Security architect jobs in Asheville, NC

GovCIO is currently hiring a Zero Trust Security Engineer to join our team, supporting a critical program with the U.S. Coast Guard. This position is located in Alexandria, VA and will be a hybrid remote position. Responsibilities: The Zero Trust Security Engineer will be responsible for leading the strategic implementation and operationalization of Zero Trust principles across the enterprise. This role involves serving as the definitive technical authority on all matters related to ZT methodology and its practical application. Serve as the primary Subject Matter Expert (SME) for Zero Trust architecture, guiding the adoption and operational integration of ZT principles across the entire IT infrastructure. Lead the design, implementation, and refinement of ZT strategies, focusing on the core tenets of "never trust, always verify" and the micro-segmentation of critical assets. Conduct in-depth analysis of current network architectures, access controls, and security policies to identify gaps and develop comprehensive ZT migration roadmaps. Collaborate directly with engineering, architecture, and cybersecurity teams to engineer and implement permanent, scalable ZT resolutions and security controls. Architect and implement strategic process improvements, develop sophisticated, expert-level ZT implementation guides, and curate the knowledge base to significantly elevate the technical capabilities of the entire cyber operations organization. Manage complex user identity, device, and application access controls within enterprise Identity and Access Management (IAM) systems, ensuring ZT principles and compliance standards are rigorously met. Utilize advanced scripting and automation (PowerShell, Python) to automate ZT policy enforcement, enhance diagnostic capabilities, and streamline continuous monitoring processes. Mentor and provide expert technical coaching to all levels of the security operations and IT support teams, acting as a technical leader and driving continuous skill development in ZT methodologies. Maintain rigorous and detailed documentation of ZT architectures, configurations, and operational procedures within the enterprise knowledge management systems, strictly adhering to industry frameworks (e.g., ITIL, NIST, DoD). Qualifications: Bachelor's with 12+ years (or commensurate experience) Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or an equivalent combination of education and extensive, directly relevant experience) with 12+ years (or commensurate experience) Required Skills and Experience Minimum 8+ years of progressive, hands-on experience in cybersecurity, system architecture, or network engineering, with a minimum of 3 years spent specifically in a senior SME/escalation, engineering, or technical leadership role focused on Zero Trust or advanced security architecture. Clearance Requirement: Must be clearable up to an active Secret clearance. Company Overview: GovCIO is a team of transformers--people who are passionate about transforming government IT. Every day, we make a positive impact by delivering innovative IT services and solutions that improve how government agencies operate and serve our citizens. But we can't do it alone. We need great people to help us do great things - for our customers, our culture, and our ability to attract other great people. We are changing the face of government IT and building a workforce that fuels this mission. Are you ready to be a transformer? What You Can Expect Interview & Hiring Process If you are selected to move forward through the process, here's what you can expect: During the Interview Process Virtual video interview conducted via video with the hiring manager and/or team Camera must be on A valid photo ID must be presented during each interview During the Hiring Process Enhanced Biometrics ID verification screening Background check, to include: Criminal history (past 7 years) Verification of your highest level of education Verification of your employment history (past 7 years), based on information provided in your application Employee Perks At GovCIO, we consistently hear that meaningful work and a collaborative team environment are two of the top reasons our employees enjoy working here. In addition, our employees have access to a range of perks and benefits to support their personal and professional well-being, beyond the standard company offered health benefits, including: Employee Assistance Program (EAP) Corporate Discounts Learning & Development platform, to include certification preparation content Training, Education and Certification Assistance* Referral Bonus Program Internal Mobility Program Pet Insurance Flexible Work Environment *Available to full-time employees Our employees' unique talents and contributions are the driving force behind our success in supporting our customers, which ultimately fuels the success of our company. Join us and be a part of a culture that invests in its people and prioritizes continuous enhancement of the employee experience. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, or status as a protected veteran. EOE, including disability/vets. Posted Pay Range The posted pay range, if referenced, reflects the range expected for this position at the commencement of employment, however, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, education, experience, and internal equity. The total compensation package for this position may also include other compensation elements, to be discussed during the hiring process. If hired, employee will be in an “at-will position” and the GovCIO reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, GovCIO or individual department/team performance, and market factors. Posted Salary Range: USD $145,000.00 - USD $190,000.00 /Yr.

MANTECH seeks a motivated, career and customer-oriented Senior Information System Security Engineer (ISSE) to join our team in Norfolk, VA. This is a hybrid position with 1-2 days onsite and 2-3 days remote. As an ISSE, you will have the opportunity to work on innovative and mission-critical and national security projects. You will collaborate with a skilled team of professionals, responsible for developing accreditation packages for cloud systems in both AWS and Azure environments. This position offers great opportunities for technical growth and improved experience in Cyber Security. Responsibilities include but are not limited to: Performing cyber security research under NAVSEA for cloud and network solutions Developing, defining, and aiding in implementing cyber security policies and processes Defining IS and Network Environment security requirements in accordance with applicable cybersecurity requirements Supporting A&A packages for multiple projects Applying security expertise to new modernization cyber solutions that provide confidentiality, integrity, availability, authentication, and non-repudiation for security policies and memorandum for records Developing Plan of Action and Milestones with proper Mitigations or Remediations, accordingly Developing approaches to mitigate IS and Cloud Network Environment vulnerabilities and recommend changes to network or network system components as needed Travel up to 25% Minimum Qualifications: Bachelor's degree in Computer Science, Information Technology, Engineering, or a related technical field, and 8+ years of relevant experience 5+ years developing secure solutions for incident response, business continuity, and disaster recovery 3+ years implementing security controls and policies with emerging cybersecurity technologies, including access control, privileged access management, data security, network security, data loss prevention, cloud security, vulnerability management, configuration management, privacy, and audits Must have an active Security+ certification Must be familiar with the use and operation of security tools including STIG Viewer, eMASSter, and Tenable Nessus and/or Security Center Experience with cloud brokerages, preferably Navy Knowledge and experience working with federal compliance and guidance, including FISMA, RMF, Federal Enterprise Architecture Framework, DoDAF, NIST Cybersecurity Framework, NIST 800 series, FedRAMP and cloud-based security controls Preferred Qualifications: Master's degree One of the following certifications: Certified Information Systems Security Professional (CISSP), CompTIA Advanced Security Practitioner (CASP) CE, Certified Secure Software Lifecycle Professional (CSSLP), CISSP- Information System Security Engineering Professional (ISSEP), or CISSP- Information System Security Architecture Professional (ISSAP) or an equivalent security certification Clearance Requirements: Must have an active Secret security clearance. Physical Requirements: The person in this position must be able to remain in a stationary position 50% of the time. Must be able to move around the office and operate office equipment. Frequently communicate with co-workers, management, and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

