Security architect jobs in California

About this Job Senior Threat Detection Engineer - Contract to hire (With strong intention of converting to full time permanent) - Remote in the U.S. (Must reside in the US) We're looking for a Security Detection Engineer. In this role, you will be responsible for the following: Improve alerting and monitoring coverage; reduce noise and increase signal fidelity. Advise on proactive security measures beyond standard policies and controls. Conduct hands-on threat hunting and investigate potential threats, including dark web intelligence. Manage and optimize the SIEM (Sumologic). Build and customize advanced queries, dashboards, and behavior-based risk scoring. Please Note: At this time, our client can only consider applications from U.S. Citizens and Green card holders. They are unable to offer visa sponsorship or work with C2C. Requirements: 5+ years of security experience, with at ideally 2-3 years focused on security operations or monitoring. Deep understanding of enterprise IT environments, systems, and user access processes. Hands-on experience with enterprise SIEM Sumologic with the ability to build dashboards, create custom queries, and manage detections across multiple systems. Experience analyzing and improving alerting, reducing noise, and increasing signal fidelity. Familiarity with Infrastructure as Code (IaC) concepts to support accurate detection; able to navigate IaC configurations. Background in SecOps, threat detection, or hunting preferred. Some Python scripting or programming experience. Understanding of cloud security concepts and secure system design. Knowledge of threat frameworks (e.g., MITRE ATT&CK) and attacker techniques. Must be a U.S. Citizen or Green Card holder. Why CyberSN? CyberSN is the leading Cybersecurity Jobs and Career Marketplace. We're dedicated to helping cybersecurity professionals find jobs they love and assisting companies in building strong, diverse teams. From our innovative online matching platform to our full-service recruitment solutions, we provide the tools and expertise needed to maximize career success and team performance.

Security Engineer | $120K + Bonus + Benefits | Fremont (ONSITE) A major player in the technology hardware industry continues to grow their Fremont campus which manufactures servers for all the top companies in Silicon Valley. Given their success and rapid growth, they are building out an IT Infrastructure team and are looking to add a Security Engineer. I have been working with hiring manager building out his team over the last year and hands-down one of most liked managers and this role offers great career experiences and mentorship. Key Skill Sets: Expertise in analyzing security logs and identifying incidents and suspicious activity. Strong understanding of operating systems, network protocols, architecture, and security vulnerabilities. Experience managing security technologies (SIEM, IDS/IPS, EDR, malware analysis, and protection) Knowledge of compliance frameworks (ISO 27001, NIST, SOC2, FedRAMP) and experience with audits a plus Azure environments Location: Fremont, CA (onsite with some flexible hours) Compensation: up to $120K base salary + Annual Bonus (base on individual/company performance) Benefits: Medical/Dental/Vision, Life/Disability Insurance, 401K (match), Flexible Spending Accounts, PTO, tuition reimbursement. (US Citizenship or Green Card required) If interested in joining a fun, highly collaborative team for a division that continues to grow rapidly, please apply!

Progressive healthcare company, located in the San Fernando Valley area of Los Angeles is seeking to hire a full-time employee in the position of Information Security Engineer. This is a hybrid work position, 3 days on-site in the office and 2 days' work from home Use your IT Security Engineer skills and experience in a mid to large enterprise IT environments and progress to the next level. Take your 6-10+ years' experience in IT Security Engineering along with Security Certifications and lead infrastructure and security engineering, including LAN's, WAN's, VPN's, Windows and Linux servers, routers, firewalls, and devices. You will design, develop, and deploy technical and applications security for cloud and on-premise, and research, identify, test, certify and select security products by evaluating business requirements. Also verify security systems using test scripts, Python, Bash, and PowerShell, conduct system security and vulnerability analyses and risk assessments, studying architecture/platforms, and identify integration issues and gaps. Be the first responder to direct the security team and mentor other team members. Strong experience with operating systems and database security, network technologies and security and network monitoring is required. You will also implement, monitor, and maintain enterprise security solutions like Endpoint, DLP, HIPS, IPS, SIEM/FIM, Anti-DDOS, WAF. Salary range for this opportunity is $140-150K+, plus excellent benefits and work environment, and hybrid work schedule. You must live within commuting distance to the San Fernando Valley area of Los Angeles area. No relocation allowance is available. All Candidates must be US Citizens or US Green Card Holders only. No exceptions! Please submit your resume now, as we are starting to schedule interviews.

Our client, a leader in Financial and Tax Software, is looking for someone to join their team as an Information Security Analyst. This role is hybrid in Mountain View, California. *This is a yearlong W2 contract with benefits offered* In this role, you will take ownership of assessing vulnerabilities, developing secure strategies, and ensuring system resilience while collaborating across technical and business teams. What You Will Be Doing Research, collect, and analyze data to identify and mitigate security threats and vulnerabilities Implement security principles and maintain compliance with strict privacy policies Conduct enterprise security assessments, monitor logs and traffic, and document incidents Coordinate technology updates and remediation efforts to minimize downtime Configure, analyze, and optimize security tools and software solutions Document, prioritize, and track key security metrics and incidents Collaborate with IT, data, and business stakeholders to ensure proactive protection of assets Required Skills & Experience Bachelor's degree 3+ years of similar experience Proficiency with SQL, Python, and data visualization tools Experience with LLM notebooks or other modern data frameworks Deep understanding of networking concepts and emerging security technologies Motion Recruitment Partners is an Equal Opportunity Employer, including disability/vets. All applicants must be currently authorized to work on a full-time basis in the country for which they are applying, and no sponsorship is currently available. Employment is subject to the successful completion of a pre-employment screening. Accommodation will be provided in all parts of the hiring process as required under Motion Recruitment Employment Accommodation policy. Applicants need to make their needs known in advance.

This is a fantastic opportunity to make a real impact helping to secure connected products used by millions around the world. Let's get the basics out of the way first: You must be a U.S. citizen or green card holder (in hand). No visa sponsorship, EAD, or OPT applicants, please. The role is 100% onsite in Newport Beach. Please only apply if you can commute or are open to relocating (relocation assistance available). What You'll Do Define and drive product security architecture and design for connected devices and IoT ecosystems Partner with engineering, product, and operations teams to integrate security from concept to deployment Conduct threat modeling, security assessments, and architecture reviews for IoT and embedded systems Lead secure SDLC initiatives, embedding security tools and processes into CI/CD pipelines Stay ahead of emerging IoT threats and provide expert guidance to mitigate evolving risks What We're Looking For ✅ 8+ years in product security, security architecture, or embedded systems security ✅ Proven experience designing and securing IoT or connected device architectures (medical device, smart home, or industrial IoT background a strong plus) ✅ Deep understanding of secure software development, cryptography, and hardware security principles ✅ Hands-on experience with IoT protocols (MQTT, CoAP), embedded security, and cloud-connected systems ✅ Familiarity with regulatory and industry frameworks (OWASP, NIST, EN 303 645, ISO 27001) Bonus: CSSLP, CISSP, or SABSA certifications, experience with SBOM tools, or Zero Trust design principles Join a forward-thinking security team where innovation meets purpose. Help secure the technology shaping the future of connected life.

