Database Security Expert remote jobs

Full-time Description Alaska Northstar Federal is currently seeking a Security Expert II to join our high-powered team for a long-term, fully remote opportunity supporting a DoD program with the US Air Force. Performs a variety of routine project tasks applied to specialized cyber security problems. Experience with providing cyber security support for planning, design, development, testing, demonstration, integration of information systems. Experience assisting in assessment and authorization activities for DoD information systems. Experience utilizing eMASS to document security control test results. Knowledgeable with creating and updating RMF related artifacts specific to NIST security control families. Experience with RMF, eMASS, ACAS and Air Force A&A process. Provides cyber security support for planning, design, development, testing, demonstration, integration of information systems. Develops System Security Plan using Risk Management Framework (RMF) for DoD Information Technology (IT). Performs STIG review, remediation and communication of findings. Integrates electronic processes or methodologies to resolve total system problems, or technology problems as they relate to cyber security requirements. Leads mitigation of vulnerabilities derived from security scans. Capable of developing and implementing policies and procedures to ensure that systems support the organization's business requirements and meet the needs of end users. Defines systems requirements based on user/client needs, cost, and required integration with existing applications, systems, or platforms. Performs and parses security scans of applications, infrastructure, and plugins using program defined toolsets including Checkmarx and SonarQube. Familiar with a variety of the technical field's concepts, practices, and procedures. Relies on extensive experience and judgment to plan and accomplish goals. Works with project managers, developers, and end users to ensure application designs meet business requirements. Provides functional or operational support to project development and software test team members. Handles complex application strategies features and technical concepts. Familiar with a variety of software engineering concepts, practices, and testing procedures. Familiar with Configuration Management tools, and advance software test tools capable evaluating information assurance and functional performance. Typically reports to a head of a unit/department or project manager. Requirements Minimum Candidate Requirements Candidate must be a US Citizen Candidate must have an active DoD Secret Clearance at minimum Candidate must possess an active 8140 DCWF Role 722 Intermediate level certification or one of the following: (SecurityX/ CASP+, CCISO, CCSP, CGRC/CAP, Cloud+, GSEC, Security+ or SSCP) Candidate must have 10+ years experience with the following: Meeting technical requirements relevant to the cyber security roles, responsibilities, and technical system functionality and processes. Setting up and managing Impact Level (IL) 2, IL4, and IL5 environments (DoD Cloud and security standards). Secure enclave architecture and deployment. Infrastructure as code (e.g., Terraform, AWS CloudFormation). Understanding of KPIs and metrics for infrastructure (e.g., CPU usage, network throughput) and security (e.g., access logs, intrusion detection). Implement security monitoring techniques, including anomaly detection and threat analysis. Familiarity with DevOps pipelines and practices (CI/CD) to enhance the continuous delivery of code and system improvements. Strong communication skills for engaging with stakeholders, including senior leadership, technical teams, and governance bodies. Ability to document and communicate technical and governance outcomes clearly and concisely. Team collaboration skills to work across departments and with Capability Delivery Teams (CDTs). Strong experience with the DoD Risk Management Framework (RMF) process to include usage of eMASS. Desired Knowledge, Skills, and Abilities Bachelor's degree Experience managing tickets, facilitating meetings, and leading team efforts for smooth onboarding, migration, and governance processes. Experience in Agile methodologies (Scrum, Kanban, SAFe), including planning, execution, and retrospective processes. Skills in configuring Jira workflows, boards, and issue tracking for Agile SDLC processes. Proficiency in integrating tools (e.g., Jira, Bitbucket) with DevOps workflows to support collaborative development. Skills in facilitating the onboarding and migration of CDTs, including requirement gathering, complexity scoring, and task management. Proficiency in conducting TIMs and managing migration task lifecycles. Work Environment Office environment. Requires ability to provide clear, concise, accurate and timely communication, both verbally and in writing (100%). Requires ability to interact professionally with co-workers, management, and client (100%). Occasional business travel may be required. Only requested and approved expenses will be covered by ANF. About ANF Alaska Northstar Federal (ANF) maintains an outstanding work environment that includes competitive compensation, outstanding benefits, and challenging work assignments with opportunities for advancement/career growth. To be considered for employment opportunities you must complete an online application. EEO Statement ANF is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or protected veteran status. U.S. Citizenship is required for most positions. ANF is an advocate of preferential hiring and professional development of qualified Shee Atiká Inc shareholders, their spouses and descendants, and Alaska Natives in accordance with Public Law 93-638. For further information on our equal opportunity protections as part of the employment process: http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf Accessibility ANF is committed to expanding access to employment for people with disabilities and disabled veterans. If you are a qualified individual with a disability or a disabled veteran, and your disability prevents you from applying, please advise what reasonable accommodation ANF can provide to assist you in applying for one of our open positions. You may contact us by sending an email to sgs-hr@sheeatikagov.com Reasonable accommodations are considered on a case-by-case basis. Please note that only those inquiries concerning a request for reasonable accommodation for applying for a specific posted position will be responded to. Requests will be kept confidential and shared strictly on a need-to-know basis. Please be aware, scammers may try to impersonate our company by reaching out regarding job opportunities. We will never ask you for bank account information, checks, or other sensitive information as part of our hiring process. If you're unsure, please email sgs-hr@sheeatikagov.com with questions. The pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. Salary Description $130,000 - $150,000

Job Announcement Position: Part-Time Security Expert (Report Writing - Equipment and Weapons) Company Name: SafeSec Group Company Website: ********************* SafeSec Group, a global leader in security and defense strategy solutions, is seeking a part-time Security Expert specializing in writing comprehensive reports on security equipment and weapons systems. This role requires a solid understanding of security technologies, exceptional analytical skills, and the ability to produce high-quality technical reports that will inform strategic decisions for our clients. Key Responsibilities: Write detailed market analysis reports and technical assessments related to security equipment and weapons systems. Conduct thorough research and provide actionable insights on the latest advancements in security technologies, weaponry, and tactical applications. Analyze global defense trends and propose recommendations based on deep technical evaluations. Regularly produce high-quality documents that outline the operational benefits, strategic value, and technological innovations of security solutions. Stay informed on emerging technologies, industry standards, and regulatory changes, ensuring all reports reflect the latest developments. Collaborate with internal teams and external experts to enhance the quality and accuracy of published materials. Qualifications: Strong academic background or professional experience in security studies, military technologies, or related fields. In-depth knowledge of security equipment, weapons systems, and their applications in defense and law enforcement. Proven experience in technical writing, particularly on complex, specialized subjects (military, security, defense). Exceptional writing, editing, and communication skills in English; proficiency in additional languages is a plus. Strong analytical skills with the ability to convey complex technical concepts in an accessible and persuasive manner. Ability to work independently, manage time efficiently, and meet deadlines. Preferred Qualifications: Experience with government agencies, defense contractors, or security firms. Expertise in weapons technologies, including firearms, non-lethal weapons, surveillance systems, and cybersecurity defense mechanisms. Familiarity with military procurement processes and global defense market trends. Fluency in additional languages (e.g., Chinese, Russian, French) is a plus. Work Style: Part-time, flexible hours with remote work options. Ability to collaborate with international teams and adhere to strict deadlines. Compensation will be based on experience and work volume. Compensation: Competitive pay based on experience and qualifications.

The Cyber Security Architect role is primarily responsible for designing, building, and maintaining secure data, systems and applications. This position plays a significant role in contributing to protect Henry Schein systems and infrastructure while ensuring compliance with relevant policies and regulations. A successful candidate will have a thorough understanding of complex IT systems and stay updated with the latest security standards, systems and authentication protocols. The ideal candidate serves as the liaison between the technology global organization, the business, and the security engineers and coordinates with system owners, service providers, and the rest of the information security organization on the design and implementation of the security requirements and controls. The role will report to the Senior Cyber Security Architect. The main duties and responsibilities include: Design a robust security system to protect the company's computer systems and networks from threats Designing robust security architectures for IT projects, including M&A activities Developing and maintaining security standards, and guidelines Conducting system security and vulnerability analyses and risk assessments Identifying integration issues and develop solutions to these issues Ensuring the architecture and security systems align with the business's goals and requirements Researching, designing and advocating new technologies, architectures, and security products Ensuring compliance with the changing laws and applicable regulations Participating in Incident Response and Forensic investigations Working with IT department and members of the information security team to design, implement, manage, and report on, the effectiveness of security controls Staying up to date with the latest security systems, standards, authentication protocols, and products Plan and implement security measures to protect sensitive data and systems from infiltration and cyber-attacks Design and implement user identity access management systems Evaluate new cybersecurity threats and IT trends and develop effective security measures Work very closely with infrastructure and application teams to secure Henry Schein systems and data Key roles for the position: Technical oversight: responsible for providing security personnel with technical guidance and supervision. Create proper documentation: plan, investigate, and build reliable, powerful, and flexible security architectures. Own security architecture and controls' framework: Planning, studying and then designing a resilient security architecture, and developing prerequisites for networks, firewalls, routers, and other network devices Awareness: work closely with the rest of the information security team to identify improvements and remedies based on vulnerability assessments, security testing, risk analysis, as well as internal and external audit findings Research: researching and implementing the updated security standards, systems, and best practices Requirements: 5-10 years of security experience 5-10 years of experience as a Security Architect or similar role Experience in cloud platforms, risk assessment tools, identity management and data encryption Knowledge of network security architecture concepts, including topology, protocols, components, and principles Understanding of advanced threat detection and network protocols Proficiency in security systems, including firewalls, intrusion detection systems, anti-virus software, authentication systems, log management, and content filtering Knowledge of disaster recovery, computer forensic tools, technologies, and methods Knowledge of industry-standard and organizationally accepted analysis principles and methods. Excellent problem-solving skills and ability to work under pressure A bachelor degree in computer science, Information Technology or relevant field Henry Schein, Inc. is an Equal Employment Opportunity Employer and does not discriminate against applicants or employees on the basis of race, color, religion, creed, national origin, ancestry, disability that can be reasonably accommodated without undue hardship, sex, sexual orientation, gender identity, age, citizenship, marital or veteran status, or any other legally protected status. For more information about career opportunities at Henry Schein, please visit our website at: *************************** Fraud Alert Henry Schein has recently been made aware of multiple scams where unauthorized individuals are using Henry Schein's name and logo to solicit potential job seekers for employment. Please be advised that Henry Schein's official U.S. website is ******************* . Any other format is not genuine. Any jobs posted by Henry Schein or its recruiters on the internet may be accessed through Henry Schein's on-line "career opportunities" portal through this official website. Applicants who wish to seek employment with Henry Schein are advised to verify the job posting through this portal. No money transfers, payments of any kind, or credit card numbers, will EVER be requested from applicants by Henry Schein or any recruiters on its behalf, at any point in the recruitment process.

