Database security expert jobs near me

Full-time Description Alaska Northstar Federal is currently seeking a Security Expert II to join our high-powered team for a long-term, fully remote opportunity supporting a DoD program with the US Air Force. Performs a variety of routine project tasks applied to specialized cyber security problems. Experience with providing cyber security support for planning, design, development, testing, demonstration, integration of information systems. Experience assisting in assessment and authorization activities for DoD information systems. Experience utilizing eMASS to document security control test results. Knowledgeable with creating and updating RMF related artifacts specific to NIST security control families. Experience with RMF, eMASS, ACAS and Air Force A&A process. Provides cyber security support for planning, design, development, testing, demonstration, integration of information systems. Develops System Security Plan using Risk Management Framework (RMF) for DoD Information Technology (IT). Performs STIG review, remediation and communication of findings. Integrates electronic processes or methodologies to resolve total system problems, or technology problems as they relate to cyber security requirements. Leads mitigation of vulnerabilities derived from security scans. Capable of developing and implementing policies and procedures to ensure that systems support the organization's business requirements and meet the needs of end users. Defines systems requirements based on user/client needs, cost, and required integration with existing applications, systems, or platforms. Performs and parses security scans of applications, infrastructure, and plugins using program defined toolsets including Checkmarx and SonarQube. Familiar with a variety of the technical field's concepts, practices, and procedures. Relies on extensive experience and judgment to plan and accomplish goals. Works with project managers, developers, and end users to ensure application designs meet business requirements. Provides functional or operational support to project development and software test team members. Handles complex application strategies features and technical concepts. Familiar with a variety of software engineering concepts, practices, and testing procedures. Familiar with Configuration Management tools, and advance software test tools capable evaluating information assurance and functional performance. Typically reports to a head of a unit/department or project manager. Requirements Minimum Candidate Requirements Candidate must be a US Citizen Candidate must have an active DoD Secret Clearance at minimum Candidate must possess an active 8140 DCWF Role 722 Intermediate level certification or one of the following: (SecurityX/ CASP+, CCISO, CCSP, CGRC/CAP, Cloud+, GSEC, Security+ or SSCP) Candidate must have 10+ years experience with the following: Meeting technical requirements relevant to the cyber security roles, responsibilities, and technical system functionality and processes. Setting up and managing Impact Level (IL) 2, IL4, and IL5 environments (DoD Cloud and security standards). Secure enclave architecture and deployment. Infrastructure as code (e.g., Terraform, AWS CloudFormation). Understanding of KPIs and metrics for infrastructure (e.g., CPU usage, network throughput) and security (e.g., access logs, intrusion detection). Implement security monitoring techniques, including anomaly detection and threat analysis. Familiarity with DevOps pipelines and practices (CI/CD) to enhance the continuous delivery of code and system improvements. Strong communication skills for engaging with stakeholders, including senior leadership, technical teams, and governance bodies. Ability to document and communicate technical and governance outcomes clearly and concisely. Team collaboration skills to work across departments and with Capability Delivery Teams (CDTs). Strong experience with the DoD Risk Management Framework (RMF) process to include usage of eMASS. Desired Knowledge, Skills, and Abilities Bachelor's degree Experience managing tickets, facilitating meetings, and leading team efforts for smooth onboarding, migration, and governance processes. Experience in Agile methodologies (Scrum, Kanban, SAFe), including planning, execution, and retrospective processes. Skills in configuring Jira workflows, boards, and issue tracking for Agile SDLC processes. Proficiency in integrating tools (e.g., Jira, Bitbucket) with DevOps workflows to support collaborative development. Skills in facilitating the onboarding and migration of CDTs, including requirement gathering, complexity scoring, and task management. Proficiency in conducting TIMs and managing migration task lifecycles. Work Environment Office environment. Requires ability to provide clear, concise, accurate and timely communication, both verbally and in writing (100%). Requires ability to interact professionally with co-workers, management, and client (100%). Occasional business travel may be required. Only requested and approved expenses will be covered by ANF. About ANF Alaska Northstar Federal (ANF) maintains an outstanding work environment that includes competitive compensation, outstanding benefits, and challenging work assignments with opportunities for advancement/career growth. To be considered for employment opportunities you must complete an online application. EEO Statement ANF is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or protected veteran status. U.S. Citizenship is required for most positions. ANF is an advocate of preferential hiring and professional development of qualified Shee Atiká Inc shareholders, their spouses and descendants, and Alaska Natives in accordance with Public Law 93-638. For further information on our equal opportunity protections as part of the employment process: http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf Accessibility ANF is committed to expanding access to employment for people with disabilities and disabled veterans. If you are a qualified individual with a disability or a disabled veteran, and your disability prevents you from applying, please advise what reasonable accommodation ANF can provide to assist you in applying for one of our open positions. You may contact us by sending an email to sgs-hr@sheeatikagov.com Reasonable accommodations are considered on a case-by-case basis. Please note that only those inquiries concerning a request for reasonable accommodation for applying for a specific posted position will be responded to. Requests will be kept confidential and shared strictly on a need-to-know basis. Please be aware, scammers may try to impersonate our company by reaching out regarding job opportunities. We will never ask you for bank account information, checks, or other sensitive information as part of our hiring process. If you're unsure, please email sgs-hr@sheeatikagov.com with questions. The pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. Salary Description $130,000 - $150,000

Job Announcement Position: Part-Time Security Expert (Report Writing - Equipment and Weapons) Company Name: SafeSec Group Company Website: ********************* SafeSec Group, a global leader in security and defense strategy solutions, is seeking a part-time Security Expert specializing in writing comprehensive reports on security equipment and weapons systems. This role requires a solid understanding of security technologies, exceptional analytical skills, and the ability to produce high-quality technical reports that will inform strategic decisions for our clients. Key Responsibilities: Write detailed market analysis reports and technical assessments related to security equipment and weapons systems. Conduct thorough research and provide actionable insights on the latest advancements in security technologies, weaponry, and tactical applications. Analyze global defense trends and propose recommendations based on deep technical evaluations. Regularly produce high-quality documents that outline the operational benefits, strategic value, and technological innovations of security solutions. Stay informed on emerging technologies, industry standards, and regulatory changes, ensuring all reports reflect the latest developments. Collaborate with internal teams and external experts to enhance the quality and accuracy of published materials. Qualifications: Strong academic background or professional experience in security studies, military technologies, or related fields. In-depth knowledge of security equipment, weapons systems, and their applications in defense and law enforcement. Proven experience in technical writing, particularly on complex, specialized subjects (military, security, defense). Exceptional writing, editing, and communication skills in English; proficiency in additional languages is a plus. Strong analytical skills with the ability to convey complex technical concepts in an accessible and persuasive manner. Ability to work independently, manage time efficiently, and meet deadlines. Preferred Qualifications: Experience with government agencies, defense contractors, or security firms. Expertise in weapons technologies, including firearms, non-lethal weapons, surveillance systems, and cybersecurity defense mechanisms. Familiarity with military procurement processes and global defense market trends. Fluency in additional languages (e.g., Chinese, Russian, French) is a plus. Work Style: Part-time, flexible hours with remote work options. Ability to collaborate with international teams and adhere to strict deadlines. Compensation will be based on experience and work volume. Compensation: Competitive pay based on experience and qualifications.

What Makes a Honda, is Who makes a Honda Honda has a clear vision for the future, and it's a joyful one. We are looking for individuals with the skills, courage, persistence, and dreams that will help us reach our future-focused goals. At our core is innovation. Honda is constantly innovating and developing solutions to drive our business with record success. We strive to be a company that serves as a source of “power” that supports people around the world who are trying to do things based on their own initiative and that helps people expand their own potential. To this end, Honda strives to realize “the joy and freedom of mobility” by developing new technologies and an innovative approach to achieve a “zero environmental footprint.” We are looking for qualified individuals with diverse backgrounds, experiences, continuous improvement values, and a strong work ethic to join our team. If your goals and values align with Honda's, we want you to join our team to Bring the Future! The Honda Development and Manufacturing Production Engineering team is responsible for the operational technology security of the manufacturing environment. The OT Security Cyber Prevention Engineer works across multiple technical and business areas to develop, implement, and maintain procedures, standards, and controls to prevent the risk or impact of a cyber incident. The scope of this function covers manufacturing equipment hardware/firmware/ software, OT enterprise systems, data analysis and reporting, and collaboration with IT/business users to ensure secure operation across all HDMA locations and equipment. New equipment introduction - set OT standards for new equipment, integrate equipment into the OT network, confirm vulnerabilities, perform risk assessments, and visibility of equipment within the asset management system. Training - support the creation, administration and maintenance of OT specific training material. Policies/procedures/auditing - create, issue, maintain, and audit OT specific policies and procedures. Access control (physical + logical) - set and implement technical standards for equipment level physical access and control access to OT related systems and equipment. OT standard creation - support the development, implementation, and maintenance of technical standards for the OT equipment and networks Risk metric management/assessments - establish company OT risk metrics and corresponding assessments to determine OT risk, perform risk assessments, and establish tools for visibility and reporting. Sensing/industry benchmarking - research technical and business OT security industry benchmarks and generate recommendations for adjustments to internal tools or practices to stay in alignment. What differentiates Honda and makes us an employer of choice? Total Rewards: Competitive Base Salary (pay will be based on several variables that include, but not limited to geographic location, work experience, etc.) Regional Bonus (when applicable) Manager Lease Car Program (No Cost - Car, Maintenance, and Insurance included) Industry-leading Benefit Plans (Medical, Dental, Vision, Rx) Paid time off, including vacation, holidays, shutdown Company Paid Short-Term and Long-Term Disability 401K Plan with company match + additional contribution Relocation assistance (if eligible) Career Growth: Advancement Opportunities Career Mobility Education Reimbursement for Continued learning Training and Development Programs Additional Offerings: Lifestyle Account Childcare Reimbursement Account Elder Care Support Tuition Assistance & Student Loan Repayment Wellbeing Program Community Service and Engagement Programs Product Programs Honda is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.

