Cyber security analyst jobs in Las Vegas, NV - 1,207 jobs

At Pave, we're building the industry's leading compensation platform, combining the world's largest real-time compensation dataset with deep expertise in AI and machine learning. Our platform is perfecting the art and science of pay to give 8,500+ companies unparalleled confidence in every compensation decision. Top tier companies like OpenAI, McDonald's, Instacart, Atlassian, Synopsys, Stripe, Databricks, and Waymo use Pave, transforming every pay decision into a competitive advantage. $190+ billion in total compensation spend is managed in our workflows, and 58% of Forbes AI 50 use Pave to benchmark compensation. The future of pay is real-time & predictive, and we're making it happen right now. We've raised $160M in funding from leading investors like Andreessen Horowitz, Index Ventures, Y Combinator, Bessemer Venture Partners, and Craft Ventures. Research & Design Org Pave's R&D pillar includes our data science, engineering, information technology, product design, product management, and security teams. This organization builds, maintains, and secures a platform used by more than 8,500+ client organizations. Our engineering team moves between ideation, scoping, and execution in a matter of days while closely iterating with cross-functional partners on requirements. At Pave, we use TypeScript, Node.js, and React, hosted on GCP. Compensation strategy is broken down into 3 pillars - compensation bands, planning workflows, and total rewards communication. We build products that make these processes seamless for customers. Over the next year, our roadmap is focused on enhancing the entire compensation lifecycle: from philosophy definition to market trend analysis, band adjustments, merit cycles, and employee communication. We're seeking passionate engineers who are excited about building robust, data-rich systems that simplify complex compensation processes at scale. Security Team @ Pave Security is part of everything we do at Pave. With amazing growth comes amazing engineering and security challenges. This is an opportunity to have a huge impact and run programs at a company that doesn't need to be convinced why security is important. Our customers count on us to secure some of their most sensitive data, and that trust is central to Pave. It's the only way we can unlock a labor market built on trust, and change the world of compensation. What You'll Bring 5+ years of application security experience as part of a blue team Expert knowledge of OWASP Top 10 and application security Security design review experience Experience in running bug bounty programs and pentesting Outstanding communication and partnership skills with software engineers Ideally, experience in Google Cloud Security best practices Compensation Salary is just one component of Pave's total compensation package for employees. Your total rewards package at Pave will include equity, top-notch medical, dental, and vision coverage, an unlimited PTO policy, and many other region-specific benefits. Your level is based on our assessment of your interview performance and experience, which you can always ask the hiring manager about to understand in more detail. The targeted cash compensation for this position is (level depends on experience and performance in the interview process): $205,700 - $278,300 Life @ Pave Since being founded in 2019, Pave has established a robust global footprint. Headquartered in San Francisco's Financial District, we operate strategic regional hubs across New York City's Flatiron District, Salt Lake City, and the United Kingdom. We cultivate a vibrant, collaborative workplace culture through our hybrid model, bringing teams together in-person on Mondays, Tuesdays, Thursdays, and Fridays to foster innovation and strengthen professional relationships. Benefits @ Pave At Pave, career advancement drives everything-roles expand, responsibilities deepen, and compensation rises alongside your professional growth. What we provide Complete Health Coverage: Comprehensive Medical, Dental and Vision coverage for you and your family, with plenty of options to suit your needs Time off & Flexibility: Flexible PTO and the ability to work from anywhere in the world for a month Meals & Snacks: Lunch & dinner stipends as well as fully stocked kitchens to fuel you Professional Development: Quarterly education stipend to continuously grow Family Support: Robust parental leave to bond with your new family Commuter Assistance: A commuter stipend to help you collaborate in person Vision Our vision is to unlock a labor market built on trust Mission Our team's mission is to build confidence in every compensation decision Are you ready to help our customers make smarter, more effective compensation decisions? Pave is an Equal Opportunity Employer. We value diversity and are committed to creating an inclusive environment for all employees. Contact If you're interested in future opportunities at Pave, you can inquire about roles or create a Job Alert through our channels. #J-18808-Ljbffr