Who We Are: Headquartered in Washington, DC, Versar Global Solutions provides full mission lifecycle solutions for challenges faced by our government and commercial Customers in the natural, built, and digital environments. With nearly 2,000 team members around the world, and a rich legacy spanning more than 70 years, Versar Global Solutions delivers a broad array of planning, analysis and risk management solutions, project and program management, operations and maintenance services, and information technology applications for environmental management and remediation projects, mission critical facilities and installations, and in support of readiness and contingency operations. Who You Are: Versar Global Solutions is seeking a Security Architect (SIEM & SOAR) to support the DHS' Homeland Security Enterprise Network (HSEN) within the Office of the Chief Information Officer (OCIO), IT Operations, Enterprise Engineering Division (EED). This resource will be a member of a high functioning team of network and security engineers, data center specialists, and stakeholder groups, such as the DHS Network Operations Security Center - Cyber (NOSC-Cyber), ISSOs, and industry vendors, working to continually strengthen and secure HSEN and its data. The candidate's primary responsibility is to maintain and mature the existing DHS Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) solutions, and lead the analysis, integration, and testing of this and new security tools and technologies. What You'll Do: Designing, implementing, and maintaining SIEM and SOAR solutions by collaborating effectively with NOSC-Cyber and other key stakeholder groups. Work in partnership with network and security engineers and cloud development teams to drive improvements to security requirements. Research the latest capabilities of SIEM, SOAR platforms and IT technologies (e.g. firewalls, operating systems, networks, storage, virtualization, AD, IPS, Proxies etc.) and be able to present findings to management. Optimize SIEM, SOAR and NOSC-Cyber architecture to improve efficiency and effectiveness of the platforms and processes. Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs. Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security‐relevant devices. Design and document existing production Swimlane environment to include Visio diagrams. What You'll Bring: BA or BS (Cyber Security, Computer Science, Information Systems, Software Engineering, Computer Engineering, or related field); relevant experience may be a substitute for education. At least six (6) years of professional experience cybersecurity, NOC/SOC environments, and IT Services environment, providing incident response. Demonstrated experience with SIEM and SOAR tool suites, with an emphasis on Swinlane and Splunk. Demonstrated experience endpoint security, network security (Firewalls, IPS/IDS, DNS, Proxy, etc.), data and application security, cloud security and technologies. Must be resourceful in learning a very complex and dynamically changing network. Must be a self-starter, able to work independently, and able to manage time effectively. Working knowledge of cloud platforms such as AWS, Azure. Desired certifications: Certification involving cybersecurity, CompTIA Security+, Splunk, CISSP, CCNP Security, CCIE Security. Desired software/hardware: Splunk, Swimlane, knowledge of at least one programming or scripting language (ex. Python, PowerShell, PHP, Perl), Windows/Linux experience. Ability to communicate effectively with all levels of an organization from engineering, operations, and management. Be authorized to work in the US or will be authorized by the successful candidate's start date to be eligible for a DHS EOD is required. Must be proficient in English, both written and verbal, to ensure effective communication and collaboration. Successful results of preemployment screenings, including federal background check, MVR, and drug screen. Comply with company drug and alcohol policy. Location Requirements The position will primarily work remote; however, preference will be given to those who reside locally to the MD/DC/VA areas. Compensation Expected Salary: $120,000 - $132,000 per year Versar Global Solutions is providing the compensation range and general description of other compensation and benefits that the Company in good faith believes it might pay and/or offer for this position based on the successful applicant's education, experience, knowledge, skills, and abilities in addition to internal equity and geographic location. The Company reserves the right to ultimately pay more or less than the posted range and offer additional benefits and other compensation, depending on circumstances not related to an applicant's status protected by local, state, or federal law. EEO Commitment Versar Global Solutions is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state, and local laws. Versar Global Solutions complies with applicable state and local laws governing non-discrimination in employment in every location in which the company operates. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Versar Global Solutions expressly prohibits any form of unlawful employee harassment based on race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, marital status, amnesty, or status as a covered veteran. Improper interference with the ability of Versar Global Solutions employees to perform their job duties is not tolerated. #LI-FH1

The Product Security Architect will be technical leader responsible for work across various disciplines to shape the future of how the Life Sciences business unit embeds security by design across our products and operations to strengthen customer trust and accelerate innovation. Job Description We are the makers of possible BD is one of the largest global medical technology companies in the world. Advancing the world of health is our Purpose, and it's no small feat. It takes the imagination and passion of all of us-from design and engineering to the manufacturing and marketing of our billions of MedTech products per year-to look at the impossible and find transformative solutions that turn dreams into possibilities. We believe that the human element, across our global teams, is what allows us to continually evolve. Join us and discover an environment in which you'll be supported to learn, grow and become your best self. Become a maker of possible with us. Responsibilities: * Ensure business unit execution of product security procedures and standards. * Working with R&D teams, create representative system threat models and security risk assessments. * Establish and validate appropriate product security requirements, system hardening standards, and controls for mitigation of security risks. * Oversee integration of security testing tools into product development DevSecOps pipelines. * Ensure all security documentation is delivered per BD Product Security procedures and applicable regulatory requirements. * Lead, motivate, and run a small team of Product Security Managers and Engineers. * Work with teams to ensure projects are meeting objectives and deadlines defined for the Life Sciences product roadmaps. * Lead reoccurring coordination meetings and internal communications. * Provide architecture and design guidance for a secure by design software development lifecycle. * Engage with external BD customers regarding cybersecurity issues, sales proposals, and audits. * Leverage innovative product security processes & technologies in partnership with other cross functional teams to drive continuous improvement. * Although this position can be 100% remote, the role will be most successful in supporting business partners from the Eastern or Central US time zones (i.e., EST or CST). * May perform other duties as required. Required Skills: * Bachelor's degree in computer science, computer engineering, or applicable technical discipline * Minimum of 6 years in cybersecurity, product security, or security risk management * Experience implementing and demonstrating compliance to security frameworks such as NIST 800-53, IEC 81001-5, HITRUST, HIPAA, GDPR, ISO 27001, SOC 2 Type 2 * Experience implementing and optimizing security analysis and testing tools (SCA, SAST, DAST, fuzzing) in a DevSecOps pipeline * Confirmed competence in threat modeling software systems or software enabled products using industry standard methods (STRIDE, PASTA, OWASP) * Experience analyzing security vulnerability scanning results and resolving priority of patching activities * Experience assessing security risks using industry standard methods (penetration test results, threat modeling, security testing) and resolving residual risk after applying compensating security controls Preferred Skills: * Managerial or team leader experience * Experience implementing security design, development, validation, and compliance in a regulated environment * Experience working with teams in a structured software development lifecycle process, preferably an agile methodology * Demonstrated technical acumen and ability to effectively convey technical information to all levels and disciplines within an organization, from engineers to senior leadership to enable fact-based decision-making At BD, we prioritize on-site collaboration because we believe it fosters creativity, innovation, and effective problem-solving, which are essential in the fast-paced healthcare industry. For most roles, we require a minimum of 4 days of in-office presence per week to maintain our culture of excellence and ensure smooth operations, while also recognizing the importance of flexibility and work-life balance. Remote or field-based positions will have different workplace arrangements which will be indicated in the job posting. For certain roles at BD, employment is contingent upon the Company's receipt of sufficient proof that you are fully vaccinated against COVID-19. In some locations, testing for COVID-19 may be available and/or required. Consistent with BD's Workplace Accommodations Policy, requests for accommodation will be considered pursuant to applicable law. Why Join Us? A career at BD means being part of a team that values your opinions and contributions and that encourages you to bring your authentic self to work. It's also a place where we help each other be great, we do what's right, we hold each other accountable, and learn and improve every day. To find purpose in the possibilities, we need people who can see the bigger picture, who understand the human story that underpins everything we do. We welcome people with the imagination and drive to help us reinvent the future of health. At BD, you'll discover a culture in which you can learn, grow, and thrive. And find satisfaction in doing your part to make the world a better place. To learn more about BD visit ********************** Becton, Dickinson, and Company is an Equal Opportunity Employer. We evaluate applicants without regard to race, color, religion, age, sex, creed, national origin, ancestry, citizenship status, marital or domestic or civil union status, familial status, affectional or sexual orientation, gender identity or expression, genetics, disability, military eligibility or veteran status, and other legally-protected characteristics. Required Skills Optional Skills . Primary Work Location USA MD - Sparks - 7 Loveton Circle Additional Locations Work Shift At BD, we are strongly committed to investing in our associates-their well-being and development, and in providing rewards and recognition opportunities that promote a performance-based culture. We demonstrate this commitment by offering a valuable, competitive package of compensation and benefits programs which you can learn more about on our Careers Site under Our Commitment to You. Salary or hourly rate ranges have been implemented to reward associates fairly and competitively, as well as to support recognition of associates' progress, ranging from entry level to experts in their field, and talent mobility. There are many factors, such as location, that contribute to the range displayed. The salary or hourly rate offered to a successful candidate is based on experience, education, skills, and any step rate pay system of the actual work location, as applicable to the role or position. Salary or hourly pay ranges may vary for Field-based and Remote roles. Salary Range Information $155,900.00 - $257,300.00 USD Annual

