• Execute security testing on web applications, APIs, infrastructure, and cloud environments under supervision. • Assist with reconnaissance and attack surface mapping activities. • Participate in Red Team exercises and controlled attack simulations. • Perform analysis and validation of vulnerabilities identified by automated scanners. • Support Threat Hunting activities using SIEM, EDR data, and threat intelligence sources. • Investigate indicators of compromise (IOCs) and suspicious behavior. • Prepare technical documentation and executive reports on vulnerabilities and findings. • Collaborate with development and infrastructure teams to provide guidance on remediation. • Keep up to date with trends, TTPs (MITRE ATT&CK), campaigns, and new techniques used by malicious actors. • Take part in security research and development of proofs of concept (PoCs).

Role Description You don’t want to cry when you hear about WannaCry? Loki isn’t only a German firegod to you? You know what Meltdown/Spectre are, maybe you even know what cryptojacking is? Then the following position is for you! If you join us, your daily tasks will be as follows: - Detection, analysis and management of security incidents - Making and evaluating reports - Monitoring the customer’s environment - Tracking IT security issues (vulnerabilities, 0day exploits, malware) and making/fitting the rules for detecting them in the client's environment - Change and incident management - Analysis of malicious code in sandbox Qualifications - If you love to learn and you have a need for continuous development - If you know network models (OSI, TCP/IP) - If you know how operating systems work (Windows, Linux) - You speak English on business level - You are fluent in Hungarian - It's not a problem if you have to spend about one-third of your working hours in shifts - You have basic knowledge of script languages: python, bash, JS and so on - You are familiar with the logs of security systems: proxy, AV, WAF, IDS, Webserver, DNS - You've done PCAP analysis Benefits - Please be informed that our remote working possibility is only available within Hungary due to European taxation regulation. Company Description As Hungary’s most attractive employer in 2025 (according to Randstad’s representative survey), Deutsche Telekom IT Solutions is a subsidiary of the Deutsche Telekom Group. The company provides a wide portfolio of IT and telecommunications services with more than 5300 employees. We have hundreds of large customers, corporations in Germany and in other European countries. DT-ITS received the Best in Educational Cooperation award from HIPA in 2019, acknowledged as the Most Ethical Multinational Company in 2019. The company continuously develops its four sites in Budapest, Debrecen, Pécs and Szeged and is looking for skilled IT professionals to join its team.

Role Description As a GRC Security Analyst, you will serve as a fully qualified, experienced professional responsible for ensuring Clear Capital adheres to all relevant security standards, regulations, and policies within the highly regulated mortgage lending and appraisal industry. You will play a critical role in maintaining our Governance, Risk, and Compliance (GRC) posture. What you will work on: - Monitoring and enforcing compliance with critical security frameworks (such as NIST CSF, NIST RMF, ISO 27001/27002, SOC 2, ISO 42001) and industry-specific regulations (such as GLBA, CCPA, GDPR) pertinent to the financial services and real estate valuation sectors. - Conducting comprehensive risk assessments of diverse scope to identify security vulnerabilities, evaluating the effectiveness of existing controls, and resolving a wide range of issues using judgment and interpretation. - Developing, maintaining, and adapting security policies, procedures, and guidelines in alignment with industry best practices, client contractual requirements, and mortgage lending regulatory standards. - Leading preparation and participation for internal and external security audits, adapting existing approaches to resolve audit findings based on limited information and precedent. - Enhancing relationships with cross-functional teams to develop and implement remediation plans for identified security gaps and weaknesses. - Evaluating the