107 Cybersecurity Experts jobs in White Plains

About the job Cybersecurity Network Engineer

Position Requirements

• Bachelor's or advanced degree in Computer Science, Engineering, or equivalent in related field experience
• 5 years plus hands-on technology experience with focus on Information Security
• 10+ years of experience in Windows-centric applications and technologies, including:
• Scripting, OS management tools, and ad-hoc reporting
• Core OS security
• Active Directory
• Certificates and cryptography
• SMTP and SIP messaging
• HTTP applications
• Relational databases
• Experience in security policy development, vulnerability assessment, and compliance testing
• Hands-on experience with Firewall, IDS/IPS, SIEM, Authentication, and web filtering solutions
• Industry certifications: CISSP, GIAC, CISA, SANS GCFA, GCED, GMON, and Splunk certifications are a plus

Qualifications & Skills

• Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations
• Strong decision-making capabilities, weighing the relative costs and benefits of potential actions
• An ability to collaborate with others to understand and influence their opinions, plans, or behaviors
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• An understanding of organizational mission, values, and goals and consistent application of this knowledge
• Self-directed knowledge gathering from a combination of public and internal sources - able to answer questions that haven't been asked before
• Solid understanding of IP networking fundamentals, including LAN/WAN design theory including static and dynamic routing protocols, NAT, ACLs, etc.
• Solid understanding of information security principles and best practices, particularly NIST
• Hands-on configuration capabilities with Cisco, Fortinet, AWS, and Azure systems
• Hands-on configuration and knowledge of design and implementation concepts of firewall, VPN, IDS, and other security technologies
• Microsoft Server and Desktop Operating Systems, Active Directory, Exchange, Office 365
• Working knowledge of LINUX
• Ability to work independently as well as interactively with other team members
• Monitor and advise information security issues related to systems and workflow to ensure internal security controls are appropriate and operating as intended
• Prepare responses, or assist with responses, to client RFP's, and information security assessments

• Coordinates resolution of security vulnerabilities
• Assist with user security awareness
• Assist with vulnerability testing, compliance audits, and security assessments
• Participate in resolution of security incidents
• Conduct project management and team leadership, time and budget management
• Interact directly and effectively with clients
• Possess excellent verbal and written communication and interpersonal skills
• Demonstrate command of the NIST Cybersecurity Framework

About the job Cybersecurity Network Engineer

Position Requirements

• Bachelor's or advanced degree in Computer Science, Engineering, or equivalent in related field experience
• 5 years plus hands-on technology experience with focus on Information Security
• 10+ years of experience in Windows-centric applications and technologies, including:
• Scripting, OS management tools, and ad-hoc reporting
• Core OS security
• Active Directory
• Certificates and cryptography
• SMTP and SIP messaging
• HTTP applications
• Relational databases
• Experience in security policy development, vulnerability assessment, and compliance testing
• Hands-on experience with Firewall, IDS/IPS, SIEM, Authentication, and web filtering solutions
• Industry certifications: CISSP, GIAC, CISA, SANS GCFA, GCED, GMON, and Splunk certifications are a plus

Qualifications & Skills

• Ability to react quickly, decisively, and deliberately in high-stress, high-impact situations
• Strong decision-making capabilities, weighing the relative costs and benefits of potential actions
• An ability to collaborate with others to understand and influence their opinions, plans, or behaviors
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• An understanding of organizational mission, values, and goals and consistent application of this knowledge
• Self-directed knowledge gathering from a combination of public and internal sources - able to answer questions that haven't been asked before
• Solid understanding of IP networking fundamentals, including LAN/WAN design theory including static and dynamic routing protocols, NAT, ACLs, etc.
• Solid understanding of information security principles and best practices, particularly NIST
• Hands-on configuration capabilities with Cisco, Fortinet, AWS, and Azure systems
• Hands-on configuration and knowledge of design and implementation concepts of firewall, VPN, IDS, and other security technologies
• Microsoft Server and Desktop Operating Systems, Active Directory, Exchange, Office 365
• Working knowledge of LINUX
• Ability to work independently as well as interactively with other team members
• Monitor and advise information security issues related to systems and workflow to ensure internal security controls are appropriate and operating as intended
• Prepare responses, or assist with responses, to client RFP's, and information security assessments

• Coordinates resolution of security vulnerabilities
• Assist with user security awareness
• Assist with vulnerability testing, compliance audits, and security assessments
• Participate in resolution of security incidents
• Conduct project management and team leadership, time and budget management
• Interact directly and effectively with clients
• Possess excellent verbal and written communication and interpersonal skills
• Demonstrate command of the NIST Cybersecurity Framework

Director of Cybersecurity

Hybrid | Montvale, NJ or Ogden, UT
Full-Time | Leadership Role
$150,000 - $80,000 base + performance bonus + full benefits
Relocation assistance available

About the Opportunity

HireNow Staffing is seeking a strategic, hands-on Director of Cybersecurity to lead a fast-moving information security program for a high-growth, technology-forward organization. In this key leadership position, you'll own the architecture, culture, and evolution of cybersecurity across the enterprise from frontline threat detection to executive-level risk planning.