WHO WE ARE: Headquartered in Southern California, Skechers-the Comfort Technology Company -has spent over 30 years helping men, women, and kids everywhere look and feel good. Comfort innovation is at the core of everything we do, driving the development of stylish, high-quality products at a great value. From our diverse footwear collections to our expanding range of apparel and accessories, Skechers is a complete lifestyle brand. ABOUT THE ROLE: Skechers is seeking a passionate Application Security Engineer to join our team and serve as a security champion who bridges the gap between development and security operations. This role is critical to strengthening our security posture by embedding security practices throughout the software development lifecycle and fostering a security-first culture across our development teams. The ideal candidate will be a hands-on security professional who thrives on collaboration, enjoys mentoring developers, and has the technical expertise to identify vulnerabilities while providing practical remediation guidance. You will play a pivotal role in scaling our application security program and ensuring our applications are secure by design. WHAT YOU'LL DO: Successfully integrate security practices into development workflows, resulting in measurable reduction of security vulnerabilities in production applications Conduct thorough security-focused code reviews that identify critical vulnerabilities while providing actionable feedback to development teams Establish and implement efficient processes for triaging, prioritizing, and tracking remediation of security findings with clear SLAs and accountability measures Enhance developer engagement through proactive security awareness initiatives, building trusted relationships that enable developers to implement secure coding practices throughout the development process. Assist with management and optimization of SAST, DAST, OSS, WAF, and other application security tools to maximize coverage and minimize false positives Provide analysis and support as needed during security incidents to contribute to faster resolution times WHAT YOU'LL BRING: Proficiency with application security tools including SAST, DAST, dependency scanning, and WAF technologies Strong understanding of common web application vulnerabilities (OWASP Top 10) and secure coding practices Experience with at least one programming language (Java, Python, JavaScript, C#, or similar) Knowledge of API security, authentication mechanisms, and authorization frameworks Familiarity with DevSecOps practices and CI/CD pipeline integration REQUIREMENTS: 3-5 years of hands-on application security experience with demonstrated expertise in secure code review Retail or e-commerce experience a plus The pay range for this position is $110,000-$155,000/yr USD.

A global consumer brand is seeking a Lead Information Security Analyst to lead enterprise-wide cybersecurity initiatives and elevate their security posture across both cloud and on-premises environments. Key Responsibilities Architect, deploy, and manage security solutions aligned with business goals and regulatory requirements. Lead strategic initiatives including Data Loss Prevention (DLP), Zero Trust architecture, Cloud Security, Network Segmentation, IAM, and Endpoint Security modernization. Oversee email protection platforms and gateway solutions to defend against phishing, malware, and data exfiltration. Implement DNS security controls to mitigate domain hijacking and malicious communications. Conduct threat detection, incident response, and post-incident analysis to ensure rapid containment and recovery. Manage vulnerability assessment and remediation programs, providing visibility into risk posture for leadership. Develop and refine incident response and disaster recovery plans to minimize disruption and enhance resilience. Establish and enforce security policies and standards based on frameworks such as NIST, CIS, ISO 27001, and SOX. Collaborate with IT, DevOps, and business units to embed security into system architecture and development pipelines. Lead security awareness initiatives to foster a culture of vigilance and reduce human-related risk. Continuously assess and improve security maturity through innovation in tools, processes, and governance. Utilize automation and orchestration to streamline detection, response, and compliance efforts. Mentor junior team members and advise cross-functional groups on secure design principles. Stay current on emerging threats and technologies to proactively strengthen defenses. Qualifications and Skills Bachelor's degree in Computer Science, Cybersecurity, or related field (Master's preferred). 7+ years of progressive experience in security engineering, architecture, or operations. Deep expertise in data protection, cloud security, email/DNS security, and identity management. Hands-on experience with Microsoft 365 security tools and email gateway platforms. Familiarity with DNS filtering and protection solutions. Proven success in leading awareness programs and advancing security maturity. Strong grasp of Zero Trust, vulnerability management, endpoint protection, and automation. Knowledge of security frameworks (NIST CSF, CIS Controls, ISO 27001, SOX). Experience with multi-cloud environments and DevSecOps practices. Scripting or automation skills (Python, PowerShell, Bash) preferred. Relevant certifications such as: CISSP, CISM, GIAC Microsoft Cybersecurity Architect Expert or Security Operations Analyst AWS Security Specialty CompTIA Security+, CySA+, CASP+ Azure Security Engineer Associate Excellent communication and leadership skills with the ability to influence across teams.

