<p><strong>APPLICANTS MUST RESIDE OR BE WILLING TO RELOCATE TO PHILADELPHIA, PA</strong></p><p><br></p><p><strong>Threat Modeling Architect</strong> </p><p><strong>Location:</strong> Hybrid, Philadelphia, PA </p><p> <strong>Employment Type:</strong> Full-Time (Contractor) </p><p> <strong>Department:</strong> Cybersecurity / Risk Management </p><p><br></p><p><strong>About the Role</strong> </p><p>We are seeking a highly skilled and experienced <strong>Threat Modeling Architect</strong> to join our cybersecurity team. This role is critical in helping our organization proactively identify, assess, and mitigate security threats across applications, systems, and infrastructure. You will lead structured threat modeling exercises, collaborate with cross-functional teams, and drive the integration of security into design and development processes. </p><p><br></p><p><strong>Key Responsibilities</strong> </p><p>· Lead and facilitate threat modeling sessions across diverse technology stacks and business domains. </p><p>· Define scope, identify assets, and document potential threats and vulnerabilities. </p><p>· Analyze threat impact and likelihood to prioritize mitigation strategies. </p><p>· Collaborate with engineering, architecture, and product teams to embed security into system design. </p><p>· Evaluate existing security controls and identify gaps or weaknesses. </p><p>· Develop and maintain threat model documentation, including architecture diagrams, findings, and action items. </p><p>· Continuously monitor and update threat models to reflect evolving threat landscapes. </p><p>· Promote a security-conscious culture through awareness and training. </p>
<p>We are looking for an experienced Information Security Analyst to join our team. In this contract position, you will play a pivotal role in ensuring the organization's security policies and controls align with industry regulations and best practices. This role is ideal for someone who thrives in a financial services environment and has a solid background in information security governance, risk management, and regulatory compliance.</p><p><br></p><p>Responsibilities:</p><p>• Develop and implement security policies and controls to protect organizational data and assets.</p><p>• Ensure compliance with financial regulations and industry standards by leveraging the ServiceNow Integrated Risk Management platform.</p><p>• Conduct regular audits to assess and strengthen the organization's security posture.</p><p>• Support internal security awareness initiatives and training programs to enhance employee understanding of security protocols.</p><p>• Collaborate with cross-functional teams to align security measures with business objectives.</p><p>• Respond to audit requests and provide detailed documentation for regulatory reviews.</p><p>• Monitor and evaluate risk management practices to address vulnerabilities proactively.</p><p>• Maintain governance frameworks to ensure consistent application of security standards.</p><p>• Analyze security metrics and reports to identify potential areas for improvement.</p><p>• Provide hands-on expertise in the ServiceNow platform to optimize risk management processes.</p>
<p>We are looking for an experienced Information Security Engineer to join our client's team. In this role, you will play a key part in enhancing organizational security measures by leveraging your expertise in CyberArk and other security technologies. You will collaborate with various teams and contribute to creating robust security processes and practices.</p><p><br></p><p>Responsibilities:</p><p>• Design, implement, and manage CyberArk solutions to strengthen privileged access security.</p><p>• Develop and refine processes, use cases, and best practices to enhance security initiatives.</p><p>• Lead and advance the organization's security program to ensure alignment with industry standards.</p><p>• Provide support for general security initiatives and related projects.</p><p>• Work closely with cloud, network, and security architecture teams to ensure integrated security solutions.</p><p>• Maintain and troubleshoot Active Directory configurations and networking fundamentals to support security operations.</p><p>• Operate as a hands-on security generalist, addressing diverse challenges across the IT landscape.</p><p>• Monitor and ensure compliance with data privacy and cybersecurity governance standards.</p><p>• Identify vulnerabilities and recommend solutions to mitigate risks within the IT environment.</p>
We are looking for an experienced IT Security Specialist to join our team in Sacaton, Arizona. This role is critical in ensuring the protection of sensitive data, maintaining network security, and implementing cybersecurity measures. The ideal candidate will have a strong background in information security, with a focus on safeguarding systems and data from potential threats.<br><br>Responsibilities:<br>• Monitor and manage network security devices, including firewalls and intrusion detection systems, to prevent unauthorized access.<br>• Administer and secure Microsoft technologies and services, including Active Directory, to maintain system integrity.<br>• Conduct vulnerability assessments and audits to identify potential risks and implement corrective actions.<br>• Develop and enforce cybersecurity policies and procedures to ensure compliance with industry standards.<br>• Investigate and respond to security incidents, mitigating risks and preventing recurrence.<br>• Implement data privacy and database security measures to protect sensitive information.<br>• Collaborate with cross-functional teams to ensure cyber governance and alignment with organizational goals.<br>• Maintain up-to-date knowledge of cybersecurity trends and emerging threats.<br>• Provide training and guidance to staff on best practices for maintaining IT security.<br>• Evaluate and recommend security tools and solutions to enhance overall cybersecurity posture.
