Fulltime Cloud Security Analyst openings in Miami, United States on September 22, 2022

Senior Kubernetes Cloud Security Analyst / Solution Architect -FL – Location at Evergreen Technologies LLC

Location: Miami

Senior Kubernetes Cloud Security Analyst / Solution ArchitectRequired Skills:
• Proficiency in operational and security concepts for Cloud Provider (AWS, Azure, GCP) core technologies for storage, compute, network, and identity.
• Ability to apply Cloud Services to a variety of application architectures.
• You have 3+ years of programming experience in any of the languages such as Go/Golang, Java, Python, or any other OOP programming language.
• Understanding of container orchestration architectures (e.g.
Kubernetes) running on top of Cloud Providers.
• Ability to understand the operational and interrelated aspects of Cloud Services in order to guide the modeling schema for Cloud Services into graph-connected entities and relationships.
• Ability to read, understand, and apply existing security and compliance frameworks (e.g.
NIST, PCI, CIS) in order to map compliance framework controls to Secure State rules.
• Ability to translate these frameworks into specific configuration settings for various Cloud Services.
• Ability to articulate best practices for a wide variety of Cloud Services.
Ability to recommend remediation and suggested actions for vulnerability and threat findings for Cloud Services.
• Experience authoring blog posts and marketing communications from a security and compliance perspective.
• Ability to research, analyse, and understand Cloud Security trends and emerging threats.
• Experience conducting technical threat assessment and attack surface analysis of an application or service, in order to determine possible configuration vulnerabilities.
• Excellent written and oral communication skills
• CISSP or Cloud Service Provider (AWS, Azure, GCP) Certification a plus
Apply Here
For Remote Senior Kubernetes Cloud Security Analyst / Solution Architect -FL – Location roles, visit Remote Senior Kubernetes Cloud Security Analyst / Solution Architect -FL – Location Roles

********

Fully REMOTE Security Firm at CyberCoders

Location: Miami

Having just completed our Series B funding ($35 million), we’re growing our team to keep ahead of the strong demand. We’re a leading provider of proactive vendor security, and are continuously growing our network of more than 35,000 businesses.

What You Will Be Doing

In This Role You’ll Be Responsible For
• Setting up, maintaining, and performing test automation frameworks for the main web app, OpenAPI, 3rd Party Integrations, and building test scenarios and acceptance tests.
• Investigating customer problems referred to you by the tech support team, testing bugs, and creating and managing bug reports.

What You Need for this Position
• Java 8+ years
• Spring Boot 1.5+ years
• AWS preferred
• JavaScript
• REST
• Angular
• AWS
• SQL

What’s In It for You
• Base Salary of $145-150k depending on experience
• 10% Annual Bonus (paid quarterly)
• Stock options
• 401K
• 16 Paid holidays
• 3 weeks PTO from day 1
• 3 Additional Wellness Days
• Paid Parental Leave
• Full benefits package
• Early Fridays (Work ends early every Friday at 3 pm MT.)

So, if you are a Software Developer with experience and are looking to join a growing company with great culture, please apply today

Colorado employees will receive paid sick leave. For additional information about available benefits, please contact Jimmy Rowland

Email Your Resume In Word To

Looking forward to receiving your resume through our website and going over the position with you. Clicking apply is the best way to apply, but you may also:

Jimmy.Rowland@CyberCoders.com
• Please do NOT change the email subject line in any way. You must keep the JobID: linkedin : JR19-1705368 — in the email subject line for your application to be considered.***

Jimmy Rowland – Recruiter – CyberCoders

Applicants must be authorized to work in the U.S.

CyberCoders, Inc is proud to be an Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or any other characteristic protected by law.

