Information security analyst jobs in Riviera Beach, FL - 31 jobs

At EisnerAmper, we look for individuals who welcome new ideas, encourage innovation, and are eager to make an impact. Whether you're starting out in your career or taking your next step as a seasoned professional, the EisnerAmper experience is one-of-a-kind. You can design a career you'll love from top to bottom - we give you the tools you need to succeed and the autonomy to reach your goals. EisnerAmper is looking to hire a Senior Associate to join its Risk & Compliance Services practice as a dedicated member of the IT Risk, Data Privacy & Security team. We are seeking a Cybersecurity Compliance Analyst with a strong technical foundation in vulnerability and penetration testing to support our clients' compliance, audit, and risk programs. This role is ideal for someone who understands security tools and testing techniques but applies them in a compliance-focused environment-validating controls, interpreting technical evidence, and helping clients understand their security posture. What it Means to Work for EisnerAmper: * You will get to be part of one of the largest and fastest growing accounting and advisory firms in the industry * You will have the flexibility to manage your days in support of our commitment to work/life balance * You will join a culture that has received multiple top "Places to Work" awards * We believe that great work is accomplished when cultures, ideas and experiences come together to create new solutions * We understand that embracing our differences is what unites us as a team and strengthens our foundation * Showing up authentically is how we, both as professionals and a Firm, find inspiration to do our best work What Work You Will be Responsible For: * Perform vulnerability assessments across Windows and Linux environments to support compliance and audit requirements. * Use Kali Linux or similar platforms (Parrot OS, BlackArch) to perform reconnaissance, validate control effectiveness, and gather technical evidence. * Leverage tools such as Nmap, Burp Suite, Metasploit, and Wireshark to identify risks and confirm whether security controls are operating as intended. * Support IT audit teams by interpreting scan results, validating configurations, and documenting technical evidence. * Evaluate basic web application security risks using the OWASP Top 10 as a reference framework. * Use scripting (Bash, Python, PowerShell) to automate evidence gathering or streamline validation tasks. * Prepare clear, client-ready documentation explaining findings, risk impacts, and compliance implications. * Communicate technical concepts to non-technical stakeholders in a clear and professional manner. Basic Qualifications: * Bachelors Degree 2-3 years of hands-on experience performing penetration testing or vulnerability assessments in Windows/Linux environments. * Experience with Kali Linux or similar testing distributions. * Familiarity with core tools: Nmap, Burp Suite, Metasploit, Wireshark. * Understanding of OWASP Top 10 and basic web application security concepts. * Basic scripting knowledge (Bash, Python, or PowerShell). * CEH or similar certification. Preferred/Desired Qualifications: * Strong documentation and communication skills for client-facing compliance work. * Someone who enjoys the technical side of security but can pivot that knowledge into structured compliance work. * Comfortable reviewing configurations, validating controls, and making technical findings understandable for auditors and business leaders. * Detail-oriented, methodical, and able to connect technical testing results to compliance frameworks. EisnerAmper is proud to be a merit-based employer. We do not discriminate on the basis of veteran or disability status or any protected characteristics under federal, state, or local law. About our Risk & Compliance Team: Specializing in services such as risk advisory and technology risk, RCS employees aren't just passionate about technology, but we see it as our driving force for innovation and forward thinking. We're committed to serving as advocates to our clients, enabling them to navigate, transform, secure, and maintain processes and controls they need to reach their unique goals. Whether it's complying with a new regulatory requirement or automating controls within a process, providing peace of mind for those "what's next" moments is our mantra and unique promise to clients. Risk & Compliance Services employees are encouraged to think like an owner when supporting clients. Through this entrepreneurial and business-first mindset, we're pushed to take a step outside of our comfort zones and deliver solutions that both create a lasting business impact for our clients and allow us to grow as professionals. Our core values of trust, integrity and accountability allow us to act as strategic innovators. Because when we build trust with each other, we can bring new ideas to the table and execute them without fear of failure. About EisnerAmper: EisnerAmper is one of the largest accounting, tax, and business advisory firms, with approximately 450 partners and 4,500 employess across the world. We combine responsiveness with a long-range perspective; to help clients meet the pressing issues they face today and position them for success tomorrow. Our clients are enterprises as diverse as sophisticated financial institutions and start-ups, global public firms, and middle-market companies, as well as high net worth individuals, family offices, not-for-profit organizations, and entrepreneurial ventures across a variety of industries. We are also engaged by the attorneys, financial professionals, bankers, and investors who serve these clients. Should you need any accommodations to complete this application please email: ********************************* #LI- Remote #LI- Hybrid #LI- LH1 Preferred Location: Baton Rouge For NYC and California, the expected salary range for this position is between 80000 and 115000 The range for the position in other geographies may vary based on market differences. The actual compensation will be determined based on experience and other factors permitted by law.

