376 to 400 of 2,083 Permanent Information Security Jobs

Information Security Analyst (SME) Huntsville, AL IPTA's Technology Solutions Team is passionate about providing our customers with technical solutions that satisfy their business needs. Through collaborative interactions with customers, team members, subject matter experts (SMEs), technical leaders, and partners we design practical solutions that solve real problems for major government and business organizations. As a member of … vulnerability programs-VMS/IAVAs/SCAP HBSS/ACAS/VDP/ISCM Interpret and remediate scan results in the context of defense in depth, network/computer security, consistent with mission requirements Evaluate and validate technical processes used to support A&A activities necessary to assure that classified systems meet the organization's Cybersecurity requirements Provide support … to Security Controls Assessors and Validators to ensure authorization information, documentation, and related tasks are provided in accordance with authorization schedules and approved formats Perform actions as RMF POC and shall assist in managing DoD Cybersecurity risk assessment requirements for classified information systems, including standalone and Government Cloud (AWS/Azure) information systems Ensure all classified More ❯

Job Title: Information System Security Engineer I (ISSE I) Location(s): Annapolis Junction, MD Hours: Regular Full-Time Salary Range: $120k/yr - $175k/yr Clearance Requirements: This position requires a current and active TS/SCI with Full Scope Poly at the time of application. What you will be doing: The contractor shall provide cyber security and security engineering services for the Fort Meade customer including system security engineering, cybersecurity risk assessments, and security architecture support. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and regulations and recommended mitigation strategies. This includes: Participate as a security … of trusted relationships among external systems and architectures Applies knowledge of cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments Supports security planning, assessment, risk analysis, and risk management Interacts with the customer and other project team members during meetings, presentations, and briefings Designs, develops, implements and/or integrates cybersecurity More ❯

Risk Management Framework (RMF), NMAP, PKI, Wireshark, auditing, penetration testing, scripting, IASAE, CISSP, ISSEP, NISCAP Due to federal contract requirements, United States citizenship and an active TS/SCI security clearance and polygraph are required for the position. Required: Must be a US Citizen Must have TS/SCI clearance w/active polygraph Bachelor's degree in Computer … Science, Information Assurance, Information Security System Engineering, or a related discipline. Must have a minimum of fourteen (14) years of experience performing in an ISSE role or similar. DoD 8570 compliance with IASAE Level 3 is required Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required. Five (05) years of experience with … Defense in Depth Principals/technology including access control, authorization, identification and authentication, public key infrastructure, network and enterprise security architecture and applying risk assessment methodology to system development. Must have a solid understanding of security practices and policies and hands-on vulnerability testing experience. Must have experience applying Risk Management Framework. Must have experience formulating and assessing More ❯

that not only drive business success but also support our overall mission to uplift economically disadvantaged Native Hawaiian families and preserve the Native Hawaiian heritage. You Are An experienced Information System Security Officer (ISSO) with a laser focus on protecting sensitive systems and ensuring regulatory compliance in high-stakes environments. You thrive on solving complex security challenges … translating policies into actionable security procedures. You are agile and strategic while managing daily security operations, responding to incidents under pressure, and contributing to long-term cybersecurity planning. How You Will Make an Impact You'll serve as a key security authority and trusted advisor, helping secure sensitive systems and fortify the network from evolving threats. Shaping … and enforcing Information Assurance policies, supporting ATO processes from start to finish, ensuing the operation of vulnerability management programs. Responsibilities Participate in various aspects in developing and writing certification and accreditation (C&A) documentation packages included in the process of helping an organization/agency obtain an Authority to Operate (ATO) on its systems and/or environment. Follow More ❯

This position is contingent on contract award Description: Provide management support for a program, organization, system, or enclave's Information Assurance program. Provide management support for proposing, coordinating, implementing, and enforcing Information System Security policies, standards, and methodologies. Manage operational security posture for an Information System or program to ensure Information System Security policies, standards, and procedures are established and followed. Provide management of security aspects of the Information System and perform day-to-day security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis … to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware, and firmware. Manage changes to systems and assess the security impact of those changes. Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and More ❯