We are looking for an IT Security Specialist to join our team in Chicago, Illinois. This role is ideal for individuals who excel in managing FedRAMP-compliant environments and hybrid cloud infrastructures while fostering collaboration across departments. As a Contract position with the potential for long-term employment, this opportunity combines technical expertise with stakeholder engagement to drive security initiatives effectively.<br><br>Responsibilities:<br>• Ensure the operation and maintenance of FedRAMP-compliant environments and hybrid cloud systems.<br>• Collaborate across departments to align compliance, security, and operational goals.<br>• Effectively communicate technical concepts to both technical and non-technical stakeholders.<br>• Advocate for security programs internally by promoting processes, standards, and their organizational value.<br>• Apply expertise in data privacy, database security, and cybersecurity to safeguard systems.<br>• Support cyber governance initiatives to ensure adherence to industry standards.<br>• Manage computer files and related systems to maintain security and accessibility.<br>• Provide guidance on implementing best practices for FedRAMP compliance.<br>• Proactively identify and address vulnerabilities within hybrid environments.
We are looking for a skilled and dedicated Cyber Security Engineer to join our team in Chesterbrook, Pennsylvania. This contract-to-permanent position involves overseeing information security governance, managing vendor relationships, and mitigating risks to ensure a secure and compliant environment. The ideal candidate will bring hands-on expertise in security practices, coupled with strong analytical and communication skills, to drive the implementation of robust security programs.<br><br>Responsibilities:<br>• Act as the primary liaison with offshore teams to ensure compliance with organizational security policies and standards.<br>• Monitor vendor performance against service level agreements and identify areas for improvement.<br>• Develop and enforce governance practices to align operations with security and compliance requirements.<br>• Collaborate with business units to ensure security measures are integrated into vendor projects.<br>• Conduct assessments to evaluate supplier compliance with confidentiality, integrity, and availability standards.<br>• Provide expert advice on information security, analyzing vulnerabilities and recommending remediation strategies.<br>• Draft and maintain organizational security policies and procedures, ensuring adherence to compliance standards.<br>• Prepare detailed reports on security governance and vulnerabilities for stakeholders and leadership teams.<br>• Facilitate regular risk assessments and vulnerability scans, ensuring timely resolution of findings.<br>• Support special projects and contribute to the continuous improvement of security practices.
Identifies, implements, maintains, and monitors risk-informed, standards-based, effective, and efficient security controls within a hybrid multi-cloud technology environment.<br><br>Supports continuous integration and continuous development pipelines and processes that automatically build, test, and deploy infrastructure and containerized applications to ensure appropriate security checks are included automatically or manually. Reviews software releases and infrastructure changes for security vulnerabilities and risks prior to approval.<br><br>Supports enterprise software development and cloud infrastructure projects and production applications that store, process, and transmit regulated data to ensure controls meet or exceed standards.<br><br>Manages vulnerabilities and security testing for on premise and cloud-hosted applications and tracks issues to remediation.<br><br>Supports audit and compliance efforts to ensure applications, infrastructure, and integrations meet applicable compliance and contractual standards.<br><br>Identifies, recommends, and tests technical security standards and guidelines for software development, DevOps, and release management to ensure that all delivered solutions and architecture adhere to industry best-practices for availability, confidentiality, and integrity.<br><br>Partners with internal and external development teams and other stakeholders to improve security and operational monitoring for cloud hosted workloads.<br><br>Develops and tests incident response plans to prepare for, respond to, and recover from security incidents and operational issues as part of an incident response team.<br><br>Supports efforts to provide for a secure integrated development environment for external and internal software and release management pipelines.<br><br>Builds and tracks performance indicators and metrics to inform security control monitoring in cloud environments.<br><br>Performs all other duties as assigned.<br><br>Serious candidates will possess the minimum qualifications:<br><br>Bachelor’s Degree in Computer or Software Engineering, Information Security, Cybersecurity or related field from an accredited four year college or university required. Master’s Degree preferred.<br><br>AWS Certified Solutions Architect or DevOps Engineer Professional certification required.<br><br>AWS Security Specialty certification highly desired.<br><br>Certified Information Systems Security Professional (CISSP) and Certified Cloud Security Professional (CCSP) highly desired.<br><br>Cloud Security Alliance (CSA) Certificate of Cloud Security Knowledge (CCSK) desired.<br><br>GIAC Cloud Security Automation (GCSA) certification highly desired. Must be able to obtain certification within 6 months of hire.<br><br>Minimum eight (8) years of extensive security engineering experience, including architectural design using AWS best practices and industry standards.<br><br>Experience implementing and managing tools for security, availability, and compliance monitoring in a cloud environment which includes collecting data, parsing log files, capturing network traffic, setting alert thresholds, and notifying stakeholders.