Led by Rodolphe Saadé, the CMA CGM Group, a global leader in shipping and logistics, serves more than 420 ports around the world on five continents. With its subsidiary CEVA Logistics, a world leader in logistics, and its air freight division CMA CGM AIR CARGO, the CMA CGM Group is continually innovating to offer its customers a complete and increasingly efficient range of new shipping, land, air and logistics solutions. Committed to the energy transition in shipping, and a pioneer in the use of alternative fuels, the CMA CGM Group has set a target to become Net Zero Carbon by 2050. Through the CMA CGM Foundation, the Group acts in humanitarian crises that require an emergency response by mobilizing the Group's shipping and logistics expertise to bring humanitarian supplies around the world. Present in 160 countries through its network of more than 400 offices and 750 warehouses, the Group employs more than 155,000 people worldwide, including 4,000 in Marseilles where its head office is located. CMA CGM Montreal is seeking a skilled Enterprise Security Architect to join the Global Cybersecurity team who will be responsible for designing and implementing security architectures and solutions for modern enterprise environments, with a particular focus on Artificial Intelligence (AI), Cloud technologies, and Identity and Access Management (IAM). This role is essential for ensuring the security, scalability, and resilience of our IT infrastructure, supporting organizational business goals and regulatory requirements. ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN RESPONSIBILITIES * Design and implement security architectures for cloud-based environments (private, hybrid, and public clouds), integrating modern security solutions to protect AI systems, cloud resources, and IAM frameworks. * Support security assessments for AI, cloud, and IAM technologies, ensuring that all enterprise systems comply with industry standards, security best practices, and organizational policies. * Collaborate with cross-functional teams (engineering, IT, business units) to define security requirements and integrate security features into AI, cloud, and IAM systems from development through deployment. * Help develop security roadmaps for AI and cloud environments, aligning security measures with evolving business needs, regulatory mandates, and emerging technologies. * Enable alignment with industry standards and regulations, including frameworks such as NIST, ISO 27001, GDPR, SOC 2, CIS, and cloud provider-specific standards. * Stay updated on emerging AI security risks, cloud vulnerabilities, and IAM threats to proactively address new challenges in the enterprise security landscape. * Evaluate and advise on new security technologies and approaches, helping drive innovation in AI security, secure cloud architectures, and IAM solutions. * Advise DevOps, cloud architects, and other IT teams to build secure, scalable, and high- performing infrastructures for AI applications, cloud workloads, and identity management solutions. * Contribute to security policies and best practices related to AI, cloud, and IAM to ensure consistency across the enterprise architecture. * Lead the adoption of defensible architectures in cloud and AI environments, ensuring the principle of least privilege is consistently enforced. QUALIFICATIONS ALL CANDIDATES MUST BE LEGALLY AUTHORISED TO WORK IN CANADA: VALID WORK PERMIT, PERMANENT RESIDENT OR CITIZEN Education * Bachelor's or Master's degree in Computer Science, Information Technology, Cybersecurity, or a relevant field. * Certifications CEH, CISSP, CISM, AWS Certified Security Specialty, Azure Security Engineer, or Certified Cloud Security Professional (CCSP) an asset Knowledge & Experience * 10 years of experience in security architecture, focussing on AI systems, cloud infrastructure, and IAM solutions in large and complex environments. * Proven experience in designing and implementing cloud security architectures for major cloud platforms (e.g., AWS, Azure, Google Cloud). * Experience in identity and access management, including working with IAM solutions such as Okta, Azure Active Directory, Ping Identity, and others. * Familiarity with the unique security challenges and regulatory requirements associated with AI systems and cloud-based services. * In-depth knowledge of NIST Cybersecurity Framework, ISO 27001, SOC 2, CIS, and cloud security best practices. * Expertise in securing large business applications in cloud environments, with experience in AWS, Azure, and Google Cloud. * IAM solutions, role-based access control (RBAC), single sign-on (SSO), multi-factor authentication (MFA), and identity federation. * Familiarity with AI security concerns, including model security, data privacy, adversarial machine learning, and securing AI-based applications. * Proven experience in leading security architecture and risk management for enterprise IT business applications and systems in maritime sector is an asset Soft Skills * Strong analytical and problem-solving skills, with the ability to identify and mitigate complex security risks across modern technologies. * Excellent leadership skills, with a proven ability to influence and collaborate with teams across technical and non-technical departments. * Ability to plan, organize, and drive security initiatives from conception through execution, managing competing priorities and timelines. * Excellent communication and presentation skills, with the ability to explain complex technical issues to both technical and business stakeholders. * Ability to work in a fast-paced environment * A proactive, self-driven, and results-oriented approach, with strong interpersonal skills and a collaborative mindset. * Fluent in English (French an asset) We thank all candidates for their interest in applying for this position and working at CMA CGM, please note, only those selected for an interview will be contacted. We are an equal opportunity employer! Come along on CMA CGM's adventure !

About the Hiring TeamTencent Overseas IT has the mission to empower Tencent's rapid global growth with future ready, global IT platforms, applications and services. We are chartered to lead the Overseas IT strategy, architecture, roadmap and execution. Satisfying our internal/external customers and becoming a world class global IT team are our top aspirations.What the Role Entails Tencent Overseas IT is committed to accelerating Tencent's international business growth and enabling its success through the deployment of cutting-edge technology platforms in IT services, cloud, security, and DevOps. As leaders in IT technology, we are responsible for defining and executing on Tencent's Overseas IT strategy, architecture, and roadmap. Our primary focus is to deliver exceptional value to satisfy the diverse needs of our internal and external customers, while striving to build a world-class global IT team. Responsibilities We're seeking a Principal Security Architect to drive the overall security architecture of Tencent overseas business. This role will work closely with foundation IT and Business teams to ensure compliance with security best practices, regulatory requirements, and internal policies. Key responsibilities include: Security Strategy and Planning: Defining and implementing the organization's security strategy, roadmaps, and long-term vision. Security Architecture Design: Developing and maintaining the overall security architecture, including defining security frameworks, standards, and controls. Incident Response: Participating in incident response activities, providing expertise in identifying, containing, and recovering from security incidents. Risk Management: Identifying and assessing security risks, developing mitigation strategies, and ensuring alignment with business objectives. Security Compliance: Ensuring compliance with relevant security regulations, industry standards (e.g., NIST, ISO 27001, HIPAA), and internal policies. Who We Look For Key Skills • Security Architecture Design: Ability to design and implement secure and scalable architectures across various environments (e.g., cloud, containerized, on-premises), including developing and maintaining threat models and security reference architectures, with a strong emphasis on Zero Trust principles. • Security Operations & Incident Response: Experience with Security Information & Event Management (SIEM) systems, vulnerability scanners, malware analysis, and handling security incidents. The ability to lead threat modeling activities and support penetration testing is also important. • Networking: In-depth knowledge of networking principles, including routers, switches, firewalls, load balancers, and wireless devices, as well as network security protocols and technologies like VLANs, VPNs, IDS/IPS, and network segmentation. • Cloud Security: Expertise in cloud security principles and technologies across major platforms like AWS, Azure, and GCP, including implementing security controls and best practices in cloud environments. • Identity and Access Management (IAM): Strong understanding of enterprise IAM systems, including platforms like Okta, SailPoint, and Active Directory (AD), and the ability to implement and manage secure access controls based on the principle of least privilege. • Data Protection: Knowledge of data protection methods like encryption, pseudonymization, and shuffling, and how to apply them effectively to safeguard against data corruption, compromise, and loss. • Security Testing & Analysis: Experience in conducting penetration testing, vulnerability assessments, ethical hacking, and risk analysis to identify and mitigate security risks. • Security Automation & DevSecOps: Hands-on experience with security automation tools and scripting languages (e.g., Python, Lambda, Terraform) to streamline security processes and embed security into CI/CD workflows and Infrastructure-as-Code (IaC) processes. • Security Tools & Technologies: Proficiency in using various security tools and technologies, including SIEM platforms, XDR, cloud-native threat detection tools, vulnerability scanners, and encryption tools. • Operating Systems: Experience with various operating systems, including Windows, Linux, and UNIX. • Application Security: Experience in web application security, OWASP, API security, and secure design and testing. • SaaS Security: Experience with SaaS permission management, experience with SSPM (SaaS Security Posture Management) • AI for Security: real word experience with AI/LLM/Agentic for security, especially adopt LLM in SIEM rule, SOAR optimization. • Scripting skills in Python, PowerShell or Bash Qualifications • Education: Typically, a master's degree in computer science, Information Security, or a related technical field is required. • Minimum of 10-12+ years of progressive experience in cybersecurity, including at least 5-7 years in a security architecture or senior-level engineering role. • Experience securing workspace and key enterprise systems, including IAM, e-mail, DevSecOps, SaaS, and back-office systems. • Essential soft skills: Analytical Thinking; Problem-Solving; Risk Management; Adaptability & Continuous Learning;Attention to Detail • Experience working with remote, globally distributed teams • Previous experience in the gaming industry is a plus. • Relevant certifications: Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) Certified Information Security Manager (CISM) AWS Certified Security - Specialty Other certifications like AWS Certified SA, Certified Ethical Hacker (CEH), CompTIA Security+, and GIAC Security Essentials Certification (GSEC) can also be beneficial. Location State(s) US-California-Palo AltoThe expected base pay range for this position in the location(s) listed above is $141,200.00 to $328,400.00 per year. Actual pay may vary depending on job-related knowledge, skills, and experience. Employees hired for this position may be eligible for a sign on payment, relocation package, and restricted stock units, which will be evaluated on a case-by-case basis. Subject to the terms and conditions of the plans in effect, hired applicants are also eligible for medical, dental, vision, life and disability benefits, and participation in the Company's 401(k) plan. The Employee is also eligible for up to 15 to 25 days of vacation per year (depending on the employee's tenure), up to 13 days of holidays throughout the calendar year, and up to 10 days of paid sick leave per year. Your benefits may be adjusted to reflect your location, employment status, duration of employment with the company, and position level. Benefits may also be pro-rated for those who start working during the calendar year.Equal Employment Opportunity at Tencent As an equal opportunity employer, we firmly believe that diverse voices fuel our innovation and allow us to better serve our users and the community. We foster an environment where every employee of Tencent feels supported and inspired to achieve individual and common goals.

Stefanini Group is hiring! Stefanini is looking for a Lead Information Security Architect for various locations across USA (Hybrid Role). For quick Apply, please reach out to Akash Gupta: ************/ ************************* W2 candidates only! Job Summary: Lead and produce system threat models for integration of commercial components into a data lake platform. Help design secure cloud architectures. Propose effective security controls within the environment and identify and mitigate security vulnerabilities. Simplify complex security topics, lead discussion in technical and business teams, communicate risk accurately. Responsibilities: Evolve and mature our models, templates, standards and procedures related to secure application development and secure application and cloud architecture. Ensure these artifacts are in alignment with policy and standards. Consult with our development teams to help them align with policy and standards and meet the risk appetite of the customer. Work with members of application development teams to review and create secure application and infrastructure designs and patterns. Assist development teams by reviewing threat models related to applications and related systems. Analyze potential business impact and exposure leading to risk, based on emerging security threats, vulnerabilities, configurations, threat actor TTPs, etc. Evaluate CICD pipeline design, and related development team processes and help to mature and secure creation, management and utilization of pipelines. Assist in identification and integration of security focused tooling into development and operations processes. Support secure application architecture within the System by fostering constructive dialogue and seeking resolution when confronted with discordant views. Solicit feedback and continuously improve your knowledge, skills and capabilities related to the position. Assist with recruiting activities and administrative work. Experience with AWS commercial or government cloud Experience securing critical workloads in a cloud environment. Knowledge and experience with Databricks, Starburst, Collibra and Immuta is advantageous. #LI-AG#LI-HYBRID Skills: Able to create AWS secure cloud architecture designs Understand current security threats, techniques, and landscape System threat modeling of applications and platforms Able to identify and provide mitigation for security vulnerabilities within applications and application environments based on threat models. Able to simplify complex security topics for consumption and critical decision making. Clear and accurate communication Able to lead/direct discussions with technical and business teams to achieve common goals. Able to work well within a team and support team goals Understand cyber security frameworks such as NIST 800-53 Ability to work on a geographically distributed team across multiple time zones Familiarity with SAFe a plus Requirements: Self-starter, able to readily explore and learn new areas and concepts. Knowledge and experience normally acquired through, or equivalent to, the completion of a Computer Science or Computer Engineering Bachelor's degree with a minimum of 5 years of job-related experience. Degrees in Computer Science or Engineering and/or relevant technically focused certifications in Cloud and/or enterprise security architecture such as GCAD or GDSA are advantageous Listed salary ranges may vary based on experience, qualifications, and local market. Also, some positions may include bonuses or other incentives. Stefanini takes pride in hiring top talent and developing relationships with our future employees. Our talent acquisition teams will never make an offer of employment without having a phone conversation with you. Those face-to-face conversations will involve a description of the job for which you have applied. We also speak with you about the process including interviews and job offers. About Stefanini Group: The Stefanini Group is a global provider of offshore, onshore and near shore outsourcing, IT digital consulting, systems integration, application, and strategic staffing services to Fortune 1000 enterprises around the world. Our presence is in countries like the Americas, Europe, Africa, and Asia, and more than four hundred clients across a broad spectrum of markets, including financial services, manufacturing, telecommunications, chemical services, technology, public sector, and utilities. Stefanini is a CMM level 5, IT consulting company with a global presence. We are CMM Level 5 company.

A client of Sharp Decisions if looking for a Security Architect. This role is ONSITE in Torrance, CA- a multi-year contract with no end date, W2 only. Daily Task Performed: * Security Design and Architecture: Knowledge of security design and architecture for organizational systems to meet defined cybersecurity needs; ability to embed security principles into the design goals while minimizing the risk from cyber security threats and vulnerabilities. * Cross-functional Collaboration: Knowledge of collaborative techniques and approaches; ability to promote a culture of continuous improvement and working together across functions to solve business problems and meet business goals. * Frameworks and Industry Standards: Knowledge of cybersecurity enterprise programs, policies, and standards to govern the organization's approach towards protecting their systems; Ability to align them with regulations, organization's context, operating environment, and cyber threats. Position Success Criteria (Desired) - 'WANTS' * IS related bachelors degree and/or equivalent work experience. * 5+ years of IT business work experience Desired Certifications: CISSP, CCSP, CCNP, CISA, or equivalent are highly desirable * Problem Solving: Knowledge of approaches, tools, techniques for recognizing, anticipating, and resolving organizational, operational or process problems; ability to apply knowledge of problem solving appropriately to diverse situations. * Conceptual Thinking: Knowledge of thinking and reasoning at a conceptual level; ability to identify the critical ideas and interdependencies among system elements that impact performance. * Cloud Security: Knowledge of tools, technologies, and processes of cloud security; ability to minimize security risks to secure cloud computing services. #LI-MM1