This position is contingent on contract award Description: Provide management support for a program, organization, system, or enclave's Information Assurance program. Provide management support for proposing, coordinating, implementing, and enforcing Information System Security policies, standards, and methodologies. Manage operational security posture for an Information System or program to ensure Information System Security policies, standards, and procedures are established and followed. Provide management of security aspects of the Information System and perform day-to-day security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis … to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware, and firmware. Manage changes to systems and assess the security impact of those changes. Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and More ❯

As Information Systems Security Engineer, you'll play a pivotal role in safeguarding our organization's digital assets and sensitive information. The ideal candidate is a dedicated professional with a strong background in cybersecurity, a deep understanding of current threats and vulnerabilities, and can implement robust security measures. You'll contribute to the design, implementation, and maintenance … think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below! What you'll do: Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure. Conduct regular security assessments to … identify vulnerabilities and weaknesses in systems, networks, and applications. Develop and implement incident response plans to effectively address security breaches, incidents, and breaches. Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures. Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents. Analyze and investigate More ❯

As Information Systems Security Engineer, you'll play a pivotal role in safeguarding our organization's digital assets and sensitive information. The ideal candidate is a dedicated professional with a strong background in cybersecurity, a deep understanding of current threats and vulnerabilities, and can implement robust security measures. You'll contribute to the design, implementation, and maintenance … think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below! What you'll do: Design, implement, and manage security solutions, including firewalls, intrusion detection/prevention systems, endpoint protection, and encryption mechanisms to ensure the organization's networks and systems remain secure. Conduct regular security assessments to … identify vulnerabilities and weaknesses in systems, networks, and applications. Develop and implement incident response plans to effectively address security breaches, incidents, and breaches. Collaborate with cross-functional teams to establish and enforce security policies, standards, and procedures. Monitor network traffic, system logs, and security alerts to detect and respond to potential security incidents. Analyze and investigate More ❯

innovative methods to complex problems by collaborating with subject matter experts and program managers in one or more of the following areas: critical infrastructure and industrial control system cyber security, information security. Develop and give cybersecurity training to domestic and international partners Provide cybersecurity expertise as part of multi-disciplinary and multi-lab teams providing assessments of facilities … Demonstrated experience with Splunk, RSA, Tenable Nessus and SELinux Demonstrated strong understanding of ports, protocols and services Assists architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Contributes to security planning, assessment, risk analysis, risk management, certification and awareness activities More ❯

Program (GCS) delivers and supports a proprietary Government Advantage ERP software suite, recently certified as a StateRAMP certified SaaS solution. Our CGI Advantage program is seeking a skilled SaaS Information Security Officer that will focus on continually securing our SaaS software while working in conjunction with our IaS, PaaS teams and product engineering to ensure continued compliance with … the StateRAMP protocols and processes. For this role, CGI is looking for an individual with experience as a Information Security Officer, comfortable discussing software security, understands DevSecOps processes and SDLC, and has familiarity with NIST, FedRAMP and/or StateRAMP protocols. Ideally the candidate has a security certification such as CISM, CISA or CISSP demonstrating the … aptitude for the role. This is a hybrid role, requiring two to three days per week from any of the CGI office. Your future duties and responsibilities: The SaaS Information Security Officer primary responsibilities are but not limited to: Provide guidance, oversee the implementation of Advantage security controls. Serve as vulnerability management expert, which includes - monitoring vulnerability More ❯

Role: Cyber Security Consultant Location: Leeds, West Yorkshire Salary: £60,000 - £75,000 PLUS 25 Days Holiday, Vendor Certifications, International Travel, Private Pension About the Company: Our client, a global leader in Sustainability Consulting, is looking for a Cybersecurtiy Consultant to join their growing Information Security Team. This exciting role provides an opportunity to shape and strengthen … security practices across the organization. If you are passionate about cybersecurity, have a strong technical background, and thrive in a fast-paced environment, we want to hear from you. Position Overview: As a Cybersecurity Consultant, you will collaborate with the IT Security Team to advise, develop, and maintain security processes and policies. Your expertise will guide the … organization in enhancing security capabilities across its global infrastructure. This role offers a chance to make a real impact by ensuring the integrity and resilience of the company’s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular More ❯

