The IT Security Senior Manager is a leader of the OSI's information security function that ensures consistent and high-quality information security management in support of the OSI's goals. This resource is expected to be fully aware of the OSI Group's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. • Manages the information security team, consisting of direct reports. This includes hiring training, staff development, performance management and annual performance reviews. • Lead day-to-day information security operations of OSI's security solutions to drive the identification, investigation, and resolution of security breaches detected by those systems. • Oversee information security operations, including monitoring and analyzing security alerts and logs, managing security tools and technologies, and implementing security controls. • Lead and monitors the initiation, progress and completion of core information security projects and initiatives in alignment with the OSI Information Security Program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy, and recovery of information assets owned, controlled, or/and processed by OSI. • Develops and enhances an up-to-date information security management framework based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework. • Ensures that security is embedded in the OSI project delivery process by providing the appropriate information security policies, practices, and guidelines. • Manages and contains information security incidents and events to protect OSI's IT assets, intellectual property, regulated data, and OSI's reputation. • Conduct third-party risk assessments to evaluate the security posture of vendors and partners and mitigate potential risks. EEvaluate new software and technology solutions for security vulnerabilities and risks, and make recommendations for mitigation. • Coordinates incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provides direction, support, and in-house consulting in these areas. • Monitors the external threat environment for emerging threats and advises relevant stakeholders on the appropriate courses of action. • Builds and nurtures internal and external networks consisting of industry peers, ecosystem partners, vendors, and other relevant parties to address common trends, findings, incidents, and cybersecurity risks. Strategy & Planning • Actively participation in the planning and design of enterprise security architecture, under the direction of the Chief Information Security Officer, where appropriate. • Oversee the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Chief Information Security Officer, where appropriate. • Lead in the planning and design of business continuity plans and disaster recovery plans, under the direction of the Chief Information Security Officer, where appropriate. Acquisition & Deployment • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors. • Recommend and lead the implementation and management of additional security solutions or enhancements to existing security solutions to improve overall OSI Group enterprise security. • Oversee the deployment, integration, and configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the OSI Group's security documents specifically. Operational Management • Serve as an expert technical resource, to advise and assist in security issues, both proactively and reactively. • Oversee the creation, evaluation and implementation of policies and procedures; monitoring standards; and, incident investigation procedures to minimize security vulnerabilities and exposures. • Lead the maintenance of up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). • Ensure that the OSI Information Security team maintain operational configurations of all in-place security solutions as per the established baselines. • Oversee the monitoring processes of all in-place security solutions for efficient and appropriate operations. LLead the review of logs and reports of in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise and lead plans for appropriate mitigation and/or resolution. • Lead investigations, analysis and report on security events, incidents and intrusions; track incidents through analysis, diagnosis, correction and resolution. • Manage the design and execution of vulnerability assessments, penetration tests, and security audits. SSupervise the support processes for end users for all in-place and future security solutions. Required Skills • Five or more years of previous Information Security Management experience. • Extensive experience with network security, vulnerability assessments, access control and authorization, policy enforcement and compliance, application security, firewall management, incident response, data loss prevention, encryption, multi factor authentication, web filtering, and advanced threat protection. • Experience with incident, problem, change and configuration management processes. • Working technical knowledge of AV/AM solutions, MFA technologies, Mobile Device Management Security, NGFW configuration and management, IDS/IPS, SIEM and log correlation/analysis tools. • Strong understanding of information security best practices and/or standards (e.g. NIST, ISO, COBIT, ITIL, PCI, etc.), global/regional data privacy laws and regulations, governance, risk and compliance management. • Strong understanding of operating systems, networking (TCP/IP, OSI Model, wireless, routing and switching), applications/system management, data management and cloud based systems. • Familiarity with corporate and manufacturing environments and operational facilities/processes. • Bachelor's degree in Information Technology, Computer Science or related field. • Eight+ years of information security related work experience. • CISSP certification required. In addition, other security related certifications are a plus. • Work is generally performed within a business professional office environment, with standard office equipment available. • Work conditions are typical of an office environment. • This role does not require any domestic travel • Position may require the physical agility of lifting up to 15 pounds • Position may require frequent and/or infrequent of bending, squatting, pushing, pulling, stretching/reaching, use hands or fingers, talk, hear, feel objects, tools, controls and standing/walking on concrete flooring. • Position may require the physical ability to stand/walk for Less than 4 hours. OSI Industries is an Equal Employment Opportunity employer that believes everyone has the right to be treated with dignity and respect. OSI does not discriminate on the basis of national origin, gender, race, color, religion, pregnancy, gender identity, sexual orientation, protected veteran status, disability, or any other characteristic protected by applicable law. All applicants will receive consideration for employment based on merit, qualifications, and business needs. OSI participates in the E-Verify program. Required Experience
03/28/2024
Full time
The IT Security Senior Manager is a leader of the OSI's information security function that ensures consistent and high-quality information security management in support of the OSI's goals. This resource is expected to be fully aware of the OSI Group's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. • Manages the information security team, consisting of direct reports. This includes hiring training, staff development, performance management and annual performance reviews. • Lead day-to-day information security operations of OSI's security solutions to drive the identification, investigation, and resolution of security breaches detected by those systems. • Oversee information security operations, including monitoring and analyzing security alerts and logs, managing security tools and technologies, and implementing security controls. • Lead and monitors the initiation, progress and completion of core information security projects and initiatives in alignment with the OSI Information Security Program to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy, and recovery of information assets owned, controlled, or/and processed by OSI. • Develops and enhances an up-to-date information security management framework based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework. • Ensures that security is embedded in the OSI project delivery process by providing the appropriate information security policies, practices, and guidelines. • Manages and contains information security incidents and events to protect OSI's IT assets, intellectual property, regulated data, and OSI's reputation. • Conduct third-party risk assessments to evaluate the security posture of vendors and partners and mitigate potential risks. EEvaluate new software and technology solutions for security vulnerabilities and risks, and make recommendations for mitigation. • Coordinates incident response plans and procedures to ensure that business-critical services are recovered in the event of a security event; provides direction, support, and in-house consulting in these areas. • Monitors the external threat environment for emerging threats and advises relevant stakeholders on the appropriate courses of action. • Builds and nurtures internal and external networks consisting of industry peers, ecosystem partners, vendors, and other relevant parties to address common trends, findings, incidents, and cybersecurity risks. Strategy & Planning • Actively participation in the planning and design of enterprise security architecture, under the direction of the Chief Information Security Officer, where appropriate. • Oversee the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Chief Information Security Officer, where appropriate. • Lead in the planning and design of business continuity plans and disaster recovery plans, under the direction of the Chief Information Security Officer, where appropriate. Acquisition & Deployment • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors. • Recommend and lead the implementation and management of additional security solutions or enhancements to existing security solutions to improve overall OSI Group enterprise security. • Oversee the deployment, integration, and configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the OSI Group's security documents specifically. Operational Management • Serve as an expert technical resource, to advise and assist in security issues, both proactively and reactively. • Oversee the creation, evaluation and implementation of policies and procedures; monitoring standards; and, incident investigation procedures to minimize security vulnerabilities and exposures. • Lead the maintenance of up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). • Ensure that the OSI Information Security team maintain operational configurations of all in-place security solutions as per the established baselines. • Oversee the monitoring processes of all in-place security solutions for efficient and appropriate operations. LLead the review of logs and reports of in-place devices, whether they be under direct control (i.e. security tools) or not (e.g. workstations, servers, network devices). Interpret the implications of that activity and devise and lead plans for appropriate mitigation and/or resolution. • Lead investigations, analysis and report on security events, incidents and intrusions; track incidents through analysis, diagnosis, correction and resolution. • Manage the design and execution of vulnerability assessments, penetration tests, and security audits. SSupervise the support processes for end users for all in-place and future security solutions. Required Skills • Five or more years of previous Information Security Management experience. • Extensive experience with network security, vulnerability assessments, access control and authorization, policy enforcement and compliance, application security, firewall management, incident response, data loss prevention, encryption, multi factor authentication, web filtering, and advanced threat protection. • Experience with incident, problem, change and configuration management processes. • Working technical knowledge of AV/AM solutions, MFA technologies, Mobile Device Management Security, NGFW configuration and management, IDS/IPS, SIEM and log correlation/analysis tools. • Strong understanding of information security best practices and/or standards (e.g. NIST, ISO, COBIT, ITIL, PCI, etc.), global/regional data privacy laws and regulations, governance, risk and compliance management. • Strong understanding of operating systems, networking (TCP/IP, OSI Model, wireless, routing and switching), applications/system management, data management and cloud based systems. • Familiarity with corporate and manufacturing environments and operational facilities/processes. • Bachelor's degree in Information Technology, Computer Science or related field. • Eight+ years of information security related work experience. • CISSP certification required. In addition, other security related certifications are a plus. • Work is generally performed within a business professional office environment, with standard office equipment available. • Work conditions are typical of an office environment. • This role does not require any domestic travel • Position may require the physical agility of lifting up to 15 pounds • Position may require frequent and/or infrequent of bending, squatting, pushing, pulling, stretching/reaching, use hands or fingers, talk, hear, feel objects, tools, controls and standing/walking on concrete flooring. • Position may require the physical ability to stand/walk for Less than 4 hours. OSI Industries is an Equal Employment Opportunity employer that believes everyone has the right to be treated with dignity and respect. OSI does not discriminate on the basis of national origin, gender, race, color, religion, pregnancy, gender identity, sexual orientation, protected veteran status, disability, or any other characteristic protected by applicable law. All applicants will receive consideration for employment based on merit, qualifications, and business needs. OSI participates in the E-Verify program. Required Experience
Alpha Omega Integration LLC
Fairmont, West Virginia
Alpha Omega Integration LLC is an award-winning Federal IT Solutions provider. Since its inception in September 2016, we have grown from a start-up to a $100m/year business. Alpha Omega's growth stems from our mission focus: to make the US Government the best in the world. We achieve that via advanced capabilities in the areas of Design & Product Management, DevSecOps & Cloud Engineering, Intelligent Automation, and Cybersecurity. Our consistent growth has fostered a series of accolades including Inc. 5000 and Washington Technology's Fast 50 awards for five consecutive years, Virginia Business Best Places to Work ten years in a row, and Maryland Technology Council's 2022 Government Contract of the Year over $50 Million Dollars award, to name a few. We are seeking passionate federal IT professionals to join our team. Come support our nation's government agencies and make a difference! Why Us? We have H.E.A.R.T.! Alpha Omega's Core Values - (H) harmony, (E) engagement, (A) accountability, (R) resourcefulness, and (T) tenacity- collectively are an acrostic reminder of the values that guide the work we do. We foster a culture that recognizes and rewards hard work. Our H.E.A.R.T. program invites colleagues and managers from across the organization to recognize each other for living out our core values. Spotlighted employees enjoy a detailed nomination about their core-values-aligned actions which are then shared with their manager. Beyond peer-to-peer recognition, awarded employees also receive a $250 bonus in their paychecks. Each quarter, the H.E.A.R.T. award commitment will identify one exceptional employee to receive the $10,000 H.E.A.R.T. bonus. Ready to embark on a rewarding, challenging, and fulfilling career in the Federal IT Solutions space? Come grow with us! Job Title: Program Manager Work Location: Fairmont WV, Boulder, CO, or DC Metro Clearance Required: Public Trust, US Citizenship Required Job Summary: The Program Manager directs and manages personnel, plans, manages tasks, and directs resources to meet objectives. Two manager level resources report to the PM- a Security Operations Center Manager & an IT Operations Manager. Responsibilities includes: Receiving work requests from the Contracting Officer's Representative (COR) and/or Government Project Leads (GPL) Clarifying the scope of work requests with the Contracting Officer's Representative (COR) and/or Government Project Leads (GPL) Developing and maintaining of project plans to track each of the major initiatives with NCSC Program Estimating the resources and time required to complete the work Obtaining approval from the Contracting Officer's Representative (COR) to start work Allocating work to the contractor staff Identifying and resolving all project related technical and managerial issues Reporting on the progress of performed work and on the use of staff resources Reporting on any risk of not meeting deadlines and/or operational shortfalls of the services provided by the contractor Obtaining Contracting Officer's Representative (COR) sign off on deliverables Leverage Service Level Agreements (SLA) and Service Level Objectives (SLO) to ensure adequate service performance and availability Required Skills/Experience The Program Manager should possess and maintain one or more of the following certifications or equivalent industry certifications: PMI Program Management Professional (PgMP) PMI Project Management Professional (PMP) PMI Portfolio Management Professional (PfMP) PMI Agile Certified Practitioner (PMI-ACP) Projects in Controlled Environments - PRINCE2 Practitioner Scrum Alliance Certified Scrum Professional - ScrumMaster (CSP-SM) The Program Manager should possess and maintain one or more of the following technical certifications or equivalent industry certifications: Senior Contractor Personnel should possess and maintain one or more of the following certifications or equivalent industry certifications may be submitted if approved by the CO or COR. ISC2 Certified Information Systems Security Professional (CISSP) ISC2 Information Systems Security Architecture Professional (ISSAP) ISC2 Certified Cloud Security Professional (CCSP) ISACA Certified Information System Manager (CISM) ISACA Certified Information System Auditor (CISA) GIAC Security Leadership Certification (GSLC) EC-Council Certified Chief Information Security Officer (CCISO) Cisco Certified Architect (CCAr) Cisco Certified Design Expert (CCDE) Cisco Certified Internetwork Expert (CCIE) Security Axelos ITIL Master Axelos ITIL Strategic Leader (SL) Alpha Omega Integration, LLC (Alpha Omega) is committed to the development of a creative, diverse, and inclusive work environment. In accordance with the law and our organizational values, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, Veteran Status, or any other characteristic protected by law (referred to as "protected status)". Final hiring decisions at Alpha Omega will be based on merit, qualifications, and abilities. Black, Indigenous, and People of Color (BIPOC), LGBTQIA, women, people over 40, and differently-abled folks are strongly encouraged to apply.
