Security architect jobs in Chesterfield, MO

Systems Engineer IV Scott AFB, IL, USA Full-time FLSA Status: Exempt Clearance Requirement: Secret Founded in 1989, SOSi is among the largest private, founder-owned technology and services integrators in the defense and government services industry. We deliver tailored solutions, tested leadership, and trusted results to enable national security missions worldwide. Job Description Overview SOS International LLC is seeking a [TITLE] to join our team in [work location]. A Systems Engineer is responsible for designing, implementing, and maintaining the systems and infrastructure necessary to support the technical operations of an organization. This role involves an in-depth understanding of both hardware and software components, as well as the ability to troubleshoot complex issues and provide innovative solutions. Essential Duties Perform technical engineering evaluations and assessments of high-risk Cross Domain Solutions (CDS) to determine the suitability and compliance of its components with Joint, DOD, and AF policies, and configuration and security guides. Determine the suitability of the CDS components and/or systems in relation to installation, modification, relocation, and/or removal. Conduct CDS technical engineering evaluations and assessments based on the Risk Decision Authority Criteria (RDAC) developed by the National Security Agency (NSA) for CDS hardware, software, firmware, and systems comprised of those components. Derive transfer processing threat, identity threat, policy threat and corresponding policy by-pass threat, and site mitigation risk ratings with sufficient justification to receive approval/authorization from CDS forums including: National Security Agency (NSA), Connection Approval Office (CAO), DoD Information Security Risk Management Committee (DoD ISRMC), Cross Domain Technical Advisory Board (CDTAB), National Cross Domain Strategy and Management Office (NCDSMO) Defense Security / Cybersecurity Accreditation Working Group (DSAWG) community. Accomplish documentation detailing the transfer processing risk introduced by a CDS to include measures taken to protect the confidentiality, availability, and integrity of information before and after it transits the CDS as well as data at rest. Identify and provide mitigation recommendations in the environment in which the CDS will operate Interpret scan and test results and Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs). Recommend risk mitigations to ensure CDSs meet an acceptable level of risk for issuance of an Authority to Operate (ATO). Conduct extensive reviews of technical documentation including CDS Appendices, CDS Validation Approval Requests, system topologies, Lab-Based Security Assessments (LBSA) and Site-Based Security Assessments (SBSA) plans and reports. Assess authenticator management, intrusion management, partner identity management, location security, and technology and data risk mitigations. Perform engineering studies in support of complex mission critical CDS systems and deliver draft technical documents, reports, briefings, and other correspondence to the government. Coordinate with Authorizing Officials (AOs), PMOs, user reps, and system owners to maintain Risk Management Framework (RMF) packages, conduct risk and vulnerability assessments, provide support to the CDS approval processes, and perform other IA support duties. Develop and submit recommended policy directives, instructions, manuals, standards, strategies, visions, mission statements, goals and objectives as they apply to CDS. Provide ad hoc reports and briefings with information such as metrics, meeting minutes, inputs for Joint Approval Boards, and updated status of operational CDSs. Travel Requirements: Travel between Scott AFB, IL and other CONUS/OCONUS locations may be required under this task order. Qualifications Essential Requirements Bachelor's degree in Communications or Security is mandatory. Active SECRET security clearance is a non-negotiable prerequisite. Minimum of four years of relevant professional experience is required. Demonstrated proficiency in National, DoD, and AF Information Assurance (IA) policies, procedures, and objectives is essential. DoD 8570.1 IAM Level II certification (CAP, CASP+CE, CISM, CISSP or Associate, GSLC, CCISO) is imperative. Extensive knowledge and experience in Security Engineering, Risk Assessments, and Network Architectures are crucial. Superior analytical and problem-solving capabilities are required, with the ability to diagnose complex technical issues and develop effective solutions. Exceptional verbal and written communication skills are necessary, including the ability to articulate technical concepts to non-technical stakeholders. Proven experience in managing multiple projects simultaneously, demonstrating strong organizational and time management skills. Meticulous attention to detail is critical to ensure the accuracy and reliability of system configurations and documentation. Demonstrated ability to work effectively in a team environment, with strong interpersonal skills and the capacity to establish positive working relationships with colleagues and stakeholders. Adaptability to evolving technologies and organizational needs is essential, along with a commitment to continuous learning and improvement. Comprehensive knowledge of cybersecurity principles and best practices, with the ability to implement and maintain robust security measures. Preferred Qualifications Advanced degrees or certifications in Systems Engineering, Network Engineering, or Cybersecurity will be viewed favorably. Additional Information Work Environment This position requires working in an office environment, with occasional travel to client sites or data centers. May require working outside regular business hours to perform maintenance or respond to emergencies. Ability to lift and move computer hardware and equipment as needed. Working at SOSi All interested individuals will receive consideration and will not be discriminated against for any reason.

