Information Systems Security Officer jobs at CACI International - 2981 jobs

A leading data and AI company in San Francisco is seeking a Senior Security Engineer to enhance the safety of its platform. The role demands extensive experience in Data Security and distributed systems. The ideal candidate will have strong leadership and communication skills, with a focus on filling critical gaps in infrastructure. Expected salary range is $220,400 to $297,400 annually. Join us to make impactful changes and attract top talent while representing the security engineering discipline across the organization. #J-18808-Ljbffr

A leading technology firm is seeking a Cyber Machine Learning Engineer to build and improve machine learning models for detecting cyber threats. The ideal candidate has significant experience in cyber threat hunting and proficiency in Python and MLOps practices. This position offers a competitive compensation range of $99,000 to $225,000 annually, along with comprehensive benefits including health, life, and professional development opportunities. The job supports flexible work arrangements. #J-18808-Ljbffr

A leading technology company is seeking a Senior Security Engineer for the Google Public Sector team in Honolulu, Hawaii. This role requires strong expertise in security assessments and engineering, along with 5 years of relevant experience. The engineer will implement security monitoring and incident response plans while collaborating closely with various teams. A Bachelor's degree and active Security Clearance are mandatory, as well as the ability to conduct client-facing work five days a week. Competitive salary up to $244,000 plus benefits. #J-18808-Ljbffr

Apply Must be a US Citizen to meet customer and compliance requirements, including potential access to classified information. This position requires onsite client-facing work 5 days a week in Honolulu, Hawaii. Bachelor's degree in Computer Science, IT, or related field or equivalent practical experience. 5 years of experience with security assessments, security design reviews, or threat modeling. 5 years of experience with security engineering, computer and network security, and security protocols. Experience delivering comprehensive security solutioning through design, coding, configuration, and deployment. Must possess an active Top Secret/SCI Security Clearance. Must currently have or be able to obtain advanced DoD 8140 DCWF certification. Preferred qualifications Certifications in CISSP, CISM, GCIH, GCIA, or OSCP. Experience in a regulated industry (e.g., finance, healthcare, government). Experience securing cloud environments (Cloud Computing Platform, Google Cloud Platform). Understanding of cloud security principles and best practices. About the job Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal). The GPS Cyber Defense and Security Operations Group leads our Security Operations (SECOPs) function for a range of GPS platforms and services. Combining Mandiant's deep security experience with Google technologies, our team sets the standard in Security Engineering, Assessment, and Operations across Government Cloud programs. Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions. The US base salary range for this full-time position is $166,000-$244,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google. Responsibilities Implement security monitoring strategies, incident response plans, and security awareness programs. Oversee the deployment and operation of security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS) and other security tools. Leverage cyber threat intelligence to conduct ongoing network hunt activities and identify active and dormant threats within the environment. Develop and implement custom-built AI-driven security detections and workflows. Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire. Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting. To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes. #J-18808-Ljbffr

*To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.*Job CategorySoftware EngineeringJob Details****About Salesforce****Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.**About the team** Salesforce is looking to hire a Lead Security Engineer for Government Cloud Services. We prioritize security and data protection to ensure the confidentiality, integrity, and availability of our systems and information. As we continue to expand our operations, we are seeking a skilled and experienced Lead Security Analyst to join our dynamic team and play a pivotal role in safeguarding our organization against evolving cyber threats. As the Lead Security Engineer, you will be responsible for driving the overall security posture of our organization. You will work closely with cross-functional teams to assess risks, implement security measures, monitor security systems, and respond to security incidents. Your expertise in security frameworks, technologies, and best practices will be critical in developing and executing strategies to protect our critical assets and infrastructure. **What you will be doing:*** Apply security policies to meet security objectives of the system.* Assess adequate access controls based on principles of least privilege and need-to-know.* Assess all the configuration management (change configuration/release management) processes.* Assess the effectiveness of security controls.* Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.* Develop and implement comprehensive security policies, procedures, and guidelines to ensure the protection of company assets and compliance with applicable regulations.* Conduct (or coordinate with third party partners) regular security risk assessments, vulnerability assessments, and penetration tests to identify potential weaknesses in systems, networks, and applications and coordinate remediation of findings. Drive related mitigations.* Collaborate with stakeholders to design and implement security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies.* Conduct analysis of logs and events, identify gaps for deeper analysis as needed, and coordinate with Detection and Response teams on detection and alerting betterment efforts and uplift.* Stay up-to-date with the latest security trends, vulnerabilities, and threat intelligence, and provide recommendations to proactively address emerging risks.* Liaison with Incident Response teams on incidents and response efforts, recommend and/or instigate remediation actions to prevent future occurrences.* Develop and deliver security awareness and training programs to educate employees on security best practices and promote a culture of security across the organization.* Collaborate with external vendors, partners, and auditors to ensure compliance with security standards and regulations. Further, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation* Maintain documentation of security procedures, incident response plans, and security incident reports.**What you should have:*** Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git* Professional certifications such as CISSP, CISM, CEH, or similar are highly desirable.* Proven experience (5+ years) in a security analyst role, with a focus on information security, incident response, and vulnerability management.* Must be US Citizen operating on US Soil and pass both enhanced background check as long as Criminal Justice background check.* Strong understanding of security frameworks such as ISO 27001, NIST, or CIS Controls, and their practical application.* Extensive knowledge of security technologies, including firewalls, IDS/IPS, SIEM, DLP, antivirus, and endpoint protection systems.* Hands-on experience with vulnerability assessment tools, network scanning tools, and penetration testing methodologies.* Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git“* Proficiency in log analysis, incident response, and forensic investigation techniques.* Excellent communication skills, both written and verbal, with the ability to articulate complex security concepts to technical and non-technical stakeholders.* Demonstrated leadership abilities, with the capacity to motivate and inspire a team.* Strong analytical and problem-solving skills, with the ability to think strategically and develop innovative solutions to security challenges.Joining Salesforce Government Cloud as a Lead Security Engineer provides an exciting opportunity to make a significant impact on the organization's security posture and contribute to its overall success. If you are passionate about security, possess strong leadership skills, and thrive in a fast-paced environment, we encourage you to apply for this challenging and rewarding position.Unleash Your PotentialWhen you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and *be your best*, and our AI agents accelerate your impact so you can *do your best*. Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this .Posting StatementAny employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: ******************************************* to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants #J-18808-Ljbffr