Cloud Security Managed Service Sales Engineer Our Deloitte Cyber team understands the unique challenges and opportunities businesses face in cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever-changing threat landscape. Through powerful solutions and managed services that simplify complexity, we enable our clients to operate with resilience, grow with confidence, and proactively manage to secure success.. The team Our Cyber Strategy & Transformation offering develops and transforms cyber programs in line with a client's strategic objectives, regulatory requirements, and risk appetite. It keeps the enterprise a step ahead of the evolving threat landscape and gives stakeholders confidence in the organization's cyber posture. Includes design of the cyber organization, governance, and risk assessments. Recruiting for this role ends on 5/29/2026. Work you'll do As a Cloud Security Sales Engineer you will be on the forefront of client solution and service design within our Cloud Security Program. You should possess a deep understanding of the Cloud Security landscape. Experience with the sales and pursuit process is a plus, as is the ability to assess client needs for optimal service recommendations for the near-term and long-term. Sales Engineering responsibilities include: + Developing an in-depth knowledge of the Cloud Security product + Articulating the technical value proposition, differentiators, and capabilities of the product to prospective clients and partners + Demonstrating the product to technical and non-technical client audiences at the executive and/or technical level + Independently coordinating all aspects of technical product evaluations, from demos and installations to helping prospective clients interpret the security related insights provided by our offering + Working with client executive partners, product management and other sales stakeholders to scope potential opportunities, construct sales proposals and help coordinate the pre-sales / sales process + Helping with some post-implementation support for key clients to ensure that clients are onboarded satisfactorily + Working with product management / product development team to communicate feedback and champion customer requirements for incorporation into the roadmap Required Qualifications: + 7+ years of experience in security information and/or technology engineering + 2+ years of hands-on experience with Cloud Security technologies and products / tools with at least one or more of the 3 major Cloud Platform (AWS, Azure or GCP) + 2+ years of experience working with alliance vendors such as Crowdstrike, Splunk, Wiz, etc + 2+ years of experience driving sales within the cyber/cloud security market, including lead generation, sales cycle management, and proposal development + 2+ years of demonstrated experience working with Microsoft applications including PowerPoint, Word, and/or Excel + At least 1 year of experience coordinating multi-faceted sales strategies for strategic opportunities, including navigating complex stakeholder environments and leveraging funding mechanisms and software resell to improve win probability + Ability to travel 50%, on average, based on the work you do and the clients and industries/sectors you serve. + Limited immigration sponsorship may be available. Preferred: + 4+ years working with Cloud Security providers and vendors + At least 1 year of experience working in a cyber-related professional services environment + 2+ years of demonstrated analytical and problem-solving skills + Bachelor of Science with a concentration in computer science, information systems, information security, cloud security, identity, decision sciences, risk management, engineering (mechanical, electrical, industrial) or other business/technology disciplines or equivalent work experience The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $ 144,200 -$265,600 . You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. Information for applicants with a need for accommodation: ************************************************************************************************************ All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Sparton is an innovative defense contractor headquartered in DeLeon Springs, Florida, with a rich heritage dating back to 1900. Renowned for our exceptional manufacturing capabilities, we specialize in producing high-quality sonobuoys critical to the United States' undersea warfare arsenal, enhancing national security against current and future adversaries. But we are more than manufacturers; we are problem solvers. Our team of dedicated engineers and skilled professionals tackles some of the most challenging issues in defense technology. Our expertise includes advanced research systems, maritime solutions, sophisticated sensor technologies and payload delivery capabilities. Job Summary This position is for an Information System Security Manager (ISSM). The ISSM is responsible for managing all information system security requirements for Sparton's Authorized Information Systems (AIS) assuring continuous system compliance. The successful candidate will have the ability to learn the knowledge and expertise required to manage all security aspects of information systems and oversee the day-to-day security operations of each system, associated media and networks. The ISSM must be able to work with minimal supervision in a high-stress, fast-paced environment. The Primary work location will be DeLeon Springs, FL, with the potential requirement to travel to other ESA facilities on an as-needed basis. This position may require interface with external organizations such as customers, suppliers, law enforcement, and various government agency representatives. Responsibilities and Tasks Reviewing, preparing, and updating ATO packages in accordance with Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual (DAAPM) and customer policy, procedures and guidelines. Identify and communicate changes that might affect information system (IS) security authorization status to include identifying security deficiencies/discrepancies and providing recommendations for solutions. Act as a liaison with government agencies, such as Defense Counterintelligence and Security Agency (DCSA) Information System Security Professionals (ISSP), Advanced / Special Program Government Security Control Assessors (SCA), and other external / internal customers. Develop, implement, and maintain System Security Plans (SSP), Standard Operating Procedures (SOP), information security policies to ensure compliance with Risk Management Framework (RMF) guidelines. Initiates and maintains Plan of Action and Milestones (POA&M) through mitigation and risk acceptance. Oversee the scheduling, installation, implementation and maintenance of security software integration on all information systems under his / her purview. Ensure proper measures are taken when an information system incident or vulnerability is discovered. Manage, maintain, and execute the information security continuous monitoring (ConMon) plan. Ensure configuration management (CM) policies and procedures for authorizing the use of hardware/software on an information system are followed and assess changes to the system, its environment, and operational needs that could affect the security authorization. Perform self-inspections, provide security coordination and review of system test plans Identify vulnerabilities and work with technical subject matter experts to identify and implement countermeasures. Ensure the development and implementation of an effective information system security education, training, and awareness program. Coordinate, prepare, and track IS inspections, reports, and responses. Deploy and configure scanning tools to conduct security vulnerabilities reviews in support of continuous monitoring processes. Conduct manual SRG/STIG checklists and remediation. Conducts scheduled audits and managing audit data. Prepare reports on the status of security safeguards applied to computer systems. Ensure IS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices. Coordinates with Network Security to identify potential threats and vulnerabilities and employs techniques to minimize risk. Education, Experience, Licenses and Certifications Minimum three (3) years of experience as ISSM, Alternate ISSM, or DoD equivalent at an organization of similar size and complexity. Relevant Bachelor's Degree a plus. 3-5 years experience in a similar functional role. Skills and Abilities Experience with AIS reaccreditation process under the NIST Risk Management Framework, in accordance with NIST special publications, including SP-800-171, SP-800-53, and DAAPM. Ability to author system security plans and maintain authorizations to operate (ATO). Excellent written and verbal communication skills and ability to effectively interface with numerous cognizant security agencies, customers and senior management. Ability to manage multiple projects in a dynamic, demanding environment. Knowledge of other security disciplines and how they impact and interact with information system security. Ability to obtain and maintain a Top Secret Clearance. Ability to perform technical certifications for systems being presented to the government for authorization, to include type accreditation. Understanding of network concepts and Type 1 encryption devices, such as TACLANE. Familiarity with CUI requirements for unclassified IT systems and SIPRnet connectivity process is a plus. Desirable certifications include Security+, CISSP or other DoD 8570.1 certifications. Travel and Physical Requirements May require travel of up to 10% The physical demands describe here are representative of those that must be met by an employee to successfully perform the essential functions of the job. The work environment characteristics described are representative of those an employee may encounter while performing the essential functions of this job. This job operates in a professional office environment and a manufacturing environment. The employee may be exposed to fumes or airborne particles, moving mechanical parts and vibration. The employee is occasionally exposed to a variety of extreme conditions in the plant. The noise level in the work environment may be loud. While performing the duties of this job, the employee is frequently required to sit, stand, talk, and communicate, use hands/finger, feel, and reach with arms. This position requires the ability to lift, bend or stoop as necessary up to 20lbs. Benefits Highlights Healthcare Robust medical, dental, vision, & disability coverage. Healthcare concierge to help you navigate your benefit selections. Virtual health solutions for physical therapy, menopause, and diabetes. Company paid Basic Life Insurance. Additional Life & AD&D Insurances are available. On-site wellness clinic. Paid Benefits Competitive compensation. 401k program to plan for your future with company match 50% up to 8%. Company Paid Time Off (Vacation and Sick). Paid parental leave. Adoption assistance. Fertility and family building assistance. Additional Benefits Flexible work schedules available based on position: 9/80 schedule providing every other Friday off 4/10s 3/12s Lifestyle spending account. Perks at work. Generous employee referral program. Tuition reimbursement. Voluntary benefits available: longer term care, legal, identity theft, pet Insurance, and many more options These are highlights of Elbit America benefits. If there is a conflict with these highlights, company policy or benefits plan documents shall govern. Benefits are subject to change. Equal Opportunity Employer/Veterans/Disabled Accessibility Sparton DeLeon Springs, LLC is committed to working with and providing reasonable accommodation to individuals with physical and mental disabilities. If you need special assistance or an accommodation while seeking employment, please email us at Accessibility@Sparton.com Disclaimer: This does not list all the duties of the job. You may be asked by your supervisors or managers to perform other duties. The employer has the right to revise this at any time. The job description is not a contract for employment. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position. #LI-VD1

About Carrier Carrier, global leader in intelligent climate and energy solutions, is committed to creating innovations that bring comfort, safety and sustainability to life. Through cutting-edge advancements in climate solutions such as temperature control, air quality and transportation, we improve lives, empower critical industries and ensure the safe transport of food, life-saving medicines and more. Since inventing modern air conditioning in 1902, we lead with purpose: enhancing the lives we live and the world we share. We continue to lead because of our world-class, inclusive workforce that puts the customer at the center of everything we do. For more information, visit corporate.carrier.com or follow Carrier on social media at @Carrier. About This Role The Principal OT Security Architect is a senior-level individual contributor responsible for designing and guiding the implementation of secure architectures across Carrier's global operational technology landscape. This role partners closely with engineering, infrastructure, and business teams to ensure that security is embedded into the design of OT systems, platforms, and services. The ideal candidate brings deep technical expertise in OT/ICS cybersecurity, strategic thinking, and a strong understanding of industrial control systems and enterprise security architecture. Key Responsibilities Design and maintain scalable, secure, and resilient OT security architectures. Develop and publish OT security reference architectures, patterns, and standards. Lead architectural reviews, threat modeling, and security assessment engagements across business units. Conduct interviews with business and technology leaders and facilitate cybersecurity workshops. Perform physical security walk-downs, technical configuration reviews, and personnel interviews. Provide expert guidance on secure design principles for ICS, MES, DCS, and other OT systems. Evaluate emerging technologies and assess their security implications in OT environments. Collaborate with engineering and operations teams to ensure secure implementation of OT solutions. Contribute to the development of OT security architecture frameworks and governance processes. Act as a subject matter expert (SME) for OT security architecture in cross-functional initiatives. Support the development of OT security roadmaps and risk mitigation strategies. Promote the adoption of secure-by-design principles across OT systems and processes. Support business development activities including proposal writing and client presentations. Lead and mentor consultants and security analysts in OT cybersecurity engagements. Required Qualifications Bachelor's Degree and 6+ years of experience in cybersecurity, IT, OT, or engineering OR High School Diploma/GED and 10+ years in cybersecurity, IT, OT, or engineering Ability and willingness to travel. Preferred Qualifications Proven experience performing OT/ICS cybersecurity functions including risk management, vulnerability assessments, and strategy development. Expertise in securing OT/ICS network architecture across the Purdue reference model. Knowledge of security systems/products including firewalls, intrusion detection, anti-malware software, authentication systems, and log management. Experience with common industrial network protocols including Serial, Modbus, Profibus, and EthernetIP. Familiarity with cybersecurity frameworks such as IEC 62443, ISO 27001, NIST SP 800-82, and NIS 1 / NIS 2. Strong communication, presentation, and stakeholder engagement skills. Experience in both IT and OT security environments. Experience influencing security strategy and policy without direct authority. Experience in OT security architecture, including systems security engineering, solution design, deployment, and evaluation. Certifications such as CISSP, GICSP, CISM, CFSE/CFSP are desirable. Proven ability to manage, mentor, and coach a team. Additional Information Immigration sponsorship is not supported for this position. Carrier is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class. Job Applicant's Privacy Notice: Click on this link to read the Job Applicant's Privacy Notice

