Job Search Results for cybersecurity

Insight Global is seeking a Manager of Governance, Risk and Compliance (GRC) at a large retail client to play a critical mid-level leadership role within the Information Security function,... More responsible for translating strategy into operational execution across the GRC program. Reporting to the Director of GRC, this role provides daily oversight of analysts and leads, drives process maturity, and ensures consistent delivery of risk, audit, policy, and continuity efforts. The Manager of GRC helps shape the enterprise?s risk posture while mentoring a high-performing team and fostering cross-functional collaboration. This role requires a deep understanding of regulatory frameworks and an ability to communicate complex risk concepts in clear, actionable terms. The ideal candidate will proactively identify control gaps, coordinate effective mitigation, and ensure security efforts remain aligned with evolving business needs.Enterprise Cyber Risk Management: - Lead enterprise-wide cybersecurity risk assessments across business units and IT domains. - Own the accuracy and ongoing maintenance of the enterprise risk register, ensuring it is consistently updated and informed by stakeholder input. - Collaborate with business and IT leaders to define and apply enterprise risk tolerance thresholds. - Translate technical risk findings into actionable, business-relevant recommendations. - Identify and escalate systemic risks that could materially impact operations or compliance. - Monitor industry trends, threat intelligence, and regulatory changes to adjust risk posture. - Deliver clear, timely risk reports and dashboards to senior leadership and governance bodies. - Implement structured risk governance processes, including review cycles and escalation protocols. - Implement automated GRC tools and data analytics to improve cybersecurity risk management efficiency and accuracy. - Develop KPIs and KRIs for the security organization and maintain tactical and strategic dashboards to monitor risk and compliance efforts. Management & Collaboration: - Oversee GRC team operations, assigning work, setting priorities, and ensuring effective collaboration. - Partner with senior leadership and business stakeholders to align GRC efforts with enterprise goals. - Foster a high-performing, collaborative team culture through coaching, accountability, and career development. Business Continuity and Disaster Recovery (BC/DR): - Lead collaboration with IT and business leaders to identify mission-critical applications and conduct comprehensive BIA, define RTO/RPO, and recovery procedures. - Develop dependency mappings for critical systems with application and infrastructure teams. - Oversee documentation of recovery procedures, including technical and business continuity procedures. - Lead tabletop exercises and failover/failback recovery testing with IT and business users. - Identify gaps in the BC/DR program and take ownership of remediation. - Ensure business continuity objectives are effectively aligned with IT capabilities to support organizational resilience during disruptions. - Contribute to recovery planning efforts and facilitate coordination among IT and business teams to ensure effective response during disruptions. Vendor Risk Management: - Partner with the procurement and legal teams to integrate cybersecurity function into the overall process, mitigating supply chain risks for the company. - Manage third-party risk processes, including assessments and reviews. Continuously identify opportunities for improvement to enhance its effectiveness and efficiency - Escalate high-risk vendor issues to leadership and work with business stakeholders to develop and execute mitigation plans. - Oversee monthly reporting on security assessments of AI vendors, provide expert analysis to leadership on AI-related risks and recommend strategic actions to resolve identified issues. - Establish and manage a comprehensive set of criteria and assessment questions to support third-party risk management activities. Managed Security Service Provider (MSSP) and Third-Party Security Incidents:- Own vendor incident response governance program and playbooks.- Ensure vendors provide formal evidence of incident containment and remediation and ensure compliance with security requirements before closing a third incident.- Consolidate third party incident and GRC-owned MSSP results into executive dashboards.- Embed incident response obligations into contracts and procurement.Audit and Compliance: - Oversee internal/external audit readiness and evidence collection. - Ensure compliance with SOX, PCI, and privacy frameworks. - Serve as audit liaison for the GRC function. - Act as the primary contact for internal audit and take ownership of recreating risk and compliance assessment findings. Policy Implementation: - Manage the policy lifecycle from creation through enforcement. - Ensure policies align with frameworks like NIST and PCI DSS. - Ensure the organization adheres to all relevant policies and standards. Cybersecurity Education: - Manage company-wide security training programs. - Strategically identify education and awareness needs based on enterprise-wide cybersecurity threats and business priorities. - Establish metrics to evaluate the success of training initiatives, including trends in knowledge retention, behavior changes, and overall effectiveness of the security culture. - Oversee continuous improvement of the training curriculum, ensuring it evolves to address new threats and compliance requirements.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