We are looking for an experienced Security Analyst II to join our team on a long-term contract basis in Allentown, Pennsylvania. In this role, you will focus on securing AI and machine learning systems, ensuring compliance with enterprise policies and evolving regulations. You will collaborate with cross-functional teams to implement robust security measures for innovative AI technologies, contributing to the organization's commitment to advancing a secure and sustainable energy future.<br><br>Responsibilities:<br>• Collaborate with product teams to integrate security measures into AI models, data pipelines, and applications.<br>• Perform detailed security assessments for AI systems, including generative AI and large language models.<br>• Develop and enforce security policies, controls, and standards tailored to AI technologies.<br>• Implement risk management strategies for AI solutions, addressing issues such as model bias and explainability.<br>• Work closely with legal, compliance, and data privacy teams to adhere to emerging AI regulations.<br>• Evaluate and deploy security tools for monitoring, model scanning, and data protection.<br>• Provide guidance on best practices for AI security within Agile and cloud-based environments.<br>• Support the adoption of frameworks for responsible AI use, emphasizing traceability and observability.<br>• Stay updated on advancements in AI security to continuously improve enterprise practices.<br>• Facilitate training sessions to enhance team awareness of AI security protocols.
We are looking for an experienced Cyber Security Engineer to enhance and safeguard our security frameworks across cloud, network, and endpoint systems. This role requires a balance of technical expertise and strategic thinking, with a focus on implementing and maintaining security best practices. The ideal candidate will possess strong communication skills and the ability to collaborate effectively with technical teams and leadership.<br><br>Responsibilities:<br>• Manage and optimize security platforms, including Microsoft Azure services, CrowdStrike, Secureworks/Sophos, and Mimecast.<br>• Develop and enforce security protocols for cloud infrastructure, network configurations, and endpoint systems.<br>• Collaborate with engineering teams to establish secure architecture and ensure compliance with security standards.<br>• Monitor and analyze security alerts, investigate potential threats, and lead incident response efforts.<br>• Perform risk assessments, identify vulnerabilities, and implement remediation strategies.<br>• Create and maintain security documentation, policies, and standards to support organizational goals.<br>• Offer expert recommendations on security improvements and architectural strategies.<br>• Communicate findings and risks to stakeholders in a clear and actionable manner.<br>• Support compliance efforts, audits, and third-party security assessments.<br>• Contribute to the organization’s overall cybersecurity strategy and maturity.
<p>We are looking for a skilled Network Security Engineer to join our team in Bensalem, Pennsylvania. In this role, you will play a key part in designing, implementing, and maintaining network security infrastructure to uphold the organization's standards. The ideal candidate will possess deep technical expertise in network security technologies and demonstrate strong problem-solving abilities.</p><p><br></p><p>Responsibilities:</p><p>• Lead and manage projects related to network implementation, integration, and transitions while ensuring seamless handoffs to other teams.</p><p>• Develop and maintain detailed documentation and diagrams for both new and existing network systems.</p><p>• Provide advanced support for network security infrastructure, including firewalls and other security systems.</p><p>• Audit and remediate network security devices to ensure compliance with established standards.</p><p>• Investigate and resolve network security issues, identifying root causes and implementing corrective measures.</p><p>• Collaborate with vendors to escalate issues and drive efficient resolutions.</p><p>• Participate in on-call rotations to address urgent network concerns.</p><p>• Perform vulnerability assessments and apply remediation strategies to strengthen security.</p><p>• Conduct security reviews and implement measures to harden existing network systems.</p><p>• Analyze network architecture and devices to identify potential risks and recommend improvements.</p>
<p>Our Oakland client is seeking a hands-on Senior Application Security Engineer to bridge application security and development teams. This is an opportunity to drive foundational application security work, working directly with developers to ensure secure software delivery across the organization.</p><p> </p><p>This is a contract role to start, and is 100% remote.</p><p> </p><p><strong>Key Responsibilities:</strong></p><p> </p><p>Bug Bounty / Ethical Hacker Program Management (Bugcrowd):</p><ul><li>Own daily management of our Bugcrowd program</li><li>Review and triage incoming vulnerability findings</li><li>Work with ethical hackers and engineers on issue resolution</li><li>Explain vulnerabilities and provide clear remediation guidance—understand not just what’s wrong, but how to fix it</li></ul><p> </p><p>Secure Software Development Lifecycle (Secure SDLC):</p><ul><li>Help design and mature our secure SDLC program (security is early in the journey here)</li><li>Partner with developers to integrate security testing early in the process</li><li>Perform and coordinate hands-on security testing prior to production releases</li><li>Identify and remediate vulnerabilities before deployment</li></ul><p> </p><p>Code Scanning & Tooling (Snyk):</p><ul><li>Manage and interpret findings from Snyk across code repositories</li><li>Review, validate, and prioritize vulnerabilities, supporting developers to distinguish real issues from false positives</li><li>Provide actionable, clear guidance for remediations</li></ul><p> </p><p>Social Account Security Oversight:</p><ul><li>Oversee security for company social media and brand accounts</li><li>Enforce MFA, SSO, and leverage Survey as a tool for access management</li></ul><p><br></p>
<p>We are looking for a skilled Sr. IT Security Engineer to join our team in Bensalem, Pennsylvania. In this role, you will lead efforts to design, implement, and manage security solutions that safeguard the organization’s infrastructure and data. Your expertise will be instrumental in developing advanced threat detection systems, conducting vulnerability assessments, and driving compliance with industry standards.</p><p><br></p><p>Responsibilities:</p><p>• Design and deploy centralized security monitoring systems and advanced threat detection solutions to enhance incident response capabilities.</p><p>• Oversee intrusion detection and prevention systems, analyzing and responding to suspicious activities to mitigate risks.</p><p>• Implement and maintain network-based security solutions while establishing data privacy policies.</p><p>• Perform regular vulnerability assessments using tools like Nessus, identifying and remediating security gaps.</p><p>• Develop strategies for zero-day threat protection and manage endpoint protection technologies to prevent malware.</p><p>• Configure and manage identity and access management systems, such as Okta, to ensure secure user authentication.</p><p>• Architect secure network solutions, including firewalls, web content filtering, and data loss prevention systems.</p><p>• Maintain detailed security architecture documentation and provide periodic reports on security posture.</p><p>• Collaborate with IT and compliance teams to promote security best practices and ensure regulatory compliance.</p><p>• Monitor and manage security devices to protect systems from internal and external threats.</p>
We are seeking a motivated and detail-oriented Network Security Engineer to secure, monitor, and enhance our enterprise network environment. This role focuses heavily on firewall administration, network segmentation, and security hardening. You will support the design and enforcement of security policies, maintain next generation firewalls, and collaborate with Security and Infrastructure teams to ensure a resilient and compliant network.<br>• Configure, maintain, and troubleshoot next generation firewalls (especially Palo Alto Networks) including security policies, NAT, threat profiles, URL filtering, and VPN configurations.<br>• Lead efforts in network segmentation, micro segmentation, and Zero Trust architecture adoption.<br>• Implement and maintain network security controls across wired, wireless, and cloud environments.<br>• Monitor security logs, analyze firewall events, and respond to network security incidents.<br>• Manage VPN technologies including remote access and site to site tunnels.<br>• Support network architecture reviews and security assessments.<br>• Ensure adherence to regulatory and security frameworks (SOX, FFIEC, PCI, HIPAA, etc.).<br>• Maintain detailed documentation of firewall rulesets, segmentation maps, topology changes, and security configurations.<br>• Work cross functionally with Information Security, Cloud, and Infrastructure teams.<br>• Participate in IT change management processes and follow ITIL best practices.<br>What do you need?<br>• 3-5 years of experience in network security, network engineering, or related IT roles.<br>• Strong understanding of network security concepts: segmentation, ACLs, IPS/IDS, threat prevention, SSL decryption, Zero Trust principles.<br>• Hands on experience with Palo Alto firewalls and Panorama; experience with Cisco firewalls is a plus.<br>• Experience designing and implementing network segmentation (VLANs, VRFs, micro segmentation).<br>• Experience with VPN technologies and troubleshooting secure remote access solutions.<br>• Experience with wireless security protocols and enterprise authentication (WPA2 E, 802.1X).<br>• Experience with Cloud security concepts.<br>• Solid knowledge of TCP/IP, DNS, DHCP, NAT, VPN, VLANs, OSPF, BGP.<br>• Familiarity with network monitoring/logging tools (e.g., Splunk, Syslog).<br>• Strong communication and documentation skills.<br>Technology Skills:<br>• Relevant certifications are preferred such as Palo Alto PCCSA/PCNSA/PCNSE, Cisco CCNA Security, CompTIA Security+ or Network+.<br>• Experience with Palo Alto firewalls, Panorama, and threat prevention tools.<br>• Experience with Cisco networking including Cisco Identity Services Engine (ISE).<br>• Exposure to cloud security/networking (Azure) is a plus.<br>• Working knowledge of ITIL frameworks.
