Fulltime Information Security Analyst openings in California on September 06, 2022

Information Security Analyst at Nokia

Location: California Hot Springs

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.

We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work.

The team you’ll be part of

You will be a senior member of the business Cyber Security team working with corporate security, business managed labs and support teams.

The pandemic has highlighted how important telecoms networks are to society. Nokia’s Network Infrastructure group is at the heart of a revolution to bring more and faster network capacity to people worldwide through our ambition, innovation, and technical expertise.

What you will learn and contribute to

Are you passionate about solving problems?

As part of our team, you will:
• Perform security assessments and communicate them to stakeholders.
• Manage SIEM and lead incident response.
• Assist R&D teams with ongoing security projects and report progress to stakeholders

Participate in creating the future security roadmap for the business.

Your skills and experience

You have:
• Participated in or lead incident responses.
• Experience working with SIEM platforms (Elasticsearch, Splunk).
• Strong knowledge of Vulnerability management, Monitoring, OS hardening.

It would be nice if you also had:
• Experience with a scripting language (python, PowerShell, etc.).
• Experience in automating security workflows (preferably Ansible).
• Strong documentation skills.

What we offer

You will be part of a small but growing team, you will have a large impact on operations. Ongoing training and development are important and supported.

Nokia offers flexible and hybrid working schemes, continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs, and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia has received the following recognitions for its commitment to inclusion & equality:
• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark
• LGBT+ equality & best place to work by HRC Foundation

At Nokia, we act inclusively and respect the uniqueness of people.

Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.

We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.
Apply Here
For Remote Information Security Analyst roles, visit Remote Information Security Analyst Roles

********

Principal Cyber Info Systems Security Analyst at Northrop Grumman

Location: Manhattan Beach

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history – from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work – and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history.

Information Systems Security Professionals, We Want You!

Cyber assets everywhere are under siege from a wide spectrum of threats. Almost daily, these threats grow in sophistication, breadth and speed.

At Northrop Grumman, we take a holistic approach to cybersecurity, looking at the whole cyber landscape of people, processes and technology and the whole security realm of offense, defense, and exploitation. Thought leadership demands nothing less.

If you are an expert with classified computers within the Department of Defense (DoD) and Intelligence Community computing environments, Northrop Grumman Corporation has fantastic opportunities for your career growth.

We are seeking experienced Information Systems Security Professionals across the country to support information systems life-cycle activities. Perform assessments of systems and networks within the networking environment or enclave and identify where those systems and networks deviate from acceptable configurations, enclave policy, or local policy. Establishes strict program control processes to ensure mitigation of risks and supports obtaining certification and accreditation of systems. Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits. Assist in the implementation of the required government policy, make recommendations on process tailoring, participate in and document process activities. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards. Support the formal Security Test and Evaluation (ST&E) required by each government accrediting authority through pre-test preparations, participation in the tests, analysis of the results and preparation of required reports. Document the results of Certification and Accreditation activities and technical or coordination activity and prepare the system Security Plans and update the Plan of Actions and Milestones POA&M. Periodically conduct a complete review of each system’s audits and monitor corrective actions until all actions are closed.

If you are ready to solve complex problems in a dynamic environment, apply today!

Basic Qualifications:
• Master’s degree with 3 years of experience; OR a Bachelor’s degree with 5 years of experience; OR an Associates degree with 7 years of experience; OR a High School Diploma/GED with 9 years of experience is required
• Must have a DoD 8570 IAM level II, or level III, security certification (examples: CAP, CASP CE, CISM, GSLC, CISSP-Associate, or CISSP)
• Candidates must have a current DOD Top Secret level security clearance to include SCI access level eligibility, based on a closed investigation date completed within the last 6 years, in order to be considered
• Must have the ability to obtain, and maintain, access to Special Programs as condition of continued employment
Preferred Qualifications:
• The ideal candidate will have a Master’s degree in Cyber Security, a CASP CE, and 4 years of experience with Certification & Accreditation of classified systems and Risk Management Framework
• Knowledge of ACAS, NESSUS, SPLUNK, SCAP, POA&Ms, NIST, system audits, vulnerability scanning, and RMF package development preferred
• Current SCI access is highly desirable
Salary Range: $101,400 USD – $152,200 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 .

