9,906 Cybercrime jobs in the United States

• Job Title: Senior Information Security Analyst
• Location: Cary, NC (Hybrid - currently 2 days onsite per week due to construction; moving to 3 days onsite in the future)
• Employment Type: 6-Month Contract (W2 Only)
• Pay Rate: Up to $57/hour (W2 only, no C2C)

• Bachelor's degree in Computer Science, Information Technology, or related field .
• Several years of professional experience in Information Technology, Information Security, or IT Audit , preferably in the financial services industry .
• Strong familiarity with IS threat analysis frameworks (e.g., MITRE ATT&CK) and cybersecurity standards (e.g., NIST, OWASP, ISO27001).
• Knowledge of the regulatory environment in the financial sector (e.g., KAIT, BAIT, ESMA cloud guidelines).
• Excellent communication and stakeholder management skills, with the ability to interact across all organizational levels.
• Experience working in global, diverse teams across different time zones and within a matrix structure.
• Professional certifications highly preferred: CISA, CISSP, CCSP, OSCP or equivalent.

Role : Information Security Analyst
Location: Baton Rouge, Louisiana (Onsite)
Duration: Longterm

The scope of the proposed services will include the following:
1. Managing InfoSec Identity Management requests through the OTS Ivanti ticketing system
2. Active Directory

This position is located in the city of Sacramento .

Under the general direction of the Information Technology Manager I, Information Security Office (ISO) in the Information Technology Services Division (ITSD), the Information Technology Specialist I performs duties in support of the Department of Rehabilitation's (DOR) Information Security and Privacy Programs. In this capacity, the incumbent acts as a lead on complex information security and privacy activities, works independently as a technical specialist, and is part of a team that develops and maintains the Department's ISO and Privacy policies and procedures. Maintains and conducts security awareness training and risk assessments. Responds to and investigates security and privacy incidents that threaten the confidentiality, integrity, and availability of DOR's information assets. This position requires strong organizational skills, knowledge of State and Federal security requirements, experience performing risk analysis and management, ability to identify and respond to threats, and the ability to investigate security and privacy incidents. The incumbent must possess strong written and verbal communication skills and knowledge of State and departmental administrative processes.

Under Government Code 14200, this position is a hybrid, in-office/telework position, and may be subject to change. Incumbent must live and work in California. Incumbent can be required to report to the office, or any designated location at any time. Telework agreements can be modified and/or cancelled at any time.

Multiple vacancies may exist .

Essential Functions
Security Incidents: Investigate, report, and resolve information security incidents, including: investigate, contain, and mitigate incidents; coordinate with stakeholders when incidents occur; maintain consistency with response plans; and report events using established criteria. Communicate recovery activities to internal stakeholders, executive staff, and management teams, while ensuring the impact of the incident is understood. Incorporate lessons learned and update strategies, as needed. Develop, maintain, and periodically test department response plans (Incident Response and Business Continuity) and recovery plans (Incident Recovery, Technology recovery plan and Disaster Recovery).

Audits and Analyses: Protect DOR's network assets by researching emerging threats, reviewing firewall log files, intrusion detection and prevention logs, and system event logs. Manage the department security information event management system (SIEM) by triaging alerts, performing threat hunts, configuring detection rules, and documenting procedures. Perform network vulnerability assessments and routine audits of hardware and software to identify security gaps and risks. Establish and manage a baseline of network operations and expected data flows for users and systems to support in the detection of security incidents. Establish incident alert thresholds to detect and analyze events to better understand attack targets, methods, and impact of those events. Monitor the network's physical environment, personnel activity, and external service provider activity to detect potential cybersecurity events, including identification of unauthorized individuals, connections, devices, and software. Maintain detection processes and procedures by verifying adequate identification of anomalous events. Review and respond to advisory notifications from the Multi-State Information Sharing and Analysis Center, including other security organizations, and determine appropriate action.

Security Policy, Standards and Procedures: In collaboration with the ISO, develop and maintain DOR information security and privacy policy, ensuring security and privacy roles and responsibilities are identified, coordinated, and aligned with internal roles and external partners. Support the Risk Manager in maintaining the department risk management program by gathering information from business units, creating reports, and enforcing security controls. Ensure legal and regulatory requirements regarding cybersecurity, including privacy and civil liberties obligations, are understood and managed. Enforce a minimum level of security across the organization via a baseline configuration of IT/industrial control systems. Verify all users, including privileged users, third-party stakeholders (e.g., suppliers, customers, and partners), senior executives, and physical and information security personnel understand their role and responsibilities. Provide input and deliver information security training to departmental staff.