This role goes far beyond compliance and checklists. We're looking for a forward-thinking leader who thrives in complex, high-stakes environments and who understands the delicate balance between risk mitigation and business agility. Youll lead a high-performing team and have the freedom to innovate across both infrastructure and policy.

What You'll Be Doing

• Leadership & Strategy

  • Build, mentor, and guide a multidisciplinary cybersecurity team with offensive (red), defensive (blue), and hybrid (purple) capabilities

  • Serve as a thought leader and advisor to senior leadership on emerging threats, security investments, and long-term protection strategy

• Operations & Threat Management

  • Oversee the deployment and optimization of security tools such as SIEMs, endpoint detection platforms, firewalls, and intrusion prevention systems

  • Lead incident response efforts, forensic investigations, and post-event reviews

  • Stay ahead of CVEs, threat intelligence feeds, and risk trends prioritizing action and remediation before issues escalate

• Red, Blue, and Purple Team Management

  • Own and manage proactive adversarial testing, live attack simulations, and controls validation

  • Drive cross-functional security drills to assess internal readiness and team agility

• Policy & Compliance Oversight

  • Develop and continuously update the organization's security governance framework

  • Ensure compliance with relevant standards and regulations (e.g., NIST, ISO 27001, SOC 2)

  • Support audits and guide internal departments through cybersecurity due diligence

• Executive Communication & Business Alignment

  • Translate complex security risks into clear, actionable insights for executive leadership

  • Partner across IT, Product, Engineering, Legal, and Operations to ensure security is embedded into every aspect of the business

Who Were Looking For

You're more than just a technologist you're a mission-driven builder, educator, and decision-maker who can see the entire threat landscape and act decisively. You're not afraid to get your hands dirty, but you also know how to delegate, motivate, and lead through vision and clarity.

Must-Have Qualifications

• 6+ years of progressive cybersecurity experience, ideally within fast-moving industries like tech, SaaS, fintech, or advanced manufacturing

• Demonstrated experience managing a cybersecurity team or leading cross-functional security operations

• Practical experience with red, blue, and/or purple team initiatives

• Hands-on penetration testing and vulnerability assessment skills

• Familiarity with frameworks like NIST, MITRE ATT&CK, CIS Controls , etc.

• Bachelor's or master's degree in Cybersecurity, Computer Science, or a related technical field

• Industry certifications strongly preferred: CISSP, CISM, CEH, OSCP, GCIH

Bonus Points For:

• Experience navigating cybersecurity in a multi-cloud or hybrid cloud environment

• Knowledge of secure software development lifecycle (SSDLC) practices

• Previous startup or hypergrowth company experience

• Strong presence in cybersecurity communities or speaking engagements

Why This Role Matters

This is more than a job title it's a seat at the table where decisions get made and progress happens. You'll shape a company's cyber-DNA and build a security-first culture that grows with the business. The company is committed to investing in the right leader someone who brings the experience, energy, and precision that modern digital environments demand.

Compensation & Benefits

• Base salary range: 150,000 - 180,000 , depending on experience

• Performance-based bonus structure

• Full health benefits : Medical, dental, vision

• 401(k) with match

• Paid time off + paid holidays

• Relocation supports available

• Flexible hybrid schedule (in-office expectation: Montvale, NJ or Ogden, UT)

If you're ready to take ownership of cybersecurity in an organization that values innovation and accountability lets connect. Apply now through HireNow Staffing with your resume and brief leadership summary.