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit . U.S. Citizenship is required for most positions.
Apply Here
For Remote Principal Cyber Info Systems Security Analyst roles, visit Remote Principal Cyber Info Systems Security Analyst Roles

********

IT Security Analyst at FISI – FUJIFILM Irvine Scientific

Location: Santa Ana

Overview

FUJIFILM Irvine Scientific, Inc., is a worldwide leader in the innovation and manufacture of cell culture media, reagents, and medical devices for researchers and clinicians. The company provides unrivaled service and quality to scientists working in biopharmaceuticals, cell therapy, and regenerative medicine, assisted reproductive technology and cytogenetics, and industrial cell culture for the large-scale production of biotherapeutics and vaccines. FUJIFILM Irvine Scientific adheres to both ISO and FDA regulations and operates dual cGMP manufacturing facilities in California, USA, and Tokyo, Japan. The company’s consultative philosophy combined with expertise in cell culture and compliance provides customers with unique capabilities and support. For over 50 years, FUJIFILM Irvine Scientific has remained uniquely flexible and focused on media while becoming a strategic global leader in media products and services. FUJIFILM Irvine Scientific, Inc. is a subsidiary of FUJIFILM Holdings America Corporation reporting to FUJIFILM Holdings Corporation.

We are hiring an IT Security Analyst. The Security Analyst’s role is to keep keeping our organization’s proprietary and sensitive information secure. This individual works inter-departmentally to identify and correct flaws in the organization’s security systems, solutions, and programs while recommending specific measures that can improve the Company’s overall security posture.

The Security Analyst is responsible for ensuring that the organization’s digital assets are protected from unauthorized access. This includes securing both online and on-premise infrastructure, meticulously reviewing and understanding the metrics and data to filter out suspicious activity, finding and mitigating risks before incidents or breaches occur. If a breach does occur, the Security Analyst is the frontline, leading efforts to counter the attack.

Additional responsibilities include the generation of reports for IT teams and the organization in order to evaluate the efficacy of the security policies in place. They will then help to propose and make the necessary changes for a more secure network and create training programs and modules to educate employees and users on proper security protocols.

The Security Analyst must work collaboratively with the IT team, our holdings and parent company, and other 3 rd party vendors, to ensure the organization’s security systems are up to date, documented, and implement plans and execute all security-related tasks, including incident response and disaster recovery plans.

External US

Responsibilities:
• Monitor network traffic, security access, and networks for security issues.
• Conduct security assessments through vulnerability testing and risk analysis utilizing IT applications and open-source technologies.
• Validate environment controls to ensure systems are operating securely and data is protected from both internal and external attacks. Perform both internal and external security audits.
• Respond to security incidents and breaches to mitigate risk.
• Analyze and document security incidents or breaches to identify the root cause.
• Continuously update the organization’s incident response and disaster recovery plans.
• Verify the security of third-party vendors and collaborating with them to meet security requirements.
• Recommend and work with IT teams to implement / install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs.
• Remediate and test against detected vulnerabilities to maintain a high-security standard.
• Develop and train the organization on IT security best practices.
• Research security enhancements, stay up to date on IT security trends and brief IT teams, and make recommendations to management.
• Maintain documentation on setups, logging, client, server and networking equipment configurations and all policies/procedures.
• Create and maintain instructions for all routinely performed tasks. Document existing enterprise security systems configuration, processes, procedures and recommend improvements and/or alternatives.
• Maintain a broad knowledge of current and emerging security threats / risks, mitigating measures, initiatives, technologies and architectures.
• Perform other IT duties as assigned.

Experience/ Education:
• BS/BA in Computer Science or equivalent experience
• Minimum 5 years in cybersecurity, network and corporate security, computer hardware and software, including the following areas:
• Security Information and Event Monitoring (SIEM).
• Host Intrusion Detection and Prevention Systems (HIDS/HIPS).
• Enterprise security controls.
• Security Orchestration and Automated Response.
• Incident Response Programs.
• Open-source and OTS cybersecurity toolsets.
• Microsoft and Linux platforms.
• Ability to troubleshoot through Open Systems Interconnection (OSI)Model:
• Network security monitoring, traffic analysis, packet capture.
• Network Access Control technologies.
• Transmission Control Protocol and the Internet Protocol (TCP/IP) networking and routing protocols.
• Implementing multi-factor authentication.
• Experience with the following technologies preferred:
• Data Loss Protection.
• Forensic Software Suites.
• Network Infrastructure.
• Virtualization Platform Security.
• Operating Systems Security.
• Access Management Security.
• Privileged Access Management.
• Certifications (or equivalents):
• System, Network and Data Security are preferred.
• Global Information Assurance Certification (GIAC) is preferred.
• SANS Cybersecurity preferred.
• Major desktop and server operating systems, applications, network and security protocols and monitoring tools, Microsoft products, Unix, Linux, and Mac operating environments; additional knowledge of all equipment listed throughout this job description is required.
• Ability to speak, read, and write English proficiently
• Good oral and written communication skills

