Ensure compliance with FedRAMP and HIPAA regulations by developing policies and procedures. Collaborate with cross-functional teams for security assessments and continuous monitoring, while conducting risk assessments to maintain regulatory adherence.

Title: L&I IT Security Vulnerability Management- Journey Location: Tumwater United States Salary $84,120.00 - $113,148.00 Annually Location Thurston County – Tumwater, WA Job Type Full Time - Permanent Remote Employment Remote Optional Job Number 2026-02660 Job Description: Our Mission: Keep Washington Safe and Working! Our Values: Customer Focus, One L&I, Respect, Diversity, Equity and Inclusion, Learning and Growth, Reliability Join us as a Journey-Level IT Security Engineer and play a critical role in safeguarding the technology that powers our agency. In this highly specialized position, you'll lead the configuration, implementation, and optimization of advanced security solutions that protect our systems, networks, and data. Your expertise will directly support a robust IT security program focused on maintaining the confidentiality, integrity, and availability of mission-critical resources. You'll be at the forefront of cybersecurity-proactively planning, analyzing, and enhancing security policies, tools, and procedures that empower staff and strengthen our defenses. This role goes beyond maintenance; you'll continuously assess and monitor complex environments to uncover vulnerabilities and drive meaningful corrective action before risks become threats. As a trusted Security Engineer, you'll take ownership of identifying and prioritizing vulnerabilities across a diverse technology landscape, including on-premise, hosted, and cloud-based systems. Your work will be essential in mitigating risks that could otherwise lead to system breaches or data compromise. You'll also serve as a key advisor, partnering with IT leadership, technical teams, vendors, and contractors to provide expert guidance on security risks and solutions, ensuring that security is embedded into every layer of our operations. If you're passionate about cybersecurity, thrive in a dynamic environment, and want to make a tangible impact, this is your opportunity to step into a role where your skills truly matter. Some of what you will be doing - Vulnerability Management, including: - Configure the vulnerability assessment tools to match L&I standards and Center for Internet Security ( CIS) - Create, implement, and follow procedures for vulnerability scanning - Perform on demand scans for newly implemented systems - Create Key Performance Indicator (KPI) reports and recommend enterprise mitigation strategies - Analyze vulnerabilities to determine impact to our environment, eliminate false positives, research and articulate business impact to the agency. - Develop vulnerability tests. risk analysis and security assessments - Prioritize vulnerabilities and risks - Identify trends and enterprise problem areas - Test new L&I systems and applications for vulnerabilities before they go live. - Security Consulting, including: - Security consultant to L&l business areas and L&I IT staff and IT leadership - Translate technical security concepts for customers and audiences with differing levels of technical understanding. - Security Monitoring/ Response, including: - Analyze, research and assess agency risk using ITSS security defenses and services and determine appropriate response - Develop, design, implement and provide requirements to Tier 1 and Tier 2 personnel - Coordinate threat containment and remediation activities with the system owner(s). - Manage Security Awareness training program, including: - PhishFirewall - Act as the administrator - Analyze requests for new Access Control Lists - Propose Security Awareness training curriculum - Research and propose security training content - Project Management & New Solution implementation, including: - Managing work breakdown structures and coordinating work efforts with other teams - Develop, design, and implement new processes and technology to keep the risks to our systems and vulnerabilities low Required - Six years of IT experience with at least two years of IT Security experience OR - A Bachelor's degree in Information Technology, Information Assurance, Computer Science and two (2) years of IT experience with at least one (1) year of IT Security experience. OR - An associate's degree in Information Technology, Information Assurance, Computer Science and four (4) years of IT experience with at least one (1) year of IT Security experience. For this role, IT Security Experience must include experience in two or more of the following security technologies: - Digital Forensics • User Management - General Cybersecurity • Network Security - Security Assessments • Desktop Security - Identity & Access Management • Access Control - Security Gateway Management • Vulnerability or Threat Management Desired Formal security training or certifications, such as: - Certified Information Security Professional (CISSP) - Certified Ethical Hacker (CEH) - Offensive Security Certified Professional (OSCP) - IT Security or Information Assurance College Courses. Things You Need to Know To help you maintain a proper work-life balance, teleworking is one of the work schedule options for this position. L&I also offers flexible custom work schedules. We offer hybrid and remote work options. Remote work from a state outside of WA requires approval. State employees who meet the qualifications will become eligible for a generous retirement package at the end of the employee's career. Click on the "Benefits" tab to learn more. At L&I, your voice matters. In addition, L&I is a diverse state agency dedicated to the safety and health and security of Washington's 3.3 million workers. Take a look at this brief video and learn more about why L&I is an employer of choice. Application process We will contact the top candidates directly to interview for this position. Because we base the selection on information provided by you, it is in your best interest to identify the knowledge, skills, and abilities that address the required and desirable qualifications described in the announcement. Please include the following documents with your application: - A cover letter describing specific qualifications. - A current resume detailing applicable experience and education. - A list of at least three professional references with current telephone numbers. *Please note: we will never call any reference without your written authorization. Please do not attach or place any medical information (vaccination status included) within the application, resume, or cover letter. If you do, we will have to reject your application to safeguard others from receiving your confidential information. You will have to remove the confidential information before you can apply again. Other information - IT position applicants selected to move forward in this hiring process will receive an email skills assessment invitation within 3 weeks of your application being accepted. An applicant may complete the assessment when ready, but the invitation to complete the assessment will expire 5 days after the invitation was sent. Once you start the assessment, you will be required to complete it. You cannot start your assessment and then come back to it later. Please look in your email inbox or spam as these invitations are sent by CodeSignal. - For positions requiring travel, you must have a valid unrestricted driver's license and have insurance if driving a privately owned vehicle on state business. - This position is represented by the Washington Federation of State Employees (WFSE). - Candidates who are offered a job with L&I must possess work authorization that does not require sponsorship by the employer for a visa now or in the future. - The Department of Labor & Industries complies with the employment eligibility verification requirements of the federal employment eligibility verification form, I-9. The selected candidate must be able to provide proof of identity and eligibility to work in the United States consistent with the requirements of that form on the first day of employment. - Please note: L&I may use this announcement to fill multiple permanent and/or non-permanent positions. - Sign up for L&I Job Alerts to receive information about our newest openings: GovDelivery Background Check Notice Prior to a placement in this position, a background check, including criminal history record will be conducted. Information from your background check will not necessarily preclude employment but will be considered in determining your eligibility to perform the requirements of the position. In addition to offering a positive balance between life and work, L&I provides one of the most competitive benefits packages in the nation. We also believe your voice matters. We value our employees and their work-life balance by encouraging flexible schedules. L&I is a diverse state agency dedicated to the safety and health and security of Washington's 3 million workers. Veterans Preference Diversity, Equity, and Inclusion Employer L&I employees come from all walks of life. We strive to hire great people from a wide variety of backgrounds. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. We believe in the importance of recognizing the value each of us contribute to the success of the agency mission. Having a diverse workforce is this agency's greatest resource of strength and knowledge. It is through the combination of talents and abilities that we can pursue finding effective measures to provide the best customer service. We are committed to building a diverse and inclusive workplace for everyone and we strongly mean everyone.

Lead operational activities across Governance, Risk, and Compliance, ensuring security controls are implemented effectively. Oversee security authorization packages and coordinate audit support while managing stakeholder relationships and enhancing...

Security Engineer Location: Boise, ID, United States Remote Role Summary The Security Engineer is a 1-year contract role, focusing on the secure configuration, deployment, and automation of next-generation GenAI developer tools and Model Hosting platforms. This role requires a strong focus on implementing and enforcing security guardrails and establishing robust security monitoring and response workflows. Key Responsibilities and Scope ● GenAI Tool Configuration and Guardrails: ● Develop and maintain a quickly updatable Jamf Configuration to distribute configurations, guardrails, and any local observability tooling across developer environments. ● Response Automation and Workflow Development: ● Create and test automated response playbooks within N8N for AI workloads, specifically targeting alerts from ModelArmor, Gateway tools, and productionized endpoint detections (MCP). ● Take on maintenance and refinement of the N8N deployment following handover from the DevOps team. ● Centralized Model Hosting Security: ● Develop Terraform templates for managing and cleaning up GCP project permissions (VertexAI/Model Armor platform). ● Develop a continuous validation and backtesting workflow for the VertexAI/Model Armor platform, including testing with various file types (PDF, CSV) and addressing current limitations (e.g., file size limits, prompt injection in PDFs, proxy requirements). ● Implement and tune security logging, alerting, and response mechanisms for Snowflake Cortex, integrating them with N8N or other workflow tools. Required Tools and Experience This role requires specific experience to ensure seamless integration and collaboration with partner teams: ● Configuration Management & Deployment: ● Expertise in Jamf for distributing and enforcing configuration profiles and guardrails. ● Experience with security configuration for Claude Code, Cursor, and Github Copilot (especially in agent mode). ● Knowledge of configuration settings for agentic IDEs. ● Cloud Infrastructure and Automation (Interfacing with DevOps): ● Strong proficiency in Terraform to manage and deploy infrastructure components in GCP. ● Familiarity with cloud networking/security components like ALB and WAF (as this is a dependency for N8N). ● Experience with containerization platforms like Fargate and version control with Git. ● Security Automation and Orchestration: ● Direct experience with N8N (or similar workflow automation platforms) to build out response playbooks. ● Familiarity with security tools and concepts common to InfoSec (SIEM configuration, Cloud Security, Network and Endpoint security tooling such as Crowdstrike and ZScaler). ● AI/ML Platform Security: ● Experience securing and monitoring Vertex AI and Snowflake Cortex. ● Experience with model security tools like ModelArmor. ● Familiarity with integration or support for third-party models, such as Anthropic models. ● Understanding of security testing methodologies for LLMs (e.g., prompt injection, file-based threats). Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click here for more details. Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide. Employee Type: Contract Remote: Yes Location: Boise, ID, US Pay Range: $70 - $75 per hour