Essential Duties and Responsibilities The Cyber Security Command Center (CSCC) provides the most timely and comprehensive intelligence on external threats to the Security Operations Center (SOC) for detection, continuous monitoring of multiple security-related information sources, threat hunting, and, when needed, manage incident response related to cyber, privacy, and data protection for Gates data, infrastructure, and … networks. The CSCC team will take disparate data sets and combine it with threat information and other enrichment to conduct analysis and identify incidents and drive appropriate responses to contain and minimize impact the threats and restore normal operations. Key responsibilities: Actively monitor security threats and risks, provide in-depth incident analysis, evaluate security incidents, will provide … proactive threat research, and recommend mitigation strategies. Utilize the latest in security technology and be at the forefront of incident response to support operations at Gates locations around the world. Act as a core member of the Incident Response Team, triaging, responding to and reporting incidents and providing cyber security metrics. Evaluating and determining if/when information More ❯

Our client are looking for an experienced Senior Cybersecurity Risk Analyst to join their team on an initial interim basis. This role is critical in identifying, assessing, and managing information security risks across the company. The ideal candidate will have a strong technical background, the ability to translate threats into business risks, and experience working in fast-paced … environments. Key Responsibilities Conduct in-depth security risk assessments across systems, applications, and infrastructure. Identify and evaluate technical and operational risks , vulnerabilities, and control gaps. Translate complex technical threats into clear, actionable business risks. Maintain and update the Cybersecurity Risk Register . Produce detailed risk assessment reports and present findings to stakeholders. Collaborate with IT, SOC, and business units … to ensure risks are understood and mitigated. Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational More ❯

We are looking for a Chief Information Security Officer (CISO) to join our team. In this role, you will lead Remepy's global cybersecurity strategy, ensuring the integrity, confidentiality, and availability of our digital health platform, patient data, and regulated software products. You'll be responsible for aligning information security and data protection with our mission … to deliver FDA-regulated digital therapeutics. This includes leading regulatory security compliance (HIPAA, 21 CFR Part 11, FDA SaMD guidelines), proactively managing risk, and collaborating across engineering, product, compliance, and leadership teams. Location NYC, London, Ramat-Gan This role is based in one of our office locations offering the opportunity to collaborate closely with our dynamic team in person. … Responsibilities Design, implement, and lead Remepy's security practice and enterprise cybersecurity program Own security compliance with HIPAA, 21 CFR Part 11, FDA pre/postmarket cybersecurity guidance, and related frameworks Collaborate with Product, Engineering, and Compliance to embed security-by-design across our software lifecycle Lead enterprise risk assessments, incident response, disaster recovery, and business continuity More ❯

re committed to transferring and sharing resources, knowledge, skills, and experience across our organisation, and our Global Mobility Programme provides the gateway to a whole world of opportunities. Position: Information Security Analyst The Information Security Analyst (Risk) is responsible for the coordination of Information Security risk management activities within our Global Office. You will … work with teams from across the organisation, supporting them with the identification and assessment of departmental security risks, leading security assessments on our current and prospective third parties, supporting risk owners with the definition of risk mitigation and treatment strategies and ensuring they are actioned accordingly. You will provide visibility and assurance to the Risk and Compliance and … wider organisational leadership on the status of organisational risks. Key accountabilities As the Information Security Analyst (Risk Management), you will be responsible for: Maintaining our Information Security risk register. Supporting operational teams with the identification and assessment of departmental security risks. Completing due diligence and risk assessments on third parties. Providing guidance on risk mitigation More ❯

Manager: CISO Department: Cyber Security Division: Enterprise Information Technology Services Location: London, Hybrid Main Purpose: Identity is a core security component in any modern IT estate, ensuring the right people, machines, and software components have access to the correct resources at the appropriate time, while preventing unauthorised access and maintaining a secure environment. The Identity and Access … Manager role heads up this crucial security function within the Cyber Security Team and will Lead strategic development and operational management of identity services. Develop and manage identity and access related tooling and processes to ensure mature, efficient, and secure working practices. Be an advocate for best practices in Identity and Access Management. Ensure compliance and risk management … standards are met. Main Responsibilities: Lead the Identity and Access function within the Cyber Security team, including: o Access Management o Identity Governance and Administration o Role Based Access Control o Privileged Access Management o Identity Threat Detection and Response o Access Certification o Identity Data Management & Analytics Ensure that only authorised identities have access to the relevant data More ❯

