Information Systems Security Officer jobs at Modern Technology Solutions - 1883 jobs

A leading data and AI company in San Francisco is seeking a Senior Security Engineer to enhance the safety of its platform. The role demands extensive experience in Data Security and distributed systems. The ideal candidate will have strong leadership and communication skills, with a focus on filling critical gaps in infrastructure. Expected salary range is $220,400 to $297,400 annually. Join us to make impactful changes and attract top talent while representing the security engineering discipline across the organization. #J-18808-Ljbffr

A leading technology firm in McLean, Virginia is seeking a Machine Learning Engineer to develop mission-critical AI solutions. You'll collaborate with data engineers and scientists to deploy models that enhance national security. The ideal candidate should have over 3 years of experience in artificial intelligence and a strong proficiency in Python and machine learning techniques. This role offers flexible work arrangements and comprehensive benefits. #J-18808-Ljbffr

A leading technology company is seeking a Senior Security Engineer for the Google Public Sector team in Honolulu, Hawaii. This role requires strong expertise in security assessments and engineering, along with 5 years of relevant experience. The engineer will implement security monitoring and incident response plans while collaborating closely with various teams. A Bachelor's degree and active Security Clearance are mandatory, as well as the ability to conduct client-facing work five days a week. Competitive salary up to $244,000 plus benefits. #J-18808-Ljbffr

Apply Must be a US Citizen to meet customer and compliance requirements, including potential access to classified information. This position requires onsite client-facing work 5 days a week in Honolulu, Hawaii. Bachelor's degree in Computer Science, IT, or related field or equivalent practical experience. 5 years of experience with security assessments, security design reviews, or threat modeling. 5 years of experience with security engineering, computer and network security, and security protocols. Experience delivering comprehensive security solutioning through design, coding, configuration, and deployment. Must possess an active Top Secret/SCI Security Clearance. Must currently have or be able to obtain advanced DoD 8140 DCWF certification. Preferred qualifications Certifications in CISSP, CISM, GCIH, GCIA, or OSCP. Experience in a regulated industry (e.g., finance, healthcare, government). Experience securing cloud environments (Cloud Computing Platform, Google Cloud Platform). Understanding of cloud security principles and best practices. About the job Security is at the core of Google's design and development process: it is built into the DNA of our products. The same is true of our offices. You're an expert who shares our seriousness about security and our commitment to confidentiality. You'll collaborate with our Facilities Management team to create innovative security strategies, investigate breaches and create risk assessment plans for the future. You believe that providing effective security doesn't come at the expense of customer service - you will be our bodyguard (and our long lost pal). The GPS Cyber Defense and Security Operations Group leads our Security Operations (SECOPs) function for a range of GPS platforms and services. Combining Mandiant's deep security experience with Google technologies, our team sets the standard in Security Engineering, Assessment, and Operations across Government Cloud programs. Google Public Sector brings the magic of Google to the mission of government and education with solutions purpose-built for enterprises. We focus on helping United States public sector institutions accelerate their digital transformations, and we continue to make significant investments and grow our team to meet the complex needs of local, state and federal government and educational institutions. The US base salary range for this full-time position is $166,000-$244,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google. Responsibilities Implement security monitoring strategies, incident response plans, and security awareness programs. Oversee the deployment and operation of security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS) and other security tools. Leverage cyber threat intelligence to conduct ongoing network hunt activities and identify active and dormant threats within the environment. Develop and implement custom-built AI-driven security detections and workflows. Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire. Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting. To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes. #J-18808-Ljbffr

*To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.*Job CategorySoftware EngineeringJob Details****About Salesforce****Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.**About the team** Salesforce is looking to hire a Lead Security Engineer for Government Cloud Services. We prioritize security and data protection to ensure the confidentiality, integrity, and availability of our systems and information. As we continue to expand our operations, we are seeking a skilled and experienced Lead Security Analyst to join our dynamic team and play a pivotal role in safeguarding our organization against evolving cyber threats. As the Lead Security Engineer, you will be responsible for driving the overall security posture of our organization. You will work closely with cross-functional teams to assess risks, implement security measures, monitor security systems, and respond to security incidents. Your expertise in security frameworks, technologies, and best practices will be critical in developing and executing strategies to protect our critical assets and infrastructure. **What you will be doing:*** Apply security policies to meet security objectives of the system.* Assess adequate access controls based on principles of least privilege and need-to-know.* Assess all the configuration management (change configuration/release management) processes.* Assess the effectiveness of security controls.* Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.* Develop and implement comprehensive security policies, procedures, and guidelines to ensure the protection of company assets and compliance with applicable regulations.* Conduct (or coordinate with third party partners) regular security risk assessments, vulnerability assessments, and penetration tests to identify potential weaknesses in systems, networks, and applications and coordinate remediation of findings. Drive related mitigations.* Collaborate with stakeholders to design and implement security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies.* Conduct analysis of logs and events, identify gaps for deeper analysis as needed, and coordinate with Detection and Response teams on detection and alerting betterment efforts and uplift.* Stay up-to-date with the latest security trends, vulnerabilities, and threat intelligence, and provide recommendations to proactively address emerging risks.* Liaison with Incident Response teams on incidents and response efforts, recommend and/or instigate remediation actions to prevent future occurrences.* Develop and deliver security awareness and training programs to educate employees on security best practices and promote a culture of security across the organization.* Collaborate with external vendors, partners, and auditors to ensure compliance with security standards and regulations. Further, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation* Maintain documentation of security procedures, incident response plans, and security incident reports.**What you should have:*** Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git* Professional certifications such as CISSP, CISM, CEH, or similar are highly desirable.* Proven experience (5+ years) in a security analyst role, with a focus on information security, incident response, and vulnerability management.* Must be US Citizen operating on US Soil and pass both enhanced background check as long as Criminal Justice background check.* Strong understanding of security frameworks such as ISO 27001, NIST, or CIS Controls, and their practical application.* Extensive knowledge of security technologies, including firewalls, IDS/IPS, SIEM, DLP, antivirus, and endpoint protection systems.* Hands-on experience with vulnerability assessment tools, network scanning tools, and penetration testing methodologies.* Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git“* Proficiency in log analysis, incident response, and forensic investigation techniques.* Excellent communication skills, both written and verbal, with the ability to articulate complex security concepts to technical and non-technical stakeholders.* Demonstrated leadership abilities, with the capacity to motivate and inspire a team.* Strong analytical and problem-solving skills, with the ability to think strategically and develop innovative solutions to security challenges.Joining Salesforce Government Cloud as a Lead Security Engineer provides an exciting opportunity to make a significant impact on the organization's security posture and contribute to its overall success. If you are passionate about security, possess strong leadership skills, and thrive in a fast-paced environment, we encourage you to apply for this challenging and rewarding position.Unleash Your PotentialWhen you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and *be your best*, and our AI agents accelerate your impact so you can *do your best*. Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this .Posting StatementAny employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: ******************************************* to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants #J-18808-Ljbffr

