Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
About the role
- System Security Specialist analyzing risks and security controls for state agencies. Conducting assessments, providing advisory support, and strengthening cybersecurity posture.
Responsibilities
- Conduct and support cybersecurity maturity assessments using frameworks such as NIST CSF, NIST 800-53, and NIST 800-171
- Evaluate system security controls and identify vulnerabilities, risks, and compliance gaps
- Analyze technical environments, architectures, and security implementations across agencies
- Provide expert-level guidance and recommendations to improve system security posture
- Perform risk analysis and threat identification, including evaluation of system weaknesses and exposure points
- Support development of remediation strategies and POA&Ms (Plans of Action & Milestones)
- Review system configurations, architectures, and documentation for security accuracy and completeness
- Validate implementation of security controls across applications, networks, and infrastructure
- Ensure alignment with federal and state cybersecurity standards
- Document findings, risks, and recommendations in formal assessment reports
- Support development of executive briefings and closeout presentations
- Work closely with auditors, analysts, engineers, and project leadership
- Interface with agency stakeholders and Information Security Officers (ISOs)
Requirements
- Bachelor’s degree in Cybersecurity, Information Technology, or related field (or equivalent experience)
- 7+ years of specialized experience in information, system, or network security
- Demonstrated expertise in one or more cybersecurity disciplines (e.g., penetration testing, risk analysis, IDS, PKI, etc.)
- Strong understanding of: NIST cybersecurity frameworks and standards
- Risk management and vulnerability assessment methodologies
- Excellent analytical and problem-solving skills
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.
Security Data Specialist supporting a large - scale cybersecurity assessment program for State government agencies. Transforming assessment data into actionable insights and enabling data - driven decision - making across stakeholders.
Trainee in Health & Safety supporting environmental and health safety processes at Hikma Pharmaceuticals. Collaborating on waste management and legal documentation while developing practical EHS skills.
Senior Security Engineer for Ro, enhancing SaaS security posture management and data loss prevention. Collaborating across teams to secure patient data and maintain compliance standards.
Senior Mainframe Security Engineer at Capital One, focusing on Identity Access Management using IBM z/OS and CICS Security. Collaborate on automation and security solutions in a fast - paced environment.
BO
Cybersecurity Senior Manager leading CUI compliance operations at Boeing across multiple locations in the U.S. Responsible for team management and cybersecurity strategies in compliance with regulations.