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cloud Cyber Services team and become a member of the largest group of cybersecurity professionals worldwide. Recruiting for this role ends on 03/01/2026 Work You'll Do As a Cloud Security Architect (Manager), you will play an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber space. Responsibilities include: + Lead the overall delivery of Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection + Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for AWS, GCP, Azure and/or Oracle Cloud services + Function as the primary client day to day interface building rapport and trust with the client + Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the industry leading benchmarks + Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations + Assist clients with security frameworks, cloud configuration standards and resolving cloud vulnerabilities + Lead the execution of cloud security engagements during different phases of the lifecycle - assess, design, and implementation. + Lead engagements to perform technical health checks for cloud platforms/environments prior to broader deployments. + Oversee technical support for AWS, GCP, Azure and/or Oracle cyber services and resolve service-related issues through research and troubleshooting and working with vendors. + Conduct cloud security analysis, recommendations and configurations of prospective clients' platforms and environments based on Deloitte's Cloud Cyber Risk Framework. + Perform technical health checks for these cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines + Assist clients with transitions to using cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: MFA, SSO, Conditional Access, PIM, Security Operations tooling and scanning solutions + Assist clients with the deployment of third-party technologies to assist in securing the cloud platform such as firewall, WAF, PAM and cloud workload protection. + Assist clients with configuration and delivery of cloud security and compliance reports. + Provide technical support for AWS, Azure, GCP, Oracle, Wiz, Snyk and third-party security services and resolve service-related issues through research and troubleshooting and working with third-party vendors. + Implementation of industry leading practices around Azure, AWS, GCP, Wiz, Snyk and cloud security services for clients. + Designing and developing cloud-specific security policies, standards and procedures e.g., tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management, data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management. + Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. + Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. + Executing on cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post-implementation reviews. + Implementing industry leading practices around cyber risks and cloud security for clients. + Provide internal cloud and DevSecOps security technical training to Advisory personnel as needed. + Acting as a subject matter specialist on cloud cyber risk for the cloud platforms. + Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the cyber challenges they face. + Contribute to eminence activities, such as whitepapers pertaining to cloud security capabilities. + Support talent process in the manager role such as for recruiting and coaching. The team Deloitte's Cloud Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Qualifications: + 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in AWS, GCP, Azure, Oracle, Wiz and/or Snyk ; with a security focus strongly preferred + 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid) + 2+ years working experience designing cloud security architectures and strategies for enterprises + 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF + 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus + 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments + 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies + BA/BS Degree preferably in a Technical field (ex. Computer Science, Cyber Security, Information Security, Engineering, Information Technology) + Maintain strong domain knowledge of multi-hyperscaler cloud solutions and security concepts and technologies + Experience with and leading use of leading cyber tooling for cloud such as Wiz and Snyk + Limited sponsorship may be available Required: + Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle. Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices + Ability to travel up to 80%, on average, based on the work you do and the clients and industries/sectors you serve Preferred: + Previous Consulting or Big 4 experience preferred. + Industry or Vendor Security Certifications such as CCSP or other cloud architect domains + Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application + Experience designing IAM technologies and services + Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology + Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.) + Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc. The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200 to $265,600 You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. 'Information for applicants with a need for accommodation: ************************************************************************************************************ All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

We are seeking a Cyber Security Architect to join their team. As a Cyber Security Architect, you will be part of the Cybersecurity Department supporting the IT teams. The ideal candidate will demonstrate strategic thinking, technical expertise, and collaborative skills which will align successfully in the organization. **Job Title:** Cyber Security Architect **Location:** St. Louis, Missouri **Pay Range: 135K - 145K** We're seeking a skilled **Cybersecurity Architect/Engineer** to design and implement robust security solutions across both IT and OT environments. This role is ideal for someone who thrives in complex, hybrid infrastructures and is passionate about protecting critical systems from evolving threats. **What You'll