Senior Security Engineer jobs at SADA - 510 jobs

*To get the best candidate experience, please consider applying for a maximum of 3 roles within 12 months to ensure you are not duplicating efforts.*Job CategorySoftware EngineeringJob Details****About Salesforce****Salesforce is the #1 AI CRM, where humans with agents drive customer success together. Here, ambition meets action. Tech meets trust. And innovation isn't a buzzword - it's a way of life. The world of work as we know it is changing and we're looking for Trailblazers who are passionate about bettering business and the world through AI, driving innovation, and keeping Salesforce's core values at the heart of it all.**About the team** Salesforce is looking to hire a Lead Security Engineer for Government Cloud Services. We prioritize security and data protection to ensure the confidentiality, integrity, and availability of our systems and information. As we continue to expand our operations, we are seeking a skilled and experienced Lead Security Analyst to join our dynamic team and play a pivotal role in safeguarding our organization against evolving cyber threats. As the Lead Security Engineer, you will be responsible for driving the overall security posture of our organization. You will work closely with cross-functional teams to assess risks, implement security measures, monitor security systems, and respond to security incidents. Your expertise in security frameworks, technologies, and best practices will be critical in developing and executing strategies to protect our critical assets and infrastructure. **What you will be doing:*** Apply security policies to meet security objectives of the system.* Assess adequate access controls based on principles of least privilege and need-to-know.* Assess all the configuration management (change configuration/release management) processes.* Assess the effectiveness of security controls.* Ensure cybersecurity-enabled products or other compensating security control technologies reduce identified risk to an acceptable level.* Develop and implement comprehensive security policies, procedures, and guidelines to ensure the protection of company assets and compliance with applicable regulations.* Conduct (or coordinate with third party partners) regular security risk assessments, vulnerability assessments, and penetration tests to identify potential weaknesses in systems, networks, and applications and coordinate remediation of findings. Drive related mitigations.* Collaborate with stakeholders to design and implement security controls, including firewalls, intrusion detection systems, access controls, and encryption technologies.* Conduct analysis of logs and events, identify gaps for deeper analysis as needed, and coordinate with Detection and Response teams on detection and alerting betterment efforts and uplift.* Stay up-to-date with the latest security trends, vulnerabilities, and threat intelligence, and provide recommendations to proactively address emerging risks.* Liaison with Incident Response teams on incidents and response efforts, recommend and/or instigate remediation actions to prevent future occurrences.* Develop and deliver security awareness and training programs to educate employees on security best practices and promote a culture of security across the organization.* Collaborate with external vendors, partners, and auditors to ensure compliance with security standards and regulations. Further, implement system security measures in accordance with established procedures to ensure confidentiality, integrity, availability, authentication, and non-repudiation* Maintain documentation of security procedures, incident response plans, and security incident reports.**What you should have:*** Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git* Professional certifications such as CISSP, CISM, CEH, or similar are highly desirable.* Proven experience (5+ years) in a security analyst role, with a focus on information security, incident response, and vulnerability management.* Must be US Citizen operating on US Soil and pass both enhanced background check as long as Criminal Justice background check.* Strong understanding of security frameworks such as ISO 27001, NIST, or CIS Controls, and their practical application.* Extensive knowledge of security technologies, including firewalls, IDS/IPS, SIEM, DLP, antivirus, and endpoint protection systems.* Hands-on experience with vulnerability assessment tools, network scanning tools, and penetration testing methodologies.* Experience with using cloud infrastructure as code (IaC), including Terraform, CloudFormation, or Azure Resource Manager to deploy secure cloud infrastructure, and using version control based on Git“* Proficiency in log analysis, incident response, and forensic investigation techniques.* Excellent communication skills, both written and verbal, with the ability to articulate complex security concepts to technical and non-technical stakeholders.* Demonstrated leadership abilities, with the capacity to motivate and inspire a team.* Strong analytical and problem-solving skills, with the ability to think strategically and develop innovative solutions to security challenges.Joining Salesforce Government Cloud as a Lead Security Engineer provides an exciting opportunity to make a significant impact on the organization's security posture and contribute to its overall success. If you are passionate about security, possess strong leadership skills, and thrive in a fast-paced environment, we encourage you to apply for this challenging and rewarding position.Unleash Your PotentialWhen you join Salesforce, you'll be limitless in all areas of your life. Our benefits and resources support you to find balance and *be your best*, and our AI agents accelerate your impact so you can *do your best*. Together, we'll bring the power of Agentforce to organizations of all sizes and deliver amazing experiences that customers love. Apply today to not only shape the future - but to redefine what's possible - for yourself, for AI, and the world.AccommodationsIf you require assistance due to a disability applying for open positions please submit a request via this .Posting StatementAny employee or potential employee will be assessed on the basis of merit, competence and qualifications - without regard to race, religion, color, national origin, sex, sexual orientation, gender expression or identity, transgender status, age, disability, veteran or marital status, political viewpoint, or other classifications protected by law. This policy applies to current and prospective employees, no matter where they are in their Salesforce employment journey. It also applies to recruiting, hiring, job assignment, compensation, promotion, benefits, training, assessment of job performance, discipline, termination, and everything in between. Recruiting, hiring, and promotion decisions at Salesforce are fair and based on merit. The same goes for compensation, benefits, promotions, transfers, reduction in workforce, recall, training, and education.In the United States, compensation offered will be determined by factors such as location, job level, job-related knowledge, skills, and experience. Certain roles may be eligible for incentive compensation, equity, and benefits. Salesforce offers a variety of benefits to help you live well including: time off programs, medical, dental, vision, mental health support, paid parental leave, life and disability insurance, 401(k), and an employee stock purchasing program. More details about company benefits can be found at the following link: ******************************************* to the San Francisco Fair Chance Ordinance and the Los Angeles Fair Chance Initiative for Hiring, Salesforce will consider for employment qualified applicants #J-18808-Ljbffr

A leading data and AI company in San Francisco is seeking a Senior Security Engineer to enhance the safety of its platform. The role demands extensive experience in Data Security and distributed systems. The ideal candidate will have strong leadership and communication skills, with a focus on filling critical gaps in infrastructure. Expected salary range is $220,400 to $297,400 annually. Join us to make impactful changes and attract top talent while representing the security engineering discipline across the organization. #J-18808-Ljbffr

A leading cloud provider is seeking a Senior Security Engineer to help build and manage services that detect and mitigate cybersecurity threats. Candidates should have extensive experience in security investigations, a deep understanding of security threats, and be proficient in code development using various languages. The role involves mentoring junior engineers and improving security programs within AWS. Strong leadership skills and a collaborative approach are essential for success in this position. #J-18808-Ljbffr

Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS' multi-tenant infrastructure. Key Job Responsibilities As a Senior Security Engineer, you'll help to build and manage services that detect and automate the mitigation of cybersecurity threats across Amazon's infrastructure. You'll work with data scientists, software development engineers, and other security engineers across multiple teams to develop innovative security solutions. Our services protect the AWS cloud for all customers and preserves our customers' trust in us. You'll get to use the full power and breadth of AWS technologies to build services that proactively protect AWS customers, both internally and externally, from security threats. You will be working in a team of industry-leading security experts working with UK customers to operate and continuously improve industry-leading security programs and processes. This team manages the underlying security programs and processes for personnel security, physical and logical accreditations, education, awareness and training, assurance, and cyber security. This position will have visibility at senior levels of government agencies, commercial institutions, and AWS including interaction with CISOs, CTOs, their staffs, and AWS senior leadership. In addition to a strong understanding of security technologies, tool development, offensive and defensive security tactics, and ideally some experience with distributed systems, you'll need a number of other qualities to be successful in this role. The team has a mix of experience levels, and we're building an environment that celebrates knowledge sharing and mentorship. Our senior engineers, data scientists, and managers truly enjoy mentoring junior engineers, data scientists, and engineers from non-traditional backgrounds through one‑on‑one mentoring and thorough, but kind, code reviews. You will need to be a UK national and able to obtain and maintain a UK Government Security Clearance. Further details found here: ******************************************************************************************* About the Team Diverse Experiences: Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying. Why Amazon Security? At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores. Inclusive Team Culture: AWS values curiosity and connection. Our employee‑led and company‑sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do. Training & Career Growth: We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge‑sharing, training, and other career‑advancing resources here to help you develop into a better‑rounded professional. Work/Life Balance: We value work‑life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve. Basic Qualifications Extensive experience performing security investigations, penetration testing, and/or incident response in the context of large organisations In‑depth understanding of security threats, hands‑on experience detecting and defending from cyber attacks, and experience using big data analytics and orchestration to address security challenges. Ability to develop code with at least one modern language such as Java, Go, TypeScript, Python, Rust and security code review Demonstrated technical leadership in security (e.g., tech lead, developed security architecture for a product or system, led technical component of security project, etc.) Experience leading and coaching junior security engineers to improve their skills and effectiveness Preferred Qualifications BS or MS in a STEM related field. Understanding of the Mitre ATT&CK framework and knowledge of host and network telemetry data (e.g., process lists, application logs, NetFlow) Have awareness and understanding of current cyber security threats, actors and their techniques. Experience with data science, big data analytics technology stack, analytic development for endpoint and network security, and streaming technologies (e.g., Kafka, Spark Streaming, and Kinesis) Strong sense of ownership combined with collaborative approach to overcoming challenges and influencing organisational change Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (**************************************** to know more about how we collect, use and transfer the personal data of our candidates. Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit ********************************************************* for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner. Posted: January 24, 2026 (Updated 2 days ago) #J-18808-Ljbffr

A globally leading consumer device company headquartered in Mountain View, CA is looking for a Senior Offensive Security Engineer to proactively identify, exploit, and help eliminate security weaknesses across our web platforms and AI/ML systems. In this role, you will think like an attacker, operate with engineering rigor, and work closely with product, platform, and AI teams to raise the security bar across the organization. You will lead complex penetration tests, design novel attack techniques for web and modern AI-powered applications, and influence secure-by-design architecture at scale. Responsibilities: • Conduct offensive security assessments on large-scale web applications, REST APIs, and cloud-backed services. • Identify and validate vulnerabilities including injection flaws, access control issues, authentication/authorization weaknesses, SSRF, deserialization, and logic bugs. • Evaluate LLM-based systems and AI agents for prompt injection, data exfiltration, model abuse and jailbreaks • Design and execute red team-style engagements simulating real-world adversaries. • Develop custom exploitation tools, PoCs, and fuzzers for web and AI attack surfaces. • Identify systemic security weaknesses and collaborate with engineering teams to drive long-term mitigations. • Review architectures and designs for new products with an attacker mindset. • Produce clear, actionable security reports and present findings to technical and executive stakeholders. Minimum Qualifications: • Master's degree in Computer Science, Computer Engineering, Information Security, or a closely related technical field. • Doctorate (PhD) in a relevant field is a plus but not required. • 5+ years of experience in offensive security, penetration testing, or red teaming. • Deep expertise in web application security. • Strong understanding of API security. • Hands-on experience testing AI/ML or LLM-based systems, or strong motivation with demonstrated research in this area. • Proficiency in at least one scripting or programming language (Python, Go, JavaScript, or similar). • Strong knowledge of common exploitation techniques and attacker tooling. Preferred Qualifications: • Prior work on adversarial ML, red-teaming AI systems, or secure LLM pipeline design. • Experience with cloud security (AWS, GCP, Azure) and containerized environments. • Background in security research, published CVEs, CTF experience, blog posts, or conference talks. • OSCP, OSEP, OSWE, CRTO, or similar. What We Look For: • An attacker-first mindset with strong engineering discipline. • Ability to go beyond scanners and find novel, high-impact vulnerabilities. • Clear communicator who can translate complex exploits into actionable fixes. • Curiosity about emerging threats, especially in AI security. • Ownership mentality and comfort operating in ambiguous problem spaces. Type: Contract Duration: 12 months with extension Work Location: Mountain View, CA (on site) Pay Range: $ 85.00 - $ 100.00 (DOE)

A leading tech company is looking for a Delivery Consultant specialized in Security and Compliance in San Francisco. This role involves collaborating with customers on AWS migrations, designing secure cloud infrastructures, and providing advisory services for security automation. Candidates should have extensive experience with cloud environments, including AWS and DevSecOps practices. The team focuses on delivering high-quality professional services and requires travel to client locations. Join a diverse group and make an impact in the cloud security field. #J-18808-Ljbffr

Loft Orbital is revolutionizing access to space by building reliable, shareable satellites that drastically reduce the time and complexity traditionally required to get to orbit. We operate satellites, fly customer payloads, and handle entire missions from end‑to‑end. We're a close‑knitted team of space enthusiasts, software experts, and cutting‑edge technologists, all working together to make space simple for our customers. As a Senior Security Engineer on our Security and Compliance Team, your mission will be to ensure that our highly automated, containerized, and globally distributed infrastructure remains secure throughout its lifecycle, from architecture to incident response. You'll be at the heart of our DevSecOps efforts, collaborating directly with infrastructure, software, product, and solution teams to scale Loft's security maturity while embracing our startup agility and culture. This is a hands‑on, deeply collaborative role, offering broad scope, rapid growth opportunities, and yes, a chance to contribute to space missions. About the Role: Champion DevSecOps best practices by designing and implementing security controls directly into our CI/CD pipelines (e.g., GitLab CI). Lead and automate application and infrastructure security assessments, including threat modeling and code review. Partner with developers and SREs to identify, remediate, and prevent vulnerabilities through secure design and practical guidance. Design, build, and maintain secure architecture patterns for containerized, cloud‑native, and distributed workloads. Develop and maintain automated security tooling, such as container image scanning, IaC validation, and policy‑as‑code. Collaborate on automated security tooling for container image scanning, IaC validation, and RBAC compliance. Support incident response workflows, including detection, forensics, root cause analysis, and post‑mortems. Provide technical mentorship and real‑time enablement to help teams adopt a “secure‑by‑default” mindset. Contribute to internal security tools and automation using Python, Go, or other modern languages. Continuously improve how we measure and scale security across our SRE and infrastructure platforms. Must Haves: Deep experience with cloud security in AWS, Azure, or GCP environments. Strong knowledge of container and Kubernetes security in production environments. Proficiency in at least one modern programming language (e.g., Python, Go, C++). Hands‑on experience with zero‑trust architecture, service mesh, and software‑defined networking. Solid understanding of DevSecOps pipelines, IaC tools, and secure build processes. Hands‑on experience with vulnerability scanning, SAST/DAST tools, and automated security testing. Proven success in fast‑paced, highly collaborative environments, ideally at a startup or scale‑up. Comfortable working closely with developers and SREs in an enablement‑first security culture. Clear, concise communication and documentation skills. Ability to thrive in a multicultural, globally distributed engineering team. Nice to Haves: Practical experience with policy‑as‑code (OPA, Sentinel, etc.). Understanding of software‑defined networking and security policy enforcement in mesh environments. Familiarity with modern SRE practices, observability, and resilience engineering. Contributions to open‑source security tools or frameworks. Interest or experience in space operations or aerospace systems. Some of Our Awesome Benefits: 100% company‑paid medical, dental, and vision insurance option for employees and dependents Flexible Spending (FSA) and Health Savings (HSA) Accounts offered with an employer contribution to the HSA 100% employer paid Life, AD&D, Short‑Term, and Long‑Term Disability insurance Flexible Time Off policy for vacation and sick leave, and 12 paid holidays 401(k) plan and equity options Daily catered lunches and snacks in office International exposure to our team in France Fully paid parental leave; 14 weeks for birthing parent and 10 weeks for non‑birthing parent Carrot Fertility provides comprehensive, inclusive fertility healthcare and family‑forming benefits with financial support Off‑sites and many social events and celebrations Relocation assistance when applicable $140,250 - $190,000 a year State law requires us to tell you the base compensation range for this role, which is $140,250- $190,000 per year. This is determined by your education, experience, knowledge, skills, and abilities. The salary range for this role is intentionally wide as we evaluate individuals based on their unique experience and abilities to fit our needs. Most importantly, we are excited to meet you, and see if you are a great fit for our team. What we can't quantify for you are the exciting challenges, supportive team, and amazing culture we enjoy. * Research shows that while men apply to jobs where they meet an average of 60% of the criteria, women and other underrepresented people tend to only apply when they meet 100% of the qualifications. At Loft, we value respectful debate and people who aren't afraid to challenge assumptions. We strongly encourage you to apply, even if you don't check all the boxes. Who We Are Loft: Space Made Simple. Founded in 2017, Loft provides governments, companies, and research institutions with a fast, reliable, and flexible way to deploy missions in orbit. We integrate, launch, and operate spacecraft, offering end‑to‑end missions as a service across Earth observation, IoT connectivity, in‑orbit demonstrations, national security missions, and more. Leveraging our existing space infrastructure and an extensive inventory of satellite buses, Loft is reducing years‑long integration and launch timelines to months. With more than 25 missions flown, Loft's flight heritage and proven technologies enable customers to focus on their mission objectives. At Loft, you'll be given the autonomy and ownership to solve significant challenges, but with a close‑knot and supportive team at your back. We believe that diversity and community are the foundation of an open culture. We are committed to hiring the best people regardless of background and make their time at Loft the most fulfilling period of their career. We value kind, supportive and team‑oriented collaborators. It is also crucial for us that you are a problem solver and a great communicator. As our team is international, you will need strong English skills to better collaborate, easily communicate complex ideas and convey important messages. With 4 satellites on‑orbit and a wave of exciting missions launching soon, we are scaling up quickly across our offices in San Francisco, CA | Golden, CO | and Toulouse, France. As an international company your resume will be reviewed by people across our offices so please attach a copy in English. #J-18808-Ljbffr