Swiftly is on a mission to help cities move more efficiently. We are the leading transit data platform for agencies to share real‑time passenger information, manage day‑to‑day operations, and improve service performance. Today, over 180 transit agencies in 12 countries - including LA Metro, MARTA, SEPTA, and MBTA - rely on Swiftly to improve on‑time performance by up to 40% and increase passenger information accuracy by up to 50%. The result is better service reliability, increased ridership, and more efficient transit operations. Even though Swiftly's HQ office is located in San Francisco, CA, we are open to candidates in most locations across the U.S. as well as Ontario and British Columbia, Canada. At this time we are unable to provide Visa sponsorship. Engineering at Swiftly Engineering at Swiftly is not only about writing code - we believe in creating empowered product teams that work together to conceptualize new features and bring them to life. Each team aims to strike a balance between delivering incremental improvements, creating prototypes to test new ideas and mitigate risks, and building scalable software using industry best practices. We're guided by a mission to positively impact transit riders, and we embrace humility and intentionality in how we make technical decisions so that we best meet our customers' needs. About the Role We're looking for a Lead Security Engineer to join our Platform team and mature Swiftly's security posture. We believe excellent security isn't just about tools and controls; it's about empowering product, infrastructure, and corporate IT teams across our organization to make secure decisions every day. In this role, you'll partner closely with engineering, product, and go‑to‑market teams to design secure solutions, build DevSecOps tooling, and drive our compliance roadmap. You'll balance strategic initiatives with hands‑on work in our cloud‑native environment. We're looking for someone equally comfortable working on codebases and leading cross‑functional initiatives, a force multiplier who can train teams, represent security to customers and executives, and make security a natural part of how Swiftly ships products. We use AI tools for scheduling and summarization in our hiring process. We do not use AI tools to make decisions about who moves forward or to assess the strength of candidates. Every application is reviewed and all hiring decisions are made by Swiftly team members. This is an active, open role that we are currently hiring for at Swiftly. What You'll Do Make Swiftly Secure Own Swiftly's security risk register and threat models; identify, prioritize, and drive remediation of risks across application and infrastructure. Design secure architectures for our SaaS platform, mobile applications, and IOT/Hardware Integration, focusing on authentication, authorization, data protection, and network boundaries. Recommend, implement, and manage security tools end‑to‑end. Build DevSecOps guardrails into CI/CD so vulnerabilities, misconfigurations, and license issues surface early. Conduct internal security assessments and coordinate engagements with external penetration testers. Own security policies and standards; ensure they're practical, adopted, and measurable. Define standards for secure adoption of AI coding assistants, building reusable patterns, custom configurations, and guardrails that help developers move fast safely. Compliance & Customer Trust Lead renewals and continuous readiness for existing certifications like SOC 2. Proactively identify security frameworks required for international expansion; scope cost, level of effort, and timelines to inform market entry decisions; and lead execution of new certifications. Respond to customer security and compliance inquiries and support product marketing with security content. Incident Response & Detection Design and maintain security incident response plans, playbooks, and escalation paths. Serve as an escalation point for security incidents; lead triage, root cause analysis, and remediation. Security Leadership Define and maintain security KPIs and dashboards for executive and board reporting. Give teams visibility into their security posture and coach them to improve. Influence roadmap prioritization to ensure security and compliance are first‑class concerns. Mentor engineers in secure design and help grow a security‑aware culture across Swiftly by delivering security training and office hours for developers and other stakeholders. Drive corporate IT security strategy, including endpoint hardening, email security, IAM standards, and periodic access reviews. What will set you up for success 5+ years of experience in security engineering with both strategic and hands‑on work. Strong experience securing cloud‑native environments (AWS preferred), including IAM, networking, logging/monitoring, and secrets management. Hands‑on experience with infrastructure‑as‑code (Terraform) and policy‑as‑code frameworks (OPA, Sentinel, or similar). Background building security into CI/CD pipelines and development workflows. Familiarity with container and orchestration security. Excellent threat modeling and risk assessment skills; able to translate complex risks into clear options and tradeoffs. Experience with compliance frameworks (SOC 2 preferred) and audit processes. Strong communication skills; comfortable working across technical and non‑technical teams. Self‑directed and comfortable operating with autonomy. Nice to Haves Relevant certifications (CISSP, cloud security certifications). Experience advising on security for AI/ML or LLM‑powered features. Mobile application security experience (Android preferred). Experience with GRC and compliance platforms. Background in application security or penetration testing. Experience with international compliance frameworks. Familiarity with regulated industries or public sector requirements. Experience with physical device security (IoT, embedded systems, or field‑deployed hardware). Experience with Mobile Device Management (MDM) solutions for enterprise or fleet deployments. Pay Range In accordance with pay transparency laws, please see the approximate salary ranges below. These ranges represents the anticipated low and high end of the salary for this position. Actual salaries will vary and are based on a multitude of non‑discriminatory factors including final role leveling decisions, a candidate's relevant work experiences/skills, and geographic location. Salary is one component of Swiftly's total compensation package, which also includes stock options, competitive benefits, 401(k)/RRSP matching, a fantastic team and culture, opportunity to have a huge impact, emphasis on professional growth and holistic wellness, and other perks. US Salary Range: $140,000 - 200,000 Canadian Salary Range: $165,000 - 200,000 Beyond the Skills We are looking for candidates who are passionate about mobility, sustainability, or mission‑oriented projects that have a significant real‑world impact. Ideal candidates encompass the core values of our company: Team. Together, we are more effective and better supported. Impact. Drive impact for our customers, our company, and all of our teams. Diversity. See differing perspectives as ways to address our weaknesses and find new strengths. Communication. Assume others internally and externally have good intentions. Feedback. We share feedback because we want each other to grow professionally and personally. Growth. Foster personal, professional, and company growth. Benefits Competitive salary Equity compensation (company ownership) for every employee Medical, Dental and Vision Retirement with Employer Match Flexible Spending Account (FSA) Home office setup reimbursement Monthly cell/internet reimbursement Monthly "Be Well" stipend Flexible PTO with a recommended minimum Flexible work environment 16 paid holidays - including months without U.S. national holidays 8 fully paid weeks of leave for childbirth/adoption Travel note Swiftly employees can generally expect to travel 1-2 times a year for in‑person company or team offsites. As a fully distributed company, we consider these offsites important for cultivating strong relationships across our teams! Attending these in‑person is expected and encouraged, although we understand everyone has different personal circumstances and we will consider requests for exceptions. Customer‑facing team members and other specific roles may be expected to travel more frequently. Equal Opportunity Statement We are an equal opportunity employer - we are committed to a workplace that is as dynamic, diverse, and passionate as the communities we serve. #J-18808-Ljbffr

A leading tech company in Palo Alto is seeking a Security Engineer to ensure security best practices across systems. Responsibilities include designing security testing infrastructure, performing audits, and mentoring team members. Ideal candidates have over 5 years of experience in systems security, strong knowledge of cryptography, and the ability to work with distributed teams. Familiarity with Bitcoin and the Lightning Network is highly desirable. #J-18808-Ljbffr

A leading data protection firm is seeking a Machine Learning Engineer to develop GenAI architectures and secure AI workflows. Ideal candidates should hold a PhD or MS in Computer Science and possess 2+ years of relevant experience. Key responsibilities include developing and testing machine learning models, conducting experiments, and collaborating within a team. The role offers competitive compensation along with benefits including health, PTO, and 401K options. #J-18808-Ljbffr

About xAI xAI's mission is to create AI systems that can accurately understand the universe and aid humanity in its pursuit of knowledge. Our team is small, highly motivated, and focused on engineering excellence. This organization is for individuals who appreciate challenging themselves and thrive on curiosity. We operate with a flat organizational structure. All employees are expected to be hands‑on and to contribute directly to the company's mission. Leadership is given to those who show initiative and consistently deliver excellence. Work ethic and strong prioritization skills are important. All engineers are expected to have strong communication skills. They should be able to concisely and accurately share knowledge with their teammates. About the Role You will be responsible for leading day‑to‑day security threat management. You will help identify and manage potential incidents and work with partner teams on known or suspected security threats. You will support threat intelligence, threat hunting, intrusion detection, and incident response efforts that adhere to, and push forward, best practices. Responsibilities Drive continual improvement in processes, procedures and automations to improve the quality and effectiveness of the team. Participate in a 24/7 on‑call rotation performing security incident response Commandeering security incidents and updating stakeholders. Identify and develop new detection use cases and optimize existing detections. Collaborate on technical directions and solutions with other teams. Research and analyze patterns in security events across X's global infrastructure. Identify, design, and lead threat hunting missions to quantify and reduce threats. Manage and support the log collection, security scanning, intrusion detection, and other security‑related systems. Design and assist in the development of automation to reduce false positives and handle events automatically. Analyze the security posture of systems via testing and vulnerability impact analysis. Required Qualifications 2+ years of relevant information security experience Self starter, can receive a task and execute with minimal supervision Strong Python scripting skills for implementing security automation Knowledge of networking and mac OS, Windows or Linux operating systems. Knowledge of cloud security fundamentals and practices (vendor agnostic). Experience managing and/or deploying security technology. Experience with building queries and dashboards for security monitoring. Knowledge of current threats and techniques and a desire to research and learn more. Experience with malware analysis, forensics or penetration testing. Problem solving skills or experience with troubleshooting. Preferred Qualifications Elastic / OpenSearch or similar platforms Open Source security automation tooling Annual Salary Range $140,000 - $180,000 USD Benefits Base salary is just one part of our total rewards package at xAI, which also includes equity, comprehensive medical, vision, and dental coverage, access to a 401(k) retirement plan, short & long‑term disability insurance, life insurance, and various other discounts and perks. xAI is an equal opportunity employer. California Consumer Privacy Act (CCPA) Notice #J-18808-Ljbffr

