Cybersecurity Archives - Overture Partners

Information Security Business Analyst II
Job Overview
We are seeking an experienced Information Security Business Analyst (Level 2) to bridge cybersecurity, data analytics, and business operations. This role is ideal for a hands-on professional who can translate complex security data into meaningful executive insights and partner effectively with stakeholders across the organization. Candidates who demonstrate strong cybersecurity knowledge, advanced data visualization skills, and business acumen will be prioritized for interview consideration.

Must Haves

Proven experience in information security, cybersecurity operations, or a related technical security function

Ability to draft or contribute to cybersecurity policies and standards

Hands-on expertise with data visualization tools such as Power BI or Tableau

Strong analytical mindset with experience defining KPIs and performance metrics

Experience partnering with business stakeholders to gather requirements and translate needs into measurable outcomes

Working knowledge of risk assessments, security incidents, and IT controls

Excellent communication skills, including the ability to present to executive leadership

Bachelor’s degree in a related field or equivalent professional experience

What the Client Needs You to Do

Design and implement a cybersecurity metrics framework that provides visibility into performance, risk, and operational effectiveness

Develop executive-level dashboards that synthesize complex security data into clear, strategic insights

Partner with business leaders and risk teams to identify available data sources and define meaningful KPIs

Contribute beyond analytics by supporting broader security operations initiatives as needed

Key Responsibilities

Establish and maintain cybersecurity performance metrics aligned to organizational goals

Build and maintain executive dashboards that report on incidents, remediation efforts, risk findings, and training compliance

Analyze data from multiple security domains and translate findings into actionable recommendations

Facilitate meetings with business owners to identify reporting needs and data gaps

Collaborate with risk management and audit teams to support compliance initiatives

Assist with cybersecurity policy development and documentation updates

Support awareness and training programs through reporting and measurement of effectiveness

Provide cross-functional support to fellow analysts within security operations

Present insights and trends to leadership in a concise, business-focused format

Continuously refine reporting processes to improve clarity, efficiency, and impact

Additional Information

This is a hybrid position requiring on-site presence one day per week (Wednesdays).

Relocation assistance is not available.

The team offers strong career mobility. High performers may expand into advanced data analytics roles, transition into security operations, or grow within the business operations function depending on strengths and career interests.

This role requires a professional who not only understands cybersecurity fundamentals but can also operationalize data and communicate strategy effectively. If you are equally comfortable working with technical controls, business stakeholders, and executive leadership, we encourage you to apply.

W2 employees of Overture Partners who work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), 401(k) starting on day one, a variety of voluntary benefits including life and disability insurance, and sick time if required by law in the worked-in state/locality.

#25321
March 2, 2026
Application Security Engineer
Job Overview

This role leads advanced application and cloud security initiatives within a growing cybersecurity function. The position focuses on secure software development practices, cloud security architecture, and driving improvement across engineering teams. Candidates who demonstrate deep technical expertise, proven leadership, and experience building security programs will be prioritized for interviews.

Must Haves

5+ years in application security, cloud security, or related cybersecurity engineering roles

Expertise in secure development practices, SSDLC, and modern application architectures

Hands-on experience with security testing tools (SAST, DAST, IAST, SCA)

Strong cloud security capabilities across major platforms (AWS, Azure, or GCP)

Experience designing or maturing DevSecOps programs and CI/CD security controls

Ability to lead security projects, mentor engineers, and influence cross-functional teams

Strong communication skills with the ability to translate complex security concepts

Relevant certifications preferred (such as CISSP, CCSP, CSSLP, GIAC, cloud security specialties)

What the Client Needs You to Do

This role strengthens the organization’s application and cloud security posture by shaping strategy, executing roadmap initiatives, and embedding security throughout development pipelines. You will collaborate with engineering, DevOps, and operational teams to integrate strong controls into daily work, while guiding engineers and promoting a culture of secure design.

