Role Description Peraton is seeking an Information Systems Security Officer (ISSO) to join our team. The Information System Security Officer (ISSO) is part of the PERATON DHS’ Security team and plays a Cybersecurity operational compliance role within the Citizen Security and Public Services Sector (CS&PS). The position is responsible for performing as a named ISSO for a Government System and assisting other ISSOs with end-to-end Governance Risk and Compliance (GRC) functions that entails security control implementation, continuous monitoring, and federal Assessment and Authorization (A&A) activities. Day to Day Work Responsibilities: - Works closely under the supervision of Cybersecurity Manager and with other security personnel within Peraton CS&PS Sector to ensure operational security measures are implemented. - Assesses and mitigates system security risks; determines and analyzes security requirements for implementation and testing. - Reviews and continuously monitors implemented security controls. - Creates and maintains security checklists, templates, and other tools to aid in the A&A process. - Performs security control assessment using Agency guidelines/NIST guidance and as per continuous monitoring requirements. - Performs risk analyses to determine and recommend essential safeguards. - Proactively reviews Vulnerability Scans (Nessus, ACAS, We-App, etc.) and recommends compensating controls. - Prepares supporting materials for the security authorization package in accordance with the client contractual requirements. - Develops core documents such as System Security Plan, Contingency Plan, Incident Response Plan, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, Configuration Management Plan, etc. - Maintains client-specific Plan of Action and Milestones (POA&Ms) and supports remediation activities using Information Assurance (IA) and Risk Management tools such as CSAM, eMASS, etc. - Maintains an inventory of hardware and software for the information system. - Develops, tests and trains on Contingency and Incident Response planning. - Experience working with the National Institute of Standards and Technology (NIST) and Federal Information Security Management Act (FISMA) requirements and reporting. - Experience in managing security Assessment and Authorization activities utilizing common control frameworks. - Experience with risk mitigation and selecting or designing appropriate security controls for implementation. - Experience applying cloud security concepts, requirements, design development, implementation, and integration for existing and new technology product offerings. - Experience with performing security risk and compliance activities in FedRAMP cloud-enabled environment (e.g., Microsoft Azure, Amazon AWS). - Experience in coordinating, monitoring and tracking security activities across multiple organizations. - Experience in managing security posture of General Support Systems (GSS) and Major Application system(s), working with engineering/Operation teams to remediate, and communicating system-level risks to the stakeholders. The ISSO operates as a trusted advisor in the organization, working with senior management and helps to understand operational issues and plans the next steps in collaboration with Cybersecurity Manager from an information security viewpoint. The candidate will be able to demonstrate industry expertise and thorough understanding of security governance, risk and compliance domain. This position requires the ability to interact and influence at an organizational level to carry out governance, risk and compliance activities. Qualifications - US Citizenship required - Must be able to pass US Government Clearance processes – DHS Public Trust with EOD and Secret or higher clearance - Bachelor’s degree in a technical field and 12 years experience or high school diploma/equivalent and 16 years experience - Good understanding of computer network security technologies used in the industry and related security configurations (e.g., DISA STIGs, CIS Benchmarks and settings) - Knowledge of the security countermeasures and overall RMF and NIST compliance guidelines - Must have the ability to influence system stakeholders in the execution of security and compliance requirements Requirements - Experience with industrial, contract, personnel security and security training - Excellent communication skills - Ability to work effectively in diverse, multi-national and virtual environments - Self-motivated and tenacious and demonstrates sound judgment and integrity - Experience of working with Federal Information Processing (FIPS), FISMA, FedRAMP and other Cyber Security related laws, regulations and directives - Experience of presenting at client meetings - Experience of translating contractual security requirements to deliverables - Knowledge of Federal Government Security, industry and market trends and CS&PS business and offerings - Understands federal security and regulations and DHS’ Security Policy and has in-depth knowledge of DHS’ Security Policy 4300a Company Description Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Target Salary Range $112,000 - $179,000. This represents the typical salary range for this position. Salary is determined by various factors, including but not limited to, the scope and responsibilities of the position, the individual’s experience, education, knowledge, skills, and competencies, as well as geographic location and business and contract considerations. Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. EEO EEO: Equal opportunity employer, including disability and protected veterans, or other characteristics protected by law.

