Cyber security engineer work from home jobs - 417 jobs

Start Date: Immediate EXPANSIA is a service-disabled veteran-owned company that empowers organizations to be mission ready now with data, people, and ecosystems. As experts in continuous-delivery methods that drive digital adoption, we are dedicated to innovation, efficiency, and technology that benefit the warfighter. EXPANSIA specializes in integration, automation, and sustainment modernization through technology-enabled delivery models, digital engineering, and cloud-ready solutions. OVERVIEW Full-time/Permanent Employee Location: Remote EXPANSIA is excited to design, implement, and mature a secure, scalable Integrated Digital Environment (IDE) that enables Digital Engineering, Model-Based Systems Engineering (MBSE), and Product Lifecycle Management (PLM) integration across the developing US Hypersonic enterprise and industrial base. Located at the new aerospace research and test complex, this facility is poised to become the nation's premier hub for hypersonic system research, modeling & simulation, and test capabilities. As a Cybersecurity Engineer and Compliance Lead, you will leverage your technical expertise to design, implement, and validate security controls while ensuring compliance with DoD cybersecurity standards and Risk Management Framework (RMF) requirements for complex information systems and networks. You will prepare Security Test and Evaluation plans; provide RMF support in the development of security and contingency plans and conduct complex risk and vulnerability assessments. Serve as a senior cybersecurity lead on programs requiring compliance with RMF and advise stakeholders on the development and implementation of security controls across all RMF steps, including monitoring and maintenance. Serve as a partner and peer to the Program ISSM for systems undergoing Authorization to Operate (ATO). Develop and maintain system security plans, contingency plans, and recommend enhancements to mitigate identified security deficiencies. Develop, test, and integrate computer and network security tools. Secure system configurations and install security tools. Scan systems to determine compliance, report results, and evaluate security tool performance. Provide technical input on system administration security configurations. Conduct security program audits and develops solutions to lessen identified risks. Act as a senior engineering liaison between development teams and cybersecurity compliance, translating control requirements into system architecture, configuration baselines, and secure coding practices. Guide and mentor junior application and security engineers in continuous improvement of security posture and compliance processes. The proposed salary range for this position is $144,360-$196,171. There are a host of factors that can influence final salary including, but not limited to, relevant prior work experience, specific skills and competencies, geographic location, education, and certifications. Our employees value the flexibility EXPANSIA allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our unique mix of benefits options is designed to support and protect employees and their families. Employment benefits include health and wellness programs, income protection, paid leave and retirement and savings. RESPONSIBILITIES Lead cybersecurity and compliance responsibilities for assigned systems, including control implementation, documentation, and coordination with the ISSM for enterprise reporting and ATO sustainment Support the ISSM with continuous monitoring responsibilities, including log review and analysis using SIEM tools (e.g., Splunk) to identify anomalies, validate security control effectiveness, and support incident response coordination Conduct Vulnerability Analysis and Review of ACAS scans Lead POA&M management, including development of realistic remediation strategies, validation coordination with engineers, and ongoing tracking in support of system ATO sustainment Utilize DevSecOps methodologies to analyze and ensure that development requirements effectively integrate security requirements throughout the entire process Employ best practices when implementing controls including software engineering methodologies; system and security engineering principles; security-enhancing design, architecture, and coding techniques Validate system architecture diagrams and component boundary definitions to ensure consistency with security authorization boundaries and inherited control structures Coordinate security activities with system leads, ISSM's and program managers Lead or support system categorization, control selection, and inheritance planning; ensure artifacts in eMASS are maintained and aligned with RMF timelines and requirements Ensure system-level security requirements are identified, designed, implemented, and evaluated in coordination with engineers and stakeholders Conduct formal risk assessments, evaluate mitigation options and residual risks, and deliver actionable recommendations to system stakeholders Design, deploy, and validate security control implementations; employ security-as-code in CI/CD pipelines using tools such as Terraform, Ansible, or AWS CloudFormation Conduct security design reviews of infrastructure components such as VPCs, IAM roles, load balancers, and container orchestration services (ECS, Fargate) Lead internal and external security audits and investigations, coordinate responses to findings, and oversee corrective action plans Provide authoritative guidance on cybersecurity strategy, policy application, and compliance across development and operations environments, ensuring integration with DoD and Service Component cybersecurity architectures and Zero Trust principles Lead system-level Continuous Monitoring efforts, including vulnerability remediation tracking, control validation, STIG compliance, and submission of recurring security status reports to AO-designated representatives Ensure compliance with government regulations and industry standards Support operational strategies aligned within your program and initiatives that optimize processes, enhance productivity, and ensure quality across all program functions. Ensure 100% of planned hours are worked and recorded Identify and forward to your leadership any opportunities that could lead to growth within your work area Ensure all contractual deliverables are met/exceeded to the customer's satisfaction Completes personal PDP and attend Staff Meeting and Storytime (with camera on) Within your program, build productive and positive professional relationships with clients Performs other related duties as assigned KEY QUALIFICATIONS Clearance: Active Secret clearance Education and Years of Experience: Bachelor's (or equivalent) with 10 - 12 years of experience, or a Master's with 8 - 10 years of experience DoD 8570/8140 certification required. IAM Level III preferred (e.g., CISSP, GSLC, CISM) Experience directly configuring and deploying technical security controls in cloud and containerized environments (IAM policies, VPC configurations, ECS hardening, container runtime controls) Solid application of systems engineering concepts, principles, and theories Creative thinker, good at multitasking Ability to clearly recognize and report relevant system security concerns and issues Understanding of verification and validation process Demonstrated experience leading RMF efforts for DoD classified and/or unclassified systems through assessment and authorization (A&A), including artifact development in eMASS Ability to interpret and implement NIST 800-53 Rev. 5 controls and translate into actionable engineering and operational requirements Familiarity with compliance-as-code frameworks (OpenSCAP, InSpec, ConMon dashboards) Familiarity with developing and maintaining artifacts aligned to continuous monitoring, including control evidence repositories, system inventory tracking, and active POA&M management Strong working knowledge of ACAS, Nessus, eMASS, AWS Inspector, and security documentation requirements Experience interpreting and applying DISA STIGs, SCAP results, and vulnerability severity data from Nessus or AWS Inspector within enterprise-level remediation strategies PREFERRED ADDITIONAL QUALIFICATIONS Experience working on large-scale software projects Experience operating in Agile or DevSecOps environments with security control overlay support Familiarity with cloud security compliance (e.g., AWS GovCloud, Azure IL5+, Cloud One) Proficiency with Infrastructure-as-Code (IaC) tools for secure cloud provisioning (e.g., Terraform, CloudFormation) Experience with Zero Trust implementation strategies in hybrid and cloud-native environments Experience leading classified information system security programs Knowledge of cybersecurity frameworks and incident response best practices Proficiency in security compliance reporting and security documentation best practices Strong problem-solving and decision-making skills related to security risk management EXPANSIA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.

Details: Stefanini Group is looking for Cyber Security Engineer for a globally recognized company! For interested applicants, click the apply button or you may reach out to Alfher Hidalgo at **************/**************************** for faster processing. Thank you! **** 100% Remote Role *** We are seeking a motivated and experienced Mid-Level Security Engineer to join our dynamic security team. The ideal candidate will have a strong background in endpoint detection and response (EDR) solutions, as well as experience with security information and event management (SIEM) systems. You will support the upcoming ADR (Advanced Detection and Response) solution replacement project, ensuring seamless integration of EDR logs and maintaining our security posture. Key Responsibilities: Support the implementation and integration of the new ADR solution, ensuring it meets organizational security requirements. Collaborate with cross-functional teams to gather requirements and design effective EDR and SIEM integrations. Monitor and analyze security events and incidents generated by EDR and SIEM tools, providing timely escalation and remediation recommendations. Develop and maintain security policies, procedures, and documentation related to EDR and SIEM technologies. Conduct security assessments and vulnerability analyses to identify potential risks and provide mitigation strategies. Participate in incident response activities, including investigation, analysis, and reporting of security incidents. Assist in the development and delivery of security awareness training for staff and stakeholders. Stay current with emerging threats and security technologies, providing recommendations for improvements to existing security measures. Details: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field; relevant experience may be considered in lieu of a degree. 3-5 years of experience in security engineering or a related role, with a focus on EDR and SIEM technologies. Proven experience supporting EDR solutions and integrating EDR logs into SIEM systems. Strong understanding of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS Controls). Familiarity with incident response processes, threat hunting, and vulnerability management. Experience with scripting or programming languages (e.g., Python, PowerShell, Bash) for automation and tool integration. Relevant security certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are highly desirable. Additional Requirements: Excellent analytical and problem-solving skills with a keen attention to detail. Strong communication skills, both verbal and written, with the ability to convey technical information to non-technical audiences. Ability to work independently and collaboratively in a fast-paced environment. A proactive attitude toward continuous learning and professional development in the cybersecurity field. Experience with cloud security frameworks and technologies (AWS, Azure, GCP) is a plus. Knowledge of regulatory compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) is advantageous. #LI-AH1#LI-REMOTE

X-energy LLC conducts a thorough recruiting process and will never issue offers without interview to discuss qualifications and responsibilities. All applications will be submitted via our company career page, ************************* . We will never ask you to provide payment information as part of the recruiting process. If anyone claiming to represent X-energy directs you in a manner otherwise, please contact us at *************************** . Job Description This role is responsible for the development and execution of cyber security engineering strategies and activities in support of plant design and engineering teams. This role integrates the cyber security philosophy into the design of plant information and operational technology systems and is responsible for implementation and assessment of cyber security systems, supports the cyber security assessments of Xe-100 systems, and recommends solutions to cyber security issues. Job Profile Tasks/Responsibilities Collaborate in strategic security relationships between internal resources and external entities to fully secure information, computer, network, and processing systems, including government, customers, vendors, and partner organizations. Apply industry experience to architect, develop, implement, maintain, and oversee cybersecurity tools and policies to protect X-energy business and plant operations information systems, including cloud governance and security. Where necessary, provide advanced support to help troubleshoot complex issues and architect new solutions. Construct and exploit threat intelligence to detect, respond, and defeat advanced persistent threats (APTs). Produce reports on all activities and incidents to help maintain day-to-day status, develop, and report on trends, and provide focus and situational awareness on all issues. Identify and remediate control weaknesses. Review data with firewall administrators, engineering, system administrators, and other appropriate groups to determine the risk of security events. Perform intermediate level information security analysis work. Develop plans to safeguard computer/server/network configurations and data files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs. Perform and review technical risk assessments of new and existing applications. Research, evaluate, and recommend systems and procedures to prevent, detect, containment, and correct data security breaches. Maintain professional demeanor and behavior at all times in all forms of communication. Perform other duties as assigned by manager. Job Profile Minimum Qualifications Typically, five plus years of progressive experience in cybersecurity, network security, or related experience. Must have direct knowledge and experience managing cybersecurity tools such as NDR, EDR, and SIEM. GICSP, GCIH, GPEN, CISSP, or equivalent, or other specific training or experience in cyber security operations, design, and engineering. Familiarity with standard principles and practices of cybersecurity design for safeguarded plants and facilities. Networking/IT systems engineering background and experience. Knowledge of Federal requirements for Cyber security for Critical Infrastructure Protection (CIP). Knowledge of IEEE and IEC standards related to cyber security in embedded system and control systems. Proficiency in developing and reviewing threat assessments and using results of those assessments to develop comprehensive cyber security designs. Proficiency developing cybersecurity programs, procedures, and processes. Understanding of nuclear engineering, licensing, regulatory, quality, and safety requirements preferred. Location: Rockville, MD Work Site Expectations: Remote Travel Expectations: Up to 10% depending on project requirements Hours: 8:00am - 5:00pm ET, Mon-Fri Compensation As required by Maryland and other applicable state law, X Energy, LLC (X-energy) lists the expected compensation range for a publicly advertised job opportunity based upon the job requirements (e.g. education/training, experience, skill sets, etc.). Individual candidates who meet the job requirements for the posted position will be offered a salary within this range based on their respective levels of education/training, experience, and other qualifications unique to them. Salary ranges may vary based on the specific office location and region referenced in the posting to take into consideration differences in cost of living and may not be reflective of all regions. Please note that compensation ranges listed for US job postings reflect base salary only and do not include benefits or other incentives. A reasonable estimate for this position at the level of experience required is: $126,000- $161,000 Position Job Classification Full time - Exempt Benefits X Energy, LLC offers a robust benefits package that includes a 401K plan with an employer match, Medical/Dental /Vision Insurance, Life and Disability Insurance, Paid Time Off, and a Tuition Reimbursement/Professional Development policy that supports the continuing education of our employees. An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability. X Energy, LLC participates in E-Verify. Please visit the links below for more information about E-Verify and the protection of your Right to Work. Right To Work Link: If you have the right to work, don't let anyone take it away (e-verify.gov) E-Verify Participation Link: E-Verify Participation Poster English and Spanish

Type of Requisition: Regular Clearance Level Must Currently Possess: None Clearance Level Must Be Able to Obtain: None Public Trust/Other Required: SSBI (T5) Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Amazon Web Services (AWS) Security, Cloud Security, Vulnerability Assessments Certifications: AWS Certified Security - Specialty | Amazon Web Services (AWS) - Amazon Web Services (AWS) Experience: 3 + years of related experience US Citizenship Required: No Job Description: GDIT is seeking a AWS Security Cloud Engineer to join our Federal Health division managing the security of GDIT's Analytic platform environment. The AWS Security Cloud Engineers typically include the following responsibilities and skills: Implementing Security Controls: Developing and applying security measures to protect AWS workloads and infrastructure. Conducting Security Assessments: Regularly evaluating the security posture of AWS environments to identify vulnerabilities using AWS security services such as GuardDuty, Cloudwatch,.etc. Responding to Security Incidents: Investigating and remediating security breaches and incidents to minimize damage and prevent future occurrences. Compliance with Regulations: Ensuring adherence to security regulations and industry standards, such as NIST 800-171 Educating Stakeholders: Sharing the best practices for cloud security with other stakeholders within the organization. Collaborating with the Lighthouse Information Security and compliance team to develop Genesis global Cloud security architecture and maturity standards1 Evaluate and respond to alerts and events from the security tools, including tuning of tool configuration to minimize false positives, development of event response documentation and processes for Security Operations Center response to follow for event actions, and escalating to appropriate teams for event response Work with the Cloud Operations teams in the definition and implementation of security standards and best practices Develop and maintain documentation and diagrams for security tools, system environments, and cloud operations Acts as subject matter expert (SME) for security tools, applications and processes, including AWS Security tools, Palo Alto firewall, Qualys vulnerability management, Helping the engineering productivity team and others in solving cyber security problems in a way that not only comply with required standards, but also contribute materially to the security of Target systems Work closely with functional-area architects, engineering, and security specialists throughout the company to ensure adequate security solutions and controls are in place Monitor cloud environments for security threats Conduct risk assessments and vulnerability scans Develop and enforce cloud security policies Collaborate with DevOps and engineering teams Respond to security incidents and perform root cause analysis Ensure compliance with security standards and regulations Automate security controls and processes Manage identity and access controls in cloud platforms Design and implement secure cloud architectures Implement and automate DISA STIG and SCAP standards across Windows, Red Hat, PanOS, and other applications. Maintain documentation Requirements Bachelor's degree in computer science or related field or equivalent number of year experience 5+ years of experience in cloud security or cybersecurity Must have hands on experience with AWS security tools Experience with security tools like CloudTrail, GuardDuty, or Splunk (SIEM) Knowledge of network security and firewalls Understanding of compliance frameworks Strong analytical and problem-solving skills Excellent communication and teamwork abilities Relevant certifications (e.g., CCSP, AWS Security Specialty) are a plus GDIT IS YOUR PLACE: Full-flex work week to own your priorities at work and at home. 401K with company match. Comprehensive health and wellness packages. Internal mobility team dedicated to helping you own your career. Professional growth opportunities including paid education and certifications. Cutting-edge technology you can learn from. Rest and recharge with paid vacation and holidays. #GDITFedHealthJobs #GDITHealthSystems The likely salary range for this position is $102,000 - $138,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: Less than 10% Telecommuting Options: Remote Work Location: Any Location / Remote Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

