• Provide enterprise-wide thought leadership and architectural direction for Identity and Access Management (IAM). • Shape Home Depot’s AI identity strategy and maturity. • Partner with cybersecurity, engineering, architecture, and operations teams.

Description The Work: ICF is looking for an enthusiastic Computer Security System Specialist to join our team. If you are interested in designing, implementing, and managing enterprise security systems to protect organizational networks, systems, and data from cyber threats, then this may be the role for you. Job Location: This position requires that the job be performed in the United States. If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses, and also prohibits personal VPN connections. - You may be asked to travel once a quarter to an office. - Our core work hours are 10am - 4pm Eastern Time with the option to start earlier or work later depending on your time zone. What You Will Do: - Design, implement, and maintain enterprise security solutions such as firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint protection, and security monitoring platforms. - Monitor networks and systems for security threats and lead investigations of suspicious activities or incidents. - Conduct vulnerability assessments, risk analyses, and penetration testing to identify and remediate security weaknesses. - Lead incident response efforts, including containment, eradication, recovery, and post-incident analysis. - Develop, implement, and enforce information security policies, procedures, and standards. - Manage and optimize Security Information and Event Management (SIEM) systems and other security monitoring tools. - Collaborate with IT infrastructure, application, and cloud teams to ensure secure system architecture and deployments. - Support regulatory compliance initiatives and security audits (e.g., internal or external). - Provide guidance and mentorship to junior security analysts and IT staff on cybersecurity best practices. - Research emerging cybersecurity threats, vulnerabilities, and mitigation strategies to proactively strengthen defenses. - Participate in security awareness initiatives and training programs across the organization. What You Will Bring With You: - Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field from an accredited university. - 5+ years of experience in information security, cybersecurity operations, or network security. - Strong knowledge of network security, system hardening, encryption, authentication, and access control mechanisms. - Hands-on experience with security technologies such as SIEM, IDS/IPS, firewalls, endpoint detection and response (EDR), and vulnerability management tools. - Experience investigating and responding to cybersecurity incidents. - Strong analytical, troubleshooting, and problem-solving skills. - Ability to communicate technical security concepts to both technical and non-technical stakeholders. - Candidate must be able to obtain and maintain a Public Trust - Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S. What We Would Like You To Bring With You: - Professional certifications such as CISSP, CISM, CEH, CompTIA Security+, or GIAC certifications. - Experience with cloud security platforms (AWS, Azure, or Google Cloud). - Familiarity with security frameworks and standards such as NIST, ISO 27001, CIS Controls, or SOC 2. - Experience with automation or scripting (Python, PowerShell, Bash) for security operations. - Knowledge of DevSecOps or secure software development practices. Professional Skills: - Highly effective analytical, problem-solving, and decision-making capabilities. - Excellent communication and interpersonal skills to interface effectively at all levels of the business. #DMX-HES #Li-cc1 #Indeed Working at ICF ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy. We will consider for employment qualified applicants with arrest and conviction records. Reasonable Accommodations are available, including, but not limited to, for disabled veterans, individuals with disabilities, and individuals with sincerely held religious beliefs, in all phases of the application and employment process. To request an accommodation, please email Candidateaccommodation@icf.com and we will be happy to assist. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.  Read more about workplace discrimination rights or our benefit offerings which are included in the Transparency in (Benefits) Coverage Act. Candidate AI Usage Policy At ICF, we are committed to ensuring a fair interview process for all candidates based on their own skills and knowledge. As part of this commitment, the use of artificial intelligence (AI) tools to generate or assist with responses during interviews (whether in-person or virtual) is not permitted. This policy is in place to maintain the integrity and authenticity of the interview process.  However, we understand that some candidates may require accommodation that involves the use of AI. If such an accommodation is needed, candidates are instructed to contact us in advance at candidateaccommodation@icf.com. We are dedicated to providing the necessary support to ensure that all candidates have an equal opportunity to succeed.   Pay Range - There are multiple factors that are considered in determining final pay for a position, including, but not limited to, relevant work experience, skills, certifications and competencies that align to the specified role, geographic location, education and certifications as well as contract provisions regarding labor categories that are specific to the position. The pay range for this position based on full-time employment is: $81,499.00 - $138,549.00 Nationwide Remote Office (US99)

Ensure compliance with FedRAMP and HIPAA regulations by developing policies and procedures. Collaborate with cross-functional teams for security assessments and continuous monitoring, while conducting risk assessments to maintain regulatory adherence.

