Request Technology - Robyn Honquest

NO SPONSORSHIP Senior Manager, IT Vendor Management SALARY: $120k - $135k plus 15% bonus The ideal candidate would be one who started in Finance, moved to Procurement, and then morphed into Vendor Management. This person should be able to connect all things that a vendor does in our organization together, then leverage that knowledge to push the roadmap conversation. They should look at the relationship from a strategic perspective and figure out how to build contracts that align with our roadmaps into the future. You will have strong knowledge of big picture, IT negotiations, vendor management for all technical team. Vendor performance, monitoring, tracking, reporting strategies. You will manage and grow a team of 5 to 10 people will have hire/fire responsibilities Minimum Qualifications Bachelor's degree 7+ years related experience in technology management, customer relationship management and staff management Change Agent with Managerial Courage Coaching Delivers Results Drives Vision & Purpose Executive Presence Influencing Servant Leadership Teambuilding/Develops Team Problem Solver Strategic Thinker Builds Strong Teams Strong Business Acumen Excellent presentation and facilitation skills Working knowledge of multiple disciplines and technologies Demonstrated and effective leadership skills. Detail oriented with strategic planning and problem-solving skills. Interpersonal, communication and presentation skills Possess a strong work ethic and high level of professionalism with the ability to work in a fast-paced environment. Experience managing and mentoring team members Proven track record of managing impediments that exceed the self-organizing capabilities of SGWS' Specialized Skills and Technologies Extensive knowledge and hands-on management experience in Vendor Management strategies and best practices Ability to collaborate with IT teams and Corporate IT Procurement to integrate Vendor Management into the Strategic Sourcing process Experience in designing and executing vendor performance monitoring, tracking and reporting strategies including vendor scorecarding, contractual SLA metric compliance, and issue/grievance resolution Well-versed in key contract terminology and legal language/concepts used in vendor contracts, such as indemnification, intellectual property, force majeure, and amendments/exhibits/SOWs, and understands how they interrelate Experience collaborating with IT stakeholders to establish and facilitate a cadence on Executive Briefings and Operating Reviews Solid grasp of financial concepts, such as depreciation schedules, dollar costing and total cost of ownership Hands-on experience building vendor management dashboards and executive reports that demonstrate the value of the function and celebrate wins and successes Experience in rationalizing the vendor portfolio on an annual basis to ensure focus is maintained on the most strategic vendors

NO SPONSORSHIP Senior Manager, IT Vendor Management SALARY: $120k - $135k plus 15% bonus The ideal candidate would be one who started in Finance, moved to Procurement, and then morphed into Vendor Management. This person should be able to connect all things that a vendor does in our organization together, then leverage that knowledge to push the roadmap conversation. They should look at the relationship from a strategic perspective and figure out how to build contracts that align with our roadmaps into the future. You will have strong knowledge of big picture, IT negotiations, vendor management for all technical team. Vendor performance, monitoring, tracking, reporting strategies. You will manage and grow a team of 5 to 10 people will have hire/fire responsibilities Minimum Qualifications Bachelor's degree 7+ years related experience in technology management, customer relationship management and staff management Change Agent with Managerial Courage Coaching Delivers Results Drives Vision & Purpose Executive Presence Influencing Servant Leadership Teambuilding/Develops Team Problem Solver Strategic Thinker Builds Strong Teams Strong Business Acumen Excellent presentation and facilitation skills Working knowledge of multiple disciplines and technologies Demonstrated and effective leadership skills. Detail oriented with strategic planning and problem-solving skills. Interpersonal, communication and presentation skills Possess a strong work ethic and high level of professionalism with the ability to work in a fast-paced environment. Experience managing and mentoring team members Proven track record of managing impediments that exceed the self-organizing capabilities of SGWS' Specialized Skills and Technologies Extensive knowledge and hands-on management experience in Vendor Management strategies and best practices Ability to collaborate with IT teams and Corporate IT Procurement to integrate Vendor Management into the Strategic Sourcing process Experience in designing and executing vendor performance monitoring, tracking and reporting strategies including vendor scorecarding, contractual SLA metric compliance, and issue/grievance resolution Well-versed in key contract terminology and legal language/concepts used in vendor contracts, such as indemnification, intellectual property, force majeure, and amendments/exhibits/SOWs, and understands how they interrelate Experience collaborating with IT stakeholders to establish and facilitate a cadence on Executive Briefings and Operating Reviews Solid grasp of financial concepts, such as depreciation schedules, dollar costing and total cost of ownership Hands-on experience building vendor management dashboards and executive reports that demonstrate the value of the function and celebrate wins and successes Experience in rationalizing the vendor portfolio on an annual basis to ensure focus is maintained on the most strategic vendors

Associate Principal, Identity and Access Management Systems SALARY: $125K - $140K PLUS 15% LOCATION: DALLAS 3 days onsite, 2 days remote The IAM team is responsible for integrating internal applications with ForgeRock Identity Suite using OAuth methodologies. Microsoft AD and LDAP ForgeRock Identity platform including identity gateway access manager and directory server single sign-on development Java JavaScript groovy networking linux windows AWS The Identity and Access Management team is responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Primary Duties and Responsibilities Administration and configuration of our IAM products and processes with an emphasis on ForgeRock Identity products. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Qualifications Technical Skills Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server. Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Development experience: Java, Javascript, Groovy Development experience: Python and Shell Scripting Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP) Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Preferred (nice to have) Sailpoint Identity IQ administration or experience E-GRC/Archer ServiceNow Mainframe architecture CA-ACF2 Mainframe access control facilities Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Bachelor's degree in Computer Science, Engineering, or other related field, or equivalent experience Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)