Loft Orbital is revolutionizing access to space by building reliable, shareable satellites that drastically reduce the time and complexity traditionally required to get to orbit. We operate satellites, fly customer payloads, and handle entire missions from end‑to‑end. We're a close‑knitted team of space enthusiasts, software experts, and cutting‑edge technologists, all working together to make space simple for our customers. As a Senior Security Engineer on our Security and Compliance Team, your mission will be to ensure that our highly automated, containerized, and globally distributed infrastructure remains secure throughout its lifecycle, from architecture to incident response. You'll be at the heart of our DevSecOps efforts, collaborating directly with infrastructure, software, product, and solution teams to scale Loft's security maturity while embracing our startup agility and culture. This is a hands‑on, deeply collaborative role, offering broad scope, rapid growth opportunities, and yes, a chance to contribute to space missions. About the Role: Champion DevSecOps best practices by designing and implementing security controls directly into our CI/CD pipelines (e.g., GitLab CI). Lead and automate application and infrastructure security assessments, including threat modeling and code review. Partner with developers and SREs to identify, remediate, and prevent vulnerabilities through secure design and practical guidance. Design, build, and maintain secure architecture patterns for containerized, cloud‑native, and distributed workloads. Develop and maintain automated security tooling, such as container image scanning, IaC validation, and policy‑as‑code. Collaborate on automated security tooling for container image scanning, IaC validation, and RBAC compliance. Support incident response workflows, including detection, forensics, root cause analysis, and post‑mortems. Provide technical mentorship and real‑time enablement to help teams adopt a “secure‑by‑default” mindset. Contribute to internal security tools and automation using Python, Go, or other modern languages. Continuously improve how we measure and scale security across our SRE and infrastructure platforms. Must Haves: Deep experience with cloud security in AWS, Azure, or GCP environments. Strong knowledge of container and Kubernetes security in production environments. Proficiency in at least one modern programming language (e.g., Python, Go, C++). Hands‑on experience with zero‑trust architecture, service mesh, and software‑defined networking. Solid understanding of DevSecOps pipelines, IaC tools, and secure build processes. Hands‑on experience with vulnerability scanning, SAST/DAST tools, and automated security testing. Proven success in fast‑paced, highly collaborative environments, ideally at a startup or scale‑up. Comfortable working closely with developers and SREs in an enablement‑first security culture. Clear, concise communication and documentation skills. Ability to thrive in a multicultural, globally distributed engineering team. Nice to Haves: Practical experience with policy‑as‑code (OPA, Sentinel, etc.). Understanding of software‑defined networking and security policy enforcement in mesh environments. Familiarity with modern SRE practices, observability, and resilience engineering. Contributions to open‑source security tools or frameworks. Interest or experience in space operations or aerospace systems. Some of Our Awesome Benefits: 100% company‑paid medical, dental, and vision insurance option for employees and dependents Flexible Spending (FSA) and Health Savings (HSA) Accounts offered with an employer contribution to the HSA 100% employer paid Life, AD&D, Short‑Term, and Long‑Term Disability insurance Flexible Time Off policy for vacation and sick leave, and 12 paid holidays 401(k) plan and equity options Daily catered lunches and snacks in office International exposure to our team in France Fully paid parental leave; 14 weeks for birthing parent and 10 weeks for non‑birthing parent Carrot Fertility provides comprehensive, inclusive fertility healthcare and family‑forming benefits with financial support Off‑sites and many social events and celebrations Relocation assistance when applicable $140,250 - $190,000 a year State law requires us to tell you the base compensation range for this role, which is $140,250- $190,000 per year. This is determined by your education, experience, knowledge, skills, and abilities. The salary range for this role is intentionally wide as we evaluate individuals based on their unique experience and abilities to fit our needs. Most importantly, we are excited to meet you, and see if you are a great fit for our team. What we can't quantify for you are the exciting challenges, supportive team, and amazing culture we enjoy. * Research shows that while men apply to jobs where they meet an average of 60% of the criteria, women and other underrepresented people tend to only apply when they meet 100% of the qualifications. At Loft, we value respectful debate and people who aren't afraid to challenge assumptions. We strongly encourage you to apply, even if you don't check all the boxes. Who We Are Loft: Space Made Simple. Founded in 2017, Loft provides governments, companies, and research institutions with a fast, reliable, and flexible way to deploy missions in orbit. We integrate, launch, and operate spacecraft, offering end‑to‑end missions as a service across Earth observation, IoT connectivity, in‑orbit demonstrations, national security missions, and more. Leveraging our existing space infrastructure and an extensive inventory of satellite buses, Loft is reducing years‑long integration and launch timelines to months. With more than 25 missions flown, Loft's flight heritage and proven technologies enable customers to focus on their mission objectives. At Loft, you'll be given the autonomy and ownership to solve significant challenges, but with a close‑knot and supportive team at your back. We believe that diversity and community are the foundation of an open culture. We are committed to hiring the best people regardless of background and make their time at Loft the most fulfilling period of their career. We value kind, supportive and team‑oriented collaborators. It is also crucial for us that you are a problem solver and a great communicator. As our team is international, you will need strong English skills to better collaborate, easily communicate complex ideas and convey important messages. With 4 satellites on‑orbit and a wave of exciting missions launching soon, we are scaling up quickly across our offices in San Francisco, CA | Golden, CO | and Toulouse, France. As an international company your resume will be reviewed by people across our offices so please attach a copy in English. #J-18808-Ljbffr