tips and London news: Please click for similar jobs Job Title: Mandarin Speaking IT Network Manager The Skills You'll Need: Fluent in Mandarin, IT Network system administration/Security working experience. Your New Salary: Depending on experience Office based Start: ASAP Working hours : 35 hours Mandarin Speaking IT Network Manager - What You'll be Doing: Responsible for the … establishment and renewal of IT specifications related to network systems Propose implementation procedures to Management according to Head Office's policies and IT Centre's requirements Assess network systems security risk and propose security risk control solutions and execute them. Responsible for the design and maintenance of network systems contingency plans and leading of contingency plans testing Monitor … analyse and manage network security risk Carry out research on new technologies and products, carrying out technical solution design for the continuing development of IT Centre Provide training to staff members in IT Centre when required Mandarin Speaking IT Network Manager - The Skills You'll Need to Succeed: Degree educated in Information Technology, Computer Science, Software Engineering or More ❯

To see more Chinese jobs please follow us on WeChat: teamchinapf AND pfteamchina Ref: 22974 The Skills You'll Need: Fluent in Mandarin, IT Network system administration/Security working experience. Your New Salary: Depending on experience Office based Start: ASAP Working hours : 35 hours Mandarin Speaking IT Network Manager - What You'll be Doing: Responsible for the daily … establishment and renewal of IT specifications related to network systems Propose implementation procedures to Management according to Head Office’s policies and IT Centre’s requirements Assess network systems security risk and propose security risk control solutions and execute them. Responsible for the design and maintenance of network systems contingency plans and leading of contingency plans testing Monitor … analyse and manage network security risk Carry out research on new technologies and products, carrying out technical solution design for the continuing development of IT Centre Provide training to staff members in IT Centre when required Mandarin Speaking IT Network Manager - The Skills You'll Need to Succeed: Degree educated in Information Technology, Computer Science, Software Engineering or More ❯

combines advanced design, planning, implementation, and troubleshooting of network systems with leadership responsibilities. The role aligns technical capabilities with business goals, facilitating cross-functional collaboration and ensuring compliance with security and performance standards. Working at Baker McKenzie: Baker McKenzie is the world's leading law firm with offices all over the world. Our Belfast Centre is home to over … infrastructure, ensuring compliance with service-level agreements (SLAs) Monitor network performance, perform periodic assessments, and implement enhancements to meet or exceed operational targets Collaborate with internal stakeholders to enforce information security policies and remediate non-compliance Define and participate in disaster recovery (DR) and business continuity planning (BCP) practices Monitor internal and external compliance with the Firm's … information security policies and procedures. Identify non-compliant practices and assist with remediation Vendor & Project Management: Establish and maintain relationships with network-related vendors, ensuring timely support and cost-effective solutions Manage network-related projects, including planning, implementation, and documentation Provide status updates and detailed reports to the IT leadership Documentation & Training: Maintain and enhance the Firm's More ❯

second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers. Key Skills and Experience: 3-5+ years of experience in Information Security Governance, Risk, and Compliance (GRC), with a focus on IT risk and control management. Strong analytical skills with the ability to perform technical IT security and … operational risk assessments. High attention to detail, ensuring accuracy in documentation, assessments, and compliance activities. Strong understanding of information security risk management principles, frameworks (e.g., ISO 27001, NIST), and compliance practices. Exposure and understanding of IT infrastructure, business applications, and their associated risks and controls. Experience collaborating with internal and external audit teams, including supporting audit readiness and … evidence gathering. Proven ability to work effectively across multi-disciplinary, multi-cultural, and geographically dispersed teams. Excellent written and verbal communication skills, with the ability to convey complex information clearly to both technical and non-technical audiences. Strong interpersonal and presentation skills, with confidence engaging stakeholders at all levels. Industry-recognised technical certifications such as ITIL, CISSP, CRISC, or More ❯