<p><strong>Senior Cloud Security & Solutions Delivery SME</strong></p><p><strong>Location:</strong> Washington, DC (Hybrid – 1 day onsite per week)</p><p> <strong>Clearance:</strong> Ability to obtain a Public Trust</p><p><strong>Duration: </strong>6 – month contract, open for extension or conversion </p><p><strong>Pay: </strong>Starting at $70 hr W2 </p><p><strong>Overview</strong></p><p>An experienced <strong>Senior Security Architect & Solutions Delivery Subject Matter Expert (SME)</strong> is needed to design and guide the implementation of advanced cloud security solutions across a federal environment. This role supports cybersecurity operations by applying Zero Trust principles, strengthening defense‑in‑depth strategies, and securing cloud‑hosted environments. The SME will conduct cloud application assessments, provide architectural guidance, and support emerging cloud technologies such as AI, IoT, RPA, blockchain, and quantum computing.</p><p>This position requires deep expertise in cloud security architecture, Zero Trust frameworks, and the delivery of secure, scalable solutions across multiple cloud service providers.</p><p><br></p><p><strong>Primary Responsibilities</strong></p><ul><li>Provide strategic leadership for enterprise security and Zero Trust architecture initiatives.</li><li>Develop and implement cloud security architectures aligned to Zero Trust principles.</li><li>Lead and oversee cloud security design, controls, and architectural frameworks.</li><li>Offer technical leadership for Zero Trust and security architecture activities.</li><li>Create cloud security architecture roadmaps and long-term strategies.</li><li>Support cloud deployments including private, hybrid, and on‑premises virtualization environments.</li><li>Design security event visibility, logging, and telemetry solutions for cloud environments.</li><li>Provide oversight and design guidance for Identity, Credential, and Access Management (ICAM) solutions.</li><li>Define network security requirements, policies, and controls.</li><li>Apply network segmentation and defense‑in‑depth approaches to cloud architectures.</li><li>Incorporate OT/IoT security requirements into architectural designs.</li><li>Develop scope, cost estimates, and implementation plans for security tool deployments.</li><li>Assess and evaluate new cloud security products and emerging technologies.</li></ul><p><br></p>
<p><strong>Job Title: Azure Administrator – Security & Identity Focus</strong></p><p><strong>Location:</strong> On-site</p><p><strong>Employment Type:</strong> Full-time</p><p><strong>Department:</strong> IT</p><p> </p><p><strong>Position Summary</strong></p><p>We are seeking a skilled <strong>Azure Administrator</strong> with strong experience in <strong>Microsoft Entra ID (Azure AD), Microsoft Intune, Microsoft Sentinel, and Microsoft Defender</strong> to support, secure, and maintain our Microsoft cloud environment.</p><p>This role is responsible for <strong>identity management, endpoint management, security monitoring, and threat protection</strong> across Azure and Microsoft 365. The ideal candidate has hands-on experience implementing <strong>Zero Trust principles</strong>, enforcing security baselines, and supporting compliance-driven environments.</p><p> </p><p><strong>Key Responsibilities</strong></p><p><strong>Azure & Identity Administration</strong></p><ul><li>Administer and maintain <strong>Microsoft Entra ID (Azure AD)</strong> including:</li><li>User and group management</li><li>Conditional Access policies</li><li>MFA enforcement</li><li>Privileged Identity Management (PIM)</li><li>Identity lifecycle governance</li><li>Support hybrid identity environments (Azure AD Connect / Cloud Sync)</li></ul><p> </p><p><strong>Endpoint Management (Intune)</strong></p><ul><li>Configure and manage <strong>Microsoft Intune</strong> for Windows, macOS, and mobile devices</li><li>Create and maintain:</li><li>Device compliance policies</li><li>Configuration profiles</li><li>Application deployment policies</li><li>Integrate Intune with Conditional Access and Microsoft Defender for Endpoint</li><li>Monitor device compliance and remediate non-compliant endpoints</li></ul><p> </p><p><strong>Security Operations & Monitoring</strong></p><ul><li>Configure, maintain, and monitor <strong>Microsoft Sentinel</strong></li><li>Log ingestion and data connectors</li><li>Analytics rules and alerts</li><li>Incident triage and response</li><li>KQL queries and workbooks</li><li>Administer <strong>Microsoft Defender</strong> solutions including:</li><li>Defender for Endpoint</li><li>Defender for Identity</li><li>Defender for Cloud Apps</li><li>Defender for Office 365</li><li>Assist with threat detection, investigation, and response activities</li></ul><p> </p><p><strong>Security & Compliance Support</strong></p><ul><li>Implement and maintain security controls aligned with best practices (Zero Trust, least privilege)</li><li>Support audit and compliance requirements (e.g., NIST, ISO, CMMC, internal audits)</li><li>Maintain documentation, runbooks, and standard operating procedures</li><li>Participate in security assessments, vulnerability remediation, and continuous improvement initiatives</li></ul><p> </p><p><br></p><p><br></p>