FUJIFILM Irvine Scientific is an equal opportunity employer. All qualified candidates will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected Veteran status, or any other characteristic protected by applicable federal, state, or local law.

To all agencies: Please, no phone calls or emails to any employee of FUJIFILM about this requisition. All resumes submitted by search firms/employment agencies to any employee at FUJIFILM via-email, the internet or in any form and/or method will be deemed the sole property of FUJIFILM, unless such search firms/employment agencies were engaged by FUJIFILM for this requisition and a valid agreement with FUJIFILM is in place. In the event a candidate who was submitted outside of the FUJIFILM agency engagement process is hired, no fee or payment of any kind will be paid.
Apply Here
For Remote IT Security Analyst roles, visit Remote IT Security Analyst Roles

********

IT Security Analyst at U.S. Bankruptcy Court, Eastern District of California

Location: Sacramento

The United States Bankruptcy Court for the Eastern District of California is

seeking applicants for a full-time IT Security Analyst in our Sacramento division.

This position is part of an Information Technology team and will be shared with the U.S. Probation Office and the U.S. Pretrial Services Office. The position offers an excellent opportunity to start or continue a career in federal service. The court offers a stable, friendly, and professional work environment with a Monday – Friday, 40 hour per week work schedule.

The IT Security Analyst performs professional work related to the management of

information technology security policy, planning, development, implementation, training, and support and provides actionable advice to IT security policies, processes and technologies that are consistent with the federal judiciary national Information Security program.
• _Please see the job description below and follow the filing procedures if you are interested in this opportunity to join our team. _
• * Filing Procedures
• * * Application materials must be in Word at
• * * You must include an introductory cover letter and resume.
• * * Please submit a completed AO78, Application for Federal Employment.
• * * Application materials must be submitted via email to
• * CAEB HR ourts.gov. Priority will be given to applications received by September 6, 2022.
• * _Submissions without all requested items will be disqualified._
• * _Due to the anticipated number of applications, only the most qualified applicants will be contacted for a personal interview._
• United States Bankruptcy Court, Eastern District of California

CAREER OPPORTUNITY

POSITION:
• IT Security Analyst
• LOCATION:
• SACRAMENTO, CA
• FILING DEADLINE:
Open until Filled

Starting Salary: $58,027-$69,530 (CL 27/28) DOE. Promotion potential to $113,067

#22-12
• Duties and

Responsibilities
• * Review, evaluate, and make recommendations on the court’s technology security automation. Promote/support security services available throughout the district. Provide technical advisory services to securely design, implement, maintain, or modify information technology systems and networks that are critical to the operation of the court units. Perform research to identify potential vulnerabilities in, and threats to, existing and proposed technologies, and develop and implement effective mechanisms and procedures for mitigating risks and threats.

Notify the appropriate managers/personnel of IT asset security vulnerabilities
• Provide advice on matters of IT security, including security strategy and implementation, to judges, court unit executives, and other senior court unit staff.
• Develop and administer local court security policies, and re-mediate identified risks and implement security measures. Create and deploy methodologies, templates,guidelines, and procedures in support of the court’s IT security framework.
• Develop, analyze, and evaluate new information technology policies that will constructively transform the information security posture of the court units.

