Mid-Level Threat Manager (Top Secret Clearance Required)

Job Title: Security Analyst Location: Seattle, WA Employment Type: Contract About Us: DMV IT Service LLC is a trusted IT consulting firm, established in 2020. We specialize in optimizing IT infrastructure, providing expert guidance, and supporting workforce needs with top-tier staffing services. Our expertise spans system administration, cybersecurity, networking, and IT operations. We empower our clients to achieve their technology goals with a client-focused approach that includes online training and job placements, fostering long-term IT success. Job Purpose: This role focuses on IT SOX compliance, particularly the assessment, implementation, and improvement of IT General Controls (ITGCs). The ideal candidate will coordinate audit activities, gather documentation, and assist with the remediation of identified issues. The position plays a key role in ensuring controls are designed and functioning to meet audit standards and regulatory requirements. Requirements Key Responsibilities: Oversee and maintain the IT SOX compliance framework and ensure controls operate effectively. Prepare, document, and test control procedures for in-scope systems. Act as the subject matter expert for IT SOX compliance efforts. Conduct walkthroughs, coordinate audit evidence, and support both internal and external audits. Identify and track control issues and help teams implement corrective measures. Collaborate with system and IT teams to adapt controls as technology strategies evolve. Assist with quarterly control certifications and executive attestations. Support audit readiness by maintaining centralized documentation and automating evidence collection. Develop reports to reflect control performance, audit progress, and risk areas. Required Skills & Experience: 5+ years of experience in GRC, IT audit, or SOX compliance. Experience evaluating and testing IT General Controls and application controls in a financial reporting context. Strong understanding of SOX 404 requirements, including design and testing of controls. Demonstrated experience with access management, change control, IT operations, and SDLC. Familiarity with enterprise systems like ERP, order management, and warehouse management platforms. Exposure to cloud technologies (e.g., AWS, Azure) and SaaS platforms. Experience with GRC tools such as ServiceNow for managing workflows and audit trails. Ability to communicate clearly with business and technical stakeholders. Skilled in prioritizing tasks in a high-volume, fast-paced global setting. Why Join Us: Contribute to the advancement of cybersecurity and compliance capabilities. Be part of a cross-functional team that shapes IT control environments. Gain exposure to modern cloud technologies and compliance processes. Opportunity to implement meaningful and sustainable risk mitigation strategies. Preferred Certifications: CISA, CPA, or CIA (one or more required)

We’re seeking a motivated and technically curious individual to join our growing cybersecurity team as an Automotive Cybersecurity Test Engineer. In this role, you’ll support the evaluation and validation of cybersecurity requirements across a wide range of modern automotive systems. You’ll help shape how vehicle cybersecurity testing is performed— executing hands-on tests, refining test procedures, researching emerging solutions, and developing tools that improve how requirements are verified in real-world applications. This is a growth-oriented role designed for someone with 1 to 3 years of experience in computer or hardware systems who is eager to deepen their knowledge in vehicle cybersecurity and become a technical contributor in a rapidly evolving field. Perform hands-on testing to verify and validate cybersecurity requirements across cybersecurity relevant vehicle systems. Develop and refine cybersecurity test procedures for in-vehicle systems and connected ecosystems. Research emerging cybersecurity threats, tools, and solutions related to automotive systems. Translate security requirements into actionable test strategies and contribute to a comprehensive cybersecurity testing playbook for internal team use. Collaborate with engineering teams to ensure test procedures align with evolving system architectures and security requirements. Develop internal tools, scripts, or frameworks to support and automate the evaluation of cybersecurity requirements. Contribute to long-term goals of scalable and automated cybersecurity testing across the full automotive technology stack. Requirements Bachelor’s degree in Computer Engineering, Electrical Engineering, Computer Science, or related field. 1 to 3 years of industry or academic experience working with hardware systems, embedded software, or computer security. Familiarity with vehicle architectures, embedded systems, or automotive networking (CAN, LIN, Ethernet) is a plus. Strong understanding of APIs and application security, with hands-on experience in authentication protocols like OAuth, SAML, etc. Interest in modern connected vehicle systems including mobile app integration, cloud-based services, and EV infrastructure. Strong interest in cybersecurity and willingness to learn hands-on techniques related to threat modeling, test design, and system evaluation. Ability to document technical processes clearly and follow structured workflows. Proficiency in scripting or programming languages (e.g., Python, C/C++, Bash) is preferred. Self-motivated, detail-oriented, and collaborative.