Your Right to Work – In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.
Apply Here
For Remote Fully REMOTE Security Firm roles, visit Remote Fully REMOTE Security Firm Roles

********

Security Analyst at Kforce Technology

Location: Miami

Responsibilities:

Kforce has a client in Coral Gables, FL that is seeking a Security Analyst to work onsite for half a month, then move to hybrid.
Responsibilities:
• Design, build and maintain a stable and efficient infrastructure to optimize service delivery across production, QA, and development environments throughout the development lifecycle
• Monitor, troubleshoot, maintain, and continuously improve building, packaging, and deployment processes
• Implement automated infrastructure capabilities like backups, security tools, monitoring
• Utilize a consistent DevOps approach to improve all phases of the process and ensure end-to-end quality across functions
• Utilizes version control tools like GIT, Bitbucket, SVN, or CVS
• Other duties as assigned

Job Requirements:

REQUIREMENTS:
• Bachelor’s degree in Computer Science or equivalent
• 2-4 years of experience preferred
• Knowledge of deployment/configuration management
• Experienced with network infrastructure, database, cloud and data center operations, and security protocols
• Understands AWS and other services
• Experience with programming and scripting

Experience with the following:
• Backup/Recovery
• Writing shell scripts and automations
• Cloud Networking including connectivity, routing, DNS, VPCs, proxies, and load balancers
• Computer-Aided Software Engineering
• Release Management
• Security Engineering
• Software Development Lifecycle Management
• Software Process Improvement
• Upgrades Management
• Bug Tracking Software
• DevOps Container Software and other DevOps
• Source Code Management Software
• Programming Language
• Database Management System

Physical Requirements:
• Requires prolonged periods of sitting at desk
• Must be able to use hands and arms for repetitive movements, such as movement of wrists, hands, fingers while typing
• May occasionally be required to lift and carry up to 10lbs

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Estimated Salary: $20 to $28 per hour based on qualifications.
Apply Here
For Remote Security Analyst roles, visit Remote Security Analyst Roles

********

Sr. Security Analyst​/Remote at Carnival Cruise Line

Location: Miami

Position: Sr. Security Analyst (Remote)
• * Job Description
• * We are seeking a Sr. Security Analyst to ensure all IT functions within Holland America Group (HAG) are working in a secure way and assisting with all aspects of Cybersecurity for HAG and associated brands (Holland America Line, Seabourn Cruise Line, and Princess Cruise Line). All responsibilities transverse shoreside and shipboard across the fleet.

Success for this role entails project execution with consistent and effective budget controls, risk mitigation strategies and achievement of desired business outcomes. This position is required to establish a deeply collaborative framework that will partner closely with each brand key stakeholders to drive the security and compliance solutions across HAG. This role must develop and enhance key business and technology executive relationships, actively manage their expectations and monitor satisfaction levels.
• * ESSENTIAL FUNCTIONS**+ Assist with Identity Governance and reporting for critical assets (e.g., DB’s, SOX applications, etc.) and entitlements (e.g., Domain Admin, etc.)+ Augment and assist GISCS Security Operations, monitoring and triaging HAG security events (Security Operations)+ As part of HAG Security Operations, accessing Splunk and performing queries necessary to prioritize and triage security events in coordination with GISCS and Managed Security Service Provider (MSSP)+ As part of HAG Security Operations, accessing EDR and Anti Virus solutions as necessary to prioritize and triage security events in coordination with GISCS and MSSP+ As part of HAG Security Operations, accessing Panorama and firewalls to triage and prioritize security events and anomalies in coordination with GISCS and MSSP+ Continuous improvement of HAG’s Vulnerability Management people, process and technology analyzing Qualys scan output, prioritizing, and working with HAG IT to make Vulnerability Management data actionable and understandable+ Root cause analysis for reoccurring Vulnerability Management findings, and work with HAG IT to resolve in a repeatable fashion+ Assist HAG IT Compliance team with SOX audits as required to assist with evidence collection and technology questions+ Continuous improvement regarding our SIEM integrations, identifying potential blind spots, and assisting with integrations, playbooks, etc.+

Helping to continuously improve HAG Cybersecurity Key Risk Indicators (KRI) and reporting+ Assisting with Security Architecture reviews for new and proposed integrated solutions+ Assisting HAG Cybersecurity PMO to build and prioritize Jira backlog+ SOX IT support+