The Cyber Security Architect role is primarily responsible for designing, building, and maintaining secure data, systems and applications. This position plays a significant role in contributing to protect Henry Schein systems and infrastructure while ensuring compliance with relevant policies and regulations. A successful candidate will have a thorough understanding of complex IT systems and stay updated with the latest security standards, systems and authentication protocols. The ideal candidate serves as the liaison between the technology global organization, the business, and the security engineers and coordinates with system owners, service providers, and the rest of the information security organization on the design and implementation of the security requirements and controls. The role will report to the Senior Cyber Security Architect. The main duties and responsibilities include: Design a robust security system to protect the company's computer systems and networks from threats Designing robust security architectures for IT projects, including M&A activities Developing and maintaining security standards, and guidelines Conducting system security and vulnerability analyses and risk assessments Identifying integration issues and develop solutions to these issues Ensuring the architecture and security systems align with the business's goals and requirements Researching, designing and advocating new technologies, architectures, and security products Ensuring compliance with the changing laws and applicable regulations Participating in Incident Response and Forensic investigations Working with IT department and members of the information security team to design, implement, manage, and report on, the effectiveness of security controls Staying up to date with the latest security systems, standards, authentication protocols, and products Plan and implement security measures to protect sensitive data and systems from infiltration and cyber-attacks Design and implement user identity access management systems Evaluate new cybersecurity threats and IT trends and develop effective security measures Work very closely with infrastructure and application teams to secure Henry Schein systems and data Key roles for the position: Technical oversight: responsible for providing security personnel with technical guidance and supervision. Create proper documentation: plan, investigate, and build reliable, powerful, and flexible security architectures. Own security architecture and controls' framework: Planning, studying and then designing a resilient security architecture, and developing prerequisites for networks, firewalls, routers, and other network devices Awareness: work closely with the rest of the information security team to identify improvements and remedies based on vulnerability assessments, security testing, risk analysis, as well as internal and external audit findings Research: researching and implementing the updated security standards, systems, and best practices Requirements: 5-10 years of security experience 5-10 years of experience as a Security Architect or similar role Experience in cloud platforms, risk assessment tools, identity management and data encryption Knowledge of network security architecture concepts, including topology, protocols, components, and principles Understanding of advanced threat detection and network protocols Proficiency in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering Knowledge of disaster recovery, computer forensic tools, technologies, and methods Knowledge of industry-standard and organizationally accepted analysis principles and methods. Excellent problem-solving skills and ability to work under pressure A bachelor degree in computer science, Information Technology or relevant field Henry Schein, Inc. is an Equal Employment Opportunity Employer and does not discriminate against applicants or employees on the basis of race, color, religion, creed, national origin, ancestry, disability that can be reasonably accommodated without undue hardship, sex, sexual orientation, gender identity, age, citizenship, marital or veteran status, or any other legally protected status. For more information about career opportunities at Henry Schein, please visit our website at: *************************** Fraud Alert Henry Schein has recently been made aware of multiple scams where unauthorized individuals are using Henry Schein's name and logo to solicit potential job seekers for employment. Please be advised that Henry Schein's official U.S. website is ******************* . Any other format is not genuine. Any jobs posted by Henry Schein or its recruiters on the internet may be accessed through Henry Schein's on-line "career opportunities" portal through this official website. Applicants who wish to seek employment with Henry Schein are advised to verify the job posting through this portal. No money transfers, payments of any kind, or credit card numbers, will EVER be requested from applicants by Henry Schein or any recruiters on its behalf, at any point in the recruitment process.

The application window is expected to close on: November 21, 2025. Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received. Remote USA The successful applicant may be performing work on FedRamp environments and partnering with researchers and threat intel teams that require they be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. Citizen on U.S. soil. **Meet the Team** The Cisco Attack Surface Management (ASM) Team is a highly skilled and dynamic group focused on detecting and remediating Cisco's operational security risks inclusive of IT services, acquisitions, and BU operated infrastructure and services, initially concentrating on identifying and reducing risks associated with Cisco's external perimeter. The ASM service unifies tooling sources of truth, mis-configurations, and vulnerability data collected to enable executive accountability and track the prioritized remediation of all exploitable weaknesses within target operational level agreements. The team is at the forefront of cybersecurity, employing ground breaking technologies and methodologies to detect, analyze, and proactively address attack surface threats. **Your Impact** We are seeking an enthusiastic and motivated Security Architect to support the implementation, client-facing delivery, and continuous improvement of our attack surface management service. This role will contribute to the proactive, sustainable, and measurable reduction of operational risk at Cisco, addressing foundational improvements and security root cause resolution. Multi-Functional Collaboration: Team members work closely with experts across various domains, including investigations, analysis, vulnerability management, security architecture, threat intelligence, cyber legal, data protection, and compliance, providing opportunities to learn and grow while addressing sophisticated challenges. **Key Responsibilities** + Be a trusted security architect across every business unit for exposure detection and remediation + Lead multiple client engagements using a campaign-based, risk remediation approach as part of a bi-directional partnership with active Business Unit/Business Entity contacts to serve last mile capabilities at scale + Lead exposure management campaigns across the organization using tools and platforms like Axonius, BishopFox, Tenable, Wiz, and a variety of authoritative tools to provide insight for rapid remediation. + Design and implement security campaigns advised by vulnerability discovery, mis-configurations, and attack surface analysis using automated and manual techniques. + Identify gaps in tooling and visibility of operational assets and assist the clients and ASM Platform team in discovery of unknowns and enabling new data feeds. + Lead collaboration with key partners within the Security & Trust Organization including security operations, incident response, risk management, and offensive security teams to drive risk reduction. + Know the latest with emerging threats, attack techniques, and ASM technologies to continuously enhance the ASM program. + Provide guidance and training to security teams on security protocols and tools. + Foster long-term relationships with key client partners, understanding their critical business needs and helping them to proactively identify and address operational security risk. + Leverage your superb communication skills to articulate sophisticated security concepts to technical and non-technical partners. **Minimum Qualifications** + Bachelor's degree in Cybersecurity, Intelligence, or related field. + 7+ years of experience in threat intelligence, cybersecurity, or security operations. + Expertise in vulnerability management, threat modeling, and security risk assessment. + Solid knowledge of network, endpoint, server, and application security fundamentals. **Preferred Qualifications** + Ability to read/understand exploit code, development skills, and think like an attacker. + Certified Threat Intelligence Analyst (CTIA) or GIAC Cyber Threat Intelligence (GCTI). + Solid experience in integrating threat intelligence into security operations, including experience with API integrations, automated scanning, and security analytics. + Ability to work collaboratively in cross-functional teams and lead security initiatives. STO25 **Why Cisco?** At Cisco, we're revolutionizing how data and infrastructure connect and protect organizations in the AI era - and beyond. We've been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you'll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere. We are Cisco, and our power starts with you. **Message to applicants applying to work in the U.S. and/or Canada:** The starting salary range posted for this position is $148,000.00 to $187,800.00 and reflects the projected salary range for new hires in this position in U.S. and/or Canada locations, not including incentive compensation*, equity, or benefits. Individual pay is determined by the candidate's hiring location, market conditions, job-related skillset, experience, qualifications, education, certifications, and/or training. The full salary range for certain locations is listed below. For locations not listed below, the recruiter can share more details about compensation for the role in your location during the hiring process. U.S. employees are offered benefits, subject to Cisco's plan eligibility rules, which include medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, paid parental leave, short and long-term disability coverage, and basic life insurance. Please see the Cisco careers site to discover more benefits and perks. Employees may be eligible to receive grants of Cisco restricted stock units, which vest following continued employment with Cisco for defined periods of time. U.S. employees are eligible for paid time away as described below, subject to Cisco's policies: + 10 paid holidays per full calendar year, plus 1 floating holiday for non-exempt employees + 1 paid day off for employee's birthday, paid year-end holiday shutdown, and 4 paid days off for personal wellness determined by Cisco + Non-exempt employees** receive 16 days of paid vacation time per full calendar year, accrued at rate of 4.92 hours per pay period for full-time employees + Exempt employees participate in Cisco's flexible vacation time off program, which has no defined limit on how much vacation time eligible employees may use (subject to availability and some business limitations) + 80 hours of sick time off provided on hire date and each January 1st thereafter, and up to 80 hours of unused sick time carried forward from one calendar year to the next + Additional paid time away may be requested to deal with critical or emergency issues for family members + Optional 10 paid days per full calendar year to volunteer For non-sales roles, employees are also eligible to earn annual bonuses subject to Cisco's policies. Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components, subject to the applicable Cisco plan. For quota-based incentive pay, Cisco typically pays as follows: + .75% of incentive target for each 1% of revenue attainment up to 50% of quota; + 1.5% of incentive target for each 1% of attainment between 50% and 75%; + 1% of incentive target for each 1% of attainment between 75% and 100%; and + Once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation. For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay 0% up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid. The applicable full salary ranges for this position, by specific state, are listed below: New York City Metro Area: $177,400.00 - $259,600.00 Non-Metro New York state & Washington state: $158,100.00 - $230,400.00 * For quota-based sales roles on Cisco's sales plan, the ranges provided in this posting include base pay and sales target incentive compensation combined. ** Employees in Illinois, whether exempt or non-exempt, will participate in a unique time off program to meet local requirements. Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.

Who We Are: Headquartered in Washington, DC, Versar Global Solutions provides full mission lifecycle solutions for challenges faced by our government and commercial Customers in the natural, built, and digital environments. With nearly 2,000 team members around the world, and a rich legacy spanning more than 70 years, Versar Global Solutions delivers a broad array of planning, analysis and risk management solutions, project and program management, operations and maintenance services, and information technology applications for environmental management and remediation projects, mission critical facilities and installations, and in support of readiness and contingency operations. Who You Are: Versar Global Solutions is seeking a Security Architect (SIEM & SOAR) to support the DHS' Homeland Security Enterprise Network (HSEN) within the Office of the Chief Information Officer (OCIO), IT Operations, Enterprise Engineering Division (EED). This resource will be a member of a high functioning team of network and security engineers, data center specialists, and stakeholder groups, such as the DHS Network Operations Security Center - Cyber (NOSC-Cyber), ISSOs, and industry vendors, working to continually strengthen and secure HSEN and its data. The candidate's primary responsibility is to maintain and mature the existing DHS Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions, and lead the analysis, integration, and testing of this and new security tools and technologies. What You'll Do: Designing, implementing, and maintaining SIEM and SOAR solutions by collaborating effectively with NOSC-Cyber and other key stakeholder groups. Work in partnership with network and security engineers and cloud development teams to drive improvements to security requirements. Research the latest capabilities of SIEM, SOAR platforms and IT technologies (e.g. firewalls, operating systems, networks, storage, virtualization, AD, IPS, Proxies etc.) and be able to present findings to management. Optimize SIEM, SOAR and NOSC-Cyber architecture to improve efficiency and effectiveness of the platforms and processes. Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs. Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security‐relevant devices. Design and document existing production Swimlane environment to include Visio diagrams. What You'll Bring: BA or BS (Cyber Security, Computer Science, Information Systems, Software Engineering, Computer Engineering, or related field); relevant experience may be a substitute for education. At least six (6) years of professional experience cybersecurity, NOC/SOC environments, and IT Services environment, providing incident response. Demonstrated experience with SIEM and SOAR tool suites, with an emphasis on Swinlane and Splunk. Demonstrated experience endpoint security, network security (Firewalls, IPS/IDS, DNS, Proxy, etc.), data and application security, cloud security and technologies. Must be resourceful in learning a very complex and dynamically changing network. Must be a self-starter, able to work independently, and able to manage time effectively. Working knowledge of cloud platforms such as AWS, Azure. Desired certifications: Certification involving cybersecurity, CompTIA Security+, Splunk, CISSP, CCNP Security, CCIE Security. Desired software/hardware: Splunk, Swimlane, knowledge of at least one programming or scripting language (ex. Python, PowerShell, PHP, Perl), Windows/Linux experience. Ability to communicate effectively with all levels of an organization from engineering, operations, and management. Be authorized to work in the US or will be authorized by the successful candidate's start date to be eligible for a DHS EOD is required. Must be proficient in English, both written and verbal, to ensure effective communication and collaboration. Successful results of preemployment screenings, including federal background check, MVR, and drug screen. Comply with company drug and alcohol policy. Location Requirements The position will primarily work remote; however, preference will be given to those who reside locally to the MD/DC/VA areas. Compensation Expected Salary: $120,000 - $132,000 per year Versar Global Solutions is providing the compensation range and general description of other compensation and benefits that the Company in good faith believes it might pay and/or offer for this position based on the successful applicant's education, experience, knowledge, skills, and abilities in addition to internal equity and geographic location. The Company reserves the right to ultimately pay more or less than the posted range and offer additional benefits and other compensation, depending on circumstances not related to an applicant's status protected by local, state, or federal law. EEO Commitment Versar Global Solutions is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Versar Global Solutions complies with applicable state and local laws governing non-discrimination in employment in every location in which the company operates. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Versar Global Solutions expressly prohibits any form of unlawful employee harassment based on race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran. Improper interference with the ability of Versar Global Solutions employees to perform their job duties is not tolerated. #LI-FH1

About Extend: Extend is revolutionizing the post-purchase experience for retailers and their customers by providing merchants with AI-driven solutions that enhance customer satisfaction and drive revenue growth. Our comprehensive platform offers automated customer service handling, seamless returns/exchange management, end-to-end automated fulfillment, and product protection and shipping protection alongside Extend's best-in-class fraud detection. By integrating leading-edge technology with exceptional customer service, Extend empowers businesses to build trust and loyalty among consumers while reducing costs and increasing profits. Today, Extend works with more than 1,000 leading merchant partners across industries, including fashion/apparel, cosmetics, furniture, jewelry, consumer electronics, auto parts, sports and fitness, and much more. Extend is backed by some of the most prominent technology investors in the industry, and our headquarters is in downtown San Francisco. What You'll Do: Serve as a core member of Security Operations, monitoring and triaging alerts from platforms such as SentinelOne and Wiz. Perform end-to-end investigations to identify, contain, and remediate threats and incidents, driving timely, appropriate response. Proactively identify and assess vulnerabilities in infrastructure and code, working with development and other cross functional teams to address issues. Contribute to the end-to-end detection lifecycle: model attacker behaviors (MITRE ATT&CK), write and test detections as code across security programs and tooling (SentinelOne, Wiz, Okta, AWS CloudTrail), and continuously enrich to reduce false positives and improve MTTD. Support data quality and telemetry onboarding, maintain response playbooks, and provide threat validation assistance across the business. Assist teams with the application of secure configuration baselines and best practices in accordance with CIS Benchmarks, NIST, vendor hardening guides, and applicable compliance standards across all company computing assets. Correlate endpoint and infrastructure telemetry to identify emerging threats. Curate and operationalize intelligence (IOCs, TTPs) into detections and response playbooks, and maintain vetted intelligence feeds. Assist GRC initiatives by mapping controls to internal policies and frameworks (e.g., SOC 2, NIST CSF, NYC DFS 500), identifying gaps, supporting audits and evidence collection, tracking remediation, and maintaining policies and control documentation. Work with engineering and business teams to champion security best practices, communicate risks to accountable owners, and assist with mitigation planning and execution. What We Are Looking For: 3+ years experience in a Security Analyst / Security Operations role 3+ years experience with AWS CloudFormation, or other infrastructure-as-code systems (like Terraform) 3+ years experience or certification in AWS serverless technologies (API Gateway, Lambda, S3, DynamoDB) Certifications (one or more preferred): CISSP, CCSP, GIAC (GCIH/GCIA/GMON/GCED/GCFA/GREM), cloud security (AWS or cloud agnostic security specialty) or equivalent experience. Proficiency with hands on management and use of SIEM, CNAPP, EDR, Vulnerability Management tooling, and Detection Engineering strategies. Proficiency with AI technologies and the corresponding threat landscape and strategies for mitigation. Understands agentic workflows such as AWS Bedrock, MCP based workflows (or similar technologies) Working Knowledge of best practices around security roles and responsibilities for AWS IAM Experience working with observability services and tooling (including Coralogix, CloudWatch, OpenTelemetry) Ability to perform in a high energy environment with dynamic job responsibilities and priorities Nice to Haves: Experience with AWS Cloud Development Kit(CDK) Experience with Mastra AI Expected Pay Range: $157,000 - $182,000 per year salaried* * The target base salary range for this position is listed above. Individual salaries are determined based on a number of factors including, but not limited to, job-related knowledge, skills and experience. Life at Extend: Working with a great team from diverse backgrounds in a collaborative and supportive environment. Competitive salary based on experience, with full medical and dental & vision benefits. Stock in an early-stage startup growing quickly. Generous, flexible paid time off policy. 401(k) with Financial Guidance from Morgan Stanley. Extend CCPA HR Notice

