Fulltime Cloud Security Analyst openings in Los Angeles on September 05, 2022

Senior Security Engineer at Rapid7

Location: Los Angeles

The Opportunity
:

The internal Security Operations team at Rapid7 is focused on creating highly automated and distributed threat detection and incident response programs as well as working with partner teams to build advanced capabilities that support the incident lifecycle. This is the front-line team that detects, investigates, and responds to security threats and malicious activity at our company.

As a senior security engineer on the team, you will have direct impact building, optimizing, and growing securing capabilities as you help Rapid7 achieve our mission to close the security achievement gap for our customers by 5. This role will focus on adding automation to our threat detection and incident response life cycles while providing feedback to our internal product teams on new features, products, and services that benefit us and our customers. You will also be trained to be an incident commander for our incident response activities

What you’ll do
• Perform investigations of security incidents using your knowledge and understanding of digital forensic artifacts, log data analysis and/or developing automation for investigation & response capabilities at scale.
• Coordinate and drive resolution on incidents as part of an on-call team. Analyze root causes, trends, and systematic issues.
• Create and automate threat detection and hunting based on indicators observed during incident response or from other sources.
• Help define and execute strategy for the security operations team.
• Collaborate well with cross-functional partner teams, such as Security Engineering, Governance, Risk, and Compliance, Information Technology, Platform Delivery (DevOps), Product, Legal, Privacy, and Engineering for efficient, large-scale response.
• Build security automation and tooling for on-premise and cloud environments.
• Work closely with Rapid7 product teams as a customer to provide feedback on features/solutions we can bring to our customers

Qualifications and Traits:

Desired Background:
• You work well cross-functionally and can communicate with audiences who may not have a security background.
• Hands-on technical experience in security engineering, systems engineering, software engineering, or network engineering
• Experience in incident response including host and cloud forensics, incident management, threat intelligence, threat hunting, and/or security detection.
• Ability to lead people in complex, high stress, ambiguous situations through influence and not authority.
• Ability to work calmly and collaboratively in critical situations with expediency.
• Experience automating threat detection and response processes, such as triage, analysis, containment, mitigation, and/or remediation activities
• Experience with Python will go a long way, but experience with other languages such as Go, JavaScript, etc. works too
• We are not focused on specific tools but we often use AWS services (API Gateway, Lambda), GCP, Kubernetes, SQL, and more.

Even better:
• Experience in cloud automation tools such as Terraform, CloudFormation, Ansible, Puppet, Chef, etc.
• Experience with policy-as-code frameworks such as Terraform Sentinel, CFN Guard, OPA, Checkov, etc.

Our Team:
• Our goal is to build a diverse team representing talented people with various backgrounds, perspectives, and skills. We believe that the more inclusive we are, the better and more enjoyable our work will be.

Rapid7 (Nasdaq: RPD) is advancing security with visibility, analytics, and automation delivered through our Insight cloud. Our solutions simplify the complex, allowing security teams to work more effectively with IT and development to reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. Over 9, customers rely on Rapid7 technology, services, and research to improve security outcomes and securely advance their organization. For more information, visit our, check out our, or follow us on.
Apply Here
For Remote Senior Security Engineer roles, visit Remote Senior Security Engineer Roles

********

AVP, Information Security at AltaMed Health Services Corporation

Location: Los Angeles

The AVP, Information Security position provides executive leadership, vision and managerial oversight in the development and implementation of security strategies to define policies and processes that enable consistent, effective information security practices and minimize risk. Determines projects and priorities for all information security issues. Establishes short and long-range business plans to achieve the necessary security to protect organization assets. Leads strategic security planning to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies using a risk-based assessment methodology. Develops and communicates security strategies and plans to executive team, staff, partners, customers, and stakeholders. Lead partnership with compliance to assure compliance with regulatory and accrediting agencies Lead the full project lifecycle from discovery to implementation.
• Responsible for all ongoing activities related to the availability, integrity and confidentiality of patient, provider, employee, and business information in compliance with the organization’s security policies and procedures, regulations and law
• Identifies, investigates, resolves and develops processes, procedures and associated documentation relative to security of computer systems, networks and telecommunications along with confidentiality and standards
• Serves as a leader for teams investigating and addresses various health information security
• Ensure the integrity and protection of networks, systems, and applications by enforcement of organizational security policies, and effective operation of security solutions and/or
• Conduct security reviews and evaluates information risk on regular time
• Maintain current knowledge of relevant information security threats and
• Ensure compliance with changing cybersecurity laws and applicable regulations
• Management of security support
• Participate in special projects as assigned.
• Master’s Degree in Healthcare Administration or Business Administration or Information Technology is highly
• Minimum of 10 years of progressive experience in health information security management, health information management, information systems and/or health risk management is
• Knowledge and understanding of relevant legal and regulatory requirements, such as Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard (PCI).
• Knowledge of healthcare industry and hospital operations
• Experience in MEDITECH/EPIC or other Health Information System
• Certification(s) in the information security areas such as the CISSP, CISM, CISA is
• Appropriate certification in risk management and/or health care compliance desirable.
Apply Here
For Remote AVP, Information Security roles, visit Remote AVP, Information Security Roles