Ability to work well with highly technical software development and infrastructure teams+ Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner+ Creates visual information in the form of dashboard(s) and reports for executives and business stakeholders on a regular basis that communicates Cybersecurity risks and KRIs+ Travel is required 25% to 40%
• * QUALIFICATIONS**+ Hands-on experience with Splunk and/or competing SIEM solutions required+ Hands-on experience with Carbon Black and/or competing EDR solutions required+ Hands-on experience with McAfee and/or competing Anti Virus solutions required+ Hands-on experience with O365 security and monitoring required+ Hands-on experience with Qualys and/or competing Vulnerability Management solutions required+ Hands-on experience with DNS security and OSINT+ 7+ years of relevant industry experience as security engineer, penetration tester, or similar+ Expert hands-on experience with APIs and programming in at least one language+ Proven track record of taking ownership of strategic initiatives and driving results in complex environments+ Demonstrated ability to manage multiple work streams simultaneously+

Ability to work in a fast-paced setting+ Proven success in contributing to a team-oriented environment+ Proven ability to work creatively and analytically in a problem-solving environment+ Excellent communication (written and oral) and interpersonal skills
• * About Us
• * In addition to other duties/functions, this position requires full commitment and support for promoting ethical and compliant culture. More specifically, this position requires integrity, honesty, and respectful treatment of others, as well as a willingness to speak up when they see misconduct ival Corporation & plc is a global cruise company and one of the largest vacation companies in the world.

Our portfolio of leading cruise brands includes Carnival Cruise Line, Holland America Line, Princess Cruises and Seabourn in North America; P Cruises, and Cunard Line in the United Kingdom; AIDA in Germany;
Costa Cruises in Southern Europe; and P Cruises in Australia. Our employees have a responsibility to be accountable for all actions. We consider the environment in all aspects of our business and have a responsibility to put safety and sustainability first. We live and share a positive…
Apply Here
For Remote Sr. Security Analyst​/Remote roles, visit Remote Sr. Security Analyst​/Remote Roles

********

Principal Info Security Engineer- IAM Single Sign On – REMOTE at UnitedHealth Group

Location: Miami

Combine two of the fastest-growing fields on the planet with a culture of performance, collaboration and opportunity and this is what you get. Leading edge technology in an industry that’s improving the lives of millions. Here, innovation isn’t about another gadget, it’s about making health care data available wherever and whenever people need it, safely and reliably. There’s no room for error. Join us and start doing your life’s best work.(sm)

Join our Identity and Access Management team as a Principal Info Security Engineer (IAM Single Sign On). In this role you will design, build and deliver productivity enabling Single Sign On solutions, leverage best practices for on-prem and cloud identity, and implement strategic roadmap for identity services to enable great corporate employee experience.

Primary Responsibilities:
• Thought leader on technical direction of Identity and Access Management technologies, with focus on Single Sign On
• Evolve and enhance On-prem and Azure/Cloud Identity Single Sign On capability to provide great employee and user experience
• Analyze, gather requirements, design and document IAM single sign on solutions for applications on the cloud and on premise
• Apply practical sound approaches based on experience to build performant solutions, serve the business and solve problems
• Participate in design and execution of application Integrations, and create frameworks, process and integration documentation
• Participate in the development, communication and implementation of the organizations IAM technology architecture, roadmap and applications enablement plan
• Manage authentication and authorization data, ensure security and integrity, and prepare the organization against threats
• Ensure stability, highest performance and improve resiliency of IAM infrastructure and services, including Ping Federate, Ping Access, Ping Directory; troubleshoot issues and prevent outages
• Help assess and plan retirement of products and migrations for the functional evolution of the IAM service
• Work with business owners, analysts, development teams, infrastructure and support services to enable deployment of standardized solutions
• Ensure projects successfully implement preferred solutions and migrate applications to modern authentication and cloud services
• Resolve incidents, support users and provide the highest level of customer service
• Participate in automation and devops evolution, and enable self services for customers
• Conduct audit-related assessments, document changes needed, deploy feasible audit-related changes
• Conduct vendor analysis and proofs-of-concept, Identify complementary technology opportunities to provide identity solutions for digital workspace and enterprise
• Mentor, guide and train engineers, developers and support partners in IAM technologies and processes

You’ll be rewarded and recognized for your performance in an environment that will challenge you and give you clear direction on what it takes to succeed in your role as well as provide development for other roles you may be interested in.