A leading tech company is looking for a Delivery Consultant specialized in Security and Compliance in San Francisco. This role involves collaborating with customers on AWS migrations, designing secure cloud infrastructures, and providing advisory services for security automation. Candidates should have extensive experience with cloud environments, including AWS and DevSecOps practices. The team focuses on delivering high-quality professional services and requires travel to client locations. Join a diverse group and make an impact in the cloud security field. #J-18808-Ljbffr

A leading technology solutions provider in Washington, DC is seeking a Senior Systems Security Engineer. This role involves hands-on engineering and securing multiple operating systems, managing vulnerabilities, and ensuring compliance with security frameworks. Ideal candidates will have 5-10 years of experience in system engineering and strong communication skills. The position offers competitive pay and extensive benefits including paid medical and dental insurance. #J-18808-Ljbffr

Be Challenged and Make a Difference In a world of technology, people make the difference. We believe if we invest in great people, then great things will happen. At AnaVation, we provide unmatched value to our customers and employees through innovative solutions and an engaging culture. Description of Task to be Performed: AnaVation is looking for a Sr. Systems Security Engineer to assist the customer with engineering and administration tasks. The ideal candidate will be comfortable engaging with client leadership on a regular basis and interacting with senior level team members. Responsibilities Perform hands-on engineering, administration, and securing of multiple operating systems (e.g., Windows, RHEL, Unix variants), and applying DISA STIGs across diverse vendor technologies, including virtualization platforms (VMWare, Hyper-V), cloud environments (AWS, Azure, Google Cloud), and enterprise applications. Perform system administration tasks to include audit and log management, availability monitoring and remediation, account management and access reviews, and configuration update scheduling and performance. Contribute to the design and development of secure system architectures, ensuring security is integrated through system and network lifecycles. Evaluate, implement, and document security architecture solutions, aligning with compliance requirements and organizational mission needs. Ensure technical compliance with applicable security frameworks, standards, and regulations (e.g., DISA SITGs, NIST 800-53, RMF). Conducting, configuring, and managing vulnerability scans. Conducting vulnerability remediations, patching, and system hardening. Collaborate with ISSOs, Assessors, System Owners, and other stakeholders to implement security controls. Support security assessments, audits, and accreditation/authorization (ATO) activities. Document security configurations, engineering solutions, and compliance evidence. Troubleshoot and resolve security-related technical issues in a timely manner. Understanding and advising the client regarding critical application data and vulnerability points, coordinating with industry partners to advise the government regarding those security vulnerabilities, and providing recommendations and advice on incident response and recovery plans. Providing Incident Response (IR) activities including triage, investigation, interviewing, resolving, and reporting on events. Promoting information security awareness across the program, ensuring security controls and processes are implemented. Presenting vulnerability analysis to system owners and leadership. Required Qualifications 5-10 years of experience in information system engineering and configuration management. 5 years of experience in control implementation and secure system engineering or design. Excellent communication skills. Hands on experience with: Security monitoring and evaluation, including audits, assessments, and risk management SIEM tools (e.g., Splunk) Vulnerability Scanning tools (e.g., Tenable, Nessus) EDR tools (e.g., Crowdstrike) Web App Scanning tools (e.g., Burpsuite, Acunetix) Active Directory SANs VMWare Networking Devices Expertise in batch, bash, and/or PowerShell scripting Able to deliver and present security compliance to a wide range of audiences (i.e., system owners, division leadership). Experience configuring and operating enterprise storage across networks (SAN) Server visualization - design solutions and configuration (VMWare, VSphere, Hyper-V, etc) Experience with: Linux (RHEL 7/8), Windows Operating Systems, and Oracle/SQL Databases Agile Methodologies GRC Tools (e.g., CSAM) Strong desire to learn, grow and be highly motivated. Certifications: OS specific certifications, Security + Personnel assigned to this task shall possess a blend of strong technical skills (networking, operating systems, security tools, programming, encryption) and essential soft skills (problem-solving, critical thinking, communication, collaboration) to design, implement, and maintain an information system's security control implementation. Desired Qualifications Knowledgeable on different cloud providers: AWS, Azure, Oracle, GCP Understanding of servers and security tools Education: Bachelor's degree in Engineering, Computer Science, or Information Systems Certifications: CompTIA Server+, Cloud certifications (AWS, Azure, Google), Network+, CCNA, RHCSA, Azure (AZ-104, AZ-204, AZ-500, AZ-305), AWS Solutions Architect Benefits Generous cost sharing for medical insurance for the employee and dependents 100% company paid dental insurance for employees and dependents 100% company paid long-term and short-term disability insurance 100% company paid vision insurance for employees and dependents 401k plan with generous match and 100% immediate vesting Competitive Pay Generous paid leave and holiday package Tuition and training reimbursement Life and AD&D Insurance About AnaVation AnaVation is the leader in solving the most complex technical challenges for collection and processing in the U.S. Federal Intelligence Community. We are a US owned company headquartered in Chantilly, Virginia. We deliver groundbreaking research with advanced software and systems engineering that provides an information advantage to contribute to the mission and operational success of our customers. We offer complex challenges, a top-notch work environment, and a world-class, collaborative team. If you want to grow your career and make a difference while doing it, AnaVation is the perfect fit for you! AnaVation is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. #J-18808-Ljbffr

