6,258 Vulnerability Assessments jobs in the United States

This position continuously monitors the alert queue; investigates security alerts; monitors health of security sensors and endpoints; collects data and context necessary to initiate IR response. In addition, the analyst will be responsible for maintaining multiple security technologies for detecting and preventing IT security incidents.
• *What you'll be doing**

+ Responsible for correlation and initial triage of security events and indicators generated by security monitoring tools to determining scope, urgency and potential impact.

+ Document incidents from initial detection through final resolution.

+ Perform incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify suspicious and malicious activities.

+ Maintain expertise in Operating Systems (Windows/Linux) operations and artifacts to assist in investigations.

+ Ability to analyze different data types from various sources within the enterprise and draw conclusions regarding past and potential current security incidents

+ Provide after-hours (on-call/weekend rotational) support as required to address critical incidents and maintain continuous coverage.

+ Perform threat hunting exercises to proactively and iteratively discover current or historical threats that evade existing security mechanisms and use that information to improve cyber resilience.

+ Create and modify SIEM dashboards to clearly identify scope of findings or monitor activity.

+ Tune and maintain security tool policies (EDR, IPS, Content Filter, etc.) to reduce false positives and improve tool detection capabilities.
• *What we’re looking for**

+ 3 - 5+ Years Experience with one or more of the following technologies: Endpoint Detection and Response (EDR/XDR) and/or DFIR opensource tools (Ex. Kape, Plaso Log2Timeline, Autopsy, etc.)

+ 3 - 5+ Years Information Security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration.

+ 4 Year/Bachelor's degree or equivalent work experience

#DICE
• *What’s it like to work here?**

At Lincoln Financial, we love what we do. We make meaningful contributions each and every day to empower our customers to take charge of their lives. Working alongside dedicated and talented colleagues, we build fulfilling careers and stronger communities through a company that values our unique perspectives, insights and contributions and invests in programs that empower each of us to take charge of our own future.
• *What’s in it for you:**

+ Clearly defined career tracks and job levels, along with associated behaviors for each of Lincoln's core values and leadership attributes

+ Leadership development and virtual training opportunities

+ PTO/parental leave

+ Competitive 401K and employee benefits ( Free financial counseling, health coaching and employee assistance program

+ Tuition assistance program

+ Work arrangements that work for you

+ Effective productivity/technology tools and training

OneOncology is positioning community oncologists to drive the future of cancer care through a patient-centric, physician-driven, and technology-powered model to help improve the lives of everyone living with cancer. Our team is bringing together leaders to the market place to help drive OneOncology's mission and vision.

Why join us? This is an exciting time to join OneOncology. Our values-driven culture reflects our startup enthusiasm supported by industry leaders in oncology, technology, and finance. We are looking for talented and highly-motivated individuals who demonstrate a natural desire to improve and build new processes that support the meaningful work of community oncologists and the patients they serve.

Job Description:

The Security Analyst will report to OneOncology's Director, Infrastructure & Security. This position will play a critical role in enhancing the security posture of our oncology physician practices while ensuring strict compliance with HITRUST standards for our corporate office. You will be responsible for implementing and maintaining robust security measures, analyzing vulnerabilities, and responding to security incidents. Your expertise will contribute to safeguarding sensitive healthcare data and maintaining the confidentiality, integrity, and availability of our systems and information.

Responsibilities

• Collaborate with cross-functional teams to identify and address security risks and vulnerabilities across our partnered practices.
  

• Develop and implement security policies, procedures, and guidelines tailored to the unique needs of the healthcare environment.
  

• Conduct regular security assessments, audits, and penetration testing to identify weaknesses and recommend improvements.
  

• Stay updated with the latest security trends, threats, and technologies to proactively enhance our security posture.
  

• Ensure compliance with HITRUST standards, HIPAA regulations, and other relevant healthcare security requirements.
  

• Conduct ongoing risk assessments and security audits to maintain and demonstrate compliance.
  

• Assist in the preparation of documentation, reports, and evidence required for compliance audits.
  

• Develop and maintain an incident response plan to effectively handle security breaches, incidents, and breaches of sensitive data.
  

• Investigate security incidents, perform root cause analysis, and recommend corrective actions to prevent recurrence.
  

• Collaborate with IT teams to implement security patches, updates, and configurations to mitigate vulnerabilities.
  

• Monitor security alerts, logs, and reports to detect and respond to security threats and breaches.
  

• Analyze security data to identify patterns, trends, and potential risks, and take proactive measures to mitigate them.
  

• Evaluate the security practices of third-party vendors and partners to ensure their compliance with our security standards.
  

• Collaborate with procurement and legal teams to assess and manage vendor risks effectively.
  