03/28/2024
Full time
Alpha Omega Integration LLC is an award-winning Federal IT Solutions provider. Since its inception in September 2016, we have grown from a start-up to a $100m/year business. Alpha Omega's growth stems from our mission focus: to make the US Government the best in the world. We achieve that via advanced capabilities in the areas of Design & Product Management, DevSecOps & Cloud Engineering, Intelligent Automation, and Cybersecurity. Our consistent growth has fostered a series of accolades including Inc. 5000 and Washington Technology's Fast 50 awards for five consecutive years, Virginia Business Best Places to Work ten years in a row, and Maryland Technology Council's 2022 Government Contract of the Year over $50 Million Dollars award, to name a few. We are seeking passionate federal IT professionals to join our team. Come support our nation's government agencies and make a difference! Why Us? We have H.E.A.R.T.! Alpha Omega's Core Values - (H) harmony, (E) engagement, (A) accountability, (R) resourcefulness, and (T) tenacity- collectively are an acrostic reminder of the values that guide the work we do. We foster a culture that recognizes and rewards hard work. Our H.E.A.R.T. program invites colleagues and managers from across the organization to recognize each other for living out our core values. Spotlighted employees enjoy a detailed nomination about their core-values-aligned actions which are then shared with their manager. Beyond peer-to-peer recognition, awarded employees also receive a $250 bonus in their paychecks. Each quarter, the H.E.A.R.T. award commitment will identify one exceptional employee to receive the $10,000 H.E.A.R.T. bonus. Ready to embark on a rewarding, challenging, and fulfilling career in the Federal IT Solutions space? Come grow with us! Job Title: Program Manager Work Location: Fairmont WV, Boulder, CO, or DC Metro Clearance Required: Public Trust, US Citizenship Required Job Summary: The Program Manager directs and manages personnel, plans, manages tasks, and directs resources to meet objectives. Two manager level resources report to the PM- a Security Operations Center Manager & an IT Operations Manager. Responsibilities includes: Receiving work requests from the Contracting Officer's Representative (COR) and/or Government Project Leads (GPL) Clarifying the scope of work requests with the Contracting Officer's Representative (COR) and/or Government Project Leads (GPL) Developing and maintaining of project plans to track each of the major initiatives with NCSC Program Estimating the resources and time required to complete the work Obtaining approval from the Contracting Officer's Representative (COR) to start work Allocating work to the contractor staff Identifying and resolving all project related technical and managerial issues Reporting on the progress of performed work and on the use of staff resources Reporting on any risk of not meeting deadlines and/or operational shortfalls of the services provided by the contractor Obtaining Contracting Officer's Representative (COR) sign off on deliverables Leverage Service Level Agreements (SLA) and Service Level Objectives (SLO) to ensure adequate service performance and availability Required Skills/Experience The Program Manager should possess and maintain one or more of the following certifications or equivalent industry certifications: PMI Program Management Professional (PgMP) PMI Project Management Professional (PMP) PMI Portfolio Management Professional (PfMP) PMI Agile Certified Practitioner (PMI-ACP) Projects in Controlled Environments - PRINCE2 Practitioner Scrum Alliance Certified Scrum Professional - ScrumMaster (CSP-SM) The Program Manager should possess and maintain one or more of the following technical certifications or equivalent industry certifications: Senior Contractor Personnel should possess and maintain one or more of the following certifications or equivalent industry certifications may be submitted if approved by the CO or COR. ISC2 Certified Information Systems Security Professional (CISSP) ISC2 Information Systems Security Architecture Professional (ISSAP) ISC2 Certified Cloud Security Professional (CCSP) ISACA Certified Information System Manager (CISM) ISACA Certified Information System Auditor (CISA) GIAC Security Leadership Certification (GSLC) EC-Council Certified Chief Information Security Officer (CCISO) Cisco Certified Architect (CCAr) Cisco Certified Design Expert (CCDE) Cisco Certified Internetwork Expert (CCIE) Security Axelos ITIL Master Axelos ITIL Strategic Leader (SL) Alpha Omega Integration, LLC (Alpha Omega) is committed to the development of a creative, diverse, and inclusive work environment. In accordance with the law and our organizational values, all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, Veteran Status, or any other characteristic protected by law (referred to as "protected status)". Final hiring decisions at Alpha Omega will be based on merit, qualifications, and abilities. Black, Indigenous, and People of Color (BIPOC), LGBTQIA, women, people over 40, and differently-abled folks are strongly encouraged to apply.