Job Description As a Senior Engineer - Threat Modelling, you will be part of a cross-functional team delivering digital business transformation solutions to our clients. This role focuses on Security Architecture and Threat Modelling, including governance, evaluation of public cloud services, and conducting security reviews for Public Cloud Providers. Collaboration with Engineering, Information Security, Program Management … and Development teams is essential. You will conduct technical architecture reviews to identify security opportunities, threats, and mitigation strategies. Your Impact Conduct threat modeling exercises using established methodologies. Identify potential threats and specify mitigation controls. Manage the lifecycle of threats and controls, ensuring updates. Deliver threat models within deadlines. Provide feedback to improve threat modeling processes. Present findings to … leadership and stakeholders. Qualifications Your Skills & Experience We seek candidates with experience in: Proficiency in GCP (essential) Security architecture principles, frameworks, and best practices Threat modeling methodologies like MITRE ATT&CK, STRIDE, PASTA Cybersecurity experience of 5+ years Security practices including authentication, authorization, logging, encryption, infrastructure security, network segmentation Knowledge of cloud security frameworks Rest API More ❯

meets business needs and supports organisational goals. Key Responsibilities as a Dynamics 365 Administrator: Manage the day-to-day administration of the Dynamics 365 environment: Including user account management, security roles, and permissions. Configure and customise Dynamics 365: To meet business needs, including creating and modifying entities, forms, workflows, and reports. Monitor system performance and troubleshoot issues: Ensure optimal … Create and maintain comprehensive documentation :For system configurations, processes, and procedures. Ensure compliance: That the Dynamics 365 environment complies with organisational policies and industry standards, including data privacy and security regulations. Stay updated with the latest features and best practices for Dynamics 365 :Apply this knowledge to improve system functionality and user experience. Key Skills and Experience for a … Administrator: Essential: 3+ Years of experience in administration and development in Dynamics 365 CRM Modules Sales, Customer Service, Project Operations. Proficiency in Dynamics 365 administration, including user management, security roles, and system configuration. Knowledge of Power Platform tools (Power Apps, Power Automate, Power BI). Significant prior experience in data management including imports, exports, and regular data audits. Knowledge More ❯

research and make recommendations on products, services, protocols, and standards in support of all infrastructure procurement and development efforts Assist with the planning and deployment of infrastructure and cloud security measures Develop, implement, and maintain policies, procedures, and associated training plans for cloud administration Ensure services conform to the agreed compliance requirements set forth by current and planned accreditations … to continuously optimise systems and processes, using stakeholder feedback, taking account of technological improvements and new design patterns with cloud technologies Key Working Relationships Internal: Economists/Business Analysts Information Technology/Infrastructure Architects CIO/Head of IT Marketing & Business Development External: As Required Skills, Knowledge & Expertise Required: 6+ years of experience in IT Support and Operations Excellent … communication skills. You will have a natural ability to build rapport with stakeholders at all levels to influence decisions Proven experience in IT infrastructure, Cloud and Security systems planning and development following best practices and information security Significant experience with Microsoft Azure, Intune, PIM and storage accounts Experience in evaluation and decision making Working technical knowledge of More ❯

primary purpose of this role is to support Grant Thornton International Ltd.’s internal cybersecurity assessment programme, which monitors our global network of Member Firms for compliance against our information security framework. The ideal candidate will have experience evaluating IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom/Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of data and evidence obtained in the field, including reviews for completeness, consistency and clarity. Evaluate cybersecurity … assessment cycles. This role will also include broader support to the team such as: Respond to firm enquiries and mailbox management. Provide advice and guidance on a variety of security topics. Develop guides, templates and other material to support the implementation of security standards. Research security best practices and provide appropriate reporting. Person specification Education/qualifications More ❯

governance matters associated with complex contractual arrangements in the public sector and regulated industries. Work collaboratively with customer support and sales teams to scale and automate customer compliance and security requests, including by developing and maintaining up-to-date compliance documentation reflecting Cohere’s practices. Partner closely with information security to manage third-party audits and certification … attainment (e.g. SOC 2 Type 2, ISO 27001, HIPAA). Work collaboratively with Cohere’s information security, product, engineering, and AI risk management teams to design and implement robust and cross-functional regulatory compliance strategies. Advise and provide insights on emerging legal and regulatory trends to key teams, including the Public Sector and Government Affairs and Public Policy … identifying and mitigating legal risks. Proven ability and experience managing compliance programs. Proven ability and experience working effectively with business and technical teams, including go-to-market, customer support, information security, and product teams. Experience navigating corporate governance matters for global expansion and export control compliance will be considered an asset. Experience advising on and managing contracting and More ❯