NO SPONSORSHIP Information Security Engineer LOCATION: EAST CHICAGO, INDIANA Will need to go to the office when an issue arises, must live within an hour away Looking for a candidate with cyber security infrastructure, firewalls, networking, active directory, threats, vulnerabilities, DLP, cloud, mobile, endpoint, CISSP preferred. Full-time, Days + Call, M- F 8:00 am - 4:30 pm The Information Security Engineer is responsible for maintaining and implementing the cybersecurity infrastructure and program. This position will work very closely and collaborate with other technical teams to respond to threats as well as on a daily basis to maintain the security posture of the environment. This position works on highly complex projects and maintains knowledge across multiple domains (networking, server, end points, mobile, cloud, etc.). The Information Security Engineer has a thorough understanding of network defense technologies, TCP/IP networking, Active Directory, DHCP, DNS, network security monitoring tools, secure engineering principles and technical security testing. This is a hands-on role which will be involved in patching, maintaining firewalls, scanning for vulnerabilities, keeping current on the latest security threats and trends, and reviewing technical architecture for security compliance. This individual will be regarded as an expert in all things cybersecurity related. To qualify you must have: Bachelor's Degree in Business, Computer Science or related field. 3-5 years of enterprise IT security engineering experience. CISSP preferred. Must possess expert understanding of Information Technology, Information Security, and Risk Management. Knowledge of security and control frameworks, such as ISO 17799, COBIT, and NIST CyberSecurity Framework. Systems Security Certified Practitioner (SSCP), CompTIA Security+, or GIAC Security Essentials Certification (GSEC) certification required or must be obtained within 2 years of hire. Experience with ProofPoint, Cisco AMP, SpecOps and other industry standard security tools. Experience with Palo Alto Firewalls Advanced knowledge of Network Security Advanced knowledge of Endpoint Security Advanced knowledge of Server hardening, patching, and base-lining Advanced knowledge of Mobile device security Advanced knowledge of Data Loss Prevention Advanced knowledge of IDS/IPS Advanced knowledge of Log analysis Skilled Critical Thinking Cisco ISE or NAC experience desired Keeps current on emerging threats and mitigation strategies. Scripting (Python, Perl, Powershell) knowledge preferred.

NO SPONSORSHIP SYSTEMS ENGINEER SALARY: $120K - $140K PLUS 10% LOCATION: TAMPA, FL, 3 DAYS IN OFFICE/2 DAYS REMOTE This is a mid-size environment, so you will get your hands on everything. The keys are windows virtualization, some networking, designing, implementing, maintaining on prem and cloud. The Systems Engineer is responsible for designing, implementing, and maintaining the organization's networked computing infrastructure (on-prem and cloud), ensuring systems operate efficiently, and resolving any technical issues as they arise. Hybrid Work Schedule - in-office 3x a week What You'll Do Manage and monitor all infrastructure and system installations, including configurations, testing, and maintenance. Implement and maintain backups, security, and redundancy strategies. Identify potential issues and implement the best possible solutions. Craft custom scripts, increasing automation for IT processes. Enable faster and smarter business processes and implement analytics. Communicate with stakeholders to identify requirements and implement solutions in a service development cycle. Use expert-level administration and optimization of hosts and Servers to ensure high availability and appropriate resource management. Standardize and automate processes and monitor, using Scripting technology. Install, configure, and patch operating systems, software, and hardware components, and clearly document the design, maintenance, and support procedures for routine tasks. Conduct high-level root-cause analysis for service interruption and establish preventive measures. Create reports and documentation outlining findings and solutions; oversee the overall backup strategy and daily operations for secure backups and restore testing. Manage and monitor all installed systems and infrastructure for the organization to be in line with company guidelines and established standard operating procedures. Install, configure, and test operating systems, application software, and system management tools. Experience : Two (2) to Five (5) Years of technology and/or IT experience. Property and casualty industry experience preferred. Skills and Knowledge: PowerShell Scripting expertise. Strong AD knowledge with a proficiency in GPO creation/troubleshooting. Experience with Windows Server 2016/2019 environments and applications. Experience with AWS Workspaces and Azure & Azure AD. Experience with Microsoft SCCM, SCSM, Deployment Toolkit, WSUS, SharePoint and SQL, and VMWare. SolarWinds and other network/systems monitoring tools preferred. Ability to quickly analyze issues in order to provide and implement the best possible solutions. Strong problem-solving skills and attention to detail. Experience researching technical issues and implementation of resolutions. Excellent written and verbal communication skills, relating to both technical and non-technical staff. Ability to work individually and in a team environment and to provide assistance, instruction and training. Ability to focus, execute and to provide excellent customer service. Relevant certifications such as MSCE, MCSA, CCNA preferred but not required.