6 months +Contract-San Francisco CA Remote role Pay $100 on w-2 Key Management Engineer Role Overview: We are seeking a skilled Key Management Engineer to join our team, with expertise in the architecture and tools for both symmetric and asymmetric key management, including Public Key Infrastructure (PKI). This role requires experience managing cryptographic keys for applications, databases, infrastructure, including storage subsystems, and working with cloud-based tools and solutions. A solid understanding of infrastructure utilizing cryptographic keys, experience with Hardware Security Modules (HSMs), basic development skills in Java and Python, and strong documentation and execution abilities are essential. Key Responsibilities: • Design and implement architectures for symmetric and asymmetric key management solutions with a focus on PKI. • Manage and maintain cryptographic key infrastructure services, including key lifecycle management processes from creation to retirement. • Deploy and secure cryptographic keys for applications, databases, infrastructure, and storage subsystems, ensuring adherence to security standards and best practices. • Utilize and configure tools and products for key management, including those used in cloud environments such as AWS KMS, Azure Key Vault, and Google Cloud Key Management Service. • Integrate key management solutions into existing infrastructure, collaborating with cross-functional teams to ensure comprehensive security measures. • Configure, deploy, and manage Hardware Security Modules (HSMs) for secure key storage and operations, utilizing products like Thales, Gemalto, or SafeNet. • Develop scripts and applications using Java and Python to automate key management tasks and processes. • Document key management procedures, policies, and architecture designs to enhance operational efficiency and facilitate effective knowledge transfer. • Conduct regular assessments and audits of cryptographic systems to ensure compliance with industry best practices and standards. • Provide training and guidance to technical teams on key management best practices and security protocols. Qualifications: • Proven experience in designing and implementing key management solutions, with emphasis on symmetric and asymmetric cryptography, including PKI. • Experience in key lifecycle management processes, involving key creation, distribution, rotation, and revocation. • Ability to deploy and secure cryptographic keys effectively for applications, databases, infrastructure, and storage subsystems. • Strong understanding of key management infrastructure and protocols, including HSM configurations and operations. • Experience with cloud-based key management tools like AWS KMS, Azure Key Vault, and Google Cloud Key Management Service. • Basic development skills in Java and Python with the ability to script and automate routine processes. • Hands-on experience with key management tools and products such as Thales HSM, Gemalto HSM, SafeNet, Microsoft Active Directory Certificate Services, OpenSSL, etc. • Excellent documentation skills, able to produce clear and comprehensive technical documents and user guides. • Strong analytical and problem-solving skills to troubleshoot complex issues. • Demonstrated experience working in environments requiring strict security and compliance standards, familiar with frameworks like NIST, ISO 27001, and CIS. Technical Skills: • Familiarity with network security concepts and secure communication protocols. • Understanding of cloud security concepts and practices. • Knowledge of network security concepts and secure communication protocols. • Experience with security standards and frameworks (e.g., NIST, ISO 27001). Preferred Qualifications: • Bachelor's degree in Computer Science, Information Security, or a related field. • Experience with security operations tools and best practices. • Application Process: Interested candidates should submit their resume along with a cover letter detailing relevant experience and qualifications. This role represents an excellent opportunity to contribute substantially to the security infrastructure

