154 jobs found

Our client, a major bank in New York City, is looking for Director of Compliance Technology Modernization. Permanent position with competitive compensation package (base range is 200-230K), excellent benefits, and target bonus. Must be 2 days per week in New York City Office. Director of Compliance Technology Modernization Job Description: As the Director of Compliance Technology Modernization, you will be at the helm of a transformative journey-redefining how compliance is architected, delivered, and scaled across a global enterprise. This role is a rare opportunity to lead the modernization of mission-critical compliance screening platforms, transitioning legacy systems into agile, cloud-native solutions that are resilient, scalable, and future-ready. You will be responsible for designing and executing a comprehensive technology strategy that not only meets today's regulatory requirements but anticipates tomorrow's challenges. You'll work at the intersection of technology, risk, and regulation-collaborating with senior leaders across Legal, Risk, Compliance, and IT to ensure that our systems are not only compliant but also intelligent, integrated, and optimized for performance. From architecting cloud transformations and managing complex integrations to building high-performing teams and driving innovation, your leadership will directly impact how we protect the integrity of our financial systems. This is a high-visibility, high-impact role for a strategic thinker and hands-on leader who thrives in complex environments and is passionate about using technology to solve real-world problems. If you're ready to lead change at scale and shape the future of compliance in financial services, we want to hear from you. Responsibilities - Lead modernization of compliance screening technology platforms like Prime Compliance Manager, FIRCO, and related systems - Architect and execute cloud transformation with complete system architecture - Coordinate integration activities across multiple partner applications and systems - Develop modernization roadmaps ensuring regulatory compliance continuity - Collaborate with Legal, Risk, Compliance, and IT teams on platform requirements - Manage vendor relationships and technology partnerships - Build and lead high-performing compliance technology teams - Address existing skills gaps in specialized screening platforms Required Qualifications: - 10+ years' experience in compliance screening technology - Big plus if candidates have expertise in platforms such as Prime Compliance Manager, FIRCO, and other industry-standard screening solutions - 5+ years director-level leadership experience - Proven track record leading large-scale platform modernizations and cloud migrations - Azure cloud platform experience required - Experience with data platforms: DataBricks and Snowflake preferred - Deep understanding of financial services compliance requirements (AML, sanctions screening, KYC) - Strong project management and program delivery capabilities - Experience in hybrid deployment environments - Excellent communication and stakeholder management skills Preferred Qualifications - Advanced degree in Computer Science, Engineering, or related field - Cloud architecture certifications (Azure preferred) - Experience with compliance screening technologies and regulatory reporting systems - Background in system integration and API management Please email your resume or use this link to apply directly: Or email: Check ALL our Jobs:

The pay range is $163,000.00 - $294,000.00 Pay is based on several factors which vary based on position. These include labor markets and in some instances may include education, work experience and certifications. In addition to your pay, Target cares about and invests in you as a team member, so that you can take care of yourself and your family. Target offers eligible team members and their dependents comprehensive health benefits and programs, which may include medical, vision, dental, life insurance and more, to help you and your family take care of your whole selves. Other benefits for eligible team members include 401(k), employee discount, short term disability, long term disability, paid sick leave, paid national holidays, and paid vacation. Find competitive benefits from financial and education to well-being and beyond at . About Us Target is an iconic brand, a Fortune 50 company, and one of America's leading retailers. Target as a tech company? Absolutely. We're the behind-the-scenes powerhouse that fuels Target's passion and commitment to cutting-edge innovation. We anchor every facet of one of the world's best-loved retailers with a strong technology framework that relies on the latest tools and technologies-and the brightest people-to deliver incredible value to guests online and in stores. Target Technology Services is on a mission to offer the systems, tools and support that guests and team members need and deserve. We drive industry-leading technologies in support of every angle of the business, and help ensure that Target operates smoothly, securely and reliably from the inside out. Our high-performing teams balance independence with collaboration, and we pride ourselves on being versatile, agile and creative. Use your skills, experience, and talents as a member of a world-class cyber security team! About the Role As the Director of Cybersecurity - Data Protection & Insider Threat, you will lead and shape the strategy for Target's Data Protection and Insider Threat programs. This role is accountable for overseeing the teams responsible for building and enforcing the controls, processes, and policies that safeguard Target's sensitive data, as well as detecting, investigating, and responding to data loss and insider threats. You will: Enhance and