Job Title: GCS, AI Application Sr. Solution Architect / Engineering Manager / Sr. Full-stack Dev Lead Management Level: Vice President - 620 Who we are looking for We are looking for an excellent hands-on Senior Solution Architect, Engineering manager/Full-stack dev Lead, who is expected to come up with cloud-based AI application solution architect, front-end framework solutions, back-end architecture solutions, build up Application User Interfaces, back-end, database from scratch to production, and provide programming coaching and bring forth all-level of mentorship to upskill front-end and back-end developers. Why This Role is important to us You will be working at cross-functional AI Applications Agile team, leading full-stack developers, and building various Cyber Data-driven/AI-driven applications in Cyber Data & Analytic division at GCS (Global Cyber Security) in State Street Bank. What you will be responsible for Lead the design and implementation of scalable, secure, and highly available AI Application architectures and solutions. Lead the full-stack developers with hands-on programming, best engineering practices, coding styles and provide technical leadership, mentoring and supporting. Closely work with Product Owner to deeply understand and clarify BPM (Business Process Model), UI/UX requirements, end-to-end user persona workflows and operational processes. Provide front-end, back-end architect and data solutions, software implementation solutions based upon real-life needs from React front-end framework and FastAPI back-end framework. Cohesively work with Dev leads, ML Leads and Product Owner to define front-end architecture and provide implementation solutions; build state-of-the-art, frontend-to-backend-to-database features and components. Embody as a CI/CD role model that ensure entire Agile team performs continuous integration between front-end and back-end constantly and instantly via API co-creation, tech discussion, co-debugging/fixing, and continuous deployment in Dev/UAT/Prod environments. Code quality gate keeper of PR reviews and bar elevator of coding style and standard. Train up and grow all developers' coding skills and architecture design. Develop tech documentations and diagrams; provide artifacts/evidence required by auditors. Enhance user experience while ensuring compatibility with existing data products and platforms. Ensure that development, coding, privacy and security standards are adhered to at all times. Education & Preferred Qualifications Bachelor or above degree in Computer Science or related field. 10+ years strong experience of building scratch-to-production web applications/UIs. Highly proficient with Python, and nice to have JavaScript (ES6 and beyond), TypeScript, HTML5, CSS3, NodeJS. Strong hands-on programming skills in Python/FastAPI/Flask, Pyspark, Java, J2EE, GraphQL, Restful APIs, Microservices. Experience with Cloud Computation Platform production experience on AWS and/or Azure: EC2, S3, Lambda, Aurora RDS, Docker + Kubernetes to orchestration. Hands-on skills of building CI/CD pipeline and DevOps engineering practices. Strong leadership, interpersonal, and communication skills Proven records that upskilled developers from 1 to 10s+ and built high performance cross-functional Agile team(s). In-depth understanding of Agile/Scrum values and principles; rich experience of working at high-efficient Scrum cross-functional team of software development and delivery. Familiar with IT security/cybersecurity domains is a bonus, including but not limited to cyber engineering, Vulnerability Management, Cyber asset management, SAST/DAST, IAM (Identity Access Management), SSO, MFA, cyber threat intelligence, security operation, access control, network security, security vulnerability, insider threat, data loss protection, etc. Excellent verbal and written communication skills at all stakeholder levels across multiple countries globally. Knowledges of Data Science, AI/ML/DL/NLP models, algorithms, Data Integration, MLOpS are nice-to-have. What We Value Open minded, fast learner, self-motivated, result driven, detail oriented, candid attitude, team player, high commitment spirit. Motivated by an Agile, fast-paced, global team environment with all-round cultural respects. Self-driven and highly motivated to deliver top-tier solutions with cohesive collaborations and team work. About State Street What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. You'll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer. Discover more at Salary Range: $120,000 - $202,500 Annual The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
03/20/2024
Full time
Job Title: GCS, AI Application Sr. Solution Architect / Engineering Manager / Sr. Full-stack Dev Lead Management Level: Vice President - 620 Who we are looking for We are looking for an excellent hands-on Senior Solution Architect, Engineering manager/Full-stack dev Lead, who is expected to come up with cloud-based AI application solution architect, front-end framework solutions, back-end architecture solutions, build up Application User Interfaces, back-end, database from scratch to production, and provide programming coaching and bring forth all-level of mentorship to upskill front-end and back-end developers. Why This Role is important to us You will be working at cross-functional AI Applications Agile team, leading full-stack developers, and building various Cyber Data-driven/AI-driven applications in Cyber Data & Analytic division at GCS (Global Cyber Security) in State Street Bank. What you will be responsible for Lead the design and implementation of scalable, secure, and highly available AI Application architectures and solutions. Lead the full-stack developers with hands-on programming, best engineering practices, coding styles and provide technical leadership, mentoring and supporting. Closely work with Product Owner to deeply understand and clarify BPM (Business Process Model), UI/UX requirements, end-to-end user persona workflows and operational processes. Provide front-end, back-end architect and data solutions, software implementation solutions based upon real-life needs from React front-end framework and FastAPI back-end framework. Cohesively work with Dev leads, ML Leads and Product Owner to define front-end architecture and provide implementation solutions; build state-of-the-art, frontend-to-backend-to-database features and components. Embody as a CI/CD role model that ensure entire Agile team performs continuous integration between front-end and back-end constantly and instantly via API co-creation, tech discussion, co-debugging/fixing, and continuous deployment in Dev/UAT/Prod environments. Code quality gate keeper of PR reviews and bar elevator of coding style and standard. Train up and grow all developers' coding skills and architecture design. Develop tech documentations and diagrams; provide artifacts/evidence required by auditors. Enhance user experience while ensuring compatibility with existing data products and platforms. Ensure that development, coding, privacy and security standards are adhered to at all times. Education & Preferred Qualifications Bachelor or above degree in Computer Science or related field. 10+ years strong experience of building scratch-to-production web applications/UIs. Highly proficient with Python, and nice to have JavaScript (ES6 and beyond), TypeScript, HTML5, CSS3, NodeJS. Strong hands-on programming skills in Python/FastAPI/Flask, Pyspark, Java, J2EE, GraphQL, Restful APIs, Microservices. Experience with Cloud Computation Platform production experience on AWS and/or Azure: EC2, S3, Lambda, Aurora RDS, Docker + Kubernetes to orchestration. Hands-on skills of building CI/CD pipeline and DevOps engineering practices. Strong leadership, interpersonal, and communication skills Proven records that upskilled developers from 1 to 10s+ and built high performance cross-functional Agile team(s). In-depth understanding of Agile/Scrum values and principles; rich experience of working at high-efficient Scrum cross-functional team of software development and delivery. Familiar with IT security/cybersecurity domains is a bonus, including but not limited to cyber engineering, Vulnerability Management, Cyber asset management, SAST/DAST, IAM (Identity Access Management), SSO, MFA, cyber threat intelligence, security operation, access control, network security, security vulnerability, insider threat, data loss protection, etc. Excellent verbal and written communication skills at all stakeholder levels across multiple countries globally. Knowledges of Data Science, AI/ML/DL/NLP models, algorithms, Data Integration, MLOpS are nice-to-have. What We Value Open minded, fast learner, self-motivated, result driven, detail oriented, candid attitude, team player, high commitment spirit. Motivated by an Agile, fast-paced, global team environment with all-round cultural respects. Self-driven and highly motivated to deliver top-tier solutions with cohesive collaborations and team work. About State Street What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation we're making our mark on the financial services industry. For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary in locations, but you may expect generous medical care, insurance and savings plans among other perks. You'll have access to flexible Work Program to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. Inclusion, Diversity and Social Responsibility. We truly believe our employees' diverse backgrounds, experiences and perspective are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome the candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift program and access to employee networks that help you stay connected to what matters to you. State Street is an equal opportunity and affirmative action employer. Discover more at Salary Range: $120,000 - $202,500 Annual The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