Outstanding long-term contract opportunity! A well-known Financial Services Company is looking for an Application Security Architect Local Candidates are preferred Contract Duration: 12 Months to start (Strong chance of FTE) w-2 only Successful candidate will: Engage and collaborate with application, service, and platform teams to derive a deep, detailed, and accurate description of their application architectures and the services and platforms they consume. Model the architectures in our threat modeling tool. Apply our threat modeling methodology to identify and prioritize threats to those applications and to apply mitigating controls. Review evidence (designs, configurations, and/or source code) of mitigations to threats. Propose solutions to mitigate threats. Publish and present threat modeling results. Collaborate with Cybersecurity Architecture in the creation of new mitigating controls where a sufficient mitigation does not previously exist for a threat. Required Qualifications: 4+ years of Systems Architecture and/or Systems Development experience 3+ years of Cybersecurity experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education, Cybersecurity certifications. 1+ years of engineering experience with Azure, GCP, or AWS. 1+ years of experience in Python programming. Proficient in at least one Threat Modeling methodology, such as STRIDE, PASTA, OCTAVE, LINDDUN, or VAST Experience using Threat Modeler, Microsoft Threat Modeling tool, or OWASP Threat Dragon to develop threat models Understanding of OWASP Top 10, CAPEC, MITRE ATT&CK and Secure Design principles The ability to juggle multiple threat models actively in the work-in-progress state, working with a sense of urgency, delivering with short cycle times and a high throughput without sacrificing quality. Strong collaboration and communication skills, and the ability to work effectively with cross-functional teams.

Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the #1 choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Security Governance Senior. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness of Information Security (IS) governance, IS risk management, and compliance programs within the Bank Technology Office. Collaborates with Information Technology (IT) and IS teams, business stakeholders, Compliance, Risk Management, Audit Services, and external parties to support IS governance and IS risk and compliance-based initiatives. Acts as a key liaison between the Association's IS function and various Bank business units, ensuring alignment with enterprise security policies and standards. Continuously monitors IS environments to identify emerging risks related to cybersecurity, infrastructure, applications, and third-party services. Provides consultative services across Bank. Provides expert insights on the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the Bank organization's specific needs and strategic objectives. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Conducts forward-looking risk assessments for new technology initiatives, system changes, and digital transformation projects. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Partners with and leads IT/IS teams to embed IS risk considerations early in the project lifecycle and ensure timely mitigation strategies. Leads the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the organization's specific needs and strategic objectives. Defines, maintains, and enforces IS policies, standards, and procedures to ensure compliance with relevant laws, regulations, and industry best practices. Ensures IS risk compliance with legal, regulatory, and contractual requirements, coordinating audits and assessments. Provides governance oversight for IS related initiatives, ensuring they adhere to established standards, policies, and risk management practices. Mentors junior members of the IS governance team, providing guidance and support in their professional development. Enhances, and maintains awareness of the risk governance framework and its elements (RCSA). Performs root cause analysis to determine likelihood, impact, and mitigation approaches of identified risks. Prepares metrics reporting and participates in the metrics refresh process. Maintains awareness of cloud computing principles and AI and understands potential IS risks inherent within this discipline. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. 6 years experience supporting IS governance, IS risk management, compliance, or IT audit activities In-depth knowledge and application of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST, CIS Controls and CMMC Experience working on and implementing IT and/or IS policies, standards, and procedures. Experience leading and coordinating IS audits and assessments and ensuring compliance with regulatory requirements. A strong understanding of regulatory and compliance requirements applicable to the organization. Ability to interpret complex IT/IS environments and detect early warning signals. Experience in identifying potential failure points and simulating risk scenarios. Proficiency in using data to identify trends, anomalies, and emerging risks. Understanding of cloud, cybersecurity, and digital transformation risks. Ability to articulate risk insights and influence stakeholders to take preventive actions. Familiarity with GRC platforms, vulnerability management tools, and risk dashboards. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $114,080-$218,030. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on USAAjobs.com. Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Cargill's size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way. We are a family company providing food, ingredients, agricultural solutions and industrial products that are vitalfor living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials - from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill. Job Purpose and Impact The Senior Professional, Application Data & Cloud Security job designs, implements and oversees security measures across development, security and operations, software as a service or platform as a service and multi-cloud environments. With minimal supervision, this job ensures the integrity, confidentiality and availability of data and applications, thereby supporting the organization's overall security posture and compliance with industry standards. Key Accountabilities SECURITY FRAMEWORKS: Designs and implements development, security and operations tools and processes as well as multi-cloud control capabilities to improve security posture across the organization. SECURITY CONTROLS: Designs and operates software as a service or platform as a service security controls to protect applications and data in cloud environments. DATA MANAGEMENT: Leads data lineage, data protection and flow controls to ensure secure data handling and compliance with regulations. CYBERSECURITY DELIVERY: Leads cybersecurity delivery to safeguard enterprise resource planning systems and associated data, assessing and suggesting preparation for potential risks. PERFORMANCE MONITORING: Leads performance monitoring to assess security measure's effectiveness and efficiency and recommend areas for improvement. DATA PRIVACY FUNCTIONS: Engages with the data privacy function during incidents to ensure compliance and mitigate risks. QUALITY ASSURANCE TESTING: Performs complex quality assurance testing and proposes continuous improvements to security processes and tools. PERFORMANCE METRICS: Quantifies, prepares and communicates business and functional performance against objectives, ensuring alignment with organizational goals and security standards. COLLABORATION: Cooperates with cybersecurity peers, data privacy partners, external experts, industry consortia, and other internal and external teams to maintain effective and efficient data protection fundamentals and deliver business objectives. Short Description This role is based out of Wayzata, MN. The expected salary for this position is $105,000.00 - $178,000. Compensation varies depending on a wide array of factors including but not limited to the specific location, certifications, education, and level of experience. The disclosed range estimate may be adjusted for any applicable geographic differential associated with the location at which the position may be filled. This position is eligible for a discretionary incentive award. The incentive award amount is dependent upon company performance and your personal performance. At Cargill we put people first. As part of your overall rewards, we offer a comprehensive benefit program including medical and/or other benefits dependent on the position offered and hours worked. Visit: learn more (subject to certain collective bargaining agreements for Union positions). Minnesota Sick and Safe Leave accruals of one hour for every 30 worked, up to 48 hours per calendar year unless otherwise provided by law. Qualifications Minimum requirement of 4 years of relevant work experience. Typically reflects 5 years or more of relevant experience. Equal Opportunity Employer, including Disability/Vet.