evolve data protection capabilities to prevent data loss, misuse, or unauthorized exposure. Lead the Insider Threat function, including detection, response, and prevention of malicious insider activity. Help build and enforce enterprise-wide policies around data governance and security controls. Partner with stakeholders across business and technology functions to strengthen insider threat posture and align data protection practices with organizational priorities. Provide vision and strategic direction for Insider Threat and Data Protection analysts, ensuring successful execution of security programs that address enterprise risks. Foster a culture of continuous improvement, innovation, and collaboration. Serve as a trusted advisor to business and technology leaders on insider threat risks and data protection practices. Responsibilities Develop and execute long-term strategy for Insider Threat and Data Protection programs. Establish robust monitoring, detection, and response capabilities using SIEM, SOAR, UEBA, RBA, and DLP technologies. Lead the creation and enforcement of policies for data management, handling, and protection. Identify and address enterprise-wide risks related to insider threats and data exposure. Build strong stakeholder relationships across the enterprise and influence product and technology roadmaps to enhance security posture. Drive cross-functional initiatives and collaborate with other cybersecurity, engineering, and business teams. Provide coaching, performance management, and career development for a team of analysts. Effectively communicate technical issues, risks, and strategies to both technical and non-technical audiences, including senior leadership. Stay current on emerging threats, technologies, and best practices to continuously enhance program capabilities. About You 4+ years of cybersecurity experience, with demonstrated expertise in insider threat, data protection, or related security domains. Proven leadership experience managing cybersecurity teams or functions. Hands-on knowledge of SIEM, SOAR, UEBA, RBA, and DLP tools. Strong problem-solving skills with ability to resolve complex technical issues with minimal assistance. Demonstrated ability to build strong cross-functional partnerships and influence enterprise strategy. Adept at communicating technical issues in training, mentorship, and executive settings. Committed to process improvement and continuous innovation. Strong written and verbal communication skills, with ability to present complex security concepts clearly to varied audiences. Deep understanding of insider threat landscape and modern data protection practices. Self-directed learner who stays current with evolving cybersecurity trends and threats. This position will operate as a Hybrid/Flex for Your Day work arrangement based on Target's needs. A Hybrid/Flex for Your Day work arrangement means the team member's core role will need to be performed both onsite at the Target HQ MN location the role is assigned to and virtually, depending upon what your role, team and tasks require for that day. Work duties cannot be performed outside of the country of the primary work location, unless otherwise prescribed by Target. Click here if you are curious to learn more about Minnesota. Benefits Eligibility Please paste this url into your preferred browser to learn about benefits eligibility for this role: Americans with Disabilities Act (ADA) In compliance with state and federal laws, Target will make reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please reach out to . Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed through this channel.

Job Description As a strategic leader in the Indirect Tax function, this role drives enterprise-wide policy development and related tax strategy, and well as providing thought leadership across the support disciplines to ensure compliance, efficiency, and innovation in indirect tax operations and reporting. Job Responsibilities ? Partner with senior business leaders, related finance, treasury, legal, audit, and external advisors to provide strategic guidance on complex indirect tax matters, ensuring alignment with enterprise-wide objectives and global regulatory frameworks. ? Lead the development and implementation of indirect tax policies and governance frameworks that span across business units and geographies, mitigating risk and promoting consistency in tax treatment and reporting. ? Serve as the primary relationship manager for outsourced sales tax filing operations, driving continuous improvement through global best practices, automation, and performance metrics. ? Oversee multi-jurisdictional sales and use tax audits, ensuring timely resolution of issues, effective negotiation with tax authorities, and strategic coordination with external advisors. Provide executive-level summaries and risk assessments to senior leadership. ? Support the Vice President in ensuring full compliance with SOX requirements related to indirect tax, including documentation, testing, and control enhancements. ? Support tax reviews for Mergers & Acquisition targets, to ensure compliance and reporting are met by selling entities, and well as work to integrate new businesses into the Aramark reporting process. ? Co-manage the ACS450 indirect tax reserves, ensuring accurate documentation, financial integrity, and alignment with broader corporate accounting policies. ? Lead and mentor a high-performing team of indirect tax professionals, fostering a culture of excellence, collaboration, and continuous learning across disciplines and geographies. ? Inspire cross-functional collaboration with operations, IT, and business units to drive innovation in tax technology, data analytics, and process transformation. ? Provide expert guidance and resolution support