14044 - Security Analyst (onsite) - Fort Lauderdale, FL Estimated Duration: 8+ months with possible extensions Work Setting: 40 hours per week, Monday-Friday, 8 AM-5 PM on-site. No hybrid or remote option. • Experience in cybersecurity frameworks and data compliance regulations. • Experience in systems and network administration. • Experience in security operations and incident response • Hands-on security administration experience • Experience developing enterprise security strategies, lead security projects, and handle complex security challenges • Experience in managing varied and complex security responsibilities. • Certified Information Systems Security Professional (CISSP) Responsibilities • Develop and manage security across various IT areas, including systems, networks, and incident response; • Implement and maintain security policies, procedures, and compliance frameworks; • Monitor and administer security tools to enforce standards and detect threats; • Investigate alerts, resolve violations, and document security incidents and controls; • Provide support and guidance to teams on security issues and best practices; • Represent security interests in IT projects and contribute to related initiatives; • Lead or support security-focused projects, working independently when required.

Do you possess an understanding of security controls and their implementation within complex IT environments? Do you have demonstrated experience in implementing and managing continuous monitoring programs for cloud-based systems within the Federal Government? We may have the right role for you! About the Business: LexisNexis Risk Solutions is the essential partner in the assessment of risk. Within our Business Services vertical, we offer a multitude of solutions focused on helping businesses of all sizes drive higher revenue growth, maximize operational efficiencies, and improve customer experience. Our solutions help our customers solve difficult problems in the areas of Anti-Money Laundering/Counter Terrorist Financing, Identity Authentication & Verification, Fraud and Credit Risk mitigation and Customer Data Management. You can learn more about LexisNexis Risk at the link below, *************************** About our Team: The FedRAMP (Federal Risk and Authorization Management Program) Team is focused on analytics and security monitoring within Azure cloud environments. The team is responsible for monitoring and scanning the security posture of the FedRAMP boundary, which includes all Azure cloud subscriptions. The team coordinates with control owners (development, database, infrastructure teams) to ensure vulnerabilities identified in reports are fixed within FedRAMP-mandated timelines About the Role: This position will analyze risks and help operate the enterprise security program. The position requires strong technical skill, to execute security processes with minimal guidance and help achieve operational efficiencies therein. Other responsibilities include handling service requests from the Business and Technology teams, analyzing/validating the requirements, defining the access rules, scripting the changes, and providing troubleshooting support related to any access issues. The individual will assist with reviewing existing tools, applications, and processes to help strengthen and optimize current capabilities, as well as identifying any gaps or technical solutions to further enhance the team's effectiveness Requirements: + Extensive years of IT security experience + BS Engineering/Computer Science or equivalent experience required + Programming and Automation: Python, Pyspark, SQL + Data Visualization: Proficiency in tools like Microsoft Fabric, Power BI to create dashboards and reports + Cloud Platforms: Proficiency in Azure, AWS, or Google Cloud Platform. + Tools and Frameworks: Docker, Kubernetes, and infrastructure-as-code tools like Terraform, GitHub + Data Management: Experience with ETL process, data warehousing + Vulnerability management: Tools like Qualys, ServiceNow. + SIEM: Tools like Microsoft Sentinel, Splunk + Possess FedRAMP continuous monitoring experience. + Understanding of the NIST Special Publication 800-53 guidelines and FedRAMP requirements + Excellent written and verbal communication skills, with experience in client engagement and survey development. Responsibilities: + Promote and support compliance initiatives by authoring and enforcing security policies. + Analyze and respond to security events, collaborating with peers to protect company assets. + Design and implement security solutions to address emerging threats and compliance needs. + Develop and manage security programs, including procedures, guidelines, and performance metrics. + Communicate across departments to raise security awareness and share risk-related updates. + Evaluate and improve security programs to enhance maturity and operational efficiency. + All other duties as assigned. U.S. National Base Pay Range: $93,400 - $155,700. Geographic differentials may apply in some locations to better reflect local market rates. If performed in Illinois, the pay range is $98,100 - $163,500. If performed in Chicago, IL, the pay range is $102,800 - $171,300. This job is eligible for an annual incentive bonus. We know that your wellbeing and happiness are key to a long and successful career. These are some of the benefits we are delighted to offer to our US full- and part-time employees working at least 20 hours or more per week: ● Health Benefits: Comprehensive, multi-carrier program for medical, dental and vision benefits ● Retirement Benefits: 401(k) with match and an Employee Share Purchase Plan ● Wellbeing: Wellness platform with incentives, Headspace app subscription, Employee Assistance and Time-off Programs ● Short-and-Long Term Disability, Life and Accidental Death Insurance, Critical Illness, and Hospital Indemnity ● Family Benefits, including bonding and family care leaves, adoption and surrogacy benefits ● Health Savings, Health Care, Dependent Care and Commuter Spending Accounts ● In addition to annual Paid Time Off, we offer up to two days of paid leave each to participate in Employee Resource Groups and to volunteer with your charity of choice We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact **************. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here . Please read our Candidate Privacy Policy . We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: EEO Know Your Rights . RELX is a global provider of information-based analytics and decision tools for professional and business customers, enabling them to make better decisions, get better results and be more productive. Our purpose is to benefit society by developing products that help researchers advance scientific knowledge; doctors and nurses improve the lives of patients; lawyers promote the rule of law and achieve justice and fair results for their clients; businesses and governments prevent fraud; consumers access financial services and get fair prices on insurance; and customers learn about markets and complete transactions. Our purpose guides our actions beyond the products that we develop. It defines us as a company. Every day across RELX our employees are inspired to undertake initiatives that make unique contributions to society and the communities in which we operate.