Voleon is a technology company that applies state-of-the-art AI and machine learning techniques to real-world problems in finance. For nearly two decades, we have led our industry and worked at the frontier of applying AI/ML to investment management. We have become a multibillion-dollar asset manager, and we have ambitious goals for the future. Your colleagues will include internationally recognized experts in artificial intelligence and machine learning research as well as highly experienced finance and technology professionals. The people who shape our company come from other backgrounds, including concert music performances, humanitarian aid, opera singing, sports writing, and BMX racing. You will be part of a team that loves to succeed together. In addition to our enriching and collegial working environment, we offer highly competitive compensation and benefits packages, technology talks by our experts, a beautiful modern office, daily catered lunches, and more. As a Senior Security Operations Analyst, you will be a key contributor to Voleon's security operations, bringing experience and leadership to our SOC. You will handle complex security incidents, mentor junior team members, and help drive strategic improvements to our security posture. This role offers significant growth opportunities and the chance to shape the future of security operations at a leading quantitative investment firm. This role is open to remote work in the US or hybrid in our Berkeley office.Responsibilities Lead complex security incident investigations and coordinate response efforts across multiple teams Perform advanced threat hunting, detection engineering, and security analytics to identify sophisticated attacks Mentor junior analysts and contribute to training programs and knowledge sharing initiatives Design and implement security monitoring improvements, playbooks, and automation solutions Collaborate with Security Engineers to enhance detection capabilities and reduce false positives Participate in security architecture discussions and provide operational input on security tool selection Lead on-call rotation responsibilities and serve as escalation point for complex security events Contribute to threat intelligence analysis and help develop proactive defense strategies Support compliance and audit activities, ensuring proper documentation and evidence collection Drive continuous improvement initiatives to enhance SOC efficiency and effectiveness Requirements 5+ years of experience in security operations, incident response, or related cybersecurity roles Strong expertise with SIEM platforms, EDR solutions, and security orchestration tools Proven experience in threat hunting, malware analysis, and advanced persistent threat investigation Proficiency in scripting and automation (Python, PowerShell, Bash) for security operations Deep understanding of network protocols, operating systems, and attack methodologies Experience with cloud security monitoring and incident response (AWS, GCP, Azure) Strong leadership and mentoring capabilities with excellent communication skills Ability to work effectively under pressure and manage multiple complex investigations simultaneously Preferred Qualifications Advanced security certifications such as GCIH, GCFA, GNFA, CISSP, or equivalent Experience with threat intelligence platforms and frameworks (MITRE framework, STIX/TAXII) Background in digital forensics, reverse engineering, or red team/purple team activities Experience with security compliance frameworks (SOC 2, ISO 27001, NIST) Knowledge of financial services security requirements and regulations Bachelor degree in Computer Science, Information Security, or related field CompensationThe base salary range for this position is $175,000 to $185,000 in the location(s) of this posting. Individual salaries are determined through a variety of factors, including, but not limited to, education, experience, knowledge, skills, and geography. Base salary does not include other forms of total compensation, such as bonus compensation and other benefits. Our benefits package includes medical, dental, and vision coverage, life and AD&D insurance, 20 days of paid time off, 9 sick days, and a 401(k) plan with a company match. “Friends of Voleon” Candidate Referral ProgramIf you have a great candidate in mind for this role and would like to have the potential to earn $15,000 if your referred candidate is successfully hired and employed by The Voleon Group, please use this form to submit your referral. For more details regarding eligibility, terms, and conditions, please review the Voleon Referral Bonus Program. Equal Opportunity EmployerThe Voleon Group is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law. #LI-JA1

The application window is expected to close on: November 21, 2025. Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received. Remote USA The successful applicant may be performing work on FedRamp environments and partnering with researchers and threat intel teams that require they be a U.S. Person (i.e. U.S. citizen, U.S. national, lawful permanent resident, asylee, or refugee). This position may also perform work that the U.S. government has specified can only be performed by a U.S. Citizen on U.S. soil. **Meet the Team** The Cisco Attack Surface Management (ASM) Team is a highly skilled and dynamic group focused on detecting and remediating Cisco's operational security risks inclusive of IT services, acquisitions, and BU operated infrastructure and services, initially concentrating on identifying and reducing risks associated with Cisco's external perimeter. The ASM service unifies tooling sources of truth, mis-configurations, and vulnerability data collected to enable executive accountability and track the prioritized remediation of all exploitable weaknesses within target operational level agreements. The team is at the forefront of cybersecurity, employing ground breaking technologies and methodologies to detect, analyze, and proactively address attack surface threats. **Your Impact** We are seeking an enthusiastic and motivated Security Architect to support the implementation, client-facing delivery, and continuous improvement of our attack surface management service. This role will contribute to the proactive, sustainable, and measurable reduction of operational risk at Cisco, addressing foundational improvements and security root cause resolution. Multi-Functional Collaboration: Team members work closely with experts across various domains, including investigations, analysis, vulnerability management, security architecture, threat intelligence, cyber legal, data protection, and compliance, providing opportunities to learn and grow while addressing sophisticated challenges. **Key Responsibilities** + Be a trusted security architect across every business unit for exposure detection and remediation + Lead multiple client engagements using a campaign-based, risk remediation approach as part of a bi-directional partnership with active Business Unit/Business Entity contacts to serve last mile capabilities at scale + Lead exposure management campaigns across the organization using tools and platforms like Axonius, BishopFox, Tenable, Wiz, and a variety of authoritative tools to provide insight for rapid remediation. + Design and implement security campaigns advised by vulnerability discovery, mis-configurations, and attack surface analysis using automated and manual techniques. + Identify gaps in tooling and visibility of operational assets and assist the clients and ASM Platform team in discovery of unknowns and enabling new data feeds. + Lead collaboration with key partners within the Security & Trust Organization including security operations, incident response, risk management, and offensive security teams to drive risk reduction. + Know the latest with emerging threats, attack techniques, and ASM technologies to continuously enhance the ASM program. + Provide guidance and training to security teams on security protocols and tools. + Foster long-term relationships with key client partners, understanding their critical business needs and helping them to proactively identify and address operational security risk. + Leverage your superb communication skills to articulate sophisticated security concepts to technical and non-technical partners. **Minimum Qualifications** + Bachelor's degree in Cybersecurity, Intelligence, or related field. + 7+ years of experience in threat intelligence, cybersecurity, or security operations. + Expertise in vulnerability management, threat modeling, and security risk assessment. + Solid knowledge of network, endpoint, server, and application security fundamentals. **Preferred Qualifications** + Ability to read/understand exploit code, development skills, and think like an attacker. + Certified Threat Intelligence Analyst (CTIA) or GIAC Cyber Threat Intelligence (GCTI). + Solid experience in integrating threat intelligence into security operations, including experience with API integrations, automated scanning, and security analytics. + Ability to work collaboratively in cross-functional teams and lead security initiatives. STO25 **Why Cisco?** At Cisco, we're revolutionizing how data and infrastructure connect and protect organizations in the AI era - and beyond. We've been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you'll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere. We are Cisco, and our power starts with you. **Message to applicants applying to work in the U.S. and/or Canada:** The starting salary range posted for this position is $148,000.00 to $187,800.00 and reflects the projected salary range for new hires in this position in U.S. and/or Canada locations, not including incentive compensation*, equity, or benefits. Individual pay is determined by the candidate's hiring location, market conditions, job-related skillset, experience, qualifications, education, certifications, and/or training. The full salary range for certain locations is listed below. For locations not listed below, the recruiter can share more details about compensation for the role in your location during the hiring process. U.S. employees are offered benefits, subject to Cisco's plan eligibility rules, which include medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, paid parental leave, short and long-term disability coverage, and basic life insurance. Please see the Cisco careers site to discover more benefits and perks. Employees may be eligible to receive grants of Cisco restricted stock units, which vest following continued employment with Cisco for defined periods of time. U.S. employees are eligible for paid time away as described below, subject to Cisco's policies: + 10 paid holidays per full calendar year, plus 1 floating holiday for non-exempt employees + 1 paid day off for employee's birthday, paid year-end holiday shutdown, and 4 paid days off for personal wellness determined by Cisco + Non-exempt employees** receive 16 days of paid vacation time per full calendar year, accrued at rate of 4.92 hours per pay period for full-time employees + Exempt employees participate in Cisco's flexible vacation time off program, which has no defined limit on how much vacation time eligible employees may use (subject to availability and some business limitations) + 80 hours of sick time off provided on hire date and each January 1st thereafter, and up to 80 hours of unused sick time carried forward from one calendar year to the next + Additional paid time away may be requested to deal with critical or emergency issues for family members + Optional 10 paid days per full calendar year to volunteer For non-sales roles, employees are also eligible to earn annual bonuses subject to Cisco's policies. Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components, subject to the applicable Cisco plan. For quota-based incentive pay, Cisco typically pays as follows: + .75% of incentive target for each 1% of revenue attainment up to 50% of quota; + 1.5% of incentive target for each 1% of attainment between 50% and 75%; + 1% of incentive target for each 1% of attainment between 75% and 100%; and + Once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation. For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay 0% up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid. The applicable full salary ranges for this position, by specific state, are listed below: New York City Metro Area: $177,400.00 - $259,600.00 Non-Metro New York state & Washington state: $158,100.00 - $230,400.00 * For quota-based sales roles on Cisco's sales plan, the ranges provided in this posting include base pay and sales target incentive compensation combined. ** Employees in Illinois, whether exempt or non-exempt, will participate in a unique time off program to meet local requirements. Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.