Clearance Required: Secret Education Required: BA/BS or HS/GED and Equivalent Work Experience US Citizenship: Required The MIL Corporation seeks an Information Systems Security Officer (ISSO) - Intermediate (Info. Systems & Cyber Security, Associate) to support cybersecurity operations for a Federal Government client in Norfolk, VA. The ISSO ensures cybersecurity for assigned systems, reporting to the Program Manager/System Owner (PM/SO). Responsibilities include feature deployment, security policy implementation, and RMF compliance. The ISSO may delegate tasks during Assessment and Authorization (A&A) but remains accountable. This position currently requires a hybrid schedule. This hybrid position may require schedule changes based on contract needs. Schedule is subject to change based on company/contract requirements. Responsibilities Collaborate with SOC stakeholders (systems administration, network, security, infrastructure teams, Enterprise Help Desk, program managers, and business unit sponsors). Ensure DoN Authorization to Operate (ATO) compliance Commander, Navy Installations Command (CNIC) operational IT boundaries per applicable directives. Provide expertise in RMF processes, guiding system owners through steps 1-5, including categorization, control selection, and eMASS documentation. Conduct continuous monitoring, vulnerability scanning, STIG/patch application, and manage findings in eMASS and VRAM. Maintain and update POAMs and configuration management plans, ensuring timely milestone completion. Evaluate threats, vulnerabilities, and security findings, providing recommendations to enhance IT resource protection. Ensure compliance with Department of Navy (DoN) and DoD cybersecurity policies, verifying user clearances and training. Assemble and submit Security Authorization Packages, registering and maintaining systems in eMASS. Execute annual security reviews, control testing, and contingency plan testing per FISMA requirements. Correlate non-RMF vulnerability assessment findings (e.g., penetration testing, CCORI) to RMF controls for holistic risk assessment. Travel Up to 10% annually, as required. Required Qualifications 7 years of relevant experience in cybersecurity or related fields Active Security+ Certification (IAT Level II) Expertise in RMF processes and tools (e.g., eMASS, VRAM, NESSUS) and compliance frameworks (e.g., CNSS 1253, FIPS 199, STIGs) Strong understanding of DoD, DoN, and CNIC cybersecurity directives, processes, and business rules Proven experience creating and maintaining RMF artifacts, managing vulnerabilities, and maintaining configuration management plans Strong communication skills for effective collaboration with team members Desired Qualifications CISSP Certification Hands-on experience with the U.S. Navy Risk Management Framework Process Guide (RPG) NAO process and procedures Education Bachelor's Degree in a relevant field from an accredited institution. Alternatively, an Associate's Degree with an additional 4 years of relevant work experience, or an additional 6 years of relevant work experience in lieu of a degree. Clearance All applicants for this position must possess a current Secret clearance; please note that the clearance process considers financial background aspects. Compensation The MIL Corporation values your contributions and offers a range of benefits to support your overall well-being. We are pleased to offer a comprehensive range of benefits to our full-time employees which include health, life, disability, and retirement plans, as well as paid time off, opportunities for professional growth and tuition assistance. Additional benefits and incentives may also apply, which will be communicated during the hiring process. For this position, the projected compensation range is $115,000 - $145,000 per year. This estimate represents the typical salary range and is just one part of MIL's complete compensation package. Final salary for this position is determined based on factors such as individual qualifications, education, experience, and contractual limitations. Learn more on the MIL Careers page. Why MIL? The MIL Corporation (MIL) is a dynamic workforce of industry professionals who deliver world-class solutions in cyber, engineering, financial management, and information technology - and we are looking for candidates like you! MIL offers opportunities for professionals at all stages of their careers, from early-career candidates to experienced industry professionals. We are known for a collaborative, people-first culture where employees are supported, valued, and encouraged to grow. This commitment to our people and our work is reflected in the industry and workplace awards MIL has received over the years. 2021 - 2024, Top Workplaces USA award (Energage) 2017 - 2025 Top Workplaces Award, Greater Washington Area (The Washington Post) 2018 - 2025 Certified Great Workplace, Great Place to Work 2021 - 2025, Best Workplaces in Consulting & Professional Services 2021 Fortune Best Workplaces for Millennials 2018 Fortune, Great Place to Work: Best Place to Work for Diversity 2017, 2020 - 2025 Top Workplace Award, South Carolina (Greenville Business Magazine, Columbia Business Monthly, and Charleston Business Magazine) 2025 Corporate Partnership Award, Association of Fundraising Professionals, Maryland Chapter 2025 Moxie Award, GovCon Category 2024 Patriot Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2022 Freedom Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2018, Above & Beyond Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense If your goal is to help the federal government deploy leading technologies, improve financial management, or defend the nation in cyberspace, MIL welcomes you. Become a part of something greater, where you, the people, make the difference. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.