Hours: 40 Pay Details: $87,000 - $151,000 USD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. Line of Business: Technology Solutions : The Manager Information Security manages / leads a team of Technology Controls / Information Security experts in the development and/ or management of relevant strategies, programs, tools, frameworks and policies and provides specialized oversight / control / governance activities for a key business line/segment or transformational (change the bank) strategic initiative / program, liaising across the organization and primarily interfacing with executive and/or functional stakeholders to minimize overall technology risks to the Bank for own area. Job Description: This position manages junior level penetration testers, vendor coordination for multiple testing services, processes, procedures and scheduling for penetration, dynamic scanning, and manual code review testing services. Responsibilities: * Vendor Management: Manage and coordinate penetration testing engagements with vendors. * People Management: Manage a team of Junior level penetration testers and their development. * DAST: Manage the DAST program and tooling. Familiarity with current industry tooling and technologies and those being introduced. * Facilitate Penetration Tests: Perform thorough and methodical penetration testing. * Evaluate and Assign: penetration tests to appropriate resources. * Vulnerability Assessment: Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture. * Report Findings: Document and communicate findings clearly and effectively to both technical and non-technical stakeholders. Prepare comprehensive reports with recommendations for remediation. * Develop Test Procedures: Design and execute detailed test requirements. * Stay Current: Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective. * Collaborate with Teams: Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements; work closely with advisory and SDLC pipeline teams to ensure compliance; work closely with PCS team to manage PCI testing requirements. This position will collaborate with many application security teams. * Perform Risk Assessments: Evaluate and assess potential security risks related to new and existing systems and technologies. * Compliance: Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies. * Incidents: Act as a testing SME on incident calls; support testers on the calls. Depth & Scope: * Advanced knowledge of Bank, technology standards and managing people / projects * Leads a small team of IT professionals; coaches/ educates, monitors and manages team members * Strong communication, negotiation and organizational skills specifically including the ability to present options in business terms to both IT and business staff including executives Education & Experience: * Bachelor's degree preferred * Information security certification / accreditation an asset * 7+ years of relevant experience Preferred Qualifications : * Technical Skills: * Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali. * Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles. * Penetration testing, DAST, Manual Code Review knowledge. * Analytical Skills: Strong analytical and problem-solving abilities with attention to detail. * Organizational Skills: Manage documents and procedures for testing team. * Multi-tasking: This job requires exceptional ability to multi-task with multiple workstreams to manage daily. * Communication: Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders. * Ethical Standards: Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards. * Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing. * Familiarity with security standards and frameworks. * Previous experience managing and developing teams. * Certifications: Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable. * Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities * Participate in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team #TDCyberSecurity #Hybrid Physical Requirements: Never: 0%; Occasional: 1-33%; Frequent: 34-66%; Continuous: 67-100% * Domestic Travel - Occasional * International Travel - Never * Performing sedentary work - Continuous * Performing multiple tasks - Continuous * Operating standard office equipment - Continuous * Responding quickly to sounds - Occasional * Sitting - Continuous * Standing - Occasional * Walking - Occasional * Moving safely in confined spaces - Occasional * Lifting/Carrying (under 25 lbs.) - Occasional * Lifting/Carrying (over 25 lbs.) - Never * Squatting - Occasional * Bending - Occasional * Kneeling - Never * Crawling - Never * Climbing - Never * Reaching overhead - Never * Reaching forward - Occasional * Pushing - Never * Pulling - Never * Twisting - Never * Concentrating for long periods of time - Continuous * Applying common sense to deal with problems involving standardized situations - Continuous * Reading, writing and comprehending instructions - Continuous * Adding, subtracting, multiplying and dividing - Continuous The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required. The listed or specified responsibilities & duties are considered essential functions for ADA purposes. Who We Are: TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues. TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you. Our Total Rewards Package Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more Additional Information: We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home. Colleague Development If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals. Training & Onboarding We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role. Interview Process We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call. Accommodation TD Bank is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law. If you are an applicant with a disability and need accommodations to complete the application process, please email TD Bank US Workplace Accommodations Program at ***************. Include your full name, best way to reach you and the accommodation needed to assist you with the applicant process.

Under limited supervision, this position assists in managing all fiscal activities related to the Department of Safety, Security, and Emergency Preparedness. Responsibilities include assisting the Support Services Division Captain with capital and operational financial tasks, including budgeting and accounting activities; processing requisitions, PO's, invoices and payment packages; specialized recordkeeping, database management and/or specified information gathering projects and tasks, compliance assurance, ad-hoc reporting, and a wide range of highly complex associated administrative, fiscal, and planning activities. Coordinates assigned activities with other departmental areas, departments, campuses and district offices. Performs related work as directed. Minimum Education: * Bachelor's degree in accounting, or other business- related fields. Master's degree preferred. Minimum Experience/Training: * Six years of relevant experience. * An equivalent combination of experience and education may be considered where applicable. Essential Functions: * Daily 35%: Oversee the review, compilation, and payment submittal of payment requests, coordinating with Managers and Administrative Staff to ensure accurate and timely approvals of payments. * Daily 20%: Monitors the recording of the DSSEP financials. Determines and communicates the appropriate procedures for budget and accounting record preparation, research of transactions, and reporting. Reconciles and resolves problems related to operational, capital, and special project accounts. * Bi-Weekly 10%: Manages all project job revenue and cost reports, working with the Support Services Captain, Project Managers and Accounting/Finance to properly utilize all actual and forecasted information to create, maintain and update effective project revenue and expense reporting for all stakeholders. * Bi-Weekly 10%: Analyzes trends in key performance indicators impacting fund balances across all funding sources including all areas of revenue and expenses. Provides variance analysis of actual results as compared to budget, highlights key points within budget cycle to assist with operational changes and action. * Daily 10%: Develops a comprehensive understanding of the business with the ability to proactively provide and analyze data before it's requested and gather agreement with all partners on relevant issues. Effectively able to communicate project cost information to operations and field leadership, as well as develop executive level reports and presentations. * Daily 5%: Understands operational processes that impact the integrity of the controls and procedures related to all financial and project costing systems. Works with DSSEP Senior Management and department leaders to fix inefficient processes and improve the strength of all financial and project reporting. * Annual 5%: Coordinates with the Support Services Division Captain and the DSSEP AVP in the preparation of monthly and annual department level budgets and forecasts, with a strong focus on operational expenditure tracking, capital projects cost estimates, and personnel and related expenses. Provides financial modeling and reporting for the presentation to the Board of Trustees. * Other, as Needed 5%: Creates ad-hoc analysis and assists in special projects, tasks and other duties as assigned. Knowledge, Skills and Abilities: * In-depth functional knowledge and expertise in area of specialization and general knowledge of related areas in the College * Ability to perform complex administrative analysis with only general supervision * Strong diagnostic, analytical and problem-solving skills * Excellent coordination and communication skills used appropriately to influence the decision-making of individuals and groups at all levels in the College * Ability to plan and manage own workflow, priorities and results accomplishment * Requires the ability to present and disseminate data to various levels * Requires advanced knowledge of computerized systems and multiple operating environments i.e. Microsoft Office Products and specialized computer systems. * Ability to interact and effectively communicate with employees and student population Our Culture: * At Broward College, our leaders embody a culture of competence, care, character, composure, and courage. We prioritize serving each other and our students through high-quality guidance, mutual respect, resilience, and fair, thoughtful decision-making, all while upholding the values of integrity, transparency, and honesty. Broward College offers an exceptional benefits package, including, but not limited to: * Affordable High Quality Healthcare Insurance (Medical, Dental & Vision) * Retirement Options - Florida Retirement System (FRS) Pension Plan or the FRS Investment Plan * Wellness Program * Vacation/Paid Time Off * Winter and Spring Break Off * Paid Parental Leave * Tuition Assistance and Tuition Reimbursement are available to employees and family members Job Title Senior Analyst, Department of Safety, Security, and Emergency Preparedness Position Number P0091989 Job Status Full time Regular Department Safety, Security and Emergency Preparedness Location Cypress Creek Administrative Center Pay Grade 715 Salary $52,900 - $62,158 Salary commensurate with education and experience. Work Shift Work Schedule Monday - Friday/Weekends/Varies Hours Per Week 40 Posting End Date Open Until Filled Comments To be considered for this position, a completed online employment application along with a resume is required. Designated Essential Personnel No FLSA Status Exempt Position Classification Professional Technical Staff (PTS) Special Instructions to Applicant: For positions requiring a degree, the official transcripts are required upon hire. An unofficial copy of the degree/transcript is acceptable during the application process and must be attached to the online application. If unable to attach the documentation, please email document to **************** or fax to ************, stating clearly the position name(s) and position number(s) the transcript is to be attached to. Foreign Transcript: Transcripts issued outside of the United States require a equivalency statement from a certified transcript evaluation service verifying the degree equivalency to that of an accredited institution within the USA. This report must be attached with the application and submitted by the application deadline. All required documentation must be received on or before the job posting end date. Please note that multiple documents can be uploaded in the "Resume/CV/Transcript/License/Certification" section of the application Please refer to link with the instructions on how to submit an application with multiple documents. *********************************************************************************** Employment is contingent upon successful completion of the required background screening process. Broward College uses E-Verify to check employee eligibility to work in the United States. You will be required to complete an I-9 Form and provide documentation of your identity for employment purposes. Broward College is an equal opportunity employer and strongly encourages applications from eligible veterans and spouses of veterans, underrepresented groups, including minorities, women, and persons with disabilities. The College does not discriminate on the basis of age, color, disability, gender identity, genetic information, national origin, race, religion, sexual orientation or any other legally protected classification. For inquiries regarding Title IX and the college's non-discrimination policies, contact the Vice President for Talent and Culture at ************, Broward College, 6400 NW 6th Way, Fort Lauderdale, FL 33309. Applicants needing a reasonable accommodation with the application process, please contact the Talent and Culture Department at ********************. Disclaimer The intent of this description is to illustrate the types of duties and responsibilities that will be required of positions given this title and should not be interpreted of describe all the specific duties and responsibilities that may be required in any particular position. Directly related education/experience beyond the minimum stated may be substituted where appropriate at the discretion of the Appointing Authority. Broward College reserves the right to revise or change job duties, job hours, and responsibilities.