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive. F5 Distributed Cloud Platform is a world class, mission critical and highly reliable platform serving a global customer base. Our customers depend on us to keep their business highly available and secure around the planet. We are rapidly expanding our platform in many dimensions - global footprint, infrastructure, performance, low latency etc., We are looking for a hands-on, driven, results oriented Architect in our Platform Security organization. This organization is responsible for the build and life cycle management of Distributed Cloud platform with Secure first mindset. We build, engineer and evolve systems, tools and practices to ensure our Distributed Cloud is always protected from code to traffic. Responsibilities Design and implement a blueprint with Security First mindset for Distributed Cloud. Work closely with product and development teams to ensure software and product architectures are developed in line with the vision and future direction of the company. Drive architectural reviews, design validations, and threat models to ensure operational, security, and scalability concerns are addressed early. Work closely with Engineers and Managers to drive the engineering and deployment and operationalization of Distributed Cloud platform. Ensure the documenting and recording every aspect of Distributed Cloud. Planning, tracking and scheduling software deliverables. Ensure teams can identify problems within software systems and drive issues to resolution. Developing good working relationships with other employees and senior leadership. Engineer systems and tools to secure communication between On Prem and Public Clouds. Evolve Distributed Cloud to meet federally regulated standards - FedRamp, IL5, HIPAA. Build and Operate systems for data protection, identifying and mitigating threats from supply chains, external attacks. Required Qualifications Bachelor's degree in computer science or equivalent professional experience of 12+ years in architecture roles, with 5+ years in a Principal Architect capacity for a global SaaS or cloud platform in Security. Experience building and operating Products serving in Federal regulatory customers - FedRamp, IL5, HIPAA etc., Proven experience designing and operating multi-tenant, multi-region, highly available SaaS services at global scale. Deep technical expertise in CDN, edge computing, routing, load balancing, DDoS mitigation, and application layer security. Understanding of containers and orchestration technologies. Broad understanding of coding and programming languages. Extensive knowledge of the software development process and corresponding technologies. Excellent understanding of design patterns and architectural styles. Proficient knowledge of the operation and development designs of agile software. Strong soft skills, including attention to detail, problem-solving and communication skills. #LI-ZB1 The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change. The annual base pay for this position is: $234,400.00 - $351,600.00 F5 maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, geographic locations, and market conditions, as well as to reflect F5's differing products, industries, and lines of business. The pay range referenced is as of the time of the job posting and is subject to change. You may also be offered incentive compensation, bonus, restricted stock units, and benefits. More details about F5's benefits can be found at the following link: ******************************************* . F5 reserves the right to change or terminate any benefit plan without notice. Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or @myworkday.com). Equal Employment Opportunity It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.

QA Automation and Security Test Architect Job ID: 21-14390 Top must haves are: * 5+ years of experience as Automation Architect and doing web application security testing as per OWASP standards * 5+ years of experience designing, developing and executing Automation Scripts using Selenium * Ability to provide application security risk assessment of technologies stack used in cloud or web applications. TECHNICAL KNOWLEDGE AND SKILLS: * 5+ years of experience as an Automation Architect and doing web application security testing as per OWASP standards * 5+ years of experience designing, developing and executing Automation Scripts using Selenium * Knowledge and experience in other Automation tools (like QTP, Rational Robot, AutoIT) * Understanding and working knowledge with Data Driven, Keyword Driven and Hybrid frameworks * Knowledge of Defect Management Tool (Quality Center, JIRA) * Exploit application security flaws and vulnerabilities with attack simulations on multiple projects working against specific client-focused scopes of work. * Ability to provide application security risk assessment of technologies stack used in cloud or web applications. * Ability to perform application vulnerability assessments or application penetration testing, utilizing tools commercial and open source tools. * Perform, review and analyze security vulnerability data to identify applicability and false positives. * Create risk based security code reviews (Static, Dynamic and Interactive). * Conduct application security testing in line with OWASP (Open Web application Security Project) * Mentor junior engineers to build their skills and contribution levels * Write technical reports that include suggested resolution for identified problem areas and perform operational risk assessment. * Perform Proof of Concept testing and do evaluation of new security technologies and tools. * Assist and support Security Test Analysts as they perform vulnerability, network and network security assessments. * Experience DevOps tools like DynaTrace, Chef, Splunk and Vagrant. * Experience with scripting languages (e.g. python, PERL, SQL) a plus * Ability to perform below tasks: o Dynamic Application Security Testing (DAST) o Static Application Security Testing (SAST) o Interactive Application Security Testing (IAST) o Web Application Penetration Testing o Product Security Testing o Cloud Application Security Testing o Web Services Security Testing o Security Code Review o Network Security Assessment * Application Security Testing Tools: VeraCode, Synopsys, Contrast IAST, Burp Suite, Tamper Data, Live http Headers, Client Fortify, VeraCode, OWASP Top 10, N-Stealth, Hailstorm, Paros, SANS Top 20, Acunetix, Nessus * Fast learning, problem solving and analytical skills * Excellent communication, presentation, and interpersonal skills * Track record of good time management * Efficient in effort estimation, planning and prioritization * Ability to understand Business Requirements and transform them to functional units * Knowledge of SDLC and implementation * Knowledge of SoapUI * Proficiency in Java language * Proficiency in SQL * Job details *

