Title: Security Officer - 32hrs/week - Aurora Aurora, MN Part time Job Description: Building Location: Northern Pines Medical Center Department: 2067590 SECURITY - NPMC HOSP Job Description: Eager to launch your continue your career with the region's most esteemed healthcare provider? Essentia seeks passionate individuals like you. As our Security Officer, you'll be more than an employee; you'll be a vital member of a community dedicated to provide safety to our patients and employees. Education Qualifications: - No education requirements Security Officers protect and safeguard patients, staff, other persons, assets and facilities within Essentia Health. Key Responsibilities: - Patrolling the healthcare environment to deter criminal activity, identify hazards, prevent incidents and safety accidents - Respond to emergencies, alarms, disasters, and threatening situations with violent, dangerous or combative persons - Enforce medical campus rules and take action to maintain order and prevent disruption or interference with medical center operations Schedule: 3:00pm - 11:00pm - Week 1: Monday Tuesday, Thursday, Friday - Week 2: Tuesday, Wednesday, Saturday, Sunday Licensure/Certification Qualifications: Certification/Licensure Required: - Completion of the Basic Training for Healthcare Security Officers from the International Association of Healthcare Safety and Security within 1 year of hire and renewal is not required - Current Basic Cardiac Life Support (BCLS) within 3 months of hire - Completes de-escalation training within 5 months of hire if no previous de-escalation training or has not had a de-escalation training/refresher within past 3 calendar years The locations listed below must meet the driving requirements and criteria acceptable to Essentia Health's insurer. - ST. JOSEPH'S MEDICAL CENTER - 4010-4007590 SECURITY - SJMC - FARGO - 3010-3017590 SECURITY - 32ND HOSP - DETROIT LAKES - 3110-3067590 SECURITY - DL HOSP - DULUTH - 2010-2047590 SECURITY - SMDC HOSP - DULUTH PARKING ENFORCEMENT - 2020-2009200 SMDC SURFACE LOTS - SMMC HOSP FTE: 0.8 Possible Remote/Hybrid Option: Shift Rotation: Day/Eve/Night Rotation (United States of America) Shift Start Time: 3:00pm Shift End Time: 11:00pm Weekends: Every Other Holidays: Yes Call Obligation: No Union: Union Posting Deadline: Compensation Range: $19.28 - $28.92 Employee Benefits at Essentia Health: At Essentia Health, we're committed to supporting your well-being, growth, and work-life balance. Our comprehensive benefits include medical, dental, vision, life, and disability insurance, along with supplemental options to fit your needs. We offer a 401(k) plan with employer contributions to help you plan for the future, and we invest in your professional development through training, tuition reimbursement, and educational programs. To help you thrive both at work and at home, we provide flexible scheduling, generous time off, and wellness resources focused on your physical, mental, and emotional health.

As a Penetration Testing Analyst, you will work on the Global Services team to help clients improve their security posture through your technical skills and knowledge of defense strategies. You will enjoy attacking networks and hacking custom protocols implemented in embedded devices. You will also work with various Managed Services teams to help deliver day-to-day tactical reports to customers, triage alerts, address customer needs, and assist with incident response handling and communication. About the Role As a Penetration Testing Analyst, your primary responsibility will be to perform technical testing against a variety of targets and to help deliver day-to-day tactical reports to our customers. You will have a front-row seat to observe and learn about the ever-evolving cyber threat landscape and gain valuable experience by helping customers remediate and mitigate prevalent threats. Specifically, your focus will be to: - Perform technical testing against a variety of targets, including network penetration testing (internal, external, and wireless), web application and API testing, and social engineering (on-premise and electronic). - Consistently produce high-quality reports and peer-review colleagues' work for errors and inaccuracies. - Help develop and create Executive Briefings. - Deliver timely reports to clients and external stakeholders. - Translate technical concepts and convey them to non-security personnel. - Be capable of learning in a fast-paced environment and taking on solo engagements. - Participate in industry conferences and professional organizations. The skills and qualities you'll bring include: - 3+ years in an active technical security role. - Excellent written and verbal communication skills. - Previous technical security consulting experience. - Knowledge of modern penetration testing tools and methods. - Strong knowledge of network, web-based application, and IEEE 802.11 security concepts. - Knowledge of Windows/Linux/UNIX internals and the Internet protocol suite. - Experience using interpreted languages (Ruby, Python, PHP, etc.) and knowledge of compiled languages (Java, C, C++, Assembly, etc.). - Experience with social engineering techniques and tactics. - A Bachelor's degree in Computer Science, MIS, CIS or a related field, or equivalent experience. - Certifications such as GPEN, CPTS, or OSCP. - The ability to ask for help. We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today. #LI-BD1 #LI-Remote About Rapid7 At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us. Rapid7, Inc. is committed to fair and equitable compensation practices. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, and certifications. We evaluate compensation decisions on a case-by-case basis, and it is not typical for an individual to be hired at the very top of the salary range. The salary range for this role in the US is: $89,300.00 - 120,800.00 USD Annual Salary ranges may vary based on geographical location. This range does not include variable/incentive compensation, equity and benefits (where applicable/eligible). All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.

