Company Description

Who We Are

Burwood Group is not your average technology consulting firm. We are an innovative, culture-driven industry leader, that helps companies use and manage technology to transform business and improve outcomes. Founded in 1997, headquartered in Chicago, we've grown to be a 200+ employee firm with team members and offices spread from Southern California to North Carolina.

Burwood fosters a culture that applauds both teamwork and personal growth. We’ve cultivated an incredible team of people who are dedicated to their craft and passionate about using their skills to impact the success of the company. Join our team and build a career as unique as you are.

• Provide design, implementation, and support expertise to clients and project teams.
• Understand customer requirements and align with technology solutions.
• Work closely with other project team members and manage and execute project level tasks and milestones.
• Mentor junior and mid-level consultants.
• Participate in business development and pre-sales activities.
• Ongoing evaluation and improvement of internal processes.
• Stay current on market trends, technologies, and best practices.

Required Qualifications

• You have a strong IT and Consulting background.
• You are able to engage at the CxO and Director/Manager levels as well as manage tasks on engagements.
• You build relationships and bring considerable value, and you have a proven record of accomplishment of exceeding customer expectations.
• You can quickly adapt to a fast-paced sales and quality-based delivery model, work in a team-based environment, and self-manage your time.
• You are dedicated to continual learning and staying current on technology to always have a point-of-view worth sharing.
• You have excellent communication skills whether that be in-person, over-the-phone, or e-mail.
• You do not mind responsibility; you are accountable for your work and dedicated to a job well done.
• You have a passion for technology and always want to learn something new.
• You are willing to travel.
• Strong understanding of network and network security architectures, solutions, processes, frameworks, and components.
• Successfully managed and executed multiple Zscaler integration projects, including remote deployment services and advanced cloud firewall configurations.
• Hands-on experience working with Palo Alto Firewalls
• Successfully managed and executed multiple firewall migration projects, including transitioning from other firewall platforms to Palo Alto, ensuring seamless integration and minimal downtime.
• Network protection including firewalls, IDS/IPS, SSL, VPN, DLP, NAC, and WAF.
• Incident response including security monitoring, network and endpoint visibility, threat management, and forensics.
• Identity management including AAA, AD/ADFS, MFA, SSO, RADIUS
• Endpoint / server / data protection including antivirus, malware protection, web/URL filtering, and MDM
• Risk / compliance including policy management, vulnerability management, log management, and change control, and security analytics / reporting (e.g., Splunk)

Preferred Qualifications

• PCSNE and/or PSE certification is a plus

The Perks

If you ask any of our employees here at Burwood “what we love,” the top answer is always the same: our culture. Our employees are driven, innovative, fun-loving, and always willing to help. In addition to that, Burwood also offers some fantastic benefits:

• 401(k) and Roth 401(k) savings plan, complete with a company match
• Generous vacation policy
• Health, dental, and vision insurance
• Life and accident insurance
• Short and Long Term Disability coverage
• Flexible work-from-home policy
• Flexible spending accounts for pre-tax healthcare and transit/parking expenses
• Access to financial planning expertise

Our Commitment to Diversity & Inclusion

We are not intent on being the largest company; but rather, the best. These are the words we live by. This means we welcome all the best talent - regardless of gender, race, ethnicity, sexual orientation, disability, religion, and age.

Being open to all cultural backgrounds, life experiences, thoughts, and ideas not only strengthens company culture but also encourages different-in-kind thinking and promotes economic success.

About this role:

Wells Fargo is seeking an Engineer who will provide direct support to Enterprise Dynamic Authorization (PlainID) and all Keep the Lights On activities for accompanying applications.

• Lead or participate in computer security incident response activities for moderately complex events
• Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
• Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
• Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
• Review and correlate security logs
• Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
• Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
• Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals

Required Qualifications

• 4+ years of information security applications and systems experience
• 4+ years of information technology applications and systems experience
• 2+ years of technical troubleshooting experience
• 2+ years of experience with RDBMS such as MS SQL and Oracle (Teradata and Mongo DB a plus)
• 2+ years of experience in IAM Solution in Role Based Access Control (RBAC), Policy Based Access Control (PBAC) and Attribute Based Access Control (ABAC)
• 2+ years of Fine-Grained Authorization experience either using a PBAC tool or through the application code.
• 2+ Years of Working experience/expertise in Tomcat
• 2+ years of Linux Shell Scripting (Red Hat 8+)