• Implement and manage security tools such as firewalls, intrusion detection/prevention systems, and endpoint protection solutions.
  

• Gather and analyze threat intelligence to anticipate and mitigate potential security threats.
  

• Regularly review and update the security architecture to ensure it aligns with the latest security standards and best practices.
  

• Implement and manage Data Loss Prevention (DLP) solutions to prevent unauthorized access and data breaches.
  

• Develop and maintain security metrics to measure the effectiveness of security programs and present findings to senior management.
  

• Collaborate with business continuity teams to ensure security measures are integrated into business continuity and disaster recovery plans.
  

• Manage Identity and Access Management (IAM) processes to ensure that only authorized individuals have access to sensitive information.
  

• Develop and lead ongoing security awareness programs to educate employees about emerging threats and security best practices.
  

• Ensure the security of cloud-based systems and data by implementing appropriate security controls and monitoring mechanisms.
  

• Stay informed about changes in relevant regulations and ensure that the organization's security policies and practices are updated accordingly.
  

• Other duties as assigned to help drive our mission of improving the lives of everyone living with cancer.
  

• Success in leading and managing large, complex projects with multiple phases.
  

• Excellent interpersonal, written (grammar, spelling, format), and verbal communication skills
  

• Excellent organizational skills and attention to detail
  

• Reliable, fast learner, self-motivated
  

• Ability to effectively handle shifting priorities and adapt to changing demands in a dynamic
  

• environment
  

• Ability to develop alternative solutions to problems; comparing and analyzing data and
  

• measuring results.
  

• Bachelor's degree in Information Security, Computer Science, or a related field. Relevant certifications (e.g., CISSP, CISM, CompTIA Security+) are preferred.
  

• Proven experience in information security and compliance, preferably in a healthcare or regulated environment.
  

• In-depth knowledge of HITRUST, HIPAA, and other relevant healthcare security standards and regulations.
  

• Strong understanding of security technologies, tools, and methodologies, including intrusion detection systems, firewalls, encryption, and vulnerability assessment.
  

• Excellent analytical, problem-solving, and communication skills.
  

• Ability to work independently and as part of a team, effectively managing multiple tasks and priorities.
  

• Strong interpersonal skills to collaborate with stakeholders across various departments and levels of the organization.
  

• Experience with security incident response and management protocols.
  

My direct end client Florida Dept. of Transportation (FDOT) in Boca Raton, FL.
Onsite position.
Rate: $65 hr. C2C
Exhibit E must be completed.
USC, GC

Description
The Security Analyst is responsible for assisting with the day-to-day operations of securing the departments various
information systems. Reporting to the Security Risk and Compliance Office Security Manager, the Security Analyst is
tasked with providing technical expertise in all areas of network, system, and application security. The Security Analyst
works closely with the various teams in the infrastructure department to ensure that systems and networks are always
designed, developed, deployed, and managed with an emphasis on strong, effective security and risk management
controls. The Security Analyst is responsible for departments vulnerability management program, administers the
annual cybersecurity assessments and penetration tests, and researches and reports on emerging threats to help the
department take pre-emptive risk mitigation steps. The Security Analyst effectively correlates and analyzes security
events to proactively detect threats and mitigate attacks before they occur.

Responsibilities
Proactively monitor the environment to detect and implement steps to mitigate cyber-attacks before they occur.
Provide technical expertise regarding security-related concepts to operational teams within the department
and the business.
Review, investigate, and respond to real-time alerts within the environment.
Review real-time and historical reports for security and/or compliance violations.
Monitor online security-related resources for new and emerging cyber threats.
ssesses new security technologies to determine potential value for the enterprise.
Conducts vulnerability assessments of department systems and networks.
Manage systems owned by the Security Risk and Compliance Office (SRCO)
Liaise with the departments trusted security manage services, infrastructure technical resources, and 3rd party
business vendors.

Demonstrable Requirements
four-year college degree or equivalent industry training and certifications.
Three to five years of experience in a security analyst or related position.
Technical knowledge of enterprise-class technologies such as firewalls, routers, switches, wireless access
points, VPNs, and desktop and server operating systems.
Thorough understanding of Microsoft's enterprise technology platform, including Azure, Active Directory,
SQL, and the Windows server and desktop operating systems.
Thorough understanding of Redhat and Oracle database operating systems.
Working experience with the following technology vendors and products: Splunk, Tripwire, Rapid7 Nexpose
Vulnerability Scanner, Metasploit, Qualys Vulnerability Scanner (Cloud), Delinea Secret Server, Carbon Black
Application Protection, Veracode SAST & DAST Technologies.
Strong writing skills, as well as the ability to articulate security-related concepts to a broad range of technical
and non-technical staff.
Demonstrated experience implementing and/or enforcing security and compliance frameworks such as NIST,
PCI DSS, and ISO.
bility to demonstrate self-sufficient working capacity and proficient problem-solving skills.