<p><strong>Network Security Administrator</strong></p><p><strong>Position Summary</strong></p><p>The Network Security Administrator is responsible for protecting the organization’s network infrastructure through proactive monitoring, configuration, and management of next‑generation firewalls and related security technologies. This role focuses heavily on <strong>NGFW </strong>Next-Generation Firewalls, ensuring secure and reliable connectivity across enterprise environments. The specialist will be a key contributor to incident response, threat mitigation, and continuous improvement of security controls.</p><p><br></p><p><br></p><p><br></p><p><strong>Key Responsibilities</strong></p><p><strong>Firewall & Network Security Administration</strong></p><ul><li>Configure, manage, and maintain <strong>Next‑Generation Firewalls (NGFW)</strong>, including policies, objects, NAT rules, App‑ID, User‑ID, threat prevention profiles, and Remote access VPN, ACL’s, IDS/IPS policies.</li><li>Perform regular firewall rule reviews, cleanup, and optimization to improve performance and reduce risk.</li></ul><p><strong>Security Operations & Monitoring</strong></p><ul><li>Monitor network security alerts, traffic anomalies, and firewall logs using vendor specific tools, SIEM platforms, and packet capture utilities.</li><li>Investigate and remediate network‑based security incidents, coordinating with SOC or incident response teams as necessary.</li><li>Perform security event correlation and escalation following established SOPs.</li></ul><p><strong>Network Infrastructure Support</strong></p><ul><li>Support secure network connectivity across data centers, branch sites, cloud environments, and remote access solutions.</li><li>Troubleshoot layer 2/3 issues related to routing, switching, VPN tunnels, and connectivity impacts to security appliances.</li><li>Assist in deploying secure architectures for new network builds, migrations, and cloud integrations.</li></ul><p><br></p>
<p><strong>Network Security Administrator</strong></p><p><strong>Position Summary</strong></p><p>The Network Security Administrator is responsible for protecting the organization’s network infrastructure through proactive monitoring, configuration, and management of next‑generation firewalls and related security technologies. This role focuses heavily on <strong>NGFW </strong>Next-Generation Firewalls, ensuring secure and reliable connectivity across enterprise environments. The specialist will be a key contributor to incident response, threat mitigation, and continuous improvement of security controls.</p><p><br></p><p><br></p><p><br></p><p><strong>Key Responsibilities</strong></p><p><strong>Firewall & Network Security Administration</strong></p><ul><li>Configure, manage, and maintain <strong>Next‑Generation Firewalls (NGFW)</strong>, including policies, objects, NAT rules, App‑ID, User‑ID, threat prevention profiles, and Remote access VPN, ACL’s, IDS/IPS policies.</li><li>Perform regular firewall rule reviews, cleanup, and optimization to improve performance and reduce risk.</li></ul><p><strong>Security Operations & Monitoring</strong></p><ul><li>Monitor network security alerts, traffic anomalies, and firewall logs using vendor specific tools, SIEM platforms, and packet capture utilities.</li><li>Investigate and remediate network‑based security incidents, coordinating with SOC or incident response teams as necessary.</li><li>Perform security event correlation and escalation following established SOPs.</li></ul><p><strong>Network Infrastructure Support</strong></p><ul><li>Support secure network connectivity across data centers, branch sites, cloud environments, and remote access solutions.</li><li>Troubleshoot layer 2/3 issues related to routing, switching, VPN tunnels, and connectivity impacts to security appliances.</li><li>Assist in deploying secure architectures for new network builds, migrations, and cloud integrations.</li></ul><p><br></p>
We are looking for an experienced Cyber Security Engineer to join our team on a long-term contract basis. In this hybrid role, based in Chicago, Illinois, you will play a crucial part in safeguarding our systems and network infrastructure against potential threats. This position involves leading incident response activities, mentoring team members, and working with cutting-edge security tools and technologies.<br><br>Responsibilities:<br>• Lead and manage incident response efforts, including investigations of malware and other security threats.<br>• Oversee configuration and management of firewall technologies such as Checkpoint and Cisco ASA.<br>• Utilize expertise in Azure environments to implement and maintain robust security measures.<br>• Collaborate with team members to mentor and enhance their technical capabilities.<br>• Write and analyze scripts in Python and PowerShell to support security operations.<br>• Ensure compliance with security protocols and maintain configuration management processes.<br>• Monitor and respond to potential vulnerabilities across the network.<br>• Provide strategic recommendations for enhancing cyber defense systems.<br>• Work onsite two days per week to support team operations and security initiatives.<br>• Incorporate security clearance requirements into operational activities.