Make recommendations regarding best practices and implement changes in policy.
• Provide security analysis of IT activities to ensure that appropriate security measures are in place and are enforced. Conduct security risk and vulnerability assessments of planned and installed information systems to identify weaknesses, risks, and protection requirements. Utilize standard reporting templates, automated security tools, and cross functional teams to facilitate security assessments.
• Manage information security projects (or security-related aspects of other projects) to ensure milestones are completed in the appropriate on schedule. Prepare special management reports for the court unit(s), as needed.
• Establish mechanisms to promote awareness and adoption of security best practices.
• Develop policies and procedures to ensure information systems’ reliability and to prevent and defend against unauthorized access to systems, networks, and data.
• MINIMUM QUALIFICATIONS
• * Excellent written and oral communication, presentation, organizational and interpersonal skills.
• Strong troubleshooting abilities and customer service skills are mandatory. The employee must be able to occasionally work after hours and weekends. Some travel, including overnight trips, will be required. Occasional lifting may be required.
• Strong understanding of network infrastructure. The ability to monitor network performance (availability, utilization, throughput, latency and test for weaknesses).
• Experience with firewalls, routing and switching.
• Excellent knowledge of best practices around management, control, and monitoring of server infrastructure.
• PREFERRED QUALIFICATIONS
• * Bachelor’s Degree in Computer Science or related field.
• CompTIA Security+ and /or CySA+ certifications strongly desired
• Experience with or knowledge of vulnerability management programs, log analysis, incident response, training, scripting, and policy creation using programs such as…
Apply Here
For Remote IT Security Analyst roles, visit Remote IT Security Analyst Roles

********

Junior Security Engineer at Revature LLC

Location: Orange

We are seeking talented individuals that are motivated to kickstart their Technology career. No prior professional experience required.

Revature is the largest and fastest growing employer of emerging technology talent across the U.S. Come join us! As a Revature Junior Security Engineer you will receive on-the-job-training to become an experienced software engineer

Remote Interviews are starting now!

Benefits for Junior Security Engineers:
• Launch a career with no prior experience
• Learn to code on the job. That’s right: We pay you to learn.
• Competitive salary
• Relocation & housing assistance
• Paid time off
• Industry Certifications – Employer paid.
• 401k
• Mentoring program
• Experience with the largest companies in the US
• Career acceleration: Over 72% of Revature alumni have received an additional promotion and 92% saw their salary significantly increase after launching their tech career with Revature

Junior Security Engineer Training Program
• Full Time paid training
• Real World Projects – to get your enterprise ready for placement with one of our corporate partners.
• Training on the most in-demand programming skills in the job market. We work together with our corporate partners, to identify the skills that are most vital to their organization
• We’re invested in your success—you’ll have an employee engagement team member to support and provide you with a wide range of assistance.
• As a Revature employee, you’ll also have access to our expansive network of like minded peers who can show you the ropes to ensure you’ll rock your tech career.

What We Are Looking For
• College degree (Associates or Bachelors)
• Must be authorized to work in the US
• Strong desire to learn to code – No prior professional experience required.
• A natural problem solver
• Strong communication and interpersonal skills
• Willing to relocate anywhere in the US – Relocation assistance provided

Working for Revature is more than a job, we develop you into an experienced Software Engineer and put you on an accelerated career path. Fast track your tech career and work for a company that invests in you—whose own success is dependent on your success.

Equal Employment Opportunity

The Company is an equal opportunity employer. We will extend equal opportunity to all individuals without regard to race, religion, color, sex, pregnancy, childbirth or related medical conditions, sexual orientation, gender identity, national origin, disability, age, genetic information, marital status, veteran status, or any other status protected under applicable federal, state, or local laws. This policy applies to all terms and conditions of employment, including but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, benefits, compensation and training. If you require an accommodation to work based on any of these protected factors, please notify the Human Resources Department, and the Company will evaluate the request and provide an accommodation in accordance with applicable law.

We seek to comply with all applicable federal, state and local laws related to discrimination and will not tolerate the interference with the ability of any of the Company’s employees to perform their job duties. Our policy reflects and affirms the Company’s commitment to the principles of fair employment and the elimination of all discriminatory practices.
Apply Here
For Remote Junior Security Engineer roles, visit Remote Junior Security Engineer Roles

********

Principal Computer Systems Analyst / Cybersecurity Liaison at Northrop Grumman

Location: Palmdale

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history – from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work – and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history.

Northrop Grumman Enterprise Services is seeking a well-qualified Windows Administrator to join its dynamic team of technical professionals in the Palmdale area.

