Government Careers
  • TRAN & RUN: Security Lead

  • Capgemini
  • Bridgewater, Massachusetts 02324 United States View Map

Primary SkillsCybersecurity governance, risk management, and compliance oversight.Secondary SkillsCybersecurity compliance disciplines and skillsetJob ResponsibilitiesDaily operational delivery: work hand in hand with identified customer security leadership teams and offshore security lead/SMEs of individual cyber technology towers; deliver day‑to‑day cybersecurity oversight onsite.Morning check‑in with client security/IT leads.Review of overnight SOC alerts.Review security dashboards/metrics (SIEM health, endpoint coverage, critical control status) and confirm telemetry is flowing.Vulnerability scans and ticket queues.Triage and risk‑based prioritization of issues; coordinate with infrastructure, application, network and IAM teams for remediation.Validate patching and remediation progress for top risks (critical CVEs, misconfigurations) and remove blockers.Review/approval of security exceptions and change requests.Participation in project and architecture discussions to embed security controls early; walkthroughs of compliance/audit evidence needs and policy adherence.Status reporting (metrics, risks, blockers, and actions) to stakeholders.End‑of‑day follow‑up to confirm progress, elevate urgent items, and prepare the next day's priorities.Check privileged access activity (PAM alerts, break‑glass use, new admin grants) and confirm approvals are documented.Oversee EDR/AV exceptions (new exclusions, tuning requests) and ensure compensating controls are in place.Daily incident readiness actions: confirm on‑call/escalation paths, validate open incident tickets, and run quick what‑changed checks.Threat intel/emerging risk review relevant to the client environment and translate into actionable checks/hunts.Run/coordinate a short risk & issue triage huddle (top 5 risks, new findings, due dates, owners).Vendor/service review touchpoints (SOC/SIEM provider quality, false‑positive tuning, SLA adherence).Communicate security advisories to onsite teams (maintenance windows, high‑risk findings, required user actions).Additional Leadership AreasSecurity ArchitectureIdentity and Access ManagementFirewall Architecture and IntegrationCyber Threat ResearchVulnerability Assessment and Penetration TestingSecurity Project ManagementSOC AnalysisSecurity OperationsOversee all security operations including managing our external SOC relationship and activities to ensure correct classification of vulnerabilities/issues and timely resolution.Provide risk‑based activities prioritization, tracking, reporting, and liaising with external vendors and internal stakeholders.Develop a budget and operating plan for the security program.Exercise good judgement when dealing with issues and ensure a sense of urgency in their resolution while remaining calm and focused.Security Planning and ProjectsDesign, implement, and maintain a cybersecurity plan that includes an evaluation method to assess the security program strengths and identify areas for improvement.Initiate, oversee, and report on projects that improve our security stance.Lead the planning and decision‑support process for the security program, coordinating with a variety of internal stakeholders and senior executives.Research and evaluate new cybersecurity threats, IT trends, and security controls.Ensure response plans are kept up to date and communicated to leadership in addition to leading preparation sessions for cyber response (tabletop) and forensic investigations when necessary.Security ProcessesDevelop, implement, and oversee enforcement of security policies, procedures, and work plans based on industry best practices.Ensure that IT security audits are conducted.Develop and deliver cyber training and testing.Produce reports that help drive a strong cybersecurity position, providing enough detail for action while remaining easily understandable by management.Drive a culture to stay current on the latest cybersecurity trends, emerging technologies, threats, and incorporate appropriate safeguards into our security program.Compensation and BenefitsThe pay range that the employer in good faith reasonably expects to pay for this position is $45.30/hour - $70.79/hour. Our benefits include medical, dental, vision, and retirement benefits.Equal Opportunity EmployerTundra Technical Solutions is among North America's leading providers of Staffing and Consulting Services. We are an equal opportunity employer and do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client-provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.#J-18808-Ljbffr