The Role: As the Senior Systems Engineer you will own and drive Moderna's SAP Security and GRC roadmap-driving access-management procedures, periodic access reviews, and audit readiness across our global SAP landscape. You will architect secure, compliant solutions for S/4HANA and adjacent platforms (Ariba, MDG, BTP etc.), support Upgrades, Implementation and Enhancement initiatives for the Security and GRC scope. Here's What You'll Do: Security Governance & Compliance * Define and maintain SAP security guidelines, operating procedures, and SoD framework * Own SOX, GxP, and ITGC controls; coordinate testing and remediation * Drive periodic user-access reviews and license optimization initiatives Access Management & GRC * Experience with full-cycle implementation and support of SAP GRC 12.x modules (ARM, ARA, BRM, EAM, access certifications) * Design, build, and transport security roles across SAP landscapes; leverage CHARM workflows * Translate business requirements into technical role designs and custom GRC rules Architecture & Project Support * Set security and GRC architecture standards for ongoing SAP projects and upgrades * Evaluate risk and control impacts of role changes; provide guidance to project teams * Coordinate SIT/UAT for security objects and drive cut-over activities Audit, Monitoring & Reporting * Serve as primary contact for internal/external audit inquiries; deliver evidence and action plans * Track KPIs and SLAs, prepare regular metrics for management reporting * Lead Continuous Improvement of monitoring and alerting capabilities Innovation & AI Enablement * Research and recommend AI/ML solutions for predictive access analytics, risk scoring, and anomaly detection * Pilot and operationalize AI features that enhance security intelligence and compliance automation Here's what you'll bring to the table: * Education: Bachelor's degree or Equivalent * Overall Experience: 7-8 years of SAP Security & GRC (v10.0 +) experience, including S/4HANA and Fiori-role design. Deep knowledge of access-management principles, SOD analysis, SOX/GxP compliance, and ITGCs. Hands-on expertise with SAP GRC 12.0 modules (ARM, EAM, ARA) and CHARM processes in Solution Manager * Implementation Experience: Experience implementing GRC, supporting security design for Greenfield implementations, upgrades and similar projects * Applications/Solution experience: Security and GRC implementation experience for SAP Ariba, MDG, GTS, BTP, ATTP * Strong troubleshooting skills, attention to detail, and commitment to service-level excellence * Outstanding communication skills and aptitude for collaborating with technical and business stakeholders Preferred Qualifications * SAP certifications in Security and/or GRC Access Control * Global implementation or multi-landscape experience * Exposure to AI/ML tools for security analytics and compliance monitoring * Familiarity with SAP licensing models and optimization tactics Pay & Benefits At Moderna, we believe that when you feel your best, you can do your best work. That's why our US benefits and global well-being resources are designed to support you-at work, at home, and everywhere in between. * Best-in-class healthcare coverage, plus voluntary benefit programs to support your unique needs * A holistic approach to well-being, with access to fitness, mindfulness, and mental health support * Family planning benefits, including fertility, adoption, and surrogacy support * Generous paid time off, including vacation, volunteer days, sabbatical, global recharge days, and a discretionary year-end shutdown * Savings and investment opportunities to help you plan for the future * Location-specific perks and extras The salary range for this role is $130,800.00 - $209,400.00. This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An individual's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, performance, and business or organizational needs. The successful candidate may be eligible for an annual discretionary bonus, other incentive compensation, or equity award, subject to company plan eligibility criteria and individual performance. About Moderna Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world. By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities. We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S. If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities. Our Working Model As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute, and make a meaningful impact. Moderna is a smoke-free, alcohol-free, and drug-free work environment. Equal Opportunities Moderna is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply! Moderna is an E-Verify Employer in the United States. We consider qualified applicants regardless of criminal histories, consistent with legal requirements. Accommodations We're focused on attracting, retaining, developing, and advancing our employees. By cultivating a workplace that values diverse experiences, backgrounds, and ideas, we create an environment where every employee can contribute their best. Moderna is committed to offering reasonable accommodations to qualified job applicants with disabilities. Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should contact the Accommodations team at leavesandaccommodations@modernatx.com. Export Control Notice This position may involve access to technology or data that is subject to U.S. export control laws, including the Export Administration Regulations (EAR). As such, employment is contingent upon the applicant's ability to access export-controlled information in accordance with U.S. law. Due to the nature of the work and regulatory requirements, only individuals who qualify as U.S. persons (citizens, permanent residents, asylees, or refugees) are eligible for this position. For this role Moderna is unable to sponsor non-U.S. persons to apply for an export control license. #LI-CK1 *

At Veza, we're building the next generation of Access Identity Security - and we're bringing GenAI into the core of that mission. We're seeking a Senior Backend Engineer who is excited to work on multi-agent systems, LLM-based automation, and Model Context Protocols (MCP) to transform how access control intelligence is built and delivered. This is a rare opportunity to operate at the frontier of LLM research and backend systems engineering, contributing to both the design of scalable architectures and the implementation of intelligent agents that reason, decide, and act. You will: Building APIs and backend services, test and evaluation frameworks in Python/Golang to support agentic workflows. Prototyping and productizing LLM-based capabilities into the identity access pipeline. Developing agent orchestration layers and working with frameworks like LangGraph or AutoGen. Designing systems around context-awareness, memory, and autonomous decision-making. You Have: Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field. Experience: 5+ years of backend development experience. Strong proficiency in one or more programming languages, such as Python, Golang, or Java. Experience designing and implementing RESTful APIs and Microservices Architectures. Experience with cloud platforms, such as AWS, Azure, or Google Cloud Platform, and familiarity with IAM services and features. Curiosity and/or experience with GenAI technologies, multi-agent systems, or prompt orchestration. Strong communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Strong sense of Product feature Ownership - from Ideation to Deployment The compensation for this role depends on several factors such as the candidate's skills, qualifications, experience, and work location. For candidates offered a position at the posted job level, the provided range is the expected base salary. This does not include any additional variable compensation, such as commission. Compensation Disclosure $154,000-$210,000 USD Our Culture We're driven to build a strong company culture and are looking for individuals with solid alignment with the following: Ownership Mindset Act with Integrity Guardians of our Customers Opinionated Humility Build Trust, Earn Trust At Veza, your base pay is one part of your total compensation package. For this position, the reasonably expected pay range can be discussed with your recruiter for the level at which this job has been scoped. Your base pay will depend on several factors, including your experience, qualifications, education, location, and skills. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for equity and a competitive benefits package. Veza is proud to be an equal opportunity employer. We are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other applicable legally protected characteristics. We also consider qualified applicants according to applicable federal, state, and local laws. If a candidate with a disability requires an accommodation during the recruitment process, please email ******************* About Veza Veza is the identity security company. Identity and security teams use Veza to secure identity access across SaaS apps, on-prem apps, data systems, and cloud infrastructure. Veza solves the blind spots of traditional identity tools with its unique ability to ingest and organize permissions metadata in the Veza Authorization Graph. Global enterprises like Blackstone, Wynn Resorts, and Expedia trust Veza to visualize access permissions, monitor permissions activity, automate access reviews, and remediate privilege violations. Founded in 2020, Veza is headquartered in Redwood City, California, and is funded by Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures. Visit us at veza.com and follow us on LinkedIn, Twitter, and YouTube.

OppFi is a leading tech-enabled digital finance platform that works with banks to provide financial products and services for everyday Americans. Through a transparent and responsible platform, which includes financial inclusion and excellent customer experience, the Company supports consumers who are turned away by mainstream options to build better financial health. We are a team of caring, innovative, and inclusive individuals who thrive in being immersed in diverse talents, expertise, perspectives, and backgrounds. Our employees approach every new challenge with an unparalleled ability to see what could be rather than settle for what is. Our business principles guide us and create an open and collaborative culture where we improve 1% every day, and the best ideas always win! We welcome individuals who want to make an impact in the financial system by facilitating credit access, expanding financial inclusion, promoting financial health, and delivering exceptional customer service. A few other fun facts about us. OppFi is one of the top consumer-rated financial platforms online, maintaining a 4.5/5.0-star rating on Trustpilot. We are a 2025 Crain's Fast 50™ company and were named on Built In's 2025 Best Places to Work in Chicago. Senior Security Analyst III As Senior Information Security Analyst III, you will be a key contributor to our day-to-day security operations, assisting with threat monitoring, incident triage, vulnerability remediation, and GRC activities. This role is an excellent opportunity for someone with security experience who is eager to grow their skills in risk management, cloud environments and security best practices. You will work closely with senior team members and various OppFi internal teams to ensure our environment maintains security, visibility, and compliance standards. What you get to do: Information Security Risk Management: Own the security review and assessment process evaluating the risk associated with introducing new applications/tools into the environment. Assist with security risk management activities, including the analysis, quantification, and tracking of information security risks, plus the review and documentation of risk exception requests. Policy and Compliance Analysis: Identify emerging compliance requirements and assess their impact on our policies. Develop and refresh our policies, procedures, standards, and guidelines to stay compliant and aligned with industry best practices. Governance Visibility: Design and maintain dynamic dashboards or scorecards that offer clear insights into Information Security Governance activities, demonstrating our commitment to security and compliance. Security Operations & Incident Support Monitor security alerts from various tools (SIEM, EDR, cloud logs) and support the triage of potential security incidents by gathering initial data and escalating to senior engineers as needed. Assist in the execution of security incident response playbooks, focusing on initial steps like investigation, basic containment, and documentation. Contribute to the documentation and tracking of security incidents to support audit and compliance requirements. Support the monitoring and logging strategy by assisting with the configuration and tuning of SIEM (Security Information and Event Management) alerts and reports. Perform regular log review and analysis for suspicious activities under the guidance of senior staff. Improvement & Collaboration Contribute to the development and maintenance of operational playbooks and documentation for security processes. Learn to deploy and manage new security tools and assist in the development of basic threat detection logic. Develop basic security performance metrics and assist with reporting to measure the effectiveness of security controls. Performs other related duties as assigned. What you will bring to the team: 3-5 years of professional experience in Information Security or IT Risk Management, with a background supporting IT compliance programs to meet regulatory requirements and demonstrated expertise in at least one of the following areas: Security Operations, Incident Response, or Vulnerability Management. Experience with Security and control frameworks, such as FFIEC, NIST, COBIT, ITIL, and ISO control framework EDR platforms (e.g., CrowdStrike, Defender for Endpoint, SentinelOne) SIEM/SOAR tools (e.g., Sumo Logic, Splunk, Chronicle, or Azure Sentinel) CSPM tools (e.g., Wiz, Prisma, Orca) Vulnerability management platforms (e.g., Qualys, Tenable, Rapid7) Experience identifying potential IT controls risks and opportunities through and offering sustainable recommendations that address cause rather than symptoms Experience with information security standards, best practices for securing computer systems within applicable laws and regulations Experience with Governance Risk & Compliance (GRC) tools and procedure development Solid understanding of common attack techniques (MITRE ATT&CK), incident triage, and remediation workflows. Foundational knowledge of AWS (Amazon Web Services) or other cloud environments. Basic understanding of networking, operating systems (Linux/Windows), and common security principles (e.g., least privilege, defense-in-depth). Familiarity with automation frameworks or API integrations for security tools. Strong written communication skills necessary for developing clear, concise procedures and playbooks, coupled with effective verbal skills for communicating technical findings. Experience building dashboards and metrics for leadership visibility. Strong analytical and problem-solving skills with a keen attention to detail and a desire to learn quickly. Bachelor's degree in Cybersecurity, Computer Science, or equivalent experience. Certifications such as CompTIA CySA+, GCIH, GCIA, GMON, GCDA, GSOC, or CISSP associate are preferred. Experience working in a regulated industry (financial services or health care) Reports to: Manager, Security Operations Total Rewards and Benefits: At OppFi, we are committed to fostering a fair and equitable workplace. The compensation range for this role reflects our good faith compensation estimate for this position. Final offers are determined based on a myriad of factors including, but not limited to experience, skills, qualifications, and other relevant business considerations. Candidates are encouraged to discuss compensation expectations during the hiring process. In addition to base pay, the total compensation package includes eligibility and potential for performance-based bonuses and equity grants dependent upon the role and job level. OppFi offers a flexible, remote environment, 401(k) matching program, and generous paid time off. Other benefits include medical, dental, and vision coverage, and tuition reimbursement. Additional benefits include DoorDash DashPass, Figo pet insurance, Rocket Lawyer, and access to LinkedIn Learning. OppFi also offers Fringe, a lifestyle benefits platform that allows employees to decide how to spend rewards from dozens of vendors like Uber, DoorDash, and UrbanSitter. #LI-Remote Compensation Range:$102,400-$153,600 USD EEO Statement: OppFi is an equal opportunity employer and does not discriminate based on any actual or perceived legally recognized protected bases under local, state, federal law, or regulations. Our goal as a company is to build an equitable workplace that actively works to dismantle systems of oppression in our processes, procedures, and interactions. We aim to help our employees thrive where they work and beyond. Check out our Culture page here. As part of OppFi's commitment to providing equal opportunity to qualified individuals, OppFi will ensure that persons with disabilities are provided reasonable accommodation as defined by applicable laws and organizational policies. If reasonable accommodation is needed to participate in the job application or interview processes or job requirements, please contact our People Team at ********************. Pursuant to the requirements of the California Consumer Privacy Act, OppFi is providing the "OppFi California Employee Privacy Policy", which details the categories of personal information collected and your rights under the policy. If you are a California resident, please review the policy here: ******************************* The information in this document is for general informational purposes only. It is not intended to be an all-inclusive list or description of the organization and its requirements for positions and employees. OppFi reserves the right to modify or change the information on this document at its discretion.

BlackCloak's mission is to protect corporate executives and high-profile individuals in their personal lives, mitigating risks to their families, companies, reputation, and finances. We defend our clients' digital lives from hackers, privacy leaks, and identity theft. If you are passionate about helping to protect others, then keep reading - this may be your next great opportunity. Ready to be on the front lines of cybersecurity? BlackCloak is looking for a sharp and proactive Security Analyst to join our team. In this role, you'll be the first responder, monitoring and triaging security alerts from a variety of sources and leading the charge on security incidents. You'll play a critical part in our continuous compliance program, help develop our threat detection capabilities, and analyze emerging threats. If you're passionate about protecting against cyber threats and thrive in a fast-paced environment, we want to hear from you. What You Will Do * Monitor and triage security alerts from a variety of sources including SIEM (SecOps, Sentinel), EDR (SentinelOne, CrowdStrike) and cloud security platforms like Wiz, Orca. * Serve as a primary responder for security incidents, executing the incident response lifecycle from initial detection and containment to eradication and recovery. * Support development of threat detection library, including incorporating threat intelligence, tuning within security tools, and SOAR response actions. * Maintain and draft SOP's and supporting documents for the Incident Response Plan and strategy * Analyze phishing attempts, malware, and other cyber threats; partner with Security Engineering to devise additional security controls, administer email security, EDR, ZTNA, and other security tooling configurations to block emerging threats. * Participate in a 24/7 on-call rotation to respond to critical security incidents. * Support triage and response for compliance alerts and requests, enabling the continuous compliance program at BlackCloak using tools such as Vanta, Drata. * Prepare and present detailed incident reports and security metrics to technical and leadership audiences. What You Need To Be Successful * 4-6 years of direct experience in a Security Operations Center, incident response, threat intelligence, or similar cybersecurity role. * Ability to navigate complex problems, stay cool under pressure, and be highly inquisitive. * Hands-on experience with SIEM, SOAR, and other security platforms for log analysis, correlation, automated response, and maturation of detections/runbooks. * Deep understanding and practical experience with Endpoint Detection and Response (EDR) tools and their investigative capabilities. * Good knowledge of cloud security principles and services in AWS, Azure, or GCP, including experience with security tools like Wiz or Prisma Cloud. * Solid understanding of network protocols, operating systems (Windows, Linux, mac OS), and common attack vectors (OWASP, MITRE) * Familiarity with identity and access management concepts, including SAML, OAuth, and role-based access control (RBAC) * Relevant industry certifications are highly desirable, such as GIAC (GCIH, GCFA), CISSP, or CompTIA Security+. * Excellent problem-solving skills and the ability to communicate complex technical concepts to both technical and non-technical audiences. $100,000 - $130,000 a year About BlackCloak BlackCloak is an extremely fast-growing company in an entirely new product category. We have amazing product fit validated by industry awards and an impressive client base of Fortune 500 companies across all industries. BlackCloak offers a competitive salary, exceptional benefits, and a dynamic work environment. Below is a quick summary of BlackCloak's generous benefits package for full-time employees includes: * 100% Remote Company, within the USA * Comprehensive Medical, Dental, and Vision plans with a 100% employer-paid monthly premium option for employees & 50% employer-paid monthly premiums for dependents. * Health Savings Account with company contribution for eligible medical plans. * Flexible Vacation Plan * 10 Paid Company Holidays * 100% employer-paid Life, AD&D and Short- and Long-Term Disability Insurance * 401k with Traditional and Roth options, including employer match. * Company Equity * Paid Parental and Pregnancy Recovery Leave * Company and team off-sites and virtual events throughout the year * Home office stipend We are an equal opportunity employer. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, marital status, age, disability, national or ethnic origin, military service status, citizenship, or other protected characteristic. Learn More about Us Website: ********************* LinkedIn: /blackcloak Twitter: @BlackCloakCyber White Paper: ******************************************************************************************************* #liremote