About Us At Hayden AI, we are on a mission to harness the power of artificial intelligence and machine learning to transform the way governments and businesses address real-world challenges. From optimizing bus lane and bus stop enforcement to pioneering digital twin modeling and beyond, our innovative mobile perception system empowers our clients to accelerate transit, enhance street safety, and drive forward a sustainable future. What the job involves Our Engineering teams work at the cutting edge of technology, leveraging AWS and GCP cloud services and developing our own Linux-based edge devices. As a dynamic startup, we understand the critical importance of cybersecurity in protecting our innovative solutions and ensuring the safety of our digital environment and customer data. We're looking for a passionate Security Engineer to lead our cybersecurity initiatives, safeguarding our code and infrastructure against the ever-evolving threats. You will manage security for our production and corporate systems, handle security alerts, implement policies, and collaborate with external customers on security needs. Responsibilities Develop and implement comprehensive security strategies for our cloud environments (AWS and GCP) and Linux-based systems. Design and implement public/private key management and PKI (Private Key Infrastructure) for our edge devices. Perform regular security audits, risk assessments, and penetration testing to identify vulnerabilities in our code and infrastructure. This includes conducting thorough code audits from a security perspective to ensure our applications are developed with the highest security standards. Design and manage security protocols for our edge devices, ensuring robust protection against external threats. Stay abreast of the latest cybersecurity trends and threats, applying this knowledge to fortify our defenses. This includes proactive monitoring and implementing fixes for zero-day vulnerabilities to prevent exploitation. Develop and enforce security policies and procedures, conducting security awareness training across the company to cultivate a security-first culture. Collaborate with development teams to integrate security measures into the software development lifecycle (SDLC), promoting security best practices for application development to mitigate risks from the outset. Respond swiftly to any security incidents, leading the investigation and remediation efforts to minimize impact. This includes managing the resolution of security breaches and ensuring that similar vulnerabilities are addressed across all projects. Working with our partners and clients to have deep technical discussion about security posture, review and discuss the security requirements and formulate the necessary changes to the engineering team. Manage and maintain CIS compliant OS images for our Cloud infrastructure and field devices. Must possess demonstrable knowledge of application security, security testing methodologies and application security testing automation. Qualifications Degree in Computer Science, Engineering, or related field. 6+ years of software engineering or equivalent experience. Experience with one of the core (Golang, Python) programming languages, scripting and automation. Strong knowledge of encryption protocols, public/private key management and PKI (Private Key Infrastructure). Strong understanding of network security, encryption practices, and secure coding principles. Proven experience in cloud security management (AWS, Azure, GCP). Familiarity with security policies and controls for internal corporate applications (Google Workspace, GitHub, Jira). Familiarity with security compliance standards relevant to our industry. Strong skills in managing security tools and vendor relationships. Excellent ability to develop and implement security policies and guidelines. Understanding of the block chain principles is a plus. Relevant certifications in security and cloud platforms are highly desirable. Benefits and Perks There are endless learning and development opportunities from a highly diverse and talented peer group, including experts in a wide range of fields (AI, Computer Vision, Government Contracting, Systems & Device Engineering, Operations, Communications, and more!) Options for 100% company paid medical, dental, and vision coverage for employees and dependents (for US employees) Flexible Spending Account (FSA) and Dependent Care Flexible Spending Account (DCFSA) Life, AD&D, Short and Long Term Disability Insurance Aflac Critical Illness, Accident Insurance & Hospital Indemnity Insurance MetLife Legal Plan(s) & Pet Insurance Farmers GroupSelect Auto & Home Insurance 401(k) with 3% company matching Professional development reimbursement Unlimited PTO Hybrid work opportunities Daily catered lunches in our San Francisco office Hayden AI is committed to creating a diverse and inclusive environment that fosters learning from each other. We celebrate people of diverse backgrounds, experiences, abilities, and perspectives. We are an equal opportunity employer and are committed to providing a work environment free of harassment and discrimination. Hayden AI is also committed to working with and providing reasonable accommodations to individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the interview process. To all recruitment agencies: Hayden AI does not accept agency resumes. Please do not forward resumes to our jobs alias, Hayden AI employees or any other company location. Hayden AI is not responsible for any fees related to unsolicited resumes. #J-18808-Ljbffr

EchoTwin AI is pioneering AI-driven infrastructure intelligence, redefining how cities are managed. Powered by a proprietary visual intelligence engine with full spatial reasoning, EchoTwin transforms municipal fleets into mobile urban sensors-creating living digital twins that provide real-time insights into infrastructure, compliance, and safety. By enabling municipalities to proactively monitor, predict, and resolve issues, EchoTwin helps build resilient, self-healing, and sustainable urban ecosystems. More than “smart cities,” EchoTwin is advancing the era of cognizant cities-urban environments with the awareness to see, think, and act on challenges in real time. What The Job Involves Our Engineering teams work at the cutting edge of technology, leveraging AWS and GCP cloud services and developing our own Linux-based edge devices. As a dynamic startup, we understand the critical importance of cybersecurity in protecting our innovative solutions and ensuring the safety of our digital environment and customer data. We're seeking a passionate Security Engineer to lead our cybersecurity initiatives and safeguard our code and infrastructure against ever-evolving threats. You will manage security for our production and corporate systems, handle security alerts, implement policies, and collaborate with external customers on security needs. Responsibilities Develop and implement comprehensive security strategies for our cloud environments (AWS and GCP) and Linux-based systems. Design and implement public/private key management and PKI (Private Key Infrastructure) for our edge devices. Perform regular security audits, risk assessments, and penetration testing to identify vulnerabilities in our code and infrastructure. This includes conducting thorough code audits from a security perspective to ensure our applications are developed with the highest security standards. Design and manage security protocols for our edge devices, ensuring robust protection against external threats. Stay abreast of the latest cybersecurity trends and threats, applying this knowledge to fortify our defenses. This includes proactive monitoring and implementing fixes for zero-day vulnerabilities to prevent exploitation. Develop and enforce security policies and procedures, conducting security awareness training across the company to cultivate a security-first culture. Collaborate with development teams to integrate security measures into the software development lifecycle (SDLC), promoting security best practices for application development to mitigate risks from the outset. Respond swiftly to security incidents, leading the investigation and remediation efforts to minimize impact. This includes resolving security breaches and ensuring that similar vulnerabilities are addressed across all projects. We work with our partners and clients to have deep technical discussions about security posture, review and discuss the security requirements, and formulate the necessary changes for the engineering team. Manage and maintain CIS-compliant OS images for our Cloud infrastructure and field devices. Must possess demonstrable knowledge of application security, security testing methodologies, and application security testing automation. Qualifications Degree in Computer Science, Engineering, or related field. 6+ years of software engineering or equivalent experience. Experience with one of the core (Golang, Python) programming languages, scripting, and automation. Strong knowledge of encryption protocols, public/private key management, and PKI (Private Key Infrastructure). Strong understanding of network security, encryption practices, and secure coding principles. Proven experience in cloud security management (AWS, Azure, GCP). Familiarity with security policies and controls for internal corporate applications (Google Workspace, GitHub, Jira). Familiarity with security compliance standards relevant to our industry. Strong skills in managing security tools and vendor relationships. Excellent ability to develop and implement security policies and guidelines. Understanding of blockchain principles is a plus. Relevant certifications in security and cloud platforms are highly desirable. Benefits and Perks There are endless learning and development opportunities from a highly diverse and talented peer group, including experts in various fields, including Computer Vision, GenAI, Digital Twin, Government Contracting, Systems and Device Engineering, Operations, Communications, and more! Options for medical, dental, and vision coverage for employees and dependents (for US employees) Flexible Spending Account (FSA) and Dependent Care Flexible Spending Account (DCFSA) 401(k) with 3% company matching Unlimited PTO Profit sharing #J-18808-Ljbffr