Required Qualifications:
• 7+ years of Identity Access Management experience, with strong hands on experience with industry standard Identity and SSO technologies and protocols including OpenID Connect (OIDC), SAML, SCIM, FIDO.
• 7+ years of Information Technology support experience in large complex environment.
• 5+ years of experience on integration with a variety of enterprise applications, platforms and utilities
• 2+ years of Active directory or LDAP Directory knowledge
• 2+ years of Adaptive Authentication or Multifactor Authentication experience
• Experience with more than one of Azure AD, Ping Identity (Ping Federate, Ping Access), or comparable products
• Expert level knowledge of common SSO and Federation solutions and patterns, with Engineering and application enablement experience
• Basic knowledge of SQL, Database and data management concepts
• Basic knowledge of Loadbalancing, Networking, Firewalls, APIs, Cloud Multitenancy concepts
• Outstanding technical and interpersonal communication skills, including ability to explain IAM and SSO concepts to both application development leadership and executive level audiences with clarity
• Clear understanding, strategic and tactical point of view on Identity and Single Sign On technologies, and common Platform, Infrastructure and hosting needs to deliver services.
• Ability to work an On-call rotation
• Full COVID-19 vaccination is an essential job function of this role. Candidates located in states that mandate COVID-19 booster doses must also comply with those state requirements. UnitedHealth Group will adhere to all federal, state and local regulations as well as all client requirements and will obtain necessary proof of vaccination, and boosters when applicable, prior to employment to ensure compliance. Candidates must be able to perform all essential job functions with or without reasonable accommodation

Preferred Qualifications:
• Bachelor’s degree in Engineering, Computer Science or equivalent progressive work experience of 7 or more years in related fields
• Information security background and related certifications
• In depth and expert level experience with PingFederate and Ping Identity products
• Azure AD and Cloud Identity experience
• Experience in two or more of the following: IAM Architecture, IAM Development, IGA, Provisioning, MFA, PAM, PKI, Mobile Intune, Azure AD, GCP, AWS IAM
• Proven experience supporting IAM solutions or functions in hybrid, on-prem and cloud architectures
• Experience with tools like Splunk, Zabbix, Graphana, New Relic
• Knowledge of Cloud (private/public/hybrid) and Container technologies
• Knowledge of Cryptography and any Hardware Security Module (HSM) products
• Knowledge of Kubernetes, OpenShift or Docker deployment
• Knowledge of B2B, B2C, B2E solutions applicable to Identity
• Experience working in an Agile & Lean/DevOps environment
• Experience with migrating applications to cloud, preferably Azure
• Development, scripting, IaaS, CICD and automation experience

To protect the health and safety of our workforce, patients and communities we serve, UnitedHealth Group and its affiliate companies require all employees to disclose COVID-19 vaccination status prior to beginning employment. In addition, some roles and locations require full COVID-19 vaccination, including boosters, as an essential job function. UnitedHealth Group adheres to all federal, state and local COVID-19 vaccination regulations as well as all client COVID-19 vaccination requirements and will obtain the necessary information from candidates prior to employment to ensure compliance. Candidates must be able to perform all essential job functions with or without reasonable accommodation. Failure to meet the vaccination requirement may result in rescission of an employment offer or termination of employment.

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people’s lives. This is where it’s happening. This is where you’ll help solve the problems that have never been solved. We’re freeing information so it can be used safely and securely wherever it’s needed. We’re creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life’s best work.(sm)

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.
Apply Here
For Remote Principal Info Security Engineer- IAM Single Sign On – REMOTE roles, visit Remote Principal Info Security Engineer- IAM Single Sign On – REMOTE Roles

********

AppD (Cisco) Information Security Analyst (Security Risk Management) – Can BeRemote (U.S.) at Cisco Systems

Location: Miami

Information Security Manager Job Description
About Us
AppDynamics is an application performance monitoring solution that provides real-time visibility and insight into applications and their environments. With our unique solution, you can take the right action at precisely the right time with automated anomaly detection, rapid root-cause analysis, and a unified view of your entire application ecosystem, including private and public clouds. Using AppDynamics, you’ll finally align IT, DevOps, Engineering, and the business around the information that helps you protect your bottom line and deliver magnificent customer experiences.
What You’ll Do
AppDynamics is currently seeking an Information Security AManager to join our Security Risk team to assist with identifying, analyzing, and communicating risks. A professional with consistent track record in resolving risks while a member of a cross functional security programs for the Strategy, Risk, and Compliance team.
Who You’ll Work With
This role will report directly to the Director of Strategy, Risk, and Compliance.
Who You Are
As an Information Security Manager, you have proven experience with leading risk teams, identifying, analyzing, and communicating risks, passionate about the opportunity to be leading an all-star team that is integral to security risk reduction. You thrive in a hands-on environment and seek ownership of large, critical Risk team projects. We’re looking for people who enjoy crafting solutions to tackle problems rather than focusing on completing tasks as fast as possible.
Core Responsibilities
Collaborate with the teams within Security to lead projects, remediate risks, remove roadblocks and report status of security risk remediation and project milestones tied to security and risk strategy.
Build, maintain, and enhancing our security risk management program, including eGRC implementation, dashboards, integrations and improvements.
You will lead and collaborate various geographically spread, cross-functional teams including IT, Product, Engineering, architecture teams, Sales, Marketing, partner organization, other GTM sales teams, Finance and Legal.
Build out/update Security Risk Program Management processes, workflows and documentation.
Provide insight and recommendations to the Director of Strategy, Risk and Compliance regarding gaps and improvements in the design and efficiency of Security Risk processes.
Candidates must meet the minimum requirements outlined.
Experience:
7 to 10 years of demonstrated ability as an Information Security Manager.
Strong risk management skills: ability to effectively lead remediation, track commitments from Project Owners and SMEs, and supervise/lead self and others in responding to roadblocks, queries, work sessions, and meeting project timelines.
Knowledge and experience working with, Cloud technologies/environments, AWS, Azure, GCP or other related cloud experience is required.
Experience with security frameworks such as ISO 27001, SOC 2 Type 2, and FedRAMP is required.
Capable of working in a demanding, fast paced and lively environment.
Self-starter and ability to perform independently and synthesize information from disparate sources.
Ability to quickly demonstrate an understanding of internal security risks, security controls, business processes.
Solid organizational skills, including the ability to consistently meet project deadlines, while maintaining quality, attention to detail, and accuracy in work.
Demonstrable ability to work effectively and independently across multiple groups, in fast-paced and iterative programs
Strong interpersonal skills, capacity and interest to develop and maintain strong relationships with internal partners.
Technical awareness/experience (e.g., IT infrastructure, public cloud technologies, business support applications).
Ability to demonstrate and apply awareness of security and risk concepts
Desired Skills/Qualifications/System Experience requirements:
Bachelor’s degree in information systems, IT, security, or other relevant experience.
CISA, CISSP, Security+, PMP or similar certification desired.
Proficiency with Atlassian products: Jira and Confluence is required
#appd_jobs
Associated topics: chief program officer, cpo, manage, manager, management, monitor, product manager, project manager, relationship manager, task
Apply Here
For Remote AppD (Cisco) Information Security Analyst (Security Risk Management) – Can BeRemote (U.S.) roles, visit Remote AppD (Cisco) Information Security Analyst (Security Risk Management) – Can BeRemote (U.S.) Roles

********

Information Security Engineer, DevSecOps at Jobot

Location: Miami

Information Security Engineer – DevSecOps with Think Tank Company- Remote

This Jobot Job is hosted by Melanie McSweeney

Are you a fit? Easy Apply now by clicking the “Apply” button and sending us your resume.

Salary $130,000 – $160,000 per year

A Bit About Us

Non-profit ‘Think Tank’ research organization that develops solutions to public policy challenges to help make communities throughout the world safer and more secure, healthier and more prosperous

Why join us?

Great Benefits

Medical, Dental, Vision

9 paid holidays

20 Days of PTO per year

9 sick days per year

Wellness Programs

Health Flex Spending Account

Dependent Car Flex Spending Account

Care@Work – care.com

Short Term and Long Term Disability

Maternity, Parent, Caregiver Leave

Life Insurance

Adoption Assistance Reimbursement

Tuition Reimbursement

401(a) – 20% vested after 2 years, 50% after 3 years, %100 vested after 4 years

Job Details

Seeking an Information Security Engineer, DevSecOps with a strong background in both cybersecurity and API-driven automation and orchestration to join the Information Security Architecture and Engineering team.