Key Responsibilities

Design and evolve the application and cloud security program, ensuring alignment with organizational needs

Build and maintain a structured SSDLC with security gates, threat modeling, and secure coding standards

Develop, test, and implement advanced controls for application and cloud environments

Drive adoption and refinement of Cloud Security Posture Management capabilities

Integrate code analysis tools into development workflows and support developers with remediation guidance

Mentor junior and mid-level engineers through technical coaching and strategic direction

Partner closely with development and DevOps teams to embed security into pipelines and deployment processes

Conduct and oversee assessments including code reviews, penetration testing, configuration audits, and vulnerability management

Research, evaluate, and recommend emerging security tools and architectural approaches

Lead incident response efforts for application and cloud-related events, driving rapid mitigation

Engage external partners and vendors to align tooling and practices with industry expectations

Ensure all practices align with organizational values and demonstrate commitment to continuous improvement

Perform additional security-related tasks as assigned

Additional Information

Bachelor’s degree in a technical field or equivalent professional experience required; advanced education preferred

Strong understanding of modern dev environments, microservices, APIs, and container security

Familiarity with common frameworks such as OWASP, NIST CSF, and NIST 800-53

Ability to manage large initiatives, communicate across teams, and influence strategic decisions

Proficiency with standard productivity tools (e.g., M365)

Hybrid schedule required: generally 1–2 days onsite per week depending on business needs

Remote work requires a secure, stable, and compliant workspace

Standard business hours based on Eastern time

W2 employees of Overture Partners who work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), 401(k) starting on day one, a variety of voluntary benefits including life and disability insurance, and sick time if required by law in the worked-in state/locality.

#25255
November 21, 2025
Penetration Tester- Pipeline
Our company is a leader in cybersecurity, dedicated to providing comprehensive security solutions. We specialize in identifying vulnerabilities and fortifying defenses in information systems across various industries. Our culture is rooted in innovation, excellence, and a relentless pursuit of securing digital assets against emerging cyber threats.

We are looking for a skilled Penetration Tester to join our cybersecurity team. This role involves conducting simulated attacks on our systems, networks, and applications to identify vulnerabilities before they can be exploited by malicious actors. Your expertise will play a crucial role in enhancing our organization’s security posture.

Key Responsibilities:
- Perform penetration tests on computer systems, networks, and applications.
- Create new testing methods to identify vulnerabilities.
- Prepare reports on findings and provide recommendations for security enhancements.
- Stay up-to-date with the latest penetration testing methods and tools.
- Work with cybersecurity and IT teams to remediate vulnerabilities.
- Conduct security assessments of applications, operating systems, and networks.
- Develop automation scripts to handle and track incidents.
- Collaborate with colleagues on code reviews, internal infrastructure, and process enhancements.
- Participate in security audits and risk assessments.
Qualifications:
- Bachelor’s degree in Computer Science, Information Security, or a related field.
- Proven experience as a Penetration Tester or similar role.
- Strong understanding of network protocols, data flows, and vulnerabilities within a network.
- Familiarity with penetration test tools (e.g., Metasploit, Nessus, Burp Suite).
- Knowledge of scripting languages (e.g., Python, Bash).
- Excellent problem-solving and analytical skills.
- Strong communication skills to effectively report findings and strategies.
- Relevant certifications (e.g., OSCP, CEH, GPEN) are preferred.
Summary:

Identify vulnerabilities in systems, networks, and applications through simulated attacks, thereby enhancing the organization’s security. Responsibilities include conducting penetration tests, developing new testing methods, preparing reports, staying current with testing tools, remediating vulnerabilities, and participating in security audits and risk assessments.

JOB-24365
October 4, 2025
AI/Senior Technology Consultant – Pipeline
Key Responsibilities

Lead and contribute to technology projects, translating client business requirements into technical solutions across cloud, database, and software development platforms.

Design and implement solutions using cloud platforms (e.g., AWS, Azure, Google Cloud) and database systems (e.g., SQL, DB2, Oracle, Postgres, MySQL, NoSQL).

Develop and deliver software using multiple programming languages (e.g., Java, JavaScript, C#, C++, Python) and frameworks (e.g., .NET, NodeJS, React, Angular).

Drive IoT and Edge Computing initiatives, applying strategies and concepts to meet client needs.

Collaborate with clients and cross-functional teams to define technical requirements, ensuring alignment with business objectives.

Guide project teams in adopting best practices, design principles, and advanced technologies, fostering innovation and quality.