Desired Qualifications

• 2+ years of PlainID
• 2+ years of experience with Java upgrades
• 2+ Years of Working experience/expertise in Redis, OrientDB and Postgress
• 2+ years of Experience in Access Certification and Segregation of Duty (SoD)
• Knowledge and understanding of Service Now, Active Directory and Service Accounts
• 2+ years of server vulnerability remediation on Linux servers (Red Hat 8+)
• Be willing to work non-standard business hours on an on-call basis in a 24x7x365 environment
• Designs, documents, tests, maintains, and provides issue resolution recommendations for moderately complex security solutions.
• Identify and implement operational best practices and process improvements within the following functional areas: Incident Management, Problem management, Planned and unplanned Outage/Event Management, Technology Refresh, Operational Reporting, Tooling, and Application Support.
• Develop documentation for requirements, operational policies, and procedures, as well as documentation to deploy monitoring tools to the data center and application operations teams
• Drive solutions to reduce recovery times, enable high availability and support disaster recovery
• Proactively identify issue trends as they develop; analyze/predict trends, and develop a long-range plan designed to resolve problems and prevent them from recurring; maintain high service levels for the IT community
• Direct the daily risk and control flow of operations, focusing on policies, procedures, and work standards to ensure success; re-engineering and driving continual service improvement
• Develop and foster a positive relationship with on and offshore team members, internal business partners such as product management, technical leads, systems operations, and other services and support members
• Researching, diagnosing, troubleshooting system issues, and identifying solutions to resolve system issues.
• Following standard procedures for proper escalation of critical or unresolved issues.
• Develop expertise in all PlainID products and stay up to date on new features and improvements.
• Documenting best practices, procedures and creating both internal and customer facing Knowledge Base articles.
• Strong verbal, written, and interpersonal communication skills
• Ability to execute in a fast paced, high demand, environment while balancing multiple priorities
• Ability to discuss information security risks at a detailed technical level
• Ability to interact with integrity and a high level of professionalism with all levels of team members and management
• Knowledge and understanding of process design, modeling, and development
• Ability to prioritize work, meet deadlines, achieve goals, and work under pressure in a dynamic and complex environment

Job Expectations:

• Ability to travel up to 10% of the time
• This position is not eligible for Visa sponsorship
• This position offers a hybrid work schedule

Posting Locations:

• 1525 W T Harris Blvd. - Charlotte, North Carolina 28262
• 2600 S Price Rd.- Chandler, AZ 85286
• 550 S 4th St.- Minneapolis, MN 55415
• 1301 Solana Blvd - Westlake, TX 76262

Posting End Date:

26 Sep 2024

Job posting may come down early due to volume of applicants.

We Value Diversity

At Wells Fargo, we believe in diversity, equity and inclusion in the workplace; accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.

Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.

Candidates applying to job openings posted in US: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.

Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.

Applicants with Disabilities

To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo.

Drug and Alcohol Policy

Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more.

Wells Fargo Recruitment and Hiring Requirements:

a. Third-Party recordings are prohibited unless authorized by Wells Fargo.

b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

See yourself at Odyssey.

Join the team as our new Cybersecurity Architect!

Who We Are & Why We’re Hiring

Odyssey Logistics & Technology Corporation (Odyssey) is a global logistics provider. Our adaptive approach to solving modern logistics challenges differentiates us in the markets we serve. Odyssey Logistics & Technology’s specialized multimodal expertise is the strategic foundation that provides clients with a full-service offering across our four operating divisions including intermodal, freight forwarding, transport & warehousing, and managed services.

Odyssey’s multimodal services offer cost-effective, end-to-end freight solutions equipped to deliver on evolving customer requirements. Combined, Odyssey delivers innovative, high-value logistics services & technology solutions to support diverse customer requirements. In addition to being certified by the American Chemistry Council as a Responsible Care® partner company we consistently exceed customer expectations by integrating analytics, carrier relationships, specialized assets, sustainability strategies and deep international expertise. Our unique approach ensures that customer shipments keep moving at full speed, even in the face of ever-changing market headwinds.

Based in vibrant Charlotte, NC Odyssey is on a journey to constantly innovate logistics. We’re actively recruiting for this key, high profile role in the company because we have experienced tremendous growth and would love for you to join us!

Visit us at: www.OdysseyLogistics.com/careers

About the Job:

The Cybersecurity Architect is a senior-level role pivotal to an organization's security strategy and overall risk management framework. This position is responsible for designing, implementing, and managing the comprehensive security architecture of an organization’s IT infrastructure, encompassing on-premises and cloud environments. The Cybersecurity Architect ensures that all security measures align with business objectives, comply with regulatory requirements, and mitigate potential threats.

• Framework Development: Create and maintain robust security frameworks that integrate seamlessly with the organization's overall IT architecture. This includes defining security principles, policies, standards, and guidelines.
• Integration and Configuration: Design and implement security solutions, such as firewalls, encryption protocols, identity and access management systems, and intrusion detection/prevention systems, ensuring they are effectively integrated across the organization's infrastructure.
• Blueprints and Documentation: Develop and maintain detailed security blueprints and architecture diagrams that provide a strategic roadmap for the organization's security posture.
• Cybersecurity Strategy: Develop a forward-thinking cybersecurity strategy that aligns with business objectives and addresses current and future security threats. Ensure the strategy is adaptable to the evolving threat landscape.
• Risk Management: Conduct thorough risk assessments to identify vulnerabilities and potential threats. Develop and implement comprehensive risk management strategies to mitigate these risks and safeguard critical assets.
• Policy Development: Establish, document, and enforce security policies, standards, and procedures. Regularly review and update these policies to reflect the latest security threats and best practices.
• Security Project Leadership: Lead and manage security-related projects from inception to completion, ensuring they are delivered on time, within scope, and within budget. Define project scopes, objectives, deliverables, timelines, and budgets.
• Cross-Functional Collaboration: Work collaboratively with IT, development, and business teams to ensure security requirements are integrated into all projects and initiatives. Provide expert guidance to implement security best practices throughout the project lifecycle.
• Vendor and Partner Management: Evaluate, select, and manage relationships with security vendors and service providers. Ensure third-party solutions meet the organization's security standards and requirements.
• Incident Response Planning: Develop and oversee comprehensive incident response plans and procedures. Lead the response to security incidents, ensuring prompt identification, containment, eradication, and recovery.
• Forensic Analysis: Conduct in-depth forensic analysis of security breaches to understand attack vectors, scope, and impact. Provide detailed incident reports and implement measures to prevent future incidents.
• Continuous Improvement: Analyze past incidents and conduct lessons learned sessions to continuously improve the incident response process and enhance the overall security posture.
• Monitoring and Detection: Implement and oversee advanced security monitoring systems to detect and respond to threats in real-time. Ensure continuous monitoring and analysis of network traffic, system activities, and user behavior.
• Regulatory Compliance: Ensure the organization complies with all relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS). Conduct regular audits and assessments to verify compliance and address any gaps.
• Audit Preparation: Prepare for internal and external audits, ensuring all security measures and documentation are in place and up-to-date.
• Emerging Technologies: Stay informed about the latest cybersecurity trends, threats, and technologies. Conduct research to evaluate new security solutions and recommend their adoption where appropriate.
• Innovation: Drive innovation in security practices by developing and implementing new methodologies and tools to enhance the organization’s security posture. Identify opportunities for continuous improvement.

Required:

• Minimum of 7-10 years of experience in cybersecurity or related fields, with at least 3-5 years in a senior or architect role.
• Bachelor’s degree preferred; advanced professional security certifications are highly desirable
• Experience with Web Authentication concepts of SAML, OIDC, and OAuth2
• Deep understanding of security principles, frameworks, and best practices (e.g., NIST, ISO 27001). Extensive experience with network security, cloud security, application security, and data protection.
• Proficiency with security technologies and tools (e.g., SIEM, IDS/IPS, firewalls, encryption). Experience with scripting and automation tools (e.g., Python, PowerShell) is preferred.
• Excellent communication and leadership skills, with the ability to collaborate effectively across teams and departments.
• Experience developing and reviewing cybersecurity documentation, standard operating procedure (SOP)
• Experience with GAP assessments, penetrations testing and techniques, and patch management.
• Knowledge of common information security management frameworks, such as ISO, ITIL, COBIT, and NIST, including the Cybersecurity Framework and 800-53.
• Experience with modern security tools in EDR/XDR (e.g. Crowdstrike), Vulnerability Management (e.g. Rapid7), Patch and Endpoint Management (e.g. Automox, Intune), Office 365 / Azure (e.g. Defender, Azure AD, Exchange), AWS, SIEM/External SOC/MDR (e.g. Arctic Wolf), Log Aggregation, Dynamic Code Scanning, EASM, Knowledge and Phishing (e.g. KnowBe4), and dynamic penetration testing.
• Strong ability to communicate information security and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from board members to technical specialists.

• Location: This is an in-office role in Charlotte, NC

• We offer a generous compensation and benefits package including:

• Choice of medical plans with FSA, HRA and HSA options

• Company-paid dental and life/disability Plans

• 401K with company match

• Preferred vendor discounts

• Competitive Paid Time Off

• No relocation allowance will be considered unless specifically addressed. All applicants must be currently authorized to work in the United States.

• Odyssey does not discriminate on the basis of actual or perceived race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and pregnancy-related conditions), gender identity or expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, genetic information, or any other characteristic protected by applicable federal, state or local laws and ordinances.

Other details

• Job Family: Information Technology
• Pay Type: Salary
• Travel Required: Yes
• Travel %: 10
• Required Education: High School