Consultant Network & Security page is loaded## Consultant Network & Securityremote type: Hybrid or Remotelocations: Contern\_EXCtime type: Full timeposted on: Posted 30+ Days Agojob requisition id: R0287400Les entreprises et les gouvernements comptent sur Thales pour apporter de la confiance aux milliards d'interactions numériques qu'ils établissent avec les utilisateurs. L'Activité Mondiale Identité & Sécurité Numériques (DIS) fournit des technologies et services (des logiciels sécurisés en passant par la biométrie ou encore le cryptage), qui permettent aux entreprises ainsi qu'aux gouvernements de vérifier des identités, et de protéger les données afin qu'elles restent sûres.**Tasks and responsibilities*** Act as the dedicated technical advisor towards the customer in the limit of the scope of skills of the consultant* Gather technical needs from customer and propose the most adapted solutions to customer* Define architecture and participate to conception of technical solutions* Realize advisory and expertize missions* Support Account Managers during the presales phase of writing offers to customers such as “Proof of Concept” realization, writing Statements of Work, technical solutions presentations, preparation of technical aspects for all call for tenders* Implement and support operational teams during rollout phases* Manage and ensure engagement on deliverables in due time in the limit of the scope of skills of the consultant* Maintain updated general skills on network security (best practices, protocols, security fundamentals, risks identification, methodology etc.)* Technical skills to maintain updated (certifications / self-training / trainings to follow) further to the Personal targets defined* Skills, tailor made trainings and knowledge transfer towards customers* Skills, tailor made trainings and knowledge transfer towards team mates (to ensure coverage in case of absence)* Coaching junior consultants in order to make them grow up in terms of soft and technical skills* Coaching trainees (manage and follow up of the whole internship of the trainees)* Creativity in problem solving on a constant basis in day to day tasks and in exceptional tasks (such as incidents) in the limit of the scope of skills of the consultant* Detect and evaluate level of importance of any crisis situation* Escalate any crisis situation (previously detected and evaluated by the junior consultant himself) to confirmed and senior peers when necessary* Reporting and documentation (French and English)* Act the role of Back-Up for 1rst/2nd line support Engineer* Act the role of 3rd line for the SOD in the limit of the scope of skills of the consultant**Prerequisite**Expertise in one or more of the following areas:* Firewalls,* Web and Database Application firewalls,* Protection systems against unknown threats (Sandboxing* Messaging Security,* Strong authentication and SAML identity federation, OpenID Connect, …* Encryption (IPSEC VPN, data encryption, …),* Hardware Security Module (HSM),* More specifically, you are familiar with the technologies of the following manufacturers,* Firewalls: Checkpoint, Palo Alto Networks, Fortinet,* Web Proxy: Bluecoat ProxySG, McAfee Web Gateway R,* Load Balancing / WAFF: F5, Netscaler, DenyAll, Imperva,* Email Security: Cisco, TrendMicro, Trustwave,* Strong authentication: RSA, Gemalto, RCDevs,* HSM: Gemalto, Thales,* Sandboxing: BlueCoat MAA, TrendMicro,* Identity Federation: Microsoft ADFS, auth0, okta.**Security*** In-depth knowledge of IT security practices, including identity and access management, vulnerability management, network and operating system security, and application security* Competence in cryptography and data security* Knowledge of information security standards and regulations* Experience in detecting and responding to information security incidents, including compliance management and conducting information security audits**Back-up**Other Senior consultants / Practice Leader/ Team LeaderThales, entreprise Handi-Engagée, reconnait tous les talents. La diversité est notre meilleur atout. Postulez et rejoignez nous !remote type: Hybrid or Remotelocations: Contern\_EXCtime type: Full timeposted on: Posted 30+ Days Ago #J-18808-Ljbffr

Security is at the foundation of OpenAI's mission to ensure that artificial general intelligence benefits all of humanity. The Security team protects OpenAI's technology, people, and products. We are technical in what we build but are operational in how we do our work, and are committed to supporting all products and research at OpenAI. Our Security team tenets include: prioritizing for impact, enabling researchers, preparing for future transformative technologies, and engaging a robust security culture. About the Role We're seeking an exceptional Principal-level Offensive Security Engineer to challenge and strengthen OpenAI's security posture. This role isn't your typical red team job - it's an opportunity to engage broadly and deeply, craft innovative attack simulations, collaborate closely with defensive teams, and influence strategic security improvements across the organization. You have the chance to not only find vulnerabilities but actively drive their resolution, automate offensive techniques with cutting-edge technologies, and use your unique attacker perspective to shape our security strategy. This role will be primarily focused on continuously testing our hardware products and related services. In this role you will: Collaborate proactively with engineering teams to enhance security and mitigate risks in hardware, firmware, and software. Perform comprehensive penetration testing on our diverse suite of products. Leverage advanced automation and OpenAI technologies to optimize your offensive security work. Present insightful, actionable findings clearly and compellingly to inspire impactful change. Influence security strategy by providing attacker-driven insights into risk and threat modeling. You might thrive in this role if you have: 7+ years of hands‑on experience or exceptional accomplishments demonstrating equivalent expertise. Exceptional skill in code review, identifying novel and subtle vulnerabilities. Demonstrated mastery assessing complex technology stacks, including: Proven ability to reverse engineer bootrom images, firmware, or silicon‑level components. Deep familiarity with low‑level kernel operations, secure boot processes, and hardware‑software interactions. Hands‑on experience building and validating secure boot chains and threat models. Proficiency with hardware debugging tools (UART, JTAG, SWD, oscilloscopes, logic analyzers). Solid programming skills in C/C++, Python, or assembly for embedded systems. Industry experience securing consumer hardware (e.g., mobile devices, IoT, chipsets). Excellent written and verbal communication skills for technical and non‑technical audiences. Strong intuitive understanding of trust boundaries and risk assessment in dynamic contexts. Excellent coding skills, capable of writing robust tools and automation for offensive operations. Ability to communicate complex technical concepts effectively through compelling storytelling. Proven track record of not just finding vulnerabilities but actively contributing to solutions in complex codebases. Prior experience working in tech startups or fast‑paced technology environments. Experience in related disciplines such as Software Engineering (SWE), Detection Engineering, Site Reliability Engineering (SRE), Security Engineering, or IT Infrastructure. About OpenAI OpenAI is an AI research and deployment company dedicated to ensuring that general‑purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity. We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic. Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non‑public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations. To notify OpenAI that you believe this job posting is non‑compliant, please submit a report through this form . No response will be provided to inquiries unrelated to job posting compliance. We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link. At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology. #J-18808-Ljbffr

A leading AI research company in San Francisco is hiring a Principal Offensive Security Engineer. In this role, you will craft attack simulations and collaborate with teams to strengthen security posture across products. The ideal candidate has over 7 years of experience, exceptional programming skills, and a strong background in identifying vulnerabilities. This position offers an opportunity to influence security strategy and contribute to innovative projects in a dynamic environment. #J-18808-Ljbffr

A cybersecurity leader is seeking a Senior Backend Software Engineer to drive the Azure Firewall Management Program. This hybrid role in Sunnyvale requires expertise in Go/Golang, cloud experience in Azure or AWS, and strong networking skills. You will integrate security frameworks and contribute to customer-facing products within a dynamic and innovative team. Join us to help secure the digital world against unprecedented cybersecurity threats. #J-18808-Ljbffr