Empower the Individual Through Crypto Gemini is a crypto exchange and custodian that allows customers to buy, sell, store, and earn more than 30 cryptocurrencies like bitcoin, bitcoin cash, ether, litecoin, and Zcash. Gemini is a New York trust company that is subject to the capital reserve requirements, cybersecurity requirements, and banking compliance standards set forth by the New York State Department of Financial Services and the New York Banking Law. Gemini was founded in 2014 by twin brothers Cameron and Tyler Winklevoss to empower the individual through crypto. Crypto is about giving you greater choice, independence, and opportunity. We are here to help you on your journey. We build crypto products that are simple, elegant, and secure. Whether you are an individual or an institution, we want to help you buy, sell, and store your bitcoin and cryptocurrency. Crypto is not just a technology, it's a movement. At Gemini, our mission is to empower the individual and that includes giving our employees flexibility of choice - our Office Optional Policy allows employees to choose to work from one of our physical locations or from home. Select roles that are location-specific will still be eligible for flexible schedules. The Department: Compliance Compliance at Gemini is a team dedicated to managing the next generation of financial crime in a complex and evolving regulatory environment. We are a diverse group of technology, legal, and operational professionals who develop new approaches to solving classic problems using cutting edge tools and processes. The Role: Senior Associate, Compliance Operations In this role, you will work with a team of experienced compliance professionals responsible for critical functions within the Compliance and AML/BSA/Sanctions program. You will have responsibilities including, but not limited to, triaging a variety of account operations-related issues escalated by cross functional teams across the enterprise, draft and maintain written procedural guides, assist with internal and external audit functions, track and manage ongoing project work, and other critical components/development of the compliance program that may arise from time to time. Gemini's Compliance team is constantly evolving and developing new operations and controls. In this role, you will contribute to that development by rolling-up your sleeves and building the future of money, while being an integral part of a best-in-class compliance department. Responsibilities Monitor and assist with account related escalations. Respond to various account operations requests from teams across the enterprise. Maintain procedural guides for onboarding and account review. Act as a centralized hub for procedural updates and ensure relevant stakeholders are informed. Assist with internal and external audits. Manage onboarding and account review projects by working closely with project managers on technical updates and procedural improvements. Minimum Qualifications BA/BS degree or international equivalent. 5+ years of experience in the financial services industry with a focus on BSA/AML compliance. Previous experience reviewing operational procedures and identifying areas for improvement. Excellent written and verbal communication skills with previous experience developing and maintaining written policies and procedures. Track record of success and results, ideally in a high-growth or entrepreneurial environment. Flexible mindset and a willingness to roll up your sleeves and assist in various compliance functions as needed. Preferred Qualifications Advanced degree/certifications, e.g., JD, MBA, CAMS, CFE. Familiarity with Customer Identification Program (CIP) requirements including KYC best practices. Working knowledge of digital asset trading and blockchain technology. Comfort with an ever-changing regulatory landscape and fast-paced business environment. Experience working with business and project management tools such as Looker and JIRA. At Gemini, we strive to build diverse teams that reflect the people we want to empower through our products, and we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Gemini is proud to be an equal opportunity workplace and affirmative action employer. If you have a specific need that requires accommodation, please let a member of the People Team know.
09/23/2021
Full time
Empower the Individual Through Crypto Gemini is a crypto exchange and custodian that allows customers to buy, sell, store, and earn more than 30 cryptocurrencies like bitcoin, bitcoin cash, ether, litecoin, and Zcash. Gemini is a New York trust company that is subject to the capital reserve requirements, cybersecurity requirements, and banking compliance standards set forth by the New York State Department of Financial Services and the New York Banking Law. Gemini was founded in 2014 by twin brothers Cameron and Tyler Winklevoss to empower the individual through crypto. Crypto is about giving you greater choice, independence, and opportunity. We are here to help you on your journey. We build crypto products that are simple, elegant, and secure. Whether you are an individual or an institution, we want to help you buy, sell, and store your bitcoin and cryptocurrency. Crypto is not just a technology, it's a movement. At Gemini, our mission is to empower the individual and that includes giving our employees flexibility of choice - our Office Optional Policy allows employees to choose to work from one of our physical locations or from home. Select roles that are location-specific will still be eligible for flexible schedules. The Department: Compliance Compliance at Gemini is a team dedicated to managing the next generation of financial crime in a complex and evolving regulatory environment. We are a diverse group of technology, legal, and operational professionals who develop new approaches to solving classic problems using cutting edge tools and processes. The Role: Senior Associate, Compliance Operations In this role, you will work with a team of experienced compliance professionals responsible for critical functions within the Compliance and AML/BSA/Sanctions program. You will have responsibilities including, but not limited to, triaging a variety of account operations-related issues escalated by cross functional teams across the enterprise, draft and maintain written procedural guides, assist with internal and external audit functions, track and manage ongoing project work, and other critical components/development of the compliance program that may arise from time to time. Gemini's Compliance team is constantly evolving and developing new operations and controls. In this role, you will contribute to that development by rolling-up your sleeves and building the future of money, while being an integral part of a best-in-class compliance department. Responsibilities Monitor and assist with account related escalations. Respond to various account operations requests from teams across the enterprise. Maintain procedural guides for onboarding and account review. Act as a centralized hub for procedural updates and ensure relevant stakeholders are informed. Assist with internal and external audits. Manage onboarding and account review projects by working closely with project managers on technical updates and procedural improvements. Minimum Qualifications BA/BS degree or international equivalent. 5+ years of experience in the financial services industry with a focus on BSA/AML compliance. Previous experience reviewing operational procedures and identifying areas for improvement. Excellent written and verbal communication skills with previous experience developing and maintaining written policies and procedures. Track record of success and results, ideally in a high-growth or entrepreneurial environment. Flexible mindset and a willingness to roll up your sleeves and assist in various compliance functions as needed. Preferred Qualifications Advanced degree/certifications, e.g., JD, MBA, CAMS, CFE. Familiarity with Customer Identification Program (CIP) requirements including KYC best practices. Working knowledge of digital asset trading and blockchain technology. Comfort with an ever-changing regulatory landscape and fast-paced business environment. Experience working with business and project management tools such as Looker and JIRA. At Gemini, we strive to build diverse teams that reflect the people we want to empower through our products, and we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. Equal Opportunity is the Law, and Gemini is proud to be an equal opportunity workplace and affirmative action employer. If you have a specific need that requires accommodation, please let a member of the People Team know.
