2,237 Operations And Security jobs in the United States

• Manage the complete device lifecycle, including procurement, configuration, deployment, maintenance, and secure decommissioning of laptops and peripherals (Mac, Windows, Linux) for employees across multiple locations, ensuring consistent security standards and user experiences - especially during onboarding
• Plan and execute business continuity and disaster recovery procedures for critical IT systems.
• Coordinate and drive risk impact assessments with stakeholders across the organization.
• Manage regular security assessments, vulnerability scanning, penetration testing and implement remediation measures to address vulnerabilities
• Manage vendor relationships and contracts for technology products and services proactively managing costs
• Lead and coordinate cross-functional SOC2 and PCI compliance audits by interfacing with external auditors, documenting control implementation, gathering evidence, and working collaboratively with Compliance and Engineering teams to remediate findings
• Design and implement systems that satisfy multiple compliance frameworks simultaneously (SOC2, PCI, ISO27001, NIST800) to minimize redundant work and maximize efficiency
• Oversee workplace technology infrastructure including office network planning, WiFi optimization, bandwidth management, and maintenance of audio/visual systems like Zoom rooms to ensure reliable connectivity and productive collaboration
• Develop and maintain comprehensive IT policies and procedures aligned with industry best practices and compliance requirements
• Implement and manage identity and access management solutions, ensuring appropriate user authentication, authorization, and privilege management
• Create and optimize IT support workflows that balance timely assistance with appropriate security measures, including implementation of ticketing systems to track, prioritize, and resolve technical issues
• Establish performance metrics to measure support quality, resolution times, and system reliability, using data to drive continuous improvement
• Administer and optimize core platforms including Google Workspace, Zoom, JIRA, Slack (including automation workflows), and MDM systems to support business operations

• A systems thinker who can balance technical requirements with business needs, define an IT strategy and roadmap
• Someone who understands the reasoning behind IT best practices and can thoughtfully apply them to different scenarios
• Self-motivated problem solver who takes initiative and follows through on projects
• Skilled at prioritizing competing demands in a fast-paced environment
• Experienced with modern SaaS and cloud-based IT infrastructure including security reviews
• Adept at translating technical concepts for non-technical stakeholders
• Committed to continuous learning and staying current with emerging technologies and security practices
• Background in IT support, operations, or security with demonstrable achievements
• Experience with Google Workspace, Zoom, JIRA, Slack administration (including workflows), and MDM systems preferred
• Familiarity with compliance frameworks (SOC2, PCI) and tools like Drata or Vanta
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), or PCI Internal Security Assessor (ISA)

Amentum is seeking an Operations Security (OPSEC) Specialist to support the National Geospatial-Intelligence Agency (NGA) and Office of Security (SIS) in Springfield, VA. Position is pending contract award.

Duties may include:

• Support the execution of the day-to-day NGA OPSEC program

• Support and administer OPSEC program briefings during NEOS and the Pre-Deployment Seminars

• Support the NGA OPSEC Working Group, become familiar with the KC OPSEC Officers

• Provide assistance in the maintenance of the Directorate OPSEC Program.

• Conduct content reviews of public release requests in concert with OCC and provide timely review and responses

• Utilize analytical processes to deny adversary information concerning NGA's intentions and capabilities by identifying, controlling, and protecting NGA assets, associated with the Government's planning processes or operations

• Supports the Information Security Program and the Security Education and Awareness program

• Develops and implements the appropriate security education materials and awareness products needed to educate the NGA Workforce on appropriate security practices and procedures

• Coordinate and consolidate information to support formal and informal action items in support of OPSEC and security monitors program.

• Facilitate the IC Working Groups (OPSEC and Security Monitors).

• Review NGA public release (e.g., media, TV, newspaper, etc.), professional academia papers, and briefing presentations for OPSEC and render written recommendations.

• Assist the government OPSEC team and other SIS Divisions to determine the scope and direction of the Program.

• Assist in developing products to market the program (i.e., web-based pamphlets).

• Update and maintain appropriate records (e.g., database and hardcopy) OPSEC decision recommendations, meeting minutes, etc.

• Conduct continual research into cutting edge OPSEC trends.

Required:

• Active TS/SCI clearance and must be willing to undergo a polygraph exam

• Expertise and knowledge through the completion of OPSEC training at Interagency OPSEC Support Staff (IOSS), Department of Defense (DoD), Office of the Director of National Intelligence (ODNI), and other training venues

• Demonstrate knowledge of the Pre-Publication release process

• Demonstrate experience applying DoDM standards associated with Operations Security (OPSEC)

Desired:

• Demonstrate experience in briefing from various levels and training with written and oral communication skills

• Security Fundamentals Professional Certification (SFPC)

• Demonstrated experience using online communication programs (such as Microsoft Teams)

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed, marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters ( .