• Own end-to-end audit cycles across SOC 2, ISO 27001, and PCI DSS — scoping, evidence collection, assessor coordination, and finding remediation • Lead gap analysis and maintain audit-ready documentation and policies in the trust center • Drive continuous monitoring obligations, including PCI DSS monthly reporting and SAQ completion • Partner with IT, Engineering, and Sales to implement security controls and support vendor security questionnaires • Maintain risk registers and incident playbooks as the business evolves

Role Description Dine-Source, LLC is SBA 8(a) SDB certified a company dedicated to solving IT business problems for three major markets: Federal, Commercial and Tribal. Our focus is on the ever-changing world of Cyber Security with respect to staffing for building and securing networks and enterprise applications. Another focus is to provide businesses with the Hardware & Software to meet their needs. We both sell and implement complete business solutions. - Apply expert-level knowledge of the Risk Management Framework (RMF), including NIST SP 800-53 Revisions 4 and 5, to support security authorization processes and prepare comprehensive ATO submission packages. - Coordinate with DISA, System Integrators, the Program Office, and Database Administrators to identify, analyze, and remediate system vulnerabilities. - Perform continuous monitoring of security controls in alignment with the RMF strategy, ensuring ongoing compliance and risk awareness. - Collaborate with Security Control Assessor (SCA) and Security Control Assessment Representative (SCAR) teams to plan and execute security testing for system releases and authorization activities. - Support vulnerability management efforts, including implementation and tracking of STIGs, ACAS scans, Fortify static code analysis, and SIEM-based alerting and monitoring. - Review and analyze system logs and alerts generated by the SIEM to detect potential threats and assess system health. - Assess newly identified vulnerabilities, initiate appropriate tickets, and manage resolution through the Configuration Management and cyber release processes. - Work closely with the Compliance Team to support annual FIAR audit activities (e.g., SOC 1, SOC 2), track Audit findings via POA&Ms through resolution. - Participate in annual cybersecurity evaluations and red/blue team assessments, providing analysis and remediation planning for network, application, and database architecture findings. - Contribute to AGILE Release Management Integrated Product Teams (IPTs), ensuring cybersecurity requirements are incorporated throughout system development and change processes. - Develop, review, and maintain cybersecurity policies, program documentation, and PMO guidance to support governance and compliance objectives. - Lead remediation efforts for vulnerabilities documented in POA&Ms or planned cyber releases, with emphasis on addressing high-risk findings identified by the SCA within defined timelines. - Provide program leadership with regular updates on the status of open POA&M items, including monthly reporting or as requested. - Support annual FISMA assessments, incident response activities, and contingency plan testing to maintain security posture and operational readiness. - Maintain working knowledge of applicable cybersecurity standards, policies, and regulations, including those from NIST, DoD, and other federal entities. Qualifications - Bachelor’s degree and a minimum of 8 years of relevant cybersecurity experience. - Risk Management Experience a plus. - Must have a CYSA + certification OR CAP, CASP+CE, CISM, CISSP, GSLC, CCISO, HCISPP. - Secret Security Clearance Required. Requirements - This contractor and subcontractor shall abide by the requirements of 41 CFR 60–1.4(a), 60–300.5(a) and 60–741.5(a). - These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation. - Moreover, these regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Company Description Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.