Title: Insurance Criminal Investigations Supv Location: Wake County, NC Full time job requisition id JR-110044 Job Description: Agency Dept of Insurance Division Fraud Control Group Position Number 60013459 Grade SW08 About Us The mission of the North Carolina Department of Insurance is to promote a stable insurance market through unbiased regulation and to protect the lives and property of every citizen in all 100 counties while fostering superior, user-friendly service, courtesy, and respect. Our agency licenses insurance agents, adjusters, bail bondsmen and more, along with investigating fraud matters involving insurance consumers and any entity or individual regulated by the Department. In an ever-changing environment, it is the vision of the Department of Insurance to maintain the stabilization of the insurance industry in order to provide more products, competitive prices and consumer protection. Description of Work - This is a repost. Previous applicants need not reapply.* - This posting is open to current Department of Insurance employees only.* Recruitment Range: $61,275 - $86,569 Salary Grade: SW08 This recruitment is for two positions: Position # 60013459 - Currently Vacant Position # 60013456 - Anticipated Vacancy (Effective June 1, 2026) This position currently qualifies for a hybrid telework option with routine office and remote workday. The NC Department of Insurance trusts our employees to be self-motivated and successful in hybrid/remote roles. Telework options are subject to change at the discretion of management. Mission of the Department of Insurance: The North Carolina Department of Insurance's mission is to promote a stable insurance market through unbiased regulation and to protect the lives and property of every citizen in all 100 counties while fostering superior, user-friendly service, courtesy, and respect. North Carolina Department of Insurance offers rewarding careers in a number of different fields that helps us protect consumers and regulate the insurance industry in North Carolina. But that's not all that we do! NCDOI also investigates insurance fraud. We set standards for and inspect fire stations, regulate engineering codes and work with building inspectors in every corner of North Carolina. If you're interested in a career that will help make North Carolina a safer and better place to live while working with some of the best professionals in the industry. Apply today! Primary Purpose of the Position: District Supervisors conduct investigations of criminal activity reported by private citizens, other governmental entities, law enforcement and industry. District Supervisors routinely work with industry Special Investigative Units (SIU), the National Insurance Crime Bureau (NICB), the National Association of Insurance Commissioners (NAIC), other NCDOI regulatory divisions, and other non-law enforcement state government agencies, commissions and boards. District Supervisors provide coordinated high level technical assistance and resources to federal, state, and local law enforcement in the area of insurance fraud criminal investigations. The primary investigative focus is directed at the detection, apprehension and criminal prosecution of persons, companies and/or other entities identified during criminal investigations. Furthermore, a secondary purpose of the District Supervisor is to provide deterrent effects in the prevention of insurance related crimes that affect our state's economy. This includes constant training, seminars and presentations to diverse and related groups. Knowledge Skills and Abilities/Management Preferences Effective July 1, 2025, candidates now meet the minimum qualifications of a position if they have the minimum education and experience listed from the class specification. The knowledge, skills, and abilities listed in the vacancy announcement should be used as management preferences and be used to screen for the most qualified pool of applicants. Management Preferences: - District Commanders must possess advanced knowledge of the methods and procedures and practices available to solve a wide variety of complex financial insurance related crimes. - District Commanders must have considerable knowledge of the principles of securing and identifying a wide variety of physical and financial related evidence. - District Commanders must possess the ability to apply specialized complex principles and techniques of modern criminal investigative work. - District Commanders are required to communicate directly and indirectly with various groups including citizen, business and law enforcement communities. This contact can include interviews and other methods of gathering information such as technology sources. This communication also includes contact with suspects of criminal investigations. This communication also includes the presentation of a criminal investigation case to prosecutors for adjudication. Necessary Special Qualifications: Job posting is open statewide. - Applicants must have served for at least two full time years as a Special Agent with NCDOI CID to be eligible to apply. Description of Work: This position supervises field investigations of insurance related crimes including fraud, embezzlement, and forgery in the District, one of the four geographic districts. District Commanders must have a strong knowledge of managerial theories and applications. District Commanders must have considerable knowledge to determine, detect, interpret and apply state criminal statutes of North Carolina to criminal investigations, evidence gathering, legal process, arrest, and courtroom procedures and practices. District Commanders must possess the ability to prepare comprehensive, organized and detailed written reports pertaining to investigative cases based on these procedures and practices. Work typically requires leading and coordinating virtually all elements of an investigation utilizing various techniques, equipment, and methodologies. District Commanders must have a considerable knowledge of NCDOI-CID rules, regulations, policies and procedures. Furthermore, District Commanders must have