Title: L&I IT Security Vulnerability Management- Journey Location: Tumwater United States Salary $84,120.00 - $113,148.00 Annually Location Thurston County – Tumwater, WA Job Type Full Time - Permanent Remote Employment Remote Optional Job Number 2026-02660 Job Description: Our Mission: Keep Washington Safe and Working! Our Values: Customer Focus, One L&I, Respect, Diversity, Equity and Inclusion, Learning and Growth, Reliability Join us as a Journey-Level IT Security Engineer and play a critical role in safeguarding the technology that powers our agency. In this highly specialized position, you'll lead the configuration, implementation, and optimization of advanced security solutions that protect our systems, networks, and data. Your expertise will directly support a robust IT security program focused on maintaining the confidentiality, integrity, and availability of mission-critical resources. You'll be at the forefront of cybersecurity-proactively planning, analyzing, and enhancing security policies, tools, and procedures that empower staff and strengthen our defenses. This role goes beyond maintenance; you'll continuously assess and monitor complex environments to uncover vulnerabilities and drive meaningful corrective action before risks become threats. As a trusted Security Engineer, you'll take ownership of identifying and prioritizing vulnerabilities across a diverse technology landscape, including on-premise, hosted, and cloud-based systems. Your work will be essential in mitigating risks that could otherwise lead to system breaches or data compromise. You'll also serve as a key advisor, partnering with IT leadership, technical teams, vendors, and contractors to provide expert guidance on security risks and solutions, ensuring that security is embedded into every layer of our operations. If you're passionate about cybersecurity, thrive in a dynamic environment, and want to make a tangible impact, this is your opportunity to step into a role where your skills truly matter. Some of what you will be doing - Vulnerability Management, including: - Configure the vulnerability assessment tools to match L&I standards and Center for Internet Security ( CIS) - Create, implement, and follow procedures for vulnerability scanning - Perform on demand scans for newly implemented systems - Create Key Performance Indicator (KPI) reports and recommend enterprise mitigation strategies - Analyze vulnerabilities to determine impact to our environment, eliminate false positives, research and articulate business impact to the agency. - Develop vulnerability tests. risk analysis and security assessments - Prioritize vulnerabilities and risks - Identify trends and enterprise problem areas - Test new L&I systems and applications for vulnerabilities before they go live. - Security Consulting, including: - Security consultant to L&l business areas and L&I IT staff and IT leadership - Translate technical security concepts for customers and audiences with differing levels of technical understanding. - Security Monitoring/ Response, including: - Analyze, research and assess agency risk using ITSS security defenses and services and determine appropriate response - Develop, design, implement and provide requirements to Tier 1 and Tier 2 personnel - Coordinate threat containment and remediation activities with the system owner(s). - Manage Security Awareness training program, including: - PhishFirewall - Act as the administrator - Analyze requests for new Access Control Lists - Propose Security Awareness training curriculum - Research and propose security training content - Project Management & New Solution implementation, including: - Managing work breakdown structures and coordinating work efforts with other teams - Develop, design, and implement new processes and technology to keep the risks to our systems and vulnerabilities low Required - Six years of IT experience with at least two years of IT Security experience OR - A Bachelor's degree in Information Technology, Information Assurance, Computer Science and two (2) years of IT experience with at least one (1) year of IT Security experience. OR - An associate's degree in Information Technology, Information Assurance, Computer Science and four (4) years of IT experience with at least one (1) year of IT Security experience. For this role, IT Security Experience must include experience in two or more of the following security technologies: - Digital Forensics • User Management - General Cybersecurity • Network Security - Security Assessments • Desktop Security - Identity & Access Management • Access Control - Security Gateway Management • Vulnerability or Threat Management Desired Formal security training or certifications, such as: - Certified Information Security Professional (CISSP) - Certified Ethical Hacker (CEH) - Offensive Security Certified Professional (OSCP) - IT Security or Information Assurance College Courses. Things You Need to Know To help you maintain a proper work-life balance, teleworking is one of the work schedule options for this position. L&I also offers flexible custom work schedules. We offer hybrid and remote work options. Remote work from a state outside of WA requires approval. State employees who meet the qualifications will become eligible for a generous retirement package at the end of the employee's career. Click on the "Benefits" tab to learn more. At L&I, your voice matters. In addition, L&I is a diverse state agency dedicated to the safety and health and security of Washington's 3.3 million workers. Take a look at this brief video and learn more about why L&I is an employer of choice. Application process We will contact the top candidates directly to interview for this position. Because we base the selection on information provided by you, it is in your best interest to identify the knowledge, skills, and abilities that address the required and desirable qualifications described in the announcement. Please include the following documents with your application: - A cover letter describing specific qualifications. - A current resume detailing applicable experience and education. - A list of at least three professional references with current telephone numbers. *Please note: we will never call any reference without your written authorization. Please do not attach or place any medical information (vaccination status included) within the application, resume, or cover letter. If you do, we will have to reject your application to safeguard others from receiving your confidential information. You will have to remove the confidential information before you can apply again. Other information - IT position applicants selected to move forward in this hiring process will receive an email skills assessment invitation within 3 weeks of your application being accepted. An applicant may complete the assessment when ready, but the invitation to complete the assessment will expire 5 days after the invitation was sent. Once you start the assessment, you will be required to complete it. You cannot start your assessment and then come back to it later. Please look in your email inbox or spam as these invitations are sent by CodeSignal. - For positions requiring travel, you must have a valid unrestricted driver's license and have insurance if driving a privately owned vehicle on state business. - This position is represented by the Washington Federation of State Employees (WFSE). - Candidates who are offered a job with L&I must possess work authorization that does not require sponsorship by the employer for a visa now or in the future. - The Department of Labor & Industries complies with the employment eligibility verification requirements of the federal employment eligibility verification form, I-9. The selected candidate must be able to provide proof of identity and eligibility to work in the United States consistent with the requirements of that form on the first day of employment. - Please note: L&I may use this announcement to fill multiple permanent and/or non-permanent positions. - Sign up for L&I Job Alerts to receive information about our newest openings: GovDelivery Background Check Notice Prior to a placement in this position, a background check, including criminal history record will be conducted. Information from your background check will not necessarily preclude employment but will be considered in determining your eligibility to perform the requirements of the position. In addition to offering a positive balance between life and work, L&I provides one of the most competitive benefits packages in the nation. We also believe your voice matters. We value our employees and their work-life balance by encouraging flexible schedules. L&I is a diverse state agency dedicated to the safety and health and security of Washington's 3 million workers. Veterans Preference Diversity, Equity, and Inclusion Employer L&I employees come from all walks of life. We strive to hire great people from a wide variety of backgrounds. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. We believe in the importance of recognizing the value each of us contribute to the success of the agency mission. Having a diverse workforce is this agency's greatest resource of strength and knowledge. It is through the combination of talents and abilities that we can pursue finding effective measures to provide the best customer service. We are committed to building a diverse and inclusive workplace for everyone and we strongly mean everyone.