A leading aerospace company is seeking a Senior Security Engineer to enhance their security practices. This role involves implementing security controls directly in CI/CD pipelines and requires deep experience in cloud security across AWS, Azure, or GCP. You'll work in a highly collaborative DevSecOps setup, contributing to security maturity while supporting cutting-edge space missions. Ideal candidates should possess a Master's degree in Computer Science and have proficiency in modern programming languages such as Python or Go. #J-18808-Ljbffr

Senior Security Engineer, Content Engineering at Practical DevSecOps Job Type: Permanent(Full Time/Full-Time) Function: Application Security Engineer Experience Required: 5-6 years Job: We are looking for a Senior Security Engineer to help us with our content engineering team. We are a remote‑first company, so you'll work with our remote team to create great security content that delights our customers. What is the role of a Senior Security Engineer? The Senior Security Engineer job includes research and development in DevSecOps and Cloud‑Native Technologies. You'll also be helping security professionals from fortune 500, defense, and other IT security organizations with their security upskilling needs by creating advanced and hands‑on security content. For this, you need to have a strong ability to communicate with different stakeholders in the organization. If you can communicate well and work methodically as part of a team, we'd like to meet you. What you will do: Help security professionals and developers in SDLC, especially in requirements analysis, design, implementation, testing, integration, verification, and maintenance of the DevSecOps Environment. Embed security as part of CI/CD and DevOps pipelines. Build new hands‑on lessons and content Help build tools to make it easier and faster to release new content Keep existing courses, lessons, and challenges up to date Proactively look for ways to scale, streamline and improve business processes Ensure final deliverables meet the organization's quality requirements. Help professionals with their questions by being available through support forums. Perform other duties as assigned We are looking for: 5+ years of experience in application security or product security roles. Desire to work in cutting‑edge product security technologies like DevSecOps, Cloud Native Technologies, and Zero Trust networks. Good understanding of application security concepts and tools. Passion for improving the state of the AppSec and DevSecOps in the world. Experience with scripting languages (Bash, Python, Go). Ability to write detailed technical guides and create presentations. Adaptability in a fast‑paced startup environment and interest in taking on additional responsibility. Ability to work independently with minimal supervision in a remote team setup. Excellent oral and written communication skills. If that sounds like you, get in touch! We have an amazing team and working culture, and we offer: Work from home with periodic office work and travel (including our yearly retreats to exotic locations) Apple/Mac Stack (MBP/Keynote) Highly competitive compensation And much more! About Practical DevSecOps Practical DevSecOps (a Hysn Technologies Inc company) offers vendor‑neutral, practical, and hands‑on DevSecOps training and certification programs for IT Professionals. Our online training and certifications are focused on new areas of information security, including DevOps Security, Cloud‑Native Security, Cloud Security & Container security. The certifications are achieved after rigorous tests (12‑24 hour exams) of skill and are considered the most valuable in the information security field. Why Explore a Career at Practical DevSecOps At Hysn Technologies Inc, we are working on creating revolutionary security products and services. With offices located globally (San Francisco, Singapore, and India), we believe in creating simple, usable, and excellent security products that delight our customers. We are remote work‑friendly and provide significant benefits like work from home (5 days a week if you wish), medical, and career growth benefits! We look for people who know how to get stuff done, and who aren't afraid of getting their hands dirty. We want people who are hungry and humble, who take risks and thrive in fast‑paced, fluid environments. We want people who take ownership of their work, don't take themselves too seriously, and treat everyone with respect. We think it takes all kinds, all types, all ethnicities, and all genders, to make a great organization. So if you have a passion for the Information Security industry, you're comfortable working in a startup environment, and you meet the criteria above, we'd love to get to know you! Freelancers and Agencies, please excuse us. #J-18808-Ljbffr

A leading technology company in San Francisco is seeking a Senior Security Engineer to enhance security measures across systems and services. You will collaborate with product, engineering, and IT teams to design and implement security monitoring and fraud detection solutions. Ideal candidates will possess strong communication skills, expertise in EDR solutions, and a solid understanding of AWS services. Competitive salary of $146,000 to $170,000 plus bonus and equity opportunities are included. #J-18808-Ljbffr

A forward-thinking technology company in San Francisco seeks a skilled individual to lead their corporate security efforts. In this full-time role, you'll enhance security practices, develop innovative defense strategies, and protect the organization's operations from evolving threats. The ideal candidate has over 3 years of experience in IT security, particularly in endpoint security solutions. The company offers competitive medical, dental, and mental health benefits along with an engaging workplace culture. #J-18808-Ljbffr

A leading AI research company in San Francisco is hiring a Principal Offensive Security Engineer. In this role, you will craft attack simulations and collaborate with teams to strengthen security posture across products. The ideal candidate has over 7 years of experience, exceptional programming skills, and a strong background in identifying vulnerabilities. This position offers an opportunity to influence security strategy and contribute to innovative projects in a dynamic environment. #J-18808-Ljbffr