**Title:** GRC Security Architect **Salary:** Up to $150K **About PSI** Join Us at PSI - Where You Belong, Grow, and Thrive! At PSI, we believe that people achieve their best when they feel they truly belong. That's why fairness and opportunity are at the heart of everything we do - not just words, but values deeply embedded in our culture and the full employee experience. We're proud to foster an environment where everyone is supported to reach their full potential. From your first day through every step of your journey with us, you'll feel the difference in how we work, grow, and succeed together. What You Can Expect From Us - We know that great work starts with feeling valued. That's why we've benchmarked all our roles against local market rates and why you'll always see salary details in our job postings. We believe in transparency, and we want you to feel confident that your next move aligns with your expectations. **About the Role** The GRC Security Architect plays a key role in supporting PSI's commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems. This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 - 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments. This role requires that the successful applicant have experience working on Federal projects, be a United States resident and be able to obtain Federal clearance. **Role Responsibilities** + Collaborating with Internal teams to ensure that secure systems and networks are designed and implemented. + Identify potential security vulnerabilities within existing and prospective systems and devise strategies to address them. + Working with internal teams ensure that our infrastructure and applications adhere to established security measures. + Identify security risks in our organization and come up with possible preventative measures. + Assess the organization's security status in order to identify areas that need improvement. + Stay up-to-date with the emergence of new security threats while continuously adopting the industry's best practices. + Collaborate with internal teams to embed Security by Design principles in Infrastructure, Development and DevOps practices, implementing a framework to ensure that security controls are documented for all systems as part of standard operating procedures. + Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization. + Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices. + Monitor and assess the effectiveness of security controls across business systems and processes. + Ensure alignment with client, regulatory, and internal compliance requirements. + Support the automation and continual improvement of GRC processes and tools. + Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership. + Support internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses. + Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives. + Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions. + Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities. + Support audit plans and compliance documentation for internal or external stakeholders. **Knowledge, Skills and Experience Requirements** + Experience working within, achieving and/or maintaining third-party attestations such as FedRAMP, SOC2, ISO27001 + Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended + Experience working on a Federal Program is essential and contributing to core document set eg SSP, ConMon reporting, POAMs, System Narrative, SCP, SIA + Experience implementing or maintaining FedRAMP Moderate Authorization is desirable. + Experience documenting security controls in Architecture diagrams is essential + Extensive training and experience in IT disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines + Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired + Certified training in security management, risk and compliance solutions and practices. CISSP, ISSAP, CISA, CISM, GSEC, or related certification(s) desirable. + Experience in a fast-paced GRC function (desirable). **Benefits & Culture** Alongside a competitive salary, we offer a comprehensive benefits package designed to support your well-being, your future, and your sense of purpose: + Retirement Benefits: 401(k), pension, or country-specific retirement plans with employer contributions + Generous Time Off: Enhanced paid time off/annual leave policies + Health & Wellbeing Coverage: Medical insurance tailored to your region, plus: + US: Dental, vision, life, and short-term disability insurance + UK: Medical cashback plan including dental, vision, and income protection + Flexible Spending Accounts (US) + Employee Assistance Program (EAP): Confidential support whenever you need it + Work-Life Balance: We understand life happens outside of work, and we fully support flexibility + Wellness Culture: Regular global wellness initiatives to help you stay healthy and inspired + Future Planning: Tools and support to help you grow personally and professionally + Giving Back: Enjoy a Volunteer Day each year and opportunities to support our communities and industry At PSI, we're more than just a workplace - we're a global team driven by shared values and real impact. If you're ready to be part of a company that's committed to your growth and well-being, we'd love to hear from you. Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights (**************************** notice from the Department of Labor.

We are seeking a seasoned SAP Security professional to join our team in supporting and enhancing enterprise security across a diverse SAP landscape. The ideal candidate will bring deep expertise in managing security roles, authorizations, and governance for a variety of SAP modules, including experience with modern S/4HANA environments. Key Responsibilities: Design, implement, and maintain SAP security roles and authorizations across multiple SAP platforms including ECC, BW, BPC, CRM, BusinessObjects (BOBJ), and Solution Manager. Collaborate with functional and technical teams to assess access requirements and deliver secure, compliant solutions. Participate in full lifecycle SAP implementations, providing hands-on security configuration and ensuring alignment with business and compliance requirements. Support system audits and implement corrective actions related to access and compliance. Assist in the development of security policies and best practices for SAP systems, including risk analysis and segregation of duties (SoD). Contribute to S/4HANA migration planning and execution with a focus on securing new and transitioned environments. Required Qualifications: 8+ years of hands-on experience in SAP Security administration across a variety of SAP applications (ECC, BW, BPC, CRM, BOBJ, and Solution Manager). Demonstrated involvement in at least two full-cycle SAP implementations in a security-focused role. Experience supporting a full end-to-end S/4HANA migration project, with an emphasis on security role design and transition. Strong understanding of user provisioning, role-based access controls, GRC tools, and SoD principles. Excellent communication skills and ability to work cross-functionally with both technical and business stakeholders.

Hello, Greetings for the day, We have an urgent job opening for a SAP Security Consultant in San Francisco, CA. Please find the complete below and consultant information details below to the job description. Duration: 5Months+ Job Title: SAP Security Duties: Provides the technical guidance in development of security roles and authorizations to SAP projects and production support for R3, BW, EBP, SMP, PI, AII/OER systems Ensures development and maintenance of SAP roles and authorizations are aligned with enterprise security best practices and corporate standards Delivers and manages overall SAP security standards and designs Works closely with SAP functional and technical teams in the identification and resolution of gaps in the security authentication and authorization processes Provides day-to-day support for GRC 5.3 CUP, FireFighter Works closely with security and technical teams in architecting and implementing Identity and Security best practices in SAP environment; Partners with teams in support of internal and external auditing of SAP environment Performs annual SAP licensing for all the systems onsite Skills: Minimum of 5 years of experience implementing and delivering SAP Security Solutions; Must have strong demonstrated knowledge of SAP Security and experience with GRC Analysis and Administration. Experience in implementing/upgrading/managing SAP GRC Access Controls, Access Risk Analysis and Emergency Access Management a plus; Must have excellent troubleshooting and resolution skills; Strong attention to detail. Strong technical knowledge of SAP Security architecture and role based authorization models; Strong analytical, problem solving and conceptual. Strong oral and written communication skills, with an ability to express complex technical concepts; Strong understanding of data privacy concepts. Strong Security and Risk mitigation mindset.Understanding of process re-engineering, segregation of duties, application security implementation, security auditing techniques Keywords: Education: Bachelor's degree in Computer Science or related field, OR equivalent combination of education and/or experience Skills and Experience: Required Skills: AUDITING MITIGATION PROBLEM SOLVING SAP Security GRC Additional Skills: RE-ENGINEERING RISK ANALYSIS ARCHITECTURE SAP SECURITY SECURITY ARCHITECTURE SECURITY IMPLEMENTATION SOLUTIONS AUTHENTICATION EBP MAINTENANCE R3 Thanks & Regards, Srikanth ************ 800 W, Fifth Avenue, Suite 208A Naperville, IL - 60563 " A Certified MBE & Women's Business Enterprise Alliance (WBEA)" Additional Information All your information will be kept confidential according to EEO guidelines.