********

IT Security Engineer: cloud security at KORE1

Location: Los Angeles

THIS ROLE CAN BE DONE FULLY OR PARTIALLY ONSITE IN PLAYA VISTA, CA.

For a Sr. candidate that checks off most of the boxes including having AWS security, Crowdstrike, Splunk, & Proofpoint combined w/ ANY MFA, SSO, MDM, CASB, & vulnerability mgmt tools we can accommodate 1 week onsite then 1 week a quarter onsite after that.

For a mid-level candidate w/ ANY cloud security, threat hunting, DLP, SIEM, MFA, SSO, MDM, CASB, end point mgmt, vulnerability mgmt tools we can accommodate 1-2 days a week onsite (pending performance) after onsite onboarding (could be up to 1 month depending on what training you’d need).

KORE1, a nationwide provider of staffing and recruiting solutions, has an immediate opening for a Sr. or mid-level IT Security Engineer: securing cloud (IaaS / CASB) w/ tools for DLP, MFA / SSO, MDM, SIEM, end point mgmt, vulnerability, monitoring/logs, etc.

Our client is looking for a Cyber Security Engineer to join our dynamic Technology team.

In this role, you will be responsible for the overall security of the organization. This encompasses end-user awareness training, utilizing user behavioral and threat-based analytics to identify issues, reviewing on-going SOX, PCI, and other regulatory compliance reqs (to implement those policies in our tools), assisting in developing policies, playbooks, etc. all while working with various business units for compliance.

What You’ll Do:
• Work closely with IT management to define security practices for the organization and present recommendations to both technical and non-technical team members
• Work closely with the Director of IT to help define a security strategy and roadmap
• Perform gap and risk assessments of our current organization and make recommendations on how to remediate
• Help consolidate redundant security tools (for example: MFA / SSO is currently being done w/ both Okta & Dou, Dou will be retired)
• Contribute to monitoring (SIEM), MDM, end point management, vulnerability detection, etc.
• Help fix / improve patch management (currently our servers aren’t all automatically being patched)
• Understand and explain the underlying techniques that hackers use to exploit and penetrate systems
• Maintain a strong technical background to help remedy any vulnerabilities in the organization
• Ongoing SOX and PCI compliance and familiarization of the processes
• Work closely with security vendors, regularly review logs, UBA, and other security tools and respond accordingly
• Map security findings to business impact and communicate security messaging effectively across all business units and to the leadership team
• Work closely with Software Engineering and BI teams to ensure our AWS infrastructure is secure

You’ll love this job if you are:
• A strong communicator and collaborator. From elevator chats to boardroom meetings, you always know the best way to communicate with others to forge effective connections.
• Dedicated and fast-moving. You’re known to operate with passion, urgency, focus, and discipline
• A talented juggler. You successfully manage competing priorities, and you make it look easy
• Results oriented and a self-starter. You love to exceed set goals and take on new projects
• The definition of integrity. You represent and inspire the highest ethical standards.
• Adaptable and ambitious. You will enthusiastically take on other assignments as needed to support your team

What You’ll Need:
• Bachelor’s degree is a plus
• Relevant certifications are a plus.
• Sr. or mid-level candidates welcome
• Sr. Engineers must have:
• Crowdstrike for Threat Hunting / end point mgmt
• Splunk for SIEM
• Proofpoint for DLP
• AWS Security
• Any MDM tool (VMware Workspace One preferred)
• Any SSO / MFA (Okta / Duo preferred)
• Any CASB (Netskope preferred)
• Any vulnerability management (Tenable preferred)
• AD / Azure AD
• Windows / Linux servers, including Linux command line for AWS security
• Implementation / configuration experience w/ security tools (any works) bc the environment is a bit of a fixer upper. Clean up/consolidation/improvements need to be made
• Mid-level engineers must have as many of the following as possible:
• Cloud security (any will do, AWS preferred)
• Any DLP tool (ProofPoint preferred)
• Any SIEM (Splunk preferred)
• Any end point mgmt (Crowdstrike preferred)
• Any MDM tool (VMware Workspace One preferred)
• Any SSO / MFA (Okta / Duo preferred)
• Any CASB (Netskope preferred)
• Any vulnerability management (Tenable preferred)
• Windows / Linux servers, including Linux command line for AWS security is helpful.
• BOTH levels required hands-on IT security experience and the following:
• Experience hardening systems, specifically cloud-heavy environments ideally w/ AWS
• Familiarity with cloud computing technology and various means to secure them.
• Ideally working in an environment that is 50% or more cloud-based leveraging cloud for IaaS (we are almost 100% in the cloud w/ AWS)
• Ideally in the context of securing workloads / servers in the cloud
• Knowledge of different attack vectors and methods helpful
• Experience analyzing an exploited system and remediating accordingly
• Experience monitoring threat actor tactics, techniques and procedures (TTP’s) helpful.
• Former infrastructure administration / engineering with:
• Solid experience w/ OS (Max, Windows, Linux)
• Network devices like firewalls a big plus (especially Palo Alto or next-gen firewalls)
• Virtualization (VMware and/or Hyper-V welcome)
• WAF – web application firewalls a big plus
• Cloud technologies (AWS preferred, but open to Azure or GCP)
• We have a dedicated IT team you will work w/ (in the context of hardening our environment)
• Good business sense to logically think through problems and deliver a balanced approach to security
• Excellent written & verbal communication skills.
• Able to work well independently & as part of a team
• Willingness to grow your skill / career with our organization

#JBU
Apply Here
For Remote IT Security Engineer: cloud security roles, visit Remote IT Security Engineer: cloud security Roles

********

Lead Application Security Engineer at Motion Recruitment

Location: Los Angeles

A global medical device company is hiring a Lead Application Security Engineer.

The primary focus for this role will be to help the Product Security Team develop and maintain the product’s security infrastructure.

On the day to day, you will design and develop security automation tools, perform security assessments, and improve vulnerability management within the environment.

An ideal candidate will have code review experience and be familiar with tools that return findings, so you must be able to drive Static and Dynamic application security testing programs.

Coming in with container security and scripting experience will be a plus The company is offering the position to be fully remote plus an opportunity for bonuses.
Required Skills & Experience 6+ years relevant experience 5+ years scripting experience 3+ years in Application Security Code review experience AWS architecture and AWS security strategies experience Desired Skills & Experience Scripting experience (Bash, Python)

Experience automating services or tools The Offer 15% Bonus
You will receive the following benefits:

Medical Insurance Dental BenefitsVision BenefitsPaid Time Off (PTO)401(k) Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
Full Time150000$-200000$Los Angeles, California, Los Angeles
Apply Here
For Remote Lead Application Security Engineer roles, visit Remote Lead Application Security Engineer Roles

********

Sr. Information Security Analyst, Sr. Assoc at FHLBank San Francisco

Location: Los Angeles

Position: Sr. Information Security Analyst, Sr. Assoc.
Job Description:

Responsible for assisting with the operation of the Bank information security systems and controls with a goal to maintain a strong information security program that enables comprehensive monitoring and compliance verification. The Analyst will play a key role in Information Security event triage and incident response by monitoring the Security Information and Event Management (SIEM) system and other alerts generated by security related tools.

The Analyst will also be involved in security operations and is expected to provide hands-on support for a broad spectrum of technologies, including security software running on Windows and Linux systems, network devices, virtual machines, as well as the Bank’s own products and services.

Major

Accountabilities:

Monitor security systems for anomalies, alerts, and respond to potential security issues.

Investigate security related alerts and analyze events for impact and escalation.

Derive conclusions on security events and propose solutions

Assist in preparing documentation related to security issues and cyber incidents.

Manage the Information Security service tickets to provide updates and closure.

Promote security awareness through newsletter communications, classroom training, and facilitating computer based training exercises

Work with and support Security Engineers in troubleshooting security infrastructure devices and solutions.

Stay current on IT security trends and news, including researching emerging technologies and maintain awareness of current security risks.

Participate in security vulnerability assessments and penetration tests on Bank systems and applications.

Participate in periodic policy compliance reviews, risk assessments, and control testing.

Participate in internal security audits and investigations.

Participate in on-uding but not limited to weekends, holidays and after-business hours as required to service the needs of the business.

Skills/Knowledge:

Required Skills:

Understanding in the following areas:
Windows and Linux Security, Networking, Vulnerability Management, Cloud Security, Identity and Access Management.