• 60 months experience implementing information security and compliance programs for IT systems and OT systems.
• 60 months experience conducting written risk assessments using industry standards such as NIST, CIS Critical Controls, ISO 27001, etc.
• 48 months experience triaging and determining mitigation plans (with and/or without Vendor) to resolve security threats to business information systems.
• 48 months experience evaluating business systems (Commercial Off the Shelf and Custom Developed) for alignment with IT and OT information security policies.
• 36 months experience in securing cloud environments
• 36 months conducting information systems security analysis using Secure System Development LifeCycle (SSDLC)
• pplicable Information Security or Information Technology certifications such as GSEC, GOCSP, CGEIT, CISA, CRISC, GCCC, Security+, Network+, CCSP, CSSLP, ISSAP, ISSEP, SSCCP, etc.
• Bachelor's Degree or higher in one or more of the following: Information Security, Computer Science, Information Science, Information Assurance, Information System Management, Cybersecurity, Digital Forensics, IT Governance, Compliance and Risk Assessment

• Implement information security and compliance programs for IT systems and OT systems.
• Conduct written risk assessments for existing systems/solutions, new systems/solutions, and services in use or to be used by the business.
• ssist with management and resolution of security threats to business information systems.
• Serve as information security analyst and evaluate systems and contracts for alignment with Business and State information security policies.
• Monitor and remain aware of information security industry trends, tools, and techniques.
• Perform additional duties as required.

• Monitor security alerts and logs for tolling-related infrastructure using existing SIEM and other monitoring tools.
• Analyze, investigate, and triage security events and potential incidents involving tolling systems and devices.
• Coordinate with Tolling Division personnel, vendors, and OT operation steams to facilitate incident response, forensics, and remediation activities.
• Assist in onboarding tolling systems into the OT cybersecurity monitoring process, including asset inventory, log ingestion, and configuration baselines.
• Perform security assessments and reviews of tolling systems for vulnerabilities, misconfigurations, and gaps in compliance with standards such as NIST 800-53, NIST 800-82, and agency-specific policies.
• Support integration of tolling infrastructure into existing OT cybersecurity tools, including vulnerability management, endpoint detection, asset management, and access controls.
• Participate in the development and maintenance of incident response procedures and playbooks specific to tolling infrastructure.
• Contribute to regular security reporting, dashboards, and metrics for tolling systems.
• Collaborate with internal and external stakeholders to enhance the security posture of the tolling environment.

• Bachelor's degree in Cybersecurity, Information Technology, Engineering, or a related field; OR equivalent experience.
• 3+ years of experience in cybersecurity, with at least 1 year supporting OT, ICS/SCADA, or critical infrastructure environments.
• Familiarity with SIEM tools, log analysis, and incident response workflows.
• Working knowledge of networking protocols, system hardening, and asset inventory practices.
• Strong analytical, communication, and collaboration skills.

• Experience supporting or securing tolling systems, traffic management infrastructure, or roadside equipment.
• Knowledge of security frameworks such as NIST 800-53, NIST 800-82,or CIS Controls.
• Certifications such as GICSP, GCIA, CompTIA Security+, or CISSP.
• Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components.

• Experience supporting or securing tolling systems, traffic management infrastructure, or roadside equipment.
• Knowledge of security frameworks such as SEC 530, NIST 800-53, NIST 800-82, or CIS Controls.
• Experience working with third-party vendors and supporting environments with both state-managed and vendor-managed components.

Apply now: Security Analyst II, location is Hybrid (2 days onsite in Alexandria, VA). The start date is ASAP.

Job Title: Security Analyst II
Location-Type: Hybrid (Tues & Thurs onsite in Alexandria, VA)
Start Date Is: ASAP
Duration: Permanent
Compensation Range: $150K-$165K

Job Description:
Support and enhance security operations, ticketing processes, and incident response across various cybersecurity tools, ensuring efficient security event monitoring, troubleshooting, and process automation.

Day-to-Day Responsibilities:

• Work with IDS, IPS, SIEM, and other security tools to generate and action tickets.
• Troubleshoot and resolve security incidents, escalating as needed.
• Ensure log sources and search sources are correctly consolidated for streamlined response.
• Document security processes and work toward automating operations.
• Generate reports on security operations, incident trends, and system performance.
• Collaborate cross-functionally with cybersecurity engineers and other IT teams.
• Participate in an on-call rotation (every six weeks) for cybersecurity incidents.