Lambda, The Superintelligence Cloud, is a leader in AI cloud infrastructure serving tens of thousands of customers. Our customers range from AI researchers to enterprises and hyperscalers. Lambda's mission is to make compute as ubiquitous as electricity and give everyone the power of superintelligence. One person, one GPU. If you'd like to build the world's best AI cloud, join us. *Note: This position requires presence in our San Francisco or San Jose office location 4 days per week; Lambda's designated work from home day is currently Tuesday. What You'll Do Validate and verify the organization's security controls and practices meet the requirements of ISO 27001, 27701, PCI, SOC 2 and other relevant regulatory requirements to ensure alignment to business objectives Manage IT Risk Register including risk identification, tracking, and prioritization. Assist with and drive remediation of control deficiencies and gaps Provide guidance to Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) Communicate with technical and non-technical stakeholders and leaders on cybersecurity risk and controls management topics and program-specific reporting Assist with the Customer Trust program which may include managing customer assessments, and security questionnaires Assist control owners with root cause analysis and track risk management action plan progress. Create risk metrics for management regarding information security control maturity, compliance status, risks, performance and findings Assist with the third-party risk management assessment process, ensuring consistent enforcement of information security requirements You Have a minimum of 8 years of experience supporting cybersecurity risk or controls management programs with in-depth knowledge and experience of cybersecurity frameworks including ISO 27001 and 27701, PCI-DSS, SOC, NIST CSF and other regulatory requirements Have experience managing and running audits, certification programs and control assessments. This includes but is not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, and mapping issues to risks Have experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations Possess a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives Nice to Have Experience in the machine learning or computer hardware industry Experience with Security by Design and/or Privacy by Design principles Experience with standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework (CSF), NIST 800.53, NIST 800.171, CMMC, Cybersecurity Maturity Model Certification (CMMC), ISO 27001 and 27701, and SOX ITGC control frameworks. Broad knowledge of IT infrastructure and architecture of computer systems as well as exposure to a variety of platforms such as operating systems, networks, databases, and ERP systems Familiarity with using third-party tools such as Audit Board, Whistic, RSA Archer, ServiceNow for third-party risk management Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Certified in Risk and Information Systems Control (CRISC) Experience in the AI infrastructure, machine learning and/or computer hardware industry Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. About Lambda Founded in 2012, with 500+ employees, and growing fast Our investors notably include TWG Global, US Innovative Technology Fund (USIT), Andra Capital, SGW, Andrej Karpathy, ARK Invest, Fincadia Advisors, G Squared, In-Q-Tel (IQT), KHK & Partners, NVIDIA, Pegatron, Supermicro, Wistron, Wiwynn, Gradient Ventures, Mercato Partners, SVB, 1517, and Crescent Cove We have research papers accepted at top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG Our values are publicly available: ************************* We offer generous cash & equity compensation Health, dental, and vision coverage for you and your dependents Wellness and commuter stipends for select roles 401k Plan with 2% company match (USA employees) Flexible paid time off plan that we all actually use A Final Note: You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills. Equal Opportunity Employer Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.

Lambda, The Superintelligence Cloud, builds Gigawatt-scale AI Factories for Training and Inference. Lambda's mission is to make compute as ubiquitous as electricity and give every person access to artificial intelligence. One person, one GPU. If you'd like to build the world's best deep learning cloud, join us. * Note: This position requires presence in our San Francisco or San Jose office location 4 days per week; Lambda's designated work from home day is currently Tuesday. What You'll Do * Validate and verify the organization's security controls and practices meet the requirements of ISO 27001, 27701, PCI, SOC 2 and other relevant regulatory requirements to ensure alignment to business objectives * Manage IT Risk Register including risk identification, tracking, and prioritization. * Assist with and drive remediation of control deficiencies and gaps * Provide guidance to Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) * Communicate with technical and non-technical stakeholders and leaders on cybersecurity risk and controls management topics and program-specific reporting * Assist with the Customer Trust program which may include managing customer assessments, and security questionnaires * Assist control owners with root cause analysis and track risk management action plan progress. * Create risk metrics for management regarding information security control maturity, compliance status, risks, performance and findings Assist with the third-party risk management assessment process, ensuring consistent enforcement of information security requirements You * Have a minimum of 8 years of experience supporting cybersecurity risk or controls management programs with in-depth knowledge and experience of cybersecurity frameworks including ISO 27001 and 27701, PCI-DSS, SOC, NIST CSF and other regulatory requirements * Have experience managing and running audits, certification programs and control assessments. This includes but is not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, and mapping issues to risks * Have experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations * Possess a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives Nice to Have * Experience in the machine learning or computer hardware industry * Experience with Security by Design and/or Privacy by Design principles * Experience with standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework (CSF), NIST 800.53, NIST 800.171, CMMC, Cybersecurity Maturity Model Certification (CMMC), ISO 27001 and 27701, and SOX ITGC control frameworks. * Broad knowledge of IT infrastructure and architecture of computer systems as well as exposure to a variety of platforms such as operating systems, networks, databases, and ERP systems * Familiarity with using third-party tools such as Audit Board, Whistic, RSA Archer, ServiceNow for third-party risk management * Certified Information Systems Auditor (CISA) * Certified Information Security Manager (CISM) * Certified Information Systems Security Professional (CISSP) * Certified in Risk and Information Systems Control (CRISC) * Experience in the AI infrastructure, machine learning and/or computer hardware industry Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. About Lambda * Founded in 2012, ~400 employees (2025) and growing fast * We offer generous cash & equity compensation * Our investors include Andra Capital, SGW, Andrej Karpathy, ARK Invest, Fincadia Advisors, G Squared, In-Q-Tel (IQT), KHK & Partners, NVIDIA, Pegatron, Supermicro, Wistron, Wiwynn, US Innovative Technology, Gradient Ventures, Mercato Partners, SVB, 1517, Crescent Cove. * We are experiencing extremely high demand for our systems, with quarter over quarter, year over year profitability * Our research papers have been accepted into top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG * Health, dental, and vision coverage for you and your dependents * Wellness and Commuter stipends for select roles * 401k Plan with 2% company match (USA employees) * Flexible Paid Time Off Plan that we all actually use A Final Note: You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills. Equal Opportunity Employer Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.

Taxwell helps everyday Americans get every tax advantage they deserve by finding credits and deductions they never even knew existed. Our tax preparation software offers easy guidance and ensures your maximum tax refund. We strive to build a team of like-minded experts in both tax and technology who align with our brand purpose, are advocates for our customers and have a fresh, non-traditional approach to the tax industry. The Sr. Security Ops Analyst/Incident Response role is a part of the Taxwell IRM team. IRM SecOps provides cyber security monitoring, reporting, and response along with detection capabilities and threat hunting. Duties include, but are not limited to: Receive incident escalations from monitoring team and assist with real-time advanced analysis, response, and reporting. Mentor and assist in training analysts to aid in their skills development and analytical capabilities. Proactively hunt for threats and enacting identification, containment, and eradication measures while supporting recovery efforts. Point person for coordination with appropriate parties during a security incident - client, management, legal, security, operations, etc. Create thorough reports and documentation of all incidents and procedures, presenting findings to team and leadership on a routine basis Supports detection capabilities and refines process through alert validation. Performs threat hunting and proactive incident response. Completes follow-through to ensure quality forensic materials are captured, preserved and documented along with details and timelines of events and recommendations to avoid future occurrences. Assist in the general maintenance and improvement of processes and/or playbooks. Conduct research regarding the latest methods, tools, and trends in digital forensics analysis. Conduct analysis using logs, previous alerts, etc. to identify trends to identify and prevent potential incidents. Ingest data from multiple sources and aggregate client metrics. Basic Qualifications Bachelor's degree or equivalent combination of CISSP certification and prior experience Five or more years of experience in information systems security. Good communication skills to interact with clients, team members, management, and support personnel. Good analytical and problem-solving skills. Ability to work independently and as part of a team, be highly self-motivated. Experience with cloud environments, such as Microsoft Azure and Amazon. Web Services; Container services and Kubernetes; Azure Monitor and/or Sentinel; Experience with AD and Entra ID; Mimecast and Microsoft Purview; Microsoft OpenAI Services; AWS technologies such as EC2, ECS, Lambdas, LightSail, and VMware Cloud. Ability to script in PowerShell, Python. Preferred Qualifications Previous expertise in consulting or finance, tax background desirable Preferred experience with EDR solutions such as Defender XDR and CrowdStrike Falcon. Experience in Data Visualization (example: PowerBI). Preferred experience with Splunk and osquery. GIAC GCFA and/or GCFR certification. Work Environment Requires being on-call during off hours. May require occasional weekend work. Location is Remote. #LI-DNI At Taxwell, we believe our work benefits from the diverse perspectives of our employees. As such, Taxwell welcomes and celebrates diversity and inclusion and is committed to equal opportunity employment. At Taxwell, you can expect a supportive, open, and inclusive atmosphere and a team that values your contributions. Taxwell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants without regard to race, color, religion, sex, national origin, age, d isability, marital status, sexual orientation, gender identity, veteran status, and any other status protected under applicable law. Taxwell considers information gathered in the hiring process, including information on this application, confidential, and only shares it on a need-to-know basis or as required by law. If you need assistance or accommodation due to a disability, you may contact us at ************** or by calling ************ extension 6049 to speak with a member of the HR Talent Acquisition team.