We are seeking an experienced and highly motivated Cyber Incident Response Planner to drive the development and implementation of robust incident response plans and processes. As an integral part of... More the Governance, Risk, and Compliance (GRC) Division within the Information and Cybersecurity Department, you will lead response efforts to mitigate cybersecurity breaches, minimize risk, and safeguard enterprise systems. This role requires a skilled communicator, critical thinker, and experienced responder who thrives in staying ahead of the evolving threat landscape.This is a cross-functional role offering the opportunity to work across teams, contribute to enterprise risk management, and help build a strong incident response culture. The ideal candidate will bring technical expertise, communication acumen, and leadership skills to effectively influence and collaborate across multiple stakeholder groups. This role reports to the GRC Manager and is designated as on-site, with a current expectation of two days in the office due to space considerations. Work will be performed in the Eastern Time Zone (ET) in Atlanta, GA.Key ResponsibilitiesIncident Response Planning & Implementation?Maintain governance over incident response (IR) documentation. Develop, document, and implement comprehensive IR plans, policies, standards and procedures to ensure swift and effective responses to cybersecurity incidents or breaches.?Update and maintain IR documentation, workflows, automation initiatives, and response playbooks and similar, to remain aligned with evolving threats and operational requirements.?Create and maintain secure methods for tracking and reporting IR activities.Incident Handling & Coordination?Assist with handling of security events/incidents, including triage, remediation, documentation of the incident, including Indicators of Compromise (IOCs), and escalation to management.?Coordinate incident investigations, containment, and recovery efforts in collaboration with internal teams and external stakeholders.?Serve as a liaison, ensuring clear and accurate communication of incident details while gathering information for stakeholders across multiple departments and governance bodies. Observe and document events during cybersecurity incidents and exercises to facilitate post-incident response reviews to identify and implement comprehensive improvements based on the lessons learned.?Submit required IR reports to governing bodies to meet legal, regulatory, contractual, and policy obligations (e.g., federal agencies or institutional reporting directives).Threat Awareness & Communication?Maintain a deep and current understanding of the threat landscape, including malware identification, threat actor activity, and emerging attack vectors.?Continuously analyze and consult various publications, websites, news sources, and cyber forums to monitor cyber threats relevant to our environment.?Effectively communicate risks, threats, and potential impacts to stakeholders outside of the cybersecurity domain in a clear and actionable manner.Testing & Validation?Plan and execute incident response exercises, (e.g., tabletop exercises, simulations, and controlled disruptions) to validate and enhance organizational IR capabilities.?Facilitate post-incident response exercise reviews to identify gaps, implement lessons learned, and refine IR processes.Data Analysis & Enterprise Incident Management?Manipulate, analyze, and interpret complex datasets to support cybersecurity investigations and enterprise risk initiatives.?Leverage GRC tools to enhance enterprise cybersecurity risk management processes.?Identify opportunities to automate and innovate IR workflows for improved efficiency.Additional ResponsibilitiesGeneral GRC Support?Resolve service desk incidents and issues assigned by the GRC team.?Review and contribute to cybersecurity documentation for completeness, currency, and accuracy, such as plans for system security, incident response, contingency, disaster recovery, and business/impact analysis. Update as necessary.?Contribute to the preparation of regulatory and compliance reports, collaborate with other organizational units ensuring data accuracy and complianceWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for a System Security Engineer for one of our largest defense clients out of Warren, MI that will be fully onsite. This person will be responsbile for ensuring the... More development and delivery of cybersecurity and program protection capability for DoD acquisition programs through the implementation of an approach based on cost, schedule, performance, and risk. They will lead the evaluation and balancing of security contributions to produce a coherent security capability across the technology system and the DoD acquisition program, in order to integrate all aspects of system security. This person will also assist in conducting trade-off analyses and will integrate contributions from system security engineering disciplines such as anti-tamper, cybersecurity, exportability features, hardware assurance, software assurance, supply chain risk management; and security specialties (personnel security, industrial security, physical security, etc.). There will be a focus on Cyber survivability to assess the ability of the system to perform its mission and functions, in the face of cyber-attack, by the anticipated adversaries, and to operate effectively in a cyber-contested environment. Other responsbilites include:- Provide a program protection assessment of requirements documents to program management- Identify critical program information (CPI) including inherited designated science and technology information- Determine the threat to CPI- Identify personnel required to fulfill all pertinent program protection roles to engineering and program management- Identify vulnerabilities to CPI- Perform risk analysis- Recommend appropriate security controls for an acquisition program - Provide technical support to register an acquisition program with the applicable component(s) cybersecurity program- Document program protection planning in the systems engineering plan (SEP), PPP and system security plan (SSP)$40/hr to $60/hr : Exact compensation may vary based on several factors, including skills, experience, and education. Benefit packages while on contract for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for a VP of ISS Sales (Information Security Services) to join one of our clients in the gambling sector. As the VP of ISS Sales, you?ll be a strategic partner to executive... More leadership by leading our efforts in diversifying beyond our core gambling markets. This role is responsible for establishing a strategy beyond our traditional client base to drive revenue growth. This candidate will be asked to sit (or relocate) to Las Vegas, NV to work alongside the CRO. There will be travel to Fairfax, VA up to 50%.Key responsibilities include: ? Market Diversification: Own and execute a go-to market strategy for security offerings. This includes conducting market research to identify high-potential sectors and developing strategics on how to tailor offerings to new verticals.? Build New Business: Build a strong pipeline of prospects in non-gaming markets through targeted outreach and partnerships. Monitor the competitive landscape and cybersecurity trends to drive revenue for services including penetration testing, security audits, and compliance assessments.? Strategic Leadership: Lead mentor and scale a high-performing global ISS sales team. You will forecast revenue, establish sales targets, define performance metrics.? Strategic Business Partnering: Collaborate with various departments to understand business drivers, align sales growth strategies with company goals, and provide insights to adapt solutions to meet client needs in new sectors. You will collaborate closely with marketing, sales, and delivery teams to adapt solutions to meet corporate growth objectives.? Executive Partnership: Serve as a trusted advisor to C-suite and senior security stakeholders, including leading the sales strategy to meet Company revenue goals.Client Engagement: Supporting complex, high-value deals through executive leadership. Represent the Company at industry events, conferences, and with strategic partners.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

The Cybersecurity Engineer will be responsible for performing day-to-day cybersecurity operations as well as helping improve the overall Information Security Program by improving performance of... More existing processes.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

A client in the finance industry is looking for an Application Support Engineer, with a focus on Java and Python. This person will work independently to support the fraud tools for the fraud team by... More developing and maintaining Java and Python applications on Linux/Unix stations. In addition to developing and support of the applications, the developer will also be migrating the tool code to the corporate standard code control tools: Bitbucket, Bamboo (experience with Jenkins, Mavin, etc. are acceptable as transferrable skills). This team is part of the Cybersecurity Organization so it is a huge plus if this person has experience in the Cybersecurity field, but is not a must. This client is looking for a Sr. level individual who can work alone (once up to speed) to support this customer. It is crucial this individual know how to document their work and do so thoroughly.Some responsibilities include, but are not limited to:- Provides internal customers with subject matter expertise, consultation and escalation support- Working within the SQL database, write SQL queries, and overall support the SQL database back end- Walk through the code and seek to understand what the application is doing to fix it when needed- Align with the primary internal user and ensure that the applications remain running and delivering the capability they were designed for- Document work done and update current documentations- Assist in automating processes- resolve issues in these 3 ways: using incident remedy program, 2-3 daily health checks, or communicating with manager for direction - Attend regular team meetings and meetings with the internal customerWe are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to Human Resources Request Form. The EEOC "Know Your Rights" Poster is available here. To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .Less

Insight Global is looking for CI Poly Software Engineers in Fort Meade. They will support software development initiatives in critical environments. They will be responsible to deliver secure,... More resilient software capabilities aligned with national security and cyberspace mission objectives across the full software development lifecycle.Responsibilities Design, develop, test, integrate, and deploy secure software solutions supporting national security missionsImplement DevSecOps pipelines, CI/CD processes, and automated testing in classified environmentsConduct secure code reviews, vulnerability assessments, threat modeling, and remediationTranslate mission and operational requirements into secure technical solutions and prototypesEnsure software compliance with DoD cybersecurity policies, ATO requirements, and supply-chain risk mitigationCollaborate with cross-functional engineering, cybersecurity, and mission stakeholdersWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

The Enterprise Cyber Security Solution Architect is responsible for designing, maturing, and governing enterprise-wide cybersecurity solutions that protect the client's critical information assets... More and infrastructure. This role serves as a solution architect and technical authority, defining future-state architectures, security standards, and multi-year roadmaps, while partnering with engineering teams, system integrators, and Managed Security Services (MSS) for execution and operations.This position provides architectural leadership across Identity and Access Management (IAM) and Identity Governance (IGA), Privileged Access Management (PAM), Data Loss Prevention (DLP), Application Security, Public Key Infrastructure (PKI), and other cross-tower cybersecurity capabilities. The role focuses on architecture, integration, and governance and does not perform hands-on implementation or day-to-day administration.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global is looking for CI Poly Software Engineers in Fort Meade. They will support software development initiatives in critical environments. They will be responsible to deliver secure,... More resilient software capabilities aligned with national security and cyberspace mission objectives across the full software development lifecycle.Responsibilities Design, develop, test, integrate, and deploy secure software solutions supporting national security missionsImplement DevSecOps pipelines, CI/CD processes, and automated testing in classified environmentsConduct secure code reviews, vulnerability assessments, threat modeling, and remediationTranslate mission and operational requirements into secure technical solutions and prototypesEnsure software compliance with DoD cybersecurity policies, ATO requirements, and supply-chain risk mitigationCollaborate with cross-functional engineering, cybersecurity, and mission stakeholdersWe are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less

Insight Global's Med Tech Client is looking for a Software Quality Engineer to lead quality activities throughout the SDLC for Software as a Medical Device. This person would be responsible for... More formalizing a validation plan, testing and executing validation strategy, and providing documentation that shows the impact to the product. The Software Engineer will be working across several tools, applications and software to understand what is tied to the product to understand the impact as the company is going through a divestiture. This person should understand the appropriate level of validation needed, understand pass/fail requirements, risk management and have strong problem solving skills. Experience in Cybersecurity would be a plus. The Software Quality Engineer should also be familiar with IEC 62304.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.Less