You will find additional information about the job in the Duty Statement .

Minimum Requirements You will find the Minimum Requirements in the Class Specification.

• INFORMATION TECHNOLOGY SPECIALIST I

• Job Application Package Checklist
• Duty Statement

• We believe in the talent and potential of individuals with disabilities.
• We invest in the future through creativity, ingenuity, and innovation.
• We ensure our decisions and actions are informed by interested individuals and groups.
• We pursue excellence through continuous improvement.
• We preserve the public's trust through compassionate and responsible provision of services.

• Do not submit any document(s) with your social security number on it
• Do not submit your exam result(s) along with your application.
• Do not submit the "Equal Employment Opportunity" questionnaire (page 5) with your completed application. This page is for examination use only.

Information Security Analyst

Country: United States of America

Your Journey Starts Here:

Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed to creating an environment where continuous learning and development are prioritized, enabling you to thrive both professionally and personally. Here, you will find ample opportunities to connect and collaborate with talented colleagues from around the world, sharing insights and driving innovation together. Join us at Santander, where you are supported by a culture of engagement and a commitment to your success.

An exciting journey awaits, if you are interested in exploring the possibilities We Want to Talk to You!

The Difference You Make :

The Sr. Specialist, Information Security develops and implements information security standards and procedures. Provides tactical information security advice and examining the ramifications of new technologies. Ensures that all information systems are functional and secure. Plans, implements, upgrades, or monitors security measures for the protection of computer networks and information. In addition, the incumbent ensures security controls are in place that will safeguard digital files and vital electronic infrastructure. They may respond to computer security breaches and viruses.

• Work closely with the New York Information Security and Santander US Identity and Access Services teams, and Business Owners to address any New York related IAM, PAM and Single Sign On (SSO) related issues including related regulatory requirements to mature the information security program.

• The submission, approval, creation, and removal of accounts, entitlements, application roles, and business roles follows documented processes and procedures with clearly defined roles and responsibilities.

• User Active Directory accounts unused for the previous 90 calendar days are reviewed for inactivity and, if confirmed to be inactive, disabled or removed.

• All certified access rights are documented and current. Technology Platform Owners identifies users whose access rights violate the Separation of Duty ("SoD") rules and are reviewed with managers/supervisors. Any exceptions are documented, risk-assessed, and formally approved within 30 business days of the management review.

• The recertification process is performed as a formal review of information assets to confirm that all granted access rights entitlements remain valid, updated, and in full compliance with the Segregation of Duties (SoD) rules and Principle of Least Privilege.

• All assets are onboarded to the Privileged Access Management System (PAMS) such as CyberArk and a process is defined to periodically review and recertify the accounts including groups they belong to.

• Perform risk assessments and control gap analysis against Information Security Policies and Standards.

• Support coordination for closure of gaps identified with Standard Requirements and Cyber Risk Assessment methodology.

• Analysis, evidence gathering and documenting compliance with Federal Financial Institutions Examination Council (FFIEC) Cybersecurity Assessment Tool (CAT), NYDFS 23 NYCRR 500 cybersecurity or any other regulatory requirements.

What You Bring :

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Bachelor's Degree or equivalent work experience: Computer Science, Engineering or Information Technology Management, or equivalent field.

3+ Years Experience in information security, governance, IT audit, or risk management.

• Experience in information security, identity and access management, privileged access management, Single Sign On, Azure Active Directory integration, Cloud Framework, IT audit, or information technology risk management

• Knowledge of risk assessments and compliance of major regulatory initiatives (e.g., SOX, NYDFS)

• Knowledge with cyber security and information security program management and frameworks (e.g., NIST CSF, ISO/IEC 27000, etc.)

• Possess the ability to perform under pressure in a challenging environment.

• A hunger to learn and take on challenging opportunities contributing to the success of information security team.

• Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple tasks and projects.

• Proven ability to work in team environment.

• Must take ownership, demonstrate a sense of urgency, and ensure accuracy and quality.

• Bilingual in Spanish is a plus.

It Would Be Nice For You To Have :

Established work history or equivalent demonstrated through a combination of work experience, training, military service, or education.

What Else You Need To Know :

The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.

