• Defining complex security architectures that are necessary to integrate new entities when a merger or acquisition is complete, including leading various levels of technology resource through the decision-making process. • Analyzing and understanding the impact of regulation changes on security architecture, standards and policies, including making and communicating updates as needed. • Providing guidance and coaching to cybersecurity lead and senior architects and engineers, and providing overall technical expertise to the cybersecurity department and business stakeholders. • Researching, modeling, and tracking secure system standards, industry trends, market technology, potential threats, tactics, and procedures for ecosystem applicability and reference. • Developing formal management reporting dashboards aligned to widely accepted standards, including appropriate metrics that inform senior leadership as to the state of information security risk and exposure. • Effectively communicating risk and mitigation activities to all levels of the organization during incident or risk treatment actions, to inform critical decision-making and deliver risk reductions. • Identifying, quantifying, and documenting requirements to address security risks as they relate to IT and enterprise projects. • Recognizing and identifying potential areas where existing security policies and procedures require change, or where new ones need to be developed, especially regarding future business expansion. • Performing third-party security risk assessments, especially for cloud service providers and responding to third-party requests for information on CNO’s information security program/policies. • Ensuring that the organization is leveraging the proper technologies to meet SOX, PCI, and HIPAA/HITECH compliance requirements. • Serving as a subject matter expert for the incident lead during Incident Response activities. • Leading matrix working groups during Incident Response activities. • Supporting legal and Internal Audit activities and information gathering when needed, and effectively communicating complex security topics to these teams.

Koniag Data Solutions (KDS), a Koniag Government Services company, is seeking a Mid-Level Cybersecurity Analyst to support KDS and specialize in Security Control Assessments to support our federal government clients. This position requires the candidate to be able to obtain a Public Trust. The position is remote. We offer competitive compensation and comprehensive benefits including health, dental and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. The ideal candidate will have experience in conducting thorough security assessments, analyzing security controls, and providing detailed recommendations for security improvements. Essential Functions, Responsibilities & Duties may include, but are not limited to: The Mid-Level Cybersecurity Analyst will be responsible for: - Conducting comprehensive security control assessments following NIST guidelines - Performing security testing and evaluation of systems and applications - Documenting assessment findings and preparing detailed reports - Analyzing system security plans and associated security documentation - Evaluating security controls and their implementation - Supporting Authorization to Operate (ATO) processes - Conducting vulnerability assessments and penetration testing - Assisting in the development of Plans of Action and Milestones (POA&Ms) - Participating in security working groups and technical meetings - Collaborating with system owners and stakeholders - Supporting continuous monitoring activities - Maintaining assessment documentation and evidence - Providing recommendations for remediation of security findings Position Note: At this time, the customer does not currently have a GRC tool. Our assessments are rather manual. Education and Experience: - Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field - 5+ years of experience in cybersecurity - 3+ years of direct experience conducting security control assessments - Experience with federal information security requirements and guidelines - Current security clearance or ability to obtain one Required Skills and Competencies: - Deep understanding of NIST SP 800-53 security controls - Experience with Risk Management Framework (RMF) - Knowledge of Federal Information Security Management Act (FISMA) requirements - Proficiency in security assessment and authorization processes - Experience with vulnerability scanning tools (Nessus, Qualys, etc.) - Strong analytical and problem-solving skills - Excellent documentation and technical writing abilities - Knowledge of common security tools and technologies - Understanding of cloud security concepts - Experience with security documentation review - Strong communication and interpersonal skills - Ability to work independently and as part of a team - Proficiency in Microsoft Office suite - Experience with security assessment tools and methodologies Desired Skills and Competencies: - Security+ or higher cybersecurity certification - CISSP, CISA, or similar professional certification - Experience with FedRAMP assessment processes - Knowledge of CMMC requirements - Familiarity with cloud service providers (AWS, Azure, GCP) - Experience with automated security assessment tools - Background in federal government contracting - Knowledge of DevSecOps practices - Experience with continuous monitoring programs - Scripting abilities (Python, PowerShell, etc.) - Experience with security compliance frameworks - Prior military or government experience - Incident response experience - Knowledge of privacy requirements and controls Security Requirement: - Ability to obtain a Public Trust Our Equal Employment Opportunity Policy The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment. The company is dedicated to seeking all qualified applicants. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations. Koniag Government Services (KGS) is an Alaska Native Owned corporation supporting the values and traditions of our native communities through an agile employee and corporate culture that delivers Enterprise Solutions, Professional Services and Operational Management to Federal Government Agencies. As a wholly owned subsidiary of Koniag, we apply our proven commercial solutions to a deep knowledge of Defense and Civilian missions to provide forward leaning technical, professional, and operational solutions. KGS enables successful mission outcomes for our customers through solution-oriented business partnerships and a commitment to exceptional service delivery. We ensure long-term success with a continuous improvement approach while balancing the collective interests of our customers, employees, and native communities. For more information, please visit www.koniag-gs.com. Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352

For more than 170 years, The Hanover has been committed to delivering on our promises and being there when it matters the most. We live our values every day, demonstrating we CARE through our values, Sustainability initiatives and inclusive corporate culture. We are seeking a highly experienced and skilled Senior IAM Engineer who will be responsible for managing and enhancing Hanover’s identity and access management with a focus on Saviynt, in our Worcester, MA office or remote work arrangement This is a full-time, exempt role. POSITION OVERVIEW: This role supports the development and evolution of secure user life cycle management, Identity Access Governance, and integration of enterprise applications. You will focus on the technical design, engineering, and end‑to‑end implementation of Saviynt Identity Governance and Administration (IGA) solutions. The ideal candidate brings hands‑on technical expertise, strong hands-on experience delivering Saviynt capabilities, strong analytical skills, and experience collaborating with cross‑functional IT, engineering, and business teams. IN THIS ROLE, YOU WILL: - Saviynt technical lead, design & Engineering (Development and Operational support) - Lead the technical design, configuration, and implementation of Saviynt IGA solutions, including workflows, rules, connectors, analytics, roles, and policies. With a configuration first over customization approach. - Architect scalable, sustainable solutions supporting entitlements management, user life cycle management, RBAC, ABAC, access request and approval flows, certifications, and provisioning/de-provisioning. - Design and optimize Saviynt integrations with enterprise platforms such as Active Directory, Entra ID, HCM System, ServiceNow, Oracle EBS, PeopleSoft, and other connected/disconnected systems. - Develop and enhance custom connectors, REST/SOAP integrations, and provisioning logic as needed. - Configure policy and workflow in Saviynt for the intake and pre-processing of identity data, apply the appropriate workflow for the various use cases for incoming new identity or changes to identity, and configure the provisioning flows based on the connections and schedules required Implementation & Automation - Build custom workflows (within parameters that provide for ongoing vendor support), rules, request forms, task definitions, reporting, and risk models within Saviynt. - Automate repetitive IAM functions using appropriate, supportable, sustainable methods. - Create and maintain custom analytical reports, dashboards, and governance insights. - Work with Business Continuity teams to develop disaster recovery planning and testing cycles for IAM and IGA products and services. Identify resource dependencies and their criticality to the sustainability of the service for inclusion in DR planning and reconstitution exercises. Access Governance & Security Controls - Participate in access certification campaigns (user manager, entitlement owner, service accounts) and improve campaign efficiency through design enhancements. - Participate in Threat Model development/review with security team for all new IAM/IGA capabilities. - Collaborate with Enterprise Architecture, Security Architecture, and Engineering teams to drive implementation of SSO and federation standards (SAML, OAuth 2.0, OpenID Connect). - Implement and tune Saviynt policies, Segregation of Duties (SoD) rules, risk scores, and governance models to support least privilege and Zero Trust principles. Platform Operations & Optimization - Monitor and maintain the Saviynt environment for performance, reliability, capacity, and compliance. - Lead platform upgrades, migrations, and new feature rollouts. - Troubleshoot complex technical issues and provide Tier3 support for Saviynt related problems. Leadership, Collaboration & Strategy - Serve as a technical lead, guiding junior engineers and influencing architectural direction. - Engage with stakeholders, business owners, product teams, and security leadership to gather requirements and translate them into technical solutions. - Partner with audit, compliance, and SOX teams to provide evidence and ensure adherence to regulatory standards. - Collaborate with Architecture Team and Security Architecture on, solution designs, documentation, runbooks, SOPs, and operational playbooks. WHAT YOU NEED TO APPLY: - 8+ years of IAM engineering experience; 3+ years specializing in Saviynt. - Bachelor’s degree in Information Security or related field (or equivalent experience). - Must be eligible to work in the US without requiring sponsorship now or in the future (i.e Lawful Permanent Residence or US Citizen) - Expert hands on experience with Saviynt IGA, including configuring connectors, workflows, risk models, roles, rules, analytics, provisioning jobs, and certifications. - Familiarity with Microsoft Identity Manager (MIM), CyberArk, or other IAM/PAM tools. - Experience leading a technical team or serving as project technical lead. - User lifecycle management (ULM) - Entitlements Management and appropriate data correlation - Collaborate with cross-functional teams to assess correlated data for approach to formation of risk scoring - RBAC / ABAC design - SSO and federation (SAML, OAuth 2.0) - Privileged access governance - Proficiency PowerShell, Java, REST/SOAP APIs, Active Directory & LDAP - Cloud directories (Entra ID, AWS IAM, etc.), SQL, JSON, XML scripting fundamentals - Experience designing IAM architecture in large enterprise or regulated environments. - Strong understanding of IAM concepts including governance, provisioning, attestation, separation of duties, and compliance frameworks (SOX, NIST, ISO). - Strong analytical thinker with the ability to translate business needs into technical solutions. - Excellent communication and documentation skills. - Comfortable working across multiple teams and managing complex initiatives end-to-end. - Ability to mentor junior engineers and represent IAM engineering in technical discussions. - Ability to work independently as well as in a collaborative team environment. - Capability to manage multiple priorities and tasks simultaneously. - Easily adapt to new or different changing situations, requirements, or priorities. - Exhibit a personal drive to continually grow and enhance skills, knowledge, and scope of responsibilities. - Demonstrate solid verbal/written communication, listening, communication skills with and ability to communicate across all employee and management levels. - Use strong problem-solving skills to troubleshoot, debug, and optimize software applications. CAREER DEVELOPMENT: It’s not just a job, it’s a career, and we are here to support you every step of the way. We want you to be successful and fulfilled. Through on-the-job experiences, personalized coaching and our robust learning and development programs, we encourage you – at every level – to grow and develop. BENEFITS: We offer comprehensive benefits to help you be healthy, build financial security, and balance work and home life. At The Hanover, you’ll enjoy what you do and have the support you need to succeed. Benefits include: - Medical, dental, vision, life, and disability insurance - 401K with a company match - Tuition reimbursement - PTO - Company paid holidays - Flexible work arrangements - Cultural Awareness Day in support of IDE - On-site medical/wellness center (Worcester only) - Click here for the full list of Benefits EEO statement: The Hanover values diversity in the workplace and among our customers. The company provides equal opportunity for employment and promotion to all qualified employees and applicants on the basis of experience, training, education, and ability to do the available work without regard to race, religion, color, age, sex/gender, sexual orientation, national origin, gender identity, disability, marital status, veteran status, genetic information, ancestry or any other status protected by law. Furthermore, The Hanover Insurance Group is committed to providing an equal opportunity workplace that is free of discrimination and harassment based on national origin, race, color, religion, gender, ancestry, age, sexual orientation, gender identity, disability, marital status, veteran status, genetic information or any other status protected by law.” As an equal opportunity employer, Hanover does not discriminate against qualified individuals with disabilities. Individuals with disabilities who wish to request a reasonable accommodation to participate in the job application or interview process, or to perform essential job functions, should contact us at:HRServices@hanover.com and include the link of the job posting in which you are interested. Privacy Policy: To view our privacy policy and online privacy statement, click here. Applicants who are California residents: To see the types of information we may collect from applicants and employees and how we use it, please click here. Compensation: The target hiring range for this role may vary based on geographic location and other factors, including merit or performance, demonstrated proficiency, skills for the role, education, travel requirements, and experience. Additional compensation may include an annual bonus (which could take the form of a general bonus, sales incentive, or short-term incentive), long-term incentive or spot recognition awards. The posted range reflects our ability to hire at different position titles and levels depending on background and experience.

• Shape the strategic direction for OPSWAT’s Storage Security products by assessing emerging security challenges, understanding the competitive landscape, and aligning OPSWAT’s strengths with innovative product goals. • Collaborate with engineering teams to clearly define product requirements, develop roadmaps, and establish exit criteria for core offerings, ensuring a match between technical capabilities and business objectives. • Guide product development by incorporating both functional and non-functional customer requirements into practical plans. • Improve pre- and post-sales processes by providing technical insights and solutions that enhance customer engagement and support business development activities. • Manage the comprehensive go-to-market strategy for this business line, including sales enablement for direct sales and channel partners, website content, blogs, presentations, and business proposals. • Cultivate and maintain relationships with key stakeholders across various go-to-market functions, including sales teams, channel partners, and technology alliances to enhance product adoption and visibility. • Participate in sales calls to assist with proof-of-concept demonstrations and manage customer escalations effectively. • Enjoy flexible working hours as OPSWAT serves critical infrastructure clients globally. • Be prepared for occasional international travel to engage with internal teams and customers.