Location: Anywhere in Country
At EY, we're all in to shape your future with confidence.
We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Cybersecurity & Privacy - Cybersecurity Engineering Operational Technology - Senior - Technology Consulting
In a rapidly changing OT environment, clients from all industries look to us for trusted solutions for their increasingly complex risks and vulnerabilities. As a part of our Cybersecurity team, you'll be right at the heart of that goal, helping clients gain insight and context to their complex operational environments and assessing, designing, and building infrastructure, processes and policies to meet the client's OT cybersecurity needs. You'll get to use your technical and business skills to help us drive this mission and have an impact on cybersecurity at a global level.
The opportunity
Join our dynamic team as a Senior Cybersecurity Engineer, where you will play a pivotal role in designing, developing, and managing cutting-edge cybersecurity solutions. Your expertise will be crucial in protecting sensitive data and ensuring our organization's resilience against external threats and breaches. Embrace the challenge of advancing our cybersecurity processes and safeguarding our digital future. You will be responsible for leading projects or elements of multiple client engagements including service delivery, business development, and related activities. You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world.
Your key responsibilities
As a Senior Cybersecurity Engineer, you will be at the forefront of delivering innovative cybersecurity activities, utilizing your judgment and methodologies to formulate effective recommendations and assisting our clients in aligning security management strategy with business goals. You will navigate through complex challenges, ensuring the success of our projects while coordinating with junior team members to achieve collective goals. With a focus on OT cybersecurity and network security, you will serve in a key role of leading technical discussions, guiding the development of strategic and tactical security architecture efforts, designing and driving implementations to completion, and function overall as a technical security leader for traditional solutions and evolving risk-based security architectures. Your responsibilities will include:
+ Leading the design and execution of cybersecurity deliverables
+ Proactively participating in client sessions and potentially leading workstreams
+ Assisting in identifying service opportunities and contributing to RFPs
+ Monitoring project statuses, resource plans, and budgets
Skills and attributes for success
To thrive in this role, you will need a strong foundation in both technical and business skills, with the ability to drive outcomes and communicate effectively with clients. Your success will be built upon:
+ Knowledge of the current security environment and industry trends to identify engagement and client service issues
+ Effective communication of information to the engagement team and client management through written correspondence and verbal presentations
+ Cross segment experienced in delivering solutions
+ O&G, P&U, Pharma, Manufacturing, BMS, Water WW, Pulp and Paper, Mining, etc
+ Team Leaders- lead cross segment, cross competency teams
+ Client advocates with genuine experience in the OT/IoT market
+ Knowledge of good industry practice in tiered security architecture design
+ Work closely with engagement manager to co-lead and own multiple parts of the engagement delivery
+ Ability to consistently deliver quality client services by driving high-quality work products within expected timeframes and on budget
+ Ability to document reference architectures, network schematics, blueprints, patterns, and other types of architectural documentation
+ A deep understanding of cybersecurity and privacy principles
+ Proficiency in system administration and threat hunting
+ Strategic problem-solving and critical thinking abilities
To qualify for the role, you must have
+ A Bachelor's degree in a relevant field and at least 2 to 4 years of relevant professional experience
+ Proficiency in change management
+ Coding skills and technical writing expertise
+ Client communication and digital fluency
+ Operational industry experience in the field/plant
+ Working knowledge of NIST CSF and its application in OT environments
+ Have performed an OT Cybersecurity assessment utilizing an industry accepted standard
+ Firewall review experience and knowledge of industrial centric protocols
+ General network security experience and working knowledge of white listing, AV, IDS/IPS, firewalls, SIEM, etc.
+ Experience in process definition, workflow design, and/or and process mapping
+ A valid driver's license in the US and a valid passport required; willingness and ability to travel internationally and a willingness to travel; travel is estimated at 40-60%
Ideally, you'll also have
+ A proven track record of delivering high-quality cybersecurity solutions
+ The ability to mentor and guide junior team members
+ A commitment to continuous professional development
+ Strong presentation and communication skills
+ Relevant security certifications (e.g., CISSP, CISM. GICSP)
+ Program management experience
+ Intimate knowledge of a relevant OT Cyber Framework such as NIST 800-82 or ISA62443
What we look for
We seek top performers with a passion for cybersecurity and a dedication to excellence. Ideal candidates are those who exhibit a blend of technical prowess and strategic business acumen, with the ability to navigate complex challenges and drive meaningful outcomes. We value individuals who are eager to learn, collaborate, and contribute to the success of our team and clients.
**What we offer you**
At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more .
+ We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $103,800 to $90,300. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is 124,600 to 216,300. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
+ Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year.
+ Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
**Are you ready to shape your future with confidence? Apply today.**
EY accepts applications for this position on an on-going basis.
For those living in California, please click here for additional information.
EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities.
**EY | Building a better working world**
EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.
Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.
EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law?
EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at .

