Information Security
1 week ago
We are seeking an Information Security & Compliance Specialist to join our team
The Information Security & Compliance Specialist at Core Sound Imaging is responsible for working with Product/Development/DevOps/IT to identify weaknesses in the security posture within the SaaS application, its infrastructure, and office infrastructure. They will define methods to achieve security control requirements through automation or efficient means that support an available and responsive product environment. The Information Security & Compliance Specialist will serve as the point of contact for any internal/external IT audit and compliance-related inquiries, collaborate with product development teams to integrate compliance measures into new products and features, and work closely with IT, infrastructure, and product teams to implement security measures and ensure the integrity of the product information systems. This position is currently On-Site.
Examples of Key Duties: (Duties are illustrative and not inclusive and may vary.)
- Direct and provide leadership for the organization's product information security and compliance program.
- Evaluates new or updated industry regulations to ensure continued compliance.
- Complete client security assessments to ensure product security measures are intact.
- Collaborate with the Product and Development teams to integrate compliance measures into new products and features.
- Develop and deploy automated tools to monitor and ensure compliance with specific regulatory requirements.
- Review development frameworks for security functionality, consistency, and uplift opportunities.
- Own the ISMS-27001 standards and work with the teams to support adherence to its guidelines.
- Apply product information security controls and investigates/responds to product information security incidents.
- Create detailed designs and documents as needed to meet standards.
- Manage and resolve issues in alignment with the SLAs and proactively escalate any issues that cannot be resolved within the established timeframe.
- Initiate and perform changes on the production systems.
- Establish and maintain communication with technology customers to keep them informed of their requests.
- Understand the legal and regulatory issues relevant to the enterprise and ensure the enterprise is not placed at risk.
- Conduct regular security audits and risk assessments of the SaaS application, its infrastructure, and office infrastructure to identify potential vulnerabilities and implement necessary security controls.
- Develop and maintain incident response plans for security breaches related to the SaaS application, its infrastructure, and office infrastructure.
- Collaborate with DevOps and IT teams to ensure secure configuration and deployment of the SaaS application and its infrastructure.
- Implement and manage access control measures for the SaaS application, its infrastructure, and office infrastructure to prevent unauthorized access.
- Monitor and analyze security logs and alerts related to the SaaS application, its infrastructure, and office infrastructure to detect and respond to security incidents.
- Conduct security awareness training for employees to promote secure practices and reduce the risk of security incidents.
- Other duties as assigned.
Qualifications:
Bachelor's degree in computer science, information systems, or related field. Three or more years of experience in successfully performing the essential duties listed above.
- Knowledge of IT compliance and audit processes and policies.
- Strong understanding of S-SDLC framework.
- Experience creating, maintaining, and testing IT policies and procedures.
- Practical experience developing and implementing automated solutions for security compliance.
- Experience with NIST, Data Protections, Static Code Analysis, Dynamic Code Analysis, Agile, Cloud Security, OWASP Top 10 and Security Architecture preferred.
- Strong knowledge of security governance principles and ability to apply them within the organization.
- Service-oriented mindset with a high sense of ownership of problems and requests assigned.
- Strong collaboration and communication skills to work effectively with IT teams and cross-functional stakeholders.
Please submit your resume to be considered for this position.
Company DescriptionSince Core Sound Imaging began in 2007, we have focused on delivering a superior customer experience with Studycast® - an advanced software as a service (SaaS) image storage and reporting solution (cloud PACS). Core Sound Imaging's focus on innovation is allowing Studycast® to change the face of medical imaging and diagnostic interpretation. Our nearly 2,000 clients in the U.S. and the world rely on Studycast for digital imaging and diagnostic testing workflow solutions that make their lives easier.Company DescriptionSince Core Sound Imaging began in 2007, we have focused on delivering a superior customer experience with Studycast® - an advanced software as a service (SaaS) image storage and reporting solution (cloud PACS). Core Sound Imaging's focus on innovation is allowing Studycast® to change the face of medical imaging and diagnostic interpretation. Our nearly 2,000 clients in the U.S. and the world rely on Studycast for digital imaging and diagnostic testing workflow solutions that make their lives easier.-
Sr Information Security Officer
1 week ago
Raleigh, United States CareerBuilder Full timeTitle:Sr Information Security OfficerLocation:Raleigh, NC**Location:** Must be onsite in Indianapolis, IN or Raleigh, NC (Remote if in AZ,CO,FL,KY,MA,MI,MS,NC,TX,OR) **Years Experience:** 8 Years + **Education:** Bachelors or equivalent preferred **Key Skills:** * Certifications within information and cyber security such as CISSP, CISM, CISA, CCNE, SANS,...
-
Sr Information Security Officer
1 week ago
Raleigh, United States Sparibis Full timeTitle:Sr Information Security OfficerLocation:Raleigh, NC**Location:** Must be onsite in Indianapolis, IN or Raleigh, NC (Remote if in AZ,CO,FL,KY,MA,MI,MS,NC,TX,OR) **Years Experience:** 8 Years + **Education:** Bachelors or equivalent preferred **Key Skills:** * Certifications within information and cyber security such as CISSP, CISM, CISA, CCNE, SANS,...
-
Information Security
1 week ago
Raleigh, United States Core Sound Imaging Full timeJob Description Job Description We are seeking an Information Security & Compliance Specialist to join our team!The Information Security & Compliance Specialist at Core Sound Imaging is responsible for working with Product/Development/DevOps/IT to identify weaknesses in the security posture within the SaaS application, its infrastructure, and office...
-
Senior Information Security Analyst
4 days ago
Raleigh, United States CareerBuilder Full timeCollaborate in defining and implementing strategic security goals by identifying optimal approaches and determining the necessary tools, technologies, tasks, processes, and metrics for execution Facilitate the implementation of operational processes and maintain continuous supervision to ensure their effectiveness Recognize, gather, analyze, and respond to...
-
Senior Information Security Analyst
Found in: Appcast Linkedin GBL C2 - 2 weeks ago
Raleigh, United States Pierce Full timeCollaborate in defining and implementing strategic security goals by identifying optimal approaches and determining the necessary tools, technologies, tasks, processes, and metrics for execution Facilitate the implementation of operational processes and maintain continuous supervision to ensure their effectiveness Recognize, gather, analyze, and respond to...
-
Senior Information Security Analyst
1 week ago
Raleigh, United States Pierce Technology Corp Full timeJob DescriptionJob DescriptionCollaborate in defining and implementing strategic security goals by identifying optimal approaches and determining the necessary tools, technologies, tasks, processes, and metrics for execution· Facilitate the implementation of operational processes and maintain continuous supervision to ensure their effectiveness.·...
-
Senior Information Security Analyst
4 days ago
Raleigh, United States Pierce Corporation Full timeCollaborate in defining and implementing strategic security goals by identifying optimal approaches and determining the necessary tools, technologies, tasks, processes, and metrics for execution Facilitate the implementation of operational processes and maintain continuous supervision to ensure their effectiveness Recognize, gather, analyze, and respond...
-
Senior Information Security Analyst
Found in: Resume Library US A2 - 1 week ago
Raleigh, North Carolina, United States Pierce Technology Corp Full timeCollaborate in defining and implementing strategic security goals by identifying optimal approaches and determining the necessary tools, technologies, tasks, processes, and metrics for execution · Facilitate the implementation of operational processes and maintain continuous supervision to ensure their effectiveness. · Recognize, gather, analyze, and...
-
IT Security Analyst
1 week ago
Raleigh, United States Global Channel Management Full timeAbout the job IT Security Analyst IT Security Analyst needs 3+ years experience IT Security Analyst requires: IT security Cyber security Banking industry Finance industry IT Security Analyst duties: Supports Information Security and Cyber Threat management programs within the Bank at an advanced level of ability. Analyzes vulnerability and threat data to...
-
IT Security Specialist
1 week ago
Raleigh, United States NR Consulting Full timeJob Description Job Title: IT Security Specialist Location: Dix Campus Raleigh, NC (Hybrid 2 days a week) Position Type: Contract with possible extension Duration: 12+ months Contract Short Description: Seeking an Information Technology (IT) professional with proven Splunk (SIEM) Security Information Event Management experience and knowledge to address Risk...
-
IT Security Specialist
1 week ago
Raleigh, United States LanceSoft Full timeResponsibilities: Perform Business Impact Analysys Create Business Continuity Planing (BCP), Disaster Recovery Testing (DR), Continuity of Operations (COOP) for the division Conduct Access Control Reviews Moniter Employee HIP nd Security Training Perform NIST and HIPAA based risk assessments - NIST 800-53 rev 5 and remediate identified gaps Review CAPSPOAMS...
-
Mainframe Security Engineer
Found in: beBee S US - 3 weeks ago
Raleigh, United States Motion Recruitment Full timeOutstanding long-term contract opportunity! A well-known Financial Services Company is looking for a Senior Information Security Engineer in Remote, NC (Hybrid). Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package! Our client has been...
-
Cyber Security Architect
5 days ago
Raleigh, United States WorkTrust Solutions Full timeCybersecurity Architect (Splunk Focus) -Job DescriptionThis role is a great opportunity for someone with extensive Splunk experience and a strong understanding of SIEM (Security Information and Event Management) systems.Responsibilities:Manage all aspects of a Splunk SIEM environment, including:Operations and maintenance of lookup filesIntegrating security...
-
Security Assessment Director
6 days ago
Raleigh, United States Cynet Systems Full timeJob Description: Manage and support the implementation of AWS Cloud infrastructure for multiple clients, including design, deployment, maintenance, and troubleshooting. Create detailed technical documentation to support the security management of clients cloud environments (e.g., network diagrams). ssist in developing privacy and security policies and...
-
Security Assessment Director
5 days ago
Raleigh, United States Crescens Full timeJob Title: - Security Assessment DirectorLocation: Raleigh, NCDuration: 11+ monthsDescription:Manage and support the implementation of AWS Cloud infrastructure for multiple clients, including design, deployment, maintenance, and troubleshooting.Create detail technical documentation to support the security management of client's cloud environments (e.g.,...
-
Cyber Security Architect
7 days ago
Raleigh, United States WorkTrust Solutions Full timeCybersecurity Architect (Splunk Focus) -Job Description This role is a great opportunity for someone with extensive Splunk experience and a strong understanding of SIEM (Security Information and Event Management) systems. Responsibilities: Manage all aspects of a Splunk SIEM environment, including: Operations and maintenance of lookup files Integrating...
-
Security Assessment Director
6 days ago
Raleigh, United States Crescens Full timeJob Title: - Security Assessment Director Location: Raleigh, NC Duration: 11+ months Description: Manage and support the implementation of AWS Cloud infrastructure for multiple clients, including design, deployment, maintenance, and troubleshooting. Create detail technical documentation to support the security management of client's cloud environments (e.g.,...
-
Security Assessment Director
1 week ago
Raleigh, United States Crescens Full timeJob Title: - Security Assessment Director Location: Raleigh, NC Duration: 11+ months Description: Manage and support the implementation of AWS Cloud infrastructure for multiple clients, including design, deployment, maintenance, and troubleshooting. Create detail technical documentation to support the security management of client's cloud...
-
Director of Security
1 week ago
Raleigh, United States CareerBuilder Full timeRATP Dev USA - Quality Transit for Quality of Life Mission To design, develop, and implement a safety and security plan for Go Raleigh. This plan should incorporate short- and long-term goals to ensure all employees and customers within Go Raleigh are provided safe and reliable transportation. Additionally, to design, implement, change, and live test as...
-
IT Security Specialist st
1 week ago
Raleigh, United States Serigor Inc. Full timeJob DescriptionJob DescriptionJob Title: IT Security Specialist st (Remote)Location: Raleigh NCDuration: 12+ MonthsJob Description:The client requiring services of an IT Security Compliance Specialist to assist and assess the client Application and Infrastructure Modernization(AIM) CMS, USDA and ACF requirements for the project. In addition this resource...