Are you a hands-on security leader ready to make a measurable impact in a mission-driven organization? We're looking for a Director of Information Security to lead and scale our security operations, incident response, and engineering efforts. In this role, you'll oversee our security ecosystem - from real-time monitoring to proactive threat hunting - and help shape the future of enterprise security at a growing company. This is a highly collaborative position where you'll work cross-functionally with teams across the business to protect our information assets, infrastructure, and services - especially within a SaaS and life sciences environment. What will you do? Shape and drive the enterprise security operations strategy in alignment with broader company goals. Serve as a trusted advisor to senior leadership on all things security. Manage our Security Operations Center (SOC), ensuring rapid incident detection, triage, and response. Oversee threat intelligence, vulnerability management, and operational risk mitigation initiatives. Partner with IT and engineering teams to deploy, tune, and optimize tools like SIEM, SOAR, EDR, and DLP. Implement automation and integrations that improve speed and efficiency. Lead cyber incident response efforts and continuously test and improve our disaster recovery and response plans. Coordinate cross-functional teams (e.g., Legal, HR, Communications) during major security events. Lead, mentor, and grow a high-performing team of security and infrastructure professionals. Support the development of a resilient, inclusive, and learning-driven culture across the department. Align programs with regulatory standards (HIPAA, SOX, GDPR, PCI-DSS) and frameworks (NIST, MITRE ATT&CK). Support audits and ensure documentation is ready and accurate. How will you get there? Bachelor's degree in Computer Science, Information Security, or related field (Master's a plus). 12+ years of relevant experience, including 4+ years leading teams in complex enterprise environments. Hands-on expertise in SOC management, incident response, and threat intelligence. Experience in the Medical Device, Life Sciences, or highly regulated industries preferred. Professional certifications such as CISSP, CISM, GIAC, or CEH. Proficiency with security tools including SIEM, EDR, SOAR, IDS/IPS, and vulnerability management platforms. Strong knowledge of cloud (AWS, Azure, GCP), Windows/Linux systems, and network protocols. Familiarity with security frameworks and standards (NIST, MITRE, ISO 27001). Proven ability to build, lead, and retain high-performing technical teams. A proactive, solutions-oriented mindset with excellent communication and collaboration skills. #GKOSUS

Role Purpose The Director of Information and Data Security will establish and lead Eltropy's IT and Cybersecurity function, responsible for developing foundational systems, processes, and governance across infrastructure, data protection, and compliance. This leader will drive security maturity across the organization, balancing hands-on execution with long-term strategic planning, and partnering with external GRC consultants to build a scalable security and compliance framework aligned with industry standards (e.g., SOC 2, ISO 27001). Key Responsibilities IT and Infrastructure Security * Oversee endpoint management, asset inventory, and identity and access management (IAM). * Establish standards for device hardening, patch management, and secure configuration. * Define and manage the budget for all security and IT tools, services, and human capital, ensuring cost-effectiveness and alignment with the overall security roadmap. * Implement centralized visibility and control across systems and SaaS applications. Cybersecurity and Data Protection * Lead threat detection, vulnerability management, and incident response operations. * Implement and maintain a Cloud Security Posture Management (CSPM) solution to monitor cloud infrastructure (AWS/Azure) for misconfigurations and compliance issues. * Deploy and tune SIEM/XDR solutions to enhance visibility and threat detection across environments. * Conduct regular penetration testing, track remediation, and drive security awareness programs. * Define and enforce data protection policies covering classification, encryption, and retention. Governance, Risk, and Compliance (in partnership with GRC Consultant) * Partner with external GRC consultants to design and operationalize Eltropy's information security and compliance framework. * Translate consultant-driven recommendations into actionable internal controls, policies, and monitoring mechanisms. * Manage the Third-Party Risk Management (TPRM) program, including vendor due diligence, security questionnaires, and ongoing risk monitoring. * Maintain a centralized risk register and oversee remediation tracking. * Own operational compliance for frameworks such as SOC 2, ISO 27001, and GDPR. Security Architecture and Product Collaboration * Work closely with Engineering and Product teams to embed security-by-design principles in SaaS architecture and cloud deployments. * Implement automated security testing (SAST/DAST) within the CI/CD pipeline to shift security left and reduce vulnerabilities early in the development lifecycle. * Review architecture and third-party integrations to ensure alignment with data security and privacy standards. Incident Management and Business Continuity * Establish and operationalize the company's Incident Response Plan (IRP) and Business Continuity/Disaster Recovery (BCP/DR) framework. * Conduct tabletop exercises and post-incident reviews to enhance preparedness and learning. Security Awareness and Culture * Develop and implement a company-wide security awareness program. * Partner with HR and Operations to ensure onboarding/offboarding includes security compliance and periodic training. * Foster a security-first culture emphasizing accountability and vigilance across teams. Leadership and Department Setup * Build and lead a high-performing IT and Security team, including IT administrators and cybersecurity engineers. * Define structure, roles, and hiring priorities aligned with the company's growth stage. * Create a phased roadmap for security maturity, including technology adoption and process optimization. Key Performance Indicators (KPIs) * Security Tool Coverage: Achieve at least X% deployment and agent coverage across all corporate and cloud assets within the first 6 months. * Vulnerability Remediation: Maintain average time-to-remediate critical and high vulnerabilities below X days. * Compliance Milestones: Achieve SOC 2 / ISO 27001 readiness within agreed timelines. * Asset Visibility: 100% endpoint and asset inventory completeness. * Incident Management: Reduction in mean time to detect (MTTD) and mean time to respond (MTTR) for incidents. * Team Ramp; Process Setup: Completion of key hires and operational processes within the first year. Requirements * Independent, self-starter with strong ownership and execution bias. * Ability to prioritize and execute in a resource-constrained, fast-paced SaaS environment. * Strategic thinker with operational depth; able to balance long-term maturity goals with immediate risk mitigation. * Excellent communication skills with the ability to influence and align cross-functional stakeholders. * Proven experience setting up IT or cybersecurity programs in a SaaS or technology environment. * Strong understanding of endpoint protection, cloud infrastructure security (AWS/Azure), IAM, and network security. * Experience with SIEM and/or XDR deployment and tuning for threat detection and monitoring. * Familiarity with CSPM, SAST/DAST, and vulnerability management tools. * Knowledge of GRC frameworks (SOC 2, ISO 27001) and translating them into practical, auditable controls. Reporting to: VP of Operations Level: Senior Leadership Direct Reports: * IT Team * Cybersecurity Engineer(s)