Excel MSO is looking for the best and brightest professionals to handle the business side of medical practice so "doctors can be doctors." We are fortunate to have experienced unprecedented growth in the last few years - and we're just getting started. As the largest Independent Physicians Association in Santa Clara County, not only do we partner with the most health plans, but we're also the first Clinically Integrated Network in Silicon Valley. We deeply trust and value our dedicated physicians and employees who provide compassionate care to our 100,000+ patients every day. If you are looking for a rewarding opportunity with an innovative, collaborative, and inspirational team, join us at PMGSJ / Excel MSO, and help us continue to be trailblazers in the transformation of health care. SUMMARY Under general direction of the Senior Director of Information Systems, the Sr. Network Administrator is responsible for providing the leadership and hands on support for company-wide data and network infrastructure and desktop/application initiatives. This position emphasizes anticipating the future direction of the Information Technology industry and relating those changes to current and future infrastructural and organizational projects. Knowledge of the Managed Care industry is preferred and not required. ESSENTIAL DUTIES AND RESPONSIBILITIES Plan, organize, direct, and review the delivery of network and data infrastructure, cybersecurity, and VOIP services. Oversee system infrastructure operations, security management, user technical support, and production job schedules. Assist in the management of policy development and technology planning. Evaluate user needs and system functionality to confirm that systems meet the needs of individuals and projects. Ensure smooth operations of all IT systems and data security in the event of an internal/external attack. Understand and track applicable regulatory and reporting requirements. Provide users secure access to the network, appropriate support, and training. Conduct periodic audits (based on policies and procedures) to ensure compliance with regulatory, enterprise security, and HIPAA requirements. Prepare the IT organization's disaster recovery and business continuity plans, policies, and procedures. Administrate and manage all system databases to improve system efficiency. Work with CIO and senior management to determine and enforce network architecture strategies and standards. Identify issues, trends, and opportunities to improve efficiency, cost effectiveness, and/or quality; develop recommendations and implement solutions to identified issues and opportunities. Establish a stable performance environment by monitoring and analyzing problems. Ensure problems are identified and solved as rapidly and efficiently as possible. Provide and manage utilization and capacity monitoring of all networks, data storage, servers, and phones for management reporting and planning. Perform any other duties as required or assigned. SUPERVISORY RESPONSIBILITIES Manage IT infrastructure, support staff, and vendors. Recruit, interview, and hire new team members. Plan for equipment implementation and project expansion; coordinate and supervise new system installation. Set goals and plan, assign, and direct work accordingly. Appraise performance, reward and discipline employees, address complaints, and resolve issues. Provide regular and effective feedback to employees and complete timely and objective performance reviews. QUALIFICATIONS: Bachelor's degree in Computer Science, Engineering or, equivalent experience, training, or coursework required. Minimum 5-7 years of progressively responsible and direct work experience with the duties and responsibilities listed above required. Microsoft Certified Professional Certification highly desired. Minimum 5-7 years of hand on experience working with network switches, firewalls, and cybersecurity system configuration required. Minimum 5-7 years of related experience with firewall concepts and deployment, DMZ layout, VOIP, infrastructure, network environments required. Minimum 5-7 years of network engineering, designing, planning, and implementing LANs/WANs infrastructure required. Minimum 2 years of cloud hosting experience required. Demonstrated experience with scripting and automation desired. Must be willing to pursue continued learning and certification related to emerging technologies, as applicable to the healthcare industry and business expansion. Excellent demonstrated data analysis skills, including ability to gather and analyze data, organize and design reports, and manage work efficiently. Working knowledge of computer applications such as Outlook, Word, Excel, and other Microsoft Office applications. Ability to plan, evaluate, prioritize organization information system needs. BEHAVIORAL REQUIREMENTS Demonstrate accountability and good judgment in providing guidance and making recommendations for organization information system needs. Maintain the confidentiality of passwords, security codes, and other system access codes. Maintain the confidentiality of patient and organizational data and information. LANGUAGE SKILLS Ability to read, analyze, and interpret general business information. Ability to write reports, business correspondence, and procedural manuals. Ability to effectively present information and respond to questions among groups of managers, clients, investors, customers, and the general public. We follow the SCC Public health guidelines for COVID-19. recblid bm5tfihx1hfdpamf3y2q5y6k7xgt7k
09/14/2021
Full time
Excel MSO is looking for the best and brightest professionals to handle the business side of medical practice so "doctors can be doctors." We are fortunate to have experienced unprecedented growth in the last few years - and we're just getting started. As the largest Independent Physicians Association in Santa Clara County, not only do we partner with the most health plans, but we're also the first Clinically Integrated Network in Silicon Valley. We deeply trust and value our dedicated physicians and employees who provide compassionate care to our 100,000+ patients every day. If you are looking for a rewarding opportunity with an innovative, collaborative, and inspirational team, join us at PMGSJ / Excel MSO, and help us continue to be trailblazers in the transformation of health care. SUMMARY Under general direction of the Senior Director of Information Systems, the Sr. Network Administrator is responsible for providing the leadership and hands on support for company-wide data and network infrastructure and desktop/application initiatives. This position emphasizes anticipating the future direction of the Information Technology industry and relating those changes to current and future infrastructural and organizational projects. Knowledge of the Managed Care industry is preferred and not required. ESSENTIAL DUTIES AND RESPONSIBILITIES Plan, organize, direct, and review the delivery of network and data infrastructure, cybersecurity, and VOIP services. Oversee system infrastructure operations, security management, user technical support, and production job schedules. Assist in the management of policy development and technology planning. Evaluate user needs and system functionality to confirm that systems meet the needs of individuals and projects. Ensure smooth operations of all IT systems and data security in the event of an internal/external attack. Understand and track applicable regulatory and reporting requirements. Provide users secure access to the network, appropriate support, and training. Conduct periodic audits (based on policies and procedures) to ensure compliance with regulatory, enterprise security, and HIPAA requirements. Prepare the IT organization's disaster recovery and business continuity plans, policies, and procedures. Administrate and manage all system databases to improve system efficiency. Work with CIO and senior management to determine and enforce network architecture strategies