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS' multi-tenant infrastructure. Key Job Responsibilities As a Senior Security Engineer, you'll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure. You'll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customers' trust in us. You'll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats. You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security. This position will have visibility at senior levels of government agencies, commercial institutions, and AWS including interaction with CISOs, CTOs, their staffs, and AWS senior leadership. In addition to a strong understanding of security technologies, tool development, offensive and defensive security tactics, and ideally some experience with distributed systems, you'll need a number of other qualities to be successful in this role. The team has a mix of experience levels, and we're building an environment that celebrates knowledge sharing and mentorship. Our senior engineers, data scientists, and managers truly enjoy mentoring junior engineers, data scientists, and engineers from non-traditional backgrounds through one‑on‑one mentoring and thorough, but kind, code reviews. You will need to be a UK national and able to obtain and maintain a UK Government Security Clearance. Further details found here: ******************************************************************************************* About the Team Diverse Experiences: Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying. Why Amazon Security? At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. Inclusive Team Culture: AWS values curiosity and connection. Our employee‑led and company‑sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do. Training & Career Growth: We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge‑sharing, training, and other career‑advancing resources here to help you develop into a better‑rounded professional. Work/Life Balance: We value work‑life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve. Basic Qualifications Extensive experience performing security investigations, penetration testing, and/or incident response in the context of large organisations In‑depth understanding of security threats, hands‑on experience detecting and defending from cyber attacks, and experience using big data analytics and orchestration to address security challenges. Ability to develop code with at least one modern language such as Java, Go, TypeScript, Python, Rust and security code review Demonstrated technical leadership in security (e.g., tech lead, developed security architecture for a product or system, led technical component of security project, etc.) Experience leading and coaching junior security engineers to improve their skills and effectiveness Preferred Qualifications BS or MS in a STEM related field. Understanding of the Mitre ATT&CK framework and knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow) Have awareness and understanding of current cyber security threats, actors and their techniques. Experience with data science, big data analytics technology stack, analytic development for endpoint and network security, and streaming technologies (e.g., Kafka, Spark Streaming, and Kinesis) Strong sense of ownership combined with collaborative approach to overcoming challenges and influencing organisational change Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (**************************************** to know more about how we collect, use and transfer the personal data of our candidates. Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit ********************************************************* for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner. Posted: January 24, 2026 (Updated 2 days ago) #J-18808-Ljbffr

A leading cloud provider is seeking a Senior Security Engineer to help build and manage services that detect and mitigate cybersecurity threats. Candidates should have extensive experience in security investigations, a deep understanding of security threats, and be proficient in code development using various languages. The role involves mentoring junior engineers and improving security programs within AWS. Strong leadership skills and a collaborative approach are essential for success in this position. #J-18808-Ljbffr

A globally leading consumer device company headquartered in Mountain View, CA is looking for a Senior Offensive Security Engineer to proactively identify, exploit, and help eliminate security weaknesses across our web platforms and AI/ML systems. In this role, you will think like an attacker, operate with engineering rigor, and work closely with product, platform, and AI teams to raise the security bar across the organization. You will lead complex penetration tests, design novel attack techniques for web and modern AI-powered applications, and influence secure-by-design architecture at scale. Responsibilities: • Conduct offensive security assessments on large-scale web applications, REST APIs, and cloud-backed services. • Identify and validate vulnerabilities including injection flaws, access control issues, authentication/authorization weaknesses, SSRF, deserialization, and logic bugs. • Evaluate LLM-based systems and AI agents for prompt injection, data exfiltration, model abuse and jailbreaks • Design and execute red team-style engagements simulating real-world adversaries. • Develop custom exploitation tools, PoCs, and fuzzers for web and AI attack surfaces. • Identify systemic security weaknesses and collaborate with engineering teams to drive long-term mitigations. • Review architectures and designs for new products with an attacker mindset. • Produce clear, actionable security reports and present findings to technical and executive stakeholders. Minimum Qualifications: • Master's degree in Computer Science, Computer Engineering, Information Security, or a closely related technical field. • Doctorate (PhD) in a relevant field is a plus but not required. • 5+ years of experience in offensive security, penetration testing, or red teaming. • Deep expertise in web application security. • Strong understanding of API security. • Hands-on experience testing AI/ML or LLM-based systems, or strong motivation with demonstrated research in this area. • Proficiency in at least one scripting or programming language (Python, Go, JavaScript, or similar). • Strong knowledge of common exploitation techniques and attacker tooling. Preferred Qualifications: • Prior work on adversarial ML, red-teaming AI systems, or secure LLM pipeline design. • Experience with cloud security (AWS, GCP, Azure) and containerized environments. • Background in security research, published CVEs, CTF experience, blog posts, or conference talks. • OSCP, OSEP, OSWE, CRTO, or similar. What We Look For: • An attacker-first mindset with strong engineering discipline. • Ability to go beyond scanners and find novel, high-impact vulnerabilities. • Clear communicator who can translate complex exploits into actionable fixes. • Curiosity about emerging threats, especially in AI security. • Ownership mentality and comfort operating in ambiguous problem spaces. Type: Contract Duration: 12 months with extension Work Location: Mountain View, CA (on site) Pay Range: $ 85.00 - $ 100.00 (DOE)