Job Description Octagon Talent Solutions is a South Florida-based, full-service technology recruitment and staffing firm dedicated to connecting top talent with the right opportunities. We take a human-centered approach to technical recruitment, prioritizing candidates' long-term career goals while carefully evaluating cultural fit. By fostering meaningful, lasting relationships, we deliver placements built to last. Job Overview: We are seeking a seasoned Concierge Security Engineer (CSE) to join our team in Fort Lauderdale, FL. The Concierge Security Engineer will build and maintain strong partnerships with customers while delivering customized security solutions. Core duties include investigating security incidents, configuring and troubleshooting data sources, and ensuring smooth service delivery. Respond promptly to customer requests for guidance, information, or support promptly, coordinating with other teams when needed. Foster proactive communication and collaboration with internal and external stakeholders. The Concierge Security Engineer (CSE) role combines the expertise of an IT Security Analyst, Security Architect, and Incident Response Consultant. Success requires both strong technical capabilities and the ability to communicate complex security concepts clearly and effectively to a non-technical audience. RESPONSIBILITIES: Build and nurture exceptional relationships with customers, ensuring a strong and lasting partnership. Deliver security solutions directly to customers, including, configuring, troubleshooting, and verifying data sources. Respond promptly to customers requests for guidance, information, or support, escalating issues as necessary and coordinating with other teams to ensure resolution. Proactively engage and communicate with both internal and external stakeholders to foster collaboration and transparency. Serve in a multifaceted role that blends responsibilities of an IT Security Analyst, Security Architect, and Incident Response Consultant. REQUIREMENTS: Bachelor's degree in Computer Science, Information Security, or related discipline. Strong understanding of IT security principles, standards, and best practices. Experience with security information and event management (SIEM) platforms Excellent communication skills with ability to convey complex technical concepts to non-technical audiences Knowledge with leading security frameworks such as NIST, ISO 27001, CIS. Proficiency with security tools, threat detection techniques, and incident response procedures Strong analytical skills, a problem-solving mindset, and a commitment to delivering excellent customer services.

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap corporate systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap, acting as the key individual with both the authority and responsibility to ensure the safety and resilience of enterprise systems, products, and services. Your oversight will encompass: - Enterprise systems:Identifying potential misuse and abuse cases, proposing solutions to address these scenarios, and identifying product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. - Build-time controls: Managing applications/products security controls and activities during development. - Runtime controls: Overseeing security measures at runtime, from prevention to detection and response. Additionally, you will be involved with aspects of internally built products and represent all areas of security, spanning governance, risk, and compliance (GRC) to security monitoring, for a number of departments/teams. You will also have the authority and ability to involve other security team members as needed. While you will take on multiple responsibilities-from advisor to builder and beyond-your primary focus will be designing and building security patterns and practices for services and processes, and fostering strong relationships with product, business, and engineering. Essential Job Duties & Responsibilities Lead, participate in, and contribute to partnerships between security, IT, General & Administrative teams, engineering, product, and operations teams to build, orchestrate, and automate security controls and services in GoodLeap enterprise systems, products, services, and operational processes. Identify potential misuse and abuse cases in enterprise systems, propose solutions to address these scenarios, and identify product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. Support or develop components of the security analytics platform. Contribute to investigations, threat hunting, and incident response activities in a supporting role. Collaborate with the monitoring and response team to create playbooks for specific incident response scenarios related to the products and services you oversee. These investigations, incidents, and playbooks may address security, fraud, privacy, resilience, and related concerns. Support the security operations team with the vulnerability management lifecycle for products and services under your purview. Ensure technical alignment for the products and services you oversee with team initiatives, including GRC, security operations, and monitoring and response activities. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in agile product lifecycles. Ideally, you have experience in a product manager or engineering manager role and understand how SaaS products (B2B, B2B2C, and B2C) are built, including roadmap planning and feature and defect prioritization. Experience with threat modeling methodologies, with the ability to create efficient and scalable approaches to conducting such assessments. Familiarity with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Hands-on experience with managing security for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting with G&A teams, internal product teams, and other cross-functional areas. Proficiency in writing automation scripts in multiple languages, with prior experience automating security processes in cloud or SaaS environments. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution. Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI.

Job Description Cloud Security Engineers are responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They also help develop new designs and security strategies across cloud-based and hybrid applications, infrastructure, platforms, and SaaS. Leads the analysis, implementation, execution, and improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Conducts research and provides leadership updates regarding advanced attempts/efforts to compromise security protocols. Maintains and reviews security systems while assessing security policies that control access to systems. Provides status updates and recommendations to the leadership team regarding the impact of theft, destruction, alteration, or denial of access to information. Follows standard practices and procedures in analyzing situations or data. This position reports to the Director of Information Security. Responsibilities The primary duties and responsibilities of the Cloud Security Engineer are: Assessing Existing Infrastructure and Identifying Threats. Providing recommendations on New Infrastructure and Threat Modeling to assist in stakeholder decisions. Developing, solutioning, operating, maintaining, and supporting a secure cloud environment with technologies including but not limited to: Servers, Storage, Network services, Enterprise applications, Cloud platform support, Automation, CI/CD, Managing cryptography and encryption, IAM, Threat Detection, Logging, PKI, SaaS, and PaaS. Monitoring for and responding to incidents in cloud environments. Keeping cloud infrastructure current, making recommendations, and continually improving cloud security technologies. Analyzing, designing, and developing programs, shell scripts, tests, and infrastructure automation capabilities. Develop security standards in partnership with Engineering, Infrastructure Services, and Application Development. Representing the cloud security team in change control activities and ensure proposed changes are in alignment with security best practices. Staying abreast with security standards and emerging vulnerabilities/threats to proactively resolve/remediate/mitigate. Engage in digital forensics to investigate breaches or security incidents in the cloud. Collaborate with Disaster Recovery and Business Continuity Teams and play a pivotal role in developing, testing, and refining disaster recovery plans tailored for cloud environments. Empower the Security Compliance and Data Protection Team to audit cloud environments to ensure compliance and pinpoint areas of improvement. Using metrics and KPIs to drive and further Security Posture Initiatives. Establish and maintain a feedback mechanism where security measures are not only implemented but also refined based on feedback to enhance security protocols continuously. Performing other security team relevant duties and responsibilities as assigned. Participate in incident response activities as assigned. Preferred Experience Experience in designing, deploying and operating secure cloud solutions, including design documentation, assessment of risk, cost impact, and proposal of savings. Experience with Cloud Security Posture Management, Cloud Workload Management, SaaS Security Posture Management, Cloud Network Security, Cloud Native Application Protection and Cloud Identity Security. Deep technical knowledge of on-prem Data Center technologies as well as Cloud Service, PaaS and SaaS Providers. Has experience writing formal security assessments and ad-hoc security reports. Experience working as part of a security incident response team as needed and key escalation point for all cloud related incidents. Experience delivering security metrics and measurement capability to demonstrate operational security posture. Experience in data protection and privacy management. Skills Required Team player able to work effectively at all levels of an organization with the ability to influence others to move toward consensus. Clear ability to build strong relationships and establish trust with stakeholders at all levels. Excellent verbal and written communications skills. Multiple language abilities preferred - fluency in English (written and spoken) required. Strong leadership skills with demonstrated ability to prioritize and execute in a methodical and disciplined manner. Ability to solve complex problems in a timely manner by working with multiple stakeholders. Ability to manage multiple tasks and work streams effectively. Ability to follow detailed procedures and processes with a high degree of accuracy. Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work product. Deep understanding of Cyber Security control environments and their relationship to zero-trust networks. Display a keen ability to adapt to new tools, technologies, and evolving threat landscapes in the realm of cloud security. Experience in 3 or more of the following: network design, mobile security, network and firewall security technologies, SaaS/PaaS Security, vulnerability management or penetration testing. Flexibility to travel as required up to 15% overnight travel. Qualifications Experience / Education / Certifications Bachelor's degree preferred in Computer Sciences, Information Technology, Information Security or other related field Three (3) years or more experience with architecting and operating solutions involving one or more cloud service providers Microsoft Azure, AWS, GCP, etc. Five (5) years of Cyber Security related work experience Practical knowledge of any combination of Payment Card Industry (PCI), GDPR, NIST standards, or ISO27000 series. At least one industry standard certification such as CCSK, CCSP, Certified Information Systems Security Professional (CISSP), or other Cloud Security certification. #IndeedSHRSS #LI-Hybrid #zipcorpor

At ITRADE STEM, we are shaping the future by fostering job creation and advancing key industries such as space, technology, energy, and manufacturing. Through innovative programs, we equip individuals with career opportunities that enhance essential skills and promote sustainable growth. Join us in our mission to redefine the possibilities of STEM! Job Overview: We are seeking a seasoned Concierge Security Engineer (CSE) to join our team in Fort Lauderdale, FL. The Concierge Security Engineer will build and maintain strong partnerships with customers while delivering customized security solutions. Core duties include investigating security incidents, configuring and troubleshooting data sources, and ensuring smooth service delivery. Respond promptly to customer requests for guidance, information, or support promptly, coordinating with other teams when needed. Foster proactive communication and collaboration with internal and external stakeholders. The Concierge Security Engineer (CSE) role combines the expertise of an IT Security Analyst, Security Architect, and Incident Response Consultant. Success requires both strong technical capabilities and the ability to communicate complex security concepts clearly and effectively to a non-technical audience. RESPONSIBILITIES: Build and nurture exceptional relationships with customers, ensuring a strong and lasting partnership. Deliver security solutions directly to customers, including, configuring, troubleshooting, and verifying data sources. Respond promptly to customers requests for guidance, information, or support, escalating issues as necessary and coordinating with other teams to ensure resolution. Proactively engage and communicate with both internal and external stakeholders to foster collaboration and transparency. Serve in a multifaceted role that blends responsibilities of an IT Security Analyst, Security Architect, and Incident Response Consultant. REQUIREMENTS: Bachelor's degree in Computer Science, Information Security, or related discipline. Strong understanding of IT security principles, standards, and best practices. Experience with security information and event management (SIEM) platforms Excellent communication skills with ability to convey complex technical concepts to non-technical audiences Knowledge with leading security frameworks such as NIST, ISO 27001, CIS. Proficiency with security tools, threat detection techniques, and incident response procedures Strong analytical skills, a problem-solving mindset, and a commitment to delivering excellent customer services.

IT Security Consultant We are accepting applications for an IT Security Analyst which involves a variety of responsibilities aimed at protecting an organization's computer networks and systems from cyber threats. Responsibilities: + Monitor, detect, and respond to security incidents and threats using security information and event management (SIEM) tools. + Collaborate with IT teams to identify vulnerabilities and implement appropriate security measures. + Perform regular security assessments, risk analyses, and vulnerability scans. + Develop, document, and enforce security policies, protocols, and best practices. + Investigate security breaches, conduct forensic analysis, and recommend corrective actions. + Maintain up-to-date knowledge of the latest cybersecurity trends, vulnerabilities, and compliance requirements. + Assist in security awareness training for staff and end-users. + Prepare reports for management on incident outcomes, risks, and preventative strategies. Requirements Requirements: + Bachelor's degree in Computer Science, Information Security, or a related field or equivalent. + Relevant certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) preferred. + Hands-on experience with SIEM tools, firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection. + Strong understanding of network protocols, operating systems (Windows, Linux), and cloud environments. + Knowledge of security frameworks (NIST, ISO 27001) and regulatory requirements (GDPR, HIPAA, etc.). + Superb analytical and problem-solving skills. + Excellent communication and teamwork abilities. Technology Doesn't Change the World, People Do. Robert Half is the world's first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles. Robert Half works to put you in the best position to succeed. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - whenever you choose - even on the go. Download the Robert Half app (https://www.roberthalf.com/us/en/mobile-app) and get 1-tap apply, notifications of AI-matched jobs, and much more. All applicants applying for U.S. job openings must be legally authorized to work in the United States. Benefits are available to contract/temporary professionals, including medical, vision, dental, and life and disability insurance. Hired contract/temporary professionals are also eligible to enroll in our company 401(k) plan. Visit roberthalf.gobenefits.net for more information. © 2025 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking "Apply Now," you're agreeing to Robert Half's Terms of Use (https://www.roberthalf.com/us/en/terms) .

Our Company: At red violet, we build proprietary technologies and apply analytical capabilities to deliver identity intelligence. Our technology powers critical solutions, which empower organizations to operate with confidence. Our solutions enable the real-time identification and location of people, businesses, assets and their interrelationships. These solutions are used for purposes including identity verification, risk mitigation, due diligence, fraud detection and prevention, regulatory compliance, and customer acquisition. Our intelligent platform, CORE, is purpose-built for the enterprise, yet flexible enough for organizations of all sizes, bringing clarity to massive datasets by transforming data into intelligence. Our solutions are used today to enable frictionless commerce, to ensure safety, and to reduce fraud and the concomitant expense borne by society. The Role: IT Compliance Analyst is responsible for providing Information Technology (IT) security governance, training, and risk mitigation support while ensuring controls and processes are in place to provide and maintain a secure and regulatory compliant technology environment by focusing on all aspects of data compliance, with an emphasis on Payment Card Industry Data Security Standard (PCI DSS), SOX, SOC 2, NIST and ISO 27001. What You Will Do: * Coordinates and evaluates audits and reviews of various IT applications and systems to ensure information security processes and procedures are effective. Prepare reports of findings for review by management, including recommended remediation as necessary. * Monitors and assesses compliance with industry regulations and internal policies. * Conducts regular compliance audits and risk assessments to identify gaps and recommend corrective actions. * Supports the development and implementation of risk mitigation strategies. * Conducts periodic reviews of information security policies, procedures, and compliance, and prepares reports of findings to be reviewed by management. * Coordinates the annual risk assessment reviews and operational audits. * Assists with the development and implementation of information classification and control policies and procedures. * Remains current with changes in information resources security legislation and regulations. * Manages and maintains all information security and compliance related awareness training. * Assists various business units in implementing and maintaining information resources security. * Assists in all information security and compliance related awareness training. * Assists with the investigation, documentation, and response to all suspected information security events. * Adheres to Company standards and maintains compliance with all policies and procedures. * Works closely with IT, Legal, Information Security, and other departments to ensure cohesive compliance efforts. * Supports incident response planning and testing activities. * Performs related duties as assigned. What You Bring: * Bachelor of Science in Computer Science, Information Technology, Information Security, or related field. * Expert knowledge in at least one of the following: PCI DSS, SOX, SOC 2, NIST 800-171, NIST 800-53, NIST CSF, FedRAMP, ISO 27001 and/or ISO 42001. * Relevant certifications such as CISSP, CISA, CIA, or CRISC are highly desirable. * 3 to 5 years of experience in relevant fields. * Experience in developing and delivering presentations to senior management outlining program benefits, status, issues and recommendations. * Proficient in time management; the ability to organize and manage multiple priorities. * Able to take initiative and effectively adapt to changes. * Able to establish and maintain a cooperative working relation. * Able to use sound judgment; work independently, with minimal supervision. * Strong analytical and problem-solving skills. * Strong attention to detail and commitment to accuracy. * High ethical standards and integrity in managing sensitive information. * Able to lead external auditors through audits with precision and confidence. * Able to perform a variety of duties, often changing from one task to another of a different nature, with impending deadlines and/or established timeframes. * Competent in public speaking. What We Offer: red violet offers unique benefits including a generous PTO policy; medical, dental and vision coverage; a 401K plan, commuter benefits, in office healthy snacks, team events and more. red violet is proud to be an Equal Opportunity Employer.

Apply Description Our Company: At red violet, we build proprietary technologies and apply analytical capabilities to deliver identity intelligence. Our technology powers critical solutions, which empower organizations to operate with confidence. Our solutions enable the real-time identification and location of people, businesses, assets and their interrelationships. These solutions are used for purposes including identity verification, risk mitigation, due diligence, fraud detection and prevention, regulatory compliance, and customer acquisition. Our intelligent platform, CORE™, is purpose-built for the enterprise, yet flexible enough for organizations of all sizes, bringing clarity to massive datasets by transforming data into intelligence. Our solutions are used today to enable frictionless commerce, to ensure safety, and to reduce fraud and the concomitant expense borne by society. The Role: IT Compliance Analyst is responsible for providing Information Technology (IT) security governance, training, and risk mitigation support while ensuring controls and processes are in place to provide and maintain a secure and regulatory compliant technology environment by focusing on all aspects of data compliance, with an emphasis on Payment Card Industry Data Security Standard (PCI DSS), SOX, SOC 2, NIST and ISO 27001. What You Will Do: Coordinates and evaluates audits and reviews of various IT applications and systems to ensure information security processes and procedures are effective. Prepare reports of findings for review by management, including recommended remediation as necessary. Monitors and assesses compliance with industry regulations and internal policies. Conducts regular compliance audits and risk assessments to identify gaps and recommend corrective actions. Supports the development and implementation of risk mitigation strategies. Conducts periodic reviews of information security policies, procedures, and compliance, and prepares reports of findings to be reviewed by management. Coordinates the annual risk assessment reviews and operational audits. Assists with the development and implementation of information classification and control policies and procedures. Remains current with changes in information resources security legislation and regulations. Manages and maintains all information security and compliance related awareness training. Assists various business units in implementing and maintaining information resources security. Assists in all information security and compliance related awareness training. Assists with the investigation, documentation, and response to all suspected information security events. Adheres to Company standards and maintains compliance with all policies and procedures. Works closely with IT, Legal, Information Security, and other departments to ensure cohesive compliance efforts. Supports incident response planning and testing activities. Performs related duties as assigned. What You Bring: Bachelor of Science in Computer Science, Information Technology, Information Security, or related field. Expert knowledge in at least one of the following: PCI DSS, SOX, SOC 2, NIST 800-171, NIST 800-53, NIST CSF, FedRAMP, ISO 27001 and/or ISO 42001. Relevant certifications such as CISSP, CISA, CIA, or CRISC are highly desirable. 3 to 5 years of experience in relevant fields. Experience in developing and delivering presentations to senior management outlining program benefits, status, issues and recommendations. Proficient in time management; the ability to organize and manage multiple priorities. Able to take initiative and effectively adapt to changes. Able to establish and maintain a cooperative working relation. Able to use sound judgment; work independently, with minimal supervision. Strong analytical and problem-solving skills. Strong attention to detail and commitment to accuracy. High ethical standards and integrity in managing sensitive information. Able to lead external auditors through audits with precision and confidence. Able to perform a variety of duties, often changing from one task to another of a different nature, with impending deadlines and/or established timeframes. Competent in public speaking. What We Offer: red violet offers unique benefits including a generous PTO policy; medical, dental and vision coverage; a 401K plan, commuter benefits, in office healthy snacks, team events and more. red violet is proud to be an Equal Opportunity Employer.

We are excited that you are considering joining Nova Southeastern University! Nova Southeastern University (NSU) was founded in 1964, and is a not-for-profit, independent university with a reputation for academic excellence and innovation. Nova Southeastern University offers competitive salaries, a comprehensive benefits package including tuition waiver, retirement plan, excellent medical and dental plans and much more. NSU cares about the health and welfare of its students, faculty, staff, and campus visitors and is a tobacco-free university. We appreciate your support in making NSU the preeminent place to live, work, study and grow. Thank you for your interest in a career with Nova Southeastern University. Primary Purpose: Responsible for the implementation and utilization of information systems required for patient care initiatives to include the integration of clinical business processes. Provides technical training and support to end users, including user documentation and manuals. Job Category: Exempt Hiring Range: Pay Basis: Annually Subject to Grant Funding? No Essential Job Functions: 1. Functions as the first line of support for clinical applications. 2. Facilitates communication between end users such as providers, external organizations, clinical informatics team members, clinical leadership, and support staff, as well as OIIT technical staff. 3. Assists with training on clinical application fundamentals and systems. 4. Recognizes and identifies potential areas where existing policies and procedures related to products may require change. 5. Interacts with current and potential internal customers to ensure timely and proper resolution of problems, maintaining a high level of customer satisfaction. 6. Ensures that problems are logged, worked on, and/or assigned for resolution, prioritization, and tracking. 7. Notifies leadership of high-impact clinical systems issues and provides updates regularly. 8. Functions as one of the system administrators for clinical applications. 9. Contributes to teamwork through appropriate application of process, technical, and information management expertise. 10. Participates in professional development activities. 11. Maintains the strictest confidentiality in accordance with policies, federal laws, and regulations. 12. Completes special projects as assigned. 13. Performs other duties as assigned or required. Job Requirements: Required Knowledge, Skills, & Abilities: Knowledge: 1. Knowledge of clinical informatics software such as NextGen, AxiUm, and EHR/EMR applications. 2. Knowledge of troubleshooting methodologies, including data collection and interpretation. 3. Knowledge of descriptive statistics to analyze statistical data and prepare extracts of data. 4. Knowledge of computer systems, spreadsheets, and applications. Skills: 1. Problem Solving - Skills in identifying complex problems and reviewing related information to develop and evaluate options and implement solutions. 2. Data Extraction - Basic skills in extracting and analyzing data from clinical applications. 3. Writing - Proficient skills in writing correspondence, utilizing good grammar, and appropriate written communication etiquette. 4. Working Relationships - Skills in establishing and maintaining effective working relationships. 5. Active Listening - Skills in giving full attention to what other people are saying, taking time to understand the points being made, asking questions as appropriate, and not interrupting at inappropriate times. 6. Systems Analysis - Skills in determining how a system should work and how changes in conditions, operations, and the environment will affect outcomes. Abilities: 1. Ability to troubleshoot problems and review related information to provide solutions and workarounds. 2. Ability to understand clinical policies, federal laws, and regulations. 3. Ability to properly communicate with clinical end-users. 4. Ability to understand basic clinical processes and clinical business procedures. 5. Ability to deliver training sessions 6. Ability to prepare and make effective presentations. Physical Requirements and Working Environment: 1. Speech Recognition - Must be able to identify and understand the speech of another person. 2. Speech Clarity - Must be able to speak clearly so others can understand you. 3. Near Vision - Must be able to see details at close range (within a few feet of the observer). 4. Travel - Must be able to travel on a daily and/or overnight basis. 5. May be required to work nights or weekends. 6. May be exposed to short, intermittent, and/or prolonged periods of sitting and/or standing in performance of job duties. 7. May be required to accomplish job duties using various types of equipment/supplies, to include but not limited to pens, pencils, and computer keyboards. Required Certifications/Licensures: Required Education: Bachelor's Degree Major (if required: Required Experience: Minimum one (1) year of clinical Informatics, IT, or healthcare experience. Preferred Qualifications: 1. Knowledge and understanding of clinical system interfaces, such as lab order entry and results reporting, and clinical equipment interfaces with electronic health records. 2. NextGen Certified Professional Is this a safety sensitive position? No Background Screening Required? Yes Pre-Employment Conditions: Sensitivity Disclaimer: Nova Southeastern University is in full compliance with the Americans with Disabilities Act (ADA) and does not discriminate with regard to applicants or employees with disabilities and will make reasonable accommodation when necessary. NSU considers applicants for all positions without regard to race, color, religion, creed, gender, national origin, age, disability, marital or veteran status or any other legally protected status.

Reports to CISO and works with a team of Cyber Security specialists. The Cyber Security Analyst is responsible for identifying risks to the confidentiality, integrity, and availability of our clients products and services, while maintaining compliance with applicable regulatory standards. In this role, you will be expected to contribute to the integrity and sustainability of the service delivery network, which consists of advanced server-based applications used to support our client's customers. The successful candidate will work directly with senior team members on issues that may require some after-hours and weekend availability. Specific Job Duties: • Articulate technical and security requirements to departments/business groups • Identify gaps in security operations and develop mitigation strategies • Assist with the maintenance of application and operating system software in the Service Delivery Network • Participate in disaster recovery and business continuity planning • Perform software development lifecycle auditing • Prioritize compliance actions according to business risk Desired Preferred Skills: • Industry certifications - PMP, CISA, CISSP, Security + • Department of Defense IT experience • Pharmacy or healthcare experience Qualifications • Masters's degree in computer science or relative discipline • 5-10 years combined experience in information security • Proficient with Unix / Linux • Strong analytical problem solving • Knowledge of the software development lifecycle • Proven ability to plan and work to a deadline • Must be able to obtain Department of Defense clearance Additional Information Work with blue Stone recruiting to find your next Cyber Security role. You can find us at ******************************* We look forward to speaking with you.

Mount Laurel, New Jersey, United States of America **Hours:** 40 **Pay Details:** $87,000 - $151,000 USD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. **Line of Business:** Technology Solutions **:** The Manager Information Security manages / leads a team of Technology Controls / Information Security experts in the development and/ or management of relevant strategies, programs, tools, frameworks and policies and provides specialized oversight / control / governance activities for a key business line/segment or transformational (change the bank) strategic initiative / program, liaising across the organization and primarily interfacing with executive and/or functional stakeholders to minimize overall technology risks to the Bank for own area. **Job Description:** This position manages junior level penetration testers, vendor coordination for multiple testing services, processes, procedures and scheduling for penetration, dynamic scanning, and manual code review testing services. **Responsibilities:** + **Vendor Management:** Manage and coordinate penetration testing engagements with vendors. + **People Management:** Manage a team of Junior level penetration testers and their development. + **DAST:** Manage the DAST program and tooling. Familiarity with current industry tooling and technologies and those being introduced. + **Facilitate Penetration Tests:** Perform thorough and methodical penetration testing. + **Evaluate and Assign:** penetration tests to appropriate resources. + **Vulnerability Assessment:** Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture. + **Report Findings:** Document and communicate findings clearly and effectively to both technical and non-technical stakeholders. Prepare comprehensive reports with recommendations for remediation. + **Develop Test Procedures:** Design and execute detailed test requirements. + **Stay Current:** Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective. + **Collaborate with Teams:** Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements; work closely with advisory and SDLC pipeline teams to ensure compliance; work closely with PCS team to manage PCI testing requirements. This position will collaborate with many application security teams. + **Perform Risk Assessments:** Evaluate and assess potential security risks related to new and existing systems and technologies. + **Compliance:** Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies. + **Incidents:** Act as a testing SME on incident calls; support testers on the calls. **Depth & Scope:** + Advanced knowledge of Bank, technology standards and managing people / projects + Leads a small team of IT professionals; coaches/ educates, monitors and manages team members + Strong communication, negotiation and organizational skills specifically including the ability to present options in business terms to both IT and business staff including executives **Education & Experience:** + Bachelor's degree preferred + Information security certification / accreditation an asset + 7+ years of relevant experience **Preferred Qualifications :** + **Technical Skills:** + Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali. + Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles. + Penetration testing, DAST, Manual Code Review knowledge. + **Analytical Skills:** Strong analytical and problem-solving abilities with attention to detail. + **Organizational Skills:** Manage documents and procedures for testing team. + **Multi-tasking** : This job requires exceptional ability to multi-task with multiple workstreams to manage daily. + **Communication:** Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders. + **Ethical Standards:** Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards. + Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing. + Familiarity with security standards and frameworks. + Previous experience managing and developing teams. + **Certifications:** Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable. + Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities + Participate in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team \#TDCyberSecurity #Hybrid **Physical Requirements:** Never: 0%; Occasional: 1-33%; Frequent: 34-66%; Continuous: 67-100% + Domestic Travel - Occasional + International Travel - Never + Performing sedentary work - Continuous + Performing multiple tasks - Continuous + Operating standard office equipment - Continuous + Responding quickly to sounds - Occasional + Sitting - Continuous + Standing - Occasional + Walking - Occasional + Moving safely in confined spaces - Occasional + Lifting/Carrying (under 25 lbs.) - Occasional + Lifting/Carrying (over 25 lbs.) - Never + Squatting - Occasional + Bending - Occasional + Kneeling - Never + Crawling - Never + Climbing - Never + Reaching overhead - Never + Reaching forward - Occasional + Pushing - Never + Pulling - Never + Twisting - Never + Concentrating for long periods of time - Continuous + Applying common sense to deal with problems involving standardized situations - Continuous + Reading, writing and comprehending instructions - Continuous + Adding, subtracting, multiplying and dividing - Continuous The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required. The listed or specified responsibilities & duties are considered essential functions for ADA purposes. **Who We Are:** TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues. TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you. **Our Total Rewards Package** Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more (*************************************** **Additional Information:** We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home. **Colleague Development** If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals. **Training & Onboarding** We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role. **Interview Process** We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call. **Accommodation** TD Bank is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law. If you are an applicant with a disability and need accommodations to complete the application process, please email TD Bank US Workplace Accommodations Program at *************** . Include your full name, best way to reach you and the accommodation needed to assist you with the applicant process. Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap corporate systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap, acting as the key individual with both the authority and responsibility to ensure the safety and resilience of enterprise systems, products, and services. Your oversight will encompass: - Enterprise systems:Identifying potential misuse and abuse cases, proposing solutions to address these scenarios, and identifying product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. - Build-time controls: Managing applications/products security controls and activities during development. - Runtime controls: Overseeing security measures at runtime, from prevention to detection and response. Additionally, you will be involved with aspects of internally built products and represent all areas of security, spanning governance, risk, and compliance (GRC) to security monitoring, for a number of departments/teams. You will also have the authority and ability to involve other security team members as needed. While you will take on multiple responsibilities-from advisor to builder and beyond-your primary focus will be designing and building security patterns and practices for services and processes, and fostering strong relationships with product, business, and engineering. Essential Job Duties & Responsibilities Lead, participate in, and contribute to partnerships between security, IT, General & Administrative teams, engineering, product, and operations teams to build, orchestrate, and automate security controls and services in GoodLeap enterprise systems, products, services, and operational processes. Identify potential misuse and abuse cases in enterprise systems, propose solutions to address these scenarios, and identify product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. Support or develop components of the security analytics platform. Contribute to investigations, threat hunting, and incident response activities in a supporting role. Collaborate with the monitoring and response team to create playbooks for specific incident response scenarios related to the products and services you oversee. These investigations, incidents, and playbooks may address security, fraud, privacy, resilience, and related concerns. Support the security operations team with the vulnerability management lifecycle for products and services under your purview. Ensure technical alignment for the products and services you oversee with team initiatives, including GRC, security operations, and monitoring and response activities. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in agile product lifecycles. Ideally, you have experience in a product manager or engineering manager role and understand how SaaS products (B2B, B2B2C, and B2C) are built, including roadmap planning and feature and defect prioritization. Experience with threat modeling methodologies, with the ability to create efficient and scalable approaches to conducting such assessments. Familiarity with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Hands-on experience with managing security for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting with G&A teams, internal product teams, and other cross-functional areas. Proficiency in writing automation scripts in multiple languages, with prior experience automating security processes in cloud or SaaS environments. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution. In addition to the above salary, this role may be eligible for a bonus. Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.