This position is a cyber security engineer with recent experience on automating and orchestrating cyber defense systems. They will use programming languages such as Python and shell scripts to integrate systems; provide cross-system reporting and analysis; automate the consistent deployment of security agents, system and application configurations; support threat hunting and other aspects of company cyber defense services
• Security Clearance will be required to obtain

Duties And Responsibilities
• Developed automated orchestration routines to ensure ongoing protection of cloud services,
• Design and develop solutions to integrate systems across the network to improve interoperation as well as to continuously verify systems configuration against baselines,
• Identify, select, and deploy emerging cloud and hybrid cloud security services across cloud services,
• Diagnose and troubleshoot cyber-related network and system performance deficiencies,
• Contribute to the development and maturation of the cybersecurity strategy and roadmap,
• Apply engineering principles to the management of cyber infrastructure services,
• Work with all software and web development teams to ensure sound security practices and security is designed and built into the applications from the ground up.
• Self-motivated and fully responsible for leading technology deliverables, analyzing gaps and driving improvements to cyber-deterrence capabilities,
• Provide input to security policies and standards in accordance with changes in regulations, best practices, industry trends or controls required by contracts and grants.
• Experience with relational and NoSQL database technologies
• Experience with C/C#, web frameworks (e.g., Django, Flask or React), Java, JavaScript, Python, Docker and other abstraction and containerization technologies
• Experience designing, implementing, and maintaining cybersecurity configurations in network, boundary appliances or application services
• Some experience working with leading SaaS platform APIs such as Workday, Salesforce or Office 365

Minimum Qualifications
• A minimum of 5 years’ experience in engineering and cyber deterrence with 3 years’ experience in software engineering with languages such as JavaScript and

Python
• A minimum of 3 years’ experience with at least one of AWS, Azure or GCP
• Cloud orchestration technologies including such as AWS CloudFormations, Azure Kubernetes, and Durable Orchestration
• Hybrid cloud security platforms such as Armor Anywhere and Cloudvisory
• Secure coding standards including OWASP
• Securely managing credentials and secrets for general coding and cloud APIs
• Cyber forensics – conducting cyber investigations and diagnosing indicators of compromise
• Proficiency with infrastructure as code, configuration management and version control systems
• Requirements’ definition, gap analysis and technology assessment and selection
• Industry engagement – ND-ISAC, RSA, Blackhat and others
• Understanding of capabilities central to securing enterprise networks including end point protection, detection and response services, network intrusion detection and prevention systems, behavior-based malware detection, and memory forensics

EDUCATION AND CERTIFICATIONS
• A Bachelor’s Degree in Computer Science or equivalent field of study
• One or more IT and Cyber Security certifications such as AWS Certified Security, Azure Security Engineer Associate, CSK, CCSP, CISSP, CISA, GCSA, and Security+

Interested in hearing more? Easy Apply now by clicking the “Apply” button.
Apply Here
For Remote Information Security Engineer, DevSecOps roles, visit Remote Information Security Engineer, DevSecOps Roles

********

GRC Analyst Sr at City National Bank of Florida

Location: Miami

• The GRC Analyst is responsible for the assessing and documenting of the Bank’s compliance and risk posture as they relate to the its information assets.
• The purpose of this position is to provide highly skilled technical and information security expertise for development and implementation of the information security risk management program.
• Responsibilities require leadership and project management experience, as well as expertise to ensure effective system-wide security analysis; intrusion detection; standards and testing; risk assessment; awareness and education; and development of policies, standards and guidelines.
• 5-7 years of applied work experience in cyber security programs, audits, assessments, risk, remediation, or cyber security compliance management.
• Applicable information security management, governance, and compliance principles, practices, laws, rules, regulations, and frameworks such as GLBA, FFIEC and NIST;
• Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols;
• Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration;
• Information systems auditing, monitoring, controlling, and assessment process;
• Incident response management;
• Risk assessment and management methodology.
• Proficiency using Microsoft Office software products such as Word, Excel, and PowerPoint.
• Developing and implementing enterprise governance, risk, and compliance strategy and solutions;
• Researching and locating information related to internal and external organizations using online and other sources;
• Security project management and planning;
• Troubleshooting and operating a computer and various software packages;
• Defining problems, collecting and analyzing data, establishing facts and drawing valid conclusions;
• Using judgment and ingenuity in maintaining objectives and technical standards;
• Effectively communicate technical issues to diverse audiences, both in writing and verbally;
• Apply a risk-based approach to planning, executing, and reporting on audit engagements and auditing process;
• Handle sensitive and confidential matters, situations, and data;
• Certification in any of the following is a plus: CISA, CRISC or CISSP.
• Bachelor’s Degree in Business Administration, Risk or related field required or equivalent
• Special Instructions to Candidates
• Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.
• Please view Equal Employment Opportunity Posters provided by OFCCP here.
• The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.
• Reasonable accommodation may be made to assist individuals with disabilities to complete the online application process.
• Please contact our Human Resources Department at 305-577-7680 or by e-mail at employment@citynational.com.
Apply Here
For Remote GRC Analyst Sr roles, visit Remote GRC Analyst Sr Roles