Location: Anywhere in Country
At EY, we're all in to shape your future with confidence.
We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world.
Cybersecurity & Privacy - Cybersecurity Engineering Operational Technology - Senior - Technology Consulting
In a rapidly changing OT environment, clients from all industries look to us for trusted solutions for their increasingly complex risks and vulnerabilities. As a part of our Cybersecurity team, you'll be right at the heart of that goal, helping clients gain insight and context to their complex operational environments and assessing, designing, and building infrastructure, processes and policies to meet the client's OT cybersecurity needs. You'll get to use your technical and business skills to help us drive this mission and have an impact on cybersecurity at a global level.
The opportunity
Join our dynamic team as a Senior Cybersecurity Engineer, where you will play a pivotal role in designing, developing, and managing cutting-edge cybersecurity solutions. Your expertise will be crucial in protecting sensitive data and ensuring our organization's resilience against external threats and breaches. Embrace the challenge of advancing our cybersecurity processes and safeguarding our digital future. You will be responsible for leading projects or elements of multiple client engagements including service delivery, business development, and related activities. You'll work alongside respected industry professionals, learning about and using the latest tools and techniques to identify and overcome some of the most relevant and pressing security issues in the world.
Your key responsibilities
As a Senior Cybersecurity Engineer, you will be at the forefront of delivering innovative cybersecurity activities, utilizing your judgment and methodologies to formulate effective recommendations and assisting our clients in aligning security management strategy with business goals. You will navigate through complex challenges, ensuring the success of our projects while coordinating with junior team members to achieve collective goals. With a focus on OT cybersecurity and network security, you will serve in a key role of leading technical discussions, guiding the development of strategic and tactical security architecture efforts, designing and driving implementations to completion, and function overall as a technical security leader for traditional solutions and evolving risk-based security architectures. Your responsibilities will include:
+ Leading the design and execution of cybersecurity deliverables
+ Proactively participating in client sessions and potentially leading workstreams
+ Assisting in identifying service opportunities and contributing to RFPs
+ Monitoring project statuses, resource plans, and budgets
Skills and attributes for success
To thrive in this role, you will need a strong foundation in both technical and business skills, with the ability to drive outcomes and communicate effectively with clients. Your success will be built upon:
+ Knowledge of the current security environment and industry trends to identify engagement and client service issues
+ Effective communication of information to the engagement team and client management through written correspondence and verbal presentations
+ Cross segment experienced in delivering solutions
+ O&G, P&U, Pharma, Manufacturing, BMS, Water WW, Pulp and Paper, Mining, etc
+ Team Leaders- lead cross segment, cross competency teams
+ Client advocates with genuine experience in the OT/IoT market
+ Knowledge of good industry practice in tiered security architecture design
+ Work closely with engagement manager to co-lead and own multiple parts of the engagement delivery
+ Ability to consistently deliver quality client services by driving high-quality work products within expected timeframes and on budget
+ Ability to document reference architectures, network schematics, blueprints, patterns, and other types of architectural documentation
+ A deep understanding of cybersecurity and privacy principles
+ Proficiency in system administration and threat hunting
+ Strategic problem-solving and critical thinking abilities
To qualify for the role, you must have
+ A Bachelor's degree in a relevant field and at least 2 to 4 years of relevant professional experience
+ Proficiency in change management
+ Coding skills and technical writing expertise
+ Client communication and digital fluency
+ Operational industry experience in the field/plant
+ Working knowledge of NIST CSF and its application in OT environments
+ Have performed an OT Cybersecurity assessment utilizing an industry accepted standard
+ Firewall review experience and knowledge of industrial centric protocols
+ General network security experience and working knowledge of white listing, AV, IDS/IPS, firewalls, SIEM, etc.
+ Experience in process definition, workflow design, and/or and process mapping
+ A valid driver's license in the US and a valid passport required; willingness and ability to travel internationally and a willingness to travel; travel is estimated at 40-60%
Ideally, you'll also have
+ A proven track record of delivering high-quality cybersecurity solutions
+ The ability to mentor and guide junior team members
+ A commitment to continuous professional development
+ Strong presentation and communication skills
+ Relevant security certifications (e.g., CISSP, CISM. GICSP)
+ Program management experience
+ Intimate knowledge of a relevant OT Cyber Framework such as NIST 800-82 or ISA62443
What we look for
We seek top performers with a passion for cybersecurity and a dedication to excellence. Ideal candidates are those who exhibit a blend of technical prowess and strategic business acumen, with the ability to navigate complex challenges and drive meaningful outcomes. We value individuals who are eager to learn, collaborate, and contribute to the success of our team and clients.
**What we offer you**
At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more .
+ We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $103,800 to $90,300. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is 124,600 to 216,300. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
+ Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year.
+ Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
**Are you ready to shape your future with confidence? Apply today.**
EY accepts applications for this position on an on-going basis.
For those living in California, please click here for additional information.
EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities.
**EY | Building a better working world**
EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.
Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.
EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law?
EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at .

Description

eToro is the trading and investing platform that empowers users to invest, share, and learn. We were founded in 2007 with the vision of a world where everyone can trade and invest simply and transparently. We have created an investment platform that is built around collaboration and investor education. On our platform, users can view other investors' portfolios and statistics, and interact with them to exchange ideas, discuss strategies, and benefit from shared knowledge. We have 40 million registered users from 75 countries, and our platform is available in 20 languages. eToro is an innovative, fast-growing business and is listed on Nasdaq in May 2025. We have over 1,500 employees across more than 10 offices around the globe, strategically positioned to serve the needs of users. You can find out more about eToro here.