Associate Principal, Identity and Access Management Systems (SailPoint Development) SALARY: $125K - $140K PLUS 15% Open to H1B 3 days onsite, 2 days remote Looking for an IAM sailpoint engineer to integrate sailpoint into the applications. Administration and configuration Java beanshell LDAP linux windows aws any forgerock okta single sign on a plus What You'll Do The Identity and Access Management team is responsible for access control and all associated programs. This position has an emphasis on development, hygiene, and maintenance of the Sailpoint IIQ core product, with a secondary expectation to support the IAM charter across our daily activities such as onboarding, identity life cycle Management, and general access troubleshooting. Primary Duties and Responsibilities Administration and configuration of our IAM products and processes with an emphasis on Sailpoint IIQ. Developing custom integration, workflows and rules between tools using Agile methodologies. Planning, implementation, enforcement and review of security policies, procedures, and controls specific to Identity Access Management. Processing access requests and issue tickets for internal and external customers Leading troubleshooting and resolution of system issues that might contribute to enterprise Production problems. Managing assigned project work through all phases (design, build, test, cutover). Report on controls, evidence gathering and control execution as related to the systems and processes this individual supports. Work collaboratively across IT and Business departments to implement technical solutions Under limited direction from management, monitor, evaluate and maintain systems and procedures to enforce best practices for user access authorization and control. Qualifications Technical Skills Sailpoint Identity IQ development and administration Development experience: Java, Javascript, Beanshell, SQL Queries Working knowledge of GitHub, Postman or other similar industry standard developer tools. Microsoft Active Directory and LDAP Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc). Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar). Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar). Basic knowledge of Linux operating system administration. Basic knowledge of Windows server and desktop operating systems Basic knowledge of Amazon Web Services (AWS) Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit Education and/or Experience Bachelor's degree in Computer Science, Engineering, or other related field, or equivalent experience 7+ Years Identity Access Management (IAM) experience preferred Hands-on IT or security operations experience Industry recognized certifications (CISSP, ITIL, etc)

NO SPONSORSHIP JAVA SOFTWARE ENGINEER - Financial or Trading Firm SALARY: $115K - $130K, Add 20% for NYC, NJ, or California Location: 100% REMOTE Looking for a Java Software Engineer with 2-4 years Java, SpringBoot, Multi-Threading. Real Time and trading systems or financial experience. Job Description This position entails building and maintaining reliable high-performance software applications that are part of the FX trading platform The right candidate is responsible for: Code, test, debug, and document technical assignments Translate business requirements into technical details Use business and application development knowledge to propose high-level technical and procedural solutions Deliver high-quality solutions and designs Analyze and recommend technologies and tools to improve efficiency and quality of the development process Documenting any relevant details in the wiki for a self-sustaining product Job Requirements: Bachelor's Degree 2-4 years' of experience in: A Software Engineering role in a Real Time trading related position, with recent and demonstrable experience writing highly performant, well tested, and elegant code in Java Building and maintaining Real Time trading systems that are multithreaded and distributed Developing highly distributed and fail-safe systems Strong knowledge of data structures and algorithms Strong communication skills, and ability to work with staff in operations and sales Ability to optimize applications/systems for performance Self-directed, self-motivated Preferable to have 2-4 years' experience with the following: Big Data, KDB, or map/reduce environments PostgresSQL or other RDBMS Git or similar version control system Environments running 24x7 applications with limited downtime Knowledge of order handling and protocols such as FIX and market data processing and distribution Web experience with single page apps Finance industry experience/knowledge Small company experience

NO SPONSORSHIP Identity & Access Management Engineer - Sailpoint 100% Remote except these states: CA, DE, DC, KY, NH, NJ, NY, PA, VT, WV Seeking a motivated individual to join our Identity and Access Management (IAM) team. Must have Sailpoint IAM experience in both administration and development Strong knowledge and understanding of the role of Identity and Access Management and related controls in an enterprise environment. Experience in SailPoint IdentityIQ, Experience in Java, Python, PHP, or other similar programming and Scripting languages. Knowledge in infrastructure technologies such as Linux, Windows, Active Directory, and LDAP. Knowledge of API application integrations and development. Effective communication skills enabling the communication of complex information to various audiences both verbally and in writing. Ability to establish trust with partners through demonstration of knowledge and commitment to security. Confidence to recommend changes and improvements to the enterprise's security program. Ability to manage multiple projects and engagements simultaneously. Typically requires 3 to 7 years of information technology experience What are the 3-4 non-negotiable requirements of this position? Identity and Access Management experience Experience in SailPoint IdentityIQ, or other equivalent IAM technologies. Experience in Java, Python, PHP, or other similar programming and Scripting languages. Knowledge in infrastructure technologies such as Linux, Windows, Active Directory, and LDAP.

Active Directory (AD) Administrator with robust documentation and security related projects LOCATION: REMOTE CONTRACT - 6 MONTHS SELLING POINTS: AD Administration, Windows, File Administration, basic PowerShell scripting. You will build reports, identify AD domain owners and focus on data clean up efforts. You will have exposer to security related projects and any robust documentation experience is a major plus. Job Description: o 3-5 years of experience o Work with AD group management within Active Directory domain o Build reports, identify AD domain owners, and appropriately document o Build category and inventory of service accounts o Identify all service accounts in environment o Light windows sys. admin engineering experience (does not need to be full fledged engineer; focus on data cleanup efforts with exposure to security related project) Skills/Experience: 3+ years experience in one or more of the following: Active Directory configuration, administration, and troubleshooting Windows Server platform administration Scripting PowerShell Required Skills: Active Directory Administration Windows File Server Administration Basic Scripting using PowerShell

