CTG is seeking to fill a Senior Mainframe Security Analyst position for our client. Location: Remote (occasional travel to Raleigh, NC at client’s expense)Duration: 12 months Duties: - Maintain and enhance the security posture of the IBM System z mainframe environment, including installation and configuration of RACF, encryption, key management, and certificate management solutions - Remediate incidents, vulnerabilities, and service requests within established SLAs - Develop and maintain comprehensive reporting frameworks that reflect current security posture, policy alignment, project progress, and audit remediation status - Design and drive mainframe security initiatives based on risk assessments, security policies, and audit findings; collaborate cross-functionally to plan, test, and implement solutions - Translate complex technical security concepts into clear, consumable formats for IT leadership, business stakeholders, and audit teams - Lead and contribute to enterprise security discussions, including risk analysis, disaster recovery planning, training, and policy development/review - Support internal and external audits by preparing documentation, responding to inquiries, and addressing findings - Provide 24x7 production support for mainframe security-related issues as required Skills: - Deep expertise in IBM mainframe security, including RACF administration and architecture - Strong knowledge of z/OS, UNIX System Services (USS), z/Linux, Db2, and CICS security - Experience with IBM Trusted Key Entry (TKE) and enterprise encryption technologies - Proficiency in mainframe utilities and programming languages such as JCL, REXX, and CLIST - Solid understanding of Public Key Infrastructure (PKI), certificate lifecycle management, and encryption frameworks - Working knowledge of network security principles and client-server architectures - Strong analytical, problem-solving, and risk assessment capabilities - Excellent communication skills with the ability to present technical concepts clearly to diverse audiences - Ability to work independently while contributing effectively in a collaborative team environment Experience: - Minimum 5 years of experience in system architecture with a focus on information security and technology risk - Proven experience managing and securing IBM mainframe environments - Experience supporting audits and regulatory compliance initiatives - Demonstrated ability to work with minimal supervision and meet deadlines in a high-availability environment - Preferred: - 7+ years of experience in systems architecture focused on security - Experience with SailPoint identity governance integration - Experience with Venafi for certificate and key management - Experience mentoring and coaching junior technical staff - Professional certifications such as CISSP or CISA Education: - Bachelor’s degree or Associate’s degree in Computer Science, Information Systems, or a related field; or equivalent work experience - Preferred: CCUE Certification and 5 consecutive years of full-time SECU service Excellent verbal and written English communication skills and the ability to interact professionally with a diverse group are required. CTG does not accept unsolicited resumes from headhunters, recruitment agencies, or fee based recruitment services for this role. To Apply: To be considered, please apply directly to this requisition using the link provided. For additional information, please contact Malti Jha at Malti.Jha@ctg.com. Kindly forward this to any other interested parties. Thank you! The expected base salary for this position ranges from $56.00 to $65.00/hour. Salary offers are based on a wide range of factors including relevant skills, training, experience, education, market factors, and where applicable, licensure or certifications obtained. In addition to salary, a competitive benefit package is also offered. About CTG CTG, a Cegeka company, delivers IT and business solutions that enhance clients’ digital agility, empowering them to seize new opportunities and overcome any challenge. Backed by more than 60 years’ experience and a commitment to being a reliable, results-driven partner, we work shoulder to shoulder with clients to shape digital together. Our vision is to be an indispensable partner to our clients and the preferred career destination for digital and technology experts. With more than 9,000 team members in over 15 countries, we combine global expertise with local insight to deliver innovative solutions. We operate across the Americas, Europe, and India, working with over 3,000 clients in many of today's highest-growth industries. Together, we shape what’s next—working shoulder to shoulder to deliver impactful solutions for our clients and society. Our culture is built by the people who work at CTG, the values we hold, and the actions we take. It's a living, breathing thing that is renewed every day through the ways we engage with each other, our clients, and our communities. At CTG, you’ll find a workplace where you are encouraged to grow, supported in your ambitions, and empowered to shape your own career journey. For more information, visit www.ctg.com. CTG will consider for employment all qualified applicants including those with criminal histories in a manner consistent with the requirements of all applicable local, state, and federal laws. CTG is an Equal Opportunity Employer. CTG will assure equal opportunity and consideration to all applicants and employees in recruitment, selection, placement, training, benefits, compensation, promotion, transfer, and release of individuals without regard to race, creed, religion, color, national origin, sex, sexual orientation, gender identity and gender expression, age, disability, marital or veteran status, citizenship status, or any other discriminatory factors as required by law. CTG is fully committed to promoting employment opportunities for members of protected classes.

• Act as a Data and Information Security Analyst with a technical and consultative focus on protecting data and sensitive information. • Responsible for implementing and maintaining classification, labeling and protection policies, as well as Data Loss Prevention (DLP) technologies and regulatory compliance, ensuring the secure information lifecycle. • Work with Microsoft Information Protection, Microsoft Purview and Data Loss Prevention (DLP) to identify, classify and protect sensitive data across data infrastructures, devices, email, SharePoint, Teams, OneDrive, etc. • Configure DLP policies based on financial, contractual and regulatory information (LGPD, SOX, PCI-DSS). • Continuously improve DLP policies based on events, false positives and exception cases. • Monitor DLP alerts, perform analyses and collaborate with incident response teams. • Support investigations led by other teams by providing technical input and context about DLP policies, classification rules and possible exfiltration vectors. • Work closely with data owners and Data Stewards. • Conduct mapping, categorization and classification of critical/sensitive data. • Define and maintain OKRs and maturity indicators related to technical data governance and leakage prevention activities. • Demonstrate results through dashboards, executive reports and technical evidence. • Ensure compliance with standards and legislation such as LGPD, GDPR, SOX, HIPAA, PCI-DSS, ISO 27001:2022 and NIST. • Support internal/external audits with compliance evidence for DLP, classification and governance. • Conduct trainings, workshops and awareness campaigns on secure handling and classification of information.

Role Description Our Security Operations Center (SOC) is seeking a Senior SOC Analyst who can quickly get up to speed and help drive operational excellence. This role is focused on eliminating inefficiencies, expanding detection coverage, and strengthening our detection, response, and threat-informed defense capabilities. It’s ideal for someone who excels in hands-on analysis and is passionate about improving how a SOC operates day-to-day. You’ll play a key role in proactive cyber defense by collaborating across InfoSec teams, enhancing monitoring platforms, tuning controls, and conducting targeted threat hunts that reduce risk, enable better detections, and elevate our overall security posture. Key Responsibilities - Threat-Informed Defense & Detection Engineering: - Use internal and external threat intelligence, risk insights, and adversary behavior research to guide proactive defensive actions. - Develop, tune, and optimize SIEM/SOAR, EDR, NDR, and log analytics platforms to improve detection quality and reduce noise. - Engineer, test, and deploy new detection logic, alerting mechanisms, behavioral analytics, and ATT&CK-aligned use cases. - Identify control gaps and collaborate with platform owners to implement both preventive and detective enhancements. - SOC Operations Maturity & Operational Excellence: - Partner with SOC leadership to refine responsibilities, skill requirements, and operational targets. - Improve SOC operational effectiveness by spotting opportunities to streamline execution and remove process friction. - Translate observed detection gaps into measurable improvements through new detections, automation, or enhanced processes. - Threat Hunting: - Conduct hypothesis and intelligence driven threat hunts to uncover malicious activity, suspicious behavior, or weaknesses not visible through standard monitoring. - Document findings and collaborate with SOC leadership and partner teams on remediation and follow-up actions. - Continuously evolve hunting methodologies, techniques, and automation in response to a changing threat landscape. - Incident Response & Security Event Handling: - Support the management and resolution of security events and incidents. - Work independently and collaboratively to identify, assess, report, and recover from security incidents. - Participate in after-hours response when needed. Qualifications - Minimum of 3–5 years of experience in an operational security program. - Bachelor’s in computer science, information security, or equivalent experience/certifications. - The ability to balance security principles with business realities as part of a risk-managed program. - Hands‑on experience performing responsibilities aligned to incident response, security operations, and security initiatives. - Background in SOC operations, detection engineering, threat hunting, or cyber threat intelligence. - Applicants must be authorized to work in the United States. We are unable to provide sponsorship for this position. Requirements - Enhancing detection fidelity and reducing noise through thoughtful tuning and optimized detection logic. - Closing detection gaps with ATT&CK aligned analytics and proactive threat hunts. - Driving operational improvements by resolving inefficiencies and enabling the SOC to execute with greater speed, consistency, and confidence. Benefits - Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program. - Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement. - PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement. - Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program.

Role Description Would you like to be part of an amazing team that helps Arizonans thrive? At the Department of Economic Security (DES) we strengthen individuals, families, and communities for a better quality of life. DES is looking for individuals who are committed to service, community, and teamwork. The Department of Economic Security, Division of Technology Services, is seeking an experienced and highly motivated professional to join our team as an Intern. This position will serve as an Information Security Intern. This position applies threat assessment and investigative skills in a highly technical setting to: - Locate malware and cyber threats on a large enterprise network. - Notify affected end users or division contact. - Generate reports and metric criteria. - Offer assistance and explanations of threats to end users as needed. - Collaborate on policy and compliance reviews under the guidance of Governance Risk and Compliance (GRC) supervision. - Perform application research, reporting, and reviews. This position may offer the ability to work remotely within Arizona based upon the department's needs and continual meetings of expected performance measures. The State of Arizona strives for a work culture that affords employees flexibility, autonomy, and trust. Qualifications - Pursuing a Bachelor’s Degree in a related field from an accredited college or university. - Minimum 3.0 GPA. - Letter of recommendation from a Professor or Guidance Counselor. Requirements - Employee shall obtain and maintain a valid Level One fingerprint clearance card that meets DES requirements. - All newly hired State employees are subject to and must successfully complete the Electronic Employment Eligibility Verification Program (E-Verify). - Successfully pass background and reference checks; employment is contingent upon completion of the above-mentioned process. - This position may require driving or the use of a vehicle as an essential function of the job. - Must possess and retain a current, valid class-appropriate driver’s license. - Must maintain acceptable driving records and complete all required driver training. Benefits - Affordable medical, dental, life, and short-term disability insurance plans. - Participation in the Arizona State Retirement System (ASRS) and long-term disability plans. - 10 paid holidays per year. - Paid vacation and sick time. - Paid Parental Leave - Up to 12 weeks per year paid leave for newborn or newly-placed foster/adopted child. - Deferred compensation plan. - Wellness plans. - Tuition Reimbursement. - Stipend Opportunities. - Infant at Work Program. - Rideshare and Public Transit Subsidy. - Career Advancement & Employee Development Opportunities. By providing the option of a full-time or part-time remote work schedule, employees enjoy improved work/life balance, report higher job satisfaction, and are more productive.