Role Description The Arizona Department of Economic Security (AZDES) is seeking an experienced Information Security Analyst to join its Governance, Risk, and Compliance (GRC) team. This contract-to-hire position will support: - Risk assessments - Security audits - Compliance initiatives - Policy development - Information security governance activities across the agency The ideal candidate will possess strong knowledge of: - Cybersecurity frameworks - Risk management - Audit practices - Security compliance standards Qualifications - NIST 800-53 Rev. 5 - Risk Management Framework (RMF) - Windows and Unix Administration Experience - Information Security Risk Management - Internal Auditing and Risk Assessment - Security Controls Assessment and Compliance - Security Policy Development - Security Documentation and Reporting - Cybersecurity Governance and Compliance - Strong Written and Verbal Communication Skills Requirements - Project Management Experience - CISSP Certification - CCSP Certification - CAP Certification - GSNA Certification - GSTRT Certification - Government Security Compliance Experience - Audit and Regulatory Compliance Experience Key Responsibilities - Conduct risk assessments, security reviews, and compliance audits. - Develop findings reports, recommendations, POA&Ms, and incident reports. - Maintain and update security plans, audit plans, and risk management documentation. - Review security controls and ensure compliance with applicable frameworks and regulations. - Research security standards, laws, regulations, and best practices. - Evaluate information systems and identify cybersecurity and privacy risks. - Support governance, risk, and compliance (GRC) initiatives. - Develop policies, procedures, and security documentation. - Assist project managers with information analysis, requirements gathering, and project artifacts. - Develop user training materials and support user adoption initiatives. - Collaborate with business units, technical teams, and leadership to improve security posture. - Participate in security reviews, assessments, and continuous improvement efforts. Required Compliance Knowledge - NIST 800-53 Rev. 5 - Risk Management Framework (RMF) - IRS Publication 1075 - HIPAA / HITRUST - CJIS - MARS-E - Security Authorization & Accreditation Processes - Internal Controls and Audit Practices Primary Skills - Information Security - Governance Risk & Compliance (GRC) - NIST 800-53 Rev. 5 - Risk Management Framework (RMF) - Cybersecurity - Security Audits - Risk Assessments - Compliance - Security Controls - Internal Auditing - Windows - Unix - Security Policies - Incident Reporting - POA&M Development - Project Management - CISSP - CCSP - CAP - GSNA - GSTRT This is a remote position.

Role Description This is a remote position that can be hired in NC, AZ, TX, and VA. This position supports the Bank's Information Security and Cyber Threat management programs at the highest level of complexity and expertise. Leads the analysis and mitigation of threats identified within the Bank's networks and systems. Ensures that team reporting is timely, accurate, and escalated as necessary to provide actionable intelligence for cyber defense efforts. Develops process improvements and technical solutions that address the identified gaps or deficiencies. Drives the defense of the organization's information security and technological architecture through expert consultation and threat mitigation. Serves as a resource to team members and management on security threats, industry trends, and other relevant intelligence. Leads projects within the work group and resolves escalated, high-risk issues. Responsibilities - The role will focus on detection engineering, leveraging advanced security tools and frameworks to enhance their threat detection capabilities. - The ideal candidate will have deep expertise in SIEM log analysis and detection development, in-depth knowledge of security controls, and strong communication skills to collaborate across IT and enterprise monitoring teams. - Perform in-depth analysis of security events and detections from SIEM and EDR platforms. - Review and recommend improvements to security policies and detection strategies across security tools. - Assist with log analysis for critical applications, ensuring proper field capture and normalization. - Collaborate with IT teams and application owners to identify gaps and implement detection enhancements. - Apply MITRE ATT&CK framework to strengthen detection coverage and threat modeling. - Document findings, recommendations, and detection logic clearly and concisely. Qualifications - Bachelor's Degree and 8 years of experience in Information security OR High School Diploma or GED and 12 years of experience in Information security. - Proven experience in detection engineering within cybersecurity operations. - Strong proficiency in Splunk (Power User level or higher); Splunk administration experience preferred. - Hands-on experience with security tools such as CrowdStrike, UEBA, and database monitoring solutions. - Familiarity with SIEM and EDR analysis methodologies. - Working knowledge of the MITRE ATT&CK framework. - Excellent communication and organizational skills; ability to guide application owners through technical requirements. Benefits Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits .

Role Description We are seeking an experienced Security Operations Center (SOC) Information Security Analyst to support a large enterprise cybersecurity team. This role is responsible for monitoring, analyzing, and responding to security events and incidents while helping strengthen the organization's overall security posture. The ideal candidate will possess hands-on experience with security monitoring tools, incident response processes, threat hunting activities, and threat intelligence analysis. The candidate should be comfortable communicating technical findings to both technical and non-technical stakeholders. Qualifications - Minimum 2 years of experience working as a SOC Analyst, Information Security Analyst, or similar cybersecurity role. - Strong understanding of networking concepts including: - TCP/IP - DNS - Routing and Switching - Ping and Traceroute - NTP - TLS/SSL - Experience investigating and responding to security incidents. - Knowledge of threat detection, threat hunting, and incident response methodologies. - Experience working with Security Information and Event Management (SIEM) platforms. - Strong analytical and problem-solving skills. - Excellent verbal and written communication skills. Requirements - Experience with Microsoft security technologies including: - Azure - Entra ID - Microsoft Sentinel - Microsoft Defender - Experience with CrowdStrike or similar Endpoint Detection and Response (EDR) solutions. - Familiarity with threat intelligence platforms and industry security frameworks. - Experience creating security procedures, runbooks, and incident response documentation.

Role Description As an Cybersecurity Analyst Senior with FIS, your skills will be put to the test on the front lines of cyber-crime. Information security is at the heart of fintech, and you’ll help protect and secure highly-sensitive financial data for our customers around the world. We’re looking for a Subject Matter Expert who can help safeguard our organization against current and future challenges. The position will ensure compliance, enhance our internal capabilities, and position our organization to respond more dynamically to regulatory changes. The Cybersecurity Analyst Senior is a member of our Mainframe Security Compliance team which leads tactical administration of our enterprise mainframe environment, including: - Provisioning - Digital certificates - Audits - Audit remediation - Other security-based changes You’ll have the chance to work with a dynamic team of Cybersecurity Analysts who are making a great impact on our organization. What you will be doing: - Researches attempted efforts to compromise security protocol and recommends solutions. - Maintains security systems and administers security policies to control access to systems. - Creates information security documentation related to work area and completes requests in accordance with company requirements. - Responds to information security-related questions and inquiries using established information security tools and procedures. - Resolves and/or performs follow through to resolve all information security issues and questions. - Implements and administers information security controls using software and vendor security systems. - Identifies opportunities and executes plans to improve workflow and understands and quantifies business impacts of those improvements for communication to management. Qualifications - Ability to handle on-call rotation (once per quarter) - Bachelor’s degree in computer science or the equivalent combination of education, training, or work experience - 5-10+ years of information security experience - Advanced technical knowledge of ACF2, TSS, or RACF (ACF2 is preferred, at least one is required) - Knowledge of networks technologies (protocols, design concepts, access control) & security technologies (encryption, data protection, design, privilege access, etc.) - Knowledge of network design and engineering - Proficiency in time management, communications, decision making, presentation and organizational skills - Intermediate decision-making and problem-solving skills - Intermediate verbal and written communication skills to technical and non-technical audiences of various levels in the organization - Experience establishing and maintaining effective working relationships with employees and/or clients Requirements - In-depth knowledge of REXX - CISSP, CCSP or equivalent certification Benefits - Flexible and creative work environment - Diverse and collaborative atmosphere - Professional and personal development resources - Opportunities to volunteer and support charities - Competitive salary and benefits