at Moneycorp Welcome to Moneycorp We're delighted you're interested in being a part of Moneycorp.In the last decade, Moneycorp has transformed from a largely domestic, consumer-focused provider of foreign exchange to an end-to-end global payments' ecosystem.With two banking licenses and operations across the entire value chain of the international payments and foreign exchange sectors, we enable businesses, institutions, and individuals to thrive beyond borders.We help our clients realise their growth ambitions by providing them with worldwide reach, relentless regulatory excellence, and tailored, relevant solutions that resiliently optimise their financial operations.We're fervent about pursuing our goals, making substantial contributions to the payments industry, and consistently offering unwavering support to our clients at every stage of their journey.Moneycorp is a place where energy, commitment to our shared success and collaboration are core to our DNA. We're restless in our drive to surpass the expectations of our clients and unlock opportunities to support them at every stage of their journey.The foundation of our success is our people, and nurturing a culture of belonging for all of our colleagues is central to our journey as a global business. Find out more about Moneycorp's offering, global footprint and capabilities here: About Us | moneycorp Your Next ChallengeWe are seeking a skilled and proactive Cybersecurity Engineer to help safeguard our systems, networks, and data from cyber threats. You will play a key role in designing, implementing, and maintaining security solutions, responding to incidents, and continuously improving our security posture. This role is ideal for someone with a strong technical background and a passion for protecting digital environments.Role Purpose: Embed security-by-design across cloud and IaaS: policy-as-code, Defender for Cloud, IAM hardening, segmentation and CI/CD security. Support PCI DSS and SWIFT CSP controls.Key ResponsibilitiesSecurity Engineering & Operations Implement Azure Policy and Defender; track compliance posture. Harden Windows/Linux baselines; manage secrets and encryption standards. Integrate SAST/DAST scans; gate CICD with security checks. Provide audit evidence; coordinate secure cost governance Infrastructure & Application Security Collaborate with DevOps and engineering teams to embed security into infrastructure and applications. Support secure configuration management, patching, and hardening of systems. Review code and architecture for security risks and recommend improvements. Threat Detection & Response Analyze threat intelligence and apply findings to improve detection and response capabilities. Develop and maintain incident response playbooks and procedures. Participate in security investigations and forensic analysis when needed. Compliance & Risk Management Ensure systems and processes comply with relevant standards (e.g., ISO 27001, NIST, GDPR, PCI-DSS). Assist with audits, risk assessments, and reporting requirements. Maintain documentation of security controls, policies, and procedures. Person SpecificationKnowledge and Experience: Proven experience in cybersecurity engineering, security operations, or related roles. Strong understanding of network protocols, operating systems, and cloud platforms (AWS, Azure, GCP). Hands-on experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and firewalls. Excellent problem-solving and communication skills. Please note: This is a full-time, permanent position to work with our Tech team based in our Coventry office.Interested?If the role sounds like you, we invite you to upload a copy of your CV and can do this by clicking on the Apply Now button Fostering a culture of belonging and inclusivity We're committed to creating a workplace where every individual feels valued, respected, and included. As an Equal Opportunity Employer, we actively cultivate an inclusive culture where diversity thrives, and we empower our colleagues to drive meaningful change within our organisation through initiatives like our DE&I focus groups and value champion network.Like many of our peers, we recognise that fostering inclusivity is an ongoing journey, and we remain steadfast in our commitment to progress. By measuring our efforts through regular assessments and listening to the feedback of our employees, we strive to ensure that our initiatives are impactful and responsive to the evolving needs of our workforce.Together, we want to build a workplace where everyone can bring their authentic selves to work, as we believe this is the foundation of innovation, creativity, and collective success. Connect with us For company news, announcements and market insights, visit our News Hub. You can also find Moneycorp on Facebook, Twitter UK, Twitter Americas, Instagram, LinkedIn, where you can discover how we are leading the way in global payments and currency risk management.

We are seeking a seasoned Cyber Security Engineer to lead the development and integration of secure architectures for critical Transmission & Distribution (T&D) systems. As a recognized technical authority, you will define cybersecurity strategy across hardware, embedded systems, and software-defined platforms in modern electric grids-spanning protection, control, and energy management technologies for Grid Automation business unit. You will embed Security by Design and Cyber-Informed Engineering (CIE) principles throughout the product lifecycle, operating at the intersection of operational technology (OT) and information technology (IT). Your work will help drive regulatory compliance, product security, and support both R&D teams and utility customers in securing mission-critical infrastructure. **Job Description** **Key Responsibilities:** + Act as the cybersecurity design authority for T&D products, defining end-to-end architectures across hardware, firmware, and cloud-connected systems, advising on secure protocols, cryptography, authentication, and network hardening. + Translate and implement global regulatory standards (IEC 62443, IEC 61850, IEC 62351, NERC CIP) into product requirements, and lead technical strategy planning, architecture reviews, and security certification efforts. + Guide engineering teams through threat modeling, secure coding, SDLC best practices, and CIE adoption to mitigate cyber-physical risks affecting safety, reliability, or operations. + Define and support embedded and software-based security features using C/C++, Python, and modern toolchains, while collaborating on penetration testing, fuzz testing, code reviews, and security simulations. + Lead cross-functional initiatives with PSL, product management, compliance, field operations, and R&D to align cybersecurity objectives and ensure systems meet resilience and compliance expectations. + Monitor cybersecurity trends, ICS/OT threat landscapes, and emerging technologies, recommending tools and methods to enhance product security posture. + Partner with PSL, incident response and product security teams to support vulnerability remediation, post-incident analysis, and contribute to the creation of security documentation, including architecture specs, procedures, and training materials. + Represent the company in industry forums, standards bodies, and technical panels, and contribute to white papers, patents, and technical publications supporting innovation and thought leadership for Grid Automation. **Required Qualifications:** + Bachelor's degree in engineering, Computer Science, Cybersecurity, or a related field. + Minimum of 8 years of engineering experience, with 5 years focused on cybersecurity for embedded or software-defined systems. **Desired Characteristics:** + Professional certifications such as CISSP, GIAC (GPEN/GXPN), CEH, or ISA/IEC 62443 preferred. + Proven ability to secure OT/ICS environments, preferably within the energy or utilities sector. + Deep familiarity with industrial protocols (e.g., IEC 61850, DNP3, Modbus, IEEE 2030.5) and relevant cybersecurity standards. + Experience in embedded system development (C/C++, RTOS), as well as Linux/Windows platforms. + Strong hands-on background in PKI, identity management, network security appliances, and security monitoring. + Proficient in threat modeling, risk/vulnerability assessment, and using forensic/security analysis tools.. + Excellent communication and stakeholder engagement skills, able to translate technical content for non-technical audiences. + Exposure to quality improvement methodologies (e.g., Lean, Six Sigma) is a plus. + Recognized as a thought leader through publications, patents, or industry involvement. + Willingness to travel for customer engagements, conferences, and global collaboration. **Additional Information** **Relocation Assistance Provided:** No \#LI-Remote - This is a remote position Application Deadline: December 08, 2025 GE Vernova is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.

