Senior Security Engineer jobs at CoStar Group - 115 jobs

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate. We're hiring a Senior SaaS Security Engineer to help us evolve our corporate environment to enable our mission and help build a strong practice in SaaS Application Security. This position is located in Richmond or Arlington, VA, and is in office Monday through Thursday and work from home on Friday. Responsibilities Program & Strategy Build the enterprise SaaS Security program: charter, operating model, RACI, roadmap, control framework mapping to ISO 27001, and KPIs. Stand up a single source of truth for SaaS inventory (shadow IT included), integrating procurement, SSO/IDP, network/DNS/forward proxy, CASB/SSE, SSPM, and expense data. Define SaaS risk tiering and baseline control requirements by data classification and business criticality. Architecture & Engineering Implement and operationalize SSPM and extend existing capabilities in CASB/SSE: continuous posture assessment, misconfiguration detection, and auto-remediation pipelines. Engineer governed OAuth/consent patterns across IDP and key platforms (e.g., Salesforce, Microsoft 365/Entra ID, Workday, Atlassian, and Others): Enterprise app catalogs, pre-approved scopes, just-in-time reviews, least privilege scopes, refresh token hygiene, IP/session restrictions, device trust signals, token revocation patterns. Define and enforce SSO/MFA mandates, SCIM provisioning, tenant segmentation, conditional access, DLP for SaaS, and API logging/telemetry standards. Establish secure configuration baselines and policy-as-code (e.g., Terraform/OPA/CLI automations) for major SaaS platforms. Detection & Response Integrate SaaS signals (SSPM/CASB, platform event logs like Salesforce Event Monitoring, M365, Okta/Entra) into SIEM/SOAR with detection content for OAuth abuse, anomalous consent, data exfiltration, Admin drift, and risky API usage. Author and exercise SaaS IR playbooks: token theft response, consent rollback, key rotation, scope reduction, app quarantine, containment & comms, forensics & lessons learned. Governance, Risk & Compliance Partnership Codify SaaS security standards and exception management with GRC; embed control checks into procurement/vendor risk and IT change processes. Align to SOX ITGC, privacy (e.g., GDPR/CCPA), regulatory audits, and customer assurance (SOC 2/ISO) evidence. Enablement & Change Management Drive business adoption: curated enterprise app catalog, secure patterns, training for Admins and app owners, and migration plans for risky patterns. Publish dashboards and metrics for leadership (coverage, high-risk apps, misconfig posture, incident MTTR, consent trends). Basic Qualifications Bachelor's Degree required from an accredited, not for profit university or college. A track record of commitment to prior employers 8+ years in security with 3+ years specializing in SaaS security across large enterprises (5k+ employees). Deep expertise in OAuth 2.0/OIDC, SAML, SCIM, JWT/PKCE, token hygiene/rotation, consent governance, and least-privilege scopes. Hands-on with one or more major SaaS ecosystems at scale: Salesforce (Connected Apps, Shield, Event Monitoring), Microsoft 365/Entra ID, Google Workspace, ServiceNow, Workday, Slack, Atlassian. Operationalizing SSPM and/or CASB/SSE; integrating IDP signals into SIEM/SOAR; building detections and automations. Strong grasp of NIST 800-53/CSF, ISO 27001, CIS Controls v8, CSA CCM, and mapping to SaaS controls. Incident response experience for SaaS/OAuth/token compromise scenarios. Scripting/automation (e.g., Python, PowerShell, or Node), and IaC/policy-as-code experience. Preferred Qualifications and Skills Prior leadership of a SaaS/OAuth security initiative from zero-to-one in a complex enterprise. Experience with DLP, data classification, eDiscovery/legal hold in SaaS. Familiarity with SOX ITGC and privacy-by-design in SaaS workflows. Certifications: CISSP, CCSP, CCSK, vendor accreditations (e.g., Salesforce Security & Privacy AP, Okta/Entra certs). Evidence of thought leadership (runbooks, talks, open-source/policy-as-code contributions). What's in it for You When you join CoStar Group, you'll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed. We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, and tuition reimbursement. Our benefits package includes (but is not limited to): Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug Life, legal, and supplementary insurance Virtual and in person mental health counseling services for individuals and family Commuter and parking benefits 401(K) retirement plan with matching contributions Employee stock purchase plan Paid time off Tuition reimbursement On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes Access to CoStar Group's Diversity, Equity, & Inclusion Employee Resource Groups Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply. However, please note that CoStar Group is not able to provide visa sponsorship for this position. #LI-DB3 CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing

Who We Are: Galaxy is a global leader in digital assets and data center infrastructure, delivering solutions that accelerate progress in finance and artificial intelligence. We believe that blockchain and digital asset innovation will transform how value moves through the world - and we're building the products and services to make that future a reality. Our institutional digital assets platform spans trading, investment banking, asset management, staking, self-custody, and tokenization technology. We also invest in and operate cutting-edge data center infrastructure to power AI and high-performance computing, addressing the growing demand for scalable energy and compute in the U.S. We work at the intersection of finance and technology, helping institutions, startups, and developers navigate a digitally native economy. Led by CEO and Founder Michael Novogratz, our team blends deep crypto expertise with institutional experience and a shared commitment to shaping the future of Web3 and AI. Galaxy is headquartered in New York City, with offices across North America, Europe, the Middle East, and Asia. To learn more about our businesses and products, visit *************** What We Value: We are a diverse team of free thinkers, and fast movers united to help investors and creators energize the global economy. We are looking for individuals who thrive in a culture of builders and overachievers and embrace high performance, transparent feedback, and a mission-first approach. Our culture shapes our way of working and gets us where we want to be. Seek Excellence. Be Selective To Be Effective. Be Highly Aligned, Loosely Coupled. Disagree Transparently. Encourage Independent Decision-Making. Build Dream Teams. Who You Are: Galaxy is seeking an Associate Security Engineer (Vulnerability Management) to administer application security tooling and help drive the vulnerability management program. You'll join a collaborative team of product and offensive security engineers who tackle complex technical challenges and align closely with Galaxy's business objectives. This role reports directly to the Director of Product Security and interfaces closely with Engineering, DevOps, and Infrastructure teams. What You'll Do: Administer application security tooling: manage and configure to reduce false positives and enhance accuracy. Provide comprehensive support and documentation of security tooling to encourage adoption among engineering teams. Develop dashboards and KPIs to clearly visualize security activities, vulnerabilities, and cybersecurity risks for individual departments or teams. Aggregate and analyze data from vulnerability management and asset inventory systems. Support the vulnerability management program by ensuring technology teams adhere to SLAs for vulnerability triage and remediation. Track and report on vulnerability remediation progress across infrastructure and application environments. Coordinate with engineering teams to validate, assign, and prioritize vulnerabilities based on risk and asset criticality. Leverage AI-driven tools for efficient data analysis and qualitative risk assessment. Assist in security assessments and proactively suggest improvements related to tooling and risk insights. What We're Looking For: Bachelor or post-graduate diploma in cybersecurity or technology 4+ years of work experience in cybersecurity, software development, or security operations Proficiency in scripting or object programming languages Familiarity with application security and vulnerability management practices Strong analytical skills, detail-oriented, proactive, and capable of independent problem-solving Very good verbal and written communication skills, collaborative and solution-driven Security or cloud certifications What We Offer: Competitive base salary and discretionary bonus Flexible Time Off (i.e. unlimited paid vacation days) Company paid Holidays (11) Company paid sick leave Company-paid health and protective benefits for employees, partners, and other dependents 3% 401(k) company contribution Generous paid Parental Leave Free virtual coaching and counseling sessions through Headspace Opportunities to learn about the Crypto industry Free daily snacks in-office Smart, entrepreneurial, and fun colleagues Employee Resource Groups Apply now and join us on our mission to engineer a new economic paradigm. Galaxy respects diversity and seeks to provide equal employment opportunities to all employees and job applicants for employment without regard to actual or perceived age, race, color, creed, religion, sex or gender (including pregnancy, childbirth, lactation and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital or partnership or caregiver status, ancestry, national origin, citizenship status, disability, military or veteran status, protected medical condition as defined by applicable state or local law, genetic information or predisposing genetic characteristic, or other characteristic protected by applicable federal, state, or local laws and ordinances. We will endeavor to make a reasonable accommodation to the known limitations of a qualified applicant with a disability unless the accommodation would impose an undue hardship on the operation of our business. If you believe you require such assistance to complete the application process or to participate in an interview, please contact ******************.