to field teams on client and governmental sales tax matters, ensuring timely and effective communication and problem-solving. ? Champion the development of enterprise-wide indirect tax strategies, processes, and policies that proactively address emerging risks, regulatory changes, and global business needs. Qualifications ? Bachlor's degree plus 10+ years of experience in a sales tax role required. ? Ability to lead projects, including working with internal departments and outside advisors. ? Ability to manage, negotiate, and resolve audit issues. ? Possess excellent organization and problem-solving skills and the ability to independently prioritize multiple tasks bringing projects to completion. ? Leadership qualities to supervise projects, as well as support other departments in the organization. ? Proven ability to make strong judgment decisions and work with a high level of integrity. ? Self-starter with superb attention to detail yet possesses an understanding of the "big picture? ? Strong communication skills both written and verbal. ? Strong understanding of various systems or keen ability to quickly learn new systems in order to obtain required audit data. Creative and flexible attitude and style to adapt to new situations in a rapidly changing, dynamic environment Benefits Aramark offers comprehensive benefit programs and services for eligible employees including medical, dental, vision, and work/life resources. Additional benefits may include retirement savings plans like 401(k) and paid days off such as parental leave and disability coverage. Benefits vary by location and are subject to any legal requirements or limitations, employee eligibility status, and where the employee lives and/or works. For more information about Aramark benefits, click here Aramark Careers - Benefits & Compensation There is no predetermined application window for this position, the position will close once a qualified candidate is selected. Qualified applicants with arrest or conviction records will be considered for employment in accordance with all applicable laws, including, but not limited to all applicable Fair Chance Ordinances and Acts. For jobs in San Francisco, this includes the San Francisco Fair Chance Ordinance. Generous PTO, Vacation and 9 paid holidays Volunteer days, community partnerships, Employee Assistance Program Employee discounts on select services and products Your choice of three medical plan tiers, two carriers to choose from Adoption Assistance & Paid Parental Leave Tuition Funding Sources and Scholarship Programs Retirement plan (401K or SIRP for those eligible) with match on annual contributions About Aramark Our Mission Rooted in service and united by our purpose, we strive to do great things for each other, our partners, our communities, and our planet. At Aramark, we believe that every employee should enjoy equal employment opportunity and be free to participate in all aspects of the company. We do not discriminate on the basis of race, color, religion, national origin, age, sex, gender, pregnancy, disability, sexual orientation, gender identity, genetic information, military status, protected veteran status or other characteristics protected by applicable law. About Aramark The people of Aramark proudly serve millions of guests every day through food and facilities in 15 countries around the world. Rooted in service and united by our purpose, we strive to do great things for each other, our partners, our communities, and our planet. We believe a career should develop your talents, fuel your passions, and empower your professional growth. So, no matter what you're pursuing - a new challenge, a sense of belonging, or just a great place to work - our focus is helping you reach your full potential. Learn more about working here at or connect with us on Facebook , Instagram and Twitter .

Director of Innovative Programs (4801) Job 81039 - The Fung Institute About Berkeley At the University of California, Berkeley, we are dedicated to fostering a community where everyone feels welcome and can thrive. Our culture of openness, freedom and belonging make it a special place for students, faculty and staff. As a world-leading institution, Berkeley is known for its academic and research excellence, public mission, diverse student body, and commitment to equity and social justice. Since our founding in 1868, we have driven innovation, creating global intellectual, economic and social value. We are looking for applicants who reflect California's diversity and want to be part of an inclusive, equity-focused community that views education as a matter of social justice. Please consider whether your values align with our Guiding Values and Principles , Principles of Community , and Strategic Plan . At UC Berkeley, we believe that learning is a fundamental part of working, and provide space for supportive colleague communities via numerous employee resource groups (staff organizations). Our goal is for everyone on the Berkeley campus to feel supported and equipped to realize their full potential. We actively support this by providing all of our full-time staff employees with at least 80 hours (10 days) of paid time per year to engage in professional development activities. Find out more about how you can grow your career at UC Berkeley. Departmental Overview Coleman Fung Institute for Engineering Leadership, launched in January 2010, prepares engineers and scientists with the multidisciplinary skills to lead enterprises of all scales, in industry, government, and the nonprofit sector. The Fung Institute is headquartered in UC Berkeley's College of Engineering and includes the Master of Engineering Program, the undergraduate Fung Fellowship for Wellness and Technology Innovations, communications courses for PhDs and