Associate Principal, Security Engineering/Blue Team Security Testing SALARY: $140k - $160k flex plus 15% bonus LOCATION: remote if in : IL, TX, FL, GA, MA, MD, MN, NC, NJ, NY, DC, and WI Looking for a candidate to do blue team security testing. This is a cloud security role, blue team testing, cloud assessments, web applications, mobile testing. This position is responsible for security testing and managing day to day engineering tasks. This position is a senior engineering position that requires the ability to complete highly technical testing and provide informational updates to leadership and executive staff. Primary Duties and Responsibilities: Perform cloud assessments, web application penetration testing, mobile application testing, network and operating system assessments Perform independent reviews of security, network, applications, and cloud environments Produce reports and artifacts for various levels of leadership and staff relating to security related activities Ensure alignment of security controls as part of Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise Qualifications : Requires an in-depth knowledge of security controls and standards in relation to Cloud Security, Architecture, DevOps, and Security Testing. Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work. Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead projects for the entirety of the life cycle. Technical Skills: Experience with AWS Services including automation services (Lambda, JSON, etc ) Experience with DevOps Pipelines and GitHub Repos Architectural understanding and expertise of cloud and hybrid cloud infrastructure Education and/or Experience: Five years' Experience with Security Engineering activities and testing. Three years of experience with DevOps processes Three years' experience with AWS architecture and services. Certificates or Licenses: Certification in at least one or more of the following: AWS Certified Solutions Architect AWS Certified Security Specialty Certification Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) GIAC Cloud Security Essentials (GCLD) GIAC Cloud Security Automation (GCSA) GIAC Security Essentials (GSEC) GIAC Defensible Security Architecture (GDSA)

Java Full Stack Software Developer Salary: $120k - $160k plus 15% Looking for a Java Developer with 5 years Java, springboot HTML5/CSS3 2 years AWS Restful API JSON GIT Terraform Ansible Jenkins Kubernetes Helm and CICD Fullstack The Associate Principal, Software Engineering will be responsible for the development and delivery of business features in the Front End applications, integrating with a variety of upstream data-sources and presenting data through the user interface, all while enriching and advancing the platform. This software must achieve a blend of data-rich presentation, performance, user experience, and the capacity to support the busiest trading days in the world economy with rock-solid reliability. Contribute to Front End design, Back End design, technical direction and documentation including collaborating with various teams to build fit for purpose solutions Participates in code reviews, proactively identifying and mitigating potential issues and defects as well as assisting with continuous improvement Drives continuous improvement efforts by identifying and championing practical means of reducing time to market while maintaining high quality Must be a willing self-starter, independent and comfortable with a fast paced, dynamic environment A team player who assists the team as required to achieve collective goals & delivery milestones including knowledge-share Embraces and advocates for Agile best practices for software development discipline (be true to Agile Manifesto) Actively participates in creation and review of both business and technical user stories, providing constructive feedback and input on both work effort estimation as well as architecture/design improvements Integrating disparate data from REST and WebSocket services within a cohesive user interface. Participating in innovative design and proof of concepts with emerging technologies and solutions Embrace industry best practices like continuous integration, continuous deployment, automated testing, TDD etc. Follows agreed upon SDLC procedures to ensure that all information system products and services meet: both explicit and implicit quality standards, end-user functional requirements, architectural standards, performance requirements, audit requirements, security rules are upheld, and external facing reporting is properly represented. Writes unit and integration tests based on chosen DevOps frameworks. Performs application and project risk analysis and recommends quality improvements. Assists Production Support by providing advice on system functionality and fixes as required Assist with departmental and new employee training Technical Skills: 5~ years of primarily Backend Java development 2+ years of experience in Spring Framework 2+ years of hands-on HTML5/CSS3 experience 2+ years working in Cloud environment. Work with Javascript in support of Front End tasks Experience of working with websockets, HTTP 1.1 and HTTP/2 Experience with RESTful APIs and JSON RPC Experience following Git workflows Working knowledge of DevOps tools. Eg Terraform, Ansible, Jenkins, Kubernetes, Helm and CI/CD pipeline etc. Familiarity with monitoring related tools and frameworks like Splunk, ElasticSearch, Prometheus, AppDynamics

NO SPONSORSHIP Looking for a Business Analyst II to work with Security Architecture and be the liaison between the business stakeholders identifying security requirements. You will need 2 years experience and an understanding of cloud, change management, problem management. A go getter with good communication skills who wants to grow. You will need to come into the office on occasion when needed. The business analyst gives the insights into business need by defining requirements and assessing technical capabilities. If you have experience or interest in information security and enjoy gathering, analysing, and presenting data this role may be for you. This position will report to the Director of Security Architecture Qualifications: 2 or more years of work experience in an information security function 2 or more years of technology experience Working knowledge and familiarity with cloud platform technologies (AWS, GCP, Azure, O365) Knowledge of security frameworks and standards such as NIST CSF, ISO 27001, or others Experience with processes including Change Management, Problem Management, Work Prioritization, Quality Assurance, and Continuous Improvement Security certifications (SANS GSEC, CompTIA Security+) are a plus Bachelor's degree