Cyber Engineer Advanced Colorado Springs, CO TRAVEL REQUIREMENTS: Less than 10% 0SUPERVISORY RESPONSIBILITES: No REQUIRED QUALIFICATIONS: U.S. Citizen DoD Secret Security Clearance or interim Ability to evaluate existing cybersecurity methods, recommend improvements, and determine how to test those cybersecurity measures CISSP certification with ISSAP or ISSEP concentration required: CISSP-ISSAP-ISC2 or CISSP-ISSEP-ISC2 DESIRED QUALIFICATIONS: Experience in one or more of the following disciplines: Software Assurance, Hardware Assurance, RMF, SCRM, Criticality Analysis, Risk Assessment Ability to apply knowledge of Information Assurance policy, procedures, and workforce structure to develop, implement, and maintain a secure network environment Ability to provide support to other Information Assurance Managers as well as other senior managers for network operational requirements Excellent oral and written communication skills with ability to brief technical topics to upper management EDUCATION / EXPERIENCE: 20 Years of IT experience, with 15 years of dedicated IASAE experience CULTURE REQUIREMENTS: Engineers, Analysts, and Developers at Cintel, Inc. are highly motivated, technical, and self‐organized. We place a lot of trust in our team members to develop technical solutions for ill‐defined problems (i.e. thrive in an environment where the problem is vague, requirements are lacking, and a solution is not obvious). We need problem solvers. We want our team members to be self‐motivated and eager to learn new skills. If you consider yourself a jack‐of‐all‐trades, and are eager to keep up with the latest trends in technology, you'll fit right in. ABOUT CINTEL, INC: Cintel Inc. is a Small Business providing strategies and services to support an array of Government clients in Software Development, Operational/Tactical and Installation/Facilities Energy, Cyber Security, Modeling and Simulation, Data Science, and Programmatic support. We offer our clients nimble, unique, and value focused solutions with an emphasis on people, connectivity, communication, and teamwork. Our team believes that people drive solutions. By connecting people, information, teams, and experience we deliver solutions that respond to customer needs.

Candidates MUST HAVE: Firewall, checkpoint, juniper, McAfee Web Gateway proxies experience is mandate • Level III operational support. • Rule base modifications to the proxies. • CLI access and mid/expert for troubleshooting of the hardware. • Reporter expertise to be able to generate reports and investigations to client. • Architecture and design expertise to recommend to the customer. • Expert level to whitelist URL sites for restoration of blocked traffic. • SSL 3.0 and TLS1.0 expertise and authentication methods to the proxies. • Explicit proxy PAC file modifications. • Hardware load balancing mechanism expertise through F5 troubleshooting. • Application control using third party APIs. • WCCP expertise for future implementation with core Cisco Nexus VDC McAfee IPS. • Level III operational support. • Expert level of CLI and GUI support to intrusion protection and reporting. • Troubleshooting techniques for protection and vulnerability assessment. Please respond with your word resume and requested details: Full Name : Work Authorization: Contact Number : Email ID : Skype ID: Current location: Willing to relocate : Salary : Additional Information All your information will be kept confidential according to EEO guidelines.

Sr. Cyber Specialist Advanced Colorado Springs, CO TRAVEL REQUIREMENTS: Less than 10% SUPERVISORY RESPONSIBILITES: No As a Senior Cyber Security Engineer at Cintel, you will work on our Information Solutions team in support of an ISSM at the Missile Defense Agency. The Cyber Security Engineer will provide support to multiple exciting projects and have the opportunity to assimilate multiple knowledge disciplines into solving complex problems. Candidates must be self-motivated, able to work with little to no supervision, and capable a briefing status reports to the Leadership Team as well as preparing the reports that are to be presented. The candidate must also have a good understanding of the technologies of the systems he or she is assigned. We are looking for talented people who can analyze problems, develop innovative solutions, and implement them for real-world use. REQUIRED QUALIFICATIONS: U.S. Citizen DoD Secret Security Clearance or interim Experience in embedded systems design and/or controls Experience in Systems Engineering related to Computer Engineering Experience in Cybersecurity with a Systems Engineering viewpoint Show applied knowledge of cybersecurity policy, procedures to systems and networking in an Enterprise environment in order to review controls and package artifacts for validity Ability to explain technical information to non-technical audiences to explain complex situations to all levels of leadership, including SES/General Officers Capable of writing and reviewing policies and procedures for the Network and Enclave Environment that align to DoD and MDA directives. Must be able to lead the assessment of artifacts and guide the authorization of his or her systems to authorization ether independently or as a team. Apply knowledge of cybersecurity policy, procedures, and workforce structure to develop, implement, and maintain a secure systems. Knowledge of Information System Security Manager (ISSM) Roles and Responsibilities and the DoD assessment and authorization process Expected to organize and participate in meetings as it relates to the job function Review, and/or create/draft as needed, RMF artifacts such as Systems Security Plans (SSP), cybersecurity-related Standard Operating Procedures (SOP), Plan of Action & Milestones (POA&M) Development and maintain Continuous Monitoring Plans, Support and Connection agreements, Disaster Recovery, Continuity of Operations (COOP), Admin/User Guides, and Incident Response Documented 5 years of IAM experience in the DoD Environment Documented 5 years System Administration and configuration experience on Windows 7 - 10 including DoD Secure host Baseline, RedHat Linux, switches and routers, boundary defenses Knowledge of Ports, Protocols, and Services Management (PPSM) DESIRED QUALIFICATIONS: 2 or more years working in eMASS for the DoD Prior MDA experience with Command, Control, Battle Management Communication (C2BMC) systems Authorization of Mission and Mission support systems Applying security to systems and/or networks with STIGS or other security standards. Process improvement principles and procedures LAN/WAN design and security Software Assurance System Administration functions for OS, Infrastructure or firewalls. Working knowledge of ACAS and HBSS EDUCATION/EXPERIENCE/CERTIFICATION: BS in Computer Engineering/Computer Science or Cyber Security 15 Years of IT experience, with 10 years of dedicated Information Assurance Management (IAM) Must have 1 of the following certifications: CISM CISSP (or Associate) GSLC CCISO CULTURE REQUIREMENTS: Engineers, Analysts, and Developers at Cintel, Inc. are highly motivated, technical, and self‐organized. We place a lot of trust in our team members to develop technical solutions for ill‐defined problems (i.e. thrive in an environment where the problem is vague, requirements are lacking, and a solution is not obvious). We need problem solvers. We want our team members to be self‐motivated and eager to learn new skills. If you consider yourself a jack‐of‐all‐trades, and are eager to keep up with the latest trends in technology, you'll fit right in. ABOUT CINTEL, INC: Cintel Inc. is a Small Business providing strategies and services to support an array of Government clients in Software Development, Operational/Tactical and Installation/Facilities Energy, Cyber Security, Modeling and Simulation, Data Science, and Programmatic support. We offer our clients nimble, unique, and value focused solutions with an emphasis on people, connectivity, communication, and teamwork. Our team believes that people drive solutions. By connecting people, information, teams, and experience we deliver solutions that respond to customer needs.