Role summary

We are looking for a Cybersecurity Analyst to enhance our security governance, and risk management efforts. In this role, you will develop and maintain security policies, assess cybersecurity risks, and conduct vendor security reviews. You will be supporting the Governance, Risk and Compliance (GRC) Team Lead, and work closely with cross-functional teams to strengthen the organization's security posture, ensure adherence to industry standards, and mitigate emerging risks. This is an exciting opportunity for a security professional looking to expand their expertise in a dynamic and fast-paced environment.

What will you be doing?

Risk Management & Security Architecture:

• Identify, assess, and mitigate cybersecurity risks across enterprise systems, cloud platforms, and applications.
• Design and oversee security architecture to support business objectives while ensuring compliance and risk mitigation.
• Collaborate with engineering teams to embed security-by-design principles and to ensure security best practices in cloud, application, and infrastructure security.
• Communicate and elucidate application security and cloud security issues identified through penetration tests and Bug Bounty programs, ensuring their remediation is tracked and managed.
• Proactively detect and address potential product security issues within the assigned area of responsibility, ensuring timely and effective resolution.
• Conduct security reviews and risk assessments for new technology deployments.
• Develop strategies for secure cloud adoption (Azure, AWS).

Policy Development:

• Write and maintain cybersecurity and privacy policies and procedures to ensure compliance with industry standards and regulations.

Business Continuity:

• Assist in executing and improving business continuity plans and testings.

Training and Awareness:

• Help develop and deliver security and privacy training programs; assist with phishing simulations and awareness campaigns.

Cyber & Privacy Support:

• Work alongside the BISO and IT department to support cybersecurity and privacy compliance efforts.

Vendor and Governance:

• Conduct security assessments of vendors, partners, and third-party service providers.
• Develop and implement a third-party risk management framework to align vendor security assessments with regulatory requirements.
• Stay updated on emerging threats, regulatory changes, and cybersecurity trends to improve GRC strategies.

Requirements

• Bachelor's degree in Cybersecurity, Information Technology , or a related field (or equivalent experience).
• 3+ years of experience in cybersecurity, with a focus on GRC, risk management, and security architecture.
• Good knowledge of regulatory requirements (e.g., GDPR, NYDFS, PCI-DSS, NIST CSF, SOC 2).
• Strong written communication skills with an interest in policy development.
• Understanding of cybersecurity frameworks (e.g., NIST, ISO) and data privacy regulations (e.g., GLBA, CCPA).
• Strong organizational skills and the ability to manage multiple tasks in a remote environment.
• Experience in identifying and understanding application security issues such as findings from penetration tests and Bug Bounty programs, code scans.
• Relevant certifications (CISSP, CISM, CISA, CRISC, CCSP) are highly desirable.

What We Offer:

• Base salary range of $90,000 - 120,000
• Discretionary Annual bonus
• Hybrid work model
• Comprehensive benefits package
• Team events
• Cell phone stipend
• Daily lunch allowance
• Gym stipend
• 6% 401K match
• 100% insurance coverage for the employee

Location:

This position offers a hybrid work model with 2-3 days in office in our New York City office.

Requisition : 81880

PSEG Company : PSEG Long Island

Salary Range : $ 104,600 - $ 186,000

Work Location Category : Hybrid Flexible

PSEG operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories:

Onsite are roles that have specific onsite requirements and are typically onsite daily.

Hybrid fixed are roles that are a blend of onsite work/in-person interactions with some ability to work remotely and require employees to live within a commutable distance and be onsite fixed days each week.

Hybrid flexible are roles that can be performed remotely but require some level of onsite work/in-person interactions on a regular basis, require employees to live within a commutable distance and, since business needs vary by position and may change over time, managers will set expectations and flexibility regarding where and when work is performed.

Fully remote are roles that can be performed remotely, require employees to live in approved states and will have purpose-driven in-person interactions on occasion.

We want you to be healthy, balanced, and feel secure. That's why you'll enjoy a comprehensive range of benefits, with a focus on supporting your whole health. Starting on day one of your employment, you'll be offered several health-related benefits including medical, vision, dental, well-being and behavioral health programs. We also offer a retirement program, 401(k) with company match, company paid life insurance, tuition reimbursement and a minimum of 18 days of paid time off per year (including vacation, scheduled holidays, and floating holidays).

PSEG offers a unique experience to our more than 12,000 employees - we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie, and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity, and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.