security posture of third-party vendors and assessing their compliance with contractual security requirements to protect sensitive financial and property data. - Maintaining accurate records of compliance activities, findings, and remediation efforts, creating comprehensive reports for management, clients, and regulatory authorities as needed. - Defining qualitative and quantitative metrics to assess the success of the security program and provide regular reports to security and business leadership. - Staying abreast of emerging security threats, technologies, and regulatory changes in the financial and real estate tech space. - Other relevant duties as assigned. Qualifications - A minimum of 5 years of related experience in GRC, security compliance, or risk management roles with a Bachelor’s degree; or 3 years and a Master’s degree; or equivalent work experience. - Complete knowledge and full understanding of relevant security frameworks and standards (e.g., NIST CSF, SOC 2, ISO 27001, ISO 42001) and data privacy regulations (GLBA, GDPR, CCPA). - Relevant industry certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Artificial Intelligence Governance Professional (AIGP), or equivalent. - Sophisticated analytical and problem-solving skills, with the ability to assess diverse, unusual, and complex security issues and develop effective solutions independently. - Strong communication and interpersonal skills, with a proven ability to persuade differing audiences and advise senior stakeholders on difficult compliance matters. - Familiarity with GRC technologies (i.e., Vanta, Drata, OneTrust, etc.), risk assessment tools, and practices specific to maintaining data integrity and confidentiality in the financial services or appraisal management industry. - Detail-oriented focus on accuracy and thoroughness in documentation, reporting, and policy formulation. - Commitment to maintaining the highest standards of confidentiality, integrity, and professionalism. - Capacity to understand legacy and progressive technology and security controls along with respective risks. Working knowledge of technologies such as cloud computing, DevOps, and application security is required. - Advanced proficiency in utilizing spreadsheets for comprehensive data analysis, audit metric tracking, and complex compliance reporting. Benefits - Compensation: The base salary for this position ranges from $114,000 to $139,000 annually, depending on your location, experience, and qualifications. - Additional compensation offerings include company profit-sharing bonus program, communication stipends, and referral bonuses. - Inclusive benefits package offering: - Comprehensive medical, dental, and company paid vision insurance. - 401(k) retirement plan with employer match. - Voluntary life and AD&D insurance options. - Voluntary supplemental insurances for accident, critical illness, and legal services. - Paid time off (PTO) and paid holidays. - Employee assistance and wellness programs. - Company paid short term disability coverage. - Company contributions to health saving funds (with participation in the high deductible health plan). - Company paid access to Galileo for virtual primary care and Rula for virtual mental health resources. - Through our Anniversary Program, we celebrate the meaningful milestones and long tenure that reflect how much we value your contributions and commitment to our team. - Career and skill development resources to help advance your career and personal growth. - A mission-driven environment where your work makes a measurable impact on the real estate industry. Company Description Clear Capital is a national real estate analytics, data solutions and valuation technology company with a simple purpose: to build confidence in real estate decisions to strengthen communities and improve lives. Our goal is to provide customers with a complete understanding of nearly every U.S. property through our AI-driven analytics, data solutions, valuation services and automated appraisal review platforms. Our commitment to excellence - wherever it leads, whatever it takes® - is embodied by our team members across our brands and has remained steadfast in this pursuit since our first order in 2001. Clear Capital is an equal-opportunity employer.