and standards. Identify issues, trends, and opportunities to improve efficiency, cost effectiveness, and/or quality; develop recommendations and implement solutions to identified issues and opportunities. Establish a stable performance environment by monitoring and analyzing problems. Ensure problems are identified and solved as rapidly and efficiently as possible. Provide and manage utilization and capacity monitoring of all networks, data storage, servers, and phones for management reporting and planning. Perform any other duties as required or assigned. SUPERVISORY RESPONSIBILITIES Manage IT infrastructure, support staff, and vendors. Recruit, interview, and hire new team members. Plan for equipment implementation and project expansion; coordinate and supervise new system installation. Set goals and plan, assign, and direct work accordingly. Appraise performance, reward and discipline employees, address complaints, and resolve issues. Provide regular and effective feedback to employees and complete timely and objective performance reviews. QUALIFICATIONS: Bachelor's degree in Computer Science, Engineering or, equivalent experience, training, or coursework required. Minimum 5-7 years of progressively responsible and direct work experience with the duties and responsibilities listed above required. Microsoft Certified Professional Certification highly desired. Minimum 5-7 years of hand on experience working with network switches, firewalls, and cybersecurity system configuration required. Minimum 5-7 years of related experience with firewall concepts and deployment, DMZ layout, VOIP, infrastructure, network environments required. Minimum 5-7 years of network engineering, designing, planning, and implementing LANs/WANs infrastructure required. Minimum 2 years of cloud hosting experience required. Demonstrated experience with scripting and automation desired. Must be willing to pursue continued learning and certification related to emerging technologies, as applicable to the healthcare industry and business expansion. Excellent demonstrated data analysis skills, including ability to gather and analyze data, organize and design reports, and manage work efficiently. Working knowledge of computer applications such as Outlook, Word, Excel, and other Microsoft Office applications. Ability to plan, evaluate, prioritize organization information system needs. BEHAVIORAL REQUIREMENTS Demonstrate accountability and good judgment in providing guidance and making recommendations for organization information system needs. Maintain the confidentiality of passwords, security codes, and other system access codes. Maintain the confidentiality of patient and organizational data and information. LANGUAGE SKILLS Ability to read, analyze, and interpret general business information. Ability to write reports, business correspondence, and procedural manuals. Ability to effectively present information and respond to questions among groups of managers, clients, investors, customers, and the general public. We follow the SCC Public health guidelines for COVID-19. recblid bm5tfihx1hfdpamf3y2q5y6k7xgt7k
As the Business Information Security Officer (BISO) of S&P Dow Jones Indices, you will be the Cyber Security & Assurance primary point of contact for the division, responsible for the development, communication, compliance and governance of the divisional security strategy, roadmap and policies that are in alignment with the organization's overall security objectives This position will report to the CTO of S&P Dow Jones Indices Responsibilities Develop and maintain the overall Security strategy of the division Ensure that the division's technology (IT) priorities align with the overall Security strategy Acquire and manage leadership support and financial resources to support the Security transformation and governance priorities of the division Engage with the Global Information Security policy team as the primary point of contact for the division and ensure that division's Security policies and priorities align with those of the overall organization Manage and communicate the divisional Security roadmap Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with Cybersecurity policies Monitor and evaluate the effectiveness of the division's cybersecurity safeguards to ensure that they provide the intended level of protection Ensure that Security requirements specific to information technology (IT) systems are included in all phases of the system life cycle Engage with the CIRT team to properly address and manage cybersecurity incidents or vulnerabilities Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. Advise senior management on cost/benefit analysis of information Security programs, policies, processes, systems, and elements Establish a mature Security posture within the Division Experience/Skills: 5+ years in a senior Security leadership role 10+ years of experience working in a Security focused role in the technology or other technology heavy industry (e.g. Financial Services) Bachelor's degree in Computer Science, Information Systems, Engineering or a related discipline Certified Information System Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) certifications preferred Detailed understanding of IT risk and information security fundamentals, risk assessment and risk management fundamentals, modern networking technologies and IT security controls Working knowledge of: Cloud computing architectures and the associated security designs and challenges Common open source libraries and technologies (e.g. Kafka, Spark, Hadoop) and how to effectively harden them Common web application development technologies (e.g. Java, PHP, Python, etc...) along with tools and processes to enable teams to develop safely NIST security controls frameworks Ability to interpret and apply laws, regulations, policies, and guidance relevant to organization's cyber objectives Ability to exercise judgment when policies are not well-defined S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: and your request will be forwarded to the appropriate person. The EEO is the Law Poster describes discrimination protections under federal law. 102 - Senior Management (EEO Job Group) (inactive), 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH102 - Senior Management (EEO Job Group) Job ID: 255641 Posted On: 2020-12-15 Location: New York, New York, United States
01/21/2021
Full time
As the Business Information Security Officer (BISO) of S&P Dow Jones Indices, you will be the Cyber Security & Assurance primary point of contact for the division, responsible for the development, communication, compliance and governance of the divisional security strategy, roadmap and policies that are in alignment with the organization's overall security objectives This position will report to the CTO of S&P Dow Jones Indices Responsibilities Develop and maintain the overall Security strategy of the division Ensure that the division's technology (IT) priorities align with the overall Security strategy Acquire and manage leadership support and financial resources to support the Security transformation and governance priorities of the division Engage with the Global Information Security policy team as the primary point of contact for the division and ensure that division's Security policies and priorities align with those of the overall organization Manage and communicate the divisional Security roadmap Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with Cybersecurity policies Monitor and evaluate the effectiveness of the division's cybersecurity safeguards to ensure that they provide the intended level of protection Ensure that Security requirements specific to information technology (IT) systems are included in all phases of the system life cycle Engage with the CIRT team to properly address and manage cybersecurity incidents or vulnerabilities Ensure that plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. Advise senior management on cost/benefit analysis