Roles and responsibilities include but not limited to:
Function as a Windows System Administrator/Cyber Security Liaison for a large classified government contract.
Able to work with both Cyber and the IT office to ensure projects are completed in a timely manner.
Able to communicate effectively at all levels of the organization with internal or external customers, in written and oral format.
Maintain efficient operations of the entire IT infrastructure including severs, desktop and networking equipment.
Able to support multiple networks. Ensure necessary IT administration tasks are completed independently as necessary.
Analyze internal or external customer requirements and recommend equipment and software requirements for solutions to problems by means of automated systems.
Recommend and implement system enhancements that will improve the performance and reliability of the system including installing, upgrading/patching, monitoring, problem resolution, and configuration management.
Provide backup and recovery services; manage file systems and disk space; manage virus protection on a routine basis as directed by policy.
Create and maintain user and computer accounts and modify file permissions as directed by policy.
Test new releases of products to ensure compatibility and minimize user and impact.
Develop and maintain technical processes and procedures as needed.
Maintain security audit and logging information on all classified networked and standalone computers as directed by the Cyber Security team
Report project status as required for all recurring and non-recurring efforts.
SECTOR INFORMATION

Minimum Qualifications:
Associate’s degree with 7 years of experience, or a Bachelor’s degree with 5 years of experience, or a Master’s degree with 3 years of experience; a High School diploma or equivalent with 9 years of experience may be considered in lieu of a completed degree.
Experience operating under and managing systems within current applicable information systems compliance standards.

Technical abilities
Experience maintaining Classified Windows Domains in effective operations to included:
Working knowledge of:
Active Directory (AD) maintenance and support.
Group Policy (GPO)
DNS management
DHCP and scopes
Windows Server Update Servers (WSUS), SCCM or similar update service
Certificate Authority (CA) server
Supporting license managers
Supporting golden image deployment and underlying infrastructure
Experience working with vulnerability scanning tools.

Clearance and access
Currently active Top Secret clearance and Polygraph required.
US Citizenship
Candidate must agree to submit and successfully complete a Polygraph reexamination as a condition to retain access to special program(s).
Must have the ability to obtain and maintain, access to program as a condition of continued employment.

Non-Technical abilities and certs
Currently valid Security+ CE, CASP, CISSP, or similar DOD 8570 security certification. Certification must be maintained as a condition of continued employment.
Experience working in team of IT professionals.
Ability to travel as needed.
Ability to lift equipment weighing up to 40 pounds
Ability to work after hours and weekends as needed

Preferred Qualifications:
Experience giving technical presentation to technical and non-technical attendees
Experience providing surge support to other programs as needed
Active vendor-based IT certification
Experience with Splunk
Experience with Nessus

Salary Range: $92,200 USD – $138,400 USD

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The health and safety of our employees and their families is a top priority. The company encourages employees to remain up-to-date on their COVID-19 vaccinations. U.S. Northrop Grumman employees may be required, in the future, to be vaccinated or have an approved disability/medical or religious accommodation, pursuant to future court decisions and/or government action on the currently stayed federal contractor vaccine mandate under Executive Order 14042 .

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit . U.S. Citizenship is required for most positions.
Apply Here
For Remote Principal Computer Systems Analyst / Cybersecurity Liaison roles, visit Remote Principal Computer Systems Analyst / Cybersecurity Liaison Roles

********

Information Security Analyst II at SchoolsFirst FCU

Location: Tustin

This Position Schedule

Position shift options: 7:00 am to 4:00 pm; 8:00 am to 5:00 pm; 9:00 am to 6:00 pm

24/7 on-call rotation as needed

Additional hours may be required to support projects or other events

Job Description

Who We Are

Schools First FCU is the largest credit union in California and the nation’s largest credit union serving the educational community. We exclusively serve California school employees and their families. We were recently ranked the #1 credit union in California by Forbes, and recognized as one of the 50 Most Engaged Workplaces

TM in North America by Achievers. We’re growing and looking for talented, service-oriented people to join our team.

What We Believe

There’s a reason we love coming to work every day. We have the privilege of serving those who build the future: school employees, and the families whose sacrifices make their work possible. Not only are we passionate about living our mission of providing Members with world-class personal service and financial security, but we’re also dedicated to providing service to each other.

That means creating an environment where you’re empowered to do what you do best every day, with opportunities for ongoing development and growth. So you can provide the trusted advice and financial expertise that makes a positive difference in the lives of our Members. It’s a truly unique culture, in an organization with a truly unique mission.