Job Summary

We are seeking a Senior Identity and Access Management (IAM) Engineer to lead the design,implementation, and management of our IAM solutions. This position is an experienced, senior level,hands-on technical lead. This role is critical to ensuring secure access to enterprise systems, enforcingsecurity policies, and driving IAM engineering across the organization. The ideal candidate hasextensive experience with IAM technologies, authentication protocols, and security best practices incloud and on-premises environments.

Job Responsibilities

Include but are not limited to:

• IAM Architecture, Engineering & Implementation: Design, deploy, and manage IAM solutions,including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management(PAM), and Role-Based Access Control (RBAC).

• Identity Governance & Administration (IGA): Develop and enforce policies for identity lifecyclemanagement, access provisioning, and de-provisioning.

• Access Control & Authorization: Implement least privilege access, Just-in-Time (JIT) access, andZero Trust principles.

• Directory Services & Federation: Manage and integrate directory services (Active Directory, AzureAD, LDAP) and federation protocols (SAML, OAuth, OpenID Connect).

• Cloud & Hybrid IAM: Secure access to cloud platforms such as AWS, Azure, ensuring properidentity federation and role management.

• Security & Compliance: Ensure IAM compliance with regulations such as SOX and NIST. Conductaudits and risk assessments to maintain a strong security posture.

• Incident Response & Monitoring: Collaborate with security teams to detect, investigate, andremediate IAM-related security incidents.

• Automation & Scripting: Develop scripts and automation workflows using PowerShell, Python, orsimilar tools to streamline IAM operations.

• Collaboration & Stakeholder Engagement: Work closely with IT, security, and business teams todefine IAM requirements and drive security initiatives.

Job Specific Qualifications

Required

• Bachelor's degree

• Minimum of 6 years in IAM engineering, security architecture, or a related field.

• In lieu of a degree 10 years of cyber experience

• IAM Tools & Platforms: Expertise in modern IAM platforms.

• Authentication & Federation: Strong knowledge of authentication mechanisms and federationprotocols (such as SAML, OAuth, OpenID Connect).

• Cloud Security: Hands-on experience with IAM in cloud environments (such as AWS IAM, AzureAD).

• Security Frameworks & Compliance: Familiarity with NIST, CIS, and regulatory requirements

• Scripting & Automation: Proficiency in PowerShell, Python, Bash, or other languages for IAMautomation.

• Zero Trust & Modern Security Concepts: Understanding of Zero Trust principles, identity-centricsecurity, and risk-based authentication.

• Problem-Solving & Analytical Skills: Ability to troubleshoot complex IAM issues and optimizesecurity configurations.

• Soft Skills: Strong communication, collaboration, and leadership skill.

Desired Qualifications:

• Certifications: CISSP, CISM, or IAM-centric credentials.

• Experience with DevSecOps: Knowledge of integrating IAM with CI/CD pipelines and securityautomation.

• API & SDK Knowledge: Experience securing APIs and integrating IAM solutions with applicationsusing REST APIs.

Minimum Years of Experience

6 years of experience

Education

Data Needed

Certifications

None Noted

Disclaimer

Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.

If you are a current PSEG employee and if you are offered an opportunity with PSEG Long Island, you will be treated as a new hire. Please note that as a new hire to the Long Island subsidiary, your benefits will change and generally will be consistent with other similarly situated PSEG Long Island new hires. Similarly, for PSEG Long Island employees who accept job opportunities with PSEG or any of its subsidiaries (other than PSEG Long Island), their benefits would change and generally be consistent with other similarly situated new hires of that company.

As an employee of PSE&G or PSEG LI, you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.

For all roles, PSEG's drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing. For employees in federally regulated roles (including positions covered by USDOT, PHMSA, or NRC regulations), this also includes random testing. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and/or medically, it is prohibited for employees in federally regulated roles. Employees who are hired or transfer into a federally regulated role are subject to drug and alcohol testing, inclusive of marijuana. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for such a positive result.

PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.

PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call or email

If you need to request a reasonable accommodation to perform the essential functions of the job, email . Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.