Strong understand of security concepts and hands-on with tools and systems such as firewalls, IDS/IPS, SIEM, manage antivirus/antimalware, patch management, NAC, and DLP, vulnerability scanners.

Bachelor’s degree in Computer Science, Information Systems, a related field, or equivalent work experience, is required.

Strong analytical and problem-solving skills.

Excellent written and verbal communication skills, demonstrating the ability to write with purpose, clarity, and accuracy to both technical and non-technical audiences.

Minimum of two years of hands-on experience in an equivalent Information Security role. Banking and/or financial services industry experience, a plus.

Self-motivated, organized and able to multi-task, prioritize, and adhere to deadlines

Able to operate independently and effectively

Additional Desired

Skills:

Industry certification is a plus: GIAC Security Essentials, Certified Ethical Hacker, GIAC Certified Incident Handler, Certified Security Administrator (firewall), CISSP.

Programming knowledge, a plus (Perl, Python, C, Power Shell, Ruby, SOAP, XML).Knowledge of compliance and regulatory program requirements, a plus (such as HIPAA, ISO 27000, NIST, FISMA, and SOC standards).Notice regarding COVID-19 Vaccination Requirement: of San Francisco, our top priority is the health and safety of our team members, our families, and the communities we serve. As part of our commitment to health and safety, the Bank requires all employees to be fully vaccinated against COVID-19 as a condition of employment.

New employees must be able to provide proof of vaccination on their first day of work. A person is considered fully vaccinated two weeks after the second dose of a two-dose COVID-19 vaccine s after a single-dose COVID-19 vaccine has been administered.

If you are unable to be vaccinated against COVID-19 because of a sincerely held religious belief, medical condition, or disability, the Bank will consider requests for accommodation in accordance with applicable law.

The Federal Home Loan Bank of San Francisco is an Equal Employment Opportunity employer and is committed to a diverse workforce. We value and actively seek to recruit, develop, and retain individuals with varied backgrounds and experiences reflecting the full diversity of the communities that we serve. It is the policy of the Bank to comply with all applicable laws concerning the employment of persons with disabilities.
Apply Here
For Remote Sr. Information Security Analyst, Sr. Assoc roles, visit Remote Sr. Information Security Analyst, Sr. Assoc Roles

********

Specialist Security IT Engineer at Aerojet Rocketdyne

Location: Los Angeles

• OverviewAerojet Rocketdyne is a world-recognized aerospace and defense leader providing propulsion and energetics to its space, missile defense, strategic, tactical missile and armaments customers throughout domestic and international markets.
• We offer a complete line of propulsion products for launch vehicles, missile defense, and advanced hypersonic propulsion.
• Visit our website at www.
• rocket.com for more information on how our employees Power the Future.
• The Specialist, Security IT Engineer will report to the Director, Cyber Operations in Huntsville AL.The position is responsible for overall IT security enterprise architecture.
• This position will require strong IT industry knowledge in multiple disciplines to include a combination of networking, operating system, active directory, and storage domains.
• This position will require strong IT industry knowledge in multiple disciplines to include a combination of networking, security tools and technologies, operating system, active directory, and cloud security.
• This position will straddle between strong IT engineering principles and Security and Risk guidelines to ensure compliance for the IT environment in adherence with the Department of Defense compliance requirements.
• This position will focus on influencing strategies to maintain a strong and consistent security posture throughout the entire enterprise.
• What we can offer you:Inspiring Company Culture – Our people support each other and work together to leave an indelible impact on our nation’s aerospace and defense legacy.
• Read more about our culture: Careers | Aerojet Rocketdyne.
• Work/Life Balance – 3 weeks of vacation to start plus additional sick allowance.
• 9/80 schedule providing for longer weekends.
• Annual 1 week year-end company shut down.
• Comprehensive Health Benefits – Medical, Dental, Vision, Health Savings Accounts, and Wellness programs.
• Prepare for the Future – 401(k) with company match.
• Professional Development – Tuition assistance program, Employee recognition program, and Leadership development program.
• Aerojet Rocketdyne has been recognized as one of America’s most trusted companies – position can be filled at the next higher job classificationEssential Job Functions (Including % of Time for Each)The successful candidate will be highly self-motivated with a passion for excellence, quality and detail.
• The position is responsible for understanding how IT services will be delivered to multiple business sectors across the enterprise and sites in a standardized manner that meets regulatory requirements for classified program delivery.
• The position will be responsible for understanding architectures for networking and virtualization and other related architectures.
• Experienced and well versed in supported Enterprise Architectural and engineering standards to include technologies such as networking, SD-WAN, TACLANEs, VDI, Backup Technologies, High Performance Compute Clusters, Active Directory, GPO’s, Encryption of Data at Rest, Enterprise scanning and security management tools for logging and vulnerability management, threat modeling for applications, databases, SaaS integrations, private cloud implementations (Azure)
• Works closely with the Enterprise architecture and risk and compliance teams to create enterprise standards and rollout of security tools and enterprise architectures
• Collaborating with other IT engineers, including networking, security, and system engineers, to facilitate streamlined architecture direction
• Provide technical expertise in ensuring the IT solutions comply with contract requirements
• Set priorities and work efficiently in a fast-paced environment
• Measure and optimize system performance
• Leverage deep IT and Security and Compliance expertise.
• 20% – Collaborate with and broker discussions between stakeholders to agree upon technical direction and be able to present strategies to leadership.
• Understand risk management.
• 20% – Research technologies like cloud, O365, Splunk and align technology to security direction/guidelines like NISPOM to help understand approach.
• Ability to attain deep knowledge and expertise is required.
• 10% – Support projects and help support and oversee active IT Security projectsRequirementsRequires nine (9) years of experience with a Bachelor’s degree in an appropriate discipline (or an equivalent combination of education and experience).
• Ensure the customer patching and antimalware program is running as designed.
• Acts as an escalation point for patching and antimalware program issues or widespread patch problems.
• Bachelor’s degree in technical discipline; Master’s preferred.
• CISA and or CISSP preferred.
• Strong understanding of server, Active Directory, network infrastructure and network hardware.
• 10+ years of experience in the security aspects relating to multiple platforms, operating systems, software, communications, and network protocols, or an equivalent combination of education and work experience.
• Troubleshoot and remediate hardware, software, and Microsoft security patch installations issues as they arise, working with customers to uninstall patches if required.
• Develop best practices, and procedures to support an efficient and effective patch management process
• Experience with active directory, firewalls, and endpoint security tools
• Experience with performing third party and internal control assessments
• Proficient knowledge of security control frameworks
• Cloud (AWS, Azure, etc.)
• Data Loss Prevention (Proofpoint, Symantec, Varonis, etc.)
• DNS Filtering and Web Proxies (Cisco, Zscaler, etc.)
• Docker Containers & Kubernetes
• Email Security (Proofpoint, Mimecast, etc.)
• Endpoint Detection & Response (Microsoft ATP, CrowdStrike, Carbon Black, etc.)
• Network Firewalls (Cisco, Palo Alto, Checkpoint, etc.)
• Privileged Access Management (PAM)
• Public Key Infrastructure (PKI)
• Security Information and Event Management (SIEM)
• Threat Intelligence Platform (TIP)
• Vulnerability Management (Tenable, Qualys, etc.)
• Web Application Firewalls (F5 ASM, Imperva, etc.)
• Hands-on security engineering working with related tools and techniques.
• Assist in the development of security-related standards for platforms and technologies
• Assist in providing security-related guidance to teams.
• Proficient in scripting and automation tools such as Java, Javascript, C#,.
• NET, PowerShell, Ansible Playbooks, and Python.
• Proficient in infrastructure solutions such as Windows infrastructure, Active Directory, IAM, and Networking.
• Proficient in operating systems such as Windows, OSX, and Linux
• Proficient at the integration of various tools into DevOps pipelines such as Jenkins and Git.
• Perform technical security assessments, code audits, and design reviews.
• Perform security penetration testing for target devices.
• Identify potential attack vectors and provide mitigations.
• Experience with AWS, Azure, Google, and container technologies.
• Act as a point of escalation for investigation of systems and security events monitored by your team.
• Creates, publishes, maintains, and interprets Information Security baselines for specific technologies (e.g. operating systems, databases).
• Socializes Security baselines with stakeholders.
• Provide tuning and reporting recommendations of security tools.
• Propose, produce and review team metrics in support of security reporting requirements.
• evelop enrichments and filters in platforms and build content for the SIEM to provide actionable contextual data to improve visibility and detection of anomalous events
• Employ and drive proven and mature frameworks (Security Controls Framework, CIS20, MITRE ATT&CK & OWASP, CVSS, etc.)
• , methodologies and practices in delivering work products
• Assess risk related to IT operations and advise on appropriate risk management.
• Perform consulting related to security incident management and oversee ServiceNow queues.
• Works with application teams to identify functional requirements that drive security technology that enables business functionality.
• Knowledge of and experience with compliance to government regulations and standards (NIST Special Publications, NISPOM, Risk Management Framework, etc.)
• Strong documentation skills and ability to document and diagram solutions using tools like MS Visio
• Remain calm and professional while effectively handling multiple demands.
• Industry experience – ideally in Department of DefenseWill be required to obtain and maintain a U.S. Security Clearance at the appropriate level.
• Requires U.S. Citizenship.
• Must be able to satisfy federal government requirements for access to government information, and having dual citizenship may preclude you from being able to meet this requirement.
• Being fully vaccinated for COVID-19 may be a condition of employment at Aerojet Rocketdyne.
• Proof of vaccination or an accommodation request approved by Aerojet Rocketdyne will be required prior to starting employment with the Company.
• Work Environment/Physical Requirements:Employees in these positions must possess mobility to work in a standard office setting and to use standard office equipment, including a computer; stamina to sit and to maintain attention to detail despite interruptions.
• Ability to safely lift and carry up to 35 lbs.
• with occasional bending, stooping, pushing, pulling, and reaching abo’ve shoulder level required.
• May require minimal walking, climbing, stooping, crouching, and/or bending; and vision to read printed materials and a computer screen, and hearing and speech to communicate in person and over the telephone.
• May require the ability to travel by air or auto.
• May require the use of personal protective equipment such as safety glasses, safety shoes, and shop coat.
• These positions may be expected to work varying shifts and hours to ensure successful operation of activities in the organization.
• Associated topics: canine detection, explosive detection, patrol, patrol officer, protect, protection, public safety officer, security, security officer, surveillance
Apply Here
For Remote Specialist Security IT Engineer roles, visit Remote Specialist Security IT Engineer Roles