What You’ll Be Doing

Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction. Ensures that team members understand and adhere to necessary procedures to maintain security.
• Performs daily operations and monitor events from multiple sources including, but not limited to, SIEM consoles, network and host based intrusion detection systems, firewall consoles, system logs (Unix and Windows), applications, databases, and other security information monitoring tools.
• Participates in knowledge sharing with other analysts and writing technical articles for internal Knowledgebase.
• Creates and maintains documentation for procedures and process improvement.
• Interfaces with users to understand their security needs and implements procedures that support security and business initiatives. Ensures users understand and adhere to necessary procedures to maintain security.
• Conducts accurate evaluation of the level of security required when requests are made by other team members and ensures that appropriate security measures are in effect to maintain an appropriate level of security confidentiality, availability and integrity.
• Weighs business needs against security concerns, finds the right solution to support the business and articulates any issues to management.
• Assists in the development, implementation and periodic review of security policies, procedures and metrics to ensure we are applying industry best practices and standards.
• Performs security assessments and reviews local area networking initiatives for security compliance.
• Ensures system resource configurations, software, applications and processes or guidelines comply with Information Security requirements, policies and standards.
• Assists in the planning, organizing and implementation of Information Security related projects.

Additional Job Functions
• Performs other duties as assigned
• Complies with regulatory compliance and assigned training requirements including but not limited to BSA regulations corresponding to their specific job duties. Failure to do so may result in disciplinary and other employment related actions

Qualifications
• Required Bachelor’s Degree or equivalent years of experience
• 5-7 years Previous Experience Required
• CISSP, CISA, Security+ or equivalent

Knowledge, Skills, and Abilities
• May require familiarity with domain structures, user authentication, and digital signatures
• Conducts accurate evaluation of the level of security required
• Requires an understanding of firewall theory and other security system configurations
• Has in-depth knowledge of intrusion detection and Internet architecture
• Must be able to weigh business needs against security concerns and articulate issues to management
Apply Here
For Remote Information Security Analyst II roles, visit Remote Information Security Analyst II Roles

********

Junior Security Engineer at Revature LLC

Location: Vista

We are seeking talented individuals that are motivated to kickstart their Technology career. No prior professional experience required.

Revature is the largest and fastest growing employer of emerging technology talent across the U.S. Come join us! As a Revature Junior Security Engineer you will receive on-the-job-training to become an experienced software engineer

Remote Interviews are starting now!

Benefits for Junior Security Engineers:
• Launch a career with no prior experience
• Learn to code on the job. That’s right: We pay you to learn.
• Competitive salary
• Relocation & housing assistance
• Paid time off
• Industry Certifications – Employer paid.
• 401k
• Mentoring program
• Experience with the largest companies in the US
• Career acceleration: Over 72% of Revature alumni have received an additional promotion and 92% saw their salary significantly increase after launching their tech career with Revature

Junior Security Engineer Training Program
• Full Time paid training
• Real World Projects – to get your enterprise ready for placement with one of our corporate partners.
• Training on the most in-demand programming skills in the job market. We work together with our corporate partners, to identify the skills that are most vital to their organization
• We’re invested in your success—you’ll have an employee engagement team member to support and provide you with a wide range of assistance.
• As a Revature employee, you’ll also have access to our expansive network of like minded peers who can show you the ropes to ensure you’ll rock your tech career.

What We Are Looking For
• College degree (Associates or Bachelors)
• Must be authorized to work in the US
• Strong desire to learn to code – No prior professional experience required.
• A natural problem solver
• Strong communication and interpersonal skills
• Willing to relocate anywhere in the US – Relocation assistance provided

Working for Revature is more than a job, we develop you into an experienced Software Engineer and put you on an accelerated career path. Fast track your tech career and work for a company that invests in you—whose own success is dependent on your success.

Equal Employment Opportunity

The Company is an equal opportunity employer. We will extend equal opportunity to all individuals without regard to race, religion, color, sex, pregnancy, childbirth or related medical conditions, sexual orientation, gender identity, national origin, disability, age, genetic information, marital status, veteran status, or any other status protected under applicable federal, state, or local laws. This policy applies to all terms and conditions of employment, including but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, benefits, compensation and training. If you require an accommodation to work based on any of these protected factors, please notify the Human Resources Department, and the Company will evaluate the request and provide an accommodation in accordance with applicable law.