GCI embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry. At GCI, we solve the hard problems. As a Cyber Security Analyst, a typical day will include the following duties: Description GCI is looking for a highly motivated and experienced expert Cyber Security Analyst to join our team. The ideal candidate will have a strong understanding of cyber security principles and practices, as well as experience with a variety of security technologies. In this role, you will be responsible for the overall security of our organization's information systems and networks. Duties and Responsibilities Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats. Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events. Evaluates, tests, recommends, coordinates, monitors and maintains cybersecurity policies, procedures and systems, including access management for hardware, firmware and software Ensures that cybersecurity plans, controls, processes, standards, policies and procedures are aligned with cybersecurity standards Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security. Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks. Provides advanced guidance and leadership to less- experienced cybersecurity personnel. May serve as a team or task leader. (Not a people manager) Education Requirement BA/BS (or equivalent experience) Experience Requirement 11+ years of experience Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Number of positions: 1 Length: 12Months + Work Address: Richmond, VA 23219 Immediate interviews Web Cam Interview Elect - Cybersecurity Engineer Is Remote. Seeking an Azure Senior Security Engineer (Cybersecurity Engineer 3) with minimum 5 years experience to work with an existing software development team. You will be working with our more established contractors and staff to focus on several web and Windows applications used both by internal staff and constituents of the Commonwealth of Virginia. The candidate will need expertise in all aspects of IT security and cloud security and experience working in an Agile/Scrum development environment interacting with technical and non-technical stakeholders. Candidate will need to have extensive knowledge of cybersecurity practices, industry security standards, and regulatory standards. A bachelors degree and/or applicable recognized industry certifications are strongly desired and will help you stand out in this position. using mobile and responsive design practices, so a familiarity with these methodologies would be a plus. Required/Desired Skills Candidates must have ALL the Required skills in order to be considered for the position. Desired or Highly Desired skills are a PLUS but may NOT be required. Skill Matrix (Please fill the last two columns of this matrix) Experience with Business workflow processes Required / Desired Amount of Experience Years of Experience Last Used 5+ years in IT security or cloud security roles required. Required 5 Years 3+ years of hands-on experience securing Azure environments Required 3 Years Bachelors degree in Computer Science, Cybersecurity, or related field or equivalent work experience required. Required 5 Years Relevant certifications (MS Certified Cybersecurity Architect Expert, Azure Security Engineer Associate (SC-300), CompTIA Security+, CISSP, CISM Highly desired 5 Years Experience with Azure Security Services (Azure Defender, MS Sentinel, Azure Key Vault, Azure Policy and Blueprints, Azure Security Center) required. Required 5 Years Experience with Azure Active Directory (AAD), including conditional access, MFA, and identity protection required. Required 5 Years Extensive knowledge of PIM and RBAC required Required 5 Years Experience with NSGs, ASGs, VPN, ExpressRoute, and hybrid connectivity security required Required 5 Years Ability to implement and moitor compliance with regulatory standards such as NIST, ISO 27001, GDPR, etc. is required Required 5 Years Extensive knowledge of threat modeling and vulnerability management, SIEM/SOAR tuning and response workflows, and security alert triage and forensics Required 5 Years Ability to perform scripting and automation using PowerShell, Bicep, ARM templates, or Terraform Required 5 Years Ability to perform perform integration with CI/CD pipelines for secure deployments (GitHub Actions, Azure DevOps) Required 5 Years Ability to create and deliver security architecture reports and documentation Required 5 Years Experience in risk assessment and mitigation strategies Required 5 Years

CoStar Group (NASDAQ: CSGP) is a leading global provider of commercial and residential real estate information, analytics, and online marketplaces. Included in the S&P 500 Index and the NASDAQ 100, CoStar Group is on a mission to digitize the world's real estate, empowering all people to discover properties, insights and connections that improve their businesses and lives. We have been living and breathing the world of real estate information and online marketplaces for over 35 years, giving us the perspective to create truly unique and valuable offerings to our customers. We've continually refined, transformed and perfected our approach to our business, creating a language that has become standard in our industry, for our customers, and even our competitors. We continue that effort today and are always working to improve and drive innovation. This is how we deliver for our customers, our employees, and investors. By equipping the brightest minds with the best resources available, we provide an invaluable edge in real estate. In this role, you'll communicate and reinforce security concepts to technical and non-technical audiences within the CoStar Enterprise. The ideal candidate will have experience implementing, using and updating standard security software in the areas of vulnerability scanning/management, leading remediation efforts, end-node security, security tool integration and orchestration for incident response. As the security section grows, so will the tools and the Senior Security Engineer will be the person charged with implementing them. The successful candidate will be a self-starter motivated to learn new technologies and tools and assist in moving security forward as it is implemented within the CoStar Enterprise. This position can be located in Arlington or Richmond, VA and is in office Monday through Thursday and work from home on Friday. Responsibilities Incident event handling - serve as the escalation tier for the team when there is an incident Lead incident response functions and reporting of findings Review technical security posture (network, application, database) for existing and newly acquired businesses or services Team expert on Mitre Att&ck, tools, techniques, and practices of cyber attackers Ability to script responses to observed threats Perform security review and monitoring of the production environment setup permissions of users, open ports/services and overall network setup Examine network, server, and application logs to determine trends and identify security incidents Use security tools to audit infrastructure, detect issues and coordinate remediation of any issues Conduct threat hunting in the CoStar enterprise Follow, develop and improve network and endpoint security configuration procedures Work with other teams to remediate discovered deficiencies. Participate in 24x7 on-call rotation Basic Qualifications Bachelor's Degree required from an accredited, not for profit university or college. A track record of commitment to prior employers One or more security certification such as SANS/GIAC, CISSP, CISM, GIAC Certified Incident Handler (GCIH), Certified Expert Incident Handler (CEIH) or equivalent 6+ years in Information Security Scripting/programming skills (Perl, Python, PowerShell) Experience with Windows Server 2012/2016 /2019 and Active Directory Preferred Qualifications and Skills Excellent oral and written communication skills to work effectively with others regardless of departmental or geographic boundaries Experience with Microsoft Security tooling (Defender, Sentinel, EOP etc.) a plus Ability to produce detailed technical documentation Proficiency with PC software applications, E-Mail, and job associated applications/systems to expediently process work Requires good organization skills to produce quality work, within required specifications, and within scheduled timelines Excellent customer service skills What's in it for You When you join CoStar Group, you'll experience a collaborative and innovative culture working alongside the best and brightest to empower our people and customers to succeed. We offer you generous compensation and performance-based incentives. CoStar Group also invests in your professional and academic growth with internal training, and tuition reimbursement. Our benefits package includes (but is not limited to): Comprehensive healthcare coverage: Medical / Vision / Dental / Prescription Drug Life, legal, and supplementary insurance Virtual and in person mental health counseling services for individuals and family Commuter and parking benefits 401(K) retirement plan with matching contributions Employee stock purchase plan Paid time off Tuition reimbursement On-site fitness center and/or reimbursed fitness center membership costs (location dependent), with yoga studio, Pelotons, personal training, group exercise classes Access to CoStar Group's Diversity, Equity, & Inclusion Employee Resource Groups Complimentary gourmet coffee, tea, hot chocolate, fresh fruit, and other healthy snacks We welcome all qualified candidates who are currently eligible to work full-time in the United States to apply. However, please note that CoStar Group is not able to provide visa sponsorship for this position. #LI-AR CoStar Group is an Equal Employment Opportunity Employer; we maintain a drug-free workplace and perform pre-employment substance abuse testing

The Cyber Information Assurance Analyst SME provides IT support services for the Marine Corps Logistics Base by independently conducting complex security analyses of classified and unclassified systems for compliance with security requirements. Performs Command Cyber Readiness Inspections, vulnerability evaluations, and utilizing various security technologies and tools to assess the security posture of intricate computer systems and networks. Responsibilities include conducting vulnerability and risk analyses, participation in penetration studies, and defining security requirements for a range of computing systems. Recommends solutions to enhance security, gathers technical information to align with organizational goals, and offers technical analysis and advice to client executive management on system improvements, focusing on areas like information systems architecture, networking, and communication protocols. This position is on-site in the Albany, GA area. Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental - Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays. As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act. ESSENTIAL REQUIREMENTS Secret Clearance is required and must be maintained for employment. Must be eligible for an IT-II upon assignment. Tenable Certified NESSUS Auditor required and must maintain CSSP Auditor Certification. IAM III and IAT II level certification is required. Proven proficiency performing CCRI / vulnerability assessment / penetration testing on networks, databases, computer applications and IT frameworks Seven (7) years IT experience Five (5) years IA experience Two (2) years of experience with DOD Vulnerability Management System Command Cyber Readiness Inspection certification in at least one of the following areas: Retina scan analysis o Operating Systems (Windows, Unix) Boundary defense (network policy, router, firewall) Internal defense (L2 switch, L3 switch) DNS (policy, BIND/Windows) HBSS (remote console, AV, ABM, PA, HIPS, ePO) Traditional security (Common, Basic, NCV, SCV) Wireless communications (BES, handhelds) Strong analytical and problem solving skills for resolving security issues Strong skills implementing and configuring networks and network components Knowledge and understanding of DOD security regulations, DISA Security Technical Implementation Guides Understanding of SCAP Knowledge of and proficiency with: VULNERATOR; USCYBERCOM CTO Compliance Program; Wireless vulnerability assessment; Web Services (IIS, Apache, Proxy); Database (SQL Server, Oracle); Email Services (Exchange); Vulnerability Scans (NESSUS, SCCM); Knowledge of Phishing exercises; USB Detect; Physical Security. Nice to have: DISA FSO certified CCRI Team Lead and have a certification in penetration testing, such as: Licensed Penetration Tester (LPT); Certified Expert Penetration Tester (CEPT); Certified Ethical Hacker (CEH); Global Information Assurance Certification Penetration Tester (GPEN); Familiarity with AUTOCHECKLIST Tool. KEY DUTIES AND RESPONSIBILITIES Essential Duties and responsibilities include the following. Other duties may be assigned. Independently performs complex security analysis of classified and unclassified applications, systems and enclaves for compliance with security requirements. Performs Command Cyber Readiness Inspections and cybersecurity vulnerability evaluations. Uses a variety of security techniques, technologies, and tools to evaluate security posture in highly complex computer systems and networks. Performs vulnerability and risk analysis, and participate in a variety of computer security penetration studies. Analyzes and defines security requirements for computer and networking systems, to include mainframes, workstations, and personal computers. Recommends solutions to meet security requirements. Gathers and organizes technical information about an organization's mission goals and needs, and makes recommendations to improve existing security posture. Provide enterprise-wide technical analysis and direction for problem definition, analysis and remediation for complex systems and enclaves. Provides workable recommendations and advice to client executive management on system improvements, optimization and maintenance in the following areas: Information Systems Architecture, Automation, Telecommunications, Networking, Communication Protocols, Application Software, Electronic Email, VOIP and VTC. Competent to work at the highest level of all phases of information systems auditing. EDUCATION AND EXPERIENCE Seven (7) years of experience, or an equivalent combination of education/experience. PHYSICAL DEMANDS Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic. The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. EOE including Disability/Vet CNI offers a comprehensive benefits package that includes: Medical Dental Vision 401(k) Family Planning/Fertility Assistance STD/LTD/Basic Life/AD&D Legal-Aid Program Employee Assistance Program (EAP) Paid Time Off (PTO) - (11) Federal Holidays Training and Development Opportunities Your application submission will be considered for all potential employment opportunities with Chickasaw Nation Industries (CNI).

Say hello to opportunities. It's not everyday that you consider starting a new career. We're RingCentral, and we're happy that someone as talented as you is considering this role. First, a little about us, we're a $2 Billion annual revenue company with double digit Annual Recurring Revenue (ARR) and a $93 Billion market opportunity in UCaaS, Contact Center and AI-powered adjacencies. We invest more than $250 million annually to ensure our AI-enabled technology and platforms meet or exceed the needs of our customers. RingSense AI is our proprietary AI solution. It's designed to fit the business needs of our customers, orchestrated to be accurate and precise, and built on the same open platform principles we apply to our core software solutions. This is where you and your skills come in. We're currently looking for: Security Operations Center Analyst Job Type: Full-Time, 2 days on (08.00 PDT AM - 08.00 PDT PM) 2 days off Location: Belmont, CA Department: Security This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business. About this role: As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral's global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel. Job Description: Have proven skills in application security, security monitoring, incident response and intrusion analysis Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills Demonstrated track record of quality processes in candidate's work history Be strongly self-motivated with an aptitude for both individual and team-oriented work Have experience following and refining standard operating procedures and playbooks Responsibilities: Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment Engage teams within and outside of RingCentral to mitigate and resolve cases Maintain relevant documentation and audit artifacts Identify and track suspicious system activity Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems This role participates in on-call rotations Qualifications / Requirements: 2+ years in a security engineering, SRE, or SOC roles in a cloud services environment Experience with SIEM Experience investigating security incidents Basic knowledge AWS or GCP Experience with IDS, case management, and related tools and practices Experience with Linux, RedHat preferred Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc. Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP) Preferred Skills/Experience: Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events Strong knowledge of Microsoft Windows Experience automating security tasks, including scripting, programming and/or SecDevOps Experience working with global teams Any combination of the following certifications: GCIA (GIAC Certified Intrusion Analyst) GCIH (GIAC Certified Incident Handler) GCIA (GIAC Certified Intrusion Analyst) GCFA (GIAC Certified Forensic Analyst) GNFA (GIAC Certified Network Forensic Analyst) GCFE (GIAC Forensic Examiner) GASF (GIAC Advanced Smartphone Forensics) GICA GCTI (GIAC Certified Cyber Threat Intelligence) GPEN (GIAC Certified Pentester) GWAPT (GIAC Certified Web Application Pentester) GPYC (GIAC Certified Python Coder) OSCP (Offensive Security Certified Pentester) What we offer: Comprehensive medical, dental, vision, disability, life insurance Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter benefits Voluntary supplemental health coverage and life insurance 401K match and ESPP Paid time off and paid sick leave Paid parental and pregnancy leave Family-forming benefits (IVF, Preservation, Adoption etc.) Emergency backup care (Child/Adult/Pets) Employee Assistance Program (EAP) with counseling sessions available 24/7 Free legal services that provide legal advice, document creation and estate planning Employee bonus referral program Student loan refinancing assistance Employee 1:1 coaching, perks and discounts program RingCentral's IT team ensures company data is accessible, secure, and optimized in ways that provide maximum competitive advantage. We are constantly discovering, developing and deploying innovations that power productivity and drive better decisions for our customers. Our IT professionals are talented, ambitious, out-of-the-box thinkers who love to learn on the job-planning, deploying and maintaining state-of-the-art technology to deliver flawless performance 24/7/365. RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. About RingCentral RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone™ (MVP™) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location. RingCentral is headquartered in Belmont, California, and has offices around the world. RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you are hired in Belmont, CA the compensation range for this position is between $86,100 and $123,000 for full-time employees, in addition to eligibility for variable pay, equity, and benefits. Benefits may include, but are not limited to, health and wellness, 401k, ESPP, vacation, parental leave, and more! The salary may vary depending on your location, skills, and experience. #LI-IG1

Say hello to opportunities. It's not everyday that you consider starting a new career. We're RingCentral, and we're happy that someone as talented as you is considering this role. First, a little about us, we're a $2 Billion annual revenue company with double digit Annual Recurring Revenue (ARR) and a $93 Billion market opportunity in UCaaS, Contact Center and AI-powered adjacencies. We invest more than $250 million annually to ensure our AI-enabled technology and platforms meet or exceed the needs of our customers. RingSense AI is our proprietary AI solution. It's designed to fit the business needs of our customers, orchestrated to be accurate and precise, and built on the same open platform principles we apply to our core software solutions. This is where you and your skills come in. We're currently looking for: Security Operations Center Analyst Job Type: Full-Time, 2 days on (08.00 PDT AM - 08.00 PDT PM) 2 days off Location: Belmont, CA Department: Security This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business. About this role: As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral's global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel. Job Description: * Have proven skills in application security, security monitoring, incident response and intrusion analysis * Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data * Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills * Demonstrated track record of quality processes in candidate's work history * Be strongly self-motivated with an aptitude for both individual and team-oriented work * Have experience following and refining standard operating procedures and playbooks Responsibilities: * Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment * Engage teams within and outside of RingCentral to mitigate and resolve cases * Maintain relevant documentation and audit artifacts * Identify and track suspicious system activity * Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems * This role participates in on-call rotations Qualifications / Requirements: * 2+ years in a security engineering, SRE, or SOC roles in a cloud services environment * Experience with SIEM * Experience investigating security incidents * Basic knowledge AWS or GCP * Experience with IDS, case management, and related tools and practices * Experience with Linux, RedHat preferred * Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc. * Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP) Preferred Skills/Experience: * Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools * Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events * Strong knowledge of Microsoft Windows * Experience automating security tasks, including scripting, programming and/or SecDevOps * Experience working with global teams Any combination of the following certifications: * GCIA (GIAC Certified Intrusion Analyst) * GCIH (GIAC Certified Incident Handler) * GCIA (GIAC Certified Intrusion Analyst) * GCFA (GIAC Certified Forensic Analyst) * GNFA (GIAC Certified Network Forensic Analyst) * GCFE (GIAC Forensic Examiner) * GASF (GIAC Advanced Smartphone Forensics) * GICA GCTI (GIAC Certified Cyber Threat Intelligence) * GPEN (GIAC Certified Pentester) * GWAPT (GIAC Certified Web Application Pentester) * GPYC (GIAC Certified Python Coder) * OSCP (Offensive Security Certified Pentester) What we offer: * Comprehensive medical, dental, vision, disability, life insurance * Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter benefits * Voluntary supplemental health coverage and life insurance * 401K match and ESPP * Paid time off and paid sick leave * Paid parental and pregnancy leave * Family-forming benefits (IVF, Preservation, Adoption etc.) * Emergency backup care (Child/Adult/Pets) * Employee Assistance Program (EAP) with counseling sessions available 24/7 * Free legal services that provide legal advice, document creation and estate planning * Employee bonus referral program * Student loan refinancing assistance * Employee 1:1 coaching, perks and discounts program RingCentral's IT team ensures company data is accessible, secure, and optimized in ways that provide maximum competitive advantage. We are constantly discovering, developing and deploying innovations that power productivity and drive better decisions for our customers. Our IT professionals are talented, ambitious, out-of-the-box thinkers who love to learn on the job-planning, deploying and maintaining state-of-the-art technology to deliver flawless performance 24/7/365. RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. About RingCentral RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone (MVP) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location. RingCentral is headquartered in Belmont, California, and has offices around the world. RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you are hired in Belmont, CA the compensation range for this position is between $86,100 and $123,000 for full-time employees, in addition to eligibility for variable pay, equity, and benefits. Benefits may include, but are not limited to, health and wellness, 401k, ESPP, vacation, parental leave, and more! The salary may vary depending on your location, skills, and experience. #LI-IG1

Say hello to opportunities. It's not everyday that you consider starting a new career. We're RingCentral, and we're happy that someone as talented as you is considering this role. First, a little about us, we're a $2 Billion annual revenue company with double digit Annual Recurring Revenue (ARR) and a $93 Billion market opportunity in UCaaS, Contact Center and AI-powered adjacencies. We invest more than $250 million annually to ensure our AI-enabled technology and platforms meet or exceed the needs of our customers. RingSense AI is our proprietary AI solution. It's designed to fit the business needs of our customers, orchestrated to be accurate and precise, and built on the same open platform principles we apply to our core software solutions. This is where you and your skills come in. We're currently looking for: Security Operations Center Analyst Job Type: Full-Time, 2 days on (08.00 PDT AM - 08.00 PDT PM) 2 days off Location: Denver, CO Department: Security This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business. About this role: As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral's global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel. Job Description: Have proven skills in application security, security monitoring, incident response and intrusion analysis Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills Demonstrated track record of quality processes in candidate's work history Be strongly self-motivated with an aptitude for both individual and team-oriented work Have experience following and refining standard operating procedures and playbooks Responsibilities: Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment Engage teams within and outside of RingCentral to mitigate and resolve cases Maintain relevant documentation and audit artifacts Identify and track suspicious system activity Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems This role participates in on-call rotations Qualifications / Requirements: 2+ years in a security engineering, SRE, or SOC roles in a cloud services environment Experience with SIEM Experience investigating security incidents Basic knowledge AWS or GCP Experience with IDS, case management, and related tools and practices Experience with Linux, RedHat preferred Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc. Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP) Preferred Skills/Experience: Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events Strong knowledge of Microsoft Windows Experience automating security tasks, including scripting, programming and/or SecDevOps Experience working with global teams Any combination of the following certifications: GCIA (GIAC Certified Intrusion Analyst) GCIH (GIAC Certified Incident Handler) GCIA (GIAC Certified Intrusion Analyst) GCFA (GIAC Certified Forensic Analyst) GNFA (GIAC Certified Network Forensic Analyst) GCFE (GIAC Forensic Examiner) GASF (GIAC Advanced Smartphone Forensics) GICA GCTI (GIAC Certified Cyber Threat Intelligence) GPEN (GIAC Certified Pentester) GWAPT (GIAC Certified Web Application Pentester) GPYC (GIAC Certified Python Coder) OSCP (Offensive Security Certified Pentester) What we offer: Comprehensive medical, dental, vision, disability, life insurance Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter benefits Voluntary supplemental health coverage and life insurance 401K match and ESPP Paid time off and paid sick leave Paid parental and pregnancy leave Family-forming benefits (IVF, Preservation, Adoption etc.) Emergency backup care (Child/Adult/Pets) Employee Assistance Program (EAP) with counseling sessions available 24/7 Free legal services that provide legal advice, document creation and estate planning Employee bonus referral program Student loan refinancing assistance Employee 1:1 coaching, perks and discounts program RingCentral's IT team ensures company data is accessible, secure, and optimized in ways that provide maximum competitive advantage. We are constantly discovering, developing and deploying innovations that power productivity and drive better decisions for our customers. Our IT professionals are talented, ambitious, out-of-the-box thinkers who love to learn on the job-planning, deploying and maintaining state-of-the-art technology to deliver flawless performance 24/7/365. RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. About RingCentral RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone™ (MVP™) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location. RingCentral is headquartered in Belmont, California, and has offices around the world. RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you are hired in Denver, CO the compensation range for this position is between $73,500 and $105,000 for full-time employees, in addition to eligibility for variable pay, equity, and benefits. Benefits may include, but are not limited to, health and wellness, 401k, ESPP, vacation, parental leave, and more! The salary may vary depending on your location, skills, and experience. #LI-IG1

Say hello to opportunities. It's not everyday that you consider starting a new career. We're RingCentral, and we're happy that someone as talented as you is considering this role. First, a little about us, we're a $2 Billion annual revenue company with double digit Annual Recurring Revenue (ARR) and a $93 Billion market opportunity in UCaaS, Contact Center and AI-powered adjacencies. We invest more than $250 million annually to ensure our AI-enabled technology and platforms meet or exceed the needs of our customers. RingSense AI is our proprietary AI solution. It's designed to fit the business needs of our customers, orchestrated to be accurate and precise, and built on the same open platform principles we apply to our core software solutions. This is where you and your skills come in. We're currently looking for: Security Operations Center Analyst Job Type: Full-Time, 2 days on (08.00 PDT AM - 08.00 PDT PM) 2 days off Location: Denver, CO Department: Security This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business. About this role: As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral's global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel. Job Description: * Have proven skills in application security, security monitoring, incident response and intrusion analysis * Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data * Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills * Demonstrated track record of quality processes in candidate's work history * Be strongly self-motivated with an aptitude for both individual and team-oriented work * Have experience following and refining standard operating procedures and playbooks Responsibilities: * Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment * Engage teams within and outside of RingCentral to mitigate and resolve cases * Maintain relevant documentation and audit artifacts * Identify and track suspicious system activity * Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems * This role participates in on-call rotations Qualifications / Requirements: * 2+ years in a security engineering, SRE, or SOC roles in a cloud services environment * Experience with SIEM * Experience investigating security incidents * Basic knowledge AWS or GCP * Experience with IDS, case management, and related tools and practices * Experience with Linux, RedHat preferred * Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc. * Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP) Preferred Skills/Experience: * Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools * Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events * Strong knowledge of Microsoft Windows * Experience automating security tasks, including scripting, programming and/or SecDevOps * Experience working with global teams Any combination of the following certifications: * GCIA (GIAC Certified Intrusion Analyst) * GCIH (GIAC Certified Incident Handler) * GCIA (GIAC Certified Intrusion Analyst) * GCFA (GIAC Certified Forensic Analyst) * GNFA (GIAC Certified Network Forensic Analyst) * GCFE (GIAC Forensic Examiner) * GASF (GIAC Advanced Smartphone Forensics) * GICA GCTI (GIAC Certified Cyber Threat Intelligence) * GPEN (GIAC Certified Pentester) * GWAPT (GIAC Certified Web Application Pentester) * GPYC (GIAC Certified Python Coder) * OSCP (Offensive Security Certified Pentester) What we offer: * Comprehensive medical, dental, vision, disability, life insurance * Health Savings Account (HSA), Flexible Spending Account (FSAs) and Commuter benefits * Voluntary supplemental health coverage and life insurance * 401K match and ESPP * Paid time off and paid sick leave * Paid parental and pregnancy leave * Family-forming benefits (IVF, Preservation, Adoption etc.) * Emergency backup care (Child/Adult/Pets) * Employee Assistance Program (EAP) with counseling sessions available 24/7 * Free legal services that provide legal advice, document creation and estate planning * Employee bonus referral program * Student loan refinancing assistance * Employee 1:1 coaching, perks and discounts program RingCentral's IT team ensures company data is accessible, secure, and optimized in ways that provide maximum competitive advantage. We are constantly discovering, developing and deploying innovations that power productivity and drive better decisions for our customers. Our IT professionals are talented, ambitious, out-of-the-box thinkers who love to learn on the job-planning, deploying and maintaining state-of-the-art technology to deliver flawless performance 24/7/365. RingCentral's work culture is the backbone of our success. And don't just take our word for it: we are recognized as a Best Place to Work by Glassdoor, the Top Work Culture by Comparably and hold local BPTW awards in every major location. Bottom line: We are committed to hiring and retaining great people because we know you power our success. About RingCentral RingCentral, Inc. (NYSE: RNG) is a leading provider of business cloud communications and contact center solutions based on its powerful Message Video Phone (MVP) global platform. More flexible and cost effective than legacy on-premises PBX and video conferencing systems that it replaces, RingCentral empowers modern mobile and distributed workforces to communicate, collaborate, and connect via any mode, any device, and any location. RingCentral is headquartered in Belmont, California, and has offices around the world. RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you are hired in Denver, CO the compensation range for this position is between $73,500 and $105,000 for full-time employees, in addition to eligibility for variable pay, equity, and benefits. Benefits may include, but are not limited to, health and wellness, 401k, ESPP, vacation, parental leave, and more! The salary may vary depending on your location, skills, and experience. #LI-IG1

Iridium is an award-winning and innovative satellite communications company with bragging rights to the only network that offers voice and data connectivity anywhere in the world. For over 20 years, Iridium's unique network and services have supported critical communications needs for individuals, businesses, and the evolving Internet of Things. At Iridium, we understand the importance of staying connected and the limitations of traditional communications networks. People across the globe, including first responders, humanitarians, global militaries, scientific researchers, and lone workers, as well as ships, aircraft and remote operations all rely on Iridium to stay connected. We take our responsibility for providing these essential communications very seriously and pride ourselves on offering a reliable lifeline when needed. Likewise, Iridium is committed to providing an exciting and innovative workplace, where employees are challenged to think outside the box and collaborate on new, bold ideas and solutions. Our talented teams are passionate about their work and the impact our company makes around the world. Iridium fosters an empowering and inclusive culture that allows employees to genuinely be their best selves. We are looking for others who want to join this truly unique company that celebrates our employees and provides the opportunity to truly make a difference in the world. What We're Looking For: If you enjoy learning about and working with breakthrough technologies and are enthusiastic about working in the space industry, then you will be excited about the Senior Software Engineer opening with Iridium for a Space Development Agency (SDA) project. As the Senior Software Engineer within the Ground Systems Development team, you will apply cutting edge technologies to rapidly develop and deploy ground system operations and user service capabilities within a satellite operations environment. Additionally, the Senior Software Engineer will identify and autonomously implement ideas/solutions within the larger development team to support cross-functional efforts across all areas of ground system software development. What You'll Do: Develop high performing/scalable App Cyber Security architecture and implementation to meet the requirements of the SDA project Engage in cross-team DevOps, Ground and Constellation development to support AWS PaaS deployment environment and automation. Develop Work within the Agile/Scrum framework for software development (Atlassian tool suite desired) Create or maintain build environments for software products Play a key role in planning and executing software releases per stakeholder/program schedules and budgets Update issue/feature data in Atlassian Project/Software tracking tools Follow existing Iridium processes for Change Control, Prioritization, Risk Management, Commercial off-the-shelf (COTS) Management, Build and Test software deployments and use advanced knowledge to assist in development of process/procedure documentation materials Edit, structure and present data, concepts and arguments clearly and succinctly through briefings and documentation Respond to questions within scope from stakeholders, as appropriate What You'll Need to Succeed: Bachelor of Science degree in Computer Science, or other engineering discipline 8+ years software programming experience Coding experience on Agile based teams Excellent communication skills, with the ability to clearly convey products, deliverables, analyses, and/or issues to groups outside of your team or those who are unfamiliar with the topic Have confidence and be able to easily build relationships with leadership and colleagues outside of your team Possess an analytical mindset, with the ability to understand a situation or problem and think critically to make decisions and come up with out-of-the-box solutions Be proactive in providing feedback and be enthusiastic in sharing your knowledge with others Capable of prioritizing your own tasks and potentially the tasks of others while making sure deadlines are met Proactivity in seeking out ways to continuously improve yourself and gain new knowledge, including the ability to learn the different software that make up the System Performance and Analysis software Ability to comprehend technical documentation Have a positive attitude to take on ever increasing software development tasks Passion for working in a team driven environment consisting of operators, software testers, senior developers, and system engineers Things That Would be Great if You Brought to the Table: Experience with the following technologies: Design and implementation of Role-based Access Control Keycloak / Vault / IPA / IAM mTLS / SSL or security protocol equivalent Cryptography and PKI/Certifications Authentication and Authorization architecture Design and implementation of Kubernetes auto-deployment to AWS (Helm Charts) Linux based environments and bash shell scripting Security Vulnerability Analysis and Procedures (CVE, TLS) Terraform Python / Java / C++ / Type Script / Perl RESTful / HTTP / ELK or similar / WebSockets XML / JSON / SQL SQL: (e.g., PostgreSQL) and NoSQL based DBs (e.g., Mongo) js / Apache Web Server Assist in software development response to security findings Atlassian management/software development tools: Jira / Git / Crucible / Confluence Micro services architecture Automated testing frameworks Gov and non-Gov Amazon Web Services (AWS) cloud environments We'll Also Need You To: This position directly performs under, supports, or is exposed to a U.S. government contract. To comply with the requirements of Iridium's U.S. government contracts, applicants for this position must be U.S. citizens. Work Environment: This position primarily works in an office setting and is largely sedentary with the majority of the position working with a computer. The role typically requires the use of basic office equipment such as a phone, video, computer, keyboard, mouse, and printer. Iridium is an Equal Opportunity Employer, including individuals with disabilities and protected veterans.

Role: Network Security Architect Duration: 6+ Months BGV will be done for the selected candidates. Job Functions (Network & Security Architect) Performs analysis of network security needs and contributes to design, integration, and installation of hardware and software. Analyzes, troubleshoots, and corrects network problems remotely and on-site. Maintains and administers perimeter security systems such as firewalls and intrusion detection systems. Modifies and maintains network security policy. Installs and maintains Cisco routers and Cisco switches Hands on experience on Cisco Nexus switches, Cisco ASR series routers, Cisco Fabric switches.\ Implements and administers IP load balancing with Citrix NetScaler, F5 load balancers and Big/IP, hardware SSL accelerators, and other software/hardware as necessary. Designs and implements remote connectivity solutions including IPsec VPN, PPTP, and SSLVPN Design, configure, and implements Citrix Presentation Server solutions Troubleshoots Windows 2012/2008/2003 permission and other related issues Builds and integrates new application servers including file and print, database, web, mail, and servers to support call center applications. Monitors security system logs (i.e. intrusion detection system, firewall system logs, etc.) and reports on discovered anomalies or problems (i.e. insufficient disk space, inappropriate access patterns) on a weekly basis. Meet with Business and Engineering teams to develop understanding of network & security requirements. Based on these requirements design the overall changes to the network solution across both Public and Private cloud including VPC & VLAN configuration, ports to be opened, ACLs, firewall rule changes. Tests new computer/router/switch hardware and software solutions prior to implementation. Administers and configures Windows 2008, Windows 2003, and Unix-based systems, as needed. Uses sniffers and other tools to troubleshoot and isolate network problems. Assists with network security assessments for potential business partners. Keeps fully abreast of trends and changing technologies as they relate to IT and Network Engineering and Information Security fields. Engages in continuous process improvement. Performs other related duties as may be required. Prior hands-on professional experience must include Windows 2008, Windows 2003, Windows XP, Juniper Firewalls, and Checkpoint Firewalls. Cisco ASA and/or Linux experience would be a plus. Working knowledge of operating systems including Windows 2008, Windows 2003, Windows 2000, Windows XP, and UNIX. Expertise on network security, Juniper firewalls, Checkpoint firewalls, intrusion detection systems, authentication mechanisms, encryption technologies, and networking protocols including SMTP, HTTP, DNS, TCP/IP, and SNMP Strong analytical, reasoning, and organizational skills are essential. Excellent verbal and written communications skills are essential. Ability to establish and maintain effective work relationships with all levels of personnel both internally and externally; e.g. leadership, executives, clients, vendors, and agencies. Ability to work in and constructively contribute to team work environment and meet stringent deadlines. Ability to prioritize and handle multiple tasks simultaneously. Attention to detail and follow through including the ability to document work. Ability to maintain the confidentiality of information is essential. Minimum of 10-12 years directly related work experience in network, security administration\ engineering. Acquire a complete understanding of a company's technology and information systems to be able to advice on overall security and network challenges. Review and address all vulnerabilities and security incidents, recommending strategies and solutions for risk mitigation. Develop and build security posture with respect to: user administration, privileged identity management, intrusion detection, firewall configuration, DDOS, WAF and other security related components; continuously update Somos on new vulnerabilities; assess risks and solutions and engage with third parties and OEMs as needed. Develop concrete plans. Reviewing results of monthly Vulnerability Scans, engaging infrastructure and application teams as needed to address vulnerabilities. Support for ISO27002 security audit and updates to security policy, security training program and vendor security requirements as required. Manage Antivirus policies on servers and Endpoints. Update server and antivirus clients. Plan, research and design robust security architectures for any IT project. Manage Network Firewalls, Web Application Firewalls and IDS/IPS. Research security standards, security systems and authentication protocols Infrastructure and Operations Services Statement of Work. Develop requirements for local area networks (LANs), wide area networks (WANs), virtual private Networks (VPNs), routers, firewalls, and related network devices. Review and approve installation of firewall, VPN, routers, IDS and servers. Test final security structures to ensure they behave as expected Provide technical supervision for (and guidance to) a security team. Define, implement and maintain security policies and procedures. Oversee security awareness programs and educational efforts. Please respond with your word resume and requested details: Full Name : Work Authorization: Contact Number : Email ID : Skype ID: Current location: Willing to relocate : Rate/hr : Additional Information All your information will be kept confidential according to EEO guidelines.

GCI embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry. At GCI, we solve the hard problems. As a Cyber Security Analyst, a typical day will include the following duties: Description GCI is looking for a highly motivated and experienced expert Cyber Security Analyst to join our team. The ideal candidate will have a strong understanding of cyber security principles and practices, as well as experience with a variety of security technologies. In this role, you will be responsible for the overall security of our organization's information systems and networks. Duties and Responsibilities Uses data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats. Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events. Evaluates, tests, recommends, coordinates, monitors and maintains cybersecurity policies, procedures and systems, including access management for hardware, firmware and software Ensures that cybersecurity plans, controls, processes, standards, policies and procedures are aligned with cybersecurity standards Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security. Develops techniques and procedures for conducting cybersecurity risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents such as intrusion, frauds, attacks or leaks. Provides advanced guidance and leadership to less- experienced cybersecurity personnel. May serve as a team or task leader. (Not a people manager) Education Requirement BA/BS (or equivalent experience) Experience Requirement 8-10 years of experience Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

GCI embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry. At GCI, we solve the hard problems. As a Cyber Security Analyst, a typical day will include the following duties: Cyber Security vulnerability analyst to help identify, analyze, and mitigate cyber vulnerabilities across networks and systems. Key Responsibilities Collaborate with other cyber defense teams to maintain continuous situational awareness of current and emerging cyber threats. Analyze data to identify and prioritize vulnerabilities and weaknesses in our systems and networks Provided detailed remediation and mitigation plans, track via Key Performance Indicators (KPIs) Conduct research on threat actors, malware, exploit methods, and vulnerabilities to stay up-to-date on current cyber threats. Develop and maintain cyber threat reports and presentations for both technical and non-technical audiences. Provide input on the implementation of processes, procedures, and technological solutions to mature our operational program and team cadence. Respond to internal team and stakeholder inquires on vulnerabilities and related topics. Collaborate with peers to identify and address cyber gaps and develop solutions to address cyber needs. Conduct proactive data gathering to better understand the political, economic, and behavioral aspects of threats, cyber activities, and threat actors. Assist with threat data enrichment, curation, automation, and dissemination within a threat intelligence platform. Required Qualifications: Bachelor's degree or six additional years of relevant experience 8+ years of experience in cybersecurity, vulnerability management, or a related field Strong analytical and problem-solving skills Excellent communication and collaboration abilities Strong understanding of types of vulnerabilities, network attacks, and current industry threats Experience with data analysis and data-driven decision making Familiarity with threat intelligence platforms and tools Ability to travel locally and nationally as needed Desired Qualifications: Degree in Computer Science, Information Systems, Engineering, Cybersecurity, or related field Certifications in cybersecurity or related field (e.g. CISSP, CEH) Experience with vulnerability management tools and platforms Strong understanding or risk management principles and practices Experience with process improvement and implementation Experience with tools including: Confluence, ServiceNow, JIRA, Tableau, PowerBI, Excel Salary Range $145,000 - $189000 *A candidate must be a US Citizen and requires an active/current TS/SCI with Polygraph clearance. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