Job Type: The position is based in-person and requires travel to all Mindful Support Services office locations, including occasional out-of-state business trips. The position also requires off-site travel as needed to support with job requirements such as projects, equipment/supply needs, and repairs.    Salary: 78,000-82,000 per year with opportunity for advancement with tenure and performance. About Mindful Support Services    We are a business to business support service for independent mental healthcare practitioners which helps providers service a growing client base. We provide administrative and organizational services to simplify the processes of sourcing leads, marketing, billing and collecting payments from patients and insurers. We have grown to support over 2,000 mental healthcare providers since we opened in 2011.  We have built the Mindful Therapy Group brand from the ground up with years of dedication to solving the complex processes of the healthcare landscape in innovative ways, creating a platform geared toward growth, and working to meet our mission of creating improved access to high quality mental healthcare.     About the Role   The Information Security Analyst will work directly with the Information Security Manager to improve Mindful Therapy Group's internal security and IT infrastructure. This role is expected to have experience and understanding of defensive (blue team) security best practices, with the ability to immediately perform audits and investigations for potential security threats. Additionally, this role is expected to execute large, complex projects with guidance from the Information Security Manager.   The Information Security will also work together with the greater Operations team to be an important member for escalated security and technology support requests. This role will regularly collaborate on internal, cross-department projects and will work with external vendors. This is a full-time position that is fast paced with ample opportunities to learn and grow.    Work Environment   The position is based in-person and requires travel to all Mindful Support Services office locations, including occasional out-of-state business trips. The position also requires off-site travel as needed to support with job requirements such as projects, equipment/supply needs, and repairs.    The responsibilities described are not intended to be a comprehensive list of requirements for this job. Responsibilities, duties, and activities may change at any time with or without notice.   Requirements Responsibilities:   Audit systems, networks, and security logs during incidents and outages to remediate and determine root cause.  Integrate logging from existing infrastructure and SaaS solutions to a centralized SIEM.  Develop scripts and automations to streamline the detection and alerting of incidents and outages.  Provide tier 2/3 technical support for troubleshooting and issue resolution.  Drive security and infrastructure projects including creating project plans, drafting communications, and consulting with internal stakeholders.  Collaborate with external vendors on technology and security initiatives.   Provide recommendations to the Information Security Manager on improvements or when identifying gaps on internal security practices.  Update and maintain security controls in cloud amin portals such as Azure, M365, Google Cloud Platform, etc.  Draft updated security policies, procedures, guidelines, and training courses in collaboration with Information Security Manager.  Draft recaps for information security incidents.   Perform annual security compliance audits for CIS benchmarks and HIPPA compliance.  Complete application security reviews for new software solutions and application requests from employees.   Perform updates to on-prem and cloud systems and networks.    Core Competencies  Strong understanding of “blue team” security concepts and practices such as log analysis, executing audits, compliance, and risk assessments.  Proficiency with SIEMs, networking, and servers on prem and in the cloud. Working experience with CrowdStrike is a plus.  Familiarity with scripting or coding with the ability to write simple automations and perform API calls in at least 1 language. Specifically, PowerShell, Bash, Golang, C#, or Python are a plus.  Basic understanding of cloud architecture such as Azure, AWS, or GCP. Azure specifically is a plus.   Ability to independently investigate, learn, and solve technical issues without direct supervision.  Professional and concise verbal and written communication skills with the ability to adjust based on the target audience (e.g. customers, internal staff, business partners, and external vendors).  Familiar with HIPPA compliance and other compliance frameworks (i.e. ISO, NIST, CIS, etc.).  Ability to collaborate effectively and tactfully within diverse teams and with stakeholders.  Experience with Apple and Microsoft ecosystems.    Minimum Requirements  2 years of experience in defensive security such as a blue team or security operations center (SOC).  4 total years of technology experience or a bachelor’s degree in IT Security or an equivalent combination of certifications. Security+, SSCP, CISSP, or other cybersecurity certifications are a plus.  Ability to work outside standard business hours to respond to critical security incidents and to execute changes that cannot be deployed during working hours.  Personal electronic device (i.e. smartphone) to receive and respond to urgent security alerts.  Ability to participate in an on-call rotation and carry/answer a work phone per the on-call schedule.  Personal vehicle to travel between worksites.  Capable of lifting 50 lbs.    Benefits Compensation and Benefits 75% coverage of Health, Dental & Vision benefits plan 401(k) savings plan with employer matching upon eligibility 8 paid holidays a year 15 PTO days accrued in first year Professional and career development opportunities Compensation evaluated consistently and opportunities for growth Job Type: Full-time Salary: 78,000-82,000 per year with opportunity for advancement with tenure and performance. We are an equal opportunity employer with a progressive workplace based on teamwork, integrity, and customer service. We are committed to cultivating the long-term professional potential of our team. Applicants from all fields are encouraged to apply. Background check required. Come join a strong team making an impact in the service world of mental health! It is a conflict of interest for an employee of Mindful Support Services to be a current client of Mindful Therapy Group. We request that individuals who are receiving clinical services at Mindful Therapy Group wait until their care is discontinued before beginning employment.

Participate in the development and support of customer technical requirements  Champion a collaborative, team-based environment, sharing standard methodologies and success and building positive relationships  Plan, Design, Develop, Implement and Operate F5 products such as LTM, ASM, BIG-IQ and APM  Manage the configuration on multiple physical and virtual F5 across multiple data centers  Develop scripts and tools to automate configuration of a large number of network security devices distributed across multiple data centers  Propose and implement system enhancements that will improve the performance and reliability of the network security infrastructure  Applies capacity planning configuration changes as demanded by the business  Address performance, scalability, and service architecture administration issues  Design, install, configure, maintain network security services, equipment and devices  Plan and support network security infrastructure  Provide clear technical documentation and written procedures for issues identified and addressed  Monitoring and troubleshooting of platform and OS based problems, network security infrastructure and connectivity issues  Perform launch testing for new software releases and the introduction of new features  Coordinate equipment orders including physical or virtual appliances, as well as upgrading, monitoring, testing and servicing the systems as needed  Demonstrates knowledge of a broad range of technology towers i.e.: Storage, Virtualization, Intel, Networking, Data Center Migration and Disaster Recovery  Knowledge of risk and controls landscape, ensuring company-wide standards are met  Participate in change and incident management  Anticipating potential problems and acting to minimize the impact they may have on the project or unit  Ability to collaborate with different technology towers to achieve common goals  Requirements Bachelor’s degree in computer science, information systems, telecommunications, or an engineering focused field  Must have an Active TS/SCI and willing to obtain a CI Poly 5+ years of relevant F5 experience with F5 LTM, ASM, BIG-IQ, and/or APM administration and life cycle management including experience with advanced iRule creation and troubleshooting  Ability to handle multiple complex F5 configurations and deployments at once  Understanding of networking at all layers of the OSI model; and Previous experience with web application technologies  Experience deploying, managing, and troubleshooting network systems, switching, and routing protocol standards such as: TCP/IP, MPLS, OSPF, BGP, SDN, and 802.1x.  Experience managing and troubleshooting DNS, DHCP, IPAM, and NTP in a large multi-site environment  Ability to manage multiple stands of work simultaneously.  Executes within a customer-centric environment.  Excellent verbal and written communication skill Hands on experience with Python and APIs  Self-driven with the ability to manage workload without direct supervision  Must have the F5 201 certification 8570 IAT Level II Certification required  Preferred Skills/Qualifications  Experience with Infoblox DDI, Microsoft DNS, Dyn, VMWare Automation products (vRO, vRA)  Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers’ Compensation Relocation Assistance

Summary: This role will report to the cybersecurity department head and will be responsible for developing various TTS security solutions by analyzing the current security posture, trends, and third-party solutions. The individual will conduct deep technical analysis of threats and needs, create reports and approach documents, and define technical criteria/KPIs for service delivery.   Essential Functions: Create approach documents, playbooks, and configuration documents for planning cybersecurity solutions, with a primarily focus on Microsoft security solutions (Defender, Sentinel, Entra) and penetration testing solutions. Validate the approach hands-on and ensure the plan meets expectations. Oversee project progress, identify and address challenges to ensure timely and on-target project completion, while effectively managing deliverables and client expectations. Lead and mentor a team of cybersecurity professionals, providing technical guidance and support to help them excel in their roles. Apply cybersecurity knowledges, analyze security operational processes, and create relevant documentation. Generate and present regular security reports to management, ensuring transparency and informed decision-making. Stay up to date with new security technologies and emerging threats, demonstrating the ability to adapt to the changing cybersecurity environment. Requirements Required consulting background with experience in project management and customer documentation. Expertise in Microsoft security products and services. Extensive experience in security service delivery management. A good team player who is humble, positive, passionate about growth, and willing to learn. Strong documentation skills, ensuring clarity and understanding for readers. CISSP, CISM, or equivalent certification required.

Control Risks is seeking a highly motivated and detail-oriented GSOC Specialist to join our embedded team supporting a high-profile global client. In this fast-paced role, you’ll be on the front lines of global security—tracking world events in real time, identifying potential threats, and driving rapid, intelligent responses to protect people, assets, and operations across the globe. This role will be part of a 24/7/365 function, and as such will require holiday and weekend work. This application is for the Night Shift. Monitor global incidents—ranging from natural disasters and political unrest to major crimes and infrastructure disruptions—and assess their potential impact on the Client’s personnel and operations. Turn intelligence into action. Draft sharp, impactful alerts and situational updates for senior stakeholders and global security leaders to support informed, timely decisions. Operate in a high-stakes environment. Collaborate closely with security professionals in a 24/7/365 GSOC, where every second counts and your insights make a difference. Support crisis management efforts by facilitating escalations and coordinating emergency communications across global and regional leadership levels. Deliver executive-level briefings. Provide clear, concise, and confident updates—both written and verbal—on emerging threats and evolving incidents. Engage in regular drills and exercises to maintain readiness and align with best-in-class procedures. Conduct after-action reviews (AARs) to capture key lessons and enhance future responses. Work with internal and external partners including Protective Services and Systems & Technology teams to strengthen a holistic security posture. Represent both Control Risks and our client with professionalism, discretion, and composure—especially in high-pressure situations. Requirements Requirements Bachelor’s degree in related field 1+ years' experience in government, corporate security or a similar role.​ Experience working with global risk intelligence and incident response software.​ Experience with emergency mass notification systems.​ Experience with travel risk management software platforms.​ Experience working in a collaborative environment such as government or corporate global security operations center, emergency operations center, or a major urban area fusion center.​ Experience evaluating open-source information (media, social media, and unclassified government websites) to conduct incident analysis. The base salary range for this position is $75,000-80,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience. Benefits Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer. We operate a discretionary bonus scheme that incentivizes, and rewards individuals based on company and individual performance. Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working. Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs. Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.