Base Pay Range

Minimum:

$63,750.00 USD

Maximum:

$105,000.00 USD

Link to Santander Benefits:

Santander Benefits - 2025 Santander OnGoing/NH eGuide (foleon.com) (

Risk Culture:

We embrace a strong risk culture and all of our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

EEO Statement:

At Santander, we value and respect differences in our workforce. We actively encourage everyone to apply. Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.

Working Conditions :

Frequent minimal physical effort such as sitting, standing and walking is required for this role. Depending on location, occasional moving and lifting light equipment and/or furniture may be required.

Employer Rights:

This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate your employment at any time for any reason.

What To Do Next :

If this sounds like a role you are interested in, then please apply.

We are committed to providing an inclusive and accessible application process for all candidates. If you require any assistance or accommodation due to a disability or any other reason, please contact us at to discuss your needs.

Primary Location: New York, NY, Liberty Street

Other Locations: New York-New York

Organization: Banco Santander S.A.

AN EQUAL OPPORTUNITY EMPLOYER M/F/Vet/Disabled/SO

Abacus Technology is seeking an Information Security Analyst to support security and information assurance activities for Hanscom AFB. This is a full-time position.

Support Host Based Security System (HBSS).
• Implement software patches and security fixes when it cannot be done using enterprise MECM.
• Conduct troubleshooting and repairs over the phone, Teams, remotely utilizing Dameware, and desk-side.
• Deliver quality timely customer service while also meeting contract threshold metrics for phone and ticket resolutions.
• Periodically review processes, procedures, and client configurations for completeness, effectiveness and compliance with information assurance polices and DISA STIGs.
• Analyze ACAS vulnerability scan reports, deploy software upgrades and patches to mitigate identified vulnerabilities.
• Use expertise with tools such as PowerShell and Windows Scripting to repackage software applications, operating systems, and patches for deployment to workstations.

3+ years experience in information security. Bachelor's degree in a related field. Additional years of experience may be substituted for degree requirements. Must be Security+ CE certified. Strong knowledge of Windows Desktop Operating Systems (Windows 10/11). Working knowledge of Microsoft Active Directory. General knowledge of HBSS, ACAS, and ARAD. Knowledge of PowerShell and the ability to write custom scripts. Experience with a trouble ticket system such as Remedy or ServiceNow. Working knowledge of Microsoft Office Products (O365/2016), Teams, Outlook and Excel. Able to resolve issues quickly and efficiently to comply with metric requirements. Proficient with computer, network, and server hardware. Must have strong customer service and communication skills. Able to work in a team environment and interact with all levels of an organization in a professional manner. Keen attention to detail. Must be a US citizen and hold a current Secret clearance.

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

EOE/M/F/Vet/Disabled

Job Type: The position is based in-person and requires travel to all Mindful Support Services office locations, including occasional out-of-state business trips. The position also requires off-site travel as needed to support with job requirements such as projects, equipment/supply needs, and repairs.   

Salary: 78,000-82,000 per year with opportunity for advancement with tenure and performance.

About Mindful Support Services   

We are a business to business support service for independent mental healthcare practitioners which helps providers service a growing client base. We provide administrative and organizational services to simplify the processes of sourcing leads, marketing, billing and collecting payments from patients and insurers. We have grown to support over 2,000 mental healthcare providers since we opened in 2011. 

We have built the Mindful Therapy Group brand from the ground up with years of dedication to solving the complex processes of the healthcare landscape in innovative ways, creating a platform geared toward growth, and working to meet our mission of creating improved access to high quality mental healthcare.  

About the Role  

The Information Security Analyst will work directly with the Information Security Manager to improve Mindful Therapy Group's internal security and IT infrastructure. This role is expected to have experience and understanding of defensive (blue team) security best practices, with the ability to immediately perform audits and investigations for potential security threats. Additionally, this role is expected to execute large, complex projects with guidance from the Information Security Manager.  

The Information Security will also work together with the greater Operations team to be an important member for escalated security and technology support requests. This role will regularly collaborate on internal, cross-department projects and will work with external vendors. This is a full-time position that is fast paced with ample opportunities to learn and grow.   

Work Environment  

The position is based in-person and requires travel to all Mindful Support Services office locations, including occasional out-of-state business trips. The position also requires off-site travel as needed to support with job requirements such as projects, equipment/supply needs, and repairs.   

The responsibilities described are not intended to be a comprehensive list of requirements for this job. Responsibilities, duties, and activities may change at any time with or without notice.   