We are seeking a skilled Security Engineer with strong Networking and Compliance experience to join our team in Millennia. This position is required to reside in the vicinity of our Durham, NC Data Center. In this role, you will be crucial in maintaining the integrity and security of our network systems, ensuring privacy and security controls within processes, assets, and data flow within our healthcare-focused environment Responsibilities: · Maintain and manage all processes systems supporting Millennia's security posture. · Monitor, manage, and implement security infrastructure to support organizational needs · Monitor logs and alerts to identify incidents. Perform and or document Root Cause Analysis and remediation on Security Incidents. · Monitor network performance and troubleshoot issues and Security Incidents. · Plan, manage, and execute system upgrades and weekly patches to all endpoints. · Develop and enforce security policies to protect sensitive patient data. · Conduct regular system audits and vulnerability assessments. · Provide technical support for network-related issues to staff and clients. · Maintain documentation of network configurations and procedures. · Stay updated on industry trends and emerging technologies · Collaborate with IT teams to integrate new technologies into existing systems. · Provide hand-on support to our offices and data center. Qualifications: · Strong knowledge of network and security administration, controls, protocols, and best practices. · Experience with SOC2 or HITRUST, and HIPAA Security and Privacy Rule. · Proven experience as a Network Administrator or similar role. · Proficiency in configuring firewalls, routers, and switches, encryption protocols, and certificates. · Familiarity with cybersecurity principles and incident response strategies. · Excellent problem-solving skills and attention to detail. · Exceptional communication skills and ability to work independently and collaboratively in a team-oriented environment. · Experience with cloud computing platforms (AWS, Azure) is a plus. Relevant certifications (e.g., CCNA, CompTIA Security+) are preferred

Headquartered in Charlotte, NC, and founded in 2012 by visionary minds shaping the future of banking and payments in the US, Finzly makes bank transformation radically simple. Our core-independent platform is trusted by some of the market's leading financial institutions to transform operations and launch new products and services at speed. We've been recognized with 20+ industry awards in the last two years - including three years in a row as one of the Best and Brightest Places to Work as well as accolades for Best Parallel Core Technology, Best Corporate Payments Solution, Best Payments-as-a-Service Provider, and Best Trading System. Quite simply, Finzly is known for being the best in everything we do, giving you the perfect opportunity to grow your career with impact. About the Role: Finzly is currently seeking a highly motivated Chief Information Security Officer to join our dynamic team based in Charlotte, NC. We are in search of an individual who thrives in a fast-moving environment and contributes to a team that embraces continuous delivery practices and places a strong emphasis on enhancing the customer experience. This role entails extensive collaboration and teamwork across various teams and organizational boundaries, playing a pivotal role in engineering services that consistently exceed customer expectations. Our ideal candidate is a self-driven individual who excels at multitasking and flourishes as part of a collaborative team. Furthermore, we are seeking someone who possesses a genuine enthusiasm for exploring cutting-edge technologies, driving innovation, and thriving in a startup environment. If you're passionate about being part of a forward-thinking team, we encourage you to apply. Responsibilities: Build and maintain effective relationships with business and technology stakeholders. Partner with the stakeholders across the company to raise awareness of risk management concerns. Develop and enhance an information security management framework (such as ISO, SOC2, etc.) Assist with the overall business technology planning by providing a current knowledge and future vision of technology and systems. Mitigate the risks various security threats pose to the organization's mission and goals. Developing secure business and communication practices, objectives, and metrics. Ability to develop and interpret standards, policies, and procedures and analyze systems and procedures, write and review standards and procedures, handle multiple projects. Work with external audit firms to achieve and maintain compliance accreditations. Manage client security assessments and develop internal security training programs and maintain materials for end-users. Stay current on security practices, threat landscape, laws, and regulations. Knowledge of network security threats and ability to implement preventative controls including firewalls, access controls, authentication systems, intrusion detection systems, VPNs, cryptography, etc. Ability to resolve advanced security issues in diverse and fast-paced environments. The ability to build good relationships at all levels and across all business units and organizations, and the ability to influence stakeholders of all levels. Requirements: Minimum of 10 years of experience in a combination of risk management, information security, and IT jobs. 2 to 4 years of CISO experience at any bank with over $20B in asset size. OCC expertise is preferred. Advanced knowledge in the information security domain. Experience implementing an internal information security program preferred. Knowledge of common information security management frameworks, such as ISO/IEC 27001/27002, and NIST. Experience with Zero Trust Security tools like Zscaler is desirable. Familiarity with security tools such as SecureFrame and KnowBe4 is a plus. Excellent written and verbal communication skills and high level of personal integrity Innovative thinking and leadership with an ability to lead and motivate cross-functional teams. Specific experience in Agile (scaled) software development practices. Experience with cloud hosting environments such as AWS, Azure, etc. Experience in implementing SOC2 compliance is an added advantage. Specific experience in Agile (scaled) software development practices. Experience with cloud hosting environments such as AWS and Azure. Experience in implementing a SOC2 compliance is an added advantage. Qualifications: Bachelor's degree in information systems, business administration or a technology-related field is required. Professional security management certification is essential. What We Offer: Full Benefits Package - medical, dental and vision coverage with HSA option Healthcare FSA and Dependent Care FSA Company-paid Life Insurance Company-paid Long-Term Disability Paid Holidays and generous Paid-Time Off Stock Options 401k Savings Retirement Plan Short Term Disability, Critical Illness and Accident Insurance Wellness Programs including Employee Assistance Program Annual Cash Bonus and more!

The Cybersecurity Engineer is responsible for the technical implementation and management of cybersecurity measures. This role involves extensive hands-on work with security technologies, developing and maintaining security protocols, and ensuring the protection of sensitive data. The Cybersecurity Engineer collaborates within the various IT teams to integrate security solutions into business projects and solutions, while supporting overall compliance with HIPAA regulations. Technical Implementation: Architect, deploy, and maintain enterprise-grade security technologies, including firewalls, intrusion detection/prevention systems, encryption platforms, and vulnerability management tools. Implement and support security controls for network infrastructure such as routers, switches, and wireless access points. Configure, administer, and secure Active Directory and Azure AD environments. Deploy and oversee endpoint protection platforms and Security Information and Event Management (SIEM) solutions. Manage Microsoft 365 security capabilities, including conditional access, data loss prevention (DLP), and advanced threat protection. Evaluate, test, and recommend new security tools, processes, and technologies to strengthen the organization's security posture. Security Operations: Continuously monitor systems for security events, investigate alerts, and respond to incidents with appropriate documentation. Perform ongoing risk assessments and vulnerability scans to identify exposures and drive remediation efforts. Lead technical response efforts during security incidents or breaches in coordination with the incident response team. Administer and monitor Identity and Access Management (IAM) systems to ensure secure and appropriate access. Conduct routine vulnerability assessments and threat analysis to support continual improvement. Perform digital forensics and incident response activities as needed. Compliance: Ensure adherence to HIPAA and all applicable regulatory and security standards. Design and implement technical safeguards that protect sensitive information and support organizational objectives. Collaboration: Partner with IT and business teams to embed security controls into systems, applications, and workflows. Educate and support staff on cybersecurity awareness, best practices, and evolving threats. Documentation: Create and maintain accurate documentation for security configurations, procedures, and incident activity. Remain informed on current cybersecurity trends and recommend enhancements to existing controls. Security Audits: Plan and conduct scheduled and ad-hoc security audits to validate adherence to security policies and standards. Security Standards and Policies: Develop, review, and update security policies and standards in alignment with industry best practices and regulatory requirements. Security Infrastructure Maintenance and Monitoring: Configure, troubleshoot, and maintain security-related hardware and software. Implement and manage monitoring tools to detect intrusions and potential security breaches. Security Strategy Development: Support the planning, execution, and ongoing refinement of the organization's information security strategy. Adhere to organizational policies, procedures, and safety standards; complete required training annually; contribute to performance goals and quality improvement initiatives. Perform additional duties as assigned. Minimum Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related discipline required. Minimum Experience: Ten (10) years of overall IT experience, including at least five (5) years of hands-on cybersecurity leadership with demonstrated success designing, engineering, and deploying security solutions in an enterprise environment. Certifications: Relevant industry certifications such as CISSP, CISM, CISA, CCSP, CEH, Microsoft Azure Engineer, or equivalent are required.

MANTECH is seeking a motivated, career and customer-oriented Information System Security Engineer (ISSE) to join our team in Chantilly, VA. Responsibilities include but are not limited to: Maintaining, updating, and configuring logging/auditing tools across Sponsor networks and ensuring all network defense capabilities are kept current, patched, and securely configured Designing, testing, and integrating new security products as directed. Beta testing new capabilities when directed, and conducting software testing as required Maintaining a robust library of documentation, to include network diagrams for cyber defense capabilities and sensors, and making documentation available to all personnel with appropriate need-to-know Providing engineering support for all primary systems, such as network-based intrusion detection/prevention Maintaining, updating, and conducting routine vulnerability scanning across all Sponsor networks Ensuring all parts of the infrastructure are in compliance with patching/hardening requirements. Maintaining system baselines and configuration management items, including security event monitoring policies. Analyzing data flows into, out of, and across Sponsor networks to identify and rectify any security gaps Minimum Qualifications: Bachelor's degree and at least 3 years of experience with Risk Management Framework, JSIG, or similar security frameworks Department of Defense (DoD) 8570 Compliant, IAT Level III within 6 months of hire date Experience with Splunk continuous monitoring Must have the ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel, and industry partners. Strong Analytical and Critical Thinking Skills, Interpersonal and People Skills, Leadership Skills, Listening Skills, Multi-Tasking Ability, Communication Skills, Organizational Skills, and Presentation Skills. Preferred Qualifications: Experience with STIGs, EvaluateSTIG, ACAS, NESSUS, and other vulnerability compliance verification tools. Experience with scripting languages (PowerShell), application development (Java, Perl, Python, .NET), databases and analytical tools Experience with security and operational related use cases is desired Clearance Requirements: Must have an active DoD TS/SCI with the ability to obtain a polygraph. Physical Requirements: The person in this position must be able to remain in a stationary position 50% of the time. Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers, via email, phone, and or virtual communication, which may involve delivering presentation