<p><strong>Tenable Subject Matter Expert (SME)</strong></p><p><strong>Description</strong></p><p>We are seeking a Tenable Subject Matter Expert (SME) to lead and mature our enterprise vulnerability management capabilities. This role will serve as the primary technical authority for all Tenable platforms and will focus on optimizing scan configurations, improving asset organization, automating processes, and elevating the accuracy and efficiency of vulnerability data across the environment.</p><p>The ideal candidate brings deep technical expertise, strong analytical skills, and a process-driven mindset with the ability to translate complex scan data into actionable insights for stakeholders.</p><p><strong>Key Responsibilities</strong></p><ul><li>Act as the technical lead and subject matter expert for Tenable.sc and Tenable.io.</li><li>Review and optimize existing scan profiles, policies, schedules, and templates to reduce redundancy and increase consistency.</li><li>Oversee cleanup, standardization, and governance of asset tags, repositories, and organizational structures.</li><li>Evaluate current scanning coverage and performance; recommend improvements to enhance accuracy, efficiency, and scalability.</li><li>Design and implement optimized scanning strategies aligned with business and operational requirements.</li><li>Build and maintain automation and integrations using the Tenable API for reporting, data ingestion, enrichment, and workflow integration.</li><li>Collaborate with infrastructure, application, and endpoint teams to ensure authenticated, high‑quality, minimally disruptive scanning.</li><li>Create and maintain technical documentation, standards, and best practices for Tenable configuration and operations.</li><li>Support vulnerability management teams by improving data quality, consistency, and usability of findings.</li><li>Troubleshoot scan failures, credential issues, and performance bottlenecks.</li><li>Provide guidance on platform upgrades, new features, and product roadmap adoption.</li></ul><p><strong>Key Competencies</strong></p><ul><li>Tenable Platform Optimization & Governance</li><li>Automation & API Integration</li><li>Process Improvement & Standardization</li><li>Cross‑Team Collaboration</li><li>Technical Documentation</li><li>Vulnerability & Risk Analysis</li></ul><p><strong>What Success Looks Like</strong></p><ul><li>A standardized, well‑governed Tenable environment.</li><li>Reduced scan redundancy and improved scan performance.</li><li>Clean, consistent asset tagging and reporting structures.</li><li>Increased automation and reduced manual effort.</li><li>Higher stakeholder confidence in vulnerability data and reporting.</li></ul>
We are looking for a skilled AWS Security Analyst to join our team on a long-term contract basis in Columbus, Ohio. In this role, you will focus on strengthening our cybersecurity posture by implementing controls, ensuring compliance, and addressing security vulnerabilities in a dynamic and collaborative environment. This position offers the opportunity to work closely with engineering teams, auditors, and cloud operations to support security initiatives across global teams.<br><br>Responsibilities:<br>• Lead readiness, implementation, and ongoing audit activities for SOC 2 Type II compliance across multiple operational areas.<br>• Collaborate with auditors, engineering teams, and cloud operations to implement security controls and resolve compliance gaps.<br>• Apply cybersecurity and cloud control frameworks to enhance organizational security measures.<br>• Validate compliance within SaaS-based infrastructure, troubleshoot security challenges, and confirm the effectiveness of controls.<br>• Conduct application security tasks such as vulnerability scanning, basic penetration testing, and remediation validation.<br>• Analyze security issues identified during audits or scans and work with developers to implement resolutions.<br>• Develop proof-of-concept solutions to verify security approaches and address vulnerabilities.<br>• Participate actively in agile workflows and contribute to security workstreams across global teams.<br>• Utilize compliance tools such as Vanta and productivity platforms like Jira, Confluence, Slack, and Teams to manage security operations.
We are looking for a skilled Physical Security Specialist to join our team in Houston, Texas. This role involves safeguarding sensitive information and implementing advanced security measures to ensure the protection of physical and digital assets. The ideal candidate will have expertise in managing security systems like Kantech and AiPhone while maintaining compliance with cybersecurity protocols.<br><br>Responsibilities:<br>• Oversee the installation, maintenance, and operation of Kantech and AiPhone security systems.<br>• Develop and implement physical and digital security protocols to safeguard sensitive information.<br>• Monitor security systems and respond promptly to any breaches or irregularities.<br>• Conduct regular audits to ensure compliance with data privacy and cybersecurity standards.<br>• Collaborate with team members to enhance cyber governance and strengthen security policies.<br>• Manage database security to protect critical computer files and sensitive information.<br>• Provide training and guidance to staff on security best practices and protocols.<br>• Evaluate potential risks and recommend effective solutions to mitigate vulnerabilities.<br>• Maintain detailed documentation of security procedures and incident reports.<br>• Partner with IT teams to align physical security measures with broader cybersecurity strategies.
