Title: Cyber Security Risk Management Location: Remote, Remote Project Based Full-time consulting contract Job Description: Cyber Security Risk Management About Us Slalom is a purpose-led, global business and technology consulting company. From strategy to implementation, our approach is fiercely human. In six+ countries and 43+ markets, we deeply understand our customers-and their customers-to deliver practical, end-to-end solutions that drive meaningful impact. Backed by close partnerships with over 400 leading technology providers, our 10,000+ strong team helps people and organizations dream bigger, move faster, and build better tomorrows for all. We're honored to be consistently recognized as a great place to work, including being one of Fortune's 100 Best Companies to Work For seven years running. Learn more at Slalom.com. Key Responsibilities: - Lead and coordinate the implementation of security control requirements and related processes based on Federal Reserve information security framework and standards This includes executing security activities based on NIST frameworks and related assessment activities for FedNow information systems - Review and analyze inherited service provider documentation, establish control ownership, and identity control gaps and associated risk - In coordination with various stakeholders, develop records for system security documentation including system security plans and associated security and operational processes - Identify control gaps and complete risk assessment for control deficiencies Design plans of actions to address control gaps or risk acceptance Develop, obtain, and maintain approval documentation - Coordinate security reviews and collaborate with security, assessment teams, and business and technical stakeholders to complete the reviews on schedule Review assessment results, identify and document residual risks and action plans - Gather and present authorization packages including analysis and information on security posture and plans for continuous control assurance Coordinate and obtain appropriate authorizations and sign-offs - Develop and manage a portfolio of continuous assurance and compliance activities including ongoing control monitoring and data-driven reporting on FedNow users, process, and technology to guide risk management decisions Qualifications: - Technical experience with GRC engineering activities is strongly preferred - Possess knowledge and experience with AI capabilities - Knowledge and experience normally acquired through, or equivalent to, the completion of a Bachelor's degree and a minimum of 6-10 years of relevant job experience - Possess knowledge of risk management principles and industry-standard security risk management frameworks (eg NIST, ISO, FedRAMP) - Experience in applying security frameworks and risk management activities in a cloud environment is strongly preferred - Possess knowledge about or have experience in supporting payments applications or platforms - Must possess or be able to obtain appropriate industry certifications such as the CISSP, CRISC, and/or CCSP Must possess or be able to obtain FRS security risk management certification - Must possess or be able to obtain appropriate industry relevant cloud certifications - Proven ability to prioritize, reprioritize and demonstrates appropriate agility to manage competing and sometimes conflicting priorities - Strong attention to detail and work ownership and accountability - Strong oral and written communication skills - Proven project management skills and the ability to lead and direct technical and business teams without formal authority - Ability to flexibly adapt to a rapidly changing environment and generate effective and innovative solutions to address change - A self-starter who is willing to explore, learn new areas and concepts, and promote and support innovation Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses. Slalom is committed to fair and equitable compensation practices. For this position, the base salary pay range is $80/hr to $95/hr. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements.

Role Description As the IT Security Analyst II, you will assess threats to ProMedica’s information technology resources and data while developing policies, processes, and procedures related to a comprehensive security program. - Ensure compliance with IT security policies. - Review security logs for suspicious activities. - Investigate security incidents and upgrades. - Perform risk assessments. - Available for rotational, on-call 24/7 support. The above summary is intended to describe the general nature and level of work performed in this role. It should not be considered exhaustive. Qualifications - Bachelor’s degree or equivalent work experience. - 4 years overall IT experience with at least 3 years in a security role. Requirements - Master’s Degree (Preferred). - CISSP, CISA, CISM, CHPS (Preferred). - Experience with Splunk, Defender for Endpoints, CrowdStrike, Windows 11, PowerShell, Active Directory (Preferred). Benefits - Competitive benefits package effective day one of employment. - Medical, dental, and vision coverage. - Company paid life insurance. - Paid time off. - 401k retirement plan. - Employee assistance program. - Voluntary coverage options and employee discounts.

Role Description The Information Security Analyst II will report to the Director of Information Security Operations. You will be a senior member of the Security Operations Center (SOC) team and is responsible for monitoring a large, complex enterprise technology ecosystem, detecting, analyzing, and investigating information security events within that ecosystem, and responding to information security incidents to ensure the protection of SNHU's mission critical technology resources and institutional information. The SOC team is responsible for analyzing events from multiple sources from across all university technology resources including networks, applications, and other assets. The critical duties and responsibilities of the SOC team must continue to be performed during crisis situations and contingency operations, which may necessitate extended hours of work, and/or require work during non-business hours. You will work 100% remotely from any of our approved states. What You'll Do: - Be an initial triage point for all security-related tickets that come into the team's multiple queues (including triage, containment, and remediation). - Understand the basic incident response lifecycle and the analytical mindset needed when it comes to triage and investigations. - Excel at documentation and detailed notetaking, including SOP writing, incident reporting, email and instant messaging etiquette, and most importantly, documenting incident actions. - Collect and analyze log data from complex, virtualized, multi-site computing environments and SNHU's technology ecosystem. - Conduct real-time monitoring of security events from multiple sources and use analytical and problem-solving skills to identify, triage, analyze, investigate, and escalate information security events and alerts. - Analyze digital evidence to identify indicators of compromise, adversary activity, root cause, incident timelines, and attack vector(s). - Perform incident response activities like endpoint isolation, malware remediation, forensic analysis, malware analysis, community member interviews, and network traffic analysis. - Perform investigation and escalation for complex or high severity security threats or incidents. - Coordinate information security incident response according to SNHU's Information Security Incident Response Plan. - Communicate with partners, in a non-technical manner, at all organizational levels as part of incident response and remediation activities. - Design and implement or monitor information security incident remediation plans. - Design, configure, deploy, and manage security tools (e.g. Splunk, Halcyon, Microsoft Defender, Tenable). - Design, deploy, and manage detections and alerts for specific or common threat conditions. - Design and implement standard operational processes for handling common incident types. - Maintain automation scripts and other tools to enhance security operations effectiveness. - Familiarity with enterprise security tools like Splunk, Tenable, Proofpoint tools, Microsoft Defender components, Office 365 tools, PowerShell, and multiple network tools. - Demonstrate a deep source of ethics, integrity, and confidentiality. - Can remain calm and function at the highest level during a crisis. - Remain up to date on latest threat intelligence. - Develop strategies and solutions that improve or mitigate the risks associated with these threats. - Work cross-functionally across ITS and all SNHU departments to provide support, guidance, and technical implementations to include triage, containment, and remediation when applicable. - Provide customer support according to SNHU's Core Values and understand how and when to escalate potential issues. - Help with risk management, vulnerability management, security assessment, auditing, and security authorization projects, as directed by the university's Information Security Management team. - Provide coaching/mentoring to junior analysts. - Other duties and responsibilities as assigned. Qualifications - 5+ years of experience in information technology. - 2+ years working in a security operations center (SOC), a cybersecurity operations center or on a cybersecurity incident response team. - High School Diploma or equivalent (GED). - Experience collecting, organizing, and analyzing security data from enterprise monitoring tools, including SIEM, IPS, NAC, vulnerability scanners, Windows/Linux system logs, network scanners, log aggregation platforms, and EDR solutions. - Experience with vulnerability management and penetration testing concepts and activities. - Knowledge of MITRE ATT&CK framework. - Professional Certification(s): ISC2 CISSP Certification, Microsoft Azure, Cisco, CompTIA, Security+, GSEC, or other relevant industry certification. Requirements - Office Hours: Monday through Friday 8:00am – 4:30pm. - Professional office environment. Sedentary work: Requires remaining in a stationary position, often standing or sitting for prolonged periods. Benefits - High-quality, low-deductible medical insurance. - Low to no-cost dental and vision plans. - 5 weeks of paid time off (plus almost a dozen paid holidays). - Employer-funded retirement. - Free tuition program. - Parental leave. - Mental health and wellbeing resources.

Role Description This is a remote position. Position Requirements: - Performing highly advanced (senior-level) consultative services and technical assistance work related to supporting the CAPPS Program. - Responsible for the (CAPPS) security framework, which includes but is not limited to: - Manage and enforce role‑based access control (RBAC) and least‑privilege models within CAPPS and connected systems. - Design and maintain segregation‑of‑duties (SoD) rules; identify and remediate SoD conflicts across business processes. - Review and validate security roles, permission sets, and custom authorizations within CAPPS and all ancillary systems. - Monitor and analyze authentication, authorization, and privilege‑escalation logs for suspicious behavior and coordinate any findings with CPA Information Security Office. - Oversee secure integration of third‑party apps via SAML, OAuth, OIDC, SCIM, and custom APIs. - Validate CAPPS application changes, customizations, and workflows for security and compliance impact. - Respond to and investigate identity‑related security incidents, including account compromise, unauthorized access, and fraud indicators. - Maintain standards for security, performance, compliance, and architecture. - Responsible for ensuring that all digital products and content meet WCAG 2.1 accessibility standards, including: - Maintaining perceivable, operable, understandable, and robust experiences for all users. - Regularly reviewing content for compliance and implementing updates or remediation whenever accessibility issues are identified. - Reviewing and suggesting approval for all assigned Security Deliverables related to CAPPS Architecture, CAPPS System Development Lifecycle, Disaster Recovery, CAPPS Security Plans (SSP), and all CAPPS related Security plans. - Service Desk Support: - Plans, designs, develops, deploys, supports, and maintains system configurations and modifications for CPA’s CAPPS HR/Payroll application. - Performs highly advanced analysis and participates in special projects and cyclic processes in support of CPA’s CAPPS HR/Payroll application. - Supports CAPPS agencies with discovery, prototyping, configuration, security, conversion, integration, and acceptance testing. - Provides Level 2 Service Desk duties, including ticket handling for complex issues, in-depth troubleshooting, and basic configurations. - Performs all duties following CPA’s processes, policies, and procedures within project scope and on schedule. - Works under minimal supervision, relying on experience and judgment to plan and accomplish goals. - Performs all work in accordance with ITIL principles and practices for IT activities. - Actively responds to and maintains customer ticket requests via the CAPPS Service Desk. - Actively participates in CPA’s Major Incident Management (MIM) process for P1 and P2 incidents. - Participates in Disaster Recovery and Upgrade Testing activities. - Assists with expansion activities. - Makes presentations at CAPPS User Groups. - Plans, designs, develops, implements, supports, and maintains information technology security measures. - Participates in an annual SOC-1 attestation audit. - Performing other related work as assigned. Qualifications - 10 years Required: Extensive Texas public sector experience, directly working for or supporting a Texas state government agency. - 10 years Required: Extensive experience performing technical activities in support of CPA application systems. - 10 years Required: Extensive experience creating and managing a strategic roadmap by combining strong planning skills, technical insight, and effective cross-functional communication. - 10 years Required: Experience preparing materials for and conducting executive-level presentations. - 10 years Required: Experience performing technical project management activities in support of CPA’s CAPPS program. - 10 years Required: Experience in interpreting contractual language and integrating it into daily workflows. - 10 years Required: Extensive knowledge of/experience with data integration, data quality, and SDLC processes and methodologies. - 10 years Required: Experience in IT security and control practices. - 10 years Required: Technical experience with PeopleSoft FSCM or HCM 9.2, PeopleTools, Peoplecode, Application Designer, SQL, PS Query, SQR, Application Engine, and Oracle 11 or higher. - 10 years Required: Experience with CAPPS Central production and deployment technical support activities for more than 100 agencies and 5 Hub instances. - 8 years Required: Experience with IT service desk functions, knowledge of ITIL framework methodologies and processes. - 5 years Required: Experience serving in a security analyst role with responsibility overseeing a Managed Services provider. - 5 years Required: Experience with user role segregation of duties (SoD) in multi-tenant software applications. - 10 years Preferred: Experience with software and hardware management industry best practices. - 10 years Preferred: Experience with CPA’s legacy Statewide Financial Systems production support activities. - 10 years Preferred: Experience developing technical specifications to support IT procurements.