********

Security Engineer at SonicJobs

Location: Burbank

Moorecroft is seeking a Security Engineer or a client in the Los Angeles area. This is an exciting opportunity and long engagement – 12+ months!

We are looking for:
• Minimum 2 years’ experience in enterprise service administration; can include related internships
• Security experience Demonstrated experience in Windows systems engineering Knowledge of Linux or Mac systems engineering Solid communication, documentation, team collaboration, and problem solving skills, with a desire to continue to grow in these areas
• Must be an effective listener who engages with stakeholders to understand their requirements and infer practical solutions
• Familiarity with a wide variety of security related technologies, including end-point vulnerability detection and anti-virus
• Knowledge of desktop and server configuration management and version control
• Familiarity with virtual computing environments, such as VMware, RHEV, Kubernetes, Docker, etc
• Scripting experience in Powershell, Bash, and/or Python College degree or other degree related to Information Technology, Computer Systems, or Cyber Security; or comparable industry experience

We do not work with 3rd party employers. Visa Sponsorship NOT available.

—————————————-

About Moorecroft Systems

Moorecroft Systems has been providing IT consulting services to clients nationwide for more than 2 decades. We only work directly with our own clients, which include a number of the most admired global and technology progressive corporations.

Our values include honesty, integrity, and professionalism, we are ONLY interested in representing consultants that have the same values.

#moorecroft #securityengineer #vmware #rhev #kubernetes #docker #powershell #bash

Moorecroft is seeking a Security Engineer or a client in the Los Angeles area. This is an exciting opportunity and long engagement – 12+ months!

We are looking for:
• Minimum 2 years’ experience in enterprise service administration; can include related internships
• Security experience Demonstrated experience in Windows systems engineering Knowledge of Linux or Mac systems engineering Solid communication, documentation, team collaboration, and problem solving skills, with a desire to continue to grow in these areas
• Must be an effective listener who engages with stakeholders to understand their requirements and infer practical solutions
• Familiarity with a wide variety of security related technologies, including end-point vulnerability detection and anti-virus
• Knowledge of desktop and server configuration management and version control
• Familiarity with virtual computing environments, such as VMware, RHEV, Kubernetes, Docker, etc
• Scripting experience in Powershell, Bash, and/or Python College degree or other degree related to Information Technology, Computer Systems, or Cyber Security; or comparable industry experience

We do not work with 3rd party employers. Visa Sponsorship NOT available.

—————————————-

About Moorecroft Systems

Moorecroft Systems has been providing IT consulting services to clients nationwide for more than 2 decades. We only work directly with our own clients, which include a number of the most admired global and technology progressive corporations.

Our values include honesty, integrity, and professionalism, we are ONLY interested in representing consultants that have the same values.

#moorecroft #securityengineer #vmware #rhev #kubernetes #docker #powershell #bash
Apply Here
For Remote Security Engineer roles, visit Remote Security Engineer Roles

********

Sr. SAP Security Analyst at NBCUniversal

Location: Los Angeles

Company Description

NBCUniversal owns and operates over 20 different businesses across 30 countries including a valuable portfolio of news and entertainment television networks, a premier motion picture company, significant television production operations, a leading television stations group, world-renowned theme parks and a premium ad-supported streaming service.
Here you can be your authentic self. As a company uniquely positioned to educate, entertain and empower through our platforms, Comcast NBCUniversal stands for including everyone. We strive to foster a diverse and inclusive culture where our employees feel supported, embraced and heard.