At INVOKE, we specialize in driving digital transformation through Intelligent Automation. Our global teams collaborate seamlessly to deliver innovative, scalable, and impactful automation solutions. We're now looking for a UiPath Architect with deep expertise in Document Understanding to lead high-value automation initiatives. Role & Responsibilities Act as a Subject Matter Expert (SME) in UiPath Document Understanding, guiding solution design and implementation. Architect and deliver end-to-end Intelligent Automation solutions using UiPath, with a strong focus on unstructured data processing. Lead client workshops and design sessions to capture business requirements and translate them into automation strategies. Build and optimize reusable automation frameworks, components, and exception handling mechanisms. Collaborate with business and technical stakeholders to identify automation opportunities and define solution roadmaps. Mentor developers and consultants on UiPath best practices, especially around Document Understanding, AI Center, and ML models. Evaluate change requests and provide effort estimates and technical recommendations. Support pre-sales and proposal development with technical insights and solution design. Required: Bachelor's degree in Computer Science, Engineering, or related field. 8+ years of experience in automation and software development, with 4+ years in UiPath. Proven expertise in UiPath Document Understanding, including OCR engines, taxonomy design, and ML extractor training. Hands-on experience with UiPath AI Center, Action Center, and Orchestrator. Strong programming skills in Python, C#, or VB.NET. Familiarity with processing PDFs, scanned documents, invoices, forms, and other unstructured data types. Excellent communication and stakeholder engagement skills. Ability to lead technical discussions and mentor junior team members. Customer-centric mindset and collaborative approach. Note: Must be willing to travel approximately 25% of the time.

Qualified candidate will develop and be responsible for SD, DD and CDs (in CAD and REVIT) for high-quality projects of different scales for high-end luxury residential, hospitality, embassy, retail and commercial office projects. Candidate will also manage most aspects of CA. Candidate will perform in conjunction with Principals and team members to maintain project quality, profitability, performance and client satisfaction. Full-time position in our Tyson's Corner/McLean office. Roles and Responsibilities Minimum 9 years of U.S. experience with IBC and IRC with an emphasis on high-end residential projects. Other experience, such as hospitality, embassy, retail and commercial office projects a plus. Minimum Bachelor's Degree in Architecture Architectural Registration not required but ideal. Strong familiarity with DC/VA/MD local building codes, zoning, accessibility, and generally knowledgeable in jurisdictional processes and possess knowledge of best practices within the design and construction industries. Essential knowledge of engineering disciplines to coordinate work with outside consultants. Extensive experience in construction document preparation, familiarity with project specifications, as well as field observation. Must have capability to design, detail and produce CAD or Revit drawings from SD through CD's with minimal supervision. Strong knowledge of building codes, zoning, accessibility, and generally knowledgeable in jurisdictional processes and possess knowledge of current building codes and best practices within the design and construction industries. Capability to design, detail and produce CAD and REVIT drawings from SD through CD's with minimal guidance. Extensive experience in construction document preparation, familiarity with project specifications, as well as field observation required. Strong communication, interpersonal and team building skills. Organize and perform multiple tasks concurrently and efficiently. AutoCad & MS Office proficiency required, 3DS Max proficiency and REVIT preferred. LEED AP preferred. Individuals with creative insight looking for professional growth and responsibility should apply to **********************. ACG is an EOE.

We are an architectural firm who helps talented designers grow their careers rapidly in an empowering creative culture. We focus on creating a culture of personal and professional growth, ownership, enjoyment and fulfillment. We are currently searching for an Architect with 3-10+ years of experience to work out of our Greenville office. Expected salary range to be commensurate with experience. This position is for our residential team. EXPECTATIONS: A professional degree in Architecture Experience in all phases and aspects of a project deliverable Experienced with building codes, specifications, building and engineering systems Advanced knowledge of project design and construction documentation production Highly skilled in Revit, CAD, Sketchup, Bluebeam, Microsoft, and Lumion Strong Verbal and written communication skills Problem solving skills, organized attention to detail, willingness to mentor others Collaborative and professional work ethic ESSENTIAL DUTIES AND RESPONSIBILITIES: Understands and consistently executes all aspects of the design process and project complexities to proactively contribute to the overall success of the team while adhering to firm and project goals and standards of excellence in design Coordinates project documentation execution, construction plans and details, ensuring quality control and completion on small and mid-scale projects in accordance with MHK standards and checklists Responsible for documentation coordination and leading project team assignments. Lead coordination with consultants and constructability Develop creative and innovative design ideas, concepts, and solutions while participating as an integral member of the design team Executes applicable agency review analysis (DRB, Site Plan Applications, etc.) Conducts and documents field observations to monitor progress of construction Implement a creative approach to complete tasks and responsibilities on projects within the scope of schedule and budget in an organized, timely, and consistent way Ability to serve as primary client contact upon request while effectively coordinating with team members, consultants, and contractors Analyze product research and identify material selections Take an active role in crafting client and non-client design presentations and prepare corresponding materials Advanced understanding of planning, programming and design principles and methods Understands and responds to the technical implications of design decisions Prepares reports and specifications; reviews completed reports, plans, cost estimates and calculations Performs construction administration duties (e.g. RFI's, Submittals, change orders, etc.) Developing awareness of evolving building technology and systems Take increasing ownership on tasks within project teams and studio activities Empower junior staff and their growth May manage and mentor staff as assigned Foster an approachable environment with open communication within team and with designated team lead BENEFITS: Medical, Vision, Dental Insurance Paid Time Off + 10 paid holidays 401k, life insurance and disability insurance We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status or any other characteristic protected by law.