<p>Position Overview</p><p>We are seeking a Mid-Level Cyber Security Engineer to provide expert cyber domain guidance across compliance, vulnerability assessment, cyber defense, and incident response activities. This position supports a highly technical environment requiring hands‑on security engineering, risk assessment, and continuous monitoring across systems with varying classification levels. The ideal candidate brings strong technical depth, excellent communication skills, and the ability to lead or guide other technical staff in cyber‑related initiatives.</p><p><br></p><p>This role is 100% onsite in Washington, DC and requires the ability to obtain a Public Trust clearance.</p><p><br></p><p>Key Responsibilities</p><p>Cyber Security Engineering & Analysis</p><ul><li>Conduct and review complex cybersecurity assessments</li><li>Identify system vulnerabilities and areas of non‑compliance with cybersecurity standards</li><li>Recommend mitigation strategies and risk‑reduction approaches</li><li>Perform research, evaluation, and development in advanced cybersecurity areas</li></ul><p>Security Operations & Monitoring</p><ul><li>Perform and maintain vulnerability scans, generating clear reports for leadership</li><li>Track and report Information Assurance Vulnerability Management (IAVM) compliance</li><li>Support incident response teams with domain-specific expertise</li><li>Maintain a library of security audit tools and related testing processes</li></ul><p>Risk Management & Compliance</p><ul><li>Review and update Authorization to Operate (ATO) documentation</li><li>Manage and report Plan of Action & Milestones (POA& M) compliance</li><li>Review Certification & Accreditation (C& A) documentation for compliance and completeness</li><li>Ensure systems adhere to agency standards, regulatory frameworks, and RMF requirements</li></ul><p>Technical Leadership & Collaboration</p><ul><li>Provide cybersecurity guidance to penetration testers, analysts, incident handlers, and support teams</li><li>Lead or support integration of cyber requirements into IT and communication systems</li><li>Assist with managing networks and systems across multiple classification environments</li><li>Coordinate with cross‑functional engineering teams and mentor technical staff</li></ul><p><br></p>
<p>Position Overview</p><p>We are seeking a Cyber Security Engineer to provide hands‑on cyber expertise across compliance, vulnerability management, incident response, and secure systems engineering. The role supports complex networks and systems (including multi‑classification environments), integrates cybersecurity into IT/communications platforms, and guides cross‑functional technical teams. This position is 100% onsite in Washington, DC and requires eligibility for a Public Trust.</p><p><br></p><p>Key Responsibilities</p><p>Cyber Engineering & Analysis</p><ul><li>Conduct and review technical cybersecurity assessments.</li><li>Identify vulnerabilities and non‑compliance with cybersecurity standards; recommend mitigations.</li><li>Perform research, design evaluation, technical development, and system integration planning.</li></ul><p>Security Operations & Monitoring</p><ul><li>Perform and maintain vulnerability scans; produce clear reports and metrics.</li><li>Track and report IAVM (Information Assurance Vulnerability Management) compliance.</li><li>Maintain a curated library of security audit tools and procedures for testing, internal audits, incident response, and diagnosis.</li></ul><p>Risk Management & Authorization</p><ul><li>Maintain Authorization to Operate (ATO) records and supporting artifacts.</li><li>Manage and report POA& M (Plan of Action & Milestones) compliance.</li><li>Review C& A (Certification & Accreditation) documentation for completeness and compliance.</li></ul><p>Architecture, Integration & Leadership</p><ul><li>Integrate cybersecurity requirements with IT and communications systems.</li><li>Guide/coordinate activities of penetration testers, incident handlers, cyber analysts, and product support teams.</li><li>Lead or contribute to complex cyber, engineering, and architecture tasks; mentor technical staff as needed.</li></ul>
We are looking for an experienced Cloud Security Engineer to join our team in Philadelphia, Pennsylvania. In this role, you will play a pivotal part in safeguarding cloud environments and ensuring compliance with industry security standards. This is a contract-to-permanent position within the healthcare sector, offering the opportunity to make a meaningful impact while developing your expertise.<br><br>Responsibilities:<br>• Design and implement cloud security solutions across multiple platforms, including Microsoft Azure and AWS.<br>• Monitor, analyze, and respond to security incidents using tools such as Splunk, Azure Sentinel, and Arcsight SIEM.<br>• Collaborate with cross-functional teams to integrate security measures within cloud applications.<br>• Evaluate and maintain compliance with security standards and regulatory requirements.<br>• Develop and optimize DevSecOps practices to enhance system security.<br>• Manage identity and access protocols using Microsoft Entra ID.<br>• Perform regular security assessments and provide recommendations for improvements.<br>• Troubleshoot and resolve security-related issues in UNIX and Microsoft environments.<br>• Support the deployment and configuration of Lawson systems within secure frameworks.<br>• Stay informed about emerging security threats and implement proactive solutions.
We are looking for an experienced Cloud Security Engineer to join our team in New York, New York. In this role, you will play a critical part in safeguarding cloud-based infrastructure by deploying, managing, and maintaining security tools and solutions. You will proactively monitor systems for threats, respond to incidents, and collaborate with stakeholders to enhance the overall security posture of cloud environments.<br><br>Responsibilities:<br>• Install, configure, and maintain advanced security solutions to protect cloud-based systems and networks.<br>• Monitor infrastructure to detect and respond to unusual activities, intrusions, or security breaches.<br>• Conduct thorough investigations of security alerts and incidents, ensuring timely and effective resolutions.<br>• Perform risk assessments and vulnerability scans, recommending strategies to mitigate potential threats.<br>• Collaborate with teams to implement and manage security tools tailored to cloud environments.<br>• Develop and enforce policies, procedures, and guidelines to ensure compliance with security standards.<br>• Stay updated on emerging threats and vulnerabilities, adapting security measures as needed.<br>• Create detailed reports and documentation on incidents, findings, and recommendations for stakeholders.<br>• Conduct audits and reviews of cloud infrastructure to identify and address security gaps.<br>• Support compliance initiatives and ensure adherence to industry regulations and standards.