We seek to comply with all applicable federal, state and local laws related to discrimination and will not tolerate the interference with the ability of any of the Company’s employees to perform their job duties. Our policy reflects and affirms the Company’s commitment to the principles of fair employment and the elimination of all discriminatory practices.
Apply Here
For Remote Junior Security Engineer roles, visit Remote Junior Security Engineer Roles

********

Lead Information Security Analyst – IAM Controls at Wells Fargo

Location: Concord

About this role:

Wells Fargo is seeking a Lead Information Security Analyst. This role is an individual contributor position that’s part of a team responsible for the assessment and adoption of Information Security Identity and Access Management (IAM) controls. The IAM organization owns and operates manual and automated controls to manage enterprise risk and reduce inappropriate access for organizational users. Frequent changes and updates to leveraged technology requires regular review of controls to confirm effectiveness as well as relevancy.

Keeping abreast of changing risk, internal policy and regulatory landscape is critical to this role as well. Engaging with internal lines of defense, key business and technology stakeholders, and control owners/operators is part of the daily routine for this position. As a Lead Information Security Analyst – IAM Controls resource, you will be responsible for the assessment, adoption and oversight of IAM operated controls related to IAM products and services.

You must be able to demonstrate in-depth knowledge of IAM controls and supported processes/procedures, risk assessment and controls testing methodologies across 3 lines of defense, and compliance and operational processes which includes successfully facilitating and completing associated deliverables. Knowledge of IT/IS control frameworks such as COSO, CoBIT, FFIEC and NIST is strongly encouraged as part of the benchmarking process that must also be supported by this role.

This role is also responsible for the identification and escalation of emerging risks resulting from controls test findings, including providing input to control design/execution along with control administration changes. Partnership and collaboration with enterprise Risk and Control System (SHRP) administrators is necessary to ensure that controls are kept up-to-date, testing results are recorded and any findings are validated and have requisite remediation action plans.

Familiarity with Risk and Control Self-Assessment (RCSA) processes and practices is foundational to ensure that IAM Controls resource has thorough understanding of how operational risks and the effectiveness of controls are assessed and examined.

In this role, you will:
• Maintain an advanced awareness of bank security policies and government regulations pertaining to information security
• Formulate and implement information security solutions and controls
• make decisions and resolve issues regarding changes to information security policy, standards, and procedures as needed for systems, applications and tool
• Provide advanced information security consultation for all aspects of information security compliance policy, risk management, and remediation
• Direct information security risk assessment and research, and recommend remediation plans and strategies
• Influence stakeholders on net new or on material changes to an asset to influence control decisions
• Provide consulting on security risk assessment and research, and recommend remediation plans and strategies
• Act as more experienced lead to the organization to develop security risk awareness and mitigating actions
• Consult the organization on complex security issues and findings
• Manage the most complex and critical information assets
• Evaluate and interpret internal and company wide information security policies, processes, standards, and participate with more experienced leaders in decision making on information security
• Serve as information security lead to advise on the development and delivery of Information Security

Education and Awareness
• Collaborate and consult with peers, colleagues, and mid-level to more experienced managers to resolve issues and achieve goals
• Lead projects and teams
• Coordinate with vendor manager on third party assets to manage information security risks
• Serve as a mentor to less experienced staff

Required Qualifications , US:
• 5+ years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 3+ years of IAM (Identity and Access Management) experience
• 2+ years of process improvement experience

Desired

Qualifications:
• 3+ years of Microsoft office suite experience such as PowerPoint, Excel, Outlook and Word
• 5+ years of experience working with information security controls and deployments in a production environment
• 3+ years of IAM (Identity and Access Management) experience with application on-boarding, certifications gement.
• 1+ years of information security architectural design and consulting experience
• Experience communicating and presenting complex information to multiple levels of the organization
• Strong time management skills and ability to meet deadlines
• Ability to work effectively, as well as independently, in a team environment
• Experience with synthesizing data from multiple sources and presenting it in appropriate formats
• Knowledge and understanding of information security management, audit, compliance and risk.
• Knowled…
Apply Here
For Remote Lead Information Security Analyst – IAM Controls roles, visit Remote Lead Information Security Analyst – IAM Controls Roles