As Network & Security Operations Analyst , you'll oversee both network and security operations for the Network Operations and Security Center. This role ensures the continuous availability, performance, and security of enterprise IT systems by leading a team responsible for network monitoring, incident management, and security threat response.

We know that you can't have great technology services without amazing people. At MetroStar, we are obsessed withour people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people, we live by our mission: A passion for our people. Value for our customers.

If you think you can see yourself delivering our mission and pursuing our goals with us, then check out the job description below!

What you'll do:

• 2nd or 3rd Shift: (2:00 PM - 10:30 PM OR 11:00 PM - 6:30 AM)
• Develop, document, and enforce standard operating procedures (SOPs) for network and security incidents.
• Act as the primary escalation point for major network outages and security incidents.
• Identify areas for incident responses to be automated and tools to be optimized.
• Collaborate with Operations and engineering teams to maintain optimal service levels.

• You have an active TS/SCI clearance
• You have 5+ years of experience in a NOSC, NOC, or SOC environment.
• You have a strong knowledge and configuration experience of network monitoring (e.g. SolarWinds, PRTG, Nagios) and SIEM tools (e.g. Splunk, QRadar, ArcSight).
• You have experience managing network incidents, security events, and cyber threat response.
• You are familiar with ITIL frameworks, incident management, and service desk operations.
• You have strong troubleshooting experience with firewalls, VPNs, IDS/IPS, and cloud security (AWS, Azure, GCP).

• The candidate's professional background and relevant work experience
• The specific responsibilities of the role and organizational needs
• Internal equity and alignment with current team compensation
• This role is also eligible for additional compensation, subject to the terms and policies of MetroStar, which may include:
• Performance-based bonuses
• Company-paid training and/or certifications
• Referral bonuses

• Health, dental, and vision insurance
• 401(k) retirement plan with company match
• Paid time off (PTO) and holidays
• Parental Leave and dependent care
• Flexible work arrangements
• Professional development opportunities
• Employee assistance and wellness programs

• Lead and support tactical IT projects leveraging the Microsoft ecosystem, including Microsoft 365, SharePoint, Copilot, Loop, Entra, Teams, Planner, and Power Platform.
• Take ownership of SharePoint platform management, including governance, optimization, and execution of existing projects with strategic partners.
• Develop and maintain project plans, stakeholder meeting schedules, and SLT communications for SharePoint and other operational initiatives.
• Collaborate with the Director of IT to partner with cross-functional teams to identify and solve for operational gaps, business needs, and tooling opportunities.
• Provide Level 2-3 support for escalated tickets and work within the helpdesk queue to ensure timely resolution of issues.
• Monitor and manage ticket SLAs, ensuring service levels are met and support processes are followed.
• Coordinate cross-functional efforts to ensure project follow-through and documentation.
• Provide technical guidance and support for automation and scripting using tools like Power Automate and PowerShell.
• Assist in the implementation and configuration of Purview and Priva for operational data governance, including retention policies, DLP, and insider risk management.
• Partner with a vulnerability management provider to implement continuous scanning and documented remediation workflows.
• Absorb and execute non-strategic projects to protect the bandwidth of IT operations, security, and compliance teams.

• 5+ years of experience in IT operations, infrastructure, or engineering roles.
• Bachelor's degree in Computer Science, Engineering, IT, or a related field preferred or equivalent experience.
• Strong familiarity with the Microsoft ecosystem, including Microsoft 365, SharePoint, Entra, Loop, Copilot, and Power Platform tools.
• Experience managing helpdesk operations, ticket escalations, and SLA tracking.
• Proven ability to take ownership of platforms and projects, including stakeholder coordination and timeline management.
• Experience with Purview and Priva for implementing operational data governance policies.
• Proficiency in automation and scripting using Power Automate, PowerShell, or similar tools.
• Strong communication and documentation skills.
• Ability to operate independently with minimal supervision and deliver reliable, high-quality results.

• Deep understanding of Microsoft 365 ecosystem, including SharePoint, Loop, Copilot, Entra, SIEM, Teams, Planner, and Power Platform.
• Experience with Purview and Priva for implementing data retention policies, DLP, information protection, and insider risk management.
• Strong technical competency in scripting and automation using Power Automate, PowerShell, or similar tools.
• Proven ability to operate independently with minimal supervision, delivering reliable, high-quality results.
• Demonstrated success in leading tactical IT projects and absorbing non-strategic initiatives to protect team bandwidth.
• Ability to develop and execute roadmaps for tool adoption and operational maturity.
• Experience contributing to cybersecurity strategy enablement, including incident response playbooks, alert correlation, endpoint observability, and RBAC.
• Familiarity with vulnerability management practices, including continuous scanning, patch visibility, and remediation workflows.
• Strong problem-solving skills and ability to translate business needs into technical solutions.
• Excellent interpersonal and communication skills to collaborate effectively across departments and with senior leadership.
• Ability to manage multiple priorities, adapt to changing business needs, and maintain focus on strategic goals.
• Exposure to compliance frameworks such as SOC 2 or HITRUST, with an understanding of how operational practices support readiness.