We believe that our workforce should represent the communities we live in, so that together, we can continue to create and deliver content that reflects the current and ever-changing face of the world.
Click here to learn more about Comcast NBCUniversal’s commitment and how we are making an impact.
Job Description

INTRODUCTION:

At NBCUniversal, we believe in the talent of our people. It’s our passion and commitment to excellence that drives NBCU’s vast portfolio of brands to succeed.

From broadcast and cable networks, news and sports platforms, to film, world-renowned theme parks and a diverse suite of digital properties, we take pride in all that we do and all that we represent.
It’s what makes us uniquely NBCU. Here you can create the extraordinary. Join us.

ABOUT THE ROLE:

The GRC Sr.

SAP Security Administrator is an integral part of the SAP Service and Operation organization that reports directly to the Manager GRC and is responsible for strategic and operational user security tasks within NBCU.

The GRC Corporate Security Administrator exhibits sound generally accepted principled judgment in solution planning to guide team members and ensure compliance with established procedures.

This role will contribute to lending guidance and direction to other team members and ensure the technical competency of the team is maintained.
Qualifications

REQUIREMENTS:
• Designs, develops and maintains the company’s SAP user management and security architecture across multiple SAP environments in addition to providing solution recommendations
• Analyze & understand the current Roles and Access Restrictions from Audit stand-point and synchronize with existing GRC access management solution to provide a risk-free environment
• Maintaining, managing and monitoring compliance with the SAP IT Security framework; tracking Internal Security Control (ISC) gaps and exceptions for the global IT control environment
• Commitment to upholding government and corporate security guidelines including Segregation of Duties (SoD), Sarbanes-Oxley (SOX) and Privacy related standards
• Assist the Lead in developing and Implementing SAP security policies, processes, architecture, training, and communications. This function includes identifying security solutions, implementing standards and best practices, proactively identifying and remediating vulnerabilities
• Responsible for SAP ERP, SAP BW, SAP PI, Fiori, Gateway, SAP S/4, SAP GRC, Access Violation Management and Regulation Management,SAP SRM, SAP HANA, SecurePro, Emergency Request, and Separation Enforcer Implementation in accordance with SAP Security Strategy and Administration/Troubleshooting the complex SAP Security Issues
• Responsible for working with the solution architects and the business process owners to translate the business requirement into the SAP Security design and maintenance of the SAP Security Roles in SAP Systems
• Assist in periodic control activities such as regular review of user access on monthly super user review, monthly and quarterly critical role review and quarterly user account review
• Monitor and maintaining IT user accounts, roles and SAP licensing.
• Ensures that SAP security architecture is in line with the company’s policies and procedures
• Facilitates internal and external audits as requested
• Develops and delivers documentation and training as needed to ensure proper system usage and understanding
• Must submit an attestation disclosing your COVID-19 vaccination status and, if partially or fully vaccinated, submitting your vaccination record no later than 7 days following commencement of employment.
• Must be fully vaccinated against COVID-19 at the commencement of employment or adhere to enhanced protocols in select work settings or where jurisdictionally mandated.
• Must be willing to adhere to all Company COVID-19 workplace safety policies and protocols.
Desired Characteristics

PREFERRED QUALIFICATIONS:
• Bachelor degree in relevant domain with 6+ years’ work experience as a GRC and/or SAPSecurity professional.
• Strong analytical, problem solving and troubleshooting skills
• Strong interpersonal, organizational and verbal/written communication skills
• Self-motivated with the ability to learn quickly and adapt to changing priorities
• Must be a strategic thinker who is able to combine technical skills with overall business strategy
• Capable of managing multiple assignments simultaneously
Additional Information

NBCUniversal’s policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access as a result of your disability.
You can request reasonable accommodations in the US by calling 1-818-777-4107 and in the UK by calling +44 2036185726.
Apply Here
For Remote Sr. SAP Security Analyst roles, visit Remote Sr. SAP Security Analyst Roles

********

Sr Information Security Engineer, Data Protection- Telecommute at UnitedHealth Group

Location: Los Angeles

Positions in this function are involved in monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and Web-based security. Conduct vulnerability assessments and monitor systems, network, databases and Web for potential system breaches. Respond to alerts from information security tools. Report, investigate, and resolve security incidents. Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach. May oversee internal or external systems security (i.e., cloud services). Ensure that customers and users have the right access to the right systems at the right times.