NO SPONSORSHIP Platform Engineer - Cloud/Site Reliability Engineer Looking for a candidate with Cloud (GCP preferred), Linux Windows IAAS platform Kubernetes Docker gateways GitHub terraform cloud sentinel Jira hashicorp. We are looking for an expert Terraform Cloud developer with significant public cloud experience. This role is for GCP, so this would be a distinct advantage, but we're open to other cloud backgrounds. You'll need a solid software development DevOps background, strong interpersonal skills and be able to communicate and articulate what is and isn't possible to senior stakeholders, managing their expectations along the way using Agile Scrum and Lean methodologies. The Role: As part of the Cloud Platform Engineering team, you will be responsible for a large multi-project GCP environment that our internal application development teams rely on. You will assist with maintaining and developing cloud-based shared infrastructure services, while continually implementing service improvements. You will be engineering, architecting, designing and supporting capabilities including landing zone guardrails, network connectivity, CI/CD infrastructure, security, observability and service catalog offerings. Create tools for automating deployment, monitoring and operations of the overall platform Implement CI/CD pipelines to build the cloud platform, machine images and containers Implement resilience, availability, security, monitoring and alerting that is integrated into firm systems such as CMDB Automate system configuration and orchestration using DevOps tools & approaches, such as Terraform Cloud, GitHub, Jenkins, Artifactory, Harness, etc. QUALIFICATIONS: Must have 3-5 years of extensive hands-on experience with various industry standard SDLC and Cloud products including Github Enterprise, Terraform Cloud + Sentinel, Jira, Hashicorp Packer & Vault, Splunk, Prisma Cloud, Checkmarx, Snyk, Artifactory, New Relic, Jenkins, Harness.io and Azure Active Directory. Strong coding background a must in either python, Java, golang, Perl or Shell Scripting. Must have wide and deep experience coding in Terraform. Strong expertise in security, cloud networking and SDLC related technologies, eg PKI, TLS, DNS, Secrets Management, Ci/CD, RBAC, Remote Access, SSO/OAUTH and DevSecOps code scanning. Must have 5 years of experience designing, developing and maintaining application system integrations operating in varied complex application environments, with database technologies on Cloud/physical/virtual platforms Bachelor's Degree in computer science or related technical field 10+ years of experience. Preferable 7+ years in an enterprise-level infrastructure platform role with a strong understanding of concept pertaining to system availability, resiliency, security, and recoverability across Cloud, Linux, Windows and IaaS platforms like Kubernetes with Docker and running service mesh and API gateways. Experience in 1 of the primary public cloud providers is a must. Direct experience in GCP and AWS is preferable. Ability to thrive in a high energy, high growth, fast paced, entrepreneurial environment, learning new skills to implement new technologies Highly-collaborate team player who can build strong relationships at all levels of the technology and business organizations.

NO SPONSORSHIP SALARY: $178k - $180k flex plus 20% bonus Lead Penetration Tester - Applications App/Sec/Offensive Team LOCATION: Remote Looking for a very experienced high-end penetration tester AppSec/Offensive security architect/engineer prefer someone who came up through application development. Must also has experience in infrastructure and networking penetration testing and has leadership tech team lead must have great soft skills We are seeking an Information Security Senior to provide domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering! In this role, the candidate will provide improved vulnerability analysis and contextual feedback to stakeholders to support the resolution of discovered vulnerabilities and facilitate risk awareness. Penetration Testing and Red Team assessments Perform internal and external penetration testing of network infrastructure and applications Perform Red team assessments including physical, social engineering, and network exploitation Perform well controlled vulnerability exploitation/penetration testing on applications, network protocols, and databases Perform network reconnaissance, OSINT, social engineering, and physical security reviews This role provides domain expertise in Penetration testing of Infrastructure and Networks, Web Applications, Cloud and Social engineering, as well as Red Team and Purple Team internal engagements. Additionally, you will provide improved vulnerability analysis and contextual feedback to partners to support the resolution of discovered vulnerabilities and facilitate risk awareness. Qualifications : 8-10 years of experience in Penetration testing, Red Team and Purple Team Bachelor of Science in Engineering, Computer Science, Information Technology, or equivalent work experience Advanced knowledge in common penetration testing tools (Metasploit, Burp Suite, Cobalt Strike, Empire, KALI Linux etc.) Must have a demonstrable understanding of voice and data networks, major operating systems, Active Directory, cloud technologies Must demonstrate knowledge of MITRE's ATT&CK framework, execute and chain TTP's Must be able to critically examine an organization and system through the perspective of a threat actor and articulate risk in clear, precise terms. Ability to optimally code in a Scripting language (Python, Bash, PowerShell, Perl, etc.)