A leading technology solutions provider in Washington, DC is seeking a Senior Systems Security Engineer. This role involves hands-on engineering and securing multiple operating systems, managing vulnerabilities, and ensuring compliance with security frameworks. Ideal candidates will have 5-10 years of experience in system engineering and strong communication skills. The position offers competitive pay and extensive benefits including paid medical and dental insurance. #J-18808-Ljbffr

Be Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. Description of Task to be Performed: AnaVation is looking for a Sr. Systems Security Engineer to assist the customer with engineering and administration tasks. The ideal candidate will be comfortable engaging with client leadership on a regular basis and interacting with senior level team members. Responsibilities Perform hands-on engineering, administration, and securing of multiple operating systems (e.g., Windows, RHEL, Unix variants), and applying DISA STIGs across diverse vendor technologies, including virtualization platforms (VMWare, Hyper-V), cloud environments (AWS, Azure, Google Cloud), and enterprise applications. Perform system administration tasks to include audit and log management, availability monitoring and remediation, account management and access reviews, and configuration update scheduling and performance. Contribute to the design and development of secure system architectures, ensuring security is integrated through system and network lifecycles. Evaluate, implement, and document security architecture solutions, aligning with compliance requirements and organizational mission needs. Ensure technical compliance with applicable security frameworks, standards, and regulations (e.g., DISA SITGs, NIST 800-53, RMF). Conducting, configuring, and managing vulnerability scans. Conducting vulnerability remediations, patching, and system hardening. Collaborate with ISSOs, Assessors, System Owners, and other stakeholders to implement security controls. Support security assessments, audits, and accreditation/authorization (ATO) activities. Document security configurations, engineering solutions, and compliance evidence. Troubleshoot and resolve security-related technical issues in a timely manner. Understanding and advising the client regarding critical application data and vulnerability points, coordinating with industry partners to advise the government regarding those security vulnerabilities, and providing recommendations and advice on incident response and recovery plans. Providing Incident Response (IR) activities including triage, investigation, interviewing, resolving, and reporting on events. Promoting information security awareness across the program, ensuring security controls and processes are implemented. Presenting vulnerability analysis to system owners and leadership. Required Qualifications 5-10 years of experience in information system engineering and configuration management. 5 years of experience in control implementation and secure system engineering or design. Excellent communication skills. Hands on experience with: Security monitoring and evaluation, including audits, assessments, and risk management SIEM tools (e.g., Splunk) Vulnerability Scanning tools (e.g., Tenable, Nessus) EDR tools (e.g., Crowdstrike) Web App Scanning tools (e.g., Burpsuite, Acunetix) Active Directory SANs VMWare Networking Devices Expertise in batch, bash, and/or PowerShell scripting Able to deliver and present security compliance to a wide range of audiences (i.e., system owners, division leadership). Experience configuring and operating enterprise storage across networks (SAN) Server visualization - design solutions and configuration (VMWare, VSphere, Hyper-V, etc) Experience with: Linux (RHEL 7/8), Windows Operating Systems, and Oracle/SQL Databases Agile Methodologies GRC Tools (e.g., CSAM) Strong desire to learn, grow and be highly motivated. Certifications: OS specific certifications, Security + Personnel assigned to this task shall possess a blend of strong technical skills (networking, operating systems, security tools, programming, encryption) and essential soft skills (problem-solving, critical thinking, communication, collaboration) to design, implement, and maintain an information system's security control implementation. Desired Qualifications Knowledgeable on different cloud providers: AWS, Azure, Oracle, GCP Understanding of servers and security tools Education: Bachelor's degree in Engineering, Computer Science, or Information Systems Certifications: CompTIA Server+, Cloud certifications (AWS, Azure, Google), Network+, CCNA, RHCSA, Azure (AZ-104, AZ-204, AZ-500, AZ-305), AWS Solutions Architect Benefits Generous cost sharing for medical insurance for the employee and dependents 100% company paid dental insurance for employees and dependents 100% company paid long-term and short-term disability insurance 100% company paid vision insurance for employees and dependents 401k plan with generous match and 100% immediate vesting Competitive Pay Generous paid leave and holiday package Tuition and training reimbursement Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. #J-18808-Ljbffr

Choosing Capgemini means choosing a company where you will be empowered to shape your career in the way you'd like, where you'll be supported and inspired bya collaborative community of colleagues around the world, and where you'll be able to reimagine what's possible. Join us and help the world's leading organizationsunlock the value of technology and build a more sustainable, more inclusive world. The Senior Security Analyst supports the governance of service provider activities in the enterprise security program, monitoring and escalating problems and providing information on security issues. Undertakes security assurance and audit activities to ensure compliance and to identify risks and opportunities. Provides information to senior managers and executives to ensure that they are aware of any security-related risks or opportunities. Provides subject matter expertise, consultancy and training in security-related matters. Must be able to function in a fast-paced, multi-vendor outsourced environment, facilitating conference calls among other subject matter experts and the client. Responsibilities Handles monthly reporting duties for the Information Risk Management team. Facilitates audit planning and audit remediation activities of the service providers, leading calls and documenting and reporting progress. Has familiarity with security technologies and controls; expertise not required, but the ability to escalate to more senior subject matter experts is important. Develops work plans to structure solutions and communications. Involves client and vendor staff appropriately in resolving security problems. Participates effectively within the business' security governance framework. Tracks the corrective and preventive actions being taken to improve security to closure. Possesses strong communication skills to communicate technical and security risk information to management. Experience Ability to self-manage with little interaction from other management staff. Flexible and able to adapt to manage a fast‑changing environment. Ability to solve complex issues and provide recommendations and advice regarding remediations. Experience with security architecture, security software, or security policy. Ability to organize agendas, lead conference calls, and track action items to completion. Security and Audit certifications such as SSCP, CISSP, CISA, CISM, CGEIT, CRISC, Security+ are preferred. Job Description - Grade Specific The base compensation range for this role in the posted location is: $65,586-121,980. Capgemini provides compensation range information in accordance with applicable national, state, provincial, and local pay transparency laws. The base compensation range listed for this position reflects the minimum and maximum target compensation Capgemini, in good faith, believes it may pay for the role at the time of this posting. This range may be subject to change as permitted by law. The actual compensation offered to any candidate may fall outside of the posted range and will be determined based on multiple factors legally permitted in the applicable jurisdiction. These may include, but are not limited to: Geographic location, Education and qualifications, Certifications and licenses, Relevant experience and skills, Seniority and performance, Market and business consideration, Internal pay equity. It is not typical for candidates to be hired at or near the top of the posted compensation range. In addition to base salary, this role may be eligible for additional compensation such as variable incentives, bonuses, or commissions, depending on the position and applicable laws. Capgemini offers a comprehensive, non‑negotiable benefits package to all regular, full‑time employees. In the U.S. and Canada, available benefits are determined by local policy and eligibility and may include: Paid time off based on employee grade (A-F), defined by policy: Vacation: 12‑25 days, depending on grade, Company paid holidays, Personal Days, Sick Leave Medical, dental, and vision coverage (or provincial healthcare coordination in Canada) Retirement savings plans (e.g., 401(k) in the U.S., RRSP in Canada) Life and disability insurance Employee assistance programs Other benefits as provided by local policy and eligibility Important Notice: Compensation (including bonuses, commissions, or other forms of incentive pay) is not considered earned, vested, or payable until it becomes due under the terms of applicable plans or agreements and is subject to Capgemini's discretion, consistent with applicable laws. The Company reserves the right to amend or withdraw compensation programs at any time, within the limits of applicable legislation. Disclaimers Capgemini is an Equal Opportunity Employer encouraging inclusion in the workplace. Capgemini also participates in the Partnership Accreditation in Indigenous Relations (PAIR) program which supports meaningful engagement with Indigenous communities across Canada by promoting fairness, accessibility, inclusion and respect. We value the rich cultural heritage and contributions of Indigenous Peoples and actively work to create a welcoming and respectful environment. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodation does not pose an undue hardship. Capgemini is committed to providing reasonable accommodation during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact. Ref. code 385096-en_US Posted on 05 Jan 2026 Contract type Permanent Location Atlanta, Austin, Bellevue, Berwyn, Bridgewater, Brooklyn, Burlington, Chicago, Columbia, Dallas, Dayton - Sogeti US, Guaynabo, Houston, Irving, Mclean, Nashville, New York, San Francisco, Santa Clara, Seattle, Southfield, Tampa, Westerville #J-18808-Ljbffr

A global technology consulting firm is seeking a Senior Security Analyst to support governance in the enterprise security program. The role involves monitoring service provider activities, facilitating audits, and providing expertise on security issues. Ideal candidates should have strong self-management skills, familiarity with security technologies, and security certifications are preferred. This position comes with a comprehensive benefits package and competitive compensation in New York, with a compensation range between $65,586 and $121,980. #J-18808-Ljbffr

A globally leading consumer device company headquartered in Mountain View, CA is looking for a Senior Offensive Security Engineer to proactively identify, exploit, and help eliminate security weaknesses across our web platforms and AI/ML systems. In this role, you will think like an attacker, operate with engineering rigor, and work closely with product, platform, and AI teams to raise the security bar across the organization. You will lead complex penetration tests, design novel attack techniques for web and modern AI-powered applications, and influence secure-by-design architecture at scale. Responsibilities: • Conduct offensive security assessments on large-scale web applications, REST APIs, and cloud-backed services. • Identify and validate vulnerabilities including injection flaws, access control issues, authentication/authorization weaknesses, SSRF, deserialization, and logic bugs. • Evaluate LLM-based systems and AI agents for prompt injection, data exfiltration, model abuse and jailbreaks • Design and execute red team-style engagements simulating real-world adversaries. • Develop custom exploitation tools, PoCs, and fuzzers for web and AI attack surfaces. • Identify systemic security weaknesses and collaborate with engineering teams to drive long-term mitigations. • Review architectures and designs for new products with an attacker mindset. • Produce clear, actionable security reports and present findings to technical and executive stakeholders. Minimum Qualifications: • Master's degree in Computer Science, Computer Engineering, Information Security, or a closely related technical field. • Doctorate (PhD) in a relevant field is a plus but not required. • 5+ years of experience in offensive security, penetration testing, or red teaming. • Deep expertise in web application security. • Strong understanding of API security. • Hands-on experience testing AI/ML or LLM-based systems, or strong motivation with demonstrated research in this area. • Proficiency in at least one scripting or programming language (Python, Go, JavaScript, or similar). • Strong knowledge of common exploitation techniques and attacker tooling. Preferred Qualifications: • Prior work on adversarial ML, red-teaming AI systems, or secure LLM pipeline design. • Experience with cloud security (AWS, GCP, Azure) and containerized environments. • Background in security research, published CVEs, CTF experience, blog posts, or conference talks. • OSCP, OSEP, OSWE, CRTO, or similar. What We Look For: • An attacker-first mindset with strong engineering discipline. • Ability to go beyond scanners and find novel, high-impact vulnerabilities. • Clear communicator who can translate complex exploits into actionable fixes. • Curiosity about emerging threats, especially in AI security. • Ownership mentality and comfort operating in ambiguous problem spaces. Type: Contract Duration: 12 months with extension Work Location: Mountain View, CA (on site) Pay Range: $ 85.00 - $ 100.00 (DOE)

Clearance Required: Top Secret SCI Education Required: BA/BS US Citizenship: Required The MIL Corporation is seeking a Cyber Security Vulnerability Researcher, Advanced (Security Engineering, Senior Analyst) to support the daily operations of the Naval Aviation Red Team. The successful candidate will serve at the Naval Air Station Patuxent River, MD. This position currently requires an on-site schedule, with 5 days on-site and is eligible for Compressed Work Schedule (CWS). Schedule is subject to change based on company/contract requirements. Responsibilities Conduct research into fundamental computer and information science as theorists, designers, or inventors. Conduct research into cyber threats, adversarial offensive and defensive tools, techniques, and methods, and mitigation solutions. Develop solutions to problems in the field of computer hardware and software with a focus on system security and vulnerability. Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications). Analyze the security of new or existing computer applications, software, or specialized utility programs and provide actionable results. Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change. Identify issues and vulnerabilities associated with the development and implementation of operational programs. Travel 10% to other sites, as required Required Qualifications At least 5 years of relevant experience Must obtain qualifications aligned with one or more DoD Cyber Workforce Framework (DCWF) roles-111, 221, 461, 511, 531, 541, 612, or 622-within 30 days of contract performance start. A list of acceptable certifications can be found on the Navy Credentialing Opportunities On-Line website (?CWFModel Ability to interact and communicate with our clients and project/task sponsors Ability to work in a diverse team environment Ability to work in a fast-paced, high-performance, team environment High degree of organizational and communication skills Desired Qualifications Knowledge of adversarial threat representation tactics, techniques, and procedures Experience programming in Python Experience and knowledge of naval aviation acquisition programs Certification in either Microsoft or Linux OS Education Bachelor's degree from an accredited college in Computer Science, Engineering, Information Technology, Cybersecurity, Data Science, Software Engineering or a related discipline. A related Master's degree and/or advanced certifications may be considered in lieu of required experience. Clearance All applicants for this position must possess a current Top-Secret clearance with SCI eligibility; please note that the clearance process considers financial background aspects. Compensation The MIL Corporation values your contributions and offers a range of benefits to support your overall well-being. We are pleased to offer a comprehensive range of benefits to our full-time employees which include health, life, disability, and retirement plans, as well as paid time off, opportunities for professional growth and tuition assistance. Additional benefits and incentives may also apply, which will be communicated during the hiring process. For this position, the projected compensation range is $115,000 - $170,000per year. This estimate represents the typical salary range and is just one part of MIL's complete compensation package. Final salary for this position is determined based on factors such as individual qualifications, education, experience, and contractual limitations. Learn more on the MIL Careers page. Why MIL? The MIL Corporation (MIL) is a dynamic workforce of industry professionals who deliver world-class solutions in cyber, engineering, financial management, and information technology - and we are looking for candidates like you! MIL offers opportunities for professionals at all stages of their careers, from early-career candidates to experienced industry professionals. We are known for a collaborative, people-first culture where employees are supported, valued, and encouraged to grow. This commitment to our people and our work is reflected in the industry and workplace awards MIL has received over the years. 2021 - 2024, Top Workplaces USA award (Energage) 2017 - 2025 Top Workplaces Award, Greater Washington Area (The Washington Post) 2018 - 2025 Certified Great Workplace, Great Place to Work 2021 - 2025, Best Workplaces in Consulting & Professional Services 2021 Fortune Best Workplaces for Millennials 2018 Fortune, Great Place to Work: Best Place to Work for Diversity 2017, 2020 - 2025 Top Workplace Award, South Carolina (Greenville Business Magazine, Columbia Business Monthly, and Charleston Business Magazine) 2025 Corporate Partnership Award, Association of Fundraising Professionals, Maryland Chapter 2025 Moxie Award, GovCon Category 2024 Patriot Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2022 Freedom Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2018, Above & Beyond Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense If your goal is to help the federal government deploy leading technologies, improve financial management, or defend the nation in cyberspace, MIL welcomes you. Become a part of something greater, where you, the people, make the difference. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.

As a Staff Cyber Security Engineer, you will collaborate closely with the Engineering Organization, IT, Information Security, Software Engineers, and our DevOps departments. Your team will ensure our embedded platforms, back-end and front-end services, cloud infrastructure, DevOps pipelines, data pipelines, and software are secured in the most efficient manner. You will work to develop new systems and procedures to counteract threat vectors that arise within our cloud and embedded environments. The ideal candidate is passionate about understanding complex architectures they work in and is adept at translating non-functional security requirements to red-team actions. The ideal candidate is also a meticulous problem solver who can work under pressure when required and remains current with the latest attack trends and technologies. Preferred Qualifications: Master's degree in Computer Science or relevant field of study. Cyber related certifications such as CompTIA CySA+, CISSP, CHFI, OSCP. Experience in digital forensics. Working experience within a DevSecOps environment. Minimum Qualifications Expertise in secure API integration design and implementation Expertise in the OWASP top 10 for web applications, and LLMs along with mitigation and remediation techniques Bachelor's degree in Computer Science, Information Technology, or a related field. Extensive experience in cybersecurity within software engineering environments. Experience with a programming language (C/C++, Python, Go, JavaScript / TypeScript, Rust) Proficiency in cloud security, threat detection, data analysis, and incident response. Expertise with security tools such as BurpSuite, PyRIT, Garak, MitM, Metasploit, Wireshark, Wiz, Sonarqube Experience standing up Security tooling to automate security hygiene, analysis, reporting or otherwise host tools or enhance intel capabilities Strong technical knowledge of microservice architecture, content distribution networks, data lakes, serverless functions, and databases. Familiarity with various cloud platforms and DevOps tools. Excellent analytical and problem-solving skills. Strong communication skills, both written and verbal. Ability to independently develop and implement security solutions. Experience in developing and implementing automated security testing functions.

Clearance Required: Top Secret Education Required: BA/BS or HS/GED and Equivalent Work Experience US Citizenship: Required The MIL Corporation is seeking an Information Security Analyst, Advanced (Info. Systems & Cyber Security, Associate). The successful candidate will serve at Patuxent River Naval Air Station, MD. This position currently requires an on-site schedule with 5 days on-site and is eligible for Compressed Work Schedule (CWS). Schedule is subject to change based on company/contract requirements. Responsibilities Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. May ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure. May perform cyber forensic analysis in responses to cyber threats in hardware and software environments. Work on high-visibility or mission critical aspects of a given program and perform all functional duties independently. May oversee the efforts of less senior staff and/or be responsible for the efforts of all staff assigned to a specific job. Travel 15% - 20% to other sites, as needed Required Qualifications Have at least 7 years of experience performing work related to the responsibilities identified above. Must obtain qualifications aligned with one or more DoD Cyber Workforce Framework (DCWF) roles-111, 211, 212, 221, 461, 511, 531, 541, 612, or 622 -within 30 days of contract performance start. A list of acceptable certifications can be found on the Navy Credentialing Opportunities On-Line website (?CWFModel). Must be qualified for system(s) "Privileged Access" prior to performance start by having one of the following certifications: CCNA Security, CySA+, GICSP, GSEC, Security+ CE, or SSCP in addition to the OS/CE Certification/Qualification(s). Knowledge of computer networking concepts and protocols, and network security methodologies. Knowledge of the Risk Management Framework (RMF) process. Knowledge of incident categories, incident responses, and timelines for responses. Knowledge of cyber threats and vulnerabilities. Knowledge of incident response and handling methodologies. Desired Qualifications Knowledge of existing NAWCAD/NAVAIR Security Operations Center (SOC) implementation, processes and procedures. Familiarity with usage of SIEM tools such as QRadar and Splunk. Experience with network monitoring, patch management, SCAP and ACAS scanning. Skill in recognizing and categorizing types of vulnerabilities and associated attacks. Skill in using security event correlation tools. Skill in recognizing and categorizing types of vulnerabilities and associated attacks. Knowledge of host/network access control mechanisms (e.g., access control lists, capabilities lists). Knowledge of the common networking and routing protocols (e.g. TCP/IP), services (e.g., web, mail, DNS), and how they interact to provide network communications. Education Bachelor's degree from an accredited college in a related discipline, or equivalent experience/combined education and/or advanced certification. Clearance All applicants for this position must possess a current Top-Secret clearance; please note that the clearance process considers financial background aspects. Compensation The MIL Corporation values your contributions and offers a range of benefits to support your overall well-being. We are pleased to offer a comprehensive range of benefits to our full-time employees which include health, life, disability, and retirement plans, as well as paid time off, opportunities for professional growth and tuition assistance. Additional benefits and incentives may also apply, which will be communicated during the hiring process. For this position, the projected compensation range is $130,000 - $170,000per year. This estimate represents the typical salary range and is just one part of MIL's complete compensation package. Final salary for this position is determined based on factors such as individual qualifications, education, experience, and contractual limitations. Learn more on the MIL Careers page. Why MIL? The MIL Corporation (MIL) is a dynamic workforce of industry professionals who deliver world-class solutions in cyber, engineering, financial management, and information technology - and we are looking for candidates like you! MIL offers opportunities for professionals at all stages of their careers, from early-career candidates to experienced industry professionals. We are known for a collaborative, people-first culture where employees are supported, valued, and encouraged to grow. This commitment to our people and our work is reflected in the industry and workplace awards MIL has received over the years. 2021 - 2024, Top Workplaces USA award (Energage) 2017 - 2025 Top Workplaces Award, Greater Washington Area (The Washington Post) 2018 - 2025 Certified Great Workplace, Great Place to Work 2021 - 2025, Best Workplaces in Consulting & Professional Services 2021 Fortune Best Workplaces for Millennials 2018 Fortune, Great Place to Work: Best Place to Work for Diversity 2017, 2020 - 2025 Top Workplace Award, South Carolina (Greenville Business Magazine, Columbia Business Monthly, and Charleston Business Magazine) 2025 Corporate Partnership Award, Association of Fundraising Professionals, Maryland Chapter 2025 Moxie Award, GovCon Category 2024 Patriot Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2022 Freedom Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense 2018, Above & Beyond Award, Employer Support of the Guard and Reserve (ESGR), Department of Defense If your goal is to help the federal government deploy leading technologies, improve financial management, or defend the nation in cyberspace, MIL welcomes you. Become a part of something greater, where you, the people, make the difference. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status or other characteristics protected by state or federal law.

Requisition ID 2026-20576 # of Openings 1 Category (Portal Searching) Warehouse/Shipping Type (Portal Searching) Regular Full-Time Our people make the difference. We believe in our employees and give them daily opportunities to grow as professionals and make their mark on the business. Each person brings unique skills to his or her role, and with employees around the globe, we have a diverse workforce that we-and our clients-deeply value. We're looking for people with a wide range of work experiences and skills, as well as those pursuing a career in managed business process services for the first time. We welcome people from diverse backgrounds who want to work hard and who take pride in what they do. As an employee, you'll have a rewarding and enriching work environment. You will be encouraged to innovate. Your coworkers will respect and value your opinions. Each day, you will have the opportunity to make an impact on a globally recognized company. At Canon, you'll have more than just a job with competitive pay and benefits-you will have a long and rewarding career. Canon Business Process Services, Inc. offers a comprehensive portfolio of managed services and technology across information and document management, business process outsourcing; and managed workforce services. The company helps clients improve operational business performance while reducing costs and risk. Named a Global Outsourcing 100 Leader in 2018 by IAOP for the twelfth year; Canon Business Process Services is a wholly owned subsidiary of Canon U.S.A., Inc. Learn more at cbps.canon.com; and follow us on Twitter @CanonBPO. Responsibilities Responsible for entering, tracking, and maintaining proper inventory levels within the SAP Warehouse Management System. Organize and validate incoming work orders and reporting through SAP. Ability to create and manage purchase requisitions, delivery documents, pick tickets, cycle count sheets and standard reports (KPI's). Troubleshoot production orders, receiving, inventory discrepancies and other transactional issues. Assist warehouse with order issues, product returns and nonconforming products. Determine root cause of order/transactions and assist in development of process improvement plans. Must be able to perform duties with little supervision Follows CBPS safety practices and procedures and contributes to a positive CBPS safety culture. Qualifications High School Diploma or equivalent required. Strong background in SAP MM and WM modules with 1 or more years of SAP experience. Strong background in problem solving in a dynamic team environment Requires knowledge of materials distribution and/or logistics processes, methods, and skills related to inventory management. Superior organizational skills Strong data entry skills Strong SAP transactional knowledge with troubleshooting experience Ability to work in an ever changing, dynamic environment Strong computer skills (Excel, Word, Office, etc.) Must develop strong product knowledge. Must have experience using SAP within a Warehouse Management System (WMS) Must have Microsoft Office Suite experience Physical Demand 80-100% Inventory-related duties 0-20% Continuous Process Improvement, Training, Guiding and Mentoring related duties Ability to lift 40 lbs. Repetitive motion Reaching, pushing, pulling carts, pallet jacks and other manual handling equipment Walking, standing for extended periods of time Mental qualifications include math skills necessary for maintaining inventory records and understanding process improvement initiatives. Must also be able to verify work orders, invoices, etc. What We Offer: An opportunity to join an established team and be part of a successful and proven global organization! A competitive compensation program! Large Company Benefits: Medical/Dental/Vision/401K with a competitive company match! Employee discounts on Canon products & vendor discount programs for employees! World-Class Training & Career Development Programs! COME JOIN OUR TEAM! Connect With Us! Not ready to apply? We look forward to connecting with you in the future! By joining our Talent Network, you can receive job alerts for new positions that match your skills and experience sent straight to your inbox.

Job Title: E-Mail Security Engineer (Local Candidates only) Duration: ~6 Months Work Hours: Hybrid (Some evenings; NTE 40 hrs/week) Key Skills: Microsoft 365 Exchange Online, Exchange Server 2013/2016/2019, Hybrid Exchange, Proofpoint, Microsoft Defender for Office 365, Email Security, SMTP, DNS (MX, SPF, DKIM, DMARC), Azure Active Directory, SSO, Identity Integration Preferred Skills: PowerShell automation and reporting, message tracing, transport rules, Microsoft Purview compliance tools, government or regulated enterprise experience Job Description: This Email Security & Exchange Engineer will serve as the technical lead and subject matter expert (SME) for enterprise messaging and email security platforms. This role supports Microsoft 365 Exchange, on-premises Exchange, Proofpoint, Microsoft Defender for Email, and Azure-based identity services, with a focus on platform reliability, security, modernization, and incident response in a large enterprise environment. Job Responsibilities Administer and optimize Microsoft 365 Exchange Online and on-prem Exchange in hybrid environments. Manage mail flow, routing, compliance, retention, and messaging security controls. Support Exchange upgrades, migrations, and modernization initiatives. Administer and tune email security platforms including Proofpoint and Microsoft Defender for Office 365. Troubleshoot complex email delivery issues, security threats, and user-impacting incidents. Support Azure AD integration, SSO, and hybrid identity synchronization. Lead high-severity incident response, root cause analysis, and remediation efforts. Develop operational documentation including SOPs, runbooks, dashboards, and reports. Provide technical guidance and knowledge transfer to internal engineering teams. Required Qualifications 7+ years of experience supporting enterprise messaging systems. Strong hands-on experience with Microsoft 365 Exchange Online, Exchange Server 2013/2016/2019, and hybrid Exchange environments. Proven experience administering Proofpoint and Microsoft Defender for Office 365. Advanced troubleshooting skills with SMTP, email routing, and DNS (MX, SPF, DKIM, DMARC). Experience supporting Azure Active Directory and enterprise identity integrations.

Loft Orbital is revolutionizing access to space by building reliable, shareable satellites that drastically reduce the time and complexity traditionally required to get to orbit. We operate satellites, fly customer payloads, and handle entire missions from end‑to‑end. We're a close‑knitted team of space enthusiasts, software experts, and cutting‑edge technologists, all working together to make space simple for our customers. As a Senior Security Engineer on our Security and Compliance Team, your mission will be to ensure that our highly automated, containerized, and globally distributed infrastructure remains secure throughout its lifecycle, from architecture to incident response. You'll be at the heart of our DevSecOps efforts, collaborating directly with infrastructure, software, product, and solution teams to scale Loft's security maturity while embracing our startup agility and culture. This is a hands‑on, deeply collaborative role, offering broad scope, rapid growth opportunities, and yes, a chance to contribute to space missions. About the Role: Champion DevSecOps best practices by designing and implementing security controls directly into our CI/CD pipelines (e.g., GitLab CI). Lead and automate application and infrastructure security assessments, including threat modeling and code review. Partner with developers and SREs to identify, remediate, and prevent vulnerabilities through secure design and practical guidance. Design, build, and maintain secure architecture patterns for containerized, cloud‑native, and distributed workloads. Develop and maintain automated security tooling, such as container image scanning, IaC validation, and policy‑as‑code. Collaborate on automated security tooling for container image scanning, IaC validation, and RBAC compliance. Support incident response workflows, including detection, forensics, root cause analysis, and post‑mortems. Provide technical mentorship and real‑time enablement to help teams adopt a “secure‑by‑default” mindset. Contribute to internal security tools and automation using Python, Go, or other modern languages. Continuously improve how we measure and scale security across our SRE and infrastructure platforms. Must Haves: Deep experience with cloud security in AWS, Azure, or GCP environments. Strong knowledge of container and Kubernetes security in production environments. Proficiency in at least one modern programming language (e.g., Python, Go, C++). Hands‑on experience with zero‑trust architecture, service mesh, and software‑defined networking. Solid understanding of DevSecOps pipelines, IaC tools, and secure build processes. Hands‑on experience with vulnerability scanning, SAST/DAST tools, and automated security testing. Proven success in fast‑paced, highly collaborative environments, ideally at a startup or scale‑up. Comfortable working closely with developers and SREs in an enablement‑first security culture. Clear, concise communication and documentation skills. Ability to thrive in a multicultural, globally distributed engineering team. Nice to Haves: Practical experience with policy‑as‑code (OPA, Sentinel, etc.). Understanding of software‑defined networking and security policy enforcement in mesh environments. Familiarity with modern SRE practices, observability, and resilience engineering. Contributions to open‑source security tools or frameworks. Interest or experience in space operations or aerospace systems. Some of Our Awesome Benefits: 100% company‑paid medical, dental, and vision insurance option for employees and dependents Flexible Spending (FSA) and Health Savings (HSA) Accounts offered with an employer contribution to the HSA 100% employer paid Life, AD&D, Short‑Term, and Long‑Term Disability insurance Flexible Time Off policy for vacation and sick leave, and 12 paid holidays 401(k) plan and equity options Daily catered lunches and snacks in office International exposure to our team in France Fully paid parental leave; 14 weeks for birthing parent and 10 weeks for non‑birthing parent Carrot Fertility provides comprehensive, inclusive fertility healthcare and family‑forming benefits with financial support Off‑sites and many social events and celebrations Relocation assistance when applicable $140,250 - $190,000 a year State law requires us to tell you the base compensation range for this role, which is $140,250- $190,000 per year. This is determined by your education, experience, knowledge, skills, and abilities. The salary range for this role is intentionally wide as we evaluate individuals based on their unique experience and abilities to fit our needs. Most importantly, we are excited to meet you, and see if you are a great fit for our team. What we can't quantify for you are the exciting challenges, supportive team, and amazing culture we enjoy. * Research shows that while men apply to jobs where they meet an average of 60% of the criteria, women and other underrepresented people tend to only apply when they meet 100% of the qualifications. At Loft, we value respectful debate and people who aren't afraid to challenge assumptions. We strongly encourage you to apply, even if you don't check all the boxes. Who We Are Loft: Space Made Simple. Founded in 2017, Loft provides governments, companies, and research institutions with a fast, reliable, and flexible way to deploy missions in orbit. We integrate, launch, and operate spacecraft, offering end‑to‑end missions as a service across Earth observation, IoT connectivity, in‑orbit demonstrations, national security missions, and more. Leveraging our existing space infrastructure and an extensive inventory of satellite buses, Loft is reducing years‑long integration and launch timelines to months. With more than 25 missions flown, Loft's flight heritage and proven technologies enable customers to focus on their mission objectives. At Loft, you'll be given the autonomy and ownership to solve significant challenges, but with a close‑knot and supportive team at your back. We believe that diversity and community are the foundation of an open culture. We are committed to hiring the best people regardless of background and make their time at Loft the most fulfilling period of their career. We value kind, supportive and team‑oriented collaborators. It is also crucial for us that you are a problem solver and a great communicator. As our team is international, you will need strong English skills to better collaborate, easily communicate complex ideas and convey important messages. With 4 satellites on‑orbit and a wave of exciting missions launching soon, we are scaling up quickly across our offices in San Francisco, CA | Golden, CO | and Toulouse, France. As an international company your resume will be reviewed by people across our offices so please attach a copy in English. #J-18808-Ljbffr

Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture. About the Role We're seeking an exceptional Principal-level Offensive Security Engineer to challenge and strengthen OpenAI's security posture. This role isn't your typical red team job - it's an opportunity to engage broadly and deeply, craft innovative attack simulations, collaborate closely with defensive teams, and influence strategic security improvements across the organization. You have the chance to not only find vulnerabilities but actively drive their resolution, automate offensive techniques with cutting-edge technologies, and use your unique attacker perspective to shape our security strategy. This role will be primarily focused on continuously testing our hardware products and related services. In this role you will: Collaborate proactively with engineering teams to enhance security and mitigate risks in hardware, firmware, and software. Perform comprehensive penetration testing on our diverse suite of products. Leverage advanced automation and OpenAI technologies to optimize your offensive security work. Present insightful, actionable findings clearly and compellingly to inspire impactful change. Influence security strategy by providing attacker-driven insights into risk and threat modeling. You might thrive in this role if you have: 7+ years of hands‑on experience or exceptional accomplishments demonstrating equivalent expertise. Exceptional skill in code review, identifying novel and subtle vulnerabilities. Demonstrated mastery assessing complex technology stacks, including: Proven ability to reverse engineer bootrom images, firmware, or silicon‑level components. Deep familiarity with low‑level kernel operations, secure boot processes, and hardware‑software interactions. Hands‑on experience building and validating secure boot chains and threat models. Proficiency with hardware debugging tools (UART, JTAG, SWD, oscilloscopes, logic analyzers). Solid programming skills in C/C++, Python, or assembly for embedded systems. Industry experience securing consumer hardware (e.g., mobile devices, IoT, chipsets). Excellent written and verbal communication skills for technical and non‑technical audiences. Strong intuitive understanding of trust boundaries and risk assessment in dynamic contexts. Excellent coding skills, capable of writing robust tools and automation for offensive operations. Ability to communicate complex technical concepts effectively through compelling storytelling. Proven track record of not just finding vulnerabilities but actively contributing to solutions in complex codebases. Prior experience working in tech startups or fast‑paced technology environments. Experience in related disciplines such as Software Engineering (SWE), Detection Engineering, Site Reliability Engineering (SRE), Security Engineering, or IT Infrastructure. About OpenAI OpenAI is an AI research and deployment company dedicated to ensuring that general‑purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non‑public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations. To notify OpenAI that you believe this job posting is non‑compliant, please submit a report through this form . No response will be provided to inquiries unrelated to job posting compliance. We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link. At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology. #J-18808-Ljbffr

A leading AI research company in San Francisco is hiring a Principal Offensive Security Engineer. In this role, you will craft attack simulations and collaborate with teams to strengthen security posture across products. The ideal candidate has over 7 years of experience, exceptional programming skills, and a strong background in identifying vulnerabilities. This position offers an opportunity to influence security strategy and contribute to innovative projects in a dynamic environment. #J-18808-Ljbffr