ADDITIONAL EEO/AA INFORMATION (Click link below)

Know your Rights: Workplace Discrimination is Illegal (

Pay Transparency Nondiscrimination Provision

**Requisition** : 81880
**PSEG Company** : PSEG Long Island
**Salary Range** : $ 104,600 - $ 186,000
**Work Location Category** : Hybrid Flexible
**PSEG** operates under a Flexible Work Model where flexible work is offered when job requirements allow. In support of this model, roles have been categorized into one of four work location categories:
Onsite are roles that have specific onsite requirements and are typically onsite daily.
Hybrid fixed are roles that are a blend of onsite work/in-person interactions with some ability to work remotely and require employees to live within a commutable distance and be onsite fixed days each week.
Hybrid flexible are roles that can be performed remotely but require some level of onsite work/in-person interactions on a regular basis, require employees to live within a commutable distance and, since business needs vary by position and may change over time, managers will set expectations and flexibility regarding where and when work is performed.
Fully remote are roles that can be performed remotely, require employees to live in approved states and will have purpose-driven in-person interactions on occasion.
We want you to be healthy, balanced, and feel secure. That's why you'll enjoy a comprehensive range of benefits, with a focus on supporting your whole health. Starting on day one of your employment, you'll be offered several health-related benefits including medical, vision, dental, well-being and behavioral health programs. We also offer a retirement program, 401(k) with company match, company paid life insurance, tuition reimbursement and a minimum of 18 days of paid time off per year (including vacation, scheduled holidays, and floating holidays).
PSEG offers a unique experience to our more than 12,000 employees - we provide the resources and opportunities for career development that come with being a Fortune 500 company, as well as the attention, camaraderie, and care for one another you might typically associate with a small business. Our focus on combatting climate change through clean energy technology, our new net zero climate vision for 2030 and enhanced commitment to diversity, equity, and inclusion; and supporting the communities we serve make this a particularly exciting time to join PSEG.
**Job Summary**
We are seeking a Senior Identity and Access Management (IAM) Engineer to lead the design,implementation, and management of our IAM solutions. This position is an experienced, senior level,hands-on technical lead. This role is critical to ensuring secure access to enterprise systems, enforcingsecurity policies, and driving IAM engineering across the organization. The ideal candidate hasextensive experience with IAM technologies, authentication protocols, and security best practices incloud and on-premises environments.
**Job Responsibilities**
Include but are not limited to:
+ IAM Architecture, Engineering & Implementation: Design, deploy, and manage IAM solutions,including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management(PAM), and Role-Based Access Control (RBAC).
+ Identity Governance & Administration (IGA): Develop and enforce policies for identity lifecyclemanagement, access provisioning, and de-provisioning.
+ Access Control & Authorization: Implement least privilege access, Just-in-Time (JIT) access, andZero Trust principles.
+ Directory Services & Federation: Manage and integrate directory services (Active Directory, AzureAD, LDAP) and federation protocols (SAML, OAuth, OpenID Connect).
+ Cloud & Hybrid IAM: Secure access to cloud platforms such as AWS, Azure, ensuring properidentity federation and role management.
+ Security & Compliance: Ensure IAM compliance with regulations such as SOX and NIST. Conductaudits and risk assessments to maintain a strong security posture.
+ Incident Response & Monitoring: Collaborate with security teams to detect, investigate, andremediate IAM-related security incidents.
+ Automation & Scripting: Develop scripts and automation workflows using PowerShell, Python, orsimilar tools to streamline IAM operations.
+ Collaboration & Stakeholder Engagement: Work closely with IT, security, and business teams todefine IAM requirements and drive security initiatives.
**Job Specific Qualifications**
**Required**
+ Bachelor's degree
+ Minimum of 6 years in IAM engineering, security architecture, or a related field.
+ In lieu of a degree 10 years of cyber experience
+ IAM Tools & Platforms: Expertise in modern IAM platforms.
+ Authentication & Federation: Strong knowledge of authentication mechanisms and federationprotocols (such as SAML, OAuth, OpenID Connect).
+ Cloud Security: Hands-on experience with IAM in cloud environments (such as AWS IAM, AzureAD).
+ Security Frameworks & Compliance: Familiarity with NIST, CIS, and regulatory requirements
+ Scripting & Automation: Proficiency in PowerShell, Python, Bash, or other languages for IAMautomation.
+ Zero Trust & Modern Security Concepts: Understanding of Zero Trust principles, identity-centricsecurity, and risk-based authentication.
+ Problem-Solving & Analytical Skills: Ability to troubleshoot complex IAM issues and optimizesecurity configurations.
+ Soft Skills: Strong communication, collaboration, and leadership skill.
**Desired Qualifications:**
+ Certifications: CISSP, CISM, or IAM-centric credentials.
+ Experience with DevSecOps: Knowledge of integrating IAM with CI/CD pipelines and securityautomation.
+ API & SDK Knowledge: Experience securing APIs and integrating IAM solutions with applicationsusing REST APIs.
**Minimum Years of Experience**
6 years of experience
**Education**
Data Needed
**Certifications**
None Noted
**Disclaimer**
Certain positions at the Company may require you to have access to Part 810-Controlled Information. Under the law, the Company is limited in who it can share this information with and in certain circumstances it is necessary to obtain specific authorization before the Company can share this information. Accordingly, if the position does require access to this information, you must complete a 10 CFR Part 810 Export Control Compliance Nationality Request Form, a copy of which will be provided to you by Talent Acquisition if an offer is made. If there is a need for specific authorization, due to the time it takes to obtain authorization from the government, we will likely not be able to further proceed with an offer.
If you are a current PSEG employee and if you are offered an opportunity with PSEG Long Island, you will be treated as a new hire. Please note that as a new hire to the Long Island subsidiary, your benefits will change and generally will be consistent with other similarly situated PSEG Long Island new hires. Similarly, for PSEG Long Island employees who accept job opportunities with PSEG or any of its subsidiaries (other than PSEG Long Island), their benefits would change and generally be consistent with other similarly situated new hires of that company.
As an employee of PSE&G or PSEG LI, you should be aware that during storm restoration efforts, you may be required to perform functions outside of your routine duties and on a schedule that may be different from normal operations.
For all roles, PSEG's drug and alcohol testing program includes pre-employment testing, testing for cause, and post-incident/accident testing. For employees in federally regulated roles (including positions covered by USDOT, PHMSA, or NRC regulations), this also includes random testing. Although numerous states throughout the country have legalized marijuana/cannabis products recreationally and/or medically, it is prohibited for employees in federally regulated roles. Employees who are hired or transfer into a federally regulated role are subject to drug and alcohol testing, inclusive of marijuana. Please note that the use of CBD products may result in a positive drug test for THC/Marijuana and such use is not a legitimate medical explanation for such a positive result.
PSEG is an equal opportunity employer, dedicated to a policy of non-discrimination in employment, including the hiring process, based on any legally protected characteristic. Legally protected characteristics include race, color, religion, national origin, sex, age, marital status, sexual orientation, disability or veteran status or any other characteristic protected by federal, state, or local law in locations where PSEG employs individuals.
PSEG is committed to providing reasonable accommodations to individuals with disabilities. If you have a disability and need assistance applying for a position, please call or email
If you need to request a reasonable accommodation to perform the essential functions of the job, email . Any information provided regarding a disability will be kept strictly confidential and will not be shared with anyone involved in making a hiring decision.
**ADDITIONAL EEO/AA INFORMATION** _(Click link below)_
Know your Rights: Workplace Discrimination is Illegal ( Transparency Nondiscrimination Provision