Knoxville, TN | Cybersecurity Engineer | Full-time We are actively recruiting a Cybersecurity Engineer for our client in Knoxville, TN. This is a hybrid direct placement opportunity that will require some onsite work in Knoxville. The successful candidate will be responsible for the design, implementation, and ongoing management of advanced cybersecurity measures to protect sensitive data, systems, and networks. This role involves hands-on work with a wide range of security technologies, development and enforcement of security protocols, and proactive risk mitigation. The engineer collaborates with cross-functional IT teams to integrate security solutions into enterprise projects and ensure compliance with applicable regulatory requirements, including HIPAA. Must have a minimum of five years' experience in cybersecurity engineering, with a proven track record in designing and implementing security solutions within an enterprise environment. Due to client request, candidates must be eligible to work in the United States without sponsorship. Equal Opportunity Employer/Veterans/Disabled

Lumen connects the world. We are igniting business growth by connecting people, data and applications - quickly, securely, and effortlessly. Together, we are building a culture and company from the people up - committed to teamwork, trust and transparency. People power progress. We're looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. The Role This position is a senior role implementing Managed Security Services (MSS) in a Federal Security Operations Center (FedSOC) environment. The SOC function is to provide customers with constant monitoring, protection, prevention, and detection services as well as reporting and incident analysis based on events collected from multiple sources. This position will be responsible for providing technical expertise to design and implement DDoS Mitigation for Lumen Federal Customers. This position will provide subject matter expertise to DoD customers on worldwide DDoS threats and issue posture and assessment reports This Lead Information Security Engineer position operates in a supportive role implementing security, technology, and innovation in the Federal Security Operation Center (FedSOC) environment. The Security Operations Center operates 24x7x365. This role performs security event management functions - monitoring, detection, triage of security events and alerts in associated monitoring systems. Facilitates the ingress, implementation, and egress of advanced client trouble / change requests for the Lumen managed DDoS product. The Lead Information Security Engineer is expected to perform as technical lead, including basic managerial duties, escalation support and on-call. Provides mentoring, training, and escalation support for Junior Engineer SOC personnel. The Main Responsibilities Subject Matter Expert on DDoS attacks, mitigation and threat analysis. DDoS worldwide intelligence collection, analysis, reporting and dissemination. Threat Feed research, recommendation, implementation and Administration. Interface with DDoS service vendors. Expertise in DDoS attack tools and countermeasures. Perform complex changes within the managed security environment. Manage and resolve customer service faults, outage, and impairment events. Monitor, triage, and respond to alerts for client security events. Investigation and resolution of impairment scenarios on Managed DDoS Security products. Research and implement customer generated change requests for Managed DDoS Security products. Generate incident cases and escalate to Operation Engineering and IPNOC teams in accordance with time and severity-based SLA's. Performs tasks associated with the installation, turn up and maintenance of Lumen security infrastructure. Present as technical expert delivering solutions to clients, internal business, and third-party vendors. Develop enhancements to existing solutions, promote creation of new tools, processes, and applications Directly support, train and mentor tier I and II colleagues Possess exceptional customer service skills Multi-task during events Communicate effectively with managers, customers, and vendors Maintain solid working relationships, including collaborative technical activities with peers Strong written and verbal communication skills Analytical and problem-solving skills Attention to detail with good organizational capabilities Prioritize with good time management skills Demonstrate collaboration/cooperation with other Service Assurance teams outside of the SOC (IP/Ethernet, Transport, etc.) Regularly observed communication with peers and other functional SOC teams on selected collaboration platforms (Teams, Email, phone, etc.) Work within multiple ticketing platforms and accept/update/close tickets in order received. If not previously approved, candidate must be willing to submit for a T/S clearance with SCI What We Look For in a Candidate Qualifications & Skills: Required (education/experience/skills/competencies): Candidate must be a US Citizen with an active TOP SECRET clearance Preferred: 5-7 years in a Security Operations environment. Experience with Cyber Threat Intelligence and interface with intelligence community. Experience with writing reports and making presentations to customers. Certifications In specific security technologies such as Fortinet, Arbor, Radware, Palo Alto, Cisco or Checkpoint. Demonstrated understanding of Denial-of-Service concepts and attack vectors, and mitigation options. Demonstrated proficiency in routing and networking skills, including the ability to: Troubleshoot BGP and BGP community strings Review and analyze packet captures Trace customers or attack traffic through our global backbone Understand and be able to modify policies/prefix lists on multiple router platforms Troubleshoot GRE Tunnels issues Stay abreast of new attack vectors and interface with customers, other SOC engineers, and Ops Engineering regarding new vectors and mitigation techniques. Expert level knowledge and skills of at least one programming language (python preferred) Security industry certifications (examples): CISSP CRISC CISM Security+ CCNA ACIA CCNA CEH ITIL Foundations Compensation This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors Location Based Pay Ranges: $114,082 - $152,109 in these states: VA Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's: Benefits Bonus Structure #LI-FP1 Onsite What to Expect Next Requisition #: 340274 Background Screening If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page. Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Equal Employment Opportunities We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. Disclaimer The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name. Application Deadline 12/06/2025