We are looking for a Corporate Security Engineer to grow our rapidly expanding Security team here at Asana. You will be leading initiatives to help keep Asana's Corporate environment and users safe. The security team is responsible for protecting Asana's employees, users, and customers. We are a team of security engineers and risk and compliance practitioners who build innovative safeguards to ensure that our data is protected against threats and that we comply with legal, regulatory, and customer requirements. We collaborate closely with teams across the organization to foster a culture of security throughout our product and operations. This role is based in our San Francisco office with an office-centric hybrid schedule. The standard in-office days are Monday, Tuesday, and Thursday. Most Asanas have the option to work from home on Wednesdays. Working from home on Fridays depends on the type of work you do and the teams with which you partner. If you're interviewing for this role, your recruiter will share more about the in-office requirements. What you'll achieve: Lead initiatives across key security domains, including Endpoint Security, SaaS Security Posture Management (SSPM), Identity & Access Management (IAM), Identity Governance, and data-loss prevention Collaborate closely with IT, engineering, and business stakeholders to integrate security tools, policies, and processes into corporate systems and workflows, enabling secure-by-design implementations Design and build automation scripts and tools to streamline security workflows, collect actionable metrics, and enforce security policies at scale. Develop and implement strategies and tooling for Data Loss Prevention (DLP) and the mitigation of insider risks within Asana. Partner with our Incident Manager and provide subject matter expertise for incident response. About you: 4 years experience in a Corporate Security or IT Security Familiarity with Identify and Access Management, Authentication & Authorization, Endpoint management, and Network Security Controls. Strong understanding of security concepts including zero trust architecture, threat modeling, security frameworks (SOC 2, ISO 27001) and CIS Controls. Experience in implementing Data Loss Prevention tooling and insider risk programs. Some experience writing and maintaining scripts in at least one language such as Python. Experience with Okta, Google Workspace, os Query and EDR solutions. Demonstrates curiosity about AI tools and emerging technologies, with a willingness to learn and leverage them to enhance productivity, collaboration, or decision-making At Asana, we're committed to building teams that include a variety of backgrounds, perspectives, and skills, as this is critical to helping us achieve our mission. If you're interested in this role and don't meet every listed requirement, we still encourage you to apply. What we'll offer: Our comprehensive compensation package plays a big part in how we recognize you for the impact you have on our path to achieving our mission. We believe that compensation should be reflective of the value you create relative to the market value of your role. To ensure pay is fair and not impacted by biases, we're committed to looking at market value which is why we check ourselves and conduct a yearly pay equity audit. For this role, the estimated base salary range is between $194,000 - $246,000. The actual base salary will vary based on various factors, including market and individual qualifications objectively assessed during the interview process. The listed range above is a guideline, and the base salary range for this role may be modified. In addition to base salary, your compensation package may include additional components such as equity, sales incentive pay (for most sales roles), and benefits. If you're interviewing for this role, speak with your Talent Acquisition Partner to learn more about the total compensation and benefits for this role. We strive to provide equitable and competitive benefits packages that support our employees worldwide and include: Mental health, wellness & fitness benefits Career coaching & support Inclusive family building benefits Long-term savings or retirement plans In-office culinary options to cater to your dietary preferences These are just some of the benefits we offer, and benefits may vary based on role, country, and local regulations. If you're interviewing for this role, speak with your Talent Acquisition Partner to learn more about the total compensation and benefits for this role. #LI-Hybrid #LI-AA1 About us Asana is a leading platform for human + AI collaboration. Millions of teams around the world rely on Asana to achieve their most important goals, faster. Asana has been named to Fortune's Best Workplaces for 7+ years and recognized by Fast Company, Forbes, and Gartner for excellence in workplace culture and innovation. We offer an exceptional office-centric culture while adopting the best elements of hybrid models to ensure that every one of our global team members can work together effortlessly. With 13+ offices all over the world, we are always looking for individuals who care about building technology that drives positive change in the world and a culture where everyone feels that they belong. Join Asana's Talent Network to stay up to date on job opportunities and life at Asana.

About Us: Headquartered in the United States, TP-Link Systems Inc. is a global provider of reliable networking devices and smart home products, consistently ranked as the world's top provider of Wi-Fi devices. The company is committed to delivering innovative products that enhance people's lives through faster, more reliable connectivity. With a commitment to excellence, TP-Link Systems serves customers in over 170 countries and continues to grow its global footprint. We believe technology changes the world for the better! At TP-Link Systems Inc, we are committed to crafting dependable, high-performance products to connect users worldwide with the wonders of technology. Embracing professionalism, innovation, excellence, and simplicity, we aim to assist our clients in achieving remarkable global performance and enable consumers to enjoy a seamless, effortless lifestyle. Overview: We seek a highly motivated and experienced Senior Cloud Security Engineer to play a critical role in safeguarding our organization's data and systems, ensuring adherence to industry security standards and regulations. You will assist in implementing and maintaining our security and compliance programs. Key Responsibilities: Assist in designing, implementing, and managing cloud security solutions and processes across multi-cloud (AWS, Azure, OCI) and hybrid cloud platforms. Monitor and assess cloud infrastructure for vulnerabilities, misconfigurations, and suspicious activity. Implement and maintain cloud security tools for threat detection, incident response, and access control. Help develop and enforce cloud security policies and procedures aligned with industry best practices and regulatory requirements. Collaborate with development, engineering, and operations teams to integrate security best practices into the DevSecOps lifecycle (CI/CD). Participate in cloud security audits and penetration testing to ensure compliance and identify areas for improvement. Assist in managing and responding to security incidents according to established procedures. Stay current on emerging cloud security threats, vulnerabilities, and compliance regulations. Communicate effectively with technical and non-technical stakeholders regarding cloud security posture and compliance requirements. Support external auditors in the successful completion of security and compliance audits. Requirements Qualifications: Bachelor's degree in Computer Science, Information Security, or a related technical field. 1-3 years of experience in cloud security and/or compliance engineering roles. Proven experience in supporting and maintaining security and compliance programs. Working knowledge of relevant security compliance regulations (e.g., ISO 27001, SOC 2, PCI DSS, GDPR). Strong understanding of security best practices, including penetration testing methodologies and risk management. Experience with security tools and technologies (e.g., vulnerability scanners, SIEM, IDS/IPS). Outstanding communication, collaboration, and problem-solving skills. Ability to work independently and manage multiple priorities. Additional Skills (Preferred): Experience in cloud security on AWS, Azure, OCI. Experience operating and maintaining Palo Alto Networks VM-Series NGFW. Experience in security policy development and management Benefits Salary range: $150,000-$180,000 Free snacks and drinks, and provided lunch on Fridays Fully paid medical, dental, and vision insurance (partial coverage for dependents) Contributions to 401k funds Bi-annual reviews, and annual pay increases Health and wellness benefits, including free gym membership Quarterly team-building events At TP-Link Systems Inc., we are continually searching for ambitious individuals who are passionate about their work. We believe that diversity fuels innovation, collaboration, and drives our entrepreneurial spirit. As a global company, we highly value diverse perspectives and are committed to cultivating an environment where all voices are heard, respected, and valued. We are dedicated to providing equal employment opportunities to all employees and applicants, and we prohibit discrimination and harassment of any kind based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Beyond compliance, we strive to create a supportive and growth-oriented workplace for everyone. If you share our passion and connection to this mission, we welcome you to apply and join us in building a vibrant and inclusive team at TP-Link Systems Inc. Please, no third-party agency inquiries, and we are unable to offer visa sponsorships at this time.