About Extend: Extend is revolutionizing the post-purchase experience for retailers and their customers by providing merchants with AI-driven solutions that enhance customer satisfaction and drive revenue growth. Our comprehensive platform offers automated customer service handling, seamless returns/exchange management, end-to-end automated fulfillment, and product protection and shipping protection alongside Extend's best-in-class fraud detection. By integrating leading-edge technology with exceptional customer service, Extend empowers businesses to build trust and loyalty among consumers while reducing costs and increasing profits. Today, Extend works with more than 1,000 leading merchant partners across industries, including fashion/apparel, cosmetics, furniture, jewelry, consumer electronics, auto parts, sports and fitness, and much more. Extend is backed by some of the most prominent technology investors in the industry, and our headquarters is in downtown San Francisco. What You'll Do: Serve as a core member of Security Operations, monitoring and triaging alerts from platforms such as SentinelOne and Wiz. Perform end-to-end investigations to identify, contain, and remediate threats and incidents, driving timely, appropriate response. Proactively identify and assess vulnerabilities in infrastructure and code, working with development and other cross functional teams to address issues. Contribute to the end-to-end detection lifecycle: model attacker behaviors (MITRE ATT&CK), write and test detections as code across security programs and tooling (SentinelOne, Wiz, Okta, AWS CloudTrail), and continuously enrich to reduce false positives and improve MTTD. Support data quality and telemetry onboarding, maintain response playbooks, and provide threat validation assistance across the business. Assist teams with the application of secure configuration baselines and best practices in accordance with CIS Benchmarks, NIST, vendor hardening guides, and applicable compliance standards across all company computing assets. Correlate endpoint and infrastructure telemetry to identify emerging threats. Curate and operationalize intelligence (IOCs, TTPs) into detections and response playbooks, and maintain vetted intelligence feeds. Assist GRC initiatives by mapping controls to internal policies and frameworks (e.g., SOC 2, NIST CSF, NYC DFS 500), identifying gaps, supporting audits and evidence collection, tracking remediation, and maintaining policies and control documentation. Work with engineering and business teams to champion security best practices, communicate risks to accountable owners, and assist with mitigation planning and execution. What We Are Looking For: 3+ years experience in a Security Analyst / Security Operations role 3+ years experience with AWS CloudFormation, or other infrastructure-as-code systems (like Terraform) 3+ years experience or certification in AWS serverless technologies (API Gateway, Lambda, S3, DynamoDB) Certifications (one or more preferred): CISSP, CCSP, GIAC (GCIH/GCIA/GMON/GCED/GCFA/GREM), cloud security (AWS or cloud agnostic security specialty) or equivalent experience. Proficiency with hands on management and use of SIEM, CNAPP, EDR, Vulnerability Management tooling, and Detection Engineering strategies. Proficiency with AI technologies and the corresponding threat landscape and strategies for mitigation. Understands agentic workflows such as AWS Bedrock, MCP based workflows (or similar technologies) Working Knowledge of best practices around security roles and responsibilities for AWS IAM Experience working with observability services and tooling (including Coralogix, CloudWatch, OpenTelemetry) Ability to perform in a high energy environment with dynamic job responsibilities and priorities Nice to Haves: Experience with AWS Cloud Development Kit(CDK) Experience with Mastra AI Expected Pay Range: $157,000 - $182,000 per year salaried* * The target base salary range for this position is listed above. Individual salaries are determined based on a number of factors including, but not limited to, job-related knowledge, skills and experience. Life at Extend: Working with a great team from diverse backgrounds in a collaborative and supportive environment. Competitive salary based on experience, with full medical and dental & vision benefits. Stock in an early-stage startup growing quickly. Generous, flexible paid time off policy. 401(k) with Financial Guidance from Morgan Stanley. Extend CCPA HR Notice

OppFi is a leading tech-enabled digital finance platform that works with banks to provide financial products and services for everyday Americans. Through a transparent and responsible platform, which includes financial inclusion and excellent customer experience, the Company supports consumers who are turned away by mainstream options to build better financial health. We are a team of caring, innovative, and inclusive individuals who thrive in being immersed in diverse talents, expertise, perspectives, and backgrounds. Our employees approach every new challenge with an unparalleled ability to see what could be rather than settle for what is. Our business principles guide us and create an open and collaborative culture where we improve 1% every day, and the best ideas always win! We welcome individuals who want to make an impact in the financial system by facilitating credit access, expanding financial inclusion, promoting financial health, and delivering exceptional customer service. A few other fun facts about us. OppFi is one of the top consumer-rated financial platforms online, maintaining a 4.5/5.0-star rating on Trustpilot. We are a 2025 Crain's Fast 50™ company and were named on Built In's 2025 Best Places to Work in Chicago. Senior Security Analyst III As Senior Information Security Analyst III, you will be a key contributor to our day-to-day security operations, assisting with threat monitoring, incident triage, vulnerability remediation, and GRC activities. This role is an excellent opportunity for someone with security experience who is eager to grow their skills in risk management, cloud environments and security best practices. You will work closely with senior team members and various OppFi internal teams to ensure our environment maintains security, visibility, and compliance standards. What you get to do: Information Security Risk Management: Own the security review and assessment process evaluating the risk associated with introducing new applications/tools into the environment. Assist with security risk management activities, including the analysis, quantification, and tracking of information security risks, plus the review and documentation of risk exception requests. Policy and Compliance Analysis: Identify emerging compliance requirements and assess their impact on our policies. Develop and refresh our policies, procedures, standards, and guidelines to stay compliant and aligned with industry best practices. Governance Visibility: Design and maintain dynamic dashboards or scorecards that offer clear insights into Information Security Governance activities, demonstrating our commitment to security and compliance. Security Operations & Incident Support Monitor security alerts from various tools (SIEM, EDR, cloud logs) and support the triage of potential security incidents by gathering initial data and escalating to senior engineers as needed. Assist in the execution of security incident response playbooks, focusing on initial steps like investigation, basic containment, and documentation. Contribute to the documentation and tracking of security incidents to support audit and compliance requirements. Support the monitoring and logging strategy by assisting with the configuration and tuning of SIEM (Security Information and Event Management) alerts and reports. Perform regular log review and analysis for suspicious activities under the guidance of senior staff. Improvement & Collaboration Contribute to the development and maintenance of operational playbooks and documentation for security processes. Learn to deploy and manage new security tools and assist in the development of basic threat detection logic. Develop basic security performance metrics and assist with reporting to measure the effectiveness of security controls. Performs other related duties as assigned. What you will bring to the team: 3-5 years of professional experience in Information Security or IT Risk Management, with a background supporting IT compliance programs to meet regulatory requirements and demonstrated expertise in at least one of the following areas: Security Operations, Incident Response, or Vulnerability Management. Experience with Security and control frameworks, such as FFIEC, NIST, COBIT, ITIL, and ISO control framework EDR platforms (e.g., CrowdStrike, Defender for Endpoint, SentinelOne) SIEM/SOAR tools (e.g., Sumo Logic, Splunk, Chronicle, or Azure Sentinel) CSPM tools (e.g., Wiz, Prisma, Orca) Vulnerability management platforms (e.g., Qualys, Tenable, Rapid7) Experience identifying potential IT controls risks and opportunities through and offering sustainable recommendations that address cause rather than symptoms Experience with information security standards, best practices for securing computer systems within applicable laws and regulations Experience with Governance Risk & Compliance (GRC) tools and procedure development Solid understanding of common attack techniques (MITRE ATT&CK), incident triage, and remediation workflows. Foundational knowledge of AWS (Amazon Web Services) or other cloud environments. Basic understanding of networking, operating systems (Linux/Windows), and common security principles (e.g., least privilege, defense-in-depth). Familiarity with automation frameworks or API integrations for security tools. Strong written communication skills necessary for developing clear, concise procedures and playbooks, coupled with effective verbal skills for communicating technical findings. Experience building dashboards and metrics for leadership visibility. Strong analytical and problem-solving skills with a keen attention to detail and a desire to learn quickly. Bachelor's degree in Cybersecurity, Computer Science, or equivalent experience. Certifications such as CompTIA CySA+, GCIH, GCIA, GMON, GCDA, GSOC, or CISSP associate are preferred. Experience working in a regulated industry (financial services or health care) Reports to: Manager, Security Operations Total Rewards and Benefits: At OppFi, we are committed to fostering a fair and equitable workplace. The compensation range for this role reflects our good faith compensation estimate for this position. Final offers are determined based on a myriad of factors including, but not limited to experience, skills, qualifications, and other relevant business considerations. Candidates are encouraged to discuss compensation expectations during the hiring process. In addition to base pay, the total compensation package includes eligibility and potential for performance-based bonuses and equity grants dependent upon the role and job level. OppFi offers a flexible, remote environment, 401(k) matching program, and generous paid time off. Other benefits include medical, dental, and vision coverage, and tuition reimbursement. Additional benefits include DoorDash DashPass, Figo pet insurance, Rocket Lawyer, and access to LinkedIn Learning. OppFi also offers Fringe, a lifestyle benefits platform that allows employees to decide how to spend rewards from dozens of vendors like Uber, DoorDash, and UrbanSitter. #LI-Remote Compensation Range:$102,400-$153,600 USD EEO Statement: OppFi is an equal opportunity employer and does not discriminate based on any actual or perceived legally recognized protected bases under local, state, federal law, or regulations. Our goal as a company is to build an equitable workplace that actively works to dismantle systems of oppression in our processes, procedures, and interactions. We aim to help our employees thrive where they work and beyond. Check out our Culture page here. As part of OppFi's commitment to providing equal opportunity to qualified individuals, OppFi will ensure that persons with disabilities are provided reasonable accommodation as defined by applicable laws and organizational policies. If reasonable accommodation is needed to participate in the job application or interview processes or job requirements, please contact our People Team at ********************. Pursuant to the requirements of the California Consumer Privacy Act, OppFi is providing the "OppFi California Employee Privacy Policy", which details the categories of personal information collected and your rights under the policy. If you are a California resident, please review the policy here: ******************************* The information in this document is for general informational purposes only. It is not intended to be an all-inclusive list or description of the organization and its requirements for positions and employees. OppFi reserves the right to modify or change the information on this document at its discretion.