• Must-Haves:
  
  • 5 years in cybersecurity and 4 years as a Security Analyst.
  • Tenure in full-time roles (ideally 3-5 years per position).
  • Hands-on experience with ITSM (ticketing systems), SIEM, IDS/IPS, next-gen firewalls, DLP, email security, and web application firewalls.
  • Strong documentation experience with the ability to create and operationalize security processes.
  • Experience investigating, blocking, and remediating malicious traffic and alerts.
  • Ability to interpret logs and analyze security events using tools like Wireshark, Fortinet Analyzer, DeepSeas, and Microsoft Defender.
  • Familiarity with scripting languages such as PowerShell, Bash, or Python for security automation.
  • Strong interpersonal skills: proactive, team player, independent, and flexible.
• Nice-to-Haves:
  
  • Experience in startups or Managed Security Providers (MSPs).
  • Knowledge of DFIR, IAM, PAM, NGFW, EDR, CASB, SOAR, MSSPs, and MITRE Telecommunication&CK framework.
  • Background in systems engineering or administration.
  • Relevant cybersecurity certifications (GCIH, GCIA, GMON, GCED, CISSP, CEH, Fortinet, CompTIA, or similar).
  • Bachelor's degree in cybersecurity, IT, or a related field (or equivalent experience).

Our client, a professional services company located in NY, NY is looking to hire a full time Security Analys t. This role collaborates with the Director of Infrastructure & Security to enhance and maintain the Firm's Information Security and Management System. The individual will actively monitor security alerts, threats, and intelligence while ensuring that high standards for information security are consistently met across all teams. The role will also require strong interaction with engineering teams to ensure security protocols are followed.

RESPONSIBILITIES

• Information Security Monitoring & Configuration:
  • chieve 100% uptime and accurate functionality of on-premise and cloud-based security monitoring systems (e.g., eSentire, Microsoft Office365/Azure Security Consoles, Cisco Umbrella, and Palo Alto Panorama).
  • Regularly assess system configurations, ensuring they meet established security standards and adapting to emerging threats.
• uditing & Compliance:
  • Conduct ISO 27001 audits
  • Manage the internal auditing of user accounts, access privileges, patch status, and security configurations.
  • Ensure that audits are completed quarterly, with 100% compliance to internal security policies and industry standards.
  • Provide detailed reports on any non-compliance issues and track corrective actions to resolution.
• lert Triage & Analysis:
  • Maintain a triage process for security alerts from internal monitoring systems, third-party intelligence, and vendor reports.
  • Respond to and resolve at least 95% of identified threats within a set timeframe (e.g., 24 hours).
  • Escalate unresolved issues based on defined protocols, ensuring no more than 2% of critical alerts are missed.
• Vendor Coordination & Risk Management:
  • Oversee the coordination of external vendors performing vulnerability assessments and penetration testing.
  • Ensure that all vendor reports are reviewed and actionable recommendations are implemented within 30 days, targeting a 95% adherence rate to recommended security improvements.
• ISMS Policy Development:
  • Lead the continuous improvement of the Firm's Information Security Management System (ISMS).
  • Successfully maintain, update, and communicate policies and procedures that align with best practices and emerging threats.
  • Ensure that 100% of all documentation is up-to-date and compliant with industry standards (e.g., ISO 27001).
• Incident Response & Security Forums Participation:
• ctively engage in the Computer Security Incident Response Team (CSIRT) and the Information Security Forum (ISF).
• Ensure that all security incidents are tracked, analyzed for root causes, and that post-incident reports with process improvements are provided within 48 hours of resolution.
• Client Security Assessments:
• Contribute to security assessments and reviews of client environments.
• Meet or exceed the firm's standard of conducting client security reviews within a 30-day window from the initial request.

• Threat Landscape Expertise: Demonstrated knowledge of current security threats and a proactive approach to research new trends, tools, and security risks.
• Security Tools and Process Improvement: Expertise in conducting ISO 27001 audits using advanced security tools and techniques for detection and analysis, continuously improving internal security processes.
• Internal Control & Documentation: Strong understanding of internal controls, security policies, and the ability to improve documentation in line with ISO 27001 or similar frameworks.
• Incident Response Knowledge: Proficient in incident analysis and response, including tracking, root cause analysis, and reporting lessons learned to improve future protocols.
• Technical Expertise: In-depth understanding of networking protocols, TCP/IP, security devices (e.g., firewalls, IDS/IPS), server operating systems (e.g., Windows, Linux), and other core infrastructure technologies.
• Penetration Testing: Practical experience with penetration testing tools and techniques to evaluate security vulnerabilities.

• Information Security certifications (CISSP, CISM, or equivalent) preferred.

• Bachelor's degree in Information Security, Computer Science, or related field.
• Information Security certifications strongly preferred.