• Ensures environmental consciousness and safe practices are exhibited in decisions
• Use of computer and telephone equipment and other related office accessories/devices to complete assignments
• May work extended hours during peak business cycles
• Physical requirements such as lifting specific weights
• Some travelling is expected

About the job Operations Security Specialist- Cloud Operations and Delivery

Software International (SI) supplies technical talent to a variety of clients ranging from Fortune 100/500/1000 companies to small and mid-sized organizations in Canada/US/Europe.

We are currently looking for a Operations Security Specialist- Cloud Operations and Delivery for our client that specializes in SAP consulting on an international level. This role involves working with many of their clients in the US.

Role(s) Required: Operations Security Specialist- Cloud Operations and Delivery

Location: Remote

Employment Type: Contract to start, then can move into permanent

Duration: 12 months + and potential conversion to permanent after 1 year

Required Start Date: ASAP

Total Hours Approved Per Role: 40h/week

Rate/Salary: $70 - $80/hr USD C2C

End Client Location: Herndon, VA

Other: MUST BE US CITIZEN due to required security clearance

Our client a multinational SAP consulting firm is seeking a Operations Security Specialist- Cloud Operations and Delivery to work with a major client in the US on an initial contract basis. The role has strong potential to turn into a permanent role.

Project Description:

Description:

*Must be US Citizen*
*Possible convert to hire after 1 year*
*Fully Remote*
*Must be able to obtain Public Trust clearance*

Job Title: Operations Security Specialist- Cloud Operations and Delivery

Job Summary: The Security Specialist is responsible for ensuring the security and integrity of the organization's cloud infrastructure and services. This role involves implementing, monitoring, and managing security measures to protect data, systems, and networks from unauthorized access, vulnerabilities, and threats. The Security Specialist will work closely with cross-functional teams to integrate security best practices into the development and operational processes. This role will be primarily focused on interfacing with other security teams within the organization to ensure streamlined communication and effective processing of security deliverables.

Key Responsibilities:
• Security Management:
o Develop and implement security policies, protocols, and procedures for cloud environments.
o Monitor cloud infrastructure and applications for security breaches and respond promptly to incidents.
o Conduct regular security assessments, vulnerability scans, and penetration testing.

• Compliance and Risk Management:
o Ensure compliance with industry standards, legal requirements, and organizational policies (e.g., GDPR, HIPAA, PCI-DSS).
o Identify and assess security risks, developing strategies to mitigate them.
o Prepare and maintain documentation related to security practices and compliance efforts.

• Collaboration and Communication:
o Work closely with IT, DevOps, and Development teams to ensure security is integrated into all stages of the software development lifecycle.
o Provide security training and awareness programs for employees.
o Liaise with external partners and vendors to assess the security posture of third-party services and products.

• Incident Response:
o Develop and maintain an incident response plan to manage security incidents effectively.
o Investigate and document security breaches, providing detailed reports and recommendations for prevention.
o Participate in disaster recovery planning and testing.

• Continuous Improvement:
o Stay current with emerging security trends, threats, and technologies.
o Propose improvements to security architecture, tools, and processes.
o Evaluate and implement security solutions that enhance the organization's security posture.

Qualifications:
• Education and Experience:
o Bachelor's degree in Computer Science, Information Security, or a related field.
o Minimum of 3-5 years of experience in cloud security, cybersecurity, or a related role.

• Technical Skills:
o Strong understanding of cloud platforms such as AWS, Azure, or Google Cloud.
o Experience with security tools and technologies (e.g., firewalls, IDS/IPS, SIEM).
o Knowledge of scripting and automation tools for security tasks.
o Familiarity with regulatory frameworks and compliance standards.

• Certifications:
o Relevant security certifications such as CISSP, CISM, CEH, or AWS Certified Security Specialty are preferred.

• Soft Skills:
o Excellent problem-solving skills and attention to detail.
o Strong communication and interpersonal skills.
o Ability to work independently and as part of a team in a fast-paced environment.

Preferred Experience:
Hands-on experience with cloud operations processes and implementations Strong understanding of cloud infrastructure management, including provisioning, scaling, and maintaining cloud services. Experience working with cloud service providers such as AWS, Azure, or Google Cloud to deploy and optimize cloud-based applications. Familiarity with best practices in cloud automation, cost management, and operational monitoring.
• Experience in cloud security governance and compliance management Proven ability to develop, implement, and enforce cloud security policies, ensuring alignment with industry standards and regulatory frameworks such as NIST, CIS, ISO 27001, GDPR, HIPAA, or FedRAMP. Experience conducting security audits, risk assessments, and compliance reviews to ensure cloud environments meet organizational and legal security requirements. Ability to work with stakeholders across security, compliance, and operations teams to drive governance initiatives and maintain security posture.