Azure Cloud Architect 4 (Must be local to Richmond, VA) REPLACING 778459. Pls note: The mgr has not been able to find candidates with the combination of SR level technical experience as an Azure Cloud Architect along with solid communications skills needed for this role. Candidates so far have not been about to clearly articulate the experience that is on their resume during the interviews. Pls make sure you are technically vetting anyone you plan to submit and make sure they are not using any AI tools to assist them during your vetting process. **Pls note: Mgr will do initial Virtual (Web based IV) but reserves the right to do a follow up IN PERSON interview if they deem necessary. Pls make sure your candidate is aware. Lastly, pls note that some on site is REQUIRED; do not submit if they cannot agree to this arrangement. Sr Azure Cloud Architect ON SITE REQUIRED: 2-3 days/week (parking available on site at no cost for contractors) DURATION: 1 year expected ABOUT THE ROLE/DAY TO DAY RESPONSIBILITIES: Azure Architect will be advising agency on architecture and security concerns associated with Azure including in-place migrations/refactoring. Architect will need to make recommendations on lift and shift and on-premise to cloud native migrations. Architect will need to make recommendations with refactoring within Azure environment. Architect will need to conduct testing within Azure to show minimal viable product of an architecture. Architect will need to understand available offerings from COV, MSI and other connected parties. Architect will make configurations to Azure in support of agency-level objectives. Configurations will be primarily to Azure-based services. Architect will need to sign Non-Disclosure Agreement. Skill Required / Desired Amount of Experience Strong knowledge of cloud fundamentals Required 5 Years Knowledge of single and multi-cloud strategies and implications Required 5 Years Knowledge and experience in designing cloud solutions encapsulating all aspects of design that meet business requirements. Required 5 Years Strong knowledge and experience with Azure network and storage architectures Required 5 Years Strong knowledge and experience with Azure Services (examples Azure Key Vault, Entra ID, etc.) Required 5 Years Strong knowledge and experience with Azure Functions, Azure Web App/App Service, Containers, micro-services architecture and server-less architecture. Required 5 Years Demonstrated knowledge of cloud security principles including zero-trust, network segmentation, just-in-time access, conditional access etc. Required 5 Years Knowledge of availability options. Demonstrated experience architecting solutions that meet RPO and RTO objectives in Azure. Required 5 Years Effective documentation writing. Candidate should be able to write professional documentation including position papers, architecture documentation a Required 5 Years Experience in managing cloud-based security posture activities including vulnerability remediation, perimeter defense architecture, encryption in tran Required 5 Years Knowledge and experience in DevOps including Azure DevOps and GitHub Enterprise Cloud. Required 5 Years Knowledge and experience in data storage products like SQL Server, Oracle. Knowledge of non-relational data storage products like Cosmos DB. Required 5 Years Experience as a on-premise architect 5+ years Required 5 Years Strong communication skills. Candidate should be able to effectively communicate with technical and business staff. Required 5 Years Microsoft Certification in Azure Solutions Architect (Pls upload cert under reference tab) Required 2 Years

Complete Description: ABOUT THE ROLE/DAY TO DAY RESPONSIBILITIES: Azure Architect will be advising agency on architecture and security concerns associated with Azure including in-place migrations/refactoring. Architect will need to make recommendations on lift and shift and on-premise to cloud native migrations. Architect will need to make recommendations with refactoring within Azure environment. Architect will need to conduct testing within Azure to show minimal viable product of an architecture. Architect will need to understand available offerings from COV, MSI and other connected parties. Architect will make configurations to Azure in support of agency-level objectives. Configurations will be primarily to Azure-based services. Architect will need to sign Non-Disclosure Agreement. Required Skills & Qualifications: Skills Required/Desired Amount Of Experience Strong knowledge of cloud fundamentals Required 5 Years Knowledge of single and multi-cloud strategies and implications Required 5 Years Knowledge and experience in designing cloud solutions encapsulating all aspects of design that meet business requirements. Required 5 Years Strong knowledge and experience with Azure network and storage architectures Required 5 Years Strong knowledge and experience with Azure Services (examples Azure Key Vault, Entra ID, etc.) Required 5 Years Strong knowledge and experience with Azure Functions, Azure Web App/App Service, Containers, micro-services architecture and server-less architecture. Required 5 Years Demonstrated knowledge of cloud security principles including zero-trust, network segmentation, just-in-time access, conditional access etc. Required 5 Years Knowledge of availability options. Demonstrated experience architecting solutions that meet RPO and RTO objectives in Azure. Required 5 Years Effective documentation writing. Candidate should be able to write professional documentation including position papers, architecture documentation a Required 5 Years Experience in managing cloud-based security posture activities including vulnerability remediation, perimeter defense architecture, encryption in tran Required 5 Years Knowledge and experience in DevOps including Azure DevOps and GitHub Enterprise Cloud. Required 5 Years Knowledge and experience in data storage products like SQL Server, Oracle. Knowledge of non-relational data storage products like Cosmos DB. Required 5 Years Experience as a on-premise architect 5+ years Required 5 Years Strong communication skills. Candidate should be able to effectively communicate with technical and business staff. Required 5 Years Microsoft Certification in Azure Solutions Architect (Pls upload cert under reference tab) Required 2 Years

