- Leidos (Odenton, MD)
- …security requirements to ensure compliance with industry regulations and standards like NIST , ISO, GDPR, and CMMC. + Threat analysis and incident response: Assist ... with incident response activities and provide subject matter expertise to assess and manage cyber threats. + Training and support: Conduct training sessions for staff and provide ongoing support, maintenance, and documentation for new security capabilities. +… more
- MUFG (Jersey City, NJ)
- …control design and compliant with regulatory mandates such as FFIEC, SOX, PCI-DSS, NIST CSF, CRI, and industry best practices (OWASP). The ideal candidate will ... proactively challenge architectural assumptions, interpret existing solution designs, and ensure that holistic, risk-informed controls are embedded across the application lifecycle. This role bridges the gap between information security risk governance and… more
- Saint Francis Health System (Tulsa, OK)
- …principles and practices. Knowledge of HIPPA, PCI, SOX, ISO, and NIST cybersecurity frameworks. Knowledge of intrusion detection and prevention systems, penetration ... testing, and vulnerability assessment. Knowledge of data loss prevention, anti-virus, and anti-malware software tools. Understanding of computer networking, TCP/IP, routing, switching, network protocols, and packet analysis tools. Excellent written, oral, and… more
- General Dynamics Information Technology (Fairfax, VA)
- …including HIPAA + Familiarity with CIS Benchmarks, DISA STIGs, and NIST 800-53 frameworks + Excellent communication skills for stakeholder engagement, audit ... interaction, and cross-functional collaboration + Ability to map security controls to FedRAMP requirements and translate them into technical implementations + Experience leading security architecture for enterprise cloud environments in regulated industries +… more
- Tyto Athene (Fort Belvoir, VA)
- …familiarity with managing systems in compliance with regulatory frameworks such as FISMA/ NIST , to include DoD cybersecurity mandates and guidance. The SOC Analyst ... will be on the front lines of cyber defense-monitoring, detecting, investigating and responding to threats in real time, working in a fast-paced, collaborative environment where insights, actions and the ability to solve complex problems have immediate impact.… more
- TekSynap (Washington, DC)
- …protection into cloud designs. - Ensure compliance with federal mandates (eg, FedRAMP, NIST 800-53, EO 14028, CNSSI 1253) and internal security policies. - Design ... secure landing zones using Azure and Policy. - Implement Azure governance models including management groups, role-based access control (RBAC), and tagging strategies. - Monitor and optimize cloud spend using Azure Cost Management and Azure Advisor. -… more
- Centene Corporation (New York, NY)
- …Governance:** + Apply metadata tagging and sensitivity labels aligned with HIPAA, NIST , and ISO 270013. + Support audit readiness and policy enforcement. ... **Operational Support:** + Ensure ongoing stability of server environments and assist with service request fulfillment. + Document standard operating procedures and support release testing. + Performs other duties as assigned. + Complies with all policies and… more
- Guidehouse (Rockville, MD)
- …compliance with federal regulations and standards including FMFIA, FISMA, FISCAM, NIST SP 800-53, and agency-specific security and risk frameworks. + Coordinate ... the preparation and submission of assurance statements, control deficiency logs (CDLs), corrective action plans (CAPs), and supporting narratives to agency leadership and oversight entities. + Provide leadership and guidance to cross-functional teams,… more
- Truist (Charlotte, NC)
- …including governance, scalability, compliance frameworks (eg, SOC 2, PCI, NIST ), and regulated workloads. + Familiarity with zero-trust security patterns, ... mutual TLS (mTLS), service mesh (eg, Istio or Linkerd), and container vulnerability scanning tools. + 6+ years of experience in software engineering, with a strong track record of enterprise-scale service delivery in production environments. + Expert-level… more
- Citizens (Johnston, RI)
- …analysts. + Review and refine cyber defense training curriculum based on the NIST /NICE framework. + Assist in evaluating security toolsets used by SOC analysts. + ... Collaborate with Cyber Defense Management to identify training needs and skill gaps. + Conduct ticket analysis quality assurance reviews and provide feedback. + Perform ongoing monitoring and threat analysis using logs, net flow data, and packet capture. +… more