Senior MATILLION ETL DEVELOPER They are looking for 3 things: Heavy data engineer/analyst Somebody who interfaces heavily with users and stakeholders. There will be lots of validation work and they will have to be able to work with the stakeholders to validate things LOCATION: REMOTE Matillion is a data transformation tool will build custom solutions automate custom controls tests design implement AWS Redshift SQL Server Snowflake Big query Teradata or Azure Data warehouse PowerShell Python 7 years of rich experience in AWS cloud data and analytics space with solid understanding of Data warehousing product RedShift, ETL product Matillion and SQL and 3+years with other ETL/Data integration tools and other Databases will be preferred. 5+ years of experience in implementing cloud-based data lake/data warehouse technologies. Must have experience working with high-volume data and building batch and near Real Time ETL processes using AWS services such as Redshift, Matillion. Experience with Matillion ELT/ETL Experience with AWS Redshift and Redshift Spectrum, AWS EMR, PySpark, Glue and Matillion, Redshift Data warehouse experience Lead data migration and integration efforts Craft processes to ensure clean data Prior experience with ETL tools like SSIS/Informatica and Databases like Teradata, SQL server will be preferred. Experience working with RDBMSs, SQL Server, Redshift, Snowflake, BigQuery, Teradata or Azure SQL -Data Warehouse Experience using Powershell and Python. Prepare data for job runs. Support existing jobs. Solve, analyze and repair production issues. o Experience with S3 Object store and other Big Data storage platforms Deep understanding of data mapping, data validation, data manipulation, data analysis use cases and Provide observations of the system and suggest automated steps to full-fill the business operations and the requirements. 2+ years of experience with visualization tools (Power BI, Tableau or others) is an added advantage. AWS Certified Big Data Specialty certification is a plus.

Cyber Defense The Associate Principal, Cyber Defense will help plan actions and lead security professionals in the analysis and determination of threats to the enterprise, vulnerabilities in the environment, and how our company will best defend itself against these threats. This position will require initiative to oversee security initiatives and be expected to put together projects and teams to remediate identified security threats, incidents, and compliance issues. In addition, the position will enhance the process around monitoring third-party security-related feeds, websites, forums, and mailing lists for information regarding cyber threats, vulnerabilities, and exploits. The rile will be heavily involved in the documenting, delivery, and testing of regulatory compliance to all required security regulation as well as the reporting of high-level details and metrics to Senior management. Incident Management and Security Analysis Intelligence Analysis Security Monitoring & Analysis Qualifications : The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets. Proficient with Security related service and process assessments and evaluations based on NIST, COBIT, ISO and/or ITIL standards. Knowledge and experience implementing controls based on security regulation. eg NIST Cyber Security Framework Effective and excellent oral and written communication, analytical, judgment and consultation skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Proven experience in developing and providing threat and situational intelligence from a variety of internal and external sources. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong project management skills. Technical Skills: Implementation and maintenance of SIEM (Splunk, ArcSight, IBM QRadar, etc.) Vulnerability assessment tools (Qualys, Nessus, nmap, etc.) Incident Response playbook development managing incident analysis and remediation Network sniffers and packet tracing tools (DSS, NAI SnifferPro, Ethereal and tcpdump). Other Security preventative and detective technologies (EDR, network-based analysis, etc.) Encryption technologies (PGP, PKI and X.509) Standard technical writing tools including MS Word, Excel, Project and Visio Familiarity with: Directory services, LDAP, and their inherent security (Active Directory, CA Directory). Proxy and caching services. Client Server platforms including Sun Solaris, Windows, Linux. Operating system hardening procedures (Solaris, Linux, Windows, etc.) LAN/WAN routing and high availability (OSPF, BGP4/iBGP, EIGRP and NSRP). Web Application Firewalls. Cloud based security tools and techniques (AWS, Azure, GCP, etc.) Some experience: Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices Education and/or Experience: Bachelor's degree in Computer Science, Engineering, or another related field. Minimum six years of information security experience, preferably in the financial services industry. Minimum three years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response Minimum one year in a leadership role or team/project lead capacity. Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives. Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure. Industry knowledge of leading-edge security technologies and methods Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities Previous people/project management experience is a plus. Certificates or Licenses: Strongly prefer at least one of the following certifications: CISSP, GCIA, GCIH, CHFI, GCFA, CCE, CFE