Support Agile and Waterfall project management methodologies, leading or contributing to Waterfall-to-Agile transformation efforts.

Coach teams and organizations on Agile processes and best practices to enhance project delivery and collaboration.

Contribute to internal initiatives, such as business development, hiring, brand-building activities, or training programs, to support organizational growth.

Provide thought leadership and strategic guidance to clients, delivering measurable results across diverse industries and technologies.

Required Skills and Qualifications

Technical Expertise (50%)

8+ years of professional experience in technology consulting, with hands-on expertise in cloud platforms, database systems, or software development.

Proficiency in one or more cloud platforms (e.g., AWS, Azure, Google Cloud) and database platforms (e.g., SQL, DB2, Oracle, Postgres, MySQL, NoSQL).

Experience with multiple programming languages (e.g., Java, JavaScript, C#, C++, Python) and software frameworks (e.g., .NET, NodeJS, React, Angular).

Knowledge of IoT and Edge Computing strategies, with practical application in client projects.

Proven ability to translate business requirements into technical solutions, delivering measurable outcomes.

Leadership and Collaboration (50%)

Demonstrated experience leading or significantly contributing to project teams, promoting best practices and advanced technologies.

Strong written and verbal communication skills, with the ability to engage diverse stakeholders and articulate complex concepts.

Expertise in Agile and Waterfall methodologies, with experience driving Waterfall-to-Agile transformations.

Ability to work across industries, roles, and technologies, collaborating effectively with clients and internal teams.

Strong business acumen and a track record of solving real-world business challenges with innovative solutions.

Additional Considerations

Experience with state or government technology projects is highly valued.

A bachelor’s degree in a relevant field (e.g., Computer Science, Engineering) is preferred.

Certifications such as PMP, SAFe Agilist, or cloud-specific credentials (e.g., AWS Certified Solutions Architect) are a plus.

Familiarity with coaching Agile processes and mentoring teams is advantageous.

Candidates must be located within 20 miles of Boston to support occasional onsite collaboration.

Why Join Us?

This role offers an opportunity to lead transformative technology projects in a dynamic, client-focused environment. You’ll work with cutting-edge platforms and frameworks, collaborate with diverse teams, and contribute to a forward-thinking organization dedicated to delivering innovative solutions and fostering professional growth.

What is a Pipeline Job?

These roles represent future opportunities we’ve uncovered through our client discussions. We have stripped away the rigid “Must Haves,” “Mandatories,” and “Required” criteria to find the right fit for their needs. By applying for these future roles, we will complete our human-centered process to see if you are a fit while adding your profile to our database to be considered for additional openings. When you apply, rest assured a human will thoroughly review your resume and respond to you personally. We take pride in finding the right match for each job, valuing your unique talents and potential over just what’s on your resume.

W2 employees of Overture Partners who work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), 401(k) starting on day one, a variety of voluntary benefits including life and disability insurance, and sick time if required by law in the worked-in state/locality.

#24925
September 4, 2025
Cybersecurity Analyst- Pipeline
Join a forward-thinking and rapidly growing organization committed to protecting digital assets and maintaining data integrity. Our company is at the forefront of cybersecurity, providing innovative solutions to safeguard information across various sectors. We value diligence, adaptability, and a proactive approach in our mission to defend against evolving cyber threats.

We are seeking a detail-oriented and experienced Cybersecurity Analyst to strengthen our cybersecurity team. This role involves monitoring our networks for security breaches, investigating security incidents, and implementing protective measures to safeguard our information systems.

Key Responsibilities:
- Monitor networks and systems for security breaches using tools like firewalls and intrusion detection systems.
- Respond to and investigate security incidents and breaches.
- Conduct regular security audits and risk assessments.
- Develop and implement protective measures against cyber threats.
- Stay updated on the latest cybersecurity trends and threat intelligence.
- Collaborate with other departments to improve security protocols.
- Conduct vulnerability testing, risk analyses, and security assessments.
- Develop and update disaster recovery and incident response plans.
- Provide training and guidance to staff on information security protocols.
Qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 3 years of experience in a cybersecurity role.
- Strong knowledge of various security methodologies and processes, and technical security solutions (firewall and intrusion detection systems).
- Knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, etc.).
- Excellent analytical skills and attention to detail.
- Strong communication and interpersonal skills.
- Certifications like CISSP, CISM, CEH, CompTIA Security+, or similar are preferred.
Summary:

Cybersecurity Analyst who will monitor and protect the company’s networks and systems from security breaches. This includes investigating incidents, conducting security audits and risk assessments, developing protective measures, staying informed on cybersecurity trends, collaborating on security protocols, and training staff on information security.

JOB-24363
September 4, 2025
Cybersecurity and Compliance Consultant – Pipeline
Key Responsibilities

Lead or contribute to cybersecurity, information security, risk, compliance, and data privacy programs or projects, ensuring alignment with organizational and regulatory objectives.

Design and implement compliance frameworks, regulatory mappings, and risk remediation strategies to address audit findings or regulatory requirements.

Develop roadmaps to mature cybersecurity, risk, and compliance programs, including control design and process enablement for areas like ERP, identity management, and cloud security.

Manage readiness initiatives for new laws, regulations, or certifications, coordinating with technical, business, compliance, and audit teams.

Oversee risk, compliance, or information security reporting and monitoring, delivering actionable insights to stakeholders.

Facilitate change management for regulatory adoption or compliance transformations, ensuring smooth transitions across business units.

Conduct or support internal/external audits, leveraging expertise in audit readiness and regulatory compliance.

Collaborate with cross-functional teams to deliver solutions across lines of defense, integrating technical and business perspectives.

Apply knowledge of GRC and cybersecurity tools to enhance program effectiveness and compliance processes.

Contribute to internal initiatives, such as business development, training, or process improvements, to support organizational growth.

Required Skills and Qualifications

Cybersecurity and Compliance Expertise (50%)

8+ years of experience in cybersecurity, information security, risk, compliance, or data privacy programs or projects.

Proven expertise in compliance framework mapping, regulatory implementation, or audit/risk remediation management.

Knowledge of industry regulations and standards, such as EU-GDPR, CCPA/CPRA, HIPAA, PCI, COSO, NIST, or ISO.

Experience managing or supporting regulatory audits or certification readiness initiatives.

Familiarity with GRC and cybersecurity solutions, tools, and technologies for control design and monitoring.

Leadership and Collaboration (50%)

Demonstrated ability to lead or coordinate cross-functional teams, working with technical, business, compliance, and audit stakeholders.

Strong written and verbal communication skills to articulate complex concepts and deliver presentations to diverse audiences.

Proven track record of solving business problems and delivering results in high-demand environments.

Ability to work across industries, roles, and technologies, adapting to varied project requirements.

Experience with change management, roadmap development, or maturing cybersecurity and compliance programs.

Additional Considerations

Experience with state or government cybersecurity, risk, or compliance projects, particularly in healthcare or public sector contexts, is highly valued.

A bachelor’s degree in a relevant field (e.g., Cybersecurity, Information Systems, Business) is preferred.

Certifications such as CIPP, CRCM, CRM, ARM, CISSP, or CISM are a plus.

Familiarity with Agile methodologies or cloud security practices is advantageous.

Candidates must be located within 20 miles of Boston to support occasional onsite collaboration.

Why Join Us?

This role offers an opportunity to lead impactful cybersecurity and compliance initiatives in a dynamic, client-focused environment. You’ll work with cutting-edge GRC tools and regulatory frameworks, collaborate with diverse teams, and contribute to a forward-thinking organization dedicated to delivering innovative solutions and fostering professional growth.

What is a Pipeline Job?

These roles represent future opportunities we’ve uncovered through our client discussions. We have stripped away the rigid “Must Haves,” “Mandatories,” and “Required” criteria to find the right fit for their needs. By applying for these future roles, we will complete our human-centered process to see if you are a fit while adding your profile to our database to be considered for additional openings. When you apply, rest assured a human will thoroughly review your resume and respond to you personally. We take pride in finding the right match for each job, valuing your unique talents and potential over just what’s on your resume.

W2 employees of Overture Partners who work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), 401(k) starting on day one, a variety of voluntary benefits including life and disability insurance, and sick time if required by law in the worked-in state/locality.

#24928
September 2, 2025