About VivSoft: VivSoft is a mission-driven technology company specializing in Cloud, DevSecOps, Artificial Intelligence, and Digital Experience. We are a diverse team of innovators focused on creating open, scalable, and automated solutions that drive digital transformation in the federal space. Our work culture fosters collaboration, creativity, and continuous learning. Job Summary: We are seeking a highly skilled DevSecOps Engineer to join our team and support the design, deployment, and optimization of cloud-native environments. This role involves managing Kubernetes clusters, implementing Infrastructure as Code (IaC), building CI/CD pipelines, and automating cloud operations. The ideal candidate is a self-starter with strong scripting skills, cloud platform experience, and a collaborative mindset. Key Responsibilities: Design, implement, and maintain Infrastructure as Code (IaC) using tools like Terraform Manage and administer Kubernetes clusters, including Helm chart deployments Develop and maintain automation scripts using Bash and Python Build and optimize CI/CD pipelines using GitLab or other Git-based platforms Support and troubleshoot workloads running on AWS (Azure experience is a plus) Collaborate with cross-functional teams using Confluence for documentation and JIRA for task tracking Troubleshoot and resolve issues across infrastructure, CI/CD, and application environments. Skills Required: Active TS Clearance (Top Secret) Minimum 2-5 years of experience with DevSecOps tools /processes, integration of security controls in cloud-native and containerized environments. Strong experience with Kubernetes management and administration Proficiency in Terraform or similar IaC tools Scripting skills in Bash and Python Hands-on experience in cloud-native environments Familiarity with CI/CD tools and pipeline optimization Ability to work collaboratively and communicate effectively with technical and non-technical stakeholders Self-motivated with a proactive learning attitude Consulting mindset with a focus on outcomes and problem-solving Preferred Skills: Experience with Golang, Kubernetes operators, and custom resource definitions (CRDs) Knowledge of observability tools such as Prometheus Certifications such as CKA, CKAD, CKS, or Security+ Benefits: Comprehensive Medical, Dental, and Visions Plans Life Insurance Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays) 401K Retirement Plan with employer match Professional Development Training Reimbursement Flexible/remote work schedule.

Responsibilities: Investigate security incidents and escalate when necessary Work Incident Response and Administrative tickets Perform and develop data mining queries using Splunk/Splunk ES Communicate in a clear and concise manner with Leadership, Customers and Peers Monitor and respond to multiple shared Mailbox inquiries Provide vulnerability, threat, and risk mitigation support Monitor Security Operations Dashboards for alerts Support daily Operations briefings Monitor and answer the SOC phone hotline Support customer defined metrics reports Support government data calls This opportunity offers remote work! Candidates must be willing to work in a SOC environment and demonstrate strong problem-solving skills Must be able to work well both on their own (in an individual setting) as well as with others (in a team setting) Must possess strong self-initiative, curiosity, and diligence - must be willing to engage with the team, in the capacity of both learning and sharing information

Join our global Cyber team as a Wordings Analyst supporting the Global Cyber Wordings Manager in the strategic development and governance of our Cyber and Tech policy suite, including Liberty Cyber Resolution and Liberty Tech Resolution. This role is a hands-on business enabler: you will help translate complex legal and regulatory requirements into clear, market-ready wordings, maintain our global clause library, support manuscript negotiations, and produce practical tools that empower underwriters and strengthen broker confidence. It's an excellent opportunity for an early-career insurance wordings or legal professional to build expertise in a fast-moving, global specialty line and make a visible impact on growth, innovation, and client experience. Key responsibilities: Wording library and drafting support Maintain and expand the global wording library centered on Liberty Cyber Resolution and Liberty Tech Resolution, including endorsements, exclusions, and guidance notes. Redline and prepare first drafts of standard clauses and endorsements; ensure consistency with definitions, coverage intent, and plain-language standards. Track version control, change logs, approvals, and archiving; Assist with localization for different jurisdictions, coordinating translations and filing documentation with Legal/Compliance. Commercial enablement Build practical tools (playbooks, FAQs, objection-handling guides, coverage summaries) to help regional teams position our products and close deals efficiently. Prepare broker/client comparison decks and battlecards; support pitches, RFP/RFI responses, and manuscript negotiations with clause comparisons and recommended alternatives. Triage wording queries from regions; track SLAs and referral approvals per the global governance framework. Partner closely with Underwriting, Product, Global Cyber Engagement, Claims, Legal/Compliance, and regional leaders to deliver accurate, timely support and uphold governance standards. Regulatory and legal stewardship Monitor and synthesize global regulatory and market developments (e.g., Lloyd's cyber war/systemic guidance, GDPR, DORA, NIS2, sanctions) into succinct briefs and recommended wording actions. Maintain audit-ready documentation; assist with regulatory filings or attestations where required. Claims partnership and feedback loop Collaborate with Claims to capture lessons from disputes and litigation trends; draft guidance notes and propose clarifications to improve coverage certainty. Support coverage position letters and documentation packs with research, citations, and clause histories. Innovation and product development support Help draft prototype wordings for new propositions Check alignment between underlying policy wordings and reinsurance treaty/facultative clauses. Administer wording management tools, ensuring robust version control, approval workflows, and usage analytics. Build dashboards and trackers for adoption of standard forms, deviation rates, SLA performance, disputes, and audit findings; provide monthly reporting to stakeholders. Qualifications Bachelor's degree in business, economics, or other quantitative field. Minimum 3 years, typically 4 years or more of relevant work experience. 2 - 5 years of experience in insurance wordings, legal/paralegal support, underwriting support, or product documentation; cyber specialty experience preferred. Strong drafting, redlining, and proofreading skills with a plain-language mindset and exceptional attention to detail. Working knowledge of insurance policy structures, endorsements, exclusions, and coverage interpretation; familiarity with cyber war/systemic language, sanctions, and privacy regulations is advantageous. Research and synthesis skills to translate complex regulatory/legal topics into practical guidance and actionable updates. Proficiency with MS Word (advanced track changes/redlining), Excel (trackers and dashboards), PowerPoint (training/pitch materials), and document/enablement tools. Collaborative, service-oriented approach; comfortable operating in a global matrix and meeting defined SLAs. Curiosity about cybersecurity risks and the incident response ecosystem; willingness to learn common threat scenarios to inform practical drafting. About Us Pay Philosophy: The typical starting salary range for this role is determined by a number of factors including skills, experience, education, certifications and location. The full salary range for this role reflects the competitive labor market value for all employees in these positions across the national market and provides an opportunity to progress as employees grow and develop within the role. Some roles at Liberty Mutual have a corresponding compensation plan which may include commission and/or bonus earnings at rates that vary based on multiple factors set forth in the compensation plan for the role. At Liberty Mutual, our goal is to create a workplace where everyone feels valued, supported, and can thrive. We build an environment that welcomes a wide range of perspectives and experiences, with inclusion embedded in every aspect of our culture and reflected in everyday interactions. This comes to life through comprehensive benefits, workplace flexibility, professional development opportunities, and a host of opportunities provided through our Employee Resource Groups. Each employee plays a role in creating our inclusive culture, which supports every individual to do their best work. Together, we cultivate a community where everyone can make a meaningful impact for our business, our customers, and the communities we serve. We value your hard work, integrity and commitment to make things better, and we put people first by offering you benefits that support your life and well-being. To learn more about our benefit offerings please visit: *********************** Liberty Mutual is an equal opportunity employer. We will not tolerate discrimination on the basis of race, color, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran's status, pregnancy, genetic information or on any basis prohibited by federal, state or local law. Fair Chance Notices California Los Angeles Incorporated Los Angeles Unincorporated Philadelphia San Francisco We can recommend jobs specifically for you! Click here to get started.