At Veza, we're building the next generation of Access Identity Security - and we're bringing GenAI into the core of that mission. We're seeking a Senior Backend Engineer who is excited to work on multi-agent systems, LLM-based automation, and Model Context Protocols (MCP) to transform how access control intelligence is built and delivered. This is a rare opportunity to operate at the frontier of LLM research and backend systems engineering, contributing to both the design of scalable architectures and the implementation of intelligent agents that reason, decide, and act. You will: Building APIs and backend services, test and evaluation frameworks in Python/Golang to support agentic workflows. Prototyping and productizing LLM-based capabilities into the identity access pipeline. Developing agent orchestration layers and working with frameworks like LangGraph or AutoGen. Designing systems around context-awareness, memory, and autonomous decision-making. You Have: Education: Bachelor's or Master's degree in Computer Science, Engineering, or a related field. Experience: 5+ years of backend development experience. Strong proficiency in one or more programming languages, such as Python, Golang, or Java. Experience designing and implementing RESTful APIs and Microservices Architectures. Experience with cloud platforms, such as AWS, Azure, or Google Cloud Platform, and familiarity with IAM services and features. Curiosity and/or experience with GenAI technologies, multi-agent systems, or prompt orchestration. Strong communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders. Strong sense of Product feature Ownership - from Ideation to Deployment The compensation for this role depends on several factors such as the candidate's skills, qualifications, experience, and work location. For candidates offered a position at the posted job level, the provided range is the expected base salary. This does not include any additional variable compensation, such as commission. Compensation Disclosure $154,000-$210,000 USD Our Culture We're driven to build a strong company culture and are looking for individuals with solid alignment with the following: Ownership Mindset Act with Integrity Guardians of our Customers Opinionated Humility Build Trust, Earn Trust At Veza, your base pay is one part of your total compensation package. For this position, the reasonably expected pay range can be discussed with your recruiter for the level at which this job has been scoped. Your base pay will depend on several factors, including your experience, qualifications, education, location, and skills. In the event that you are considered for a different level, a higher or lower pay range would apply. This position is also eligible for equity and a competitive benefits package. Veza is proud to be an equal opportunity employer. We are committed to equal employment opportunities regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, or other applicable legally protected characteristics. We also consider qualified applicants according to applicable federal, state, and local laws. If a candidate with a disability requires an accommodation during the recruitment process, please email ******************* About Veza Veza is the identity security company. Identity and security teams use Veza to secure identity access across SaaS apps, on-prem apps, data systems, and cloud infrastructure. Veza solves the blind spots of traditional identity tools with its unique ability to ingest and organize permissions metadata in the Veza Authorization Graph. Global enterprises like Blackstone, Wynn Resorts, and Expedia trust Veza to visualize access permissions, monitor permissions activity, automate access reviews, and remediate privilege violations. Founded in 2020, Veza is headquartered in Redwood City, California, and is funded by Accel, Bain Capital, Ballistic Ventures, GV, Norwest Venture Partners, and True Ventures. Visit us at veza.com and follow us on LinkedIn, Twitter, and YouTube.

The Role: As the Senior Systems Engineer you will own and drive Moderna's SAP Security and GRC roadmap-driving access-management procedures, periodic access reviews, and audit readiness across our global SAP landscape. You will architect secure, compliant solutions for S/4HANA and adjacent platforms (Ariba, MDG, BTP etc.), support Upgrades, Implementation and Enhancement initiatives for the Security and GRC scope. Here's What You'll Do: Security Governance & Compliance * Define and maintain SAP security guidelines, operating procedures, and SoD framework * Own SOX, GxP, and ITGC controls; coordinate testing and remediation * Drive periodic user-access reviews and license optimization initiatives Access Management & GRC * Experience with full-cycle implementation and support of SAP GRC 12.x modules (ARM, ARA, BRM, EAM, access certifications) * Design, build, and transport security roles across SAP landscapes; leverage CHARM workflows * Translate business requirements into technical role designs and custom GRC rules Architecture & Project Support * Set security and GRC architecture standards for ongoing SAP projects and upgrades * Evaluate risk and control impacts of role changes; provide guidance to project teams * Coordinate SIT/UAT for security objects and drive cut-over activities Audit, Monitoring & Reporting * Serve as primary contact for internal/external audit inquiries; deliver evidence and action plans * Track KPIs and SLAs, prepare regular metrics for management reporting * Lead Continuous Improvement of monitoring and alerting capabilities Innovation & AI Enablement * Research and recommend AI/ML solutions for predictive access analytics, risk scoring, and anomaly detection * Pilot and operationalize AI features that enhance security intelligence and compliance automation Here's what you'll bring to the table: * Education: Bachelor's degree or Equivalent * Overall Experience: 7-8 years of SAP Security & GRC (v10.0 +) experience, including S/4HANA and Fiori-role design. Deep knowledge of access-management principles, SOD analysis, SOX/GxP compliance, and ITGCs. Hands-on expertise with SAP GRC 12.0 modules (ARM, EAM, ARA) and CHARM processes in Solution Manager * Implementation Experience: Experience implementing GRC, supporting security design for Greenfield implementations, upgrades and similar projects * Applications/Solution experience: Security and GRC implementation experience for SAP Ariba, MDG, GTS, BTP, ATTP * Strong troubleshooting skills, attention to detail, and commitment to service-level excellence * Outstanding communication skills and aptitude for collaborating with technical and business stakeholders Preferred Qualifications * SAP certifications in Security and/or GRC Access Control * Global implementation or multi-landscape experience * Exposure to AI/ML tools for security analytics and compliance monitoring * Familiarity with SAP licensing models and optimization tactics Pay & Benefits At Moderna, we believe that when you feel your best, you can do your best work. That's why our US benefits and global well-being resources are designed to support you-at work, at home, and everywhere in between. * Best-in-class healthcare coverage, plus voluntary benefit programs to support your unique needs * A holistic approach to well-being, with access to fitness, mindfulness, and mental health support * Family planning benefits, including fertility, adoption, and surrogacy support * Generous paid time off, including vacation, volunteer days, sabbatical, global recharge days, and a discretionary year-end shutdown * Savings and investment opportunities to help you plan for the future * Location-specific perks and extras The salary range for this role is $130,800.00 - $209,400.00. This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting. An individual's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, performance, and business or organizational needs. The successful candidate may be eligible for an annual discretionary bonus, other incentive compensation, or equity award, subject to company plan eligibility criteria and individual performance. About Moderna Since our founding in 2010, we have aspired to build the leading mRNA technology platform, the infrastructure to reimagine how medicines are created and delivered, and a world-class team. We believe in giving our people a platform to change medicine and an opportunity to change the world. By living our mission, values, and mindsets every day, our people are the driving force behind our scientific progress and our culture. Together, we are creating a culture of belonging and building an organization that cares deeply for our patients, our employees, the environment, and our communities. We are proud to have been recognized as a Science Magazine Top Biopharma Employer, a Fast Company Best Workplace for Innovators, and a Great Place to Work in the U.S. If you want to make a difference and join a team that is changing the future of medicine, we invite you to visit modernatx.com/careers to learn more about our current opportunities. Our Working Model As we build our company, we have always believed an in-person culture is critical to our success. Moderna champions the significant benefits of in-office collaboration by embracing a 70/30 work model. This 70% in-office structure helps to foster a culture rich in innovation, teamwork, and direct mentorship. Join us in shaping a world where every interaction is an opportunity to learn, contribute, and make a meaningful impact. Moderna is a smoke-free, alcohol-free, and drug-free work environment. Equal Opportunities Moderna is committed to equal employment opportunity and non-discrimination for all employees and qualified applicants without regard to a person's race, color, sex, gender identity or expression, age, religion, national origin, ancestry or citizenship, ethnicity, disability, military or protected veteran status, genetic information, sexual orientation, marital or familial status, or any other personal characteristic protected under applicable law. Moderna is a place where everyone can grow. If you meet the Basic Qualifications for the role and you would be excited to contribute to our mission every day, please apply! Moderna is an E-Verify Employer in the United States. We consider qualified applicants regardless of criminal histories, consistent with legal requirements. Accommodations We're focused on attracting, retaining, developing, and advancing our employees. By cultivating a workplace that values diverse experiences, backgrounds, and ideas, we create an environment where every employee can contribute their best. Moderna is committed to offering reasonable accommodations to qualified job applicants with disabilities. Any applicant requiring an accommodation in connection with the hiring process and/or to perform the essential functions of the position for which the applicant has applied should contact the Accommodations team at leavesandaccommodations@modernatx.com. Export Control Notice This position may involve access to technology or data that is subject to U.S. export control laws, including the Export Administration Regulations (EAR). As such, employment is contingent upon the applicant's ability to access export-controlled information in accordance with U.S. law. Due to the nature of the work and regulatory requirements, only individuals who qualify as U.S. persons (citizens, permanent residents, asylees, or refugees) are eligible for this position. For this role Moderna is unable to sponsor non-U.S. persons to apply for an export control license. #LI-CK1 *

