Working Student in Information Security at Allianz Direct supporting security monitoring and managing vulnerability assessments. Collaborating with cross - functional teams to enhance cybersecurity posture and awareness.
About the role
- Cyber Security Engineer providing technical security expertise in cloud and on-premises infrastructure. Collaborating with cross-functional teams to ensure systems meet cybersecurity standards in a hybrid environment.
Responsibilities
- Provide technical security expertise in our cloud and on-premises infrastructure
- Collaborate closely with ISSOs, ISSSMs, software engineers, software developers, system engineers and Government counterparts
- Perform review and analysis of cybersecurity event logs
- Conduct and review technical cybersecurity assessments
- Coordinate with security personnel and recommend mitigation strategies
- Identify points of vulnerability and non-compliance with established cybersecurity standards and regulations
- Collaborate with our DevOpsSec team to help with analyzing scan results and remediation of findings
- Manage and maintain a library of security audit tools, and corresponding processes for system security testing, internal audits, incident response, and diagnosis of security-related system issues
- Perform and maintain vulnerability scans using Assured Compliance Assessment Solution (ACAS) and create reports
- Track and report Information Assurance Vulnerability Management (IAVM) compliance using Assured Compliance Assessment Solution (ACAS)
- Maintain Authorization to Operate (ATO) records in XACTA system
- Manage and report Plan of Actions and Milestones (POA&M) compliance
- Review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content
- Perform system installation, configuration maintenance, account maintenance, signature maintenance, patch management, and troubleshooting of operational IA and CND systems
- Apply system security engineering expertise in the system security design process, engineering life cycle, information domain, cross domain solutions, commercial off-the-shelf and government off-the-shelf cryptography; identification, authentication, and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing
Requirements
- BS degree and 8+ years of experience or additional years of experience in lieu of degree
- An active TS/SCI clearance with ability to obtain a Poly
- At least one DoD 8570.01-M IAT Level II or higher certification e.g., CCNA Security, CySA+, Security+ CE, SSCP, CISSP (or Associate)
- 1 year of experience developing and reviewing security concept of operations, systems security plans, security risk assessments, contingency plans, configuration management plans
- Experience configuring, running, and analyzing vulnerability scans
- Experience with XACTA, EMass, or similar tool
- Experience with NIST Special Publications e.g. NIST SP 800-27, 30, 37, 53, 60
- Experience with CNSS publication CNSSI 1253
- Experience with incident response plans, plan of actions and milestones, risk management plans, and vulnerability management plans
- Strong analytical, communication, problem solving, and interpersonal skills
- Experience establishing a System Security Engineering (SSE) management process to integrate security and privacy controls into complex hardware and software systems
Benefits
- 3 Medical Plan Options
- Dental and Vision
- FSA, DCFSA, HSA
- Life/AD&D Insurance
- Short-Term & Long-Term Disability
- Employee Assistance Program (EAP)
- Training and Educational Assistance
- Paid Time Off (PTO)
- 11 Federal holidays
- 401k plan with up to a 6% match (100% immediate vesting)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Enterprise Security Implementation Specialist at Vodafone supporting customers in implementing security solutions. Responsibilities include onboarding, incident management, and ensuring service quality with Fortinet and Zscaler products.
Cyber Security Specialist at Vodafone responsible for shaping and deploying security measures. Collaborating with business, IT, and Network teams as a trusted security partner.
Manager at PwC contributing to digital transformation in Utilities through technology consulting and stakeholder management. Focused on creating strategies and providing technology solutions in a data - driven world.
Research Associate conducting advanced research in iOS security within a leading institute for applied cybersecurity. Emphasis on secure application development and vulnerability analysis.
Cybersecurity Engineer focused on threat monitoring and incident response for Verizon's network security. Collaborating on security architecture and vulnerability management across multiple locations.
Senior Manager of Application Security leading initiatives to protect applications at Nordstrom through strategic leadership and AI - driven tooling. Collaborating with engineering to ensure secure software development practices.
Information Security Engineer responsible for deploying and supporting security tools across cloud and on - premise systems. Collaborating with IT to mitigate security risks in a hybrid work environment.
Casual Retail Security Officer for MSS Security ensuring safety at Tweed Mall in Tweed Heads. Responsible for patrols, incident response, and customer service.
Financial security advisor at Desjardins developing client relationships and selling life and health insurance products. Focusing on customer satisfaction and personalized financial solutions.