undergraduates, and bespoke career services and experiential learning services. This role will serve as the Director of Innovative Programs for the Fung Institute. The Director will plan, direct, administer, and ensure excellence in all programmatic and administrative matters related to existing and new programs and activities as assigned by Institute leadership (including but not limited to admissions; student experience and outcomes; faculty participation; curriculum; online student communities; and financial management). Application Review Date The First Review Date for this job is: 9/19/25 - Open until filled Responsibilities 45% Program Management: Directs and administers complex programs (degree and non-degree, within a variety of delivery models and audiences), with complete responsibility for administrative and programmatic activities. Oversees, plans, and implements all major aspects of program development and administration in partnership with the campus and external partners. Responsible for day-to-day program management and execution, including human resources and maximizing quality assurance/improvement. Makes executive-level recommendations about personnel actions in collaboration with Fung Institute and College of Engineering leadership, including recruitments and creation of new positions. Establishes degree and non-degree program-based policies and practices to optimize program coordination within the Institute and beyond, ensure consistency with University policies and procedures, and to meet the unique needs of the program and its constituents. Manages student admissions process, including facilitation of faculty admission committees, in collaboration with the Institute's Student Services/ Affairs and Admissions staff members. Oversees recruitment and marketing efforts in collaboration with campus and external partners. Engages with prospective and current students through presentations and events, including information sessions, yield, and orientation activities. Serves on committees representing the programs, participating in short and long-term planning with both internal and external stakeholders and partners. Conducts regular tracking and analysis of student enrollments, revenues. and expenditures for the current academic term and year, and provides regular analytical reports to the Institute and College leadership. As actual results are known for the current academic term and year, revise future enrollment, revenue, and expenditure projections, if needed. Program Assessment and Development: Directs decision-support data collection and analysis. Assesses program effectiveness to make changes to the program's content, policies, and procedures accordingly, including but not limited to tuition, gifts and endowments, new philanthropy, corporate support, and executive education. Related duties as assigned. 30% Curriculum Development and Instructional Management: Create and manage the process for developing new courses in collaboration with campus and external partners. Works closely with the Institute's Academic Working Group to facilitate curriculum planning. Identifies faculty or lecturers to prepare and deliver courses. Identifies viable and cost-effective curriculum delivery, across various delivery models. Oversees and ensures completion of all aspects of curriculum approval, implementation, and periodic curriculum and program refreshments. Manages quality assurance checks during course delivery, including TAs/GSIs and other teaching staff, and grading. Onboards new course instructors and teaching team members, and enforces completion of their required training. Collaborates with faculty and industry to define capstone projects. Related duties as assigned. 20% Special Projects as assigned 5% Professional Development Required Qualifications Advanced knowledge of University rules and regulations, processes, protocols, and procedures for areas such as graduate-level degree administration, online education, budget, accounting, and fund management, and/ or personnel management. Advanced interpersonal skills and ability to work with dynamic and diverse groups of faculty, staff, students, and external partners to achieve results. Advanced multicultural competencies; Demonstrated ability to work with diverse populations. Excellent skills in verbal and written communication, active listening, critical thinking, persuasiveness, advising, and counseling. Advanced knowledge of administrative operational activities (e.g., event planning, basic fundraising processes, risk management planning, website design, accounting and payroll, and contracts and grants regulations and guidelines. Strong customer service and problem-solver orientation. Demonstrated ability to be flexible and adaptable to change. Advanced skills in program assessment and tracking, and working to continuously improve services, processes, and systems. Advanced knowledge of common University-specific computer application programs. Ability to use discretion and maintain confidentiality. Advanced skills in short- and long-term strategic planning, analysis, problem-solving, and customer service. Advanced knowledge of financial analysis and reporting techniques, and/or human resources policies and procedures for staff and academic employees. Bachelor's degree in a related area and/or equivalent experience/training. Salary & Benefits For information on the comprehensive benefits package offered by the University, please visit the University of California's Compensation & Benefits website. Under California law, the University of California, Berkeley is required to provide a reasonable estimate of the compensation range for this role and should not offer a salary outside of the range posted in this job announcement. This range takes into account the wide range