BlackCloak's mission is to protect corporate executives and high-profile individuals in their personal lives, mitigating risks to their families, companies, reputation, and finances. We defend our clients' digital lives from hackers, privacy leaks, and identity theft. If you are passionate about helping to protect others, then keep reading - this may be your next great opportunity. Ready to be on the front lines of cybersecurity? BlackCloak is looking for a sharp and proactive Security Analyst to join our team. In this role, you'll be the first responder, monitoring and triaging security alerts from a variety of sources and leading the charge on security incidents. You'll play a critical part in our continuous compliance program, help develop our threat detection capabilities, and analyze emerging threats. If you're passionate about protecting against cyber threats and thrive in a fast-paced environment, we want to hear from you. What You Will Do * Monitor and triage security alerts from a variety of sources including SIEM (SecOps, Sentinel), EDR (SentinelOne, CrowdStrike) and cloud security platforms like Wiz, Orca. * Serve as a primary responder for security incidents, executing the incident response lifecycle from initial detection and containment to eradication and recovery. * Support development of threat detection library, including incorporating threat intelligence, tuning within security tools, and SOAR response actions. * Maintain and draft SOP's and supporting documents for the Incident Response Plan and strategy * Analyze phishing attempts, malware, and other cyber threats; partner with Security Engineering to devise additional security controls, administer email security, EDR, ZTNA, and other security tooling configurations to block emerging threats. * Participate in a 24/7 on-call rotation to respond to critical security incidents. * Support triage and response for compliance alerts and requests, enabling the continuous compliance program at BlackCloak using tools such as Vanta, Drata. * Prepare and present detailed incident reports and security metrics to technical and leadership audiences. What You Need To Be Successful * 4-6 years of direct experience in a Security Operations Center, incident response, threat intelligence, or similar cybersecurity role. * Ability to navigate complex problems, stay cool under pressure, and be highly inquisitive. * Hands-on experience with SIEM, SOAR, and other security platforms for log analysis, correlation, automated response, and maturation of detections/runbooks. * Deep understanding and practical experience with Endpoint Detection and Response (EDR) tools and their investigative capabilities. * Good knowledge of cloud security principles and services in AWS, Azure, or GCP, including experience with security tools like Wiz or Prisma Cloud. * Solid understanding of network protocols, operating systems (Windows, Linux, mac OS), and common attack vectors (OWASP, MITRE) * Familiarity with identity and access management concepts, including SAML, OAuth, and role-based access control (RBAC) * Relevant industry certifications are highly desirable, such as GIAC (GCIH, GCFA), CISSP, or CompTIA Security+. * Excellent problem-solving skills and the ability to communicate complex technical concepts to both technical and non-technical audiences. $100,000 - $130,000 a year About BlackCloak BlackCloak is an extremely fast-growing company in an entirely new product category. We have amazing product fit validated by industry awards and an impressive client base of Fortune 500 companies across all industries. BlackCloak offers a competitive salary, exceptional benefits, and a dynamic work environment. Below is a quick summary of BlackCloak's generous benefits package for full-time employees includes: * 100% Remote Company, within the USA * Comprehensive Medical, Dental, and Vision plans with a 100% employer-paid monthly premium option for employees & 50% employer-paid monthly premiums for dependents. * Health Savings Account with company contribution for eligible medical plans. * Flexible Vacation Plan * 10 Paid Company Holidays * 100% employer-paid Life, AD&D and Short- and Long-Term Disability Insurance * 401k with Traditional and Roth options, including employer match. * Company Equity * Paid Parental and Pregnancy Recovery Leave * Company and team off-sites and virtual events throughout the year * Home office stipend We are an equal opportunity employer. We do not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, marital status, age, disability, national or ethnic origin, military service status, citizenship, or other protected characteristic. Learn More about Us Website: ********************* LinkedIn: /blackcloak Twitter: @BlackCloakCyber White Paper: ******************************************************************************************************* #liremote

Country: United States of America Remote U.S. Citizen, U.S. Person, or Immigration Status Requirements: The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Secret RTX Corporation is an Aerospace and Defense company that provides advanced systems and services for commercial, military and government customers worldwide. It comprises three industry-leading businesses - Collins Aerospace Systems, Pratt & Whitney, and Raytheon. Its 185,000 employees enable the company to operate at the edge of known science as they imagine and deliver solutions that push the boundaries in quantum physics, electric propulsion, directed energy, hypersonics, avionics and cybersecurity. The company, formed in 2020 through the combination of Raytheon Company and the United Technologies Corporation aerospace businesses, is headquartered in Arlington, VA. The following position is to join our RTX Enterprise Services team: Role Overview: RTX Enterprise Cybersecurity Services (ECS) is seeking a Lead Enterprise Endpoint Security Portfolio Architect to define the strategy and architecture for securing endpoints across our global enterprise. This leader will also serve as the cybersecurity portfolio owner for endpoint security technologies, responsible for lifecycle management, vendor strategy, and ensuring our workforce devices remain secure and compliant. In this high-impact role, you'll shape how we protect laptops, desktops, mobile devices, and specialized platforms, while ensuring endpoint security is a key enabler of our Zero Trust strategy and enterprise resilience. The ideal candidate is a senior enterprise architect with deep technical expertise in endpoint security (EDR/XDR, UEM/MDM, OS hardening, and encryption) combined with the leadership skills to drive strategy, vendor rationalization, and global adoption. They are equally comfortable designing architectures, mentoring teams, and briefing executives, and they thrive at the intersection of technical depth, business impact, and regulatory compliance. What You Will Do * Define and maintain enterprise endpoint security reference architectures and roadmaps across Windows, mac OS, Linux, iOS/Android, and specialized devices (IoT/OT where applicable) * Serve as portfolio owner for endpoint security solutions, including lifecycle management, investment planning, vendor strategy, and cost optimization * Lead design and adoption of modern endpoint protection platforms (NGAV, EDR, XDR) and ensure integration with SOC/SIEM/SOAR for advanced detection and response * Establish endpoint hardening, encryption, and privilege management standards (BitLocker, FileVault, AppLocker/WDAC, Just-in-Time access) * Drive UEM/MDM strategies (Intune, JAMF, Workspace ONE, etc.) to secure corporate, BYOD, and hybrid device environments * Ensure endpoint posture and compliance signals integrate into Zero Trust and conditional access models * Collaborate with IT, security, and operations teams to balance strong endpoint protection with workforce usability and productivity * Lead architectural risk assessments for endpoint platforms and ensure alignment with regulatory frameworks (NIST, ITAR/EAR, ISO 27001, CIS Benchmarks) * Mentor engineers and architects, raising enterprise capability in endpoint security best practices * Develop and track KPIs/metrics that demonstrate endpoint risk reduction, adoption of security controls, and value realization from endpoint investments Qualifications You Must Have: * Typically requires a University Degree or equivalent experience and a minimum 12 years of experience, or an Advanced Degree and a minimum 10 years experience. * 10+ years experience in cybersecurity, and/or information technology, or related intelligence community, military, or civil service fields. * 10+ years experience with endpoint protection technologies (CrowdStrike, Microsoft Defender for Endpoint, SentinelOne, Palo Alto Cortex, etc.) and integration with SOC workflows * Experience leading endpoint security architecture at enterprise scale, preferably in global or regulated industries. * The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance. Qualifications We Prefer: * CISSP, CISM, or vendor-specific IAM certifications a plus * Strong knowledge of UEM/MDM platforms (Intune, JAMF, Workspace ONE) and endpoint posture compliance models * Hands-on experience with OS hardening, endpoint privilege management, encryption, and application control * Familiarity with Zero Trust frameworks (NIST SP 800-207, CISA ZTMM) and integration of device trust signals into access policies * Understanding of enterprise architecture methods (TOGAF, SABSA, DoDAF) and security frameworks (NIST CSF, CIS Controls, MITRE ATT&CK) * Familiarity with enterprise architecture frameworks (TOGAF, SABSA, DoDAF) and cybersecurity standards (NIST CSF, MITRE ATT&CK) * Excellent communication and leadership skills, with the ability to influence senior executives and guide large-scale change * Possesses an established track record of continuous learning and improvement, particularly with emerging technologies and security subject matters What We Offer: Whether you're just starting out on your career journey or are an experienced professional, we offer a robust total rewards package with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care. Learn More & Apply Now! Work Location: Remote Please consider the following role type definition as you apply for this role: Remote: This position is currently designated as remote. However, the successful candidate will be required to work from one of the 50 U.S. states (excluding U.S. Territories). Employees who are working in Remote roles will work primarily offsite (from home). An employee may be expected to travel to the site location as needed. As part of our commitment to maintaining a secure hiring process, candidates may be asked to attend select steps of the interview process in-person at one of our office locations, regardless of whether the role is designated as on-site, hybrid or remote. The salary range for this role is 147,000 USD - 295,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

Lambda, The Superintelligence Cloud, is a leader in AI cloud infrastructure serving tens of thousands of customers. Our customers range from AI researchers to enterprises and hyperscalers. Lambda's mission is to make compute as ubiquitous as electricity and give everyone the power of superintelligence. One person, one GPU. If you'd like to build the world's best AI cloud, join us. *Note: This position requires presence in our San Francisco or San Jose office location 4 days per week; Lambda's designated work from home day is currently Tuesday. What You'll Do Validate and verify the organization's security controls and practices meet the requirements of ISO 27001, 27701, PCI, SOC 2 and other relevant regulatory requirements to ensure alignment to business objectives Manage IT Risk Register including risk identification, tracking, and prioritization. Assist with and drive remediation of control deficiencies and gaps Provide guidance to Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) Communicate with technical and non-technical stakeholders and leaders on cybersecurity risk and controls management topics and program-specific reporting Assist with the Customer Trust program which may include managing customer assessments, and security questionnaires Assist control owners with root cause analysis and track risk management action plan progress. Create risk metrics for management regarding information security control maturity, compliance status, risks, performance and findings Assist with the third-party risk management assessment process, ensuring consistent enforcement of information security requirements You Have a minimum of 8 years of experience supporting cybersecurity risk or controls management programs with in-depth knowledge and experience of cybersecurity frameworks including ISO 27001 and 27701, PCI-DSS, SOC, NIST CSF and other regulatory requirements Have experience managing and running audits, certification programs and control assessments. This includes but is not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, and mapping issues to risks Have experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations Possess a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives Nice to Have Experience in the machine learning or computer hardware industry Experience with Security by Design and/or Privacy by Design principles Experience with standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework (CSF), NIST 800.53, NIST 800.171, CMMC, Cybersecurity Maturity Model Certification (CMMC), ISO 27001 and 27701, and SOX ITGC control frameworks. Broad knowledge of IT infrastructure and architecture of computer systems as well as exposure to a variety of platforms such as operating systems, networks, databases, and ERP systems Familiarity with using third-party tools such as Audit Board, Whistic, RSA Archer, ServiceNow for third-party risk management Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) Certified in Risk and Information Systems Control (CRISC) Experience in the AI infrastructure, machine learning and/or computer hardware industry Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. About Lambda Founded in 2012, with 500+ employees, and growing fast Our investors notably include TWG Global, US Innovative Technology Fund (USIT), Andra Capital, SGW, Andrej Karpathy, ARK Invest, Fincadia Advisors, G Squared, In-Q-Tel (IQT), KHK & Partners, NVIDIA, Pegatron, Supermicro, Wistron, Wiwynn, Gradient Ventures, Mercato Partners, SVB, 1517, and Crescent Cove We have research papers accepted at top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG Our values are publicly available: ************************* We offer generous cash & equity compensation Health, dental, and vision coverage for you and your dependents Wellness and commuter stipends for select roles 401k Plan with 2% company match (USA employees) Flexible paid time off plan that we all actually use A Final Note: You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills. Equal Opportunity Employer Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.

Lambda, The Superintelligence Cloud, builds Gigawatt-scale AI Factories for Training and Inference. Lambda's mission is to make compute as ubiquitous as electricity and give every person access to artificial intelligence. One person, one GPU. If you'd like to build the world's best deep learning cloud, join us. * Note: This position requires presence in our San Francisco or San Jose office location 4 days per week; Lambda's designated work from home day is currently Tuesday. What You'll Do * Validate and verify the organization's security controls and practices meet the requirements of ISO 27001, 27701, PCI, SOC 2 and other relevant regulatory requirements to ensure alignment to business objectives * Manage IT Risk Register including risk identification, tracking, and prioritization. * Assist with and drive remediation of control deficiencies and gaps * Provide guidance to Control Owners in the planning, design, implementation, operation, maintenance & remediation of control activities and other supporting requirements (e.g. policies, standards, processes, system configurations, etc.) * Communicate with technical and non-technical stakeholders and leaders on cybersecurity risk and controls management topics and program-specific reporting * Assist with the Customer Trust program which may include managing customer assessments, and security questionnaires * Assist control owners with root cause analysis and track risk management action plan progress. * Create risk metrics for management regarding information security control maturity, compliance status, risks, performance and findings Assist with the third-party risk management assessment process, ensuring consistent enforcement of information security requirements You * Have a minimum of 8 years of experience supporting cybersecurity risk or controls management programs with in-depth knowledge and experience of cybersecurity frameworks including ISO 27001 and 27701, PCI-DSS, SOC, NIST CSF and other regulatory requirements * Have experience managing and running audits, certification programs and control assessments. This includes but is not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, and mapping issues to risks * Have experience collaborating closely with engineers, business teams, and security partners, including incident response, red teams, and architects to seamlessly incorporate cybersecurity controls and risk management processes into their day-to-day operations * Possess a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives Nice to Have * Experience in the machine learning or computer hardware industry * Experience with Security by Design and/or Privacy by Design principles * Experience with standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework (CSF), NIST 800.53, NIST 800.171, CMMC, Cybersecurity Maturity Model Certification (CMMC), ISO 27001 and 27701, and SOX ITGC control frameworks. * Broad knowledge of IT infrastructure and architecture of computer systems as well as exposure to a variety of platforms such as operating systems, networks, databases, and ERP systems * Familiarity with using third-party tools such as Audit Board, Whistic, RSA Archer, ServiceNow for third-party risk management * Certified Information Systems Auditor (CISA) * Certified Information Security Manager (CISM) * Certified Information Systems Security Professional (CISSP) * Certified in Risk and Information Systems Control (CRISC) * Experience in the AI infrastructure, machine learning and/or computer hardware industry Salary Range Information The annual salary range for this position has been set based on market data and other factors. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. About Lambda * Founded in 2012, ~400 employees (2025) and growing fast * We offer generous cash & equity compensation * Our investors include Andra Capital, SGW, Andrej Karpathy, ARK Invest, Fincadia Advisors, G Squared, In-Q-Tel (IQT), KHK & Partners, NVIDIA, Pegatron, Supermicro, Wistron, Wiwynn, US Innovative Technology, Gradient Ventures, Mercato Partners, SVB, 1517, Crescent Cove. * We are experiencing extremely high demand for our systems, with quarter over quarter, year over year profitability * Our research papers have been accepted into top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG * Health, dental, and vision coverage for you and your dependents * Wellness and Commuter stipends for select roles * 401k Plan with 2% company match (USA employees) * Flexible Paid Time Off Plan that we all actually use A Final Note: You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills. Equal Opportunity Employer Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.

Taxwell helps everyday Americans get every tax advantage they deserve by finding credits and deductions they never even knew existed. Our tax preparation software offers easy guidance and ensures your maximum tax refund. We strive to build a team of like-minded experts in both tax and technology who align with our brand purpose, are advocates for our customers and have a fresh, non-traditional approach to the tax industry. The Sr. Security Ops Analyst/Incident Response role is a part of the Taxwell IRM team. IRM SecOps provides cyber security monitoring, reporting, and response along with detection capabilities and threat hunting. Duties include, but are not limited to: Receive incident escalations from monitoring team and assist with real-time advanced analysis, response, and reporting. Mentor and assist in training analysts to aid in their skills development and analytical capabilities. Proactively hunt for threats and enacting identification, containment, and eradication measures while supporting recovery efforts. Point person for coordination with appropriate parties during a security incident - client, management, legal, security, operations, etc. Create thorough reports and documentation of all incidents and procedures, presenting findings to team and leadership on a routine basis Supports detection capabilities and refines process through alert validation. Performs threat hunting and proactive incident response. Completes follow-through to ensure quality forensic materials are captured, preserved and documented along with details and timelines of events and recommendations to avoid future occurrences. Assist in the general maintenance and improvement of processes and/or playbooks. Conduct research regarding the latest methods, tools, and trends in digital forensics analysis. Conduct analysis using logs, previous alerts, etc. to identify trends to identify and prevent potential incidents. Ingest data from multiple sources and aggregate client metrics. Basic Qualifications Bachelor's degree or equivalent combination of CISSP certification and prior experience Five or more years of experience in information systems security. Good communication skills to interact with clients, team members, management, and support personnel. Good analytical and problem-solving skills. Ability to work independently and as part of a team, be highly self-motivated. Experience with cloud environments, such as Microsoft Azure and Amazon. Web Services; Container services and Kubernetes; Azure Monitor and/or Sentinel; Experience with AD and Entra ID; Mimecast and Microsoft Purview; Microsoft OpenAI Services; AWS technologies such as EC2, ECS, Lambdas, LightSail, and VMware Cloud. Ability to script in PowerShell, Python. Preferred Qualifications Previous expertise in consulting or finance, tax background desirable Preferred experience with EDR solutions such as Defender XDR and CrowdStrike Falcon. Experience in Data Visualization (example: PowerBI). Preferred experience with Splunk and osquery. GIAC GCFA and/or GCFR certification. Work Environment Requires being on-call during off hours. May require occasional weekend work. Location is Remote. #LI-DNI At Taxwell, we believe our work benefits from the diverse perspectives of our employees. As such, Taxwell welcomes and celebrates diversity and inclusion and is committed to equal opportunity employment. At Taxwell, you can expect a supportive, open, and inclusive atmosphere and a team that values your contributions. Taxwell is committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants without regard to race, color, religion, sex, national origin, age, d isability, marital status, sexual orientation, gender identity, veteran status, and any other status protected under applicable law. Taxwell considers information gathered in the hiring process, including information on this application, confidential, and only shares it on a need-to-know basis or as required by law. If you need assistance or accommodation due to a disability, you may contact us at ************** or by calling ************ extension 6049 to speak with a member of the HR Talent Acquisition team.

SpyCloud is on a mission to make the internet a safer place by disrupting the criminal underground. SpyCloud's solutions thwart cyberattacks and protect more than 4 billion accounts worldwide. Cybersecurity is an exciting, evolving space, and being at the forefront of the fight to disrupt cybercrime makes SpyCloud a special place to work. If you're driven to align your career with a fantastic mission, look no further! *This role can be hybrid out of Austin (preferred) or remote in the United States with occasional travel to the office (around once per quarter) We are looking for a passionate Senior Security Data Analyst/Python Developer to help us parse, transform, and analyze dirty data. The ideal candidate has a thorough understanding of Python, Data analysis techniques, AWS, ETL patterns, and Automation techniques. Our Stack: Python Linux Databases: Relational and NoSQL AWS (EC2, RDS, SQS, S3, Lambda, API Gateway, and more) What You'll Do: Parse and transform structured and unstructured datasets. Build Python-based automation for the parsing platform. Bring order to dirty and/or unstructured data. Develop ETL-style automation scripts. Maintain and improve the existing codebase and infrastructure. Manage the weekly data ingestion process. Collaborate with the team to design and build innovative data systems. Data analysis based on the consumption of blogs for the marketing team. Develop processes, standards and CI/CD pipelines to manage our codebase. Leverage AI to automatically parse data. Requirements: 5-7 years of professional experience as a Python developer. A love of working with data. Familiarity with cleaning/transforming data. Experience building data solutions and automation tools using Python. Proficient in Linux bash/ksh scripting and Regular Expressions. Interest in cybersecurity. Strong understanding of computer science fundamentals (data structures, algorithms, data processing). Experience with relational and NoSQL databases. Excellent communication skills. Great team player. Self-directed, empathetic, and eager to automate repetitive tasks. Able to switch contexts as business needs change. Nice to Have: Background or strong interest in cybersecurity. Familiarity with Git version control system. Experience with AWS (Compute, Storage, Database). Experience working with Infrastructure as Code (we use Terraform and Ansible). SpyCloud is not sponsoring visas at this time. U.S.-Based Benefits + Perks (for Full Time Employees): At SpyCloud, we are committed to working alongside individuals who are equally passionate about preventing cybercrime, regardless of their department or role. Guided by our core values in all business decisions, we prioritize unity in our mission and ensure all SpyCloud employees have the support and benefits they need to stay focused on our goals. In addition to our engaging workspace in South Austin, flexible and remote-friendly work options, and competitive salary package, we offer our employees a comprehensive benefits package that includes: 401(k) with Employer Contribution Health, Vision, and Dental Insurance Health Savings Account (HSA) available with Employer Contribution Employer Paid Life, Short-term, and Long-term Disability Insurance Generous PTO Plan and 16 paid holidays per year U.K.-Based Benefits + Perks (for Full Time Employees): Retirement Savings Plan with Employer Contribution Employer Provided Private Health Insurance and Healthcare Cashplan Employer Paid Life Insurance and Income Replacement Generous Holiday Plan and 14 paid holidays per year About SpyCloud: SpyCloud is on a mission to disrupt the cycle of cybercrime. As the leader in Cybercrime Analytics, our solutions thwart cyberattacks that originate from the use of stolen data, including account takeover, ransomware, and online fraud. More than 550 customers and partners trust SpyCloud to protect users' identities, prevent targeted attacks, and unmask adversaries attempting to harm businesses and their customers. To learn more and see insights on your company's exposed data, visit SpyCloud. Our Mission: Our mission is to make the internet a safer place by disrupting the criminal underground. Together with our customers and partners, we aim to end criminals' ability to profit from stolen information. Who We Are: SpyCloud is a place for innovative, collaborative, and problem-solvers to thrive. Individually, we're amazing, but together, we're unstoppable. We celebrate diversity and various perspectives and aim to create an inclusive and supportive environment for all. We are proud to be an Equal Employment Opportunity and Affirmative Action employer of choice. All aspects of employment decisions will be based on merit, performance, and business needs. We do not discriminate on the basis of any status protected under federal, state, or local law. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Women, minorities, individuals with disabilities, and protected veterans are encouraged to apply. SpyCloud complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. SpyCloud expressly prohibits any form of workplace harassment. Improper interference with the ability of SpyCloud's employees to perform their job duties may result in discipline up to and including discharge. SpyCloud shares the right to work and participates in the E-Verify program in all locations. If you need assistance or accommodation due to a disability, you may contact us. Our Culture: Our culture is something really special. We're all driven to disrupt the cybercriminal economy as we keep customer accounts safe from compromise. We support a truly worthy and serious mission, but we have fun doing it together. If you are driven, inventive, and collaborative, you'll fit right in. SpyCloud's Recruitment Policy: We will never ask an applicant for sensitive or personal financial information during the recruitment process. We advise all applicants seeking employment with SpyCloud to review available information on recruitment fraud. Anyone who suspects that they have been contacted by someone falsely representing SpyCloud should email ********************. Compensation Transparency Policy: At SpyCloud, we believe in transparency and fairness in compensation. We strive to ensure that all employees are fairly compensated for their contributions, and we openly discuss our compensation philosophy and structure. We are committed to providing competitive salaries and benefits packages to attract and retain top talent, and we encourage open dialogue and feedback regarding compensation matters. Learn more and apply: SpyCloud Careers

**NATIONAL LEADERS IN PEDIATRIC CARE** Ranked among the top 10 pediatric hospitals in the nation, Children's Hospital Los Angeles (CHLA) provides the best care for kids in California. Here world-class experts in medicine, education and research work together to deliver family-centered care half a million times each year. From primary to complex critical care, more than 350 programs and services are offered, each one specially designed for children. The CHLA of the future is brighter than can be imagined. Investments in technology, research and innovation will create care that is personal, convenient and empowering. Our scientists will work with clinical experts to take laboratory discoveries and create treatments that are a perfect match for every patient. And together, CHLA team members will turn health care into health transformation. Join a hospital where the work you do will matter-to you, to your colleagues, and above all, to our patients and families. The work will be challenging, but always rewarding. **It's Work That Matters.** **Overview** **This position is 100% remote. CHLA requires a primary residence in CA prior to start date.** **Purpose Statement/Position Summary:** The Information Security Architect serves a crucial role in ensuring the confidentiality, integrity, and availability of CHLA's information assets and technology resources. They will serve as lead for the information security architecture and engineering team. Responsibilities include leading the planning, designing, implementation and operationalization of security solutions aligned with CHLA policies and regulatory requirements. **Minimum Qualifications/Work Experience:** - Required: 10+ years of progressively responsible experience in information security, network architecture, or related fields, with a demonstrated track record of securing complex enterprise environments. - Deep understanding of security technologies and protocols, including VPN, IPSec, DES encryption, Digital Certificates, SSL/TLS, TCP/IP, DNS, DMZ, and web security architectures. - Hands-on experience with security tools such as Nmap, Nessus, CoreImpact, CyberArk, Qualys (Q1), WebInspect, Snort, or similar vulnerability assessment, identity management, and intrusion detection/prevention solutions. - Familiarity with enterprise security architecture frameworks and integration of security controls across cloud and on-prem environments. - In-depth knowledge of information security standards, frameworks, and regulatory requirements including HIPAA, HITECH, NIST, and ISO 27001. - Strong understanding of data confidentiality, risk assessment, and compliance monitoring across desktop, server, application, database, and network layers. - Familiarity with IT governance and process frameworks, including ITIL, LEAN, and Six Sigma methodologies. - Experience in designing and implementing enterprise-wide security policies, standards, and procedures to ensure secure operations. - Strong analytical, problem-solving, and decision-making capabilities, with the ability to anticipate and mitigate complex security threats. - Excellent communication (oral, written, and presentation) and interpersonal skills, with a consultative and collaborative approach to working with stakeholders at all levels. **Education/Licensure/Certification:** Required: Bachelor's Degree in Computer Science or Computer Software Engineering, or equivalent combination of relevant education and experience may be considered. Training and certification on network equipment and protocols. CISSP or GIAC certifications. **Pay Scale Information** USD $116,189.00 - USD $199,181.00 CHLA values the contribution each Team Member brings to our organization. Final determination of a successful candidate's starting pay will vary based on a number of factors, including, but not limited to education and experience within the job or the industry. The pay scale listed for this position is generally for candidates that meet the specified qualifications and requirements listed on this specific job description. Additional pay may be determined for those candidates that exceed these specified qualifications and requirements. We provide a competitive compensation package that recognizes your experience, credentials, and education alongside a robust benefits program to meet your needs. CHLA looks forward to introducing you to our world-class organization where we create hope and build healthier futures. Children's Hospital Los Angeles (CHLA) is a leader in pediatric and adolescent health both here and across the globe. As a premier Magnet teaching hospital, you'll find an environment that's alive with learning, rooted in care and compassion, and home to thought leadership and unwavering support. CHLA is dedicated to creating hope and building healthier futures - for our patients, as well as for you and your career! CHLA has been affiliated with the Keck School of Medicine of the University of Southern California since 1932. At Children's Hospital Los Angeles, our work matters. And so do each and every one of our valued team members. CHLA is an Equal Employment Opportunity employer. We consider qualified applicants for all positions without regard to race, color, religion, creed, national origin, sex, gender identity, age, physical or mental disability, sexual orientation, marital status, veteran or military status, genetic information or any other legally protected basis under federal, state or local laws, regulations or ordinances. We will also consider for employment qualified applicants with criminal history, in a manner consistent with the requirements of state and local laws, including the LA City Fair Chance Ordinance and SF Fair Chance Ordinance. Qualified Applicants with disabilities are entitled to reasonable accommodation under the California Fair Employment and Housing Act and the Americans with Disabilities Act. Please contact CHLA Human Resources if you need assistance completing the application process. Our various experiences, perspectives and backgrounds allow us to better serve our patients and create a strong community at CHLA. IS - Information Security

Job DescriptionSenior Systems Engineer SAP Security & GRC, immediate start. I am working with a Pharmaceutical client with an urgent requirement for a Senior Systems Engineer to own and drive their SAP Security & GRC roadmap across S/4HANA and adjacent platforms (Ariba, MDG, BTP). What you'll do: Define and maintain SAP security guidelines, SoD frameworks, and compliance controls (SOX, GxP, ITGC) Lead SAP GRC 12.x (ARM, ARA, BRM, EAM, access certifications) implementations, role design, and CHARM workflows Support upgrades, Greenfield implementations, and security enhancements Serve as primary contact for audits, KPI reporting, and continuous improvement initiatives Explore AI/ML solutions for predictive access analytics and compliance automation The ideal consultant will have: 78 years of SAP Security & GRC experience, including S/4HANA and Fiori-role design Hands-on experience with SAP GRC 12.x modules and CHARM processes Deep knowledge of access-management principles, SoD analysis, SOX/GxP compliance, and ITGCs Experience across SAP applications: Ariba, MDG, GTS, BTP, ATTP Excellent troubleshooting, communication, and stakeholder collaboration skills Work remote temporarily due to COVID-19.