Principal Information Security Analyst (Tier 2) As a Principal Information Security Analyst within Gen Digital's global Security Operations Center (SOC), you will play a key role in strengthening threat detection and response across the organization. The role focuses on improving SOC monitoring and detection processes through technical expertise, continuous development, and close collaboration with other security teams. In this position, you will serve as a senior specialist, leading automation and detection engineering efforts, mentoring junior analysts and contributing to projects that enhance security visibility and overall SOC performance. Operating in a follow-the-sun model, the SOC ensures 24/7 global coverage, with regional teams working during their respective business hours and sharing on-call responsibilities for weekend. Key Responsibilities: Monitor, analyze, and correlate security alerts and events across multiple platforms (SIEM, WAF, EDR, email, cloud, network, and threat intelligence tools) to identify and validate suspicious or malicious activity Continuously develop and fine-tune detection rules, correlation searches, security policies, and dashboards to improve visibility, reduce false positives, and increase alert accuracy across security platforms Support and mentor Tier 1 analysts in alert triage, escalation quality, and use of tools Collaborate with security engineers on automation and enrichment initiatives to streamline operational workflows and improve detection efficiency Maintain complete and up-to-date documentation for all detection use cases, workflows and process improvements Participate in security projects and collaborate with internal stakeholders (e.g., Incident Response, Security Engineering, Application Security, and IT) to enhance detection coverage, visibility, and response capabilities Support the execution of incident response playbooks Qualification and Work Experience: 3-5 years of hands-on experience in SOC operations, cybersecurity monitoring, or related areas such as detection engineering or threat analysis Solid understanding of networking concepts (TCP/IP, DNS, HTTP/S) and how they apply to security monitoring and threat analysis Strong knowledge of cybersecurity principles, common attack techniques, and threat types (e.g., phishing, malware, brute force, web application attacks) Proven experience working with security logs, alerts, and structured data across multiple platforms (SIEM, EDR, WAF, cloud, and network telemetry) Hands-on experience with SIEM platforms - Splunk preferred - including detection content development, rule tuning, and dashboard creation Familiarity with Web Application Firewall (WAF) technologies and the ability to analyze or tune related alerts and policies Understanding of cloud security concepts and experience with monitoring tools for major providers (AWS, Azure, GCP) Working knowledge of scripting or automation (e.g., Python, PowerShell, or API-based integrations) to support analysis and enrichment workflows Experience using AI-based tools to support daily SOC operations, including data analysis, investigation, documentation, and collaboration Strong analytical and problem-solving skills with attention to detail and curiosity for continuous learning Effective communication and documentation skills in English, both written and verbal Experience collaborating across teams (e.g., Security Engineering, Incident Response, Application Security) on detection improvements or automation projects Prior experience in a Security Operations Center (SOC) or similar environment is highly preferred Familiarity with the fintech environment or experience supporting financial services infrastructure is considered a strong advantage #LI-AS1 Gen is proud to be an equal-opportunity employer, committed to diversity and inclusivity. We base employment decisions on merit, experience, and business needs, without considering race, color, national origin, age, religion, sex, pregnancy, genetic information, disability, medical condition, marital status, sexual orientation, gender identity or expression, military or veteran status, or other unlawful factors. Gen prohibits discrimination based on these protected characteristics and recruits talented candidates from diverse backgrounds. We consider individuals with arrest and conviction records and do not discriminate against employees for discussing their own pay or that of other employees or applicants. Learn more about pay transparency. To conform to U.S. export control regulations, applicant should be eligible for any required authorizations from the U.S. Government.

The Systems Engineer position is responsible for providing full cycle implementation and support of customer systems, while working across multiple company departments to ensure full client satisfaction. Under the direction of a manager or dispatcher, coordinates the design and maintenance of all access control, intrusion, and video surveillance systems. Incumbent receives and evaluates work orders and requests, investigates requests and troubleshoots problems where appropriate, establishes priorities and coordinates with contractors, when required. Requirements Essential functions and responsibilities: Assists with security systems integration, mapping and software updates and helps train personnel in the use of these systems. Assists on new projects in both existing areas and new construction helping with security assessments, vendor selection, technology upgrades, product selections, testing, field verification of systems and inspection of work in progress for compliance with standards Assess work sites, conditions, and logistics for each project; Develop Method of Procedure based on pre-project assessment. Design, develop and provide documentation of systems, configurations, and other pertinent information for the customer. Communicate with clients to resolve issues in a professional and confidential manner; Develop and execute client specific solutions. Manage the allocation of project resources, including software, hardware, tools, and related items specific to each customer and/or project. Direct the work responsibilities of union labor personnel based on specific project needs. Design and oversee training programs for new and existing customers; Determine which customers receive training. Collaborate with Customer Relationship Managers on demonstrations for new and potential clients. Perform installation, configuration, programming, and final commissioning of customer systems. Work collaboratively with installation, project management and engineering teams. Perform infrastructure services, including pulling cables, installing wall, and ceiling cabling, and installing surface mounted devices, as required. Perform system wiring and terminations services, as required. Deliver on-going remote and on-site technical support for existing customers and systems. Additional responsibilities may be required as necessary, including but not limited to: Provide internal support for basic trouble shooting. Organizes and manage parts stock and tools. Perform other duties as needed. Success factors/job competencies: Effectively communicate both in writing and verbally Work independently and prioritize multiple tasks and adapt to needed change Analysis Mechanical aptitude Comprehend technical language and read and interpret blueprints, wiring diagrams, and schematics Safety orientation Customer Focus Attention to Detail Teamwork/Collaboration Stay abreast of changes in security technology Physical demands and work environment: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Individual will be required to travel to customer sites as needed. While performing the duties of this job, the employee is occasionally exposed to moving mechanical parts. The employee is occasionally exposed to outside weather conditions and risk of electrical shock. Individual will regularly be required to lift, push, pull, and carry up to 50 pounds, and occasionally up to 75 pounds. Incumbent will be required to use a computer with keyboard, telephone, or handheld mobile device for extended periods of time, and office machinery as needed. Incumbent must be able to read, see, hear, and speak. Workdays and Shifts: Position works Monday-Friday, daylight hours, and additional time as needed to complete work. Education/Certification(s)/License(s) required: Bachelor's Degree in Electronics, Information Technology or related field, or equivalent experience. May be required to participate in safety trainings and/or certifications provided by the Company or customers. Valid driver's license, as employee will be required to travel to local and overnight client sites as needed. Manufacturer specific certifications, as required. Responsible to maintain active certifications and obtain new and updated certifications as required by the Company. Experience/Other required: Position requires two (2) to three (3) years of relevant experience in the electronic services. Strong knowledge of Microsoft Office. Strong computer skills with advanced software aptitude. Security systems to include, service and maintenance across a broad spectrum of access control, intrusion and video surveillance systems such as, Genetec, Milestone, Bosch, and DMP. Applicants must be currently authorized to work in the United States on a full-time basis. Visa sponsorship is not available for this position. This is a full-time, in-person position, and candidates must be able to work from our office located in Pittsburgh, Pennsylvania.