6 months +Contract-San Francisco CA Remote role Pay $100 on w-2 Key Management Engineer Role Overview: We are seeking a skilled Key Management Engineer to join our team, with expertise in the architecture and tools for both symmetric and asymmetric key management, including Public Key Infrastructure (PKI). This role requires experience managing cryptographic keys for applications, databases, infrastructure, including storage subsystems, and working with cloud-based tools and solutions. A solid understanding of infrastructure utilizing cryptographic keys, experience with Hardware Security Modules (HSMs), basic development skills in Java and Python, and strong documentation and execution abilities are essential. Key Responsibilities: • Design and implement architectures for symmetric and asymmetric key management solutions with a focus on PKI. • Manage and maintain cryptographic key infrastructure services, including key lifecycle management processes from creation to retirement. • Deploy and secure cryptographic keys for applications, databases, infrastructure, and storage subsystems, ensuring adherence to security standards and best practices. • Utilize and configure tools and products for key management, including those used in cloud environments such as AWS KMS, Azure Key Vault, and Google Cloud Key Management Service. • Integrate key management solutions into existing infrastructure, collaborating with cross-functional teams to ensure comprehensive security measures. • Configure, deploy, and manage Hardware Security Modules (HSMs) for secure key storage and operations, utilizing products like Thales, Gemalto, or SafeNet. • Develop scripts and applications using Java and Python to automate key management tasks and processes. • Document key management procedures, policies, and architecture designs to enhance operational efficiency and facilitate effective knowledge transfer. • Conduct regular assessments and audits of cryptographic systems to ensure compliance with industry best practices and standards. • Provide training and guidance to technical teams on key management best practices and security protocols. Qualifications: • Proven experience in designing and implementing key management solutions, with emphasis on symmetric and asymmetric cryptography, including PKI. • Experience in key lifecycle management processes, involving key creation, distribution, rotation, and revocation. • Ability to deploy and secure cryptographic keys effectively for applications, databases, infrastructure, and storage subsystems. • Strong understanding of key management infrastructure and protocols, including HSM configurations and operations. • Experience with cloud-based key management tools like AWS KMS, Azure Key Vault, and Google Cloud Key Management Service. • Basic development skills in Java and Python with the ability to script and automate routine processes. • Hands-on experience with key management tools and products such as Thales HSM, Gemalto HSM, SafeNet, Microsoft Active Directory Certificate Services, OpenSSL, etc. • Excellent documentation skills, able to produce clear and comprehensive technical documents and user guides. • Strong analytical and problem-solving skills to troubleshoot complex issues. • Demonstrated experience working in environments requiring strict security and compliance standards, familiar with frameworks like NIST, ISO 27001, and CIS. Technical Skills: • Familiarity with network security concepts and secure communication protocols. • Understanding of cloud security concepts and practices. • Knowledge of network security concepts and secure communication protocols. • Experience with security standards and frameworks (e.g., NIST, ISO 27001). Preferred Qualifications: • Bachelor's degree in Computer Science, Information Security, or a related field. • Experience with security operations tools and best practices. • Application Process: Interested candidates should submit their resume along with a cover letter detailing relevant experience and qualifications. This role represents an excellent opportunity to contribute substantially to the security infrastructure