********

BXTI – Cybersecurity, AppSec Analyst, Associate at The Blackstone Group LP in Miami, FL at The Blackstone Group LP

Location: Miami

Your Role:
Blackstone’s Application & Cloud Security (AppSec) Team is responsible for empowering 250
builders to set and meet security goals by identifying and managing software risks while balancing security with agility. You will join an ambitious and talented team of security engineers that are responsible for evolving how Blackstone does security as it continues to move to modern and next-generation architectures. The AppSec team partners with Developers to build secure services, and with Engineers to build security into foundational platforms that developers build on. Together, we also empower members of the broader Cybersecurity team to take on their responsibilities within these new patterns.
Responsibilities:
o Enable product owners to set security objectives that tie back to unique business requirements, not just industry standards or best practices. o Build efficient, resilient and well-documented systems so the team can focus on the next challenge instead of operational overhead. o Assess the risk of web and RESTful applications deployed on cloud platforms through threat modelling, building attack trees and occasionally penetration testing. o Communicate software vulnerabilities and mitigation options to stakeholders that balance business agility with security. o Partner with Developer teams to meet security objectives through training and integrating vendors or build your own solutions into software development processes. o Establish polices & standards to guide builders to meet security requirements. Essential Requirements:
o Experience in at least one software language, ideally Python but others are acceptable. o Experience implementing Application security tooling such as static analysis (SAST, dynamic analysis (DAST), software component analysis tools (SCA), and/or web application firewalls (WAF) o Ability to perform secure code reviews and white box application penetration tests to find complicated business logic flaws. o Knowledge of software, cloud infrastructure, and systems hardening standards. o Experience with CI/CD tools and concepts to embed security into DevOps pipelines (DevSecOps). o Experience with AWS and essentials services such as IAM, CloudTrail, EC2, S3, DynamoDB, Lambda, Config and GuardDuty o Has managed their work using agile methodologies including sprints and story estimation. o Has a passion for excellence and growth – challenges the current state with opinions grounded in principles and experience, not just best practices. o Able to take-on challenges and propose solutions with minimal guidance. o Knowledge of TCP/IP, HTTP, RESTful APIs and experience securing service-oriented, asynchronous, and distributed application architectures
Salary Range:
$80K — $100K
Minimum Qualification
Software Development, IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
Apply Here
For Remote BXTI – Cybersecurity, AppSec Analyst, Associate at The Blackstone Group LP in Miami, FL roles, visit Remote BXTI – Cybersecurity, AppSec Analyst, Associate at The Blackstone Group LP in Miami, FL Roles