an advanced knowledge of all insurance business practices; including those related to accounting, auditing and regulatory review. The successful applicant will possess personnel management skills required for the administration, evaluation, and review of subordinate staff in accordance with policies, procedures and work performance evaluations. This position requires leadership skills to develop and lead special agents in executing the NCDOI-CID mission and accomplishing Division goals. Strong communication skills both oral and in writing are necessary for this position. Minimum Education and Experience Some state job postings say you can qualify by an "equivalent combination of education and experience." If that language appears below, then you may qualify through EITHER years of education OR years of directly related experience, OR a combination of both. See the Education and Experience Equivalency Guide for details. Bachelor's degree in Criminal Justice or related field from an appropriately accredited institution and four years of experience in law enforcement or investigative work, including two years in insurance investigative work; or an equivalent combination of education and experience; and certification as a sworn law enforcement officer in accordance with the provisions of the North Carolina Criminal Justice Training and Standards Commission. Benefits of NC State Employment: We value our employees and offer a wide variety of competitive and family-friendly benefits. Benefits to include: - 12 Annual paid Holidays - North Carolina State Health Plan administered by AETNA - Supplemental Benefits including: Flexible Spending Accounts, Accident Insurance, Cancer & Specified Disease, Critical Illness, Dental and Vision - NC State Retirement (TSERS) - WeSave Employee Discounts Learn more about employee perks/benefits: - Why Work For NC? - NC OSHR: Benefits Supplemental and Contact Information: For consideration for this vacancy, all applicants must complete an online application using the "APPLY" button above. To receive credit for your work history and credentials, you must list the information on the State Application. Any information omitted from your application cannot be considered for qualifying credit. - Applications with "see attached" or resumes in lieu of completed education and work experience on the formal application will be deemed incomplete and will not be eligible for consideration for the vacancy* Applications for positions requiring specific coursework must be accompanied by a copy of the applicant's transcript. The Department of Insurance/Industrial Commission may conduct criminal history checks of all job applicants recommended for employment. Failure to accurately acknowledge information on criminal convictions on the state application form will be grounds for non-consideration of applications, disciplinary action, and possible criminal prosecution. The Department of Insurance/Industrial Commission is an Equal Employment Opportunity employer and uses the merit-based recruitment and selection plan to fill positions subject to the State Personnel Act with the most qualified individuals. - Academic Degrees must be from appropriately accredited institutions and will be verified. If you are selected for a position at DOI/IC, your academic credentials will be verified. - Applicants requesting and receiving an accommodation under the Americans with Disabilities Act (ADA) are eligible to submit paper applications via mail or by fax. - Applicants seeking Veteran's Preference under N.C.G.S .126 must submit a DD Form 214, Certificate of Release or Discharge from Active Duty. This information may be attached to the online application or be faxed on or before the closing date. Applicants may check the status of their application for a vacancy at any time by logging in to the government jobs system. Once the applicant has logged in, the status of each submitted application is documented next to each vacancy for which they have applied. EEO Statement The State of North Carolina is an Equal Employment Opportunity Employer and dedicated to providing employees with a work environment free from all forms of unlawful employment discrimination, harassment, or retaliation. The state provides reasonable accommodation to employees and applicants with disabilities; known limitations related to pregnancy, childbirth, or related medical conditions; and for religious beliefs, observances, and practices.

Title: Encryption Program Analyst, AVP, Hybrid Location: Quincy, Massachusetts Princeton, New Jersey Clifton, New Jersey Austin, Texas Berwyn, Pennsylvania London, England Boston, Massachusetts time type Full time job requisition id R-785791 Job Description: Who we are looking for State Street is seeking an experienced Encryption Program Analyst, AVP to help design, implement, and optimize enterprise-wide encryption and key management solutions across cloud, on-premises, and IoT environments in a highly regulated environment. This role will be responsible for defining cryptographic strategies, ensuring compliance with regulatory standards, and leading the integration of encryption services across a diverse infrastructure. As a financial institution increasingly adopting hybrid cloud and IoT-enabled banking solutions, this role will play a critical part in securing data at rest, in transit, and in use, ensuring end-to-end cryptographic protection across applications, infrastructure, and connected devices. The ideal candidate will have deep expertise in cryptographic key management, Hardware Security Modules (HSMs), cloud security, IoT encryption protocols, and enterprise data protection. Why this role is important to us Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation. We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company. What you will be responsible for As an Encryption Analyst you will: - Implement and maintain the enterprise cryptographic strategy, ensuring alignment with security, compliance, and business objectives. - Define and maintain key lifecycle management processes and procedures, including key