Loft Orbital is revolutionizing access to space by building reliable, shareable satellites that drastically reduce the time and complexity traditionally required to get to orbit. We operate satellites, fly customer payloads, and handle entire missions from end‑to‑end. We're a close‑knitted team of space enthusiasts, software experts, and cutting‑edge technologists, all working together to make space simple for our customers. As a Senior Security Engineer on our Security and Compliance Team, your mission will be to ensure that our highly automated, containerized, and globally distributed infrastructure remains secure throughout its lifecycle, from architecture to incident response. You'll be at the heart of our DevSecOps efforts, collaborating directly with infrastructure, software, product, and solution teams to scale Loft's security maturity while embracing our startup agility and culture. This is a hands‑on, deeply collaborative role, offering broad scope, rapid growth opportunities, and yes, a chance to contribute to space missions. About the Role: Champion DevSecOps best practices by designing and implementing security controls directly into our CI/CD pipelines (e.g., GitLab CI). Lead and automate application and infrastructure security assessments, including threat modeling and code review. Partner with developers and SREs to identify, remediate, and prevent vulnerabilities through secure design and practical guidance. Design, build, and maintain secure architecture patterns for containerized, cloud‑native, and distributed workloads. Develop and maintain automated security tooling, such as container image scanning, IaC validation, and policy‑as‑code. Collaborate on automated security tooling for container image scanning, IaC validation, and RBAC compliance. Support incident response workflows, including detection, forensics, root cause analysis, and post‑mortems. Provide technical mentorship and real‑time enablement to help teams adopt a “secure‑by‑default” mindset. Contribute to internal security tools and automation using Python, Go, or other modern languages. Continuously improve how we measure and scale security across our SRE and infrastructure platforms. Must Haves: Deep experience with cloud security in AWS, Azure, or GCP environments. Strong knowledge of container and Kubernetes security in production environments. Proficiency in at least one modern programming language (e.g., Python, Go, C++). Hands‑on experience with zero‑trust architecture, service mesh, and software‑defined networking. Solid understanding of DevSecOps pipelines, IaC tools, and secure build processes. Hands‑on experience with vulnerability scanning, SAST/DAST tools, and automated security testing. Proven success in fast‑paced, highly collaborative environments, ideally at a startup or scale‑up. Comfortable working closely with developers and SREs in an enablement‑first security culture. Clear, concise communication and documentation skills. Ability to thrive in a multicultural, globally distributed engineering team. Nice to Haves: Practical experience with policy‑as‑code (OPA, Sentinel, etc.). Understanding of software‑defined networking and security policy enforcement in mesh environments. Familiarity with modern SRE practices, observability, and resilience engineering. Contributions to open‑source security tools or frameworks. Interest or experience in space operations or aerospace systems. Some of Our Awesome Benefits: 100% company‑paid medical, dental, and vision insurance option for employees and dependents Flexible Spending (FSA) and Health Savings (HSA) Accounts offered with an employer contribution to the HSA 100% employer paid Life, AD&D, Short‑Term, and Long‑Term Disability insurance Flexible Time Off policy for vacation and sick leave, and 12 paid holidays 401(k) plan and equity options Daily catered lunches and snacks in office International exposure to our team in France Fully paid parental leave; 14 weeks for birthing parent and 10 weeks for non‑birthing parent Carrot Fertility provides comprehensive, inclusive fertility healthcare and family‑forming benefits with financial support Off‑sites and many social events and celebrations Relocation assistance when applicable $140,250 - $190,000 a year State law requires us to tell you the base compensation range for this role, which is $140,250- $190,000 per year. This is determined by your education, experience, knowledge, skills, and abilities. The salary range for this role is intentionally wide as we evaluate individuals based on their unique experience and abilities to fit our needs. Most importantly, we are excited to meet you, and see if you are a great fit for our team. What we can't quantify for you are the exciting challenges, supportive team, and amazing culture we enjoy. * Research shows that while men apply to jobs where they meet an average of 60% of the criteria, women and other underrepresented people tend to only apply when they meet 100% of the qualifications. At Loft, we value respectful debate and people who aren't afraid to challenge assumptions. We strongly encourage you to apply, even if you don't check all the boxes. Who We Are Loft: Space Made Simple. Founded in 2017, Loft provides governments, companies, and research institutions with a fast, reliable, and flexible way to deploy missions in orbit. We integrate, launch, and operate spacecraft, offering end‑to‑end missions as a service across Earth observation, IoT connectivity, in‑orbit demonstrations, national security missions, and more. Leveraging our existing space infrastructure and an extensive inventory of satellite buses, Loft is reducing years‑long integration and launch timelines to months. With more than 25 missions flown, Loft's flight heritage and proven technologies enable customers to focus on their mission objectives. At Loft, you'll be given the autonomy and ownership to solve significant challenges, but with a close‑knot and supportive team at your back. We believe that diversity and community are the foundation of an open culture. We are committed to hiring the best people regardless of background and make their time at Loft the most fulfilling period of their career. We value kind, supportive and team‑oriented collaborators. It is also crucial for us that you are a problem solver and a great communicator. As our team is international, you will need strong English skills to better collaborate, easily communicate complex ideas and convey important messages. With 4 satellites on‑orbit and a wave of exciting missions launching soon, we are scaling up quickly across our offices in San Francisco, CA | Golden, CO | and Toulouse, France. As an international company your resume will be reviewed by people across our offices so please attach a copy in English. #J-18808-Ljbffr

A leading AI research company in San Francisco is hiring a Principal Offensive Security Engineer. In this role, you will craft attack simulations and collaborate with teams to strengthen security posture across products. The ideal candidate has over 7 years of experience, exceptional programming skills, and a strong background in identifying vulnerabilities. This position offers an opportunity to influence security strategy and contribute to innovative projects in a dynamic environment. #J-18808-Ljbffr

Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture. About the Role We're seeking an exceptional Principal-level Offensive Security Engineer to challenge and strengthen OpenAI's security posture. This role isn't your typical red team job - it's an opportunity to engage broadly and deeply, craft innovative attack simulations, collaborate closely with defensive teams, and influence strategic security improvements across the organization. You have the chance to not only find vulnerabilities but actively drive their resolution, automate offensive techniques with cutting-edge technologies, and use your unique attacker perspective to shape our security strategy. This role will be primarily focused on continuously testing our hardware products and related services. In this role you will: Collaborate proactively with engineering teams to enhance security and mitigate risks in hardware, firmware, and software. Perform comprehensive penetration testing on our diverse suite of products. Leverage advanced automation and OpenAI technologies to optimize your offensive security work. Present insightful, actionable findings clearly and compellingly to inspire impactful change. Influence security strategy by providing attacker-driven insights into risk and threat modeling. You might thrive in this role if you have: 7+ years of hands‑on experience or exceptional accomplishments demonstrating equivalent expertise. Exceptional skill in code review, identifying novel and subtle vulnerabilities. Demonstrated mastery assessing complex technology stacks, including: Proven ability to reverse engineer bootrom images, firmware, or silicon‑level components. Deep familiarity with low‑level kernel operations, secure boot processes, and hardware‑software interactions. Hands‑on experience building and validating secure boot chains and threat models. Proficiency with hardware debugging tools (UART, JTAG, SWD, oscilloscopes, logic analyzers). Solid programming skills in C/C++, Python, or assembly for embedded systems. Industry experience securing consumer hardware (e.g., mobile devices, IoT, chipsets). Excellent written and verbal communication skills for technical and non‑technical audiences. Strong intuitive understanding of trust boundaries and risk assessment in dynamic contexts. Excellent coding skills, capable of writing robust tools and automation for offensive operations. Ability to communicate complex technical concepts effectively through compelling storytelling. Proven track record of not just finding vulnerabilities but actively contributing to solutions in complex codebases. Prior experience working in tech startups or fast‑paced technology environments. Experience in related disciplines such as Software Engineering (SWE), Detection Engineering, Site Reliability Engineering (SRE), Security Engineering, or IT Infrastructure. About OpenAI OpenAI is an AI research and deployment company dedicated to ensuring that general‑purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non‑public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations. To notify OpenAI that you believe this job posting is non‑compliant, please submit a report through this form . No response will be provided to inquiries unrelated to job posting compliance. We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link. At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology. #J-18808-Ljbffr

Victory Solutions LLC specializes in providing exceptional technology development and engineering services to government organizations such as NASA and the Department of Defense; as well as commercial customers such as Boeing, Northrop Grumman, and SAIC. We are looking for an Information Systems Security Officer (ISSO) in support of the Sea-Based X-Band Radar (SBX) Program. The Information System Security Officer (ISSO) shall be responsible for IAW DoDI 8500 and DoD 5200.8-R to include tasks such as, but not limited to, providing security training, handling classified documents, information assurance and network security. Duties and Responsibilities: * Comply with security requirements in accordance with DODD 8500.01 and DoDI 8500.2, and support accreditation activities with the Designated Approving Authority. * Develops and maintains Risk Management Framework Security Plans and artifacts (Cyber Incident Response, Information Assurance Vulnerability and Patch Management, Disaster Recovery, Account Management). * Support Government assessment and authorization activities for each system to be developed, manufactured, delivered and maintained in accordance with DoDI 8500.01 (Cybersecurity), DoDI 8510.01 "Risk Management Framework for DoD Information Technology, DoDI 8581.01 "Information Assurance (IA) Policy for Space Systems used by the DoD," DoDD 8530.1 "Cybersecurity Activities Support to DoD Information Network Operations," NIST SP 800-53 Revision 4 "Security and Privacy Controls for Federal Information Systems and Organizations," CNSSI No. 1253 "Security Categorization and Control Selection for National Security Systems," and MDA 8500.02-P "Information Assurance Program Plan" requirements. * Configure system components in accordance with applicable DISA Security Technical Implementation Guides (STIG) and NSA Security Configuration Guides (SCG). * Remain cognizant of current/changing cybersecurity requirements to ensure the final system meets current requirements and thus capable of receiving an Authorization to Operate (ATO). * Establish and maintain cybersecurity measures to secure CUI, CTI, and CDI. * Maintain IAT Level II baseline certification requirements IAW 8570.01 M Information Assurance Workforce Improvement Program (Security+, CCNA Security). Education: * Bachelor's or Associate's degree or equivalent experience is required. Require Skills: * Candidate should have at least 5 years in Cybersecurity/Information Assurance. * The ISSO is required to support and maintain Information Security over: Windows, workstations, Cisco switches, Cisco Routers, Windows 2008 Servers, and SQL Server 2008 databases. * Windows Operating System(s) certification is desired. * To comply with DoD 8570.01-M, the ISSO is required to maintain continuing education to meet Information Assurance Technical (IAT) Level II certification for cyber and network. * CISSP is desired. * CCNA is desired. Additional Requirements: * Ability to obtain a SECRET security clearance is required. * Must be a U.S. Citizen. Victory Solutions LLC is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

At EAB, our mission is to make education smarter and our communities stronger. We work with more than 2,800 institutions to drive transformative change through data-driven insights and best-in-class capabilities. From kindergarten to college to career, EAB partners with leaders and practitioners to accelerate progress and drive results across enrollment, student success, institutional strategy, data analytics, and advancement. We work with each partner differently, tailoring our portfolio of research, technology, and marketing and enrollment solutions to meet the unique needs of every leadership team, as well as the students and employees they serve. At EAB, we serve not only our partner institutions but each other-that's why we are always working to make sure our employees love their jobs and are invested in their communities. See how we've been recognized for this dedication to our employees by checking out our recent awards. For more information, visit our careers page. The Role in Brief Senior Analyst, Information Assurance The Senior Information Assurance Analyst will be responsible for assessing the risks associated with EAB technology applications and platforms and/or third-party service providers that support those platforms. The Senior Information Assurance Analyst will also support and contribute to business continuity management and planning activities, conduct and support information security audits, assess risks associated with third-party service providers, develop security awareness training content, and support the measuring and reporting of key risk indicators and metrics across the enterprise. This individual will be a valued member of the EAB Information Security team. We work to keep our partners and EAB colleagues safe from cyber-attacks and prevent the theft of data and intellectual property. We think big and strategic but aren't afraid to get into the weeds. Relationship building and stakeholder management across teams is integral to our continued success. We believe that diversity makes for better, more creative solutions to tough problems. We're easy to work with and eager to help. Most importantly, we work every day to contribute to the mission of making education smarter and our communities stronger. If this sounds like you, we'd love to talk to you. This position is located in Washington, DC or Richmond, VA. Primary Responsibilities: * Plan and execute the day-to-day activities of Information Technology (IT) audit engagements, including scope development and developing annual audit plans. * Perform IT risk assessments and audits of internal initiatives and critical third party/vendor relationships against criteria descending from industry standard information security frameworks and industry regulations, such as ISO/IEC 27001, NIST SP 800-53, FAIR, SSAE 18 SOC II Type I and Type II, DoD compliance frameworks (e.g., NIST 800-171, CMMC, FedRAMP), NIST CSF, FERPA, and privacy regulations like GDPR and CCPA * Review vendor security documentation, questionnaires, and attestations; assess risk impact and recommend risk treatment options. * Support RFPs/security questionnaires (HECVATs, CAIQ, custom questionnaires) from clients with clear SLAs and maintain upkeep of Security & Compliance Trust portals. * Support security assessments for DoD or federally funded service offerings, including understanding data classification and safeguarding requirements. * Evaluate the design and effectiveness of technology controls throughout the business cycle * Identify control gaps and risks, recommend mitigation strategies, and track remediation activities through closure. * Communicate IT audit findings and mitigation strategies to senior management, technology leaders, and the CISO * Help identify performance improvement opportunities across EAB business units * Assist in the development of risk treatment plans to address areas of strategic and tactical IT and information risks in both business operations and technology paradigms * Assist with the development and maintenance of information security policies and standards * Support development and maintenance of an information security compliance and metrics program for consistent management reporting of risks to sensitive information and technology resources across the enterprise * Help with prospective hiring and mentoring opportunities as the program scales and grows Basic Qualifications: * Bachelor's degree in Computer Science, Information Systems, or equivalent professional experience * Minimum of 3+ years of experience as an IT auditor, security analyst, or related field * Knowledge of information security and IT risk management concepts and practices including frameworks and regulatory regimes * Ability to work in a fast-paced business environment with global, geographically distributed teams * Strong understanding of cloud infrastructure and cloud-based SaaS environments * Exceptional interpersonal skills with ability to gain the confidence and respect of technology leaders and senior level executives * Excellent organizational direction, time management, problem-solving, prioritization, leadership, and interpersonal skills while proactively seeking input * Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level to communicate findings and recommendations to the EAB's senior management team * Comfortable collaborating with IT, Product, Legal, and Commercial teams to drive sales enablement opportunities * A desire to learn new skills, research new technologies, and get better every day Ideal Qualifications: * Professional experience in conducting IT or operational risk assessments or IT auditing through examination and analysis of internal controls and business risks * Experience in supporting security compliance as the internal compliance resource of physical and cloud-based infrastructure * Experience with planning internal audit procedures and preparing final reports for senior management and the CISO * Familiarity with the usage of modern GRC tooling (i.e., Drata, Vanta, ServiceNow, RSA Archer) to facilitate development of information asset inventories, risk and compliance assessments, risk metrics collection, and risk reporting * Experience with enterprise business continuity planning and testing activities * Experience with building out and managing an organization's Security and Compliance Trust Centers * Experience developing information security policy, security awareness and training content, and supporting materials * Experience delivering information security awareness training to technical and non-technical audiences * Willingness to learn new things and take on additional responsibilities across multiple information security and privacy domains * CISSP, CISA, CRISC, CISM, AWS or GCP cloud certifications, other information security or IT auditing certifications * Experience with risk and controls frameworks including (ISO 27001, NIST CSF, NIST RMF, FAIR, COBIT, NIST SP 800-53, SSAE 18 SOC II Type I and Type II audits, DoD compliance frameworks (e.g., NIST 800-171, CMMC, FedRAMP), FERPA, and privacy regulations like GDPR and CCPA) * Familiarity and experience with the FAIR (Factor Analysis of Information Risk) model for quantifying information risk * Commitment to embracing a continual learning environment and contributing to a dynamic and welcoming culture of fairness, authenticity, and belonging in support of EAB's mission, values, and aspiration If you've reached this section of the job description and are unsure of whether to apply, please do! At EAB, we welcome new perspectives and learn from each other's unique experiences. We would encourage you to submit an application if this is a role you would be passionate about doing every day. Compensation: The anticipated starting salary range for this role is $80,000 - $97,000 per year. Actual salary varies due to factors that may include but not be limited to relevant experience, skills, and location. At EAB, it is not typical for an individual to be hired at or near the top of the starting salary range for their role. This hire will additionally be eligible for discretionary bonus or incentive compensation. Variable compensation may depend on various factors, including, without limitation, individual and organizational performance. Benefits: Consistent with our belief that our employees are our most valuable resource, EAB offers a competitive and inclusive benefits package. Our benefits currently include: * Medical, dental, and vision insurance plans; dependents and domestic partners eligible * 20+ days of PTO annually, in addition to paid firm and floating holidays * Daytime leave policy for community service and flextime for fitness activities (up to 10 hours per month each) * 401(k) retirement savings plan with annual discretionary company matching contribution * Health savings account, healthcare and dependent care flexible spending account, and pre-tax commuter plans * Employee assistance program with counseling services and resources available to all employees and immediate family * Wellness programs including gym discounts, incentives to promote healthy living, and family access to the leading app for sleep, meditation, and relaxation * Fertility treatment coverage and adoption or surrogacy assistance * Paid parental leave with phase back to work program for birthing and non-birthing parents * Access to milk shipping service to support nursing employees during business travel * Discounted pet health insurance coverage for dog and cat family members * Company-provided life, AD&D, and disability insurance * Financial wellness resources and membership in a robust employee discount program * Access to employee resource groups, merit-based advancement, and dynamic professional growth opportunities Benefits kick in day one; learn more at eab.com/careers/benefits. This opening is not eligible for visa sponsorship at this time; EAB will thus consider candidates who possess U.S. work authorization that does not require employment-based visa sponsorship now or in the future. At EAB, we believe that to fulfill our mission to "make education smarter and our communities stronger" we need team members who bring a diversity of perspectives to the table and are committed to fostering a workplace where each team member is valued, respected and heard. To that end, EAB is an Equal Opportunity Employer, and we make employment decisions on the basis of qualifications, merit and business need. We don't discriminate on the basis of race, religion, color, sex, gender identity or expression, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. #LI-DS1

Come Join Our Team! DKW Communications, Inc. (DKW) is a government contractor providing professional and technical services to various government agencies i.e. defense, law enforcement and security. We are currently looking for an Senior Information Assurance Analyst to join our winning team. The individual hired for this position will provide support for our government customers located in the Greater San Diego area. This is an onsite position. Overview The IA Analyst will support our NAVY SWMFTS contract, and be responsible for duties such as (but not limited to): Collect and maintain data needed to meet system cybersecurity reporting Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization-level cybersecurity architecture. Participate in an information security risk assessment during the Security Assessment and Authorization process. Participate in the development or modification of the computer environment cybersecurity program plans and requirements. Recognize a possible security violation and take appropriate action to report the incident, as required Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. Provide technical documents, incident reports, and findings from computer examinations, summaries, and other situational awareness information to higher headquarters Develop and maintain RMF Assess and Authorize documentation required to achieve an Authority to Operate (ATO). Prepare and maintain information systems ATO record on the Navy's Enterprise Mission Assurance Support Service (eMASS) Run vulnerability assessment tools; ACAS vulnerability scanner, Security Content Automation Protocol (SCAP), STIG Viewe Manage system/network vulnerabilities using the Vulnerability Remediation and Assets Manager (VRAM) Qualifications/Requirements MUST have or be able to obtain an active Secret Security Clearance. Minimum of Bachelor's Degree in Computer Science, Information Systems or a relevant technical discipline. An Associate's degree + 3 years of experience may be substituted for degree requirement. 3-5 years of cyber security experience in secure network and system design, analysis, procedure/test generation, test execution and implementation of computer/network security mechanisms. Must have an IAT Level II Certification or higher. **All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.**

Implement system security requirements throughout the Systems Engineering processes during weapon system lifecycle. Security Architecture Design: Design and implement security solutions to ensure the confidentiality, integrity, and availability of systems in compliance with government regulations and standards (e. g. , NIST 800-53, Risk Management Framework (RMF), DISA STIGs, and NSA Security configuration guides). Risk Assessment: Identify threats and vulnerabilities related to systems, networks, and applications, and provide recommendations to mitigate risks. Compliance Management: Ensure systems and processes align with DoD policies, federal regulations, and agency-specific security requirements. System Hardening: Perform system hardening activities, including configuring devices, removing unnecessary services, and applying patches according to DISA STIG guidelines. Incident Response: Lead efforts to respond to cybersecurity incidents by investigating, analyzing, and documenting security breaches. Monitoring and Reporting: Oversee real-time monitoring processes, analyze alerts, and prepare security reports to share with senior management or government agencies. Collaboration: Work closely with engineering, IT, and program management teams to integrate security into project lifecycles and provide guidance on best practices for safeguarding classified and sensitive information. Documentation: Develop and maintain comprehensive documentation, including system security plans (SSPs), risk matrixes, and assessment/evaluation reports. Education: Bachelor's degree in Computer Science, Computer Engineering, Electrical Engineering, Information Technology, Cybersecurity, or related field (Master's degree preferred). Experience: 5+ years of experience in systems security architecture or engineering, ideally within a government or DoD environment. Certifications: Relevant certifications such as CISSP, CEH, CISM, CompTIA Security+, or CAP. Knowledge: Deep understanding of accreditation processes, aircraft systems, embedded systems, systems engineering processes and COMSEC encryption. Technical Skills: Expertise in security, vulnerability scanning tools and avionics architectures. Must possess an active Top Secret clearance with eligibility for SCI. Experience with government contracting and DoD security program management. Familiarity with scripting, automation tools, and secure system integration techniques. Understanding of cloud security in classified environments. NSA engagement and crypto development experience. Strong analytical skills to identify cybersecurity risks and solutions. Excellent verbal and written communication skills for interfacing with internal teams and external government agencies. Ability to work in high-pressure environments and handle sensitive information securely.