NO SPONSORSHIP Security Red Team Looking for a candidate with network application penetration testing. Testing mobile device testing python, powershell, bash, database common penetration testing tools platforms Mainframe window unix linux. The Security Red Team Associate Principal's job is to increase the security posture against all threats that put organizational operations, assets or individuals at risk. The Security Red Team testers engage in targeted simulations consisting of threat intelligence gathering, network & application penetration testing, social engineering, physical security testing, mobile device testing, and more. Team members must ensure the availability and integrity of operational systems and self-disclose identified findings in a timely/proactive manner. The ideal candidate will have extensive experience in more than one of the following security testing domains: Open Source Intelligence, Network/Application, Web Application, Mobile Application, and Social Engineering. Experience testing database Servers as well as proficiency with custom Scripting and automation is a huge plus. This candidate must be driven, an excellent communicator, enthusiastic, a good mentor and have the desire to stay ahead of today's emerging threats and actor techniques. Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. Execute Red Team simulations based on organizationally defined threat scenarios with strict adherence to the agreed-upon rules of engagement. Conduct various Red Team activities such as: Intelligence Gathering, Network/Operating System/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Testing, Social Engineering, Basic Emissions/Signals Testing, Physical Security Testing, etc. Execute Open Source Intelligence Collection and Analysis Techniques (OSINT); leverage available resources and develop custom tools. Understand vulnerabilities and develop relevant exploits/payloads for use during Red Team activities. Perform security risk assessment, threat analysis and threat modelling. Perform independent reviews of security, network, and applications. Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends. Adhere to the best practices and work for delivering secured and quality products. Consult with technical experts and system owners on all aspects of Information Security and Compliance. Work closely with Production Support staff, Incidence Response, and IT infrastructure to increase organizational security posture. Support security objectives and remediation efforts relating to Security Testing. Supports and successfully completes Audits. Cross-train the other Security Red Team members. Cross-train other teams within Security Services and IT departments to provide subject matter knowledge of a specific adversarial threat/risk, or to assist with remediation path recommendations Participate in Lessons Learned process to provide information to help improve practices, methodologies, tools, and other technologies. Participate on various technical committees and provide input and feedback to department. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. High energy, results driven person with an attention to detail. Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Exceptional tactical planning skills based on long-term strategic goals. Exceptional verbal/written communication skills to be able to articulate ideas clearly and concisely. Excellent listening skills. Excellent focused domain areas of expertise as well as a good breadth of experience across Network/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing, Social Engineering and Open Source Intelligence, Basic Emissions Testing, Physical Security Testing, and more. Proven due diligence and research ability via open source avenues and technology. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and probe/exploit a diverse range of Network and Internet Protocols. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming language. Ability to facilitate meetings and conversations. Ability to work with business users, understand their needs and translate those needs to the final project deliverables. Nice to have experience working on critical infrastructure in a regulated environment Technical Skills: Strong proficiency in network, application, emissions and physical security. Strong proficiency in social engineering and intelligence gathering. Strong experience with custom Scripting (python, powershell, bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Armitage, Metasploit, Cobalt Strike, Nmap, Qualys, Nessus, Burp Suite, Wireshark, Recon-NG, Netsparker, Ettercap/Bettercap, Hashcat, Bloodhound, Ida Pro, Ghidra, Sublist3r, Rubeus, Mimikatz, CrackMapExec, Exploitdb, Yersinia, Impacket, etc.). Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Proficient in creating content with Microsoft Office (Word, Excel, PowerPoint, Visio). Proficient in basic document management in a Microsoft SharePoint environment. Experience with dedicated document management tools (eg, DMS, PolicyTech) a plus. Experience with using ServiceNow a plus. Education and/or Experience: BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university desired. 3+ Years' experience penetration testing. 5+ Years' experience in Information Assurance or Information Security environment.

NO SPONSORSHIP Linux Administration *Hybrid 2 days in office 3 days remote Looking for a candidate with 3 or more years Linux systems installation, operations, administration and maintenance of physical and virtualized Servers. linux Shell Scripting systems administrator operations support vmware environment aws large enterprise environment Responsibilities: Provide advanced system administration, operational support and problem resolution for a large complex Linux computing environment, including both virtualized and physical Servers Create and Patch AMIs, perform pull requests, write Automation code Perform Linux administration including changes, deletes, disk space management, application installation, and backup Use your infrastructure and networking knowledge to maintain cloud based infrastructure predominantly on AWS involving EC2, S3, RDS & VPC Use configuration management tools (primarily Ansible and Terraform) to build and maintain a hybrid infrastructure hosted both at colocation facilities and in the public cloud. Work directly with the development team to build supporting infrastructure for specific new application functionality. Run proof of concept projects on early stage infrastructure improvements to validate the feasibility of an approach, evaluate performance, and spike an implementation. Review and evaluate virtual and physical server performance and capacity Forecast system demands and recommends upgrades, expansions and reconfigurations Perform automated computing environment builds, site setup, user training, hardware/software installation, maintenance and support and documentation of operating procedures and processes Support VMware environment including changes, adding/removing systems, and disk space management. Troubleshoot hardware and software problems, takes appropriate corrective action and/or interact with IT staff or vendors in performing complex testing, support, server recovery, and troubleshooting functions. Assist with development and testing of changes needed to maintain DR environment Use change management process Comply with all audit, compliance, and regulatory requirements Technical Skills: Extensive knowledge of Linux operating systems, Linux shells and standard utilities, and common Linux security tools In depth system administration knowledge and skills for RedHat Linux. Knowledge of Amazon Linux is a plus. Experience with using Github or other version control tools for source code management Experience using configuration management tools such as Puppet, Chef, or Ansible and container tools such as Docker Ability to write and maintain automation code and scripts and IaaS/Infrastructure as code, such as Terraform Familiarity with DevOps activities and using CICD pipeline software to deploy code Working knowledge of cloud components and services in AWS or Azure. System administration experience and knowledge of VMware and administration of virtual Servers Grub, PXE boot, Kickstart Yum, rpms, Satellite server SVM, LVM, Boot from SAN, UFS/ZFS, filesystem configuration General working knowledge of NAS, SAN, and networking Experience with Github, Ansible, Jenkins and Terraform tools/applications Knowledge or experience with DevOps, OpenShift, AWS cloud, or other similar technologies is desirable Bachelor's degree  Three or more years' experience in Linux systems installation, operations, administration, and maintenance of physical and virtualized Servers