of information Security programs, policies, processes, systems, and elements Establish a mature Security posture within the Division Experience/Skills: 5+ years in a senior Security leadership role 10+ years of experience working in a Security focused role in the technology or other technology heavy industry (e.g. Financial Services) Bachelor's degree in Computer Science, Information Systems, Engineering or a related discipline Certified Information System Security Professional (CISSP) or Certified in Risk and Information Systems Control (CRISC) certifications preferred Detailed understanding of IT risk and information security fundamentals, risk assessment and risk management fundamentals, modern networking technologies and IT security controls Working knowledge of: Cloud computing architectures and the associated security designs and challenges Common open source libraries and technologies (e.g. Kafka, Spark, Hadoop) and how to effectively harden them Common web application development technologies (e.g. Java, PHP, Python, etc...) along with tools and processes to enable teams to develop safely NIST security controls frameworks Ability to interpret and apply laws, regulations, policies, and guidance relevant to organization's cyber objectives Ability to exercise judgment when policies are not well-defined S&P Global is an equal opportunity employer committed to making all employment decisions without regard to race/ethnicity, gender, pregnancy, gender identity or expression, color, creed, religion, national origin, age, disability, marital status (including domestic partnerships and civil unions), sexual orientation, military veteran status, unemployment status, or any other basis prohibited by federal, state or local law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: and your request will be forwarded to the appropriate person. The EEO is the Law Poster describes discrimination protections under federal law. 102 - Senior Management (EEO Job Group) (inactive), 10 - Officials or Managers (EEO-2 Job Categories-United States of America), IFTECH102 - Senior Management (EEO Job Group) Job ID: 255641 Posted On: 2020-12-15 Location: New York, New York, United States
***If interested please send a copy of your resume to *** Lead Information Security Analyst Contract duration: 6-8 month contract to permanent Hours worked, hours paid while on contract No PTO or Paid Holidays during contracting period Target Start Date: Classes the first week of September, October and November Hours: Monday-Friday Regular Business hours Clearance: Must be able to obtain and maintain a fully adjudicated secret clearance, can hold up to a Top Secret Certification: IAT II or IAT III required prior to start date (Security+ CE, CCNA Security, CASP, CISSP, etc.) Job Description: He/She is responsible for Cyber Security of Facility-Related Control Systems (FRCS). They will operate equipment and perform Computer Security Incident Response activities, coordinate with the customer to record and report incidents. He/She recognizes potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information. They are responsible for safeguarding the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices. He/She will guarantee the safety of information systems assets, protect systems from intentional or inadvertent access or destruction and support with implementation of counter-measures or mitigating controls. Duties: Appointed in writing by the Enterprise Information System Security Manager (ISSM) as the Information System Security Officer (ISSO) for the CE control system enclave. Responsible for creating and maintaining a complete and accurate FRCS inventory. Assist CES personnel with security control implementation and assessment. Register systems in eMASS with all necessary artifacts to attain Authority to Operate (ATO). Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information. Assist with implementation of counter-measures or mitigating controls. Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices. Perform periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance. Ensure the safety of information systems assets and protect systems from intentional or inadvertent access or destruction. Perform Computer Security Incident Response activities, coordinate with teams to record and report incidents. Coordinate locally within local CE organization for CE FRCS owners Coordinate with teams for support of cybersecurity accreditation and protection. Maintain current knowledge of relevant technology as assigned. Desired Education and Experience (every scenario is different): A bachelor's degree plus 3 years of recent specialized experience, OR; An associate's degree plus 7 years of recent specialized experience, OR; A major certification plus 7 years of recent specialize experience, OR; 11 years of recent specialized experience. Desired Skills and Abilities: Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience in data security administration. EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or - provided by Dice
09/28/2020
Full time
***If interested please send a copy of your resume to *** Lead Information Security Analyst Contract duration: 6-8 month contract to permanent Hours worked, hours paid while on contract No PTO or Paid Holidays during contracting period Target Start Date: Classes the first week of September, October and November Hours: Monday-Friday Regular Business hours Clearance: Must be able to obtain and maintain a fully adjudicated secret clearance, can hold up to a Top Secret Certification: IAT II or IAT III required prior to start date (Security+ CE, CCNA Security, CASP, CISSP, etc.) Job Description: He/She is responsible for Cyber Security of Facility-Related Control Systems (FRCS). They will operate equipment and perform Computer Security Incident Response activities, coordinate with the customer to record and report incidents. He/She recognizes potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information. They are responsible for safeguarding the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices. He/She will guarantee the safety of information systems assets, protect systems from intentional or inadvertent access or destruction and support with implementation of counter-measures or mitigating controls. Duties: Appointed in writing by the Enterprise Information System Security Manager (ISSM) as the Information System Security Officer (ISSO) for the CE control system enclave. Responsible for creating and maintaining a complete and accurate FRCS inventory. Assist CES personnel with security control implementation and assessment. Register systems in eMASS with all necessary artifacts to attain Authority to Operate (ATO). Recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of relevant event detail and summary information. Assist with implementation of counter-measures or mitigating controls. Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices. Perform periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance. Ensure the safety of information systems assets and protect systems from intentional or inadvertent access or destruction. Perform Computer Security Incident Response activities, coordinate with teams to record and report incidents. Coordinate locally within local CE organization for CE FRCS owners Coordinate with teams for support of cybersecurity accreditation and protection. Maintain current knowledge of relevant technology as assigned. Desired Education and Experience (every scenario is different): A bachelor's degree plus 3 years of recent specialized experience, OR; An associate's degree plus 7 years of recent specialized experience, OR; A major certification plus 7 years of recent specialize experience, OR; 11 years of recent specialized experience. Desired Skills and Abilities: Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience in data security administration. EEO Employer Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or - provided by Dice