The Role: As the Security Engineering Lead at Airbyte, you will be the single-threaded owner of security, compliance, and privacy for the company, working in close partnership with engineering, product, legal, and leadership. This is a senior, hands-on role for someone excited to shape how security is built, embedded, and scaled in a growing company. You will have the autonomy to set direction and make risk-based decisions, along with strong cross-functional support to execute effectively. Your work will sit at the intersection of product, infrastructure, compliance, and go-to-market, with direct impact on customer trust, enterprise adoption, and Airbyte's ability to scale securely. What You'll Do: Own Airbyte's security end-to-end, spanning cloud, application, endpoint, and identity security Set security priorities and roadmaps in alignment with business goals and engineering strategy Serve as the primary security decision-maker, bringing sound judgment, context, and partnership to risk decisions and escalations Lead incident detection, investigation, and response, building clear, reliable, and repeatable processes Own and evolve Airbyte's SOC 2 Type II and ISO 27001 programs, ensuring ongoing audit readiness and operational maturity Partner with engineers to embed security into system design, architecture, and major platform initiatives Enable enterprise growth by leading customer-facing security engagements, including questionnaires, ad-hoc inquiries, and security-related contractual discussions Define and operate identity and access management, including SSO, SCIM, RBAC, and access reviews Maintain and improve Airbyte's privacy program, collaborating with Legal on privacy policies, DPAs, TIAs, and regulatory obligations Drive vulnerability management across the stack, including AWS, GCP, Kubernetes, applications, and container images Influence security culture and standards across the company as Airbyte continues to grow What You'll Need Send 3+ years of security leadership experience 5-8+ years of experience in security engineering, cybersecurity, or related roles Experience making practical, risk-based security decisions in collaboration with engineering and business partners Working knowledge of SOC 2 Type II, ISO 27001, and security governance concepts Hands-on familiarity with cloud security, Kubernetes, and modern CI/CD environments Strong communication skills, with the ability to explain security concepts to both technical and non-technical audiences Comfort balancing security, compliance, and delivery velocity in a fast-moving environment. Familiarity with privacy programs and regulations such as GDPR and CCPA Experience evaluating or applying AI-powered tools to security use cases such as detection, triage, policy analysis, or vulnerability management A mindset of curiosity, continuous learning, and shared ownership Location: Onsite 5 days/week in San Francisco, CA If you find this role exciting, we encourage you to apply even if you think you don't meet all of the requirements! Airbyte is an equal opportunity employer that does not discriminate on the basis of actual or perceived race, creed, color, religion, national origin, dicetancy, age, physical or mental disability, pregnancy, genetic information, sex, sexual orientation, gender identity or expression, marital status, familialvendicity, domestic violence victim status, veteran or military status, or any other legally recognized protected basis under federal, state or local laws. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Airbyte is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. Please let us know if you need assistance or accommodation due to a disability. #J-18808-Ljbffr

CodeRabbit is an innovative research and development company focused on building extraordinarily productive human-machine collaboration systems. Our primary goal is to create the next generation of Gen AI-driven code reviewers: a symbiotic partnership between humans and advanced algorithms that significantly outperforms individual engineers. We combine language models with human ingenuity to push the boundaries of software development efficiency and quality. Role Overview: CodeRabbit is on a mission to empower developers with lean, high-performance tools-they move fast, and so do the threats. That's why we're looking for a battle-tested Lead Security Engineer who's been in the trenches and can architect, harden, and defend our infrastructure, tooling, and ecosystem. As our Lead Security Engineer, you'll lead security engineering at CodeRabbit, infusing security into every layer of our product and infrastructure. You become the steward of resilience, incident response, and proactive defense at scale. Responsibilities: Own the security roadmap - craft and execute a strategic security engineering plan that aligns with CodeRabbit's fast-paced engineering cadence. Boost resilience - champion defense-in-depth tactics: threat modeling, secure design reviews, hardening, CI/CD integration. Be Incident Commander - spearhead security incident response and recovery: triage, resolve, root cause, and turn those learnings into stronger systems. Tools & automation - build or integrate security tooling (SAST, DAST, SIEM, EDR, monitoring) into the developer workflow without slowing delivery. Embed security fluently - partner with engineering and product teams to bring secure practices early into planning and daily workflows. Talent & culture - help to hire, coach, and mentor a scrappy, resilient security engineering team; elevate security awareness across the company. Compliance & policy - establish security standards, frameworks, or processes that evolve as we scale-but remain lean and developer-friendly. Qualifications: Battle-tested experience: 8+ years in security engineering, incident response, or correlated fields-bonus if you've led through a major production breach or targeted attack. Technical depth: Extensive experience with security across software and infrastructure-threat modeling, pen testing, secure CI/CD pipelines, cloud security, incident response. Strategic mindset: Ability to translate risk into actionables, communicate trade‑offs with engineering/product leadership. Praxis over theory: You've taken production systems down (intentionally or unintentionally) and built them back stronger. Security in chaos: Experience in pressure situations-with clarity, direction, and calm. Developer‑centric approach: You can speak fluent dev-tools, empathize with fast-moving teams, and secure them without slowing them down. Bonus Points: You've implemented DevSecOps tooling and orchestrated shift‑left security in developer pipelines. You've recovered from (or prevented) a critical security event, and turned that into an engineering culture improvement. Experience in a dev‑tools, SDK, or platform-heavy company. Hacker mindset + operational discipline - pentests, disaster recovery, threat hunting, tooling, cloud environments. Certifications like CISSP, CISM, CEH, or relevant cloud security certs. Why Join Us? Defend a Developer-First Future: At CodeRabbit, you're not just protecting infrastructure-you're securing the next evolution of developer tools. Help fortify a product that's reshaping how code gets reviewed. Real Authority & Ownership: You won't be on the sidelines. As Lead Security Engineer, you'll define the security roadmap, lead critical incident responses, and gain full ownership of outcomes-from threat modeling to hardened deployment. Impact at Velocity: Join an agile, cross-functional squad of engineers, designers, and researchers. You'll move fast but not recklessly - embedding security in every release without slowing delivery. Build, Break, Rebuild Stronger: Ideal for someone battle-tested; someone who's faced breaches, recovered systems, and evolved engineering culture through adversity. Grow and Lead: We're investing in you. This role offers ongoing leadership development, mentorship opportunities, and real ownership as you eventually scale your team and operations. Compensation That Reflects Responsibility: We deliver a competitive package-salary, equity, and benefits-to match the importance and intensity of this role. Hybrid Culture That Adapts to You: We collaborate in person in the Bay Area every week, but leave room for remote heads-down focus. It's security, not surveillance. Our Values 🤝 Collaborative Humans: Prioritizing collective intelligence 🚀 Fearless Innovators: Turning obstacles into growth opportunities 💪 Persistent, Passionate Developers: Thriving on complex, long-term challenges 🎯 Impact-Driven Creators: Crafting intuitive tools for developers 🧠 Rapid Learners and Un-learners: Adapting quickly in our fast-paced technological world Apply Now - If you're excited to build tools that blend intelligent systems with world‑class software engineering, we'd love to meet you. #J-18808-Ljbffr