NO SPONSORSHIP Linux Administration *Hybrid 2 days in office 3 days remote Looking for a candidate with 3 or more years Linux systems installation, operations, administration and maintenance of physical and virtualized Servers. linux Shell Scripting systems administrator operations support vmware environment aws large enterprise environment Responsibilities: Provide advanced system administration, operational support and problem resolution for a large complex Linux computing environment, including both virtualized and physical Servers Create and Patch AMIs, perform pull requests, write Automation code Perform Linux administration including changes, deletes, disk space management, application installation, and backup Use your infrastructure and networking knowledge to maintain cloud based infrastructure predominantly on AWS involving EC2, S3, RDS & VPC Use configuration management tools (primarily Ansible and Terraform) to build and maintain a hybrid infrastructure hosted both at colocation facilities and in the public cloud. Work directly with the development team to build supporting infrastructure for specific new application functionality. Run proof of concept projects on early stage infrastructure improvements to validate the feasibility of an approach, evaluate performance, and spike an implementation. Review and evaluate virtual and physical server performance and capacity Forecast system demands and recommends upgrades, expansions and reconfigurations Perform automated computing environment builds, site setup, user training, hardware/software installation, maintenance and support and documentation of operating procedures and processes Support VMware environment including changes, adding/removing systems, and disk space management. Troubleshoot hardware and software problems, takes appropriate corrective action and/or interact with IT staff or vendors in performing complex testing, support, server recovery, and troubleshooting functions. Assist with development and testing of changes needed to maintain DR environment Use change management process Comply with all audit, compliance, and regulatory requirements Technical Skills: Extensive knowledge of Linux operating systems, Linux shells and standard utilities, and common Linux security tools In depth system administration knowledge and skills for RedHat Linux. Knowledge of Amazon Linux is a plus. Experience with using Github or other version control tools for source code management Experience using configuration management tools such as Puppet, Chef, or Ansible and container tools such as Docker Ability to write and maintain automation code and scripts and IaaS/Infrastructure as code, such as Terraform Familiarity with DevOps activities and using CICD pipeline software to deploy code Working knowledge of cloud components and services in AWS or Azure. System administration experience and knowledge of VMware and administration of virtual Servers Grub, PXE boot, Kickstart Yum, rpms, Satellite server SVM, LVM, Boot from SAN, UFS/ZFS, filesystem configuration General working knowledge of NAS, SAN, and networking Experience with Github, Ansible, Jenkins and Terraform tools/applications Knowledge or experience with DevOps, OpenShift, AWS cloud, or other similar technologies is desirable Bachelor's degree Three or more years' experience in Linux systems installation, operations, administration, and maintenance of physical and virtualized Servers

NO SPONSORSHIP Senior Identity Access Management Engineer - Okta OTHER LOCATIONS: CHICAGO, IL/Tulsa, OK/Medford, OR, Richland, WA/Urbandale, IA/Marion, IA/Columbia, MO/Waukesha, WI/Madiwon, WI/Knoxville, TN/Bedford, NH/Wilmington, NC/Morgantown, WV/Roanoke, VA/South Portland, ME/Greenville, Nc Looking for candidate with (okta) enterprise grade identity management. Provisioning role management enabling a single sign-on SSO experience for authentication and authorization to enterprise level This role will focus on building and implementing the Identity and Access Management Security Strategies at Company. This includes analysis, design and implementation of Identity and access management (IAM), roles-based access control (RBAC) strategies, on boarding new applications within standards, strengthening user access approval processes, simplifying user access provisioning processes and streamlining user access certification processes. This position is key to enabling a Single Sign On (SSO) experience for authentication and authorization to enterprise systems. Supports the delivery of provisioning process improvement in Role Based Access Controls. Enable Single Sign On integrations in multiple integration frameworks, examples include SAML, OAUTH, Open ID Troubleshoot application authentication issues for SSO infrastructure, LDAP and additional connected and related system issues. Collaborate with project teams and architecture to deliver on key initiatives. Participates in on-call responsibilities for critical highly available applications Conducts change control and device configuration management activities on all IAM technologies, including inspection or reviews of peer's changes, as well as implementation of changes and support of changes related to the IAM Platform. Align new and existing applications and systems to Company's IAM/RBAC framework Collaborate with the team and architecture on new platforms, IAM roadmap; assess security risks, and identity long-term strategy recommendations. Establish solid working relationships with compliancy teams, internal auditors and external auditors Establish long-term working relationships with technical resources and business partners Proactively identifies gaps, plans, implements, updates, maintains, monitors, and supports enterprise IAM Tools. Actively protects the availability, confidentiality, and integrity of customer, employee, and business identity. Contribute to the Risk Assessment Program including identifying and scoring risk Required Experience Bachelor's degree in related technical/business areas or equivalent work experience Minimum 7 years' experience implementing and improving user account provisioning, role provisioning and user access certification processes Minimum 5 years' experience with IAM/RBAC related projects with identity and access management products Strong infrastructure design and documentation skills Strong experience in analysing logs and identifying problems with authentication and authorization. Solid understanding of related identity management products, including certificate management, PIM, Multi-factor authentication strategies etc. Proven change management skills; proven change agent who consistently delivers results Highly flexible and able to adapt to change Strong verbal and written communication skills Strong organizational and interpersonal skills Strong team player with proven collaboration skills Strong critical thinking and problem-solving skills Technical Skills Experience with PingFederate enterprise federation server for user authentication and Single Sign-on Experience with Okta - enterprise-grade, identity management service Experience with federation services, including SAML, Reverse Proxy, OAUTH Experience with configuring Single-Sign-On authentication schemes across a variety of access management and federation solutions such as Micro-Focus (NetIQ) Access Manager, Ping, SiteMinder, SailPoint etc. Experience with Identity Management Infrastructure, LDAP and connected systems, including Micro-Focus (NetIQ) IDM and eDirectory.