of factors that are considered in making compensation decisions including but not limited to experience, skills, knowledge, abilities, education, licensure and certifications, analysis of internal equity, and other business and organizational needs. It is not typical for an individual to be offered a salary at or near the top of the range for a position. Salary offers are determined based on final candidate qualifications and experience. The budgeted salary or hourly range that the University reasonably expects to pay for this position is $105,000 - $125,000. Conviction History Background This is a designated position requiring fingerprinting and a background check due to the nature of the job responsibilities. Berkeley does hire people with conviction histories and reviews information received in the context of the job responsibilities. The University reserves the right to make employment contingent upon successful completion of the background check. Misconduct Disclosure As a condition of employment, the final candidate who accepts a conditional offer of employment will be required to disclose if they have been subject to any final administrative or judicial decisions within the last seven years determining that they committed any misconduct; received notice of any allegations or are currently the subject of any administrative or disciplinary proceedings involving misconduct; have left a position after receiving notice of allegations or while under investigation in an administrative or disciplinary proceeding involving misconduct; or have filed an appeal of a finding of misconduct with a previous employer. . click apply for full job details

Cargill's size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way. We are a family company providing food, ingredients, agricultural solutions and industrial products that are vital for living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials - from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill. Job Purpose and Impact The Director of Cloud & Application Security - SaaS will help solidify foundation for the company's modern business applications. In this role, you will apply your knowledge of cybersecurity and cloud engineering practices to secure and operate Software as a Service used by our data and application teams to drive business value. You will also lead and coach a security team of engineers to deliver highly scalable security solutions using automation. Key Accountabilities Define and lead SaaS security standards aligned with business goals and risk mitigation Maintain long-term technology roadmap for security products and features to support growth of Company's SaaS usage. Lead the design and implementation of enterprise-grade security services to safeguard data within SaaS applications. Publish technical requirements and guidance to support the secure adoption of SaaS solutions across the organization Enable integration of SaaS applications with cloud security solutions to enhance visibility into user activity across cloud environments. Partner with technology teams and business stakeholders to embed security best practices into DevOps practices and AI Engineering team. Key contributor to the enterprise application security program, including long-term vision, technical direction, and execution Champion proactive, "shift-left" security culture by embedding security into the entire SDLC Lead, mentor, and grow a globally distributed team of application and cloud security engineers and specialists Deliver key risk indicators (KRIs) to measure security posture and effectiveness Define and implement scalable and modern AppSec practices that support cloud-native and AI-enabled application development Qualifications Bachelor's or master's degree in computer science, Information Systems, Cybersecurity, or a related field-or equivalent professional experience Minimum of 7 years of experience in the cybersecurity domain, with a strong track record of delivering enterprise scalable secure solutions Deep technical expertise in Application Security, Cloud and Data security best practices. Skilled in DevSecOps practices, automated security integration, and software development lifecycle Strong knowledge of modern cloud security architectures and tools, including Cloud Access Security Broker (CASB), SaaS Security Posture Management (SSPM). CNAPP. CIEM, CWPP, and CI/CD pipeline protection Experience with artificial intelligence, with a focus on machine learning and GenAl Preferred skills: Familiarity with ethical AI practices, and compliance frameworks Experience automating tests for LLM evaluation scenarios within CI/CD workflow Proven experience security engineering of AI/ML solutions in complex environments, including production-grade system Compensation Data The expected salary for this position is $150,000 - $200,000. Compensation varies depending on a wide array of factors including but not limited to the specific location, certifications, education, and level of experience. The disclosed range estimate may be adjusted for any applicable geographic differential associated with the location at which the position may be filled. This position is eligible for a discretionary incentive award. The incentive award amount is dependent upon company performance and your personal performance. At Cargill we put people first. As part of your overall rewards, we offer a comprehensive benefit program including medical and/or other benefits dependent on the position offered and hours worked. Visit: learn more (subject to certain collective bargaining agreements for Union positions). Minnesota Sick and Safe Leave accruals of one hour for every 30 worked, up to 48 hours per calendar year unless otherwise provided by law. Equal Opportunity Employer, including Disability/Vet.