Direct Hire- Unable to sponsor any candidates now or in the future. NO THIRD PARTIES PLEASE. The Security Engineer oversees the Company's SIEM infrastructure and managing critical security components such as Web Application Firewall (WAF), Domain Management, and Certificate Management. This role collaborates extensively across teams to ensure robust security monitoring, incident response, and proactive threat detection. The role requires oversight of SIEM technologies, WAF management, DNS management, certificate lifecycle management, and incident response. The Experience and Skills You Bring: We are looking for a Security Engineer that is self-motivated and capable of applying their knowledge, experience, and potential to a variety of applications across the entire organization. Our continued success relies on the onboarding of team members that operate with a high degree of integrity and quality in everything they do. We are looking for an experienced engineers to spearhead the implementation of our exciting new ideas. You won't be just fixing bugs or maintaining existing codebase - you will be building exciting new features, analyzing metrics, building security automation tools, and making important technical and product decisions. Your Primary Duties and Responsibilities: o Continually monitor and adjust cybersecurity tools o Assisting in creating annual Security Awareness training program o Monitoring security tools, automation platforms, tracks for compliance to CIS standards and Google best practices o Managing centralized logs, security dashboard and Google security tools and monitors for suspicious events o Performing vulnerability tests, risk analyses and security assessments o Assisting with conducting/responding to internal and external security audits, and analyzing security breaches to determine root cause o Writing and maintaining corporate security policies o Training fellow employees in security awareness and procedures Minimum Qualifications: o 5+ years of experience in working with GCP or equivalent cloud platform specializing in security services, automation and compliance o Understanding of CICD tools including Docker, Kubernetes, Terraform, Ansible. o Experience working with Linux operating systems, Bash/Python scripting o Excellent interpersonal skills required to interact at all levels of the organization and effectively present informational training and respond to inquiries. o Unmatched communication skills, teamwork skills, and a strong attention to detail o Minimum Bachelor's degree in IT or Computer Science o 3+ years of cybersecurity, threat intelligence or IT security experience, with one or more of the following cyber-security functions; Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection/Prevention, Monitoring, Incident Response, Vulnerability Management Preferred Qualifications: o Experience with CISSP, Google Cloud , Whitehat o CompTIA Security Professional certificates.

Location: Charlotte, NC or Jersey City, NJ (3 days a week onsite) -- Resource will choose which site HYBRID Schedule Business Hours: Monday - Friday normal business hours. Must have skills: LLM and Kubernetes Project Tasks: AI Operations Platform Consultant ● Experience deploying, managing, operating, and troubleshooting containerized services at scale on Kubernetes for mission-critical applications (OpenShift) ● Experience with deploying, configuring, and tuning LLMs using TensorRT-LLM and Triton Inference server. ● Managing MLOps/LLMOps pipelines, using TensorRT-LLM and Triton Inference server to deploy inference services in production ● Setup and operation of AI inference service monitoring for performance and availability. ● Experience deploying and troubleshooting LLM models on a containerized platform, monitoring, load balancing, etc. ● Operation and support of MLOps/LLMOps pipelines, using TensorRT-LLM and Triton Inference server to deploy inference services in production ● Experience deploying and troubleshooting LLM models on a containerized platform, monitoring, load balancing, etc. ● Experience with standard processes for operation of a mission critical system - incident management, change management, event management, etc. ● Managing scalable infrastructure for deploying and managing LLMs ● Deploying models in production environments, including containerization, microservices, and API design ● Triton Inference Server, including its architecture, configuration, and deployment. ● Model Optimization techniques using Triton with TRTLLM ● Model optimization techniques, including pruning, quantization, and knowledge distillation

Must Have Technical/Functional Skills In this role, the Architect is responsible for designing, implementing, and managing on-premises Active Directory and Azure Active Directory (AAD) environments. This position requires deep expertise in identity and access management, advanced troubleshooting, and architectural design for hybrid environments. Key Responsibilities Architecture & Design Define and manage technical standards for Active Directory and Azure AD. Design and implement secure, scalable identity solutions for hybrid environments. Develop IAM policies, standards, and procedures aligned with compliance requirements. Operations & Support Handle Level 3 (L3) activities: critical incident resolution, change management, and complex troubleshooting. Maintain and optimize AD infrastructure (DNS, GPOs, replication, FSMO roles). Monitor Azure AD Connect Health portal for sync alerts and performance analytics. Integration & Automation Configure and troubleshoot Azure AD Connect, synchronization policies, and staging servers. Implement SSO integrations using OAuth, OIDC, and SAML. Develop advanced PowerShell scripts and Graph API integrations for automation. Security & Compliance Implement MFA, Conditional Access, and Privileged Identity Management (PIM). Ensure compliance through periodic audits and reporting. Manage disaster recovery planning for AADC and ADFS environments. Collaboration & Governance Act as a trusted advisor for stakeholders and lead technical governance meetings. Provide knowledge transfer and mentoring to junior engineers. Participate in service reviews and strategic planning for IAM services. Required Technical Skills Active Directory (On-Prem) AD replication troubleshooting, schema updates, GPO management. DNS/DHCP provisioning and trust relationships. Azure AD Enterprise app registration, SSO configuration, certificate updates. Conditional Access, MFA, and identity lifecycle management. ADFS Federation setup, DR planning, certificate management. Automation PowerShell scripting for AD/AAD tasks. Experience with Microsoft Graph API for automation. Behavioral Competencies Strong analytical and problem-solving skills. Excellent communication and stakeh older management. Ability to work in Agile environments and lead technical initiatives. Strategic thinking and business acumen. Experience & Certifications Experience: Minimum 8-10 years in AD/AAD engineering and architecture. Certifications: Microsoft Certified: Azure Administrator Associate or Azure Solutions Architect Expert preferred. Domain Knowledge: Retail or enterprise IT environments is a plus.