********

OT Cybersecurity Specialist at Concurrent Technologies

Location: San Diego

OT CYBERSECURITY SPECIALIST

Concurrent Technologies Corporation

San Diego, CA (Hybrid)

Minimum Clearance Required: N/A

Clearance Level Must Be Able to Obtain: Secret and Common Access Card (CAC)

Concurrent Technologies Corporation (CTC) is seeking an OT Cybersecurity Specialist to assist Marine Corps clients and provide subject matter expertise to the military installation community to analyze, modernize, secure, and expand their existing control systems and infrastructure. The role is to bridge the gap between high level security policies/requirements and technical/operational implementation of those requirements. Some travel may be required with this position. This is a hybrid position located in the Southern California area with the flexibility to work from home while participating in some in-person client and team discussions and/or site visits.

Key Responsibilities:
• Lead and/or assist technical and analytical Cybersecurity support activities for Facility Related Control Systems (FRCS), Operational Technology (OT) and Information Technology (IT) to develop, engineer and implement a cyber secure baseline.
• Assist the ISSM with initial engineering requirements to determine proper FIPS 199 system categorization and selection of security controls.
• Review and determine specific CNSS 1253 security controls applicable to the FRCS/OT/IT. Furthermore, define and determine cyber engineering requirements to meet the assigned CNSS 1253 controls throughout the entire lifecycle.
• Provide technical and analytical support while the FRCS/OT/IT system is being built or maintained.
• Implement security baseline measures such as STIGs, SRGs, OEM best build practices, etc.
• Perform accurate and measurable scanning of the FRCS/OT/IT systems and devices using tools such as ACAS.
• Design, develop and maintain required documentation to support the FRCS/OT throughout the lifecycle.
• Develop the FRCS/OT/IT self-assessment test plan and assist the ISSM in obtaining approval. Additionally, the ISSE will assist in the self-assessment as required by the ISSM.
• Assist the Validator as needed during the validation by providing necessary information, documentation, and onsite support.
• Assist the ISSM in mitigating and resolving vulnerabilities after completion of the validation.
• Provide life cycle support of the FRCS/OT/IT following approved USMC vulnerability management principles and procedures.
• Lead communications with Government stakeholders and provide advisory support.

Basic Qualifications:
• Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering plus a minimum of six (6) years of directly related experience with a minimum of two (2) of these years functioning in an FRCS/OT/IT/RMF role with exposure to diverse IT architectures within the DoD, demonstrating progressive growth of skills.
• Certification: CompTIA Sec+
• Ability to obtain a Government Common Access Card (CAC)
• Proven capability to independently initiate, track and manage tasks, with a high degree of detail, quality, and process orientated completion.
• Knowledge of DoDI 8510.01 policy and principles.
• Working knowledge of USMC Assessment & Authorization policies, practices, and toolsets.
• High level understanding of information security principles and risk assessment techniques associated to FRCS/OT/IT.
• Ability to use prior experience and knowledge to address new situations and incorporate new information; especially during interactions with clients.
• Willingness and ability to set priorities and deliver under tight deadlines in a heavy workload environment.
• Excellent communication skills, both written and verbal to clearly articulate ideas for senior leadership as well as technical staff consumption.
• Ability to work in teams, and establish and maintain cross-functional and working relationships.
• Proficient with Microsoft Office Suite of tools, including Word, Excel, and PowerPoint.

Preferred Qualifications:
• Experience working with DoD programs a significant plus
• Experience with USMC systems and RMF process
• Experience with industrial control systems
• Certification(s): CISSP, CISM, CEH, GICSP

Why CTC?
• Our teams at CTC are passionate and thrive on collaboration in a team environment
• When we encounter a difficult problem, we have a variety of talented and diverse employees that work together to solve the toughest challenges
• Competitive salary and benefits package
• Although our work at CTC is extremely important, we also recognize the need for our employees to maintain a proper mix of work and personal life
• Visit www.ctc.com to learn more

Join us! CTC offers exceptional career growth, cutting edge technology, educational opportunities, and recognition for quality work.

[Link available when viewing the job] />
Staffing Requisition: SR# 2022-0111

“We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability status, protected veteran status, or any other characteristic protected by law.”
Apply Here
For Remote OT Cybersecurity Specialist roles, visit Remote OT Cybersecurity Specialist Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo