future team member for the role of Information Security Compliance Specialist to join our Information Security Division - Business Information Security Office. This role is located in Lake Mary, FL or Pittsburgh, PA - Hybrid. In this role, you'll make an impact in the following ways: * Possess basic understanding of the National Institute of Standards and Technology (NIST) Risk Management Framework * Assist in maintaining comprehensive security documentation required by FISMA, including conducting reviews and updates for continued accuracy. * Ensures internal controls related to information risk management are effective and drive the review of continued compliance to NIST requirements. * Demonstrate basic knowledge of information risk management best practices and a basic understanding of control and risk management concepts. * Perform security control assessments, including establishing metrics and measures to assess security control effectiveness, and address any recommendations for any areas of improvement. * Support gathering evidence in support of audits, security documentation, and control compliance. * Displays the ability to collaborate with team members (technical and non-technical) to ensure issues are addressed and relevant technical risk information is collected. * Provide briefings on the ATO status, audit findings and remediations, and current control gaps. * Assist in identifying and assessing potential threats and vulnerabilities. * Support in responding to any audit findings and addressing any gaps identified. To be successful in this role, we're seeking the following: * Bachelor's degree in computer science or a related discipline, or equivalent work experience required. * 6+ years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus. * Experience with federal compliance preferred. * Individual must possess the ability to obtain and maintain a Public Trust security clearance, and obtain Personal Identity Verification (PIV) credentials for federal systems access. * Certified Information Security Management (CISM), Certified Information Systems Security Professional (CISSP), or Certified Information Systems Auditor (CISA) security certification preferred. * Demonstrate basic understanding of FISMA requirements and NIST special publications (800-53, 800-37, 800-171) preferred. * Excellent decision-making skills, moral/ethical standards, teamwork/collaboration, multitasking, and attention to detail * Exceptional organization and process management skills * Proficiency in M365 applications At BNY, our culture speaks for itself. Here's a few of our awards: * America's Most Innovative Companies, Fortune, 2024 * World's Most Admired Companies, Fortune 2024 * Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024 * Best Places to Work for Disability Inclusion, Disability: IN - 100% score, 2023-2024 * "Most Just Companies", Just Capital and CNBC, 2024 * Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024 * Bloomberg's Gender Equality Index (GEI), 2023 Our Benefits and Rewards: BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life's journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter. BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.

Job TitleSr. Information Security ManagerJob Description Sr. Information Security Manager - Murrysville, PA The Integrated Supply Chain (ISC) Information Security Manager will be responsible for developing, implementing and monitoring a strategic and comprehensive IT security plans across multiple geographies and driving security in manufacturing sites, Distribution Centers, and warehouses across the US. Your role: Develop and implement robust OT (Operational Technology), Cloud, Network, IoT (Internet of Things) security strategies on ISC (Integrated Supply Chain) manufacturing process aligned with industry standards, such as establishing security architecture compliance with regulations (e.g., HIPAA, FDA) and deploy technologies like firewalls and OT IDS (Operational Tech. Intrusion Detection System) solutions for system segmentation and protection. Leverage experience with OT technologies (e.g., Nozomi Guardian, Armis, Claroty) and perform vulnerability assessments by applying frameworks like MITRE ATT&CK and STRIDE for threat modeling and attack simulations, driving solutions to address security threats. Identify, assess, and mitigate: Operational Tachnology (OT) Cloud, Network, IoT (Internet of Things) risk and/or threats on Integraged Supply Chain (ISC) manufacturing security through cross-functional collaboration, develop incident response plans, lead investigations, and implement corrective actions to address root causes of security breaches. Secure supply chain systems by collaborating with vendors, conducting assessments, and enforcing compliance with security standards. Build a culture of security through targeted training programs and stakeholder education. You're the right fit if: You have +10 years experience on developing and implementing cybersecurity strategies on manufacturing/ supply chain/ logistics environment. Bachelor's in Computer Science, Information Technology and/or an equivalent academic field. Master's degree in a similar academic field is preferred. You have a Cybers Security Certification such as CISSP, CISM, CISA, CIPP etc. preferred. Knowledge on MITRE Framework, IEC 62443/NIST 800:23 is preferred. Your skills a thorough understanding of Security Management and Governance principles, along being able to deliver cross-cultural etiquette, customer-centric and collaborative mindset. You must be able to successfully perform the following minimum Physical, Cognitive and Environmental job requirements with or without accommodation for this position. How we work together We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence in the company's facilities. Field roles are most effectively done outside of the company's main facilities, generally at the customers' or suppliers' locations. This is an in office role. About Philips We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help improve the lives of others. Learn more about our business. Discover our rich and exciting history. Learn more about our purpose. Learn more about our commitment to diversity and inclusion. Philips Transparency Details The pay range for this position in Murrysville, PA is from $ 107,000. 00 to $154,000.00 The actual base pay offered may vary within the posted ranges depending on multiple factors including job-related knowledge/skills, experience, business needs, geographical location, and internal equity. In addition, other compensation, such as an annual incentive bonus, sales commission or long-term incentives may be offered. Employees are eligible to participate in our comprehensive Philips Total Rewards benefits program, which includes a generous PTO, 401k (up to 7% match), HSA (with company contribution), stock purchase plan, education reimbursement and much more. Details about our benefits can be found here. At Philips, it is not typical for an individual to be hired at or near the top end of the range for their role and compensation decisions are dependent upon the facts and circumstances of each case. Additional Information US work authorization is a precondition of employment. The company will not consider candidates who require sponsorship for a work-authorized visa, now or in the future. Company relocation benefits will not be provided for this position. For this position, you must reside in or within commuting distance to Murrysville, PA. #LI-PH1 #LI-OFFICE This requisition is expected to stay active for 45 days but may close earlier if a successful candidate is selected or business necessity dictates. Interested candidates are encouraged to apply as soon as possible to ensure consideration. Philips is an Equal Employment and Opportunity Employer/Disabled/Veteran and maintains a drug-free workplace.

Artech Information Systems is the #1 Largest Women-Owned IT Staffing Company in the U.S. and an employer of choice for over 7,200 consultants. We recruit world-class talent for IT, engineering, and other professional jobs at 70+ Fortune and Global 500 companies coast-to-coast across the U.S., India, and China. We are one of the fastest-growing companies in the US and we welcome you to search the thousands of jobs in our cutting-edge GEM system for employment opportunities that fit your qualifications. Job Title: Security Analyst Location: Pittsburgh, PA/ Lake Mary, FL / Nashville, TN Duration: 12 months contract with possible extension/ conversion FTE Job Description: Client is looking for a talented and self-motivated individual with strong technical skills and the ability to rapidly learn new technologies. We are looking for an exceptional candidate that shares our passion for delivering solutions to complex security problems, while maximizing productivity and minimizing employee friction. The candidate will contribute to IAMO Transformation program by aiding in the configuration and implementation of the new SailPoint LCM product. The candidate will perform business critical analysis to help with the implementation of application access requests and workflows across IAM. This role will support access provisioning, remediation for audit findings, workflow creation and modifications, and ensuring revocations and certifications are completed within the guidelines established by Corporate Policy. This position is critical to ensure Service Level Objectives and Internal project deadlines are met. The candidate will require increased technical and analytical skillsets and provide Sailpoint Product Support with a focus on: • Experience with designing, developing, testing, implementing, and integrating IGA solutions involving SailPoint Identity Now (IIQ). • Experience in SailPoint Identity IQ implementation and configuration for application on-boarding for access request and approval and access certifications o Configuration of simple and advanced LCM workflows within SailPoint o Creating and managing workgroups in SailPoint o Configuration and management of most common direct connectors (i.e. Active Directory, LDAP, Mainframe, etc.) o Creation of preventative and detective Segregation of Duty rules o Experience with role-based access controls and configuring automate provisioning and deprovisioning. • Train and mentor other team members on the use of the SailPoint Identity Now platform. • Experience with identity lifecycle flows including leaver, joiner, and mover. • Experience with consultative and complex technical deployment projects, managing various stakeholder relationships. • Strong knowledge and experience with incident/problem management processes. • Possess critical thinking skills. • Strong functional knowledge of MS Office Suite software products, Jira, and Confluence. • Strong communications skills, oral and written. • Ability to collaborate and interact productively with team members and key stakeholders. • Ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner. • Ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization. • An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business. • Ensures integration end state protects information resources against unauthorized use, inappropriate degrees of access, disclosure, damage and/or loss. • Design and code rules, applications, workflows, custom tasks, custom connectors, UI pages and custom reports in SailPoint Identity Now. • Develop working relationship with IT engineering resources to drive solution features adoption. • Develop control adoption templates for IT resources to understand and implement connections required for the SailPoint Identity Now service. • Review SailPoint IGA to ensure the solution is optimized for the highest level of service and establish an ongoing practice to perform periodic reviews. • Interpret policies and standards with InfoSec, Risk and Compliance teams, ensuring policies and standards are properly followed by IAM control solutions. • Design and maintain flowchart diagrams, process workflows and standard documentation required to sustain the SailPoint platform. • Promote security policies, standards, and best practices across the organization. • Supports and resolves system incidents, problems, and changes. Qualifications 5 years of Sailpoint experience -Will consider experience over degree -Locations: Pittsburgh, Lake Mary or Nashville -2000+ applications to be migrated into sailpoint -Configure workflows -Create/manage work groups -Create duty rules -Invisio, Confluence, Jira, Excel Additional Information All your information will be kept confidential according to EEO guidelines.

Sr. Information Security Manager - Murrysville, PA The Integrated Supply Chain (ISC) Information Security Manager will be responsible for developing, implementing and monitoring a strategic and comprehensive IT security plans across multiple geographies and driving security in manufacturing sites, Distribution Centers, and warehouses across the US. Your role: * Develop and implement robust OT (Operational Technology), Cloud, Network, IoT (Internet of Things) security strategies on ISC (Integrated Supply Chain) manufacturing process aligned with industry standards, such as establishing security architecture compliance with regulations (e.g., HIPAA, FDA) and deploy technologies like firewalls and OT IDS (Operational Tech. Intrusion Detection System) solutions for system segmentation and protection. * Leverage experience with OT technologies (e.g., Nozomi Guardian, Armis, Claroty) and perform vulnerability assessments by applying frameworks like MITRE ATT&CK and STRIDE for threat modeling and attack simulations, driving solutions to address security threats. * Identify, assess, and mitigate: Operational Tachnology (OT) Cloud, Network, IoT (Internet of Things) risk and/or threats on Integraged Supply Chain (ISC) manufacturing security through cross-functional collaboration, develop incident response plans, lead investigations, and implement corrective actions to address root causes of security breaches. * Secure supply chain systems by collaborating with vendors, conducting assessments, and enforcing compliance with security standards. * Build a culture of security through targeted training programs and stakeholder education. You're the right fit if: * You have +10 years experience on developing and implementing cybersecurity strategies on manufacturing/ supply chain/ logistics environment. * Bachelor's in Computer Science, Information Technology and/or an equivalent academic field. Master's degree in a similar academic field is preferred. * You have a Cybers Security Certification such as CISSP, CISM, CISA, CIPP etc. preferred. Knowledge on MITRE Framework, IEC 62443/NIST 800:23 is preferred. * Your skills a thorough understanding of Security Management and Governance principles, along being able to deliver cross-cultural etiquette, customer-centric and collaborative mindset. * You must be able to successfully perform the following minimum Physical, Cognitive and Environmental job requirements with or without accommodation for this position. How we work together We believe that we are better together than apart. For our office-based teams, this means working in-person at least 3 days per week. Onsite roles require full-time presence in the company's facilities. Field roles are most effectively done outside of the company's main facilities, generally at the customers' or suppliers' locations. This is an in office role. About Philips We are a health technology company. We built our entire company around the belief that every human matters, and we won't stop until everybody everywhere has access to the quality healthcare that we all deserve. Do the work of your life to help improve the lives of others. * Learn more about our business. * Discover our rich and exciting history. * Learn more about our purpose. * Learn more about our commitment to diversity and inclusion. Philips Transparency Details The pay range for this position in Murrysville, PA is from $ 107,000. 00 to $154,000.00 The actual base pay offered may vary within the posted ranges depending on multiple factors including job-related knowledge/skills, experience, business needs, geographical location, and internal equity. In addition, other compensation, such as an annual incentive bonus, sales commission or long-term incentives may be offered. Employees are eligible to participate in our comprehensive Philips Total Rewards benefits program, which includes a generous PTO, 401k (up to 7% match), HSA (with company contribution), stock purchase plan, education reimbursement and much more. Details about our benefits can be found here. At Philips, it is not typical for an individual to be hired at or near the top end of the range for their role and compensation decisions are dependent upon the facts and circumstances of each case. Additional Information US work authorization is a precondition of employment. The company will not consider candidates who require sponsorship for a work-authorized visa, now or in the future. Company relocation benefits will not be provided for this position. For this position, you must reside in or within commuting distance to Murrysville, PA. #LI-PH1 #LI-OFFICE This requisition is expected to stay active for 45 days but may close earlier if a successful candidate is selected or business necessity dictates. Interested candidates are encouraged to apply as soon as possible to ensure consideration. Philips is an Equal Employment and Opportunity Employer/Disabled/Veteran and maintains a drug-free workplace.

Description & Requirements Reporting to the Sr. Manager for the Program Security Services team (US Services), the Lead Security Analyst-ISSO is responsible for managing the overall security posture of their assigned projects. Acting as an independent contributor, the Lead Analyst-ISSO will document and validate security compliance requirements, as defined in client contracts and established regulatory frameworks (NIST 800-53, HIPAA, IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DSS). This position requires broad knowledge of Information Technology, including cloud providers such as Azure and AWS. This role will also manage stakeholder relationships with both internal and external customers. US citizenship is required per contract/client, at least one of the following certifications is required: CISSP (preferred), CISA or CISM. Experience with NIST 800-53 and the ability to travel up to 10% is required. Essential Duties and Responsibilities: - Responsible for ensuring information security for an assigned area of Business/Project focusing on key areas of risk, as outlined in the Information Security policy, under the direction of the Information Security management team. - Conduct Information Security risk assessments and compliance evaluations for infrastructure and application assets within required timeframes and to industry standards and regulatory specifications. - Ensure controls are properly and fully implemented to address identified Information Security risks for assigned area of responsibility. - Define, create and maintain the documentation for certification and accreditation of each information system in accordance with regulatory requirements. - Lead and support audits and client reviews of security posture; coordinate the collection, review and submission of Information Security deliverables and track the remediation of audit findings and exceptions. - Manage expectations with multiple stakeholders on projects and programs in conjunction with the Information Security team. - Promotion of Information Security awareness through various communication channels within the organization. - Collaborate with the Information Security team members on process improvements, secure design and recertification of MAXIMUS assets. Identify potential security control gaps by reviewing evidence provided by stakeholders, system generated reports and/or control implementation statements. Perform risk assessments using vulnerability management and application security testing reports. Initiate formal security exception process, when required. Develop Plan of Action and Milestones (POA&M) as necessary. Minimum Requirements - Please refer to the additional information section of the job requisition for this opening to determine clearance eligibility required. - Bachelor's degree and 7+ years of relevant professional experience required, or equivalent combination of education and experience. US Citizenship is REQUIRED per contract/client. At least one of the following certifications is REQUIRED: CISSP (preferred), CISA or CISM Experience with NIST 800-53 is REQUIRED Ability to travel nationally up to 10% is REQUIRED HIPAA experience is preferred Experience with Cloud providers, such as Azure and AWS Knowledge of any of the following security frameworks is preferred: IRS 1075, CMS MARS-E/ARC-AMPE, PCI-DS Demonstrates excellent interpersonal, presentation and verbal/written communication skills Demonstrates strong customer service skills Ability to communicate technical information to non-technical staff Ability to work collaboratively with a broad range of staff (including analysts, engineers and leadership) Proficiency with Microsoft Office SmartSheet experience is a plus Ability to perform comfortably in a fast-paced, deadline-oriented work environment Ability to organize and execute complex tasks Ability to work as a team member as well as independently #LI-JH1 #maxcorp #LeadSecurityAnalyst #HotJobs0311LI #HotJobs0311FB #HotJobs0311X #HotJobs0311TH #TrendingJobs EEO Statement Active military service members, their spouses, and veteran candidates often embody the core competencies Maximus deems essential, and bring a resiliency and dependability that greatly enhances our workforce. We recognize your unique skills and experiences, and want to provide you with a career path that allows you to continue making a difference for our country. We're proud of our connections to organizations dedicated to serving veterans and their families. If you are transitioning from military to civilian life, have prior service, are a retired veteran or a member of the National Guard or Reserves, or a spouse of an active military service member, we have challenging and rewarding career opportunities available for you. A committed and diverse workforce is our most important resource. Maximus is an Affirmative Action/Equal Opportunity Employer. Maximus provides equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disabled status. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Minimum Salary $ 111,605.00 Maximum Salary $ 145,000.00

Full-time Description New World. New Problems. New Solutions . Edgeworth Security is a full-service security firm, specializing in Interactive Video Surveillance, Security System Integration, Executive Protection and Security Consulting Services. Our security solutions and suite of managed services leverage modern technology and automation to significantly lower theft and crime, as well as improve overall operations for our customers. Edgeworth Security takes a proactive stance on crime prevention and operational enhancement by applying artificial intelligence and military grade analytics used in our Command Center. We combine people, processes, and technology to actively secure, protect and improve the operations of our clients' people, property, and assets. Position: Cyber Watch Desk Analyst Location: Pittsburgh, Pennsylvania Travel: None. This position is onsite, in-office. Benefits: Top-tier compensation Full-time, non-exempt hourly with full benefits (medical, dental, vision, life insurance/AD&D/short-term and long-term disability, 401(k) matching) Training & Education Assistance Paid Time Off (PTO) Overview: As a Cyber Watch Desk Analyst, you will be a crucial part of our cybersecurity operations, working to ensure the security and integrity of our digital infrastructure. You will monitor our systems, identify system faults, detect potential threats, and assist in incident response, playing a pivotal role in safeguarding our organization from cyberattacks. Essential Job Function and Responsibilities: Real-Time Monitoring: Continuously monitor network traffic, security alerts, and event logs to detect suspicious or anomalous activities. Utilize security information and event management (SIEM) tools to assess the security posture. Threat Detection and Analysis: Analyze security alerts and reports to identify potential security incidents and vulnerabilities. Investigate, document, and categorize security events based on their severity and potential impact. Incident Triage and Response: Assist in the initial triage of security incidents by following predefined incident response procedures. Collaborate with incident response teams to coordinate and execute response efforts. Reporting and Documentation: Prepare and maintain detailed incident reports, including a timeline of events, actions taken, and recommendations for improvements. Maintain accurate records of incidents, investigations, and responses. Threat Intelligence: Stay informed about the latest cybersecurity threats, vulnerabilities, and attack methodologies. Use threat intelligence to enhance threat detection and response capabilities. Security Awareness and Communication: Provide timely updates and information to relevant stakeholders, including management and incident response teams. Foster a culture of security awareness by promoting best practices and sharing threat insights. Continuous Improvement: Identify opportunities to enhance the efficiency and effectiveness of monitoring and response processes. Contribute to the development of playbooks and procedures for different types of incidents. Compensation is targeted at $25 per hour based on experience and certifications. What's in it for you? Why work for Edgeworth: We are growing! We want all candidates and employees to know that we are excited about the positive improvements we're making and our ongoing efforts to enhance our culture and provide an environment that promotes both professional growth and work-life balance. Our expansion brings exciting opportunities for progress and innovation as we adapt to new challenges. By embracing change, implementing effective processes, and exploring new technologies, we're continually improving. Together, with a shared focus on our goals, we're building a successful, dynamic company where everyone can thrive. We value our employees and are invested in personal and professional growth, learning new skills, challenging yourself, and growing your career while doing meaningful work. We look forward to the possibility of you joining our team. Employees are our greatest asset. Here at Edgeworth Security, we embrace diversity, equity, and inclusion, and always strive to be better than we were yesterday. EOE/Minorities/Females/Vet/Disability/Sexual Orientation/Gender Identity Edgeworth Security is an Equal Opportunity Employer committed to hiring a diverse workforce. Edgeworth Security utilizes e-Verify to check employment authorization. Requirements Bachelor's degree in computer science, Information Security, or a related field is preferred. Relevant certifications like CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are a plus. Previous experience in a cybersecurity, incident response, or security operations center (SOC) role is beneficial. Knowledge of security information and event management (SIEM) tools and security incident response procedures. Strong analytical skills, attention to detail, and the ability to work under pressure. Excellent communication and teamwork skills. Respond swiftly and effectively to tickets/incidents in a high-pressure, fast-paced environment. Maintain situational awareness in environments with loud sounds, bright lighting, and occasional strobe effects. Salary Description $25/hour

Buchanan Ingersoll & Rooney is a national law firm with a proven reputation for providing progressive, industry-leading legal, business, regulatory and government relations advice to our regional, national and international clients. We are searching for a Manager of Information Security for our corporate Pittsburgh, PA office. This is a pivotal leadership role responsible for the development and oversight of a comprehensive information security management system (ISMS) and privacy information management system (PIMS) across the firm. The Manager of Information security will manage a skilled team dedicated to security engineering, operations, incident response, and the development of security policies and procedures. Essential Duties and Responsibilities: Reporting to the Firm's Director of Enterprise Operations & Security, the Manager will collaborate closely with various Technology teams and Firm leadership to inspire, mentor, and cultivate the skills of the security team members, fostering a high-performance environment. Develops and maintains information security policies, procedures and training and advise the various departments and practice groups in adhering to them. Leads the ongoing ISO 27001/27701 lifecycle and manage the relationship with our consulting team to ensure security operations compliance within the Firm. Provides expert opinions and leadership over existing technical threats and advice on how to mitigate or identify as acceptable risks. Oversees vulnerability scanning and remediation programs. Establish and Oversee Security Metric investments and risk trending dashboard. Oversees and/or assists in performing on-going security monitoring threat avoidance analyses. Manage relationships with security managed service providers and continuously develop their capabilities. Analyzes new systems (hardware and software) and provides recommendations concerning their security. Coordinates the development of an ongoing information security awareness program to ensure that employees are aware of threats and how to help ensure privacy of Firm data. Works with general counsel to provide responses to client security audits/questionnaires/RFP's. Maintains appropriate security measures and mechanisms to guard against unauthorized access to electronically stored and /or transmitted client data and reasonably protect against anticipated threats and hazards. Ensures compliance through adequate training programs and oversight of periodic internal and 3rd party security audits. Assesses audit results and partners with staff to create pragmatic action plans. Monitors execution and completion of action plans. Provides technical guidance and training to information owners and designs and implements programs for user awareness, compliance monitoring and security compliance. Develops and maintain an ongoing risk assessment program targeting information security and privacy matters. Active participant in Information Security and serves as Technology leader for incident response. Serves as primary contact for Technology incident responses. Performs other work related duties as assigned. Required Qualifications: Bachelor's Degree or equivalent experience. 10+ years of experience working in an information security related field. 5+ years of experience managing a team of technical security engineers. One or more of the following certifications strongly preferred: CISSP, CISM; matriculating candidates considered. Strong understanding of various security frameworks; ISO27001/ISO27701 and SOC. Working knowledge of EDR, Vulnerability Scanning, Firewall, Proxy, PAM/PIM, SIEM and other security-related technologies. Excellent listening skills and written and oral communication skills, including effective presentation skills. Ability to relate to non-technical users in user-friendly language. Ability to understand technical implications of security threats and prioritize risk. Ability to manage multiple concurrent objectives or activities and effectively make judgments in prioritizing and time allocation in a high-pressure environment. Ability to gauge one's strengths and limitations. Ability to deal with changes and adapt to a changing environment. Must demonstrate the ability to maintain strict confidentiality of the Firm's internal and personnel affairs. Ability to work well with others, harness different skills and experience and build a strong sense of team spirit. Highly self-motivated and directed. Ability to work in a multi-office environment and willingness to travel to other offices as required. Experience working in a law Firm or professional services Firm environment preferred. Why should you work at Buchanan? Our Firm offers outstanding benefits that include: Competitive salary and generous Paid Time Off Hybrid work schedules Paid Holidays, including a floating holiday WorkWell wellness program, including free use of the Calm App Free use of building gym Caregiving assistance with Bright Horizons (child, elder, and pet care!) Access to our Firm-wide emergency assistance fund Free full access to LinkedIn Learning Insurance - Medical, Dental, Vision 401K Program Retirement Savings Program We are an Equal Opportunity Employer.

Primary Office Location: 626 Washington Place. Pittsburgh, Pennsylvania. 15219. Join our team. Make a difference - for us and for your future. Cyber Security Specialist Business Unit: Risk Management Reports to: Manager of Cyber Security This position is primarily responsible for performing all procedures necessary to ensure the safety of information systems assets and protecting systems from intentional or inadvertent access or destruction under the supervision of the Manager of Cyber Security. The incumbent demonstrates the ability to develop IT security standards and procedures, has demonstrated knowledge and understanding of IT industry trends and emerging technologies and an ability to relate them to the corporation and it's objectives. Primary Responsibilities: Investigates, escalates and documents cyber security events or incidents according to standard operating procedures (SOP), as needed. Writes comprehensive reports of incident investigations. Evaluates and improves Security Information and Event Management (SIEM) rule set based on threat and vulnerability indicators. Analyzes information from variable threat sources and provide necessary awareness to management, IT and impact business areas. Tracks remediation of identified issues based on incident investigations. Utilizes forensic resources to understand event impacts and generates incident reports. Assists management in preparation of reports of current threats. Uses PowerShell scripting or other programming languages to automate tasks. Leverages various toolsets to gain awareness of potentially suspicious activity and alerts to threats, intrusions and/or compromises. Performs other related duties and projects as assigned. All employees have the responsibility and the accountability to serve as risk managers for their businesses by understanding, reporting, responding to, managing and monitoring the risk they encounter daily as required by F.N.B. Corporation's risk management program. F.N.B. Corporation is committed to achieving superior levels of compliance by adhering to regulatory laws and guidelines. Compliance with regulatory laws and company procedures is a required component of all position descriptions. Minimum Level of Education Required to Perform the Primary Responsibilities of this Position: BA or BS Minimum # of Years of Job Related Experience Required to Perform the Primary Responsibilities of this Position: 3 Skills Required to Perform the Primary Responsibilities of this Position: Excellent communication skills, both written and verbal Excellent customer service skills Excellent project management skills Detail-oriented Strong security background in network/systems/physical security, authentication, authorization and usability. Comprehensive knowledge of the OSI model. Working knowledge of packet collection and analysis tools. Licensures/Certifications Required to Perform the Primary Responsibilities of this Position: Valid Drivers License CISSP, Security+, Network+, GCIA, GCIH, CEH, CISM, CSX Physical Requirements or Work Conditions Beyond Traditional Office Work: Heavy Lifting over 45 lbs. Equal Employment Opportunity (EEO): It is the policy of FNB not to discriminate against any employee or applicant for employment because of his or her race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, or status as a protected veteran. FNB provides all applicants and employees a discrimination and harassment free workplace.

Latitude AI (lat.ai) develops automated driving technologies, including L3, for Ford vehicles at scale. We're driven by the opportunity to reimagine what it's like to drive and make travel safer, less stressful, and more enjoyable for everyone. When you join the Latitude team, you'll work alongside leading experts across machine learning and robotics, cloud platforms, mapping, sensors and compute systems, test operations, systems and safety engineering - all dedicated to making a real, positive impact on the driving experience for millions of people. As a Ford Motor Company subsidiary, we operate independently to develop automated driving technology at the speed of a technology startup. Latitude is headquartered in Pittsburgh with engineering centers in Dearborn, Mich., and Palo Alto, Calif. Meet the team: The Product Security team researches, architects and tests best-in-class security solutions for Latitude's autonomy products. The team is responsible for reviewing the system's features and functions, assessing risks, identifying pragmatic security controls, guiding the product development team to implementing security, and finally testing the system to verify all the required controls are in place. We work closely with the onboard, cloud, and vehicle operations teams to provide them with security solutions that fit within their projects. What you'll do: Work with internal Product Security, Systems Engineering, Development and external stakeholder teams to generate and track security deliverables across all programs to ensure we have complete coverage needed for traceability Support security education programs to empower technical and non-technical teams Interact with development teams to identify, triage, and test vulnerabilities found within the system Develop product security testing plans, implement tests and other scripts to measure secure feature implementation Contribute to building a strong security culture within Latitude What you'll need to succeed: Bachelor's degree in Computer Engineering, Computer Science, Electrical Engineering, Robotics or a related field and 2+ years of relevant experience, Master's degree, or PhD Must have at least 2 years of experience in cybersecurity or related field Familiarity with how to assess cybersecurity risk in systems or software Experience in industry standards compliance reviews and/or process auditing Experience coding in scripting languages (python, bash, javascript, etc.) Strong attention to detail Teamwork and strong cross-functional communication skills are essential Nice to have: Experience in automotive security programs Familiarity with software development lifecycle and best practices What we offer you: Competitive compensation packages High-quality individual and family medical, dental, and vision insurance Health savings account with available employer match Employer-matched 401(k) retirement plan with immediate vesting Employer-paid group term life insurance and the option to elect voluntary life insurance Paid parental leave Paid medical leave Unlimited vacation 15 paid holidays Daily lunches, snacks, and beverages available in all office locations Pre-tax spending accounts for healthcare and dependent care expenses Pre-tax commuter benefits Monthly wellness stipend Adoption/Surrogacy support program Backup child and elder care program Professional development reimbursement Employee assistance program Discounted programs that include legal services, identity theft protection, pet insurance, and more Company and team bonding outlets: employee resource groups, quarterly team activity stipend, and wellness initiatives Learn more about Latitude's team, mission and career opportunities at lat.ai! Candidates for positions with Latitude AI must be legally authorized to work in the United States on a permanent basis. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is available for this position. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status.

Embark on a trailblazing career in Security Technology with Allied Universal Technology Services, a global leader in security technology that's transforming the security industry. We integrate state-of-the-art technology with physical security to protect our clients and communities, harnessing tools like electronic access control, video surveillance, and alarm monitoring, alongside emergent innovations such as robotics, drones, and augmented technology. As a valued team member, you'll be part of a diverse and dynamic workforce that thrives on innovation and inclusivity. We offer a wide spectrum of job opportunities for both stability and growth across various roles, including service and installation technicians, engineers, and project managers. At Allied Universal , we don't just embrace change; we drive it, creating a culture where diversity fosters innovation and forges caring connections. Join us and help set new benchmarks in the security industry while advancing your career. Enjoy comprehensive benefits for most full-time positions, including medical, dental, and vision coverage, life insurance, retirement plans, employee assistance programs, and exclusive perks. Job Description Allied Universal Technology Services is looking to hire an Applications Engineer. The Applications Engineer is responsible for software-specific support of our installation team to include the integration / interface of multiple disparate software applications into fully functioning solutions. This position will be responsible for all levels of system head-end commissioning, upgrades, and advanced diagnostics to achieve the defined functionality of systems operation. The Applications Engineer should be capable of utilizing existing SDK's and/or API's to ensure the desired level of integration and should be capable to perform customized integration between software applications. The Applications Engineer's schedule will be coordinated by Operations and Project Managers to be effectively and efficiently utilized. RESPONSIBILITIES: Capable of advanced integration between disparate electronic security systems LAN & Network configurations experience include wireless communications system. Perform system diagnostic and troubleshooting duties to ensure a fully functioning system Work with Project Managers, End Users and Technician team to provide assistance in regards to the software systems Troubleshoot project issues and engage appropriate resources as needed. Escalate significant issues to management team as needed. Work with the Project Management team to coordinate project and work schedules to ensure project efficiencies Work with Operations Manager to schedule and maintain appropriate licensing and software trainings for professional development Take the lead in End User Software training QUALIFICATIONS: A high school diploma or equivalent required; a BA/BS Degree preferred In-depth knowledge of industry-leading security system and equipment providers Certification with major enterprise level security/access control systems preferred Decision-making and problem-solving ability Ability to read and understand advanced technical information and documentation Proficient with MS Office Suite (Excel, Outlook, PowerPoint, Project, SharePoint and Word) Excellent verbal and written communication skills Ability to establish and maintain effective working relationships with both internal and external customers Must be detail-oriented and organized Strong analytical and problem-solving capabilities Strong time management skills Self-motivated with the ability to motivate and influence others Must be able to manage multiple tasks while meeting strict deadlines Possess excellent follow-up skills Certifications in the following Software platforms are preferred AMAG Idemia (Biometrics) BENEFITS: Medical, dental, vision, basic life, AD&D, and disability insurance Enrollment in our company's 401 (k) or Supplemental Income Plan, subject to eligibility requirements Eight paid holidays annually, five sick days, and four personal days Vacation time offered at an accrual rate of 3.08 hours biweekly. Unused vacation is only paid out where required by law. Closing Allied Universal is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race/ethnicity, age, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, disability, protected veteran status or relationship/association with a protected veteran, or any other basis or characteristic protected by law. For more information: *********** If you have any questions regarding Equal Employment Opportunity, Affirmative Action, Diversity and Inclusion, have difficulty using the online system and require an alternate method to apply, or require an accommodation at any time during the recruitment and/or employment process, please contact our local Human Resources department. To find an office near you, please visit: ***********/offices. Requisition ID 2025-1344294

The GRC Engineer will be responsible for implementing, maintaining, and enhancing policies, standards, procedures, and internal controls to ensure compliance with regulatory and legal requirements, as well as information security best practices. The ideal candidate will possess a security engineer mindset, focusing on building out GRC frameworks, automation, and integrating technical controls. The GRC Engineer will proactively collaborate with key business stakeholders to assess and design controls aimed at reducing information security risk. They should be able to understand and articulate the impact of information security controls on the business and effectively communicate this to stakeholders. Primary Responsibilities: Risk Assessment: Identify, assess, and prioritize risks that could impact the clients compliance, financial health, or reputation. Compliance Management: Develop, implement, and maintain compliance programs and policies that align with regulatory requirements and industry best practices. Auditing: Conduct internal and external audits to assess compliance with regulations and identify areas for improvement. Reporting: Prepare and analyze compliance reports, metrics, and dashboards to track progress and identify trends. Training and Awareness: Develop and deliver training programs to educate employees about compliance requirements and information security best practices. Incident Management: Respond to compliance incidents, conduct investigations, and implement corrective actions. Technology Implementation: Evaluate and implement GRC software and tools to streamline compliance processes and improve efficiency. Continuous Improvement: Explore opportunities to enhance GRC processes through automation and continuous monitoring of information security controls, risks, and exceptions, and develop reporting metrics, dashboards, and evidence artifacts. Vulnerability Management: Assist in the development and ongoing oversight of a vulnerability management program. Risk Remediation: Manage the remediation of risks identified through the risk register process and contribute to the improvement of risk treatment plans and the overall risk management program. Security Exceptions: Manage the security exception process, including the completion of security exceptions, tracking, and following up on alternative mitigating action items detailed within approved security exceptions. Audit Coordination: Coordinate and track security-related audits, including scope of audits, stakeholder engagement, and deliverable timelines; work with teams as appropriate to achieve audit readiness; provide guidance, evaluation, and advocacy on audit responses. Vendor Risk Management: Maintain the vendor risk management program, including vendor reviews and risk assessments; improve the program with the build-out of repositories, tools, and documentation for third-party vendor risk assurance. We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ******************** . To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: *************************************************** . Skills and Requirements Over 7 years of experience in Information Technology, Security Engineering, Governance, Risk and Compliance, and Internal Audit management. Proficient in designing, implementing, and managing GRC software tools and platforms (e.g., Vanta) to streamline risk assessment, compliance monitoring, and incident management processes, including the development and automation of auditing tasks. Skilled in conducting risk assessments on operational processes, procedures, and policies; interpreting audit results to evaluate the adequacy and reliability of controls; and preparing and presenting comprehensive reports. Experienced in reviewing risk analyses, drafting corrective action plans, and driving the risk treatment process. Adept at conducting security compliance reviews and audits of both on-premises and hosted environments, including AWS and Azure. Background in working within a SaaS company environment. Proven track record in implementing and maintaining HITRUST CSF and ISO 27001 compliance frameworks. Experience in working within highly regulated industry verticals, such as healthcare. Bachelors degree in a technical discipline related to Information Technology. Professional certifications such as CGRC, CISSP, CISA, CRISC, or similar are highly desirable. null We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to ********************.

Security Engineer About the Role: The Security Engineer will be responsible for designing, implementing, and maintaining security controls and frameworks to protect the organization's systems, applications, and data. This role will focus on integrating security best practices into business processes while ensuring compliance with regulatory and industry standards. The ideal candidate will have a strong background in security engineering with hands-on experience in Governance, Risk, and Compliance (GRC) frameworks. The Security Engineer will collaborate with key business stakeholders to identify security risks, design technical controls, and drive automation to enhance security posture and compliance initiatives. What You'll Do: Security Architecture & Engineering: Develop and implement security controls to protect cloud and on-premises environments, ensuring alignment with security best practices and compliance frameworks. Risk Assessment: Identify, assess, and prioritize security risks that could impact the organization's infrastructure, applications, and compliance requirements. Compliance Management: Implement and maintain compliance programs and policies aligned with regulatory requirements, such as ISO 27001, HITRUST CSF, and other industry standards. Auditing & Assessment: Conduct internal and external security audits to evaluate compliance, identify security gaps, and recommend improvements. Security Automation: Develop and implement automated solutions for security monitoring, risk assessment, and compliance reporting. Incident Management: Assist in investigating security incidents, ensuring proper response and remediation while maintaining compliance with legal and regulatory requirements. Technology Implementation: Evaluate and deploy security tools, such as vulnerability management, SIEM, endpoint protection, and data loss prevention solutions. Continuous Improvement: Enhance GRC processes through automation, continuous monitoring, and the development of security metrics, dashboards, and reporting mechanisms. Vulnerability Management: Support the development and ongoing oversight of a vulnerability management program, ensuring timely remediation of identified security risks. Security Exception Management: Manage the security exception process, tracking alternative mitigating controls and ensuring risk treatment plans align with organizational policies. Vendor Risk Management: Maintain and improve the vendor risk management program, conduct security assessments and enhance third-party risk assurance processes. Training and Awareness: Develop and deliver training programs to educate employees about compliance requirements and information security best practices. What We Look For: 7+ years of experience in Information Technology, Security Engineering, Governance, Risk, and Compliance (GRC), and/or Internal Audit management. Experience with security and compliance automation tools (e.g., Vanta) and implementing security best practices in cloud environments (AWS preferred). Experience in conducting risk assessments, security compliance reviews, and audits for cloud-based (AWS, Azure) and on-premises environments. Experience implementing and maintaining compliance frameworks such as HITRUST CSF and ISO 27001. Experience working in SaaS environments, particularly in regulated industries such as healthcare. Skills: Strong knowledge of security frameworks, risk management, and security technologies (e.g., SIEM, vulnerability management, data loss prevention, and endpoint protection). Skilled at applying a risk-based approach to planning, executing, and reporting on audit engagements and auditing processes. In-depth knowledge of security framework controls as they apply to public cloud (AWS preferred), hybrid, self-hosted, and SaaS environments. Understanding of security vulnerabilities, threats, and risk mitigation strategies. Ability to translate security and compliance requirements into technical requirements. Excellent problem-solving, analytical, and decision-making skills. Strong written and verbal communication skills with the ability to present security and GRC concepts to both technical and non-technical stakeholders. Education: Bachelor's degree in a technical discipline related to Information Technology. Professional certifications such as CGRC, CISSP, CISA, CRISC, or similar are highly desirable. Benefits: Medical/dental/vision plans 100% paid for employees and family members without coverage, which start from day one! Life and AD&D Flexible Spending Accounts: Medical, Dependent Care, and Transportation 401 (k) Retirement Savings Tuition Reimbursement Military Paid Leave (up to 6 months of base salary while on military leave) Paid Time Off/ 9 Holidays Paid parental leave Disclaimer: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable qualified individuals with disabilities to perform the essential functions. The term "qualified individual with a disability" means an individual with a disability who, with or without reasonable accommodation, can perform the essential functions of the position. TeleTracking is an Equal Opportunity/Affirmative Action employer. TeleTracking recruits qualified applicants without regard to race, color, religion, gender, age, ethnic or national origin, veteran status, physical or mental disability, genetic information, sexual orientation or preference, gender identity, marital status, or citizenship status. Recruiting agencies, please do not submit unsolicited referrals for this or any open role. We have a roster of agencies with whom we partner, and we will not pay any fee associated with unsolicited referrals.