SpyCloud is on a mission to make the internet a safer place by disrupting the criminal underground. SpyCloud's solutions thwart cyberattacks and protect more than 4 billion accounts worldwide. Cybersecurity is an exciting, evolving space, and being at the forefront of the fight to disrupt cybercrime makes SpyCloud a special place to work. If you're driven to align your career with a fantastic mission, look no further! *This role can be hybrid out of Austin (preferred) or remote in the United States with occasional travel to the office (around once per quarter) We are looking for a passionate Senior Security Data Analyst/Python Developer to help us parse, transform, and analyze dirty data. The ideal candidate has a thorough understanding of Python, Data analysis techniques, AWS, ETL patterns, and Automation techniques. Our Stack: Python Linux Databases: Relational and NoSQL AWS (EC2, RDS, SQS, S3, Lambda, API Gateway, and more) What You'll Do: Parse and transform structured and unstructured datasets. Build Python-based automation for the parsing platform. Bring order to dirty and/or unstructured data. Develop ETL-style automation scripts. Maintain and improve the existing codebase and infrastructure. Manage the weekly data ingestion process. Collaborate with the team to design and build innovative data systems. Data analysis based on the consumption of blogs for the marketing team. Develop processes, standards and CI/CD pipelines to manage our codebase. Leverage AI to automatically parse data. Requirements: 5-7 years of professional experience as a Python developer. A love of working with data. Familiarity with cleaning/transforming data. Experience building data solutions and automation tools using Python. Proficient in Linux bash/ksh scripting and Regular Expressions. Interest in cybersecurity. Strong understanding of computer science fundamentals (data structures, algorithms, data processing). Experience with relational and NoSQL databases. Excellent communication skills. Great team player. Self-directed, empathetic, and eager to automate repetitive tasks. Able to switch contexts as business needs change. Nice to Have: Background or strong interest in cybersecurity. Familiarity with Git version control system. Experience with AWS (Compute, Storage, Database). Experience working with Infrastructure as Code (we use Terraform and Ansible). SpyCloud is not sponsoring visas at this time. U.S.-Based Benefits + Perks (for Full Time Employees): At SpyCloud, we are committed to working alongside individuals who are equally passionate about preventing cybercrime, regardless of their department or role. Guided by our core values in all business decisions, we prioritize unity in our mission and ensure all SpyCloud employees have the support and benefits they need to stay focused on our goals. In addition to our engaging workspace in South Austin, flexible and remote-friendly work options, and competitive salary package, we offer our employees a comprehensive benefits package that includes: 401(k) with Employer Contribution Health, Vision, and Dental Insurance Health Savings Account (HSA) available with Employer Contribution Employer Paid Life, Short-term, and Long-term Disability Insurance Generous PTO Plan and 16 paid holidays per year U.K.-Based Benefits + Perks (for Full Time Employees): Retirement Savings Plan with Employer Contribution Employer Provided Private Health Insurance and Healthcare Cashplan Employer Paid Life Insurance and Income Replacement Generous Holiday Plan and 14 paid holidays per year About SpyCloud: SpyCloud is on a mission to disrupt the cycle of cybercrime. As the leader in Cybercrime Analytics, our solutions thwart cyberattacks that originate from the use of stolen data, including account takeover, ransomware, and online fraud. More than 550 customers and partners trust SpyCloud to protect users' identities, prevent targeted attacks, and unmask adversaries attempting to harm businesses and their customers. To learn more and see insights on your company's exposed data, visit SpyCloud. Our Mission: Our mission is to make the internet a safer place by disrupting the criminal underground. Together with our customers and partners, we aim to end criminals' ability to profit from stolen information. Who We Are: SpyCloud is a place for innovative, collaborative, and problem-solvers to thrive. Individually, we're amazing, but together, we're unstoppable. We celebrate diversity and various perspectives and aim to create an inclusive and supportive environment for all. We are proud to be an Equal Employment Opportunity and Affirmative Action employer of choice. All aspects of employment decisions will be based on merit, performance, and business needs. We do not discriminate on the basis of any status protected under federal, state, or local law. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Women, minorities, individuals with disabilities, and protected veterans are encouraged to apply. SpyCloud complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. SpyCloud expressly prohibits any form of workplace harassment. Improper interference with the ability of SpyCloud's employees to perform their job duties may result in discipline up to and including discharge. SpyCloud shares the right to work and participates in the E-Verify program in all locations. If you need assistance or accommodation due to a disability, you may contact us. Our Culture: Our culture is something really special. We're all driven to disrupt the cybercriminal economy as we keep customer accounts safe from compromise. We support a truly worthy and serious mission, but we have fun doing it together. If you are driven, inventive, and collaborative, you'll fit right in. SpyCloud's Recruitment Policy: We will never ask an applicant for sensitive or personal financial information during the recruitment process. We advise all applicants seeking employment with SpyCloud to review available information on recruitment fraud. Anyone who suspects that they have been contacted by someone falsely representing SpyCloud should email ********************. Compensation Transparency Policy: At SpyCloud, we believe in transparency and fairness in compensation. We strive to ensure that all employees are fairly compensated for their contributions, and we openly discuss our compensation philosophy and structure. We are committed to providing competitive salaries and benefits packages to attract and retain top talent, and we encourage open dialogue and feedback regarding compensation matters. Learn more and apply: SpyCloud Careers

STRS Ohio, STRS STRS Ohio is seeking a Securities Analyst II, Senior Securities Analyst, or a Consulting Analyst, International Equity (Developed Markets) to join the Investment/International Equity team. Nearly two-thirds of STRS Ohio's investment assets are managed internally by more than 100 Investment Department professionals. Established in 1920 and serving Ohio's educators, STRS Ohio is one of the nation's largest retirement systems, serving over 500,000 active, inactive, and retired public-school teachers, and university faculty members, managing approximately $96.9 billion as of June 30, 2024, in assets and paying more than $7 billion in benefits annually. STRS Ohio provides a competitive pay, and a comprehensive benefits package including on-site parking, educational assistance, subsidized medical insurance, fully paid dental and life insurance, vacation and sick leave, retirement benefits and on-site fitness center. At STRS Ohio, you can experience rewarding work in a professional, business casual work environment. We welcome, celebrate, and promote respect for everyone. We are continually seeking bright and talented individuals to join our team. Compensation: Competitive Pay Work Schedule: 8:00am-5:00pm Monday through Friday (Onsite) General Summary (Grades I2A-Public, I3A-Public, I4A-Public): Under the direction of the portfolio manager, International Equity, research and analyze international market data and make investment recommendations based on fundamental security analysis. Summary of Responsibilities (Grades I2A-Public, I3A-Public, I4A-Public): Gather and analyze fundamental country, industry, and company data, including but not limited to, examination of accounting, financial and competitive factors. Prepare written reports and conduct valuation work using methods including discounted cash flow analysis to recommend buy, sell, hold actions with a goal of meeting the long-term performance objectives of the total fund. Conduct timely fundamental macroeconomic and market-related country data analysis on assigned countries. Keep the portfolio manager well informed of key developments of portfolio investments and regularly monitor earnings announcements and update models as needed. The above list of duties is intended to describe the general nature and level of work performed by persons assigned to this classification. It is not to be construed as an exhaustive list of duties performed by the persons so classified, nor is it intended to limit or modify the right of any supervisor to assign, direct and control the work of associates under supervision. Summary of Qualifications (Grades I2A-Public, I3A-Public, I4A-Public): Bachelor's degree with an emphasis in business administration, economics, statistics, finance, applied mathematics or a quantitatively oriented field required. Master's degree with an emphasis in business administration, economics, statistics, finance, applied mathematics or quantitatively oriented field preferred. (Grade I3A-Public & Grade I4A-Public) Two to five years' experience performing analytical securities research preferred. (Grade I2A-Public) Five to eight years' experience performing analytical securities research strongly preferred. (Grade I3A-Public) Eight or more years' experience performing analytical securities research strongly preferred. (Grade I4A-Public) Chartered Financial Analyst (CFA) Charterholder preferred. Ability to independently conduct research, analyze trends, model proforma financials and make recommendations to other members of the international equities team preferred. Proven ability and willingness to exhibit leadership in enhancing the overall body of knowledge of STRS Ohio. Excellent oral and written communication skills required. Excellent organizational skills and a high degree of accuracy and attention to detail required. Ability to work independently and in a team environment while meeting deadlines with minimal direct supervision required. Equal Employment Opportunity Employer Statement State Teachers Retirement System of Ohio (STRS) is an Equal Employment Opportunity Employer and prohibits discrimination and harassment of applicants or employees on the basis of race, color, religion, gender, gender identity or expression, national origin (ancestry), military status, disability, age, genetic information, sexual orientation, or caregiver status, in making employment-related decisions about an individual. ADA Statement STRS Ohio is committed to ensuring access, inclusion, and reasonable accommodations across all its services, activities, programs, and employment opportunities in accordance with the Americans with Disabilities Act (ADA) and other applicable laws. Posting Drug-Free Workplace Statement The State Teachers Retirement System of Ohio (STRS Ohio) is a drug-free workplace. The use of recreational marijuana and non-medical cannabis is strictly prohibited. Pre-Employment Drug Testing All final candidates tentatively selected for employment will be required to undergo a urinalysis drug screening prior to appointment. This screening includes testing for illegal substances, including marijuana. A positive test result will disqualify the applicant from employment unless valid medical documentation is provided for legally prescribed medications or a physician's recommendation for medical marijuana. Pre-Employment Background Investigation The final candidate selected for this position will be subject to a criminal background check. STRS Ohio will conduct an individualized assessment of any prior criminal convictions before making a determination regarding employment eligibility.