Electronic Health Record Analyst III - Security Location: CA - South San Francisco or San Mateo, USA Job Description: Salary $146,120.00 - $182,582.40 Annually Location County of San Mateo, CA Job Type Regular Job Number V402E Department Health IT Description San Mateo County Health is seeking highly-qualified individuals for the position of Electronic Health Record Analyst III - Security to, under minimal supervision, provide direct application support and user training for Health’s electronic health record (EHR) system; direct, install and maintain EHR applications and related security; support the design, development, implementation, testing, update, integration and maintenance of system configuration, and application tables; determine user, system and application needs and evaluate solutions to address needs; provide data analysis, report development, and technical assistance to system users; and perform related duties as required. There is currently one regular vacancy in the Health IT Division, located in South San Francisco or San Mateo, CA, and will require travel/driving throughout the county to perform job duties. This position is currently hybrid, with both on-site and remote work based on business need and subject to change. The ideal candidate will possess: - Epic certification in specified areas and work experience in Security and provider workflow within a hospital/clinic-based environment. - Advanced expertise working with electronic health records and access management. - Experience working in a healthcare setting, preferably government county health. - Experience providing lead direction and guidance in assigning, delegating, directing, training, and reviewing the work of staff. - Experience participating in the coordination of the workload of lower-level EHR Analysts. - Experience in lead roles in “user” meetings to prioritize, review, and respond to user requests and delegate tasks and activities. - Ability to assist in identifying time, resource management, requirement gathering, business need assessments, training needs i.e. Optimization, software updates, changes in regulatory requirements. - Experience as a liaison between system users and information technology staff, vendors, and service providers. - Experience spearheading projects requiring deeper workflow analysis with stakeholders across Health. - Demonstrated ability to troubleshoot and resolve complex issues involving the crossover of several legacy and EHR platforms. - Ability to work with key internal and external stakeholders to align technology solutions with business strategies. - Ability to provide product management, support, guidance, and troubleshooting through technology lifecycle management, including utilizing appropriate escalation steps. - Experience in implementation of new application systems. - Demonstrated exceptional customer service skills. - Experience in providing consultation services to customers/end-users, with ability to document business and technical problems, and identify requirements. - Ability to establish and maintain effective working relationships with those encountered on the job. - Excellent written and verbal communication skills with internal and external stakeholders to ensure that needs are met. - Self-starter with the ability to work independently and as a member of a team. - Excellent time management skills and ability to set priorities and adjust to meet deadlines. - Experience working in a diverse work environment including with staff who provide the care and services for patients/clients. - Adept at learning and applying newly acquired skills on the job. NOTE: The eligible list generated from this recruitment may be used to fill future extra-help, term, unclassified, and regular classified vacancies. Examples Of Duties The duties of the position may include, but are not limited to, the following: - Coordinate complex assignments involving multiple stakeholders, including software development life cycle, project planning, upgrade, build, optimization, identifying resource requirements, testing, and implementation. - Perform in-depth analysis of workflows, data collection, report details, and other technical issues in support of technical and business decision-making efforts associated with the EHR system. - Collaborate with stakeholders to improve overall EHR utilization. - Interact with vendors and other stakeholders to identify, prioritize, and recommend alternative solutions and risk mitigation strategies. - Assist in developing practices to improve configuration and documentation processes. - Monitor system performance, troubleshoot, and resolve application issues and system errors. - Participate in the evaluation of new application releases, test new applications and system upgrades. - Identify, analyze, and recommend improvements and enhancements to operational processes, system automation, and information flows to ensure greater integration of functions within the organization. - Design, develop, modify, and implement testing processes including scripts, recording test results, facilitating end-user testing, and maintaining test environments. - Facilitate and attend meetings with stakeholders to review end-user and tracking/trending issues, workflow problems, system capabilities, monitoring feedback, and potential system enhancement needs. - Respond to customer/user questions and concerns and recommend solutions as needed. - Create security classification templates to provide appropriate access while protecting patient health information. - Communicate with vendors regarding technical issues. - Coordinate and participate in the review, design, configuration, and testing of new releases, upgrades, release authorizations, and special updates; evaluate new functionality and manage master file changes for new features. - Configure, test, and evaluate new or changed clinical/business application functionality and workflows to meet enterprise requirements. - Investigate, design, develop, test, and implement reports and dashboards. - Develop and document internal procedures. - Provide information and support to facilitate instructional training; participate in developing and/or lead training programs, curriculum, and lessons, including preparing training materials. - Support systems, applications, processes, and customers, and respond to queries in a timely manner. - Provide support for application incidents reported through the help desk, including 24/7 on-call coverage, as required. - Perform related duties as assigned. Additional duties when designated as a Lead Worker: - Provide lead direction and guidance in assigning, delegating, directing, training, and reviewing the work of lower level EHR Analysts. - Participate in the coordination of the workload of lower level EHR Analysts. - Assume lead roles in user meetings to prioritize, review, and respond to user requests and delegate tasks, activities of lower level EHR Analysts. - Assist in identifying timelines, resources, requirement gathering, business need assessments, training needs, vendor and stakeholder engagement needs, milestone tracking, report needs and provide guidance for other analysts. - Serve as liaison between system users and information technology staff, vendors, and service providers for County-wide systems or applications. - Serve as the point person for the communication and coordination of vendor engagement and communication. Additional duties when designated as an Advanced Specialist: - Spearhead projects requiring deeper workflow analysis with stakeholders across Health. - Troubleshoot and resolve complex issues involving the crossover of several legacy and EHR platforms, and crossing over several specialties/service lines, e.g., vendors, stakeholder. - Work with business partners across the organization to align technology solutions with business strategies. - Provide product management, support, and guidance through the software development life cycle, including requirement gathering and analysis, design, implementation or coding, testing, deployment, and maintenance. This position will perform duties as either a lead worker or advanced specialist depending on the needs of the Health IT Division. Qualifications Education and Experience: Any combination of education and experience that would likely provide the required knowledge, skills and abilities is qualifying. A typical way to qualify is: - Three years of information technology support experience in a healthcare operation setting, including at least one year of Epic user support experience. License/Certification: - Epic Certification in Security or Data Courier; and a second Epic Certification in a second application that would be determined by Health IT management based on business needs, within six months from hire. Maintain Epic training credentials through Epic's Continuing Epic Education (CEE) program with additional training that must be completed to maintain certifications, proficiencies, and badges. Knowledge of: - Electronic health record systems, specifically Epic software applications. - Software development life cycle including requirement gathering and analysis, design, implementation or coding, testing, deployment, and maintenance. - Design, implementation, testing, updating, maintenance, evaluation, and analysis of system configuration, system setup, and application tables. - Clinical applications and regulatory standards, a wide range of application functionality, content, and associated workflows. - Basic supervisory principles and practices. - Customer service principles. - Policies, procedures, and business operations. - Principles and procedures in project management and project management methodologies. Skill/Ability to: - Train and mentor staff, including effective coaching and team building. - Translate and document complex clinical and/or business workflows. - Interact with and work collaboratively with multidisciplinary teams and process stakeholders. - Learn and retain knowledge of all assigned applications. - Configure, implement, maintain, and evaluate Epic applications and platform. - Troubleshoot application issues and system errors. - Multi-task complex work assignments. - Follow standards for naming and number conventions and security classifications. - Design, modify, and implement testing process. - Create security classification templates. - Communicate effectively, both orally and in writing. - Prioritize effectively and manage time efficiently. - Lead meetings and resolve conflicts. - Perform under pressure with tight deadlines. - Become cross-functional in one or more applications. - Motivate key process stakeholders. - Travel outside the County for training. Application/Examination Departmental Promotional Only. Only current County of San Mateo employees in San Mateo County Health with at least six months (1040 hours) of continuous service in a classified regular, probationary, or extra-help/limited term position prior to the final filing date may apply. The examination process will consist of an application screening (weight: pass/fail) based on the candidates' application and responses to the supplemental questions. Candidates who pass the application screening will be invited to a panel interview (weight: 100%). Depending on the number of applicants, an application appraisal of education and experience may be used in place of other examinations or further evaluation of work experience may be conducted to group applicants by level of qualification. All applicants who meet the minimum qualifications are not guaranteed advancement through any subsequent phase of the examination. All examinations will be given in San Mateo County, California and applicants must participate at their own expense. About the County San Mateo County is centrally located between San Francisco, San Jose, and the East Bay. With over 750,000 residents, San Mateo is one of the largest and most diverse counties in California and serves a multitude of culturally, ethnically, and linguistically diverse communities. The County of San Mateo, as an employer, is committed to advancing equity to ensure that all employees are welcomed in a safe and inclusive environment. The County seeks to hire, support, and retain employees who reflect our diverse community. We encourage applicants with diverse backgrounds and lived experiences to apply. Eighty percent of employees surveyed stated that they would recommend the County as a great place to work. The County of San Mateo is an equal opportunity employer. We seek to hire, support, and retain employees who reflect our diverse community.