Primary SkillsCybersecurity governance, risk management, and compliance oversight.Secondary SkillsCybersecurity compliance disciplines and skillsetJob ResponsibilitiesDaily operational delivery: work hand in hand with identified customer security leadership teams and offshore security lead/SMEs of individual cyber technology towers; deliver day‑to‑day cybersecurity oversight onsite.Morning check‑in with client security/IT leads.Review of overnight SOC alerts.Review security dashboards/metrics (SIEM health, endpoint coverage, critical control status) and confirm telemetry is flowing.Vulnerability scans and ticket queues.Triage and risk‑based prioritization of issues; coordinate with infrastructure, application, network and IAM teams for remediation.Validate patching and remediation progress for top risks (critical CVEs, misconfigurations) and remove blockers.Review/approval of security exceptions and change requests.Participation in project and architecture discussions to embed security controls early; walkthroughs of compliance/audit evidence needs and policy adherence.Status reporting (metrics, risks, blockers, and actions) to stakeholders.End‑of‑day follow‑up to confirm progress, elevate urgent items, and prepare the next day's priorities.Check privileged access activity (PAM alerts, break‑glass use, new admin grants) and confirm approvals are documented.Oversee EDR/AV exceptions (new exclusions, tuning requests) and ensure compensating controls are in place.Daily incident readiness actions: confirm on‑call/escalation paths, validate open incident tickets, and run quick what‑changed checks.Threat intel/emerging risk review relevant to the client environment and translate into actionable checks/hunts.Run/coordinate a short risk & issue triage huddle (top 5 risks, new findings, due dates, owners).Vendor/service review touchpoints (SOC/SIEM provider quality, false‑positive tuning, SLA adherence).Communicate security advisories to onsite teams (maintenance windows, high‑risk findings, required user actions).Additional Leadership AreasSecurity ArchitectureIdentity and Access ManagementFirewall Architecture and IntegrationCyber Threat ResearchVulnerability Assessment and Penetration TestingSecurity Project ManagementSOC AnalysisSecurity OperationsOversee all security operations including managing our external SOC relationship and activities to ensure correct classification of vulnerabilities/issues and timely resolution.Provide risk‑based activities prioritization, tracking, reporting, and liaising with external vendors and internal stakeholders.Develop a budget and operating plan for the security program.Exercise good judgement when dealing with issues and ensure a sense of urgency in their resolution while remaining calm and focused.Security Planning and ProjectsDesign, implement, and maintain a cybersecurity plan that includes an evaluation method to assess the security program strengths and identify areas for improvement.Initiate, oversee, and report on projects that improve our security stance.Lead the planning and decision‑support process for the security program, coordinating with a variety of internal stakeholders and senior executives.Research and evaluate new cybersecurity threats, IT trends, and security controls.Ensure response plans are kept up to date and communicated to leadership in addition to leading preparation sessions for cyber response (tabletop) and forensic investigations when necessary.Security ProcessesDevelop, implement, and oversee enforcement of security policies, procedures, and work plans based on industry best practices.Ensure that IT security audits are conducted.Develop and deliver cyber training and testing.Produce reports that help drive a strong cybersecurity position, providing enough detail for action while remaining easily understandable by management.Drive a culture to stay current on the latest cybersecurity trends, emerging technologies, threats, and incorporate appropriate safeguards into our security program.Compensation and BenefitsThe pay range that the employer in good faith reasonably expects to pay for this position is $45.30/hour - $70.79/hour. Our benefits include medical, dental, vision, and retirement benefits.Equal Opportunity EmployerTundra Technical Solutions is among North America's leading providers of Staffing and Consulting Services. We are an equal opportunity employer and do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Unincorporated LA County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: client-provided property, including hardware (both of which may include data) entrusted to you from theft, loss or damage; return all portable client computer hardware in your possession (including the data contained therein) upon completion of the assignment, and; maintain the confidentiality of client proprietary, confidential, or non-public information. In addition, job duties require access to secure and protected client information technology systems and related data security obligations.#J-18808-Ljbffr

Government Careers

Government Careers

Government jobs offer stability, competitive benefits, and the chance to make a meaningful impact on your community and country.

Whether you’re starting your career or seeking new opportunities, these roles provide pathways for growth, security, and service.

Explore positions across a wide range of fields and take the first step toward a rewarding future in public service.

Show more

MORE JOBS