LinkedIn is the world's largest professional network, built to create economic opportunity for every member of the global workforce. Our products help people make powerful connections, discover exciting opportunities, build necessary skills, and gain valuable insights every day. We're also committed to providing transformational opportunities for our own employees by investing in their growth. We aspire to create a culture that's built on trust, care, inclusion, and fun - where everyone can succeed. Join us to transform the way the world works. Job Description At LinkedIn, our approach to flexible work is centered on trust and optimized for culture, connection, clarity, and the evolving needs of our business. This role may be remote or hybrid. At LinkedIn, hybrid roles are performed both from home and from a LinkedIn office on select days, as determined by the business needs of the team. Remote roles are performed from the designated home work location upon time of hire, and any changes to this home work location requires a review of remote status and approval. LinkedIn's members entrust us with their information every day and we take their security seriously. Our core value of putting our members first powers all the decisions we make, including how we manage and protect the data of our members and customers. We never stop working to ensure LinkedIn is secure. We follow industry standards and have developed our own best practices to stay ahead of the increasing number of threats facing all Internet services and infrastructure. LinkedIn is looking for an experienced Engineering Manager to lead the Detection Engineering team in the US and to be an integral part of our Information Security organization. The Detection Engineering team is responsible for developing and maintaining threat detection capabilities, security monitoring systems, and detection rules to protect our infrastructure, applications, and, most importantly, our members. This is a key role in supporting and growing our security detection and monitoring capabilities. Responsibilities: Leadership and Team Management * Lead and manage the detection engineering team, including hiring, training, and mentoring team members. * Develop and maintain detection engineering policies, procedures, infrastructure, and guidelines. * Coordinate and oversee all activities of the detection engineering team during threat detection development and implementation. Detection Development and Management * Serve as the primary point of contact for all threat detection development and enhancement initiatives. * Ensure timely development, testing, and deployment of detection rules and monitoring capabilities. * Conduct post-deployment analysis and create detailed reports on detection effectiveness with KPIs, including tuning recommendations and optimization strategies. Communication and Coordination * Communicate detection development status, updates, metrics and reporting, and capabilities to senior management, stakeholders, and security teams regularly. * Coordinate with internal and external teams, including security operations, defense infrastructure, incident response, and product engineering teams to develop and maintain effective detection capabilities. * Develop and maintain an effective detection engineering communication plan. Continuous Improvement * Continuously evaluate and improve detection engineering processes, tools, and capabilities. * Conduct and report on regular detection testing and validation exercises to test and refine detection rules and monitoring systems. * Stay current with emerging threats, attack techniques, and detection technologies to enhance the detection engineering program. Reporting and Documentation * Maintain comprehensive documentation of all detection rules, including development rationale, testing results, and performance metrics. * Prepare and present detection engineering reports and metrics to senior leadership and stakeholders. * Ensure compliance with regulatory requirements and industry standards related to threat detection and monitoring. Training and Awareness * Develop and deliver detection engineering training programs for team members and other relevant personnel. * Promote security detection awareness and best practices across the organization. * Ensure the detection engineering team is up-to-date with the latest tools, techniques, and procedures. Budget and Resource Management * Manage the detection engineering budget and allocate resources effectively. * Evaluate and recommend tools, technologies, and services to enhance the detection engineering program. * Ensure the team has the necessary resources and support to perform their duties effectively. Qualifications Basic Qualifications: * Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related technical discipline, or equivalent practical experience. * 1+ year(s) of management experience or 1+ year(s) of staff level engineering experience with management training. * 7+ years of experience in cybersecurity, with a focus on detection engineering, security monitoring, threat intelligence, incident response, or related security roles. * Experience leading or managing a cybersecurity, incident response, or detection engineering team. * Experience in cybersecurity frameworks and standards (e.g., NIST, MITRE ATT&CK, OCSF). * Experience in detection engineering tools and technologies (e.g., Query Languages, CI/CD, YARA, Sigma rules, threat intelligence platforms). * Experience with threat analysis, detection rule development, automation engineering, and security monitoring optimization. * Project management experience with managing budgets and resources. Preferred Qualifications: * Master's degree in Cybersecurity, Information Assurance, or a related field. * 10+ years of experience in cybersecurity, with significant experience in detection engineering, threat intelligence, or incident response. * 3+ years of management experience in building small to medium-sized teams, demonstrating growth and a track record of successful deliveries. * Ability to work under pressure and manage multiple detection development projects simultaneously as well as managing an oncall team. * Relevant certifications (e.g., CISSP, CISM, GCIH, GCFA, SANS). * Experience in developing and delivering detection engineering training and awareness programs. * Strong proficiency in Kusto Query Language (KQL) and SQL. * Proficiency in programming or scripting languages (e.g., Python, Go, etc.) for automating detection development and testing processes. * Experience with cloud security and detection engineering in cloud environments especially Azure. * Knowledge of advanced threat detection techniques, including threat hunting and behavioral analysis as well as applied threat intelligence. * Familiarity with detection engineering frameworks and best practices (e.g., Sigma, YARA, STIX/TAXII, OCSF). * Strong communication skills, both written and verbal, with the ability to convey complex technical information to non-technical stakeholders. Suggested Skills : * Security Information and Event Management (SIEM) * Query languages (KQL, SPL, SQL, Elastic, etc.) * Detection Rule Development (YARA, Sigma) * Scripting and Automation (e.g., Python, PowerShell, SQL) * Threat Intelligence Integration * Cloud Security (e.g., Azure, GCP) You will Benefit from our Culture We strongly believe in the well-being of our employees and their families. That is why we offer generous health and wellness programs and time away for employees of all levels. LinkedIn is committed to fair and equitable compensation practices. The pay range for this role is $152,000 - $248,000. Actual compensation packages are based on a wide array of factors unique to each candidate, including but not limited to skill set, years & depth of experience, certifications and specific office location. This may differ in other locations due to cost of labor considerations. The total compensation package for this position may also include annual performance bonus, stock, benefits and/or other applicable incentive compensation plans. For additional information, visit: ************************************** Additional Information Equal Opportunity Statement We seek candidates with a wide range of perspectives and backgrounds and we are proud to be an equal opportunity employer. LinkedIn considers qualified applicants without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, marital status, pregnancy, sex, gender expression or identity, sexual orientation, citizenship, or any other legally protected class. LinkedIn is committed to offering an inclusive and accessible experience for all job seekers, including individuals with disabilities. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful. If you need a reasonable accommodation to search for a job opening, apply for a position, or participate in the interview process, connect with us at accommodations@linkedin.com and describe the specific accommodation requested for a disability-related limitation. Reasonable accommodations are modifications or adjustments to the application or hiring process that would enable you to fully participate in that process. Examples of reasonable accommodations include but are not limited to: * Documents in alternate formats or read aloud to you * Having interviews in an accessible location * Being accompanied by a service dog * Having a sign language interpreter present for the interview A request for an accommodation will be responded to within three business days. However, non-disability related requests, such as following up on an application, will not receive a response. LinkedIn will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by LinkedIn, or (c) consistent with LinkedIn's legal duty to furnish information. San Francisco Fair Chance Ordinance Pursuant to the San Francisco Fair Chance Ordinance, LinkedIn will consider for employment qualified applicants with arrest and conviction records. Pay Transparency Policy Statement As a federal contractor, LinkedIn follows the Pay Transparency and non-discrimination provisions described at this link: ******************************** Global Data Privacy Notice for Job Candidates Please follow this link to access the document that provides transparency around the way in which LinkedIn handles personal data of employees and job applicants: ********************************************