Join us and make YOUR mark on the World! Lawrence Livermore National Laboratory (LLNL) has turned bold ideas into world-changing impact advancing science and technology to strengthen U.S. security and promote global stability. Our mission spans four critical national security areas nuclear deterrence, threat preparedness, energy security, and multi-domain defense empowering teams to take on the toughest challenges of today and tomorrow. With a culture built on innovation and operational excellence, LLNL is a place where your expertise can make a real impact. Job Description We have an opening for a Senior Security Researcher to lead efforts to develop techniques and tools for red teaming in support of the defense of critical infrastructure systems and Federal networks. You will lead and support a range of highly complex security research and red teaming projects, developing and deploying innovative methods to emulate cyber-adversary behavior to help develop tools used to defend critical U.S. infrastructure and networks. Your expertise will drive the evolution of advanced cyber capabilities, threat analysis, and mitigation strategies for operational technology and industrial control systems. This position is programmatically in Global Security's Energy and Homeland Security (E) Program and administratively in the Global Security Computing Applications Division (GS-CAD) within the Computing Directorate. This position will be filled at either level based on knowledge and related experience as assessed by the hiring team. Additional job responsibilities (outlined below) will be assigned if hired at the higher level. You will * Guide and support advanced cyber research projects leveraging creative and automated methods to identify vulnerabilities in software, firmware, and operational technology systems. * Collaborate in the development of technical requirements for red team operations, penetration testing, and adversarial simulation capabilities at LLNL. * Analyze and assess novel software, firmware, and malware to uncover weaknesses, malicious behavior, and potential attack vectors, creating repeatable workflows to support future red team engagements. * Conduct in-depth source code, binary, and firmware analysis to identify exploitable vulnerabilities and develop proof-of-concept exploits and mitigations. * Participate in the design and implementation of new tools and techniques for vulnerability assessment, penetration testing, and adversary emulation to advance the understanding and mitigation of threats to operational technology. * Identify emerging threats and opportunities for enhancing cyber defense and red team capabilities, helping shape the technical direction of LLNL's cybersecurity initiatives. * Engage with sponsors and stakeholders to develop new program growth opportunities, contribute to research proposals, and ensure alignment with mission objectives. * Drive and execute innovative ideas and approaches to meet sponsor and project needs in a rapidly evolving threat landscape. * Mentor and collaborate with team members, utilizing your technical expertise to attract and retain projects, programs, and funding. * Perform other duties as assigned Additional job responsibilities, at the SES.4 level * Direct technical tasks for a portfolio of highly complex technical tasks and projects that consistently require the application of creativity and innovation; set broad research/project vision and strategy and influence technical direction for Laboratory, self and/or others wielding extensive influence with senior management and policy makers. * Provide highly innovative solutions to abstract complex problems/ideas, convert them into useable algorithms/software modules, and provide solutions that require in-depth analysis of multiple factors and the creative use of established methods. * Develop new ideas, modify approaches, and redefine requirements that significantly impact major Laboratory programs, set high-level goals, and contribute to the revolutionary advancement of knowledge. Qualifications * Ability to maintain a U.S. DOE Q-level security clearance which requires U.S. citizenship. * Bachelor's degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or related technical field or the equivalent combination of education and related experience. * Significant experience leading program analysis of source code, binaries, or firmware. * Experience in the use of hardware or software debuggers, static disassemblers and decompilers (such as IDA Pro), common binary file formats, dynamic analysis tools, software bills of materials, and/or network analysis tools. * Significant experience communicating technical information across multi-disciplinary teams and to non-cyber experts, advising senior management, and applying interpersonal skills to collaborate effectively in a team environment. * Advanced knowledge of state-of-the-art technologies in red teaming and penetration testing. * Advanced analytical, problem-solving, and decision-making skills to develop creative solutions to complex problems. * Ability to effectively manage concurrent technical tasks with competing priorities, along with the demonstrated ability to approach difficult problems with enthusiasm and creativity and to effectively change focus when necessary. * Advanced verbal and written communication skills necessary to effectively collaborate in a team environment and present and explain technical information to multi-disciplinary teams and non-cyber experts and advise senior management and/or external sponsors and proficient interpersonal skills. Additional qualifications at the SES.4 level * Expert-level experience and ability to plan the integration and implementation of new programs and/or operational best practices. * Expert-level project leadership experience and ability to apply, lead and develop cutting-edge principles and research, working independently while effectively managing concurrent technical tasks with competing priorities. * Substantial experience creating technical direction and vision, writing research proposals, and securing sponsor funding. * Extensive experience in and knowledge of at least one of the following subject areas: Instruction set architectures, Reverse engineering intermediate languages, Firmware analysis and extraction, and/or Operational technology implementation. Qualifications We Desire * Advanced degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or a related technical field. * Knowledge of one or more of the following computer science disciplines: embedded systems, scientific data analysis, machine learning, systems programming, software engineering, formal verification methods, and high performance computing. * Experience with industrial control systems software and hardware. * Ability to secure sponsor funding through winning proposals and sponsor relationships. * Previous experience working Department of Energy, Department of Homeland Security, Department of Defense, a utility, manufacturing, or hardware/software company, or a cybersecurity firm. Pay Range $175,530 - $222,564 Annually for the SES.3 level $210,630 - $267,060 Annually for the SES.4 level This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting; pay will not be below any applicable local minimum wage. An employee's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, seniority, geographic location, performance, and business or organizational needs. Additional Information #LI-Hybrid Position Information This is a Flexible Term appointment, which is for a definite period not to exceed six years. If final candidate is a Career Indefinite employee, Career Indefinite status may be maintained (should funding allow). Why Lawrence Livermore National Laboratory? * Included in 2026 Best Places to Work by Glassdoor! * Flexible Benefits Package * 401(k) * Relocation Assistance * Education Reimbursement Program * Flexible schedules (*depending on project needs) * Our values - visit ***************************************** Security Clearance This position requires a Department of Energy (DOE) Q-level clearance. If you are selected, we will initiate a Federal background investigation to determine if you meet eligibility requirements for access to classified information or matter. Also, all L or Q cleared employees are subject to random drug testing. Q-level clearance requires U.S. citizenship. Pre-Employment Drug Test External applicant(s) selected for this position must pass a post-offer, pre-employment drug test. This includes testing for use of marijuana as Federal Law applies to us as a Federal Contractor. Wireless and Medical Devices Per the Department of Energy (DOE), Lawrence Livermore National Laboratory must meet certain restrictions with the use and/or possession of mobile devices in Limited Areas. Depending on your job duties, you may be required to work in a Limited Area where you are not permitted to have a personal and/or laboratory mobile device in your possession. This includes, but not limited to cell phones, tablets, fitness devices, wireless headphones, and other Bluetooth/wireless enabled devices. If you use a medical device, which pairs with a mobile device, you must still follow the rules concerning the mobile device in individual sections within Limited Areas. Sensitive Compartmented Information Facilities require separate approval. Hearing aids without wireless capabilities or wireless that has been disabled are allowed in Limited Areas, Secure Space and Transit/Buffer Space within buildings. How to identify fake job advertisements Please be aware of recruitment scams where people or entities are misusing the name of Lawrence Livermore National Laboratory (LLNL) to post fake job advertisements. LLNL never extends an offer without a personal interview and will never charge a fee for joining our company. All current job openings are displayed on the Career Page under "Find Your Job" of our website. If you have encountered a job posting or have been approached with a job offer that you suspect may be fraudulent, we strongly recommend you do not respond. To learn more about recruitment scams: ***************************************************************************************** Equal Employment Opportunity We are an equal opportunity employer that is committed to providing all with a work environment free of discrimination and harassment. All qualified applicants will receive consideration for employment without regard to race, color, religion, marital status, national origin, ancestry, sex, sexual orientation, gender identity, disability, medical condition, pregnancy, protected veteran status, age, citizenship, or any other characteristic protected by applicable laws. Reasonable Accommodation Our goal is to create an accessible and inclusive experience for all candidates applying and interviewing at the Laboratory. If you need a reasonable accommodation during the application or the recruiting process, please use our online form to submit a request. California Privacy Notice The California Consumer Privacy Act (CCPA) grants privacy rights to all California residents. The law also entitles job applicants, employees, and non-employee workers to be notified of what personal information LLNL collects and for what purpose. The Employee Privacy Notice can be accessed here. Videos To Watch

Join us and make YOUR mark on the World! Lawrence Livermore National Laboratory (LLNL) has turned bold ideas into world-changing impact advancing science and technology to strengthen U.S. security and promote global stability. Our mission spans four critical national security areas nuclear deterrence, threat preparedness, energy security, and multi-domain defense empowering teams to take on the toughest challenges of today and tomorrow. With a culture built on innovation and operational excellence, LLNL is a place where your expertise can make a real impact. Job Description We have an opening for a Senior Security Researcher to lead efforts to develop techniques and tools for red teaming in support of the defense of critical infrastructure systems and Federal networks. You will lead and support a range of highly complex security research and red teaming projects, developing and deploying innovative methods to emulate cyber-adversary behavior to help develop tools used to defend critical U.S. infrastructure and networks. Your expertise will drive the evolution of advanced cyber capabilities, threat analysis, and mitigation strategies for operational technology and industrial control systems. This position is programmatically in Global Security's Energy and Homeland Security (E) Program and administratively in the Global Security Computing Applications Division (GS-CAD) within the Computing Directorate. This position will be filled at either level based on knowledge and related experience as assessed by the hiring team. Additional job responsibilities (outlined below) will be assigned if hired at the higher level. You will Guide and support advanced cyber research projects leveraging creative and automated methods to identify vulnerabilities in software, firmware, and operational technology systems. Collaborate in the development of technical requirements for red team operations, penetration testing, and adversarial simulation capabilities at LLNL. Analyze and assess novel software, firmware, and malware to uncover weaknesses, malicious behavior, and potential attack vectors, creating repeatable workflows to support future red team engagements. Conduct in-depth source code, binary, and firmware analysis to identify exploitable vulnerabilities and develop proof-of-concept exploits and mitigations. Participate in the design and implementation of new tools and techniques for vulnerability assessment, penetration testing, and adversary emulation to advance the understanding and mitigation of threats to operational technology. Identify emerging threats and opportunities for enhancing cyber defense and red team capabilities, helping shape the technical direction of LLNL's cybersecurity initiatives. Engage with sponsors and stakeholders to develop new program growth opportunities, contribute to research proposals, and ensure alignment with mission objectives. Drive and execute innovative ideas and approaches to meet sponsor and project needs in a rapidly evolving threat landscape. Mentor and collaborate with team members, utilizing your technical expertise to attract and retain projects, programs, and funding. Perform other duties as assigned Additional job responsibilities, at the SES.4 level Direct technical tasks for a portfolio of highly complex technical tasks and projects that consistently require the application of creativity and innovation; set broad research/project vision and strategy and influence technical direction for Laboratory, self and/or others wielding extensive influence with senior management and policy makers. Provide highly innovative solutions to abstract complex problems/ideas, convert them into useable algorithms/software modules, and provide solutions that require in-depth analysis of multiple factors and the creative use of established methods. Develop new ideas, modify approaches, and redefine requirements that significantly impact major Laboratory programs, set high-level goals, and contribute to the revolutionary advancement of knowledge. Qualifications Ability to maintain a U.S. DOE Q-level security clearance which requires U.S. citizenship. Bachelor's degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or related technical field or the equivalent combination of education and related experience. Significant experience leading program analysis of source code, binaries, or firmware. Experience in the use of hardware or software debuggers, static disassemblers and decompilers (such as IDA Pro), common binary file formats, dynamic analysis tools, software bills of materials, and/or network analysis tools. Significant experience communicating technical information across multi-disciplinary teams and to non-cyber experts, advising senior management, and applying interpersonal skills to collaborate effectively in a team environment. Advanced knowledge of state-of-the-art technologies in red teaming and penetration testing. Advanced analytical, problem-solving, and decision-making skills to develop creative solutions to complex problems. Ability to effectively manage concurrent technical tasks with competing priorities, along with the demonstrated ability to approach difficult problems with enthusiasm and creativity and to effectively change focus when necessary. Advanced verbal and written communication skills necessary to effectively collaborate in a team environment and present and explain technical information to multi-disciplinary teams and non-cyber experts and advise senior management and/or external sponsors and proficient interpersonal skills. Additional qualifications at the SES.4 level Expert-level experience and ability to plan the integration and implementation of new programs and/or operational best practices. Expert-level project leadership experience and ability to apply, lead and develop cutting-edge principles and research, working independently while effectively managing concurrent technical tasks with competing priorities. Substantial experience creating technical direction and vision, writing research proposals, and securing sponsor funding. Extensive experience in and knowledge of at least one of the following subject areas: Instruction set architectures, Reverse engineering intermediate languages, Firmware analysis and extraction, and/or Operational technology implementation. Qualifications We Desire Advanced degree with significant focus in cybersecurity, computer science, information technology, computer engineering, or a related technical field. Knowledge of one or more of the following computer science disciplines: embedded systems, scientific data analysis, machine learning, systems programming, software engineering, formal verification methods, and high performance computing. Experience with industrial control systems software and hardware. Ability to secure sponsor funding through winning proposals and sponsor relationships. Previous experience working Department of Energy, Department of Homeland Security, Department of Defense, a utility, manufacturing, or hardware/software company, or a cybersecurity firm. Pay Range $175,530 - $222,564 Annually for the SES.3 level $210,630 - $267,060 Annually for the SES.4 level This is the lowest to highest salary we in good faith believe we would pay for this role at the time of this posting; pay will not be below any applicable local minimum wage. An employee's position within the salary range will be based on several factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, experience, skills, seniority, geographic location, performance, and business or organizational needs. Additional Information #LI-Hybrid Position Information This is a Flexible Term appointment, which is for a definite period not to exceed six years. If final candidate is a Career Indefinite employee, Career Indefinite status may be maintained (should funding allow). Why Lawrence Livermore National Laboratory? Included in 2026 Best Places to Work by Glassdoor! Flexible Benefits Package 401(k) Relocation Assistance Education Reimbursement Program Flexible schedules (*depending on project needs) Our values - visit ***************************************** Security Clearance This position requires a Department of Energy (DOE) Q-level clearance. If you are selected, we will initiate a Federal background investigation to determine if you meet eligibility requirements for access to classified information or matter. Also, all L or Q cleared employees are subject to random drug testing. Q-level clearance requires U.S. citizenship. Pre-Employment Drug Test External applicant(s) selected for this position must pass a post-offer, pre-employment drug test. This includes testing for use of marijuana as Federal Law applies to us as a Federal Contractor. Wireless and Medical Devices Per the Department of Energy (DOE), Lawrence Livermore National Laboratory must meet certain restrictions with the use and/or possession of mobile devices in Limited Areas. Depending on your job duties, you may be required to work in a Limited Area where you are not permitted to have a personal and/or laboratory mobile device in your possession. This includes, but not limited to cell phones, tablets, fitness devices, wireless headphones, and other Bluetooth/wireless enabled devices. If you use a medical device, which pairs with a mobile device, you must still follow the rules concerning the mobile device in individual sections within Limited Areas. Sensitive Compartmented Information Facilities require separate approval. Hearing aids without wireless capabilities or wireless that has been disabled are allowed in Limited Areas, Secure Space and Transit/Buffer Space within buildings. How to identify fake job advertisements Please be aware of recruitment scams where people or entities are misusing the name of Lawrence Livermore National Laboratory (LLNL) to post fake job advertisements. LLNL never extends an offer without a personal interview and will never charge a fee for joining our company. All current job openings are displayed on the Career Page under “Find Your Job” of our website. If you have encountered a job posting or have been approached with a job offer that you suspect may be fraudulent, we strongly recommend you do not respond. To learn more about recruitment scams: ***************************************************************************************** Equal Employment Opportunity We are an equal opportunity employer that is committed to providing all with a work environment free of discrimination and harassment. All qualified applicants will receive consideration for employment without regard to race, color, religion, marital status, national origin, ancestry, sex, sexual orientation, gender identity, disability, medical condition, pregnancy, protected veteran status, age, citizenship, or any other characteristic protected by applicable laws. Reasonable Accommodation Our goal is to create an accessible and inclusive experience for all candidates applying and interviewing at the Laboratory. If you need a reasonable accommodation during the application or the recruiting process, please use our online form to submit a request. California Privacy Notice The California Consumer Privacy Act (CCPA) grants privacy rights to all California residents. The law also entitles job applicants, employees, and non-employee workers to be notified of what personal information LLNL collects and for what purpose. The Employee Privacy Notice can be accessed here.