About GoodLeap GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy‑efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI‑powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award‑winning nonprofit, GivePower, which is building and deploying life‑saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap to design, build, implement, and operate security and fraud monitoring, detection, and response capabilities. Your Oversight Will Encompass Security & Fraud Monitoring, Detection, and Response: Identification of potential misuse and abuse cases, determining corresponding events associated with manifestation of such scenarios, design of identification and detection solutions -e.g., correlated/iterative event searches across log sources ranging from infrastructure to applications/SaaS platforms, testing, implementation, monitoring, and fine‑tuning of these solutions, etc. Toolset design and operations: Design and build the monitoring, detection, and response platform, from tool selection and integration - e.g., SIEM, SOAR, agentic SOC, EDR, to daily operations/management Incident Response: Play a leading role in the definition, refinement, and execution of incident response activities. Overall Security Operations: Management and operation of security platforms/solutions outside monitoring, detection, and response platform. Support Embedded Product Security Team: Design, build, and implement monitoring and detection solutions for GoodLeap products and services. Essential Job Duties & Responsibilities Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting, etc. Create playbooks for specific incident response scenarios. Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios. Support or develop components of the security analytics platform. Support embedded (product) security team. Support general security operations team with vulnerability management, tools management, and more. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non‑technical audiences. Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations, etc. Experience with threat modeling methodologies. Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR, etc. Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Experience working with and creating solutions based AI and ML toolsets - e.g., creation of AI skills, agents, MCP clients, vibe coding. Strong understanding of both human and non‑human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure‑as‑Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting teams outside of security - e.g., internal product teams and other cross‑functional areas. Proficiency in writing automation scripts in multiple languages and integrating with REST/GraphQL APIs to orchestrate workflows between security tooling and third‑party cloud/SaaS platforms, automating detection, response, and operational processes. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high‑level view of security strategy with attention to detail, ensuring thorough and effective execution. $146,000 - $170,000 a year In addition to the above salary, this role may be eligible for a bonus and equity. Additional Information Regarding Job Duties and s Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI. #J-18808-Ljbffr

Crusoe is building the World's Favorite AI-first Cloud infrastructure company. We're pioneering vertically integrated, purpose-built AI infrastructure solutions trusted by Fortune 500 companies to power their most advanced AI applications. Crusoe is redefining AI cloud infrastructure, with a mission to align the future of computing with the future of the climate. Our AI platform is recognized as the "gold standard" for reliability and performance. Our data centers are optimized for AI workloads and are powered by clean, renewable energy. Be part of the AI revolution with sustainable technology at Crusoe. Here, you\'ll drive meaningful innovation, make a tangible impact, and join a team that's setting the pace for responsible, transformative cloud infrastructure. About This Role: At Crusoe, the Corporate Security Engineer is essential for safeguarding our employees, data, and infrastructure. You will be responsible for designing, implementing, managing, and optimizing security solutions across our corporate landscape. By leveraging modern security principles like "secure by design" and Zero Trust, you will help build and maintain a robust corporate security posture, with a key focus on endpoint security, identity and access management (IAM), SaaS application security, data loss prevention (DLP), and incident response. What You'll Be Working On MDM Administration & Endpoint Security: Implementing, administering, and optimizing Mobile Device Management (MDM) solutions and enforcing security policies across diverse endpoints (laptops, mobile devices). Hardware & Software Security Standards: Establishing and maintaining hardware/software security standards and ensuring the strong security posture of corporate devices. Identity & Access Management (IAM): Designing, implementing, and managing core IAM technologies, including SSO, MFA, PAM, and identity lifecycle solutions, contributing to our Zero Trust architecture. Data Protection & Email Security: Implementing, configuring, and tuning DLP, SSPM, and email security solutions to protect against various threats. Secure Architecture & Technology Evaluation: Designing secure corporate environments using secure by design principles and evaluating the security posture of new technologies, vendors, and applications. Security Operations & Incident Response: Actively participating in corporate security operations, including monitoring security alerts, detecting, triaging, investigating, and responding effectively to security incidents. Security Consulting & Best Practices: Consulting with and advising IT, Engineering, and other teams on secure architecture, IAM best practices, and secure configurations. What You'll Bring to the Team 3-5+ years of hands-on experience in a Corporate Security, Enterprise Security, or similar role. Proven experience designing, implementing, and managing security technologies at scale, including: MDM solutions (e.g., Intune, Kandji, Jamf, etc.) IAM solutions (e.g., Okta, Azure AD, IGA applications, etc. including SSO, MFA, PAM concepts) Endpoint security tools (EDR/XDR) Email threat protection solutions DLP and/or SSPM solutions. Strong understanding of modern security principles, including Zero Trust architecture, "secure by design," and defense-in-depth. Experience with securing SaaS applications and enforcing security policies. Demonstrated experience in security incident response, including triage, investigation, and remediation. Familiarity with scripting languages (e.g., Python, PowerShell) for automation and integration. Excellent problem-solving, analytical, and critical-thinking skills. Strong communication and collaboration skills, with the ability to work effectively across different teams. Embody the Company values. Benefits Industry competitive pay Restricted Stock Units in a fast growing, well-funded technology company Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents Employer contributions to HSA accounts Paid Parental Leave Paid life insurance, short-term and long-term disability Teladoc 401(k) with a 100% match up to 4% of salary Generous paid time off and holiday schedule Cell phone reimbursement Tuition reimbursement Subscription to the Calm app MetLife Legal Company paid commuter benefit; $200 per pay period Compensation Compensation will be paid in the range of $130,000 - $170,000. Restricted Stock Units are included in all offers. Compensation to be determined by the applicant's education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data. Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation. #J-18808-Ljbffr