At Veza, we're building the next generation of Access Identity Security - and we're bringing GenAI into the core of that mission. We're seeking a Senior Backend Engineer who is excited to work on multi-agent systems, LLM-based automation, and Model Context Protocols (MCP) to transform how access control intelligence is built and delivered. This is a rare opportunity to operate at the frontier of LLM research and backend systems engineering, contributing to both the design of scalable architectures and the implementation of intelligent agents that reason, decide, and act. You will: Building APIs and backend services, test and evaluation frameworks in Python/Golang to support agentic workflows. Prototyping and productizing LLM-based capabilities into the identity access pipeline. Developing agent orchestration layers and working with frameworks like LangGraph or AutoGen. Designing systems around context-awareness, memory, and autonomous decision-making. You Have: Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field. Experience: 5+ years of backend development experience. Strong proficiency in one or more programming languages, such as Python, Golang, or Java. Experience designing and implementing RESTful APIs and Microservices Architectures. Experience with cloud platforms, such as AWS, Azure, or Google Cloud Platform, and familiarity with IAM services and features. Curiosity and/or experience with GenAI technologies, multi-agent systems, or prompt orchestration. Strong communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Strong sense of Product feature Ownership - from Ideation to Deployment The compensation for this role depends on several factors such as the candidate's skills, qualifications, experience, and work location. For candidates offered a position at the posted job level, the provided range is the expected base salary. This does not include any additional variable compensation, such as commission. Compensation Disclosure $154,000-$210,000 USD Our Culture We're driven to build a strong company culture and are looking for individuals with solid alignment with the following: Ownership Mindset Act with Integrity Guardians of our Customers Opinionated Humility Build Trust, Earn Trust At Veza, your base pay is one part of your total compensation package. For this position, the reasonably expected pay range can be discussed with your recruiter for the level at which this job has been scoped. Your base pay will depend on several factors, including your experience, qualifications, education, location, and skills. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for equity and a competitive benefits package. Veza is proud to be an equal opportunity employer. We are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other applicable legally protected characteristics. We also consider qualified applicants according to applicable federal, state, and local laws. If a candidate with a disability requires an accommodation during the recruitment process, please email ******************* About Veza Veza is the identity security company. Identity and security teams use Veza to secure identity access across SaaS apps, on-prem apps, data systems, and cloud infrastructure. Veza solves the blind spots of traditional identity tools with its unique ability to ingest and organize permissions metadata in the Veza Authorization Graph. Global enterprises like Blackstone, Wynn Resorts, and Expedia trust Veza to visualize access permissions, monitor permissions activity, automate access reviews, and remediate privilege violations. Founded in 2020, Veza is headquartered in Redwood City, California, and is funded by Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures. Visit us at veza.com and follow us on LinkedIn, Twitter, and YouTube.

Founded over 35 years ago, First Quality is a family-owned company that has grown from a small business in McElhattan, Pennsylvania into a group of companies, employing over 5,000 team members, while maintaining our family values and entrepreneurial spirit. With corporate offices in New York and Pennsylvania and 8 manufacturing campuses across the U.S. and Canada, the companies within the First Quality group produce high-quality personal care and household products for large retailers and healthcare organizations. Our personal care and household product portfolio includes baby diapers, wipes, feminine pads, paper towels, bath tissue, adult incontinence products, laundry detergents, fabric finishers, and dishwash solutions. In addition, we manufacture certain raw materials and components used in the manufacturing of these products, including flexible print and packaging solutions. Guided by our values of humility, unity, and integrity, we leverage advanced technology and innovation to drive growth and create new opportunities. At First Quality, you'll find a collaborative environment focused on continuous learning, professional development, and our mission to Make Things Better . We are actively seeking an experienced Cyber Security Analyst to join our Security Operations Team. This is a remote opportunity. In this role, you will be responsible for incident detection, investigation and response, rules development tuning and improvement, defining and developing automations, and incorporating Threat Intelligence and Threat Hunting activities to enhance detection and mitigation strategies. Primary responsibilities include: Incident Detection and Response - Monitor and analyze alerts generated by SIEM/SOAR platforms and user reports, investigate security incidents, and execute containment and eradication procedures to minimize impact and restore normal operations. Tuning & Optimization - Continuously refine detection rules and SOC processes to reduce false positives, enhance detection accuracy, and improve overall operational efficiency. Research & Development - Explore emerging threats and attack techniques to develop and implement new detection rules to expand visibility and strengthen the organization's security posture. Threat Hunting - Proactively hunt for hidden threats by analyzing logs and identifying gaps missed by existing security tools and improve security posture. Threat Intelligence - Review threat intelligence feeds, channels and articles to identify potential risks and proactively strengthen defenses. Automation Development - Design, implement, and maintain automation solutions to streamline SOC workflows, reduce manual effort, and accelerate incident response times. Reporting - Prepare and present comprehensive reports on key SOC activities, metrics, and security trends to stakeholders and management. Penetration Testing - Participate in Red and Purple Team exercises to assess and improve the effectiveness of security controls and incident response capabilities. The ideal candidate should possess the following: Bachelor's degree in Computer Security, Cybersecurity, Information Security, or a related field preferred. Additional relevant experience may be considered in lieu of a degree. Experience with advanced SIEM content development, including custom correlation rules, dashboards, and reporting. Minimum of 1 year of experience working in a Security Operations Center (SOC) environment, either in-house or with a Managed Security Service Provider (MSSP). Proficiency in scripting languages such as Python, PowerShell, or Bash for automating security tasks and processes. Direct involvement in end-to-end incident response, including root cause determination and post-incident reporting. Experience monitoring and securing cloud environments (e.g., Microsoft Azure, AWS, Google Cloud Platform). Hands-on experience working with SIEM (e.g. Splunk, Microsoft Sentinel, Qradar) Familiarity with EDR solutions like CrowdStrike, SentinelOne, Microsoft Defender for Endpoint or Cortex XDR. Understanding and familiarity with interpreting common log sources for monitoring and investigation (e.g. Firewall, Azure AD, Windows Security Log, Email, Proxy\URL Filtering etc.) Solid grasp of prevalent attack types, including phishing, brute-force attacks, malware, and data exfiltration techniques. Excellent verbal and written communication skills, with the ability to collaborate effectively with team members both within and outside the SOC. High level of situational awareness and problem sensitivity, with the ability to proactively identify issues and escalate concerns as appropriate. Demonstrated proactive mindset, strong sense of responsibility, and urgency in addressing security incidents and tasks. Ability to work independently, manage multiple priorities, and succeed in a fast-paced, dynamic environment. Strong motivation and willingness to continually learn and grow, adapting to new tools and evolving threat landscapes. What We Offer You We believe that by continuously improving the quality of our benefits, we can help to raise the quality of life for our team members and their families. At First Quality you will receive: • Competitive base salary and bonus opportunities • Paid time off (three-week minimum) • Medical, dental and vision starting day one • 401(k) with employer match • Paid parental leave • Child and family care assistance (dependent care FSA with employer match up to $2500) • Bundle of joy benefit (year's worth of free diapers to all team members with a new baby) • Tuition assistance • Wellness program with savings of up to $4,000 per year on insurance premiums • ...and more! The estimated annual base salary range for this position is $110,000 - $140,000. Base pay is only part of our total compensation package, which also includes an attractive annual discretionary bonus and robust suite of employee benefits for which you are eligible to participate in starting on your first day of employment. Base pay offered will be determined on an individualized basis and we will consider your location, experience, and other job-related factors. First Quality is committed to protecting information under the care of First Quality Enterprises commensurate with leading industry standards and applicable regulations. As such, First Quality provides at least annual training regarding data privacy and security to employees who, as a result of their role specifications, may come in to contact with sensitive data. First Quality is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, sexual orientation, gender identification, or protected Veteran status.

Lambda, The Superintelligence Cloud, is a leader in AI cloud infrastructure serving tens of thousands of customers. Our customers range from AI researchers to enterprises and hyperscalers. Lambda's mission is to make compute as ubiquitous as electricity and give everyone the power of superintelligence. One person, one GPU. If you'd like to build the world's best AI cloud, join us. *Note: This position requires presence in our San Francisco or San Jose office location 4 days per week; Lambda's designated work from home day is currently Tuesday. What You'll Do Validate and verify the organization's security controls and practices meet the requirements of ISO 27001, 27701, PCI, SOC 2 and other relevant regulatory requirements to ensure alignment to business objectives Manage IT Risk Register including risk identification, tracking, and prioritization. Assist with and drive remediation of control deficiencies and gaps Provide guidance to Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) Communicate with technical and non-technical stakeholders and leaders on cybersecurity risk and controls management topics and program-specific reporting Assist with the Customer Trust program which may include managing customer assessments, and security questionnaires Assist control owners with root cause analysis and track risk management action plan progress. Create risk metrics for management regarding information security control maturity, compliance status, risks, performance and findings Assist with the third-party risk management assessment process, ensuring consistent enforcement of information security requirements You Have a minimum of 8 years of experience supporting cybersecurity risk or controls management programs with in-depth knowledge and experience of cybersecurity frameworks including ISO 27001 and 27701, PCI-DSS, SOC, NIST CSF and other regulatory requirements Have experience managing and running audits, certification programs and control assessments. This includes but is not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, and mapping issues to risks Have experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations Possess a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives Nice to Have Experience in the machine learning or computer hardware industry Experience with Security by Design and/or Privacy by Design principles Experience with standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework (CSF), NIST 800.53, NIST 800.171, CMMC, Cybersecurity Maturity Model Certification (CMMC), ISO 27001 and 27701, and SOX ITGC control frameworks. Broad knowledge of IT infrastructure and architecture of computer systems as well as exposure to a variety of platforms such as operating systems, networks, databases, and ERP systems Familiarity with using third-party tools such as Audit Board, Whistic, RSA Archer, ServiceNow for third-party risk management Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Certified in Risk and Information Systems Control (CRISC) Experience in the AI infrastructure, machine learning and/or computer hardware industry Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. About Lambda Founded in 2012, with 500+ employees, and growing fast Our investors notably include TWG Global, US Innovative Technology Fund (USIT), Andra Capital, SGW, Andrej Karpathy, ARK Invest, Fincadia Advisors, G Squared, In-Q-Tel (IQT), KHK & Partners, NVIDIA, Pegatron, Supermicro, Wistron, Wiwynn, Gradient Ventures, Mercato Partners, SVB, 1517, and Crescent Cove We have research papers accepted at top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG Our values are publicly available: ************************* We offer generous cash & equity compensation Health, dental, and vision coverage for you and your dependents Wellness and commuter stipends for select roles 401k Plan with 2% company match (USA employees) Flexible paid time off plan that we all actually use A Final Note: You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills. Equal Opportunity Employer Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.

Job DescriptionSenior Systems Engineer SAP Security & GRC, immediate start. I am working with a Pharmaceutical client with an urgent requirement for a Senior Systems Engineer to own and drive their SAP Security & GRC roadmap across S/4HANA and adjacent platforms (Ariba, MDG, BTP). What you'll do: Define and maintain SAP security guidelines, SoD frameworks, and compliance controls (SOX, GxP, ITGC) Lead SAP GRC 12.x (ARM, ARA, BRM, EAM, access certifications) implementations, role design, and CHARM workflows Support upgrades, Greenfield implementations, and security enhancements Serve as primary contact for audits, KPI reporting, and continuous improvement initiatives Explore AI/ML solutions for predictive access analytics and compliance automation The ideal consultant will have: 78 years of SAP Security & GRC experience, including S/4HANA and Fiori-role design Hands-on experience with SAP GRC 12.x modules and CHARM processes Deep knowledge of access-management principles, SoD analysis, SOX/GxP compliance, and ITGCs Experience across SAP applications: Ariba, MDG, GTS, BTP, ATTP Excellent troubleshooting, communication, and stakeholder collaboration skills Work remote temporarily due to COVID-19.

Together, We Enhance Innovation and Growth i2G specializes in advanced physical electronic security and life safety solutions. I2G has proven experience in surveillance, access control, and intrusion detection systems, biometrics, fence sensors, radars, ground sensors, anti-drone technologies, and more. We excel in design, project management, commissioning, and enterprise technology integrations. i2G's mission is to provide the products and services that meet our customers' needs to give them a vital advantage in today's market, helping to protect what matters most. This position will provide engineering design and support for security solutions for new and existing clients while working alongside internal teams, external teams, clients, and subcontractors to ensure project success. Responsibilities Possess a thorough understanding of standard Electronic Security technology (ACS, IDS, FDS, CCTV) and supporting equipment such as computer software/hardware, databases, and networking infrastructure. Ability to review architectural, electrical, telecommunication, security engineering floor plans, riser drawings, device schedules, and detail drawings. Design, develop, and implement solutions for system installations, upgrades, repairs, and conversions. Review of Field Site Survey documentation and provide technical assistance with RFI/RFP responses. Create solution design documentation (drawings, BOMs, solution design summaries). Provide technical support for in-office and on-site team members. Support management in the process of creating documentation for implementing new technology with new and existing customers. Maintain familiarity with current and emerging electronic security technologies such as access control, video surveillance, intrusion detection, biometrics, etc. and industry leading vendors. Qualifications A minimum of 3-7 years previous experience in the industry. Associate or bachelor's degree in relevant field preferred or applicable amount of experience in the appropriate field may be substituted for the educational background. Experience in the design and planning of access control and video systems. Professional Electronic Security Certifications or training (Lenel, Genetec, C-Cure. Avigilon, Axis, Bosch, Milestone, etc.) preferred. Other Eligibility Requirements Ability to manage time and multiple tasks without supervision. Organizational skills & detail oriented. Good analytical and problem-solving skills. Excellent presentation, writing skills, verbal, and written customer communication skills. Experience in computer programs such as Microsoft Office, Adobe, etc. preferred. Microsoft Project, Visio, BlueBeam, AutoCAD, or Revit is a plus. Company Overview This is a Security Systems Engineer career opportunity with i2G Systems. Learn more about i2G: *************************************** "Kastle Systems Makes Strategic Investment in i2G Systems, Strengthening Leadership in Serving High-Security Industries and High-Value, Large Scale Facilities" Read More About the Partnership Here: *********************************************************************************************************************************************************************************** Equal Opportunity Statement We are an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, age, protected veteran status, marital status, pregnancy or any other basis protected by applicable federal or state laws.