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation

At Jerry's Enterprises, Inc. the Cybersecurity Analyst plays a crucial role in maintaining and ensuring the security of Jerry's Enterprises digital infrastructure by identifying vulnerabilities, implementing protective measures, and responding to potential cyber threats. The Cybersecurity Analyst partners closely with the infrastructure team to identify, implement, and maintain secure digital architecture, processes, controls, and safeguards. This role offers the opportunity to work on diverse cybersecurity initiatives, contribute to the development of innovative security strategies, and play a key role in protecting our organization from cyber threats. Reports To: Corporate Director of Cybersecurity Location: Corporate Office - Edina, MN (in-office work required ) This is not a remote position. Classification: Full Time, Exempt Rate of Pay: Commensurate based on experience Hours: Monday - Friday with occasional evening and weekend work required Jerry's work perks: Health / Vision / Dental InsurancePaid Time Off401K + matchStore Discount Hybrid work schedule, 2 days remote and 3 days in office Essential functions: Incident response: Participate in responding to a wide range of cybersecurity incidents.Security monitoring: Continuously monitor security alerts and events using SIEM and other security tools to identify potential threats. Continuously verify and enhance protections.Prevention and continuous improvement: Continually review, recommend improvements, and strive for operational excellence through tuning, and re-imagining of cybersecurity processes, tools, and architectures.Compliance assessments: Conduct assessments of systems, processes, and technologies.Log analysis: Perform detailed analysis of logs from various sources (e.g., EDR, firewalls, IDS/IPS, servers) to identify and investigate security incidents.Threat intelligence: Utilize threat intelligence feeds to stay informed about emerging threats.AI: Leverage AI for threat hunting, automation, scripting and to improve operational efficiency and overall cybersecurity effectiveness.Technical administration: Recommend, implement, configure, and maintain security products used to protect information assets both on-premises and in the cloud.Documentation: Document security incidents thoroughly, including steps taken and outcomes.Cyber services visibility: Create, maintain, and enhance key service indicators including cyber analytics, automations, communications, and standards.Security policy: Collaborate with internal and external teams to create policies needed to ensure robust security program measures are and aligned with industry best practice.Awareness and training: Create, manage, and deliver timely and relevant security awareness content to Jerry's team members.Requirements and architecture: Collaborate with infrastructure team to define and implement secure architectures. Capture and translate cybersecurity requirements into technical specifications and integrate them into infrastructure design and deployment processes.Security testing: Coordinate, support, document, and participate in penetration testing, tabletop exercises, and business continuity/disaster recovery activities. Third party compromise: Foster partnerships and procedures on third party compromise response activities to address and mitigate risks associated with external entities.Risk assessment: Provide technical support for a comprehensive risk management program. Conduct threat modeling and risk assessments. Qualifications: College degree in Cybersecurity, Information Technology, Computer Science, or related field or equivalent industry experience and certifications, with proficiency in cybersecurity.Two to four years of relevant experience in cybersecurity, network, or information technology environments.Strong knowledge of cybersecurity principles, threat detection, incident response, and cybersecurity controls.Demonstrated knowledge of a broad range of technical concepts, examples include: firewall rule configuration, network segmentation, network intrusion detection and response, security vulnerability scanning, threat hunting, log analysis, security frameworks and methods both cloud and on-prem.Ability to work on-site or in a hybrid capacity as needed.Participation in after-hours incident response.High degree of initiative, strong work ethic, creativity, motivation, and accountability.Strong analytical and organizational skills. Demonstrated ability to influence decisions by identifying risks and opportunities. Our ideal candidate: Knowledge of cyber-attack stages (e.g., MITRE ATT&CK Framework, tactics, techniques and procedures for conducting reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Experienced with EDR tools (e.g., CrowdStrike, SentinelOne, Microsoft Defender for Endpoint).Understands Microsoft Windows and Linux operating systems including Active Directory, Group Policy, system hardening, authentication protocols, privilege management.Familiar with SIEM/SOAR platforms, vulnerability scanners, and forensic tools.Knows scripting languages such as Python, PowerShell, or Bash. Experience with cloud security tools and practices in AWS, Azure, or GCP.Knowledge of AI and LLM concepts and ability to leverage IA toolsets.Knows compliance frameworks such as NIST, ISO 27001, PCI-DSS, or HIPAA.Certifications for: CompTIA Security+, CEH, CISSP, OSCP, Microsoft SC-200, or AWS/Azure Security certifications. Supervisory Responsibility This position has no supervisory responsibilities Work Environment This position operates in a professional office environment. Most work is performed in a temperature-controlled office environment. Position Type / Expected Hours of Work This is a full-time, exempt position. This position works Monday through Friday, and may occasionally require long hours and occasional weekend work as job duties demand. Eligible for hybrid work. Travel Travel is primarily local during the business day, although some out-of-area travel may be expected. Must be able to perform duties with or without reasonable accommodation