Responsibilities:
• Support of Data Loss Prevention (DLP) and experience with development of Microsoft (M365/O365) Security and Compliance capabilities
• Monitoring, evaluating, and maintaining systems and procedures to safeguard internal information systems, networks, databases, and Web-based security.
• Conduct vulnerability assessments and monitor systems, network, databases, and Web for potential performance and capability degradation.
• Respond to alerts from monitoring tools. Report, investigate, and resolve security incidents.
• Recommend and implement changes to enhance systems security and prevent unauthorized access. Research security trends, new methods, and techniques used in unauthorized access of data to preemptively minimize the possibility of system breaches.
• Partner with required stakeholders to remediate DLP design, process, and technology gaps
• Work in a leadership capacity, working directly with other departments to develop and implement information security policies, standards, and procedures.
• Collaborate with multiple teams across multiple support tiers including desktop support, network, security, and information security teams, analyzing issues/incidents, establishing/working war rooms, diagnosing issue severity, computing problem resolution and recovery.
• Resolve or work with SMEs to resolve issues.

Responsibilities:
• 2 or more years experience with any of the following: M365 configurations, SASE, and/ or Cloud experience.
• 3 or more years’ experience with Data Loss Protection or Data Protection platforms
• 1 or more years’ experience with Splunk
• Previous mentoring/ guidance experience
• Experience working in an Agile workflow environment
• 2 or more years of IT Security or Cyber Security experience in any of the following areas:
• Incident Response
• Email Security
• Data Protection\Governance
• Cybersecurity threat detection, monitoring and reporting
• Cyber Intelligence and Threat Hunting
• Vulnerability Management

Assets:
• Python scripting experience

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people’s lives. This is where it’s happening. This is where you’ll help solve the problems that have never been solved. We’re freeing information so it can be used safely and securely wherever it’s needed. We’re creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life’s best work.SM
• All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy.

Colorado, Connecticut or Nevada Residents Only: The salary range for Colorado residents is $79,700 to $142,600. Pay is based on several factors including but not limited to education, work experience, certifications, etc. As of the date of this posting, In addition to your salary, UHG offers the following benefits for this position, subject to applicable eligibility requirements: Health, dental, and vision plans; wellness program; flexible spending accounts; paid parking or public transportation costs; 401(k) retirement plan; employee stock purchase plan; life insurance, short-term disability insurance, and long-term disability insurance; business travel accident insurance; Employee Assistance Program; PTO; and employee-paid critical illness and accident insurance.

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

#EISecurity
Apply Here
For Remote Sr Information Security Engineer, Data Protection- Telecommute roles, visit Remote Sr Information Security Engineer, Data Protection- Telecommute Roles

********

Information Security Engineer at Jobspring

Location: Los Angeles

This global investment firm is searching for a Information Security Engineer in a hybrid role in their West Los Angeles offices. They are currently managing over $17 billion in assets for sectors such as high yield bonds, direct lending, and private equity as well as real estate. Listed in Best Places to Work in Money Management for two consecutive years in 2020 and 2021.

This InfoSec Engineer would establish data classification and information protection policies and controls in email and chat communications as well as sensitive files in various document repositories. This role would be expected to perform internal and vendor risk assessments to validate effectiveness of security controls and recommend appropriate actions to mitigate risk as well as monitoring various security tools related to DLP, SIEM, EDR, MDM, Network, etc.
Required Skills & Experience · 5+ years professional work experience · 4+ years of combined information technology, Cloud infrastructure, and information security experience · 4+ years’ experience in Information Security, IT Risk Management or IT Compliance · Familiarity with common frameworks; CIS, SOC 2, PCI, NIST, CCPA, GLBA · Fundamental knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint · Bachelor’s Degree in Computer Science, Information Technology, Information Security or related experience · CISSP, CISA, CISM, other ISACA/ISC2/CompTIA certification or progress towards a plus Desired Skills & Experience · Ability to stay current on technology trends and quickly learn new technologies · Ability to meet deadlines, prioritize appropriately, cope well with change and maintain composure under high pressure situations · Excellent interpersonal, written, and verbal communication skills · Ability to communicate with staff and management of any level The Offer
• Bonus OR Commission eligible

You will receive the following benefits:
• Medical Insurance
• Dental Benefits
• Vision Benefits
• Paid Time Off (PTO)
• 401(k) {including match- if applicable}

Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
Apply Here
For Remote Information Security Engineer roles, visit Remote Information Security Engineer Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo