25,747 Security Specialists jobs in the United States

SailPoint IIQ Platform Support Engineer
• SailPoint Support Engineer will require a strong understanding of Identity Access Management (IAM), and Access Governance/SailPoint suites of products
• Minimum 3 to 5 years of experience working with SailPoint technologies (IdentityIQ), concepts and features
• Patching, upgrades, system monitoring, and performance optimization
• Resolving defects and tickets to support access management operations. Additionally, the team handles day-to-day operational monitoring and provides support to audit, compliance and application teams by addressing user questions and issues.
• Install, customize, configure, and support identity provisioning and governance tools;
• Experience with IdentityIQ Administration and Implementation.
• Strong IAM domain knowledge & Experience in IAM area of Identity Access Management, SailPoint IIQ
• Experience in understanding the requirements related to audit and compliance reporting
• Strong experience in understanding IAM solution requirements and develop/modify business processes, prepare communication & training material for IAM/IIQ systems.
• Must be able to collect requirements related to user life cycle management and JML processes (Onboarding, offboarding etc.)
• Must be familiar with access governance features of IAM Tool Access recertification, Approval Workflows, Role Management, SOD policies
• Responsible for writing Runbooks, playbooks, Standard Operating Procedures (SOPs) and design documents
• Must be able to understand the requirements related to audit and compliance reporting

Salary Range- $110,000-$125,000 a year

#LI-SP3 #LI-VX1

Role : Information Security Analyst
Location: Baton Rouge, Louisiana (Onsite)
Duration: Longterm

The scope of the proposed services will include the following:
1. Managing InfoSec Identity Management requests through the OTS Ivanti ticketing system
2. Active Directory account creation/deletion
3. Active Directory group membership management
4. Active directory file share permission management
5. Privileged account management

Expertise and/or relevant experience in the following areas are mandatory:
1. Creating Active Directory users and groups.
2. Managing Active Directory users and groups
3. Understanding Active Directory enterprise wide deployments with multiple forests.
4. Managing and reviewing Microsoft Group Policy
5. Reviewing and processing information security requests.

Expertise and/or relevant experience in the following areas are desirable but not mandatory:
1. Basic PowerShell Knowledge
2. Compliance, or audit experience
3. Experience managing Identity and Access Management (IAM) systems
4. Documenting, Testing, and Reviewing Information Security Controls.
5. Coordinating notifications, responses, and escalations for security events and incident management activities

Description

At a high level, we are looking for a candidate with a bachelor’s degree (Cybersecurity focused) and at least 1 – 2 years of professional experience (not counting internships) or equivalent combination of education and experience. Ideally, a candidate would have professional experience in at least two or three of the areas below:

• Microsoft 365 (365 Defender focused)

• Endpoint Detection and Response (EDR)

• Azure Sentinel/ SIEM threat hunting

• Microsoft Purview

• Next Generation Firewalls (NGFW)

• Microsoft Intune

• Windows Active Directory and domain group policy

• Security Operation Center (SOC) experience

• Incident investigation and response skills

Pay and Benefits

The pay range for this position is $30.00 - $40.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:

• Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a fully onsite position in Erlanger,KY.

Application Deadline

This position is anticipated to close on Jul 24, 2025.

h4>About TEKsystems:

We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We’re a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We’re a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We’re strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We’re building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

Imagine One Technology & Management is currently seeking an  Information Security Analyst “contingent” on award of the associated work to the Imagine One Team. This position supports the U.S. Navy in Lexington Park, Maryland.

The ** Information Security Analyst** will plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. They may ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. They may also respond to computer security breaches and viruses.

Experience Requirements:

• Qualifying candidates must possess ONE of the following required qualifications:

• Minimum of five (5) years of experience carrying out duties similar to the functions above

• NAVEDTRA 43350 (Malware)

• NAVEDTRA 43469 Watchstation 303 - Information Assurance Technician Level III

• NAVEDTRA 43301-5B LCS Total Shipboard Computing Environment (TSCE)

• NAVEDTRA 43469 Watchstation 304 - Information Assurance Manager

• JQR Incident Handling QC Analyst (306)

• JQR Incident Handling Trends Analyst (305)

• JQR Information Assurance Vulnerabilities Management (VAAP - Vulnerability Analysis and Assistance Program)

• Experience in the following areas:

• Enterprise Mission Assurance Support Service (eMASS)

• Vulnerability Remediation Asset Manager (VRAM)

• Navy Risk Management Framework (RMF) SOPs

• Microsoft Defender for Endpoint (MDE)

• Continuous Monitoring and Risk Scoring (CMRS)

• Experience with performing STIG implementation

• Experience performing vulnerability assessments with the Assured Compliance Assessment Solution (ACAS) tool

• Experience remediating vulnerability findings to include implementing vendor patches

• Experience reviewing RMF documentation such as system categorization, Security Plan, Implementation Plan, Security Assessment Plan, System Level Continuous Monitoring (SLCM) Plan, System POA&M

**Educational Requirements:  **

• Qualifying candidates must possess ONE of the following required educational qualifications:

• Bachelor’s degree

• CNSSI 4012-Senior Systems Managers/4013-System Administrators/4014-Information Systems Security Officers (ISSO) /4015-Systems Certifiers/4016-Risk Analysts

• NDU CIO certificate-Chief Information Officer (CIO)

• Computer Hacking Forensic Investigator (CHFI)

• GIAC Reverse Engineering Malware (GREM)

• CISM

• GIAC Certified Incident Handler (GCIH)

• EC-Council Certified Incident Handler (ECIH)

• GIAC Certified Forensics Analyst (GCFA)

• CEH

• CISSP

• GSEC

• Licensed Penetration Tester (LPT) *Retired

• CASP+ GSLC

• CSSLP

• NEC 741A Information System Security Manager

• NEC 742A Network Security Vulnerability Technician

• NEC H10A Basic Cyber Analyst/Operator

• NETW 4001 Security Plus

• SSC 6209-Network Operations and Technology

• Hunt Methodologies Course (HMC)

• Intermediate Cyber Core (ICC)

• CYBR2100 Certified Ethical Hacker

• CYBR2150

• CYBR3420 Intermediate Cyber Core

Security Requirements:

• Candidates must have U.S. Citizenship

• Candidates must have an ACTIVE DoD Secret Clearance (or higher)

Imagine One Technology & Management, Ltd., offers a full package of benefits and competitive salary, excellent group medical, vision, and dental programs. 401K savings plan; $4K annual tuition reimbursement ($5K if pursuing master’s degree); employee training, development, and education programs; profit sharing; advancement opportunities; and much more!

ISO 9001:2015, ISO 2000-1:2018, ISO 27001:2013

CMMI Development and Services - Maturity Level 3

An Employee-Owned Business

EEO/Veterans/Disabled

*Imagine One “Contingent” offers for employment may stipulate that one or more requirements be satisfied before final commitment between candidate and Imagine One is established; namely, award of contract to the Imagine One Team. Contingent requirements vary and may also include, but not be limited to additional factors (i.e., the position still being available after negotiations with the Government; final approval of your qualifications by the Government; or ability to successfully acquire and/or transfer a DoD security clearance).

Responsibilities & Qualifications

RESPONSIBILITIES

Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May respond to computer security breaches and viruses.

Ensures the rigorous application of cybersecurity policies, principles, and practices in the delivery of all Information Technology (IT) and cybersecurity services. Develops and designs security solutions to maintain confidentiality, integrity, and availability of information throughout the enterprise. Identifies, plans, and documents improvements to security controls. Develops and documents recommendations and courses of action (COAs) to solve complex cybersecurity problems. Develops and interprets cybersecurity requirements and assists in the formulation of cybersecurity/IT budgets. Plans and schedules the installation of new or modified security hardware, operating systems, and software applications. Ensures the assessment and implementation of identified computer and network environment fixes as part of the Cybersecurity Vulnerability Management program. Guides the implementation of appropriate operational structures and processes to ensure an effective cybersecurity program.

• Maintaining the appropriate operational security posture for an information system

• Manage the security of the information system through Certification & Accreditation (C&A)

• Support the information system owner for the completion of security related responsibilities.

• Review System Security Plans (SSP) and solutions

• Recommend security mechanism implementations

• Evaluate and document the effectiveness of solutions implemented

REQUIRED QUALIFICATIONS

• Minimum 5 (five) years of experience with cybersecurity or information assurance

• Minimum of Bachelor's Degree in a technical or business discipline from an accredited college or university in Computer Science, Cybersecurity, Computer Engineering, or related discipline

• DoD Approved 8570 Baseline Certification: Category IAM Level II (One of the Following)

• CAP

• CASP+ CE

• CISM

• CISSP (or Associate)

• GSLC

• CCISO

• HCISPP

• Must know Risk Management Framework (RMF)

• Active TS/SCI + Polygraph

PREFERRED QUALIFICATIONS

• Experience with DoD Cybersecurity Policies

• Experience with Xacta Solutions (Xacta 360)

• Knowledge of Enterprise Mission Assurance Support Service (eMASS)

• Experience with Zero Trust

• Exposure to AWS (Amazon Web Services), ACAS (Security scanning software), vCenter, WSUS (Windows Server Update Service), and/or STIGs/IAVA

• A problem solver who can get in, be given a project, and use engineering skills to determine a solution

• Able to build systems from the ground up - network architecture/systems engineering

Overview

We are seeking an Information Security Analyst to join our team supporting US CyberCommand in Columbia, MD.

TekSynap is a fast growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. "Technology moving at the speed of thought" embodies these principles - the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers.

We offer our full-time employees a competitive benefits package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays.

Visit us at .

Apply now to explore jobs with us!

The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination requirements mandated by contract, applicable law or regulation.

By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP".

As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration.

Additional Job Information

WORK ENVIRONMENT AND PHYSICAL DEMANDS

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.

• Location: Columbia, MD

• Type of environment: Office

• Noise level: (Low, Medium, High) Medium.

• Work schedule: Schedule is day shift Monday - Friday. May be requested to work evenings and weekends to meet program and contract needs.

• Amount of Travel: less than 10%

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform theessential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus.

WORK AUTHORIZATION/SECURITY CLEARANCE

US Citizenship

TS/SCI with Polygraph

OTHER INFORMATION

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment.

WAGE INFORMATION

Target salary range: $77,000 - $95,000. The salary range displayed is an estimate and will be determined on several factors regarding the individual's particular combination of education, knowledge, skills, competencies and experience, as well as contract parameters and organizational requirements. The displayed salary is one component of the total compensation package for employees.

EQUAL EMPLOYMENT OPPORTUNITY

In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, sexual orientation, gender identity, protected veteran status, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as "protected status"). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment.

TekSynap is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please contact for assistance.

Job Locations US-MD-Columbia

ID 2024-7160

Category Information Technology

Type Regular Full-Time

ManTech seeks a motivated, career and customer-oriented Information Security Analyst to join our team in Belcamp, MD . This is an onsite position.

The Information Security Analyst will work in support of the Army for the Network Modernization & Mission Network Technical Service Support program (NetMod). NetMod sets forth the work efforts required to provide product technical support services for systems and equipment being produced, fielded, modified or supported by PdM Network Modernization (NetMod) and PdM Mission Network of the Project Manager (PM) Tactical Network (TN) of the Program Executive Office for Command Control and Communications-Tactical (PEO C3T). This support may also include future systems and equipment that is acquired for the Army to maintain its technological advantage.

Job responsibilities include but are not limited to:

• Providing network environment and advanced level computing environment support

• Paying special attention to intrusion detection, finding and fixing unprotected vulnerabilities, and ensuring that remote access points are well secured

• Collecting data from a variety of Computer Network Defense (CND) tools (including data from approved information assurance (IA) tools to include intrusion detection system alerts, firewall and network traffic logs, and host system logs) to analyze events that occur within their environment

• Applying analytical skills to this data and all compliance with relevant non-technical controls, such as physical security and configuration management, to perform an audit function for the Agent of the Certification Authority (ACA) or other government Information Assurance (IA) Manager for mitigation of risks and reporting to include report generation for certification and accreditation packages or Certification of Networthiness efforts.

• Conduct vulnerability assessments, risk analysis, and incident responses.

• Actively monitoring network traffic for suspicious activity and potential security breaches.

• Identify weaknesses in systems and applications to proactively address security risks.

Required Qualifications:

• Bachelor's degree

• 5+ years of relevant experience

• 3+ years in the Department of Defense performing information management related duties.

• Must be Information Assurance (IA) Trained and Certified per the Defense Federal Acquisition Regulation Supplement

• Possess an understanding of network protocols and security principles

• Demonstrated experience in security tools and technologies (firewalls, intrusion detection/prevention systems, SIEM)

• Experience with vulnerability scanning and penetration testing

• Possess analytical and problem-solving skills to identify and address security threats

Preferred Qualifications:

• Basic understanding of programming

• Experience with participating in simulated cyberattacks to identify vulnerabilities in systems and applications.

• Experience updating and implementing complex security systems for an organization.

Security Clearance Requirements:

• Must possess an active Secret clearance

Physical Requirements:

• Must be able to remain in a stationary position 50% of the time.

• Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.

• Frequently communicates with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

If you are a qualified individual with a disability and require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please email us at and provide your name and contact information.

Abacus Technology is seeking an Information Security Analyst to support security and information assurance activities for Hanscom AFB. This is a full-time position.

Support Host Based Security System (HBSS).
• Implement software patches and security fixes when it cannot be done using enterprise MECM.
• Conduct troubleshooting and repairs over the phone, Teams, remotely utilizing Dameware, and desk-side.
• Deliver quality timely customer service while also meeting contract threshold metrics for phone and ticket resolutions.
• Periodically review processes, procedures, and client configurations for completeness, effectiveness and compliance with information assurance polices and DISA STIGs.
• Analyze ACAS vulnerability scan reports, deploy software upgrades and patches to mitigate identified vulnerabilities.
• Use expertise with tools such as PowerShell and Windows Scripting to repackage software applications, operating systems, and patches for deployment to workstations.

3+ years experience in information security. Bachelor's degree in a related field. Additional years of experience may be substituted for degree requirements. Must be Security+ CE certified. Strong knowledge of Windows Desktop Operating Systems (Windows 10/11). Working knowledge of Microsoft Active Directory. General knowledge of HBSS, ACAS, and ARAD. Knowledge of PowerShell and the ability to write custom scripts. Experience with a trouble ticket system such as Remedy or ServiceNow. Working knowledge of Microsoft Office Products (O365/2016), Teams, Outlook and Excel. Able to resolve issues quickly and efficiently to comply with metric requirements. Proficient with computer, network, and server hardware. Must have strong customer service and communication skills. Able to work in a team environment and interact with all levels of an organization in a professional manner. Keen attention to detail. Must be a US citizen and hold a current Secret clearance.

Applicants selected will be subject to a U.S. government security investigation and must meet eligibility requirements for access to classified information.

EOE/M/F/Vet/Disabled

Summary The Information Security Analyst I assists safeguarding the bank's sensitive data, systems, and customer information from cyber threats. The Information Security Analyst I will participate in monitoring and responding to security incidents, performing risk assessments, supporting audits and the implementation and management of security policies and controls to ensure compliance with industry regulations. This position requires a proactive problem-solver with an understanding of cybersecurity best practices in a banking environment.

Duties and Responsibilities include the following.

• Security Monitoring & Incident Response: Assist in investigating security incidents, documenting findings, and developing incident response plans to minimize impact and prevent recurrence.
• Risk Assessments: Assist in conducting periodic risk assessments and recommending mitigation strategies to ensure that the bank's information systems are protected against evolving cyber threats.
• Policy & Compliance: Assist in the development and enforcement of security policies, procedures, and controls to meet industry best practices and regulatory requirements (e.g., PCI DSS, GLBA, SOX, FFIEC).
• Threat Intelligence: Stay updated on emerging threats, vulnerabilities, and security trends. Collaborate with other departments to proactively enhance the bank's security posture and strategies.
• Audits: Assist in conducting periodic audits of security controls and response to internal and external audit request as needed. Participate in remediation efforts and track progress as needed.
• Reporting & Documentation: Document security incidents, assessments, and activities. Assist in the creation of regular reports for management on the status of the bank's security posture.
• Security Awareness & Training: Support and participate in security awareness training programs for bank employees to promote safe computing practices and a culture of security awareness.
• Collaboration: Work closely with IT, compliance, and other departments to resolve security issues, implement security controls, and ensure that security measures are embedded into all areas of the bank's operations.
• Other duties and/or projects as assigned.

Supervisory Responsibilities

This job has no supervisory responsibilities.

Competencies - To perform the job successfully, an individual should demonstrate the following competencies:

Analytical and Design - Synthesizes complex or diverse information; Collects and researches data; Gains intuition and experience combined with best practices to advance competencies in data and process evaluation; Follows workflows and procedures; Contributes creative solutions; Demonstrates attention to detail.

Problem Solving - Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully; Works well in group problem solving situations.

Technical Skills - Strives to continuously build knowledge and skills; Shares expertise with others; Solves problems using logic.

Interpersonal Skills/Customer Service - Focuses on resolution to conflict instead of being concerned about the source of the conflict; Maintains confidentiality; Listens to others without interrupting; Responds timely to customer needs; Responds to requests for service and assistance; Meets commitments.

Oral and Written Communication - Speaks clearly and persuasively in positive or negative situations; Listens and gets clarification; Responds well to questions; Writes clearly and informatively; Varies writing style to meet needs; Able to read and interpret written information.

Teamwork - Balances team and individual responsibilities; Exhibits objectivity and openness to others' views; Puts success of team above own interests; Supports everyone's efforts to succeed.

Quality Management - Looks for ways to improve and promote quality; Demonstrates accuracy and thoroughness.

Diversity and Ethics - Demonstrates knowledge of EEO policy; Promotes a harassment-free environment; Works with integrity and ethically.

Organizational Support - Follows policies and procedures; Completes administrative tasks correctly and on time; Supports organization's goals and values; Supports affirmative action and respects diversity.

Judgment and Motivation - Displays willingness to make decisions; Exhibits sound and accurate judgment; Supports and explains reasoning for decisions; Includes appropriate people in decision-making process; Makes timely decisions; Demonstrates persistence and overcomes obstacles.

Planning/Organizing - Prioritizes and plans work activities; Uses time efficiently; Develops realistic action plans.

Professionalism - Approaches others in a tactful manner; Reacts well under pressure; Treats others with respect and consideration regardless of their status or position; Accepts responsibility for own actions.

Adaptability, Initiative and Innovation - Adapts to changes in the work environment; Manages competing demands and prioritizes; accordingly, Changes approach or method to best fit the situation; Able to deal with frequent change, delays, or unexpected events; Looks for and takes advantage of opportunities; Asks for and offers help when needed; Meets challenges with resourcefulness; Generates suggestions for improving work.

Attendance/Punctuality and Dependability - Is consistently at work and on time; Follows instructions, responds to management direction; Takes responsibility for own actions; Commits to long hours of work when necessary to reach goals; Completes tasks on time or notifies appropriate person with an alternate plan.

Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Preferred Qualifications

• Technical proficiency in security-related hardware and software; ability to function as a consultant to other IT groups on security matters.
• Knowledge of security controls for servers, workstations, network routers, and firewalls.
• Knowledge of security and internal control frameworks such as: ISO 27001, NIST 800-53, COBIT and COSO.
• Experience with implementation and management of compliance requirements such as PCI and SOX.
• Understanding and familiarity with audit requirements and process.

Education and/or Experience

Bachelor's degree (B. A.) from four-year college or university, preferably in Cybersecurity, Information Technology, Computer Science, or a related field.

• Experience: 1-5 years of experience in information security or related IT role, preferably in a financial services or banking environment
• Certifications (Preferred): CISSP, CISM, CISA, CEH, CompTIA Security+, GSEC, or similar certifications.

Computer Skills

Proficiency in Microsoft Office (Word, Excel, PowerPoint); experience with event monitoring and industry security tools.

Bank Culture/Customer Service Skills

Promotes the Bank's culture, including the support of our Brand promise and Core Values.

Ability and judgment to interact and communicate appropriately with other employees, customers and supervisor. Ability to serve customers, both internal and external, (community/public) in a manner that will reflect superior customer relations and enhance the overall marketing effort of Origin Bank.

Physical Demands While performing the duties of this job, the employee is frequently required to stand; walk; sit; use hands to finger, handle, or feel and talk or hear. The employee is occasionally required to reach with hands and arms; climb or balance and stoop, kneel, crouch, or crawl. The employee must regularly lift and /or move up to 10 pounds, frequently lift and/or move up to 25 pounds and occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision and ability to adjust focus.

Work Environment The noise level in the work environment is usually moderate.

This job description reflects management's assignment of essential functions. It does not prescribe or restrict the tasks that may be assigned. Origin Bank shall, in its discretion, modify or adjust the position to meet the Bank's changing needs. This job description is not a contract and may be adjusted as deemed appropriate in the Bank's sole discretion.

Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. Know Your Rights

Remote positions are intended to be filled in states within our footprint, which includes: Alabama, Florida, Louisiana, Mississippi, and Texas. Any exception to this policy requires further regulatory review and approval by management.

Summary The Information Security Analyst I assists safeguarding the bank's sensitive data, systems, and customer information from cyber threats. The Information Security Analyst I will participate in monitoring and responding to security incidents, performing risk assessments, supporting audits and the implementation and management of security policies and controls to ensure compliance with industry regulations. This position requires a proactive problem-solver with an understanding of cybersecurity best practices in a banking environment.

Duties and Responsibilities include the following.

• Security Monitoring & Incident Response: Assist in investigating security incidents, documenting findings, and developing incident response plans to minimize impact and prevent recurrence.
• Risk Assessments: Assist in conducting periodic risk assessments and recommending mitigation strategies to ensure that the bank's information systems are protected against evolving cyber threats.
• Policy & Compliance: Assist in the development and enforcement of security policies, procedures, and controls to meet industry best practices and regulatory requirements (e.g., PCI DSS, GLBA, SOX, FFIEC).
• Threat Intelligence: Stay updated on emerging threats, vulnerabilities, and security trends. Collaborate with other departments to proactively enhance the bank's security posture and strategies.
• Audits: Assist in conducting periodic audits of security controls and response to internal and external audit request as needed. Participate in remediation efforts and track progress as needed.
• Reporting & Documentation: Document security incidents, assessments, and activities. Assist in the creation of regular reports for management on the status of the bank's security posture.
• Security Awareness & Training: Support and participate in security awareness training programs for bank employees to promote safe computing practices and a culture of security awareness.
• Collaboration: Work closely with IT, compliance, and other departments to resolve security issues, implement security controls, and ensure that security measures are embedded into all areas of the bank's operations.
• Other duties and/or projects as assigned.

Supervisory Responsibilities

This job has no supervisory responsibilities.

Competencies - To perform the job successfully, an individual should demonstrate the following competencies:

Analytical and Design - Synthesizes complex or diverse information; Collects and researches data; Gains intuition and experience combined with best practices to advance competencies in data and process evaluation; Follows workflows and procedures; Contributes creative solutions; Demonstrates attention to detail.

Problem Solving - Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully; Works well in group problem solving situations.

Technical Skills - Strives to continuously build knowledge and skills; Shares expertise with others; Solves problems using logic.

Interpersonal Skills/Customer Service - Focuses on resolution to conflict instead of being concerned about the source of the conflict; Maintains confidentiality; Listens to others without interrupting; Responds timely to customer needs; Responds to requests for service and assistance; Meets commitments.

Oral and Written Communication - Speaks clearly and persuasively in positive or negative situations; Listens and gets clarification; Responds well to questions; Writes clearly and informatively; Varies writing style to meet needs; Able to read and interpret written information.

Teamwork - Balances team and individual responsibilities; Exhibits objectivity and openness to others' views; Puts success of team above own interests; Supports everyone's efforts to succeed.

Quality Management - Looks for ways to improve and promote quality; Demonstrates accuracy and thoroughness.

Diversity and Ethics - Demonstrates knowledge of EEO policy; Promotes a harassment-free environment; Works with integrity and ethically.

Organizational Support - Follows policies and procedures; Completes administrative tasks correctly and on time; Supports organization's goals and values; Supports affirmative action and respects diversity.

Judgment and Motivation - Displays willingness to make decisions; Exhibits sound and accurate judgment; Supports and explains reasoning for decisions; Includes appropriate people in decision-making process; Makes timely decisions; Demonstrates persistence and overcomes obstacles.

Planning/Organizing - Prioritizes and plans work activities; Uses time efficiently; Develops realistic action plans.

Professionalism - Approaches others in a tactful manner; Reacts well under pressure; Treats others with respect and consideration regardless of their status or position; Accepts responsibility for own actions.

Adaptability, Initiative and Innovation - Adapts to changes in the work environment; Manages competing demands and prioritizes; accordingly, Changes approach or method to best fit the situation; Able to deal with frequent change, delays, or unexpected events; Looks for and takes advantage of opportunities; Asks for and offers help when needed; Meets challenges with resourcefulness; Generates suggestions for improving work.

Attendance/Punctuality and Dependability - Is consistently at work and on time; Follows instructions, responds to management direction; Takes responsibility for own actions; Commits to long hours of work when necessary to reach goals; Completes tasks on time or notifies appropriate person with an alternate plan.

Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Preferred Qualifications

• Technical proficiency in security-related hardware and software; ability to function as a consultant to other IT groups on security matters.
• Knowledge of security controls for servers, workstations, network routers, and firewalls.
• Knowledge of security and internal control frameworks such as: ISO 27001, NIST 800-53, COBIT and COSO.
• Experience with implementation and management of compliance requirements such as PCI and SOX.
• Understanding and familiarity with audit requirements and process.

Education and/or Experience

Bachelor's degree (B. A.) from four-year college or university, preferably in Cybersecurity, Information Technology, Computer Science, or a related field.

• Experience: 1-5 years of experience in information security or related IT role, preferably in a financial services or banking environment
• Certifications (Preferred): CISSP, CISM, CISA, CEH, CompTIA Security+, GSEC, or similar certifications.

Computer Skills

Proficiency in Microsoft Office (Word, Excel, PowerPoint); experience with event monitoring and industry security tools.

Bank Culture/Customer Service Skills

Promotes the Bank's culture, including the support of our Brand promise and Core Values.

Ability and judgment to interact and communicate appropriately with other employees, customers and supervisor. Ability to serve customers, both internal and external, (community/public) in a manner that will reflect superior customer relations and enhance the overall marketing effort of Origin Bank.

Physical Demands While performing the duties of this job, the employee is frequently required to stand; walk; sit; use hands to finger, handle, or feel and talk or hear. The employee is occasionally required to reach with hands and arms; climb or balance and stoop, kneel, crouch, or crawl. The employee must regularly lift and /or move up to 10 pounds, frequently lift and/or move up to 25 pounds and occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision and ability to adjust focus.

Work Environment The noise level in the work environment is usually moderate.

This job description reflects management's assignment of essential functions. It does not prescribe or restrict the tasks that may be assigned. Origin Bank shall, in its discretion, modify or adjust the position to meet the Bank's changing needs. This job description is not a contract and may be adjusted as deemed appropriate in the Bank's sole discretion.

Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, pregnancy, genetic information, disability, status as a protected veteran, or any other protected category under applicable federal, state, and local laws. Know Your Rights

Remote positions are intended to be filled in states within our footprint, which includes: Alabama, Florida, Louisiana, Mississippi, and Texas. Any exception to this policy requires further regulatory review and approval by management.