is remote and can be performed from anywhere in the United States. Cyber security analysts are responsible for managing, monitoring, troubleshooting and protecting both the security of our internal environment and that of our customers. They will perform any steps necessary to that end. They will design, implement, monitor, and evaluate the security systems that protect an organization's computer systems and data. As a Cyber Security Analyst, you will monitor the computer networks under management for security issues, install security software, and document any security issues you identify. This role also acts as the first point of contact for customer related security incidents and questions. KEY RESPONSIBILITIES: Act as the primary point of escalation for Cyber Security Analyst I technicians Provides coaching to Cyber Security Analyst I employees on how to perform their duties Create complex detection/correlation rules utilizing our SIEM and other security infrastructure to enhance detection ratios and monitor for emerging threats Create, distribute and perform training for the Cyber Security Analyst I technicians on techniques and capabilities to improve the team's responsiveness and effectiveness as a whole Performs all of the following functions of a Cyber Security Analyst I, with proficiency Monitor computer networks for security issues and respond accordingly, including: Creating/Managing firewall rules Managing anti-virus endpoint tools Performing event correlation analysis on potential threats identified through our SIEM Configuring/Managing log management Configuring/Managing file integrity monitoring Performing vulnerability scans and remediation of identified risks The methodology & analysis of identifying compromised servers Performing rule tuning in our SIEM for improved detection capabilities Interact with customers by phone, chat, or trouble ticket on any customer facing security issues Investigate, document and assess security breaches and other cyber security incidents Install security measures and operate software to protect systems and information infrastructure, including firewalls and data encryption programs Prepare security reports for customer business insights reviews to support our guidance level agreements initiatives Identify and fix detected vulnerabilities to maintain a high-security standard Work with other technology teams and customers to perform tests and uncover network or other vulnerabilities May be relied upon as a technical point of contact during Escalated Events relating to security Review, investigate and respond to any external “abuse” complaints coming from our IP space Develop best practices for IT security Research security enhancements and make recommendations to management Handle escalated internal or customer security issues from support or another operations team Takes part in any security-oriented projects or critical initiatives Stay up to date on information technology & security news, trends and standards Deliver an exceptional customer experience every day Other duties as identified or assigned DESIRED ROLE OUTCOMES: Keep us and our customers free from security incidents but respond capably when one occurs Our detection of security threats is continually improving Provide valuable insights and visibility around security incidents to our customers Have a staff of customer focused, energetic and security savvy team members REQUIRED SKILLS: A minimum of 2 years' experience in a security analyst role Bachelor's degree in Computer Science or related field or equivalent experience. Additional certifications in security related disciplines (e.g.: Security+, CEH, CISSP, etc.) are preferred Must have experience in a Security Operations Center (SOC) Must have technical troubleshooting and problem-solving skills Understanding of network management principles Experience in systems administration of Windows and Linux based operating systems Working knowledge of Palo Alto or Fortinet firewalls, Microsoft Azure, Microsoft Sentinel SIEM solution or similar technologies Understanding of firewalls, proxies, SIEM, antivirus, penetration testing, vulnerability scans and IDS/IPS concepts Ability to identify and mitigate network vulnerabilities and explain how to avoid them Understanding of patch management with the ability to deploy patches in a timely manner while understanding business impact Ability to learn and communicate technical information to non-technical people Must have excellent written & oral communication skills, and strong interpersonal skills Must emulate the Ntirety Values in all that they do Ntirety is an Equal Employment Opportunity / Affirmative Action Employer (EEO/AA). Ntirety offers a competitive salary and benefits including unlimited Paid Time Off, FREE Medical to Employees, Dental, retirement plan with 401(k) match, and much more. If you are interested in joining a profitable, growing, and dynamic company, we want to hear from you! Ntirety is an Equal Opportunity Employer and does not discriminate on the basis of race, color, religion, sex, age, national origin, disability, veteran status, sexual orientation, or any other classification protected by Federal, State or local law. Ntirety thanks all candidates for their interest; however, only shortlisted candidates will be contacted.

About Us At SentinelOne, we're redefining cybersecurity by pushing the limits of what's possible-leveraging AI-powered, data-driven innovation to stay ahead of tomorrow's threats. From building industry-leading products to cultivating an exceptional company culture, our core values guide everything we do. We're looking for passionate individuals who thrive in collaborative environments and are eager to drive impact. If you're excited about solving complex challenges in bold, innovative ways, we'd love to connect with you. What are we looking for? We are looking for a highly motivated, collaborative and experienced Senior InfoSec Risk Specialist with a security-focused mindset who can balance risk, business drivers and timelines. This position will be responsible for understanding and supporting the design of SentinelOne's organizational, procedural and technological security controls within the context of the security frameworks applicable to SentinelOne. In addition, you will be responsible for identifying and testing appropriate controls to ensure they are designed, implemented, and operating effectively to mitigate risk. The selected employee will help implement, automate, document and maintain controls while supporting and responding to inquiries from internal and external stakeholders. This individual must be self-directed and be able to work independently and collaboratively. What will you do? Support the planning and performance of IT risk-based security audits and projects, risk assessments, execution of fieldwork and communication to stakeholders. Help in evaluating relevant global standards, compliance frameworks and regulations to analyze existing controls; identify areas for improvement; and design control growth. Collaborate with process and control owners through the audit lifecycle for process documentation updates, testing coordination, remediation of identified deficiencies and advising on internal control enhancements or process changes, as appropriate. Proactively manage audit findings, tracking and documentation of status updates obtained via action owners, and timely execution of remediation activities. Participate in internal security and compliance programs and track recurring controls, such as SSAE 18 SOC 2, ISO 27001/27002. Provide control consultative support to the business to assist in redesign efforts to improve the control environment and identify opportunities for control improvements with the objective of mitigating risk and improving compliance and operational performance. Help support internal/external audits and evidence collection via a GRC tool. Document new and update existing policies, procedures, standards and resources Participate in Security awareness program, train personnel on data security and privacy-related processes and responsibilities. Help support customer security reviews, RFPs and external security and privacy inquiries. Participate in defining, collecting and tracking various Security Metrics. What skills and experience should you bring? 5+ years of experience working in information security, risk or compliance. Experience working with Security Controls across at least some of the following domains: Access Management, Encryption, Risk Management, Network Security, Configuration Management, Patch Management, Change Management, Awareness and Training, BC/DRP, etc. Ability to perform internal audits with minimal direct supervision, exhibit professional audit judgment and have experience in a broad range of audit projects such as SSAE 16/18 SOC 2, ISO 27001/2, NIST. Strong risk management experience, performing assessments and audits, designing controls, managing enterprise control frameworks, and prioritizing risk. Strong project management skills and ability to manage a variety of projects simultaneously to completion within the agreed timelines. Excellent collaboration and interpersonal skills. Must be able to communicate with all levels in the organization. Ability to communicate effectively, in writing and verbally, to target audiences, including customers, partners, auditors, executive management, vendors, and peers. Experience working with both technical and non-technical teams. Ability and desire to understand the intent of requirements and provide effective recommendations. Ability to prioritize in a highly dynamic work environment. Our Preferred Qualifications: Advanced degree in computer science, Information Technology, Information Security or related field. Experience with, and strong understanding of common Security Compliance frameworks, controls, and best practices such as COSO, SOC 2, SOX ITGC, ISO 27001/27002, GDPR, PCI, NIST and other applicable regulatory compliance frameworks. Relevant certifications (ISO 27001 LA/LI, CISA, CISM, CISSP, CRISC, etc.) Ability to assess and pragmatically define scope and relevant controls. Strong desire to learn and continuously develop and deepen technical skills. Why us? You will be joining a cutting-edge company where you will tackle extraordinary challenges and work with the very best in the industry. Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA Unlimited PTO Industry-leading gender-neutral parental leave Paid Company Holidays Paid Sick Time Employee stock purchase program Disability and life insurance Employee assistance program Gym membership reimbursement Cell phone reimbursement Numerous company-sponsored events, including regular happy hours and team-building events This U.S. role has a base pay range that will vary based on the location of the candidate. For some locations, a different pay range may apply. If so, this range will be provided to you during the recruiting process. You can also reach out to the recruiter with any questions. Base Salary Range$104,000-$138,000 USD SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. SentinelOne participates in the E-Verify Program for all U.S. based roles.

Job DescriptionBenefits: 401(k) 401(k) matching Competitive salary Dental insurance Health insurance Opportunity for advancement Paid time off Vision insurance Benefits/Perks Competitive Compensation Career Advancement Opportunities Great Work Environment Job Summary We are seeking an experienced Information Security Manager to join our team! As our Information Security Manager, you will be responsible for managing all Information Security projects, ensuring the safety and security of the data in our care, and identifying and eliminating threats before they start. You will also work closely with other departments to ensure compliance with security best practices and create reports to present to upper management and other department heads on security protocols. The ideal candidate has previous experience working in Information Security, has demonstrable experience leading a team, and has a deep understanding of best security practices. Responsibilities Manage IT projects and oversee goals, ensure metrics are being met, and projects are being completed in a timely manner Work closely with staff to manage any support issues that arise, handle all user access credentials, and hardware inventory Maintain and adjust any documentation for users in regard to common technology processes, hardware handling, and more Maintain and adjust any communications procedures to ensure staff issues are being heard and handled appropriately Investigate any security incidents and handle documentation and remediation Monitor security systems to protect data and spot any questionable activity before it becomes a threat Present reports to upper management to discuss security concerns and ongoing efforts, as needed Qualifications Previous experience in IT Security and Management preferred Strong interpersonal and communication skills Demonstratable experience and knowledge in IT, security, and best practices Strong leadership ability Self-driven and motivated The ability to meet deadlines and work under high-pressure situations Flexible work from home options available.

Primary Responsibilities: Execute and support the Risk Management Framework (RMF) lifecycle including system categorization, control selection, implementation, assessment, and authorization. Develop, maintain, and validate System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, Contingency Plans (CPs), and related compliance documentation. Conduct and lead vulnerability assessments, leveraging tools such as Nessus, ACAS, and Fortify to identify and prioritize remediation efforts. Perform continuous monitoring of security controls and produce metrics, dashboards, and evidence in support of ATO renewals and sustainment. Analyze and respond to security incidents, working with SOC personnel and SIEM tools to evaluate logs, investigate events, and contain potential threats. Conduct internal audits and risk assessments to validate the effectiveness of implemented controls and identify compliance gaps. Provide security guidance to engineering and development teams, ensuring adherence to cybersecurity standards in a DevSecOps environment. Stay informed of evolving threats, vulnerabilities, and regulatory changes to proactively enhance security postures. Coordinate with Security Control Assessors (SCAs), ISSOs, system owners, and federal stakeholders on audit readiness and policy compliance. Draft and enforce cybersecurity policies, SOPs, and standards that support mission-critical systems across hybrid environments. All other duties as assigned by management. Qualifications Bachelor's or Associate's degree in Computer Science, Math, Information Technology, Engineering, or related field. Five (5) years of directly relevant experience may substitute for two (2) years of formal education. Minimum of five (5) years of experience in experience with vulnerability scanning tools and security assessment methodologies. Minimum of five (5) years of experience with network security, firewall management, intrusion detection/prevention systems (IDS/IPS). Minimum of (5) years of experience with Security Information and Event Management (SIEM). Minimum of five (5) years of experience in the risk management framework. Basic knowledge of the following: Active Directory, UNIX, RHEL, Windows, Relational Databases. Previous support of federal government enterprise systems or DHS/DOD programs is strongly preferred. Must have an active DoD Secret Clearance.

United Community is seeking an experienced Information Security Controls Analyst to serve as a subject matter expert in evaluating and strengthening our cybersecurity and technology controls. This role plays a critical part in assessing risk exposure, recommending control improvements, and ensuring alignment with regulatory standards and business risk tolerance. You'll collaborate with enterprise risk, compliance, and legal teams to provide visibility into our risk posture and drive meaningful change across the organization. What You'll Do * Review and document the adequacy of security and technology controls across business and IT environments. * Evaluate control posture through interviews, documentation reviews, and workflow analysis. * Recommend and support implementation of risk reduction strategies via policies, procedures, and technical controls. * Partner with risk management and security leadership to align controls with organizational risk tolerance. * Identify control strengths and weaknesses related to privacy, security, resiliency, and compliance. * Document and advocate for control improvements that balance risk with operational efficiency. * Support control development across testing, QA, and production environments. * Present control effectiveness reports to senior risk leadership. * Stay current on regulatory requirements, internal policies, and industry best practices. Requirements For Success Experience: * 3+ years in cybersecurity or IT practitioner roles. * 2+ years in IT risk or controls analysis. * Practical experience with risk management and IT control frameworks. Education: Bachelor's degree preferred in Information Assurance, Computer Science, Engineering, or a related technical field. Required Skills: * Strong understanding of risk frameworks (CRI, COSO, RMF, COBIT, NIST). * Familiarity with regulatory standards (PCI, FFIEC, SOX, HIPAA, GDPR, CCPA, GLBA). * Experience with CIS CSC, ISO 2700, or NIST CSF. * Excellent written and verbal communication across all organizational levels. * Strong organizational skills and ability to meet SLAs. * Sound judgment and decision-making in complex scenarios. * High integrity, trustworthiness, and adaptability. Preferred Skills: * Certifications such as CISSP, CISA, CRISC, or CISM. * Technical experience with enterprise networks, applications, and directory services. * Familiarity with enterprise GRC platforms. Conditions of Employment * Must be able to pass a criminal background & credit check * This is a full-time, non-remote position FLSA Status: * Exempt We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state, or local protected class. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Pay Range USD $49,972.00 - USD $76,958.00 /Yr.