Heartflow is a medical technology company advancing the diagnosis and management of coronary artery disease, the #1 cause of death worldwide, using cutting‑edge technology. The flagship product-an AI‑driven, non‑invasive cardiac test supported by the ACC/AHA Chest Pain Guidelines called the Heartflow FFRCTAnalysis-provides a color‑coded, 3D model of a patient's coronary arteries indicating the impact blockages have on blood flow to the heart. Heartflow is the first AI‑driven non‑invasive integrated heart care solution across the CCTA pathway that helps clinicians identify stenoses in the coronary arteries (RoadMap™Analysis), assess coronary blood flow (FFRCTAnalysis), and characterise and quantify coronary atherosclerosis (Plaque Analysis). Our pipeline of products is growing and so is our team; join us in helping to revolutionise precision heart‑care. Heartflow is a publicly traded company (HTFL) that has received international recognition for exceptional strides in healthcare innovation, is supported by medical societies around the world, cleared for use in the US, UK, Europe, Japan and Canada, and has been used for more than 500,000 patients worldwide. Overview The Heartflow Information Security team is responsible for security across our corporate and product environments, protecting our patient data and medical device ecosystem. We are looking for an investigator that loves the challenge of analysing complex security telemetry to uncover hidden threats and ensure a resilient defence for our corporate and product environments. The initial focus will be on triaging advanced security events and participating in our security incident response process. Analytical work will span our corporate, clinical and cloud infrastructure and will include threat hunting and the refinement of high‑fidelity detection logic. What You'll Do Perform in‑depth analysis of security events, logs, and network traffic using SIEM, EDR, and other security tools to rapidly identify, contain, and remediate complex threats. Collaborate in developing and implementing custom correlation rules, dashboards, and alerts to enhance detection capabilities. Drive threat hunts to find “quiet” persistent threats within our clinical and corporate environments. Participate in continuous refinement of incident response playbooks, operational procedures, and security standards. Perform security reviews of third‑party vendors to identify risks and ensure they meet company standards. What You Bring Education - BS in Computer Science or a related technical degree. No degree? No problem-if you have the equivalent experience and certifications, we want to hear from you. Experience - At least 2 years in the trenches of a SOC or Incident Response team. However, if you haven't held a formal “Security” title but have at least 2 years on an IT Operations team, we value deep technical expertise in operating systems and networking if you can show us your passion for security. You're comfortable navigating security platforms like SIEMs, EDR tools (CrowdStrike or similar), and Email Security platforms. Strong problem‑solving skills with the ability to troubleshoot security issues across networks, operating systems, and applications. Possess a solid understanding of log correlation and how to write logic for security alerts. Deep understanding of at least one of the operating system internals (Windows, Linux, or mac OS). Ability to analyse process trees. Able to analyse network flows and packet data to find hidden threats. You know your way around network tools and can spot anomalies across different types of environments. What Helps You Stand Out Certifications: SANS GIAC (GCIH, GCIA), CompTIA (Security+, CySA+), EC‑Council (C|SA) or equivalent. Proven ability to take initiative- track record of identifying problems and developing solutions independently. Excellent written and verbal communication skills, with the ability to clearly articulate complex technical issues and remediation plans to both technical and non‑technical audiences. You are a continuous learner who stays curious about the latest attack trends and loves figuring out how to stop them. A reasonable estimate of the base salary compensation range is $75,000 to $100,000 per year, and bonus. #LI-IB1 Heartflow is an Equal Opportunity Employer. We are committed to a work environment that supports, inspires, and respects all individuals and do not discriminate against any employee or applicant because of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law. This policy applies to every aspect of employment at Heartflow, including recruitment, hiring, training, relocation, promotion, and termination. Positions posted for Heartflow are not intended for or open to third‑party recruiters / agencies. Submission of any unsolicited resumes for these positions will be considered to be free referrals. Heartflow has become aware of a fraud where unknown entities are posing as Heartflow recruiters in an attempt to obtain personal information from individuals as part of our application or job offer process. Before providing any personal information to outside parties, please verify the following: A) All legitimate Heartflow recruiter email addresses end with “@heartflow.com” and B) The position described is found on our careers site at ********************************* #J-18808-Ljbffr

Boyd Gaming Corporation has been successful in gaming jurisdiction in which we operate in the United States and is one of the premier casino entertainment companies in the United States. Never content to rest upon our successes, we will continue to evolve and retain a position of leadership in our industry. Our past success, our current business philosophies and our sound business planning, combine to position Boyd Gaming Corporation to maximize value for our shareholders, our team members and our communities. Job Description Subject matter expert and technical leader who is passionate about complex information security technology, topics and issues. Responsible for technical and operational duties in the areas of computer network defense analysis, vulnerability assessment and management, incident response and management, threat intelligence, data loss prevention, digital forensics, and threat hunting. Provides customer service and technical support with the goal of improving the overall security posture of the organization. Responsible for documenting, monitoring and reporting on various security related systems and processes to ensure system and data integrity, security and availability. Creation of policy, day to day management, administration and maintenance of Information Security tool set. Identification of any tool or visibility gap in the existing tool set. Identification of team requirements for any given technology, documentation of the current or proposed architecture, lead any proof of concept and document results, quantify any recommendations for the use of any new security tool, process or procedure. Cross training the team on day to day use, standard operating procedures and tuning of the security tool set. Analyze threat intelligence and risks. Identify and document impact to Boyd and any mitigation or remediation actions required. Lead initiatives and own the outcomes related to remediation or mitigation against identified day zero attacks. Liaise with cross functional teams to facilitate and ensure implementation of any necessary tasks to defend against the risk. Escalation point and technical subject matter expert for Security Analysts and any third-party security providers. Responsible for tracking all security incidents to resolution. Leading defensive protocols and programs when attacks occur. Simulating attacks to identify potential areas of weakness in defenses and alerting. Writing detailed reports and providing accurate metrics. Perform the role and duties of an internal expert on matters relating to threat detection and incident response. Lead investigations into attacks and indicators of compromise. Provide a coordinated response to applicable complex cyber-attacks. Contribute to the ongoing development and improvement of security monitoring and incident response processes and solutions as required to support Boyd's Information Security program and exceed team objectives. Tracking cybersecurity news and trends for applicable systems, and reporting concerns to appropriate resources. Documenting and updating security related policies, including participation in the periodic review process and managing policy exceptions and risk acceptances in coordination with the Boyd Risk and Compliance teams. Manage, update, modify alerts, adjust/tune event correlation rules to increase accuracy/relevance/effectiveness and create new rules based on threat changes and evolving risks. Use creativity and innovation to automate and streamline team processes and procedures. Perform event correlation, analysis of malicious activity indicators and appropriate response based on review and access to multiple security tools. Qualifications Bachelor's Degree in Information Technology or Cyber Security, and/or equivalent experience, Masters ' Degree in Computer Science or Information Security (Preferred) 7-10 years of professional Information Security Incident Response/ Forensics/ SOC experience Proven experience with Information Security industry best practices Proven experience with System/ Application vulnerabilities, threats and exploitation Proven experience with malware analysis (dynamic and static) or forensic examination Advanced knowledge and understanding of Windows, Linux, Unix and networking Understanding of ISO 27001 / 2700 2, NIST Cybersecurity Framework, COBIT, SOX, PCI, CCPA and ITIL. Expert level computer and IT skills. Advanced analytical and problem-solving skills. High levels of creativity, patience and ability to remain calm and focused in a crisis. Highly motivated, self-starter, competitive, and attracted to challenging opportunities Demonstrated strong decision-making skills. Having a logical and analytical approach to problem-solving, being able to assess situations and decide on the best course of action; understanding test results and developing solutions. Demonstrated advanced organizational and time management skills. Completing tasks in a timely manner; being detail-oriented, able to perform repetitive tests in a thorough and consistent manner; being able to work on several tasks at the same time while still accomplishing goals and deadlines. Advanced communication skills. Being able to articulate technical issues and requirements in a clear and non-technical manner. Excellent teamwork skills. Ability to partner with the business and cross functional IT teams, working as a cohesive and effective unit. Highest levels of honesty, integrity and objectivity. Ability to remain objective when analyzing weaknesses and proposed new solutions; being responsible and understanding the level of trust required to handle private and highly sensitive information and situations. Additional Information Boyd Gaming is proud to be an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state, or local protected class. Boyd Gaming is proud to be an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state, or local protected class.