Headquartered in the United States, TP-Link Systems Inc. is a leading global provider of networking devices and smart home products. Consistently ranked as the world's top provider of Wi-Fi devices, TP-Link is dedicated to delivering innovative solutions that improve people's lives by offering faster, more reliable connectivity. Serving customers in over 170 countries, we are committed to expanding our global footprint. At TP-Link Systems Inc., we believe that technology has the power to transform the world for the better. Our mission is to design reliable, high-performance products that connect users worldwide to the limitless possibilities of technology. We are driven by our core values of professionalism, innovation, excellence, and simplicity. Our goal is to help clients achieve outstanding global performance and to provide consumers with a seamless, effortless technology experience. TP-Link Systems Inc. is seeking a skilled and proactive Senior Security Compliance Analyst who will be responsible for developing and overseeing TP-Link's enterprise security governance framework, ensuring compliance with regulatory requirements, industry standards, and internal policies. This individual will collaborate with cross-functional teams to embed security into business operations, manage risk, and enhance security resilience across TP-Link's enterprise ecosystem. Key Responsibilities: Security Governance & Policy Development Develop, implement, and maintain security policies, standards, and guidelines aligned with industry best practices (e.g., NIST, ISO 27001, CIS). Establish and lead a security governance framework to ensure consistent application of security controls across the enterprise. Risk Management & Compliance Identify, assess, and mitigate security risks across TP-Link's global operations. Ensure compliance with regulatory requirements such as GDPR, CCPA, NIST CSF, and other applicable cybersecurity frameworks. Oversee security audits, risk assessments, and third-party security evaluations. Partner with legal, IT, and business leaders to address security compliance gaps. Third-Party & Supply Chain Security Develop and enforce security requirements for vendors, suppliers, and third-party partners. Conduct security assessments of supply chain partners to identify and mitigate potential risks. Security Awareness & Training Develop and lead security awareness programs to educate employees on cybersecurity risks and best practices. Foster a security-first culture across all levels of the organization. Provide guidance and training on security governance processes for internal stakeholders. Incident Response & Continuous Improvement Support security incident response efforts by ensuring governance processes facilitate rapid detection and response. Lead post-incident analysis to refine security policies and controls. Monitor emerging threats, regulatory changes, and industry trends to evolve TP-Link's security governance strategies. Requirements Qualifications Education: Bachelor's degree in Computer Science, Cybersecurity, Information Security, or a related field. Experience: 5+ years of experience in security governance, risk management, or compliance in a global technology or networking company. Proven track record in developing and implementing security governance frameworks for enterprise security. Experience managing compliance with industry standards and regulations (ISO 27001, NIST CSF, SOC 2, GDPR, CCPA, etc.). Hands-on experience with supply chain security, third-party risk management, and vendor security assessments. Skills: Deep understanding of security frameworks (ISO 27001, NIST, CIS, SOC 2) and regulatory requirements. Strong expertise in risk management methodologies, security policy development, and compliance auditing. Proficient in conducting security assessments, third-party risk evaluations, and internal security reviews. Ability to communicate complex security concepts to business and technical stakeholders effectively. Strong leadership skills with experience in cross-functional collaboration and executive reporting. Benefits Salary range: $100,000-$150,000 Free snacks and drinks, and provided lunch on Fridays Fully paid medical, dental, and vision insurance (partial coverage for dependents) Contributions to 401k funds Bi-annual reviews, and annual pay increases Health and wellness benefits, including free gym membership Quarterly team-building events At TP-Link Systems Inc., we are continually searching for ambitious individuals who are passionate about their work. We believe that diversity fuels innovation, collaboration, and drives our entrepreneurial spirit. As a global company, we highly value diverse perspectives and are committed to cultivating an environment where all voices are heard, respected, and valued. We are dedicated to providing equal employment opportunities to all employees and applicants, and we prohibit discrimination and harassment of any kind based on race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Beyond compliance, we strive to create a supportive and growth-oriented workplace for everyone. If you share our passion and connection to this mission, we welcome you to apply and join us in building a vibrant and inclusive team at TP-Link Systems Inc. Please, no third-party agency inquiries, and we are unable to offer visa sponsorships at this time.

MANTECH is seeking a motivated, career and customer-oriented Cybersecurity System Security Engineer I to join our team in El Segundo, CA. The Cybersecurity System Security Engineer's primary function is working within Special Access Programs (SAPs) supporting SSC and AFSPC acquisition programs. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities to meet NIST Cybersecurity requirements for system assessment & authorization. Responsibilities include but are not limited to: Perform oversight of the development, implementation and evaluation of information system security program policy; special emphasis placed upon integration with existing SAP network infrastructures. Support a team of System Security Engineers and Certification and Accreditation Analysts responsible for ensuring the customers national and international security interests are protected as support equipment are designed and tested. Support customer and SAP community IA working groups, participate in SSE IPT reviews. Provides expert level consultation and technical services on all aspects of Information Security. Review SSE related designs, provide security compliance recommendations, and develop and provide IA risk management recommendations to the customer. Provide SSE support for Mission and Training systems design and development. Assist with development and maintenance of the Program Protection Plan, Cybersecurity Strategy, site activation activities and design reviews. Represent the Government Program Manager in various SSE related working groups, advisory groups, and advisory council meetings. Minimum Qualifications: Bachelor's degree in a related field or 4 additional years of direct experience will be considered in lieu of degree. 6 + years of relevant experience. 2 + years of experience with SCI. Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 2 and Information Assurance Manager Level 1 within 6 months of the date of hire. Must be familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents. Familiarity with Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG) processes for system accreditation, along with legacy (DISTSCAP, DIACAP) processes. Willingness to travel within the organizational Area of Responsibility (AOR) (note - could be extensive, and will include both air and ground transportation) Preferred Qualifications: 1+ year of SAP relevant experience highly desired. Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners. Working knowledge of Microsoft Office (Word, PowerPoint, and Excel). Possess a high degree of originality, creativity, initiative requiring minimal supervision. Clearance Requirements: Current Top Secret Clearance with SCI Eligibility. Eligibility for access to Special Access Program Information. Willingness to submit to a polygraph. Physical Requirements: Must be able to remain in a stationary position 50%. The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations. Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.

The Director of Information Security reports to the Chief Information Officer (CIO) and is responsible for information security policy assessments, enforcing compliance with firm security policies and applicable law, vendor management and security incident management. Working with the firm's Information Technology teams, including Network Operations, Customer Experience, Practice Services and Research, the Director of Information Security will help develop, manage, audit and enforce security related policies and procedures throughout the firm's enterprise on premise and cloud systems. REQUIRED KNOWLEDGE, SKILLS AND ABILITIES: Admin-level knowledge of Windows system administration and Active Directory. Knowledge of network security principals, best practices and industry standards. Knowledge of security models that maintain and enforce security policies. Expert understanding of cloud controls and environments, a strong foundation in IT solutions deployment and practical understanding of IT security compliance, risk management and information security principles including access control, network security, information security architecture, information security operations, and leading practices and associated tools in a cloud environment are critical. Experience with IT security, compliance, risk and privacy frameworks such as ISO 27001, NIST 800-53, HIPAA, GDPR, CCPA. Knowledge of security tools and concepts including: IDS/IPS; SIEM; Web Proxy; Encryption; Patch management; Vulnerability Scanning & Remediation; Forensics; Penetration Testing; DLP; Email Gateways; Anti-spam Services; MDM; Privileged Account Management; Log Analytics; Two Factor Authentication; Single Sign On. Individual must possess excellent communication and interpersonal skills with a high degree of empathy and emotional intelligence, be self-motivated with the ability to manage and prioritize multiple deliverables to meet deadlines and demonstrate proven success delivering results individually and as part of a team in a fast-paced, demanding, growth environment. JOB COMPETENCIES / SUCCESS FACTORS: Client-service orientation Pro-active problem solving Strong communication skills Work ethic and teamwork Leadership skills Interpersonal skills QUALIFICATIONS: 4+ years of experience working in an Information Security management role. CISSP certification Project management experience preferred Previous law firm experience highly desired