**Introduction**
The Office of the CISO has the responsibility to safeguard not only IBM systems but those of clients we support around the globe. The IBM CISO office is comprised of teams that cover all aspects of security - from Vulnerabilty Management, Threat Detection, Security Operations, Product Security, Mail Security, System Inventory, Endpoint Detection, as well as Computer Security Incidence Response. CSIRT is responsible for maintaining and managing the IBM internal global incident response process for cybersecurity and data privacy cases across IBM.
**Your role and responsibilities**
IBM CSIRT is looking to hire a proven professional with background and experience in cybersecurity analysis. This team member will partner with a cybersecuirty responder to initiate, triage, contain/mitigate, analyze and resolve cyber and data concerns. Demostrated experience with analysis tools is required, as is a firm understanding of the latest technologies as well as security technologies, hosting environments and of course the mindset of threat actors that will enable this analyst to safeguard IBM and client systems. This team member will need to possess strong technical and analytical skills as well as exceptional organizational and communication skills. The role also requires interaction and collaboration with team members from the SOC, Threat Detection and others.
**Required technical and professional expertise**
At least 3 years of experience in Incident Response in a global corporate enterprise
Strong understanding of Windows, Mac, and Linux operating systems
Strong knowledge of common security tools, techniques, and procedures employed by cyber threat actors
Demonstrated knowledge of commercial and open-source forensic tools, such as X-Ways, Axiom, Autopsy, ELK, SIFT, Plaso, etc
Knowledge of analysis with EDR tooling, such as Crowdstrike or Microsoft Defender for Endpoint (MDE)
Solid working knowledge of networking topology, technology and tools, such as firewalls, proxies, IDS/IPS, EDR
Event analysis and correlation
Excellent technical writing and presentation skills
The ability to work independently and effectively, as well as in a group setting required.
**Preferred technical and professional experience**
Demonstrated computer forensic investigations experience
Demonstrated knowledge of commercial and open-source forensic tools, such as X-Ways, Axiom, Autopsy, ELK, SIFT, Plaso, etc
Demonstrated knowledge of analysis with EDR tooling, such as Crowdstrike or Microsoft Defender for Endpoint (MDE)
Knowledge of incident response and analysis in cloud environments, such as IBM Cloud, AWS, or Azure
Ability to successfully lead and facilitate information gathering meetings
Experience managing small and large scale cyber security incidents
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.