generation, rotation, revocation, and decommissioning for cloud, on-premises, and IoT environments. - Support the deploy of centralized Key Management Systems (KMS), including cloud-native KMS (AWS KMS, Azure Key Vault, OCI KMS), and enterprise HSMs - Ensure robust data encryption methodologies are applied to data stored in databases, applications, and IoT connected devices. - Collaborate with cloud security and DevSecOps teams to integrate encryption and key management into CI/CD pipelines and Infrastructure as Code (IaC) deployments. - Develop IoT encryption frameworks to secure IoT devices. - Support the integration of encryption solutions into applications, databases, cloud services, IoT platforms, and enterprise infrastructure. - Collaborate with application security, infrastructure, and DevSecOps teams to embed cryptographic security controls into software development and deployment processes. - Support post-quantum cryptography (PQC) readiness by evaluating and preparing for emerging threats to encryption security. - Ensure compliance with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN 303 645). - Developing governance frameworks for encryption and cryptographic key management, including policies for key storage, access control, logging, and auditing. - Conduct risk assessments, vulnerability testing, and security reviews for cryptographic implementations, IoT ecosystems, and cloud security controls. - Act as a key stakeholder in security audits, regulatory assessments, and IoT security standardization efforts. - Provide Technical support and training to internal teams on encryption best practices, cloud security, and IoT security. - Stay ahead of advancements in cryptographic algorithms, quantum computing risks, and emerging IoT security frameworks. - Drive innovation in encryption automation, integrating key management with DevSecOps, and Infrastructure as Code (IaC). What we value These skills will help you succeed in this role - Strong proficiency in Python, PowerShell, Bash, or Java. - Understanding of cryptographic algorithms (AES, RSA, ECC), hardware security modules (HSMs), and secure key storage practices. - Experience working in financial institutions or other highly regulated industries. - Hands-on Experience with key management systems (Fortanix, ASW KMS, Azure Key Vault, OCI KMS). - Experience with Kubernetes, Terraform, Ansible, Chef, and CI/CD automation. Education & Preferred Qualifications - You have multiyear (>4 years) experience within Cybersecurity including SecOps, Cloud Security, and secure architecture. - Bachelor's Degree in Computer Science/Engineering, related discipline, or equivalent work experience. - Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. - Familiarity with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST 800-183, ETSI EN 303 645). Work Requirement - Hybrid work environment conforming to State Streets in office requirements based on location. Salary Range: $90,000 - $157,500 Annual The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ. Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans. About State Street Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success. We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future. As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Title: Cyber Data Protection Manager - MSFT Purview Location: Chicago United States Job Description: As a Cyber Data Protection Manager with a focus on Microsoft Purview, you will help clients design and implement enterprise data governance and compliance strategies using Microsoft's cloud-native tools. You will work with cross-functional teams to assess data protection risks, define governance frameworks, and deploy Microsoft Purview solutions that support regulatory compliance and business resilience. From day one, you'll be empowered by the greater Cyber & Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently. Your day-to-day may include: - Leading the implementation of Microsoft Purview capabilities, including: - Information Protection & Sensitivity Labels - Data Loss Prevention (DLP) - Insider Risk Management - eDiscovery and Compliance Manager - Data Lifecycle and Records Management - Supporting clients in aligning Microsoft Purview with regulatory frameworks such as GDPR, HIPAA, CCPA, and ISO 27001. - Conducting current-state assessments of data governance and compliance programs. - Developing future-state roadmaps and implementation plans for Microsoft Purview adoption. - Collaborating with client stakeholders to define data classification, retention, and access policies. - Supporting the integration of Microsoft Purview with Microsoft 365, Azure, and third-party platforms. - Delivering workshops and training sessions to educate client teams on Microsoft compliance tools. - Contributing to internal knowledge development and client proposal efforts. You have the following technical skills and qualifications: - Bachelor's degree in Cybersecurity, Information Systems, Business, or a related field. - Relevant certifications such as SC-400, CIPP, CIPM, CISSP, CISM, or other related certifications required - 5+ years of experience in cybersecurity, data governance, or compliance consulting. - Hands-on experience with Microsoft Purview and Microsoft 365 compliance solutions. - Strong understanding of data privacy regulations and risk management frameworks. - Familiarity with Microsoft Copilot for Compliance and AI-driven governance tools. - Strong communication skills and the ability to translate technical concepts for business stakeholders. - Experience in project management and cross-functional team leadership. The base salary range for this position in Chicago, IL only is between $144,000 and $216,000. The base salary range for this position in New York, NY only is between $155,500 and $233,300. #LI-LG1 #Hybrid - Job Identification114629 - Job CategorySecurity & Privacy Risk Management - Degree LevelBachelor's Degree - Job ScheduleFull time - Locations Chicago, IL, United States New York, NY, United States Charlotte, NC, United States Philadelphia, PA, United States Arlington, VA, United States