Requirements

Responsibilities:  

• Audit systems, networks, and security logs during incidents and outages to remediate and determine root cause. 

• Integrate logging from existing infrastructure and SaaS solutions to a centralized SIEM. 

• Develop scripts and automations to streamline the detection and alerting of incidents and outages. 

• Provide tier 2/3 technical support for troubleshooting and issue resolution. 

• Drive security and infrastructure projects including creating project plans, drafting communications, and consulting with internal stakeholders. 

• Collaborate with external vendors on technology and security initiatives.  

• Provide recommendations to the Information Security Manager on improvements or when identifying gaps on internal security practices. 

• Update and maintain security controls in cloud admin portals such as Azure, M365, Google Cloud Platform, etc. 

• Draft updated security policies, procedures, guidelines, and training courses in collaboration with Information Security Manager. 

• Draft recaps for information security incidents.  

• Perform annual security compliance audits for CIS benchmarks and HIPPA compliance. 

• Complete application security reviews for new software solutions and application requests from employees.  

• Perform updates to on-prem and cloud systems and networks. 

Core Competencies 

• Strong understanding of “blue team” security concepts and practices such as log analysis, executing audits, compliance, and risk assessments. 

• Proficiency with SIEMs, networking, and servers on prem and in the cloud. Working experience with CrowdStrike is a plus. 

• Familiarity with scripting or coding with the ability to write simple automations and perform API calls in at least 1 language. Specifically, PowerShell, Bash, Golang, C#, or Python are a plus. 

• Basic understanding of cloud architecture such as Azure, AWS, or GCP. Azure specifically is a plus.  

• Ability to independently investigate, learn, and solve technical issues without direct supervision. 

• Professional and concise verbal and written communication skills with the ability to adjust based on the target audience (e.g. customers, internal staff, business partners, and external vendors). 

• Familiar with HIPPA compliance and other compliance frameworks (i.e. ISO, NIST, CIS, etc.). 

• Ability to collaborate effectively and tactfully within diverse teams and with stakeholders. 

• Experience with Apple and Microsoft ecosystems. 

Minimum Requirements 

• 2 years of experience in defensive security such as a blue team or security operations center (SOC). 

• 4 total years of technology experience or a bachelor’s degree in IT Security or an equivalent combination of certifications. Security+, SSCP, CISSP, or other cybersecurity certifications are a plus. 

• Ability to work outside standard business hours to respond to critical security incidents and to execute changes that cannot be deployed during working hours. 

• Personal electronic device (i.e. smartphone) to receive and respond to urgent security alerts. 

• Ability to participate in an on-call rotation and carry/answer a work phone per the on-call schedule. 

• Personal vehicle to travel between worksites. 

• Capable of lifting 50 lbs. 

Benefits

Compensation and Benefits

• 75% coverage of Health, Dental & Vision benefits plan
• 401(k) savings plan with employer matching upon eligibility
• 8 paid holidays a year
• 15 PTO days accrued in first year
• Professional and career development opportunities
• Compensation evaluated consistently and opportunities for growth

Job Type: Full-time
Salary: 78,000-82,000 per year with opportunity for advancement with tenure and performance.

We are an equal opportunity employer with a progressive workplace based on teamwork, integrity, and customer service. We are committed to cultivating the long-term professional potential of our team. Applicants from all fields are encouraged to apply. Background check required. Come join a strong team making an impact in the service world of mental health!

It is a conflict of interest for an employee of Mindful Support Services to be a current client of Mindful Therapy Group. We request that individuals who are receiving clinical services at Mindful Therapy Group wait until their care is discontinued before beginning employment.

Join Fortinet, a cybersecurity pioneer with over two decades of excellence, as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet, our mission is to safeguard people, devices, and data everywhere. We are currently seeking a dynamic SOC Analyst to contribute to the success of our rapidly growing business.

You would act as a SOC Analyst for global Security Operations Center (SOC) team at our Sunnyvale HQ office. This highly technical role requires continuous security event monitoring, threat identification, risk assessment, incident response, and collaboration with regional leaders to advance Fortinet's security posture and compliance. As part of a 24x7x365 "follow the sun" SOC model, this role involves working five days per week (40 hours), which may include weekend shifts as part of the standard workweek.