********

Lead Analyst Cloud Security Engineering at Deloitte Development, LLC

Location: Miami

16,026Job InformationDeloitteLead Analyst, Cloud Security EngineeringinMiamiFloridaLead Analyst, Cloud Security EngineeringLocation: US RemoteAre you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte’s Information Technology Services (ITS). We are curious and life-long learners focused on technology and innovation.Job SummaryThis Lead Analyst, Cloud Security Engineering, works in the Deloitte Function Specific Subsidiaries (FSS) Chief Information Security Officer (CISO) organization directly supporting Deloitte’s Risk & Financial Advisory (RFA) FSS business. The role involves close integration with various FSS client-service leaders, technical and non-technical stakeholders to drive widespread cyber security program adoption. The position will drive the execution and enhancement of cyber security throughout information systems solutions in both on-premise and cloud hosted environments.This fast-paced multi-faceted environment requires a highly motivated, self-driven, strong team player who demonstrates an intrinsic desire for continuous personal and professional growth.The role is responsible for elevating the overall security posture of FSS owned applications by supporting and applying security through industry best practices in software design, architecture and compliance. Additionally, accountable for ensuring compliance through industry accepted frameworks such as SOC2, NIST, HITRUST etc. The role is responsible for providing cyber security expertise and risk mitigation approaches between technical and non-technical domains.The primary cyber focus areas include Cloud Security, Logging & Monitoring, Identity and Access Management (IAM), Application Vulnerability Management, Data Protection and the implementation of security requirements, design specifications, and compliance controls.ResponsibilitiesSupport security architecture and guiding principles and apply to information technology initiativesDeliver technical guidance related to enhancing the security posture of information systems solutionsParticipate in the security governance model, establishing policies, standards and best practicesContribute in addressing changes in the external threat landscape that have an impact on the use of on-premise and cloud computing technologiesAssist the design and implementation of security architecture controls to meet compliance requirementsMinimum 25% travel up to 50% travel (While travel is a requirement of the role, due to COVID-19, non-essential travel has been suspended until further notice.)The teamInformation Technology Services (ITS) helps power Deloitte’s success. ITS drives Deloitte, which serves many of the world’s largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.The 3,000 professionals in ITS deliver services including:Cyber SecurityTechnology SupportTechnology & InfrastructureApplicationsRelationship ManagementStrategy & CommunicationsProject ManagementFinancialsCyber SecurityCyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.Areas of focus include:Risk & ComplianceIdentity & Access ManagementData ProtectionCyber DesignIncident ResponseSecurity ArchitectureBusiness PartnershipCyber Security Data Protection TeamThe Deloitte Cybersecurity Data Protection Team is responsible for securing and protecting confidential data of Deloitte US Member Firm. The primary mission of the team is to implement and enhance the Cybersecurity controls to protect data for its US Employees and the Clients they serve.QualificationsMinimum QualificationsEducation:Bachelor’s Degree or equivalent experience in Information Security, Computer Science, or Information SystemsYears of Experience:4-6 years of related experience, including cybersecurity and/or risk management experience in organizations of a similar scale or client-service experience in the field.Certifications:Professional information security certifications preferredOther Specific Skills or KnowledgeBroad knowledge and experience across IT infrastructure with security frameworks and standards such as ISO 27001, NIST, PCI, and other relevant security-related regulationsStrong working experience in multiple (two or more) cyber security disciplines such as (but not limited to) Identity and Access Management (IAM), Data Protection/Encryption, Security Information and Event Management (SIEM), Logging and Monitoring, Data Loss Prevention (DLP) or Cloud SecurityKnowledge and experience across multiple information protection and security domainsUnderstanding of and ability to effectively apply trends and developments in global security and risk managementKnowledge of IT asset management and/or configuration information database (CMDB)Experience supporting cyber strategy with cross-functional executive level stakeholdersExceptional verbal and written communication skills. Must be able to interact effectively with professionals at all levels and capable of communicating recommendationsDemonstrated ability support organizational change and work with multiple business unitsLimited immigration sponsorship may be availableHow you’ll growAt Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.BenefitsAt Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits.Learn more about what working at Deloitte can mean for you. (http://www2.deloitte.com/us/en/pages/careers/articles/life-at-deloitte-benefits-and-rewards.html)Deloitte’s cultureOur positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. (http://www2.deloitte.com/us/en/careers/life-at-deloitte.html?icid=top_life-at-deloitte)Corporate citizenshipDeloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. (http://www2.deloitte.com/us/en/pages/about-deloitte/articles/deloitte-corporate-citizenship.html)Recruiter tipsWe want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to.Check out recruiting tips from Deloitte professionals. (http://www2.deloitte.com/us/en/pages/careers/topics/recruiting-tips.html)Category: Information TechnologyAbout DeloitteAs used in this document, Deloitte means Deloitte LLP and its subsidiaries. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Apply Here
For Remote Lead Analyst Cloud Security Engineering roles, visit Remote Lead Analyst Cloud Security Engineering Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo