Security Assurance Job at Microsoft Corporation (Multiple Locations)

System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD TS/SCI Clearance
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
5+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)

Job Responsibility

Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity

Senior System Information Assurance and Security Engineer

Barbaricum is seeking a highly skilled System Information Assurance and Security...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD TS/SCI Clearance
Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (Master’s preferred)
10+ years of experience in enterprise identity and access management architecture
Demonstrated expertise with Zero Trust frameworks and DoD ICAM standards
Hands-on experience with SAML, OAuth2.0, OpenID Connect, PKI, and certificate management
Experience with DoD enterprise solutions such as Radiant Logic, Okta, Ping Identity, SailPoint, ForgeRock, Microsoft Entra ID (Azure AD), or equivalent
Deep knowledge of Privileged Access Management and Identity Governance & Administration solutions
Strong understanding of DoD cybersecurity compliance frameworks (RMF, NIST SP 800-53, 800-207, 8140/8570)
IAM / DoD Certification IAT Level II (e.g., Security+ CE, SSCP, GSEC)

Job Responsibility

Execute engineering solutions for identity credential and access management for Zero Trust implementation across enterprise systems
Design and maintain an enterprise-wide identity and access management strategy aligned with DoD Zero Trust principles, NIST 800-207, and DoD ICAM Reference Design
Lead integration of federated identity, single sign-on (SSO), and multi-factor authentication (MFA) across cloud and on-prem environments
Develop and maintain policies, standards, and reference architectures to enforce least-privilege and attribute-based access control (ABAC)
Conduct the implementation of Privileged Access Management (PAM) and Identity Governance and Administration (IGA) solutions
Collaborate with cybersecurity, network, and cloud teams to align ICAM solutions with Zero Trust pillars (identity, device, network, application, and data)
Ensure compliance with DoD 8140/8570, RMF, FedRAMP, and other applicable frameworks
Lead proof-of-concepts (POCs) and technology evaluations for emerging identity

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...

Location

United States , Tampa

Salary:

Not provided

Barbaricum

Expiration Date

Until further notice

Requirements

Active DoD Top Secret clearance with SCI eligibility
Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
10+ years of professional experience in cybersecurity, systems engineering, or information assurance
Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
Hands-on experience implementing Just-In-Time (JIT) access workflows
Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
Ability to lead or oversee the efforts of less senior staff as required by program needs

Job Responsibility

Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
Support Authority to Operate (ATO) efforts through security control implementation and technical validation
Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture

Information Assurance Specialist

The Information Assurance/Security Engineer will provide security engineering an...

Location

United States , Bethesda

Salary:

Not provided

AnaVation

Expiration Date

Until further notice

Requirements

Active TS/SCI Clearance with CI Polygraph
Bachelor’s degree in Network Engineering, Computer Science or related technical field plus 5-7 years of Cyber Security/Operations support
DoD 8140 IAT Level II Certification (CCNA-Security, CySA+, CND, Security+)
Documenting network schemas and cyber operation tool solutions
Knowledgeable regarding compliance with: ICD 503, FISMA, OMB, NIST, and DoD (8150.01 March 12, 2014) [Risk Management Framework and Cyber Network Defense…], and other mandated security regulations and standards
Knowledge and experience with managing and monitoring compliance with Privileged User Access (PUA), Data Transfer Access (DTA), and Removable Media Custodian (RMC) privileges, forms, and signatures
Support to vulnerability management, patching, information assurance and/or ATO process for Classified DoD or IC environments
Demonstrated documentation writing for security plans, tests, and reports
Must demonstrate strong teamwork, communication (both verbal and written), and presentation skills
Must demonstrate strong initiative to accept new technical challenges in complex security engineering assignments

Job Responsibility

Provide security engineering and information assurance support to the Government’s Assessment and Authorization (A&A) process to maintain Authority to Operate (ATO) and Authority to Connect (ATC) for mission applications and services
Designs, develops, monitors and documents security controls, security testing, security reporting, and plan of actions and milestones (POA&Ms) throughout systems and application lifecycles in support of mission systems
Provides security engineering design inputs, security design reviews, and security best practices as part of technical and change requests
Configures and validates secure systems, physical controls, and tests security products and systems to detect security weaknesses
Maintains XACTA security records for supported systems

What we offer

Generous cost sharing for medical insurance for the employee and dependents
100% company paid dental insurance for employees and dependents
100% company paid long-term and short term disability insurance
100% company paid vision insurance for employees and dependents
401k plan with generous match and 100% immediate vesting
Competitive Pay
Generous paid leave and holiday package
Tuition and training reimbursement
Life and AD&D Insurance

Fulltime

Senior Information Assurance Specialist

We’re looking for a highly skilled Senior Information Assurance Specialist to he...

Location

United Kingdom , Oxford or Hampshire

Salary:

Not provided

DataCareers

Expiration Date

Until further notice

Requirements

Strong technical security background (cloud, MS stack, architecture, modern tech risks)
Applied IA experience: NIST, security controls, risk assessment
Ability to coach others and communicate clearly with non-technical stakeholders
Experience in a regulated environment (policing, HMG, MoD or similar)
Collaborative, proactive approach with high integrity
Act as a visible advocate for high standards of information assurance
Relevant professional qualifications (e.g. CISSP, CISMP, Information Security certifications) are also preferred
A full UK driving licence is essential due to travel and operational flexibility requirements
Five years of continuous UK residency to enable the necessary background checks to be completed

Job Responsibility

Lead SyAP assessments
Produce high-quality assurance evidence
Help align policies and standards with national expectations
Uplift colleagues through mentoring, translating complex concepts into plain language and supporting a maturing IA function
Assess security controls, guide secure-by-design decisions and support the organisation in managing risk across both established and emerging technologies
Bring clarity, rigour and practical insight to ensure decisions are safe, proportionate and evidence-based

What we offer

30 days annual leave plus bank holidays
Hybrid and flexible working arrangements
Career development pathways and continuous professional learning
A wide range of wellbeing support services and staff networks
Lifestyle and discount schemes
Local Government Pension Scheme

Lead Cyber Security Consultant

As a Lead Cyber Security Consultant at Actica Consulting, you will have the oppo...

Location

United Kingdom , London; Guildford; Bristol; M4 corridor

Salary:

Not provided

Actica Consulting

Expiration Date

Until further notice

Requirements

Experience of complex ICT systems security in a technical delivery or consulting capacity in the UK Defence sector or Public Sector
The ability to present and justify conclusions to project teams and business stakeholders
Proven abilities in delivering to client expectations and requirements
Strong verbal and written communications skills
Must be eligible and willing to obtain UK Government Security Clearance

Job Responsibility

Leading one or more Actica teams to undertake varying consultancy assignments
Providing security expertise for major system procurements and Agile programmes to ensure secure delivery
Identifying, analysing and evaluating information risks across a range of programmes, projects and systems
Explaining to risk owners the causes, likelihood and potential business impacts of information risks
Identifying and presenting options for treating or transferring information risks
Authoring and/or supporting the development of security assurance documentation
Developing or reviewing new security architectures
Scoping security testing activities, and explaining the results and required remediation
Managing the delivery of security services by Actica teams across several live projects
Working with our client-side customers to manage contract delivery

What we offer

25 days of paid leave per annum plus 8 UK bank holidays
Discretionary, Performance-Based Bonus Scheme
Enrolment in Stakeholder Pension Scheme
Cycle To Work Scheme
Employee Assistance Programme
Electric Vehicle Leasing Scheme
Private Medical Insurance
Substantial training leading to nationally recognised certifications
Mentor support and guidance
Performance and Development Manager for regular reviews and career progression planning

Fulltime

Training and Quality Assurance Manager

The Training and Quality Assurance Manager is responsible for ensuring complianc...

Location

United States , Chicago

Salary:

97000.00 USD / Year

Allied Universal®

Expiration Date

Until further notice

Requirements

High School Diploma or equivalent
Pass any State-required training or other qualifications for licensing
CPR/First Aid/AED Certified Instructor
Instructor certifications in supplement training areas as required by local office (i.e., OC Spray, Baton Techniques, Handcuffing, Crisis Prevention Intervention (CPI), Defensive Tactics, Taser certification, Practical Driver Training Courses, or any other client-specific training as required)
Must have a valid driver’s license or be able to pass a state licensing test if driving a company-owned or client-provided vehicle
Must be certified to teach all required trainings for the portfolio, including firearms where applicable
Minimum of two (2) years of classroom instructor experience
Ability to work independently with little to no direct supervision
Outstanding oral and written communication skills
ability to successfully interact at all levels of the organization, including with clients

Job Responsibility

Ensure compliance with all required portfolio training, which involves driving compliance efforts and coordinating training classes with the Portfolio Vice President, Area Directors, Regional Training Director, and Regional Trainers across the portfolio
Manage the entire portfolio Taser program, encompassing training compliance, inventory management, and conducting semi-annual audits
manage customer’s evidence.com account, where applicable
Serve as a backup trainer in the absence of a regional trainer
Work in conjunction with operational partners (Regional Training Director/Portfolio Vice President) to develop practical training programs at the client and branch level, in order to ensure compliance with contractual and regulatory mandated training
Identify, conduct vetting, and establish relationships with local training academies/facilities/3rd party vendors in order to provide support in the form of external training opportunities and/or remote locations
Communicate with stakeholders (Regional Training Director, Portfolio operations, Security Professionals, Supervisors, Field and Corporate Training, and Clients)
Deliver field training programs in accordance with local, state, and federal laws and regulations, as well as Allied Universal standards in support of Regional Trainers
Conduct Mobility Devices (e.g., vehicles, Trikke, golf cart) training
Conduct field training & "red team" exercises for Security Professionals and Supervisors

What we offer

Medical, dental, vision, basic life, AD&D, and disability insurance
Enrollment in our company’s 401(k)plan
Eight paid holidays annually, five sick days, and four personal days
Vacation time offered at an accrual rate of 3.08 hours biweekly

Fulltime

Cyber Security Governance & Assurance Specialist - ESN

The Emergency Services Network (ESN) is a major strategic priority for BT and ou...

Location

United Kingdom , London; Birmingham; Bristol; Manchester

Salary:

Not provided

Plusnet

Expiration Date

Until further notice

Requirements

Internal & Statutory Security Audit
Stakeholder Management
Security Assurance
Policy Design
Security assurance experience, including carrying out assurance activities and writing reports and recommendations
Experience with ISO 27001 controls and audit
Experience of administering security processes
Strong stakeholder management skills at a senior level
Excellent communication and presentation skills are essential, so experience presenting security guidelines and processes to colleagues and senior audiences would be essential
You will be required to undergo National Security Vetting to SC or NPPV level.

Job Responsibility

Contributing to the ESN Security Management Plan, ISMS and Security Processes - ensuring effective management of security within the Programme and that Contract obligations are met
Identifying security threats to ESN and ensures the adequacy of processes and controls in place to mitigate them
Work with other Security professionals and other teams to meet ESN security objectives
Engage with Customer security teams, providing assurance that Security requirements are met and identifying opportunities for improvement
Identify and understand all elements of contractual security obligations for the ESN Contract
Deliver and verify the implementation of end to end security services as defined within specified the ESN contracts
Deliver and implement ISO27001 compliant security strategies, policies, procedures, processes, threat identification & responses that provide wrap-around security services and solutions for the ESN service
Deliver the required Security accreditation for the ESN contract
Manage operational risks related to people, information, assets, revenues and reputation and ensure compliance with relevant security requirements, typically: the HMG Security Policy Framework, Contractual Obligations, company security and business continuity policies
Monitor and manage third party supplier compliance to the flow-down of contractual obligations from BT

What we offer

10% on target annual bonus
BT Pension scheme, minimum 5% employee contribution, BT contribution 10%
X4 Salary Life Assurance
Huge range of flexible benefits including Cycle to Work, Healthcare, Season Ticket Loan, Electric Vehicle Salary Sacrifice
25 days annual leave (not including bank holidays), increasing with service
From January 2025, equal family leave: receive 18 weeks at full pay, 8 weeks at half pay and 26 weeks at the statutory rate. It’s for all parents, no matter how your family is made up
Enhanced women’s health support: including help with menopause symptoms, cancer screenings, period care and more
24/7 private virtual GP appointments for UK colleagues
2 weeks paid carer’s leave
World-class training and development opportunities

Fulltime

Security Assurance

Microsoft Corporation

Location:
United States , Multiple Locations

Category:
IT - Software Development

Contract Type:
Not provided

Salary:

Job Description:

Job Responsibility:

Requirements:

Additional Information:

Job Posted:
January 07, 2026

Looking for more opportunities? Search for other job offers that match your skills and interests.

Similar Jobs for Security Assurance

System Information Assurance and Security Engineer

Senior System Information Assurance and Security Engineer