As an SOC Analyst, your responsibilities will include:

• Actively monitor and analyze security events, alerts, and logs using SIEM, SOAR, EDR, DLP, Threat Intelligence and Cloud Security platforms.
• Investigate incidents to mitigate risks. Define and refine SOC automation workflows, including playbooks, alerts, reports, and dashboards, to improve threat detection and incident response.
• Analyze security logs to identify anomalies, policy violations, or potential attacks, and take appropriate action based on procedures.
• Provide support and guidance to system administrators, developers, and end-users on security best practices and control implementation.
• Contribute to the maintenance and enforcement of security policies, standards and procedures to ensure compliance.

We are looking for:

• Experience : Minimum of 5 years of hands-on experience in Information Technology, cybersecurity, or working in a Security Operations Center (SOC) or Network Operations Center (NOC).
• Technical Skills :
  
  • Solid understanding of the threat landscape, attacker tactics (e.g., phishing, malware, APTs, DoS attacks), and defensive strategies.
  • Proficiency in at least one scripting language (e.g., Python preferred).
  • Skilled in security technologies such as SIEM, SOAR, EDR, ID/IPS, access control, vulnerability management, cloud security, and External Attack Surface Management (EASM).
  • Experience with cloud security concepts, tools, and best practices across platforms like AWS, Azure, or GCP.
  
  
• Soft Skills :
  
  • Exceptional written, verbal, and interpersonal communication skills, with strong attention to detail.
  • Proven ability to collaborate across teams and foster a customer-focused and security-aware culture.
  
  

Educational & Certification Requirements:

• Education : Bachelor's degree in Computer Science, Information Security, or a related field.
• Certifications : Preferred certifications: CISSP, CCSP, CISA, CISM, CRISC, CCNA, GIAC GCFE, GCFA, GCIH.

About Our Team:

Join our team, known for its collaborative ethos, working seamlessly with global customers, internal engineering teams and product development groups. Our team culture emphasizes continuous learning, innovation, and a strong commitment to customer satisfaction. We embrace Fortinet's core values of openness, teamwork and innovation, fostering an environment where team members support each other, share knowledge, and leverage AI to solve complex technical challenges. Our inclusive and dynamic team thrives on collaboration and is driven by the shared goal of maintaining Fortinet's high standards of excellence in cybersecurity solutions.

Why Join Us:

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being.

Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

The US base salary range for this full-time position is $160,000-$180,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program.

Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.

All roles are eligible to participate in the Fortinet equity program, Bonus eligibility is reviewed at time of hire and annually at the Company's discretion.

#GD

• Self-starter who is proactive and entrepreneurial
• Organized, detail-oriented, and process-oriented
• Cross-functional team player, resourceful, and responsive
• Excellent analytical, critical thinking, communication, and problem-solving skills

• Identify security threats by monitoring and correlating events originating from security tooling and event logs
• Apply and maintain standardized procedures to investigate and resolve potential security incidents
• Tune security tooling as required to optimize and enhance the information available for analyzing potential security events
• Identify and track security metrics related to environment and industry trends to create a normalized view of expected network behavior and to detect anomalies
• Assist in running the IEX vulnerability management program as well as identify vulnerabilities that may exist in the environment through available sources and assessments
• Identify and lead projects that further advance IEX's ability to detect, contain, and eradicate threats
• Review threat intelligence sources for items that are relevant to IEX and investigate those that are applicable
• Perform security and risk assessments of third-party tools, vendors, and systems
• Work within the information security analyst team to perform and optimize operations and compliance oversight processes to confirm adherence to policy requirements

• 3-5+ years of experience in an Information Security Analyst role, or equivalent
• B.S./B.A. in Information Technology, Information Security, Computer Science, or a related field
• Strong passion for and background in cybersecurity/information security, or related field experience
• Deep understanding of threats, vulnerabilities, attack methodologies, and countermeasures
• Strong experience with reviewing event logs, syslog, and using SIEM technologies
• Familiarity with NIST standards and the MITRE ATT&CK Framework
• Experience with security tooling, applications, platforms
• SOAR
• Threat Intelligence
• SIEM
• Vulnerability Management Solutions
• AD/Entra ID
• EDR
• CSPM
• Experience with Microsoft Excel

• Project management experience
• Technical understanding of networking, operating systems, cloud platforms and related security technologies
• Scripting experience (e.g., Python, Ruby, BASH, PowerShell) preferred
• Relevant certifications (e.g., SSCP, GCIH, GCIA, GCFA, CISSP) a strong plus