Your Role We are seeking a Senior Security Analyst reporting to the Cybersecurity Architecture team that will have a critical role in translating enterprise security standards into actionable technical controls and processes. This position acts as a security subject matter expert, focusing on ensuring the security integrity of technology solutions from the initial phases of a project through deployment. The successful candidate is analytical and detail-oriented, has intellectual curiosity, focus on problem solving, and proactive in adapting and anticipating risks. Why You Belong Here At Victoria's Secret & Co, you'll join a world-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You'll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy. We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you'll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real-world experience, and learn from the best in the business. Your Impact Architectural Guidance and Review: * Conduct thorough project security assessments (including risk analysis, penetration test coordination, and vulnerability reviews) on existing infrastructure and new application designs. * Develop and socialize robust security requirements and technical specifications for new systems, platforms, and architectural patterns, ensuring alignment with risk, regulatory, and compliance needs. * Diagram and document the security posture of critical enterprise assets, creating clear, technical representations of control mapping, data flow, and threat models. * Inform and update internal security standards and requirements. Security Technology Portfolio: * Research and evaluate the latest security threats, technologies, and industry best practices. * Oversee the effective implementation and maintenance of defined security controls (e.g., identity management, data protection, network segmentation) across various cloud and on-premises environments. Collaboration: * Educate teams on secure design principles, defensive programming techniques, and proper configuration of security tools and services. * Develop and grow relationships with system and technology owners across the business. Ad-hoc duties as assigned Click here for benefit details related to this position. Minimum Salary: $96,500.00 Maximum Salary: $131,775.00 VS&Co provides a range of compensation for this role as shown. Your actual salary will be determined by a number of factors, including: your specific skills and experience, geographic region, or other relevant factors. Qualifications Your Experience Required Qualifications * Strong understanding of IT security concepts and technologies. Have experience with specific security tools and applications, such as firewalls, intrusion detection systems, and vulnerability scanners. * Strong communication skills, the ability to problem solve, and work as part of a team. * Work effectively with other IT and security professionals, as well as business stakeholders. * Experience with security frameworks (e.g., NIST CSF, SABSA, TOGAF) and risk methodologies (e.g., FAIR, OCTAVE). Preferred Qualifications * 5+ years of progressive experience in security, with at least 1 year in a dedicated security architecture role. * Relevant industry certifications such as ISA/IEC 62443 (Cybersecurity Risk Assessment Specialist), CISA (ISACA Certified Information Systems Auditor), CSA CGC (Cloud Security Alliance Cloud Governance and Compliance), GCIP (GIAC Critical Infrastructure Protection) * Bachelor's degree in Computer Science, Information Technology, or a related field; or equivalent practical experience. We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: California Fair Chance Act, Los Angeles Fair Chance Initiative for Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance An equal opportunity employer, we do not discriminate in hiring or terms and conditions of employment because of an individual's race, color, religion, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, marital status or any other protected category recognized by state, federal or local laws. We only hire individuals authorized for employment in the United States.

Job DescriptionSenior Systems Engineer SAP Security & GRC, immediate start. I am working with a Pharmaceutical client with an urgent requirement for a Senior Systems Engineer to own and drive their SAP Security & GRC roadmap across S/4HANA and adjacent platforms (Ariba, MDG, BTP). What you'll do: Define and maintain SAP security guidelines, SoD frameworks, and compliance controls (SOX, GxP, ITGC) Lead SAP GRC 12.x (ARM, ARA, BRM, EAM, access certifications) implementations, role design, and CHARM workflows Support upgrades, Greenfield implementations, and security enhancements Serve as primary contact for audits, KPI reporting, and continuous improvement initiatives Explore AI/ML solutions for predictive access analytics and compliance automation The ideal consultant will have: 78 years of SAP Security & GRC experience, including S/4HANA and Fiori-role design Hands-on experience with SAP GRC 12.x modules and CHARM processes Deep knowledge of access-management principles, SoD analysis, SOX/GxP compliance, and ITGCs Experience across SAP applications: Ariba, MDG, GTS, BTP, ATTP Excellent troubleshooting, communication, and stakeholder collaboration skills Work remote temporarily due to COVID-19.

**NATIONAL LEADERS IN PEDIATRIC CARE** Ranked among the top 10 pediatric hospitals in the nation, Children's Hospital Los Angeles (CHLA) provides the best care for kids in California. Here world-class experts in medicine, education and research work together to deliver family-centered care half a million times each year. From primary to complex critical care, more than 350 programs and services are offered, each one specially designed for children. The CHLA of the future is brighter than can be imagined. Investments in technology, research and innovation will create care that is personal, convenient and empowering. Our scientists will work with clinical experts to take laboratory discoveries and create treatments that are a perfect match for every patient. And together, CHLA team members will turn health care into health transformation. Join a hospital where the work you do will matter-to you, to your colleagues, and above all, to our patients and families. The work will be challenging, but always rewarding. **It's Work That Matters.** **Overview** **This position is 100% remote. CHLA requires a primary residence in CA prior to start date.** **Purpose Statement/Position Summary:** The Information Security Architect serves a crucial role in ensuring the confidentiality, integrity, and availability of CHLA's information assets and technology resources. They will serve as lead for the information security architecture and engineering team. Responsibilities include leading the planning, designing, implementation and operationalization of security solutions aligned with CHLA policies and regulatory requirements. **Minimum Qualifications/Work Experience:** - Required: 10+ years of progressively responsible experience in information security, network architecture, or related fields, with a demonstrated track record of securing complex enterprise environments. - Deep understanding of security technologies and protocols, including VPN, IPSec, DES encryption, Digital Certificates, SSL/TLS, TCP/IP, DNS, DMZ, and web security architectures. - Hands-on experience with security tools such as Nmap, Nessus, CoreImpact, CyberArk, Qualys (Q1), WebInspect, Snort, or similar vulnerability assessment, identity management, and intrusion detection/prevention solutions. - Familiarity with enterprise security architecture frameworks and integration of security controls across cloud and on-prem environments. - In-depth knowledge of information security standards, frameworks, and regulatory requirements including HIPAA, HITECH, NIST, and ISO 27001. - Strong understanding of data confidentiality, risk assessment, and compliance monitoring across desktop, server, application, database, and network layers. - Familiarity with IT governance and process frameworks, including ITIL, LEAN, and Six Sigma methodologies. - Experience in designing and implementing enterprise-wide security policies, standards, and procedures to ensure secure operations. - Strong analytical, problem-solving, and decision-making capabilities, with the ability to anticipate and mitigate complex security threats. - Excellent communication (oral, written, and presentation) and interpersonal skills, with a consultative and collaborative approach to working with stakeholders at all levels. **Education/Licensure/Certification:** Required: Bachelor's Degree in Computer Science or Computer Software Engineering, or equivalent combination of relevant education and experience may be considered. Training and certification on network equipment and protocols. CISSP or GIAC certifications. **Pay Scale Information** USD $116,189.00 - USD $199,181.00 CHLA values the contribution each Team Member brings to our organization. Final determination of a successful candidate's starting pay will vary based on a number of factors, including, but not limited to education and experience within the job or the industry. The pay scale listed for this position is generally for candidates that meet the specified qualifications and requirements listed on this specific job description. Additional pay may be determined for those candidates that exceed these specified qualifications and requirements. We provide a competitive compensation package that recognizes your experience, credentials, and education alongside a robust benefits program to meet your needs. CHLA looks forward to introducing you to our world-class organization where we create hope and build healthier futures. Children's Hospital Los Angeles (CHLA) is a leader in pediatric and adolescent health both here and across the globe. As a premier Magnet teaching hospital, you'll find an environment that's alive with learning, rooted in care and compassion, and home to thought leadership and unwavering support. CHLA is dedicated to creating hope and building healthier futures - for our patients, as well as for you and your career! CHLA has been affiliated with the Keck School of Medicine of the University of Southern California since 1932. At Children's Hospital Los Angeles, our work matters. And so do each and every one of our valued team members. CHLA is an Equal Employment Opportunity employer. We consider qualified applicants for all positions without regard to race, color, religion, creed, national origin, sex, gender identity, age, physical or mental disability, sexual orientation, marital status, veteran or military status, genetic information or any other legally protected basis under federal, state or local laws, regulations or ordinances. We will also consider for employment qualified applicants with criminal history, in a manner consistent with the requirements of state and local laws, including the LA City Fair Chance Ordinance and SF Fair Chance Ordinance. Qualified Applicants with disabilities are entitled to reasonable accommodation under the California Fair Employment and Housing Act and the Americans with Disabilities Act. Please contact CHLA Human Resources if you need assistance completing the application process. Our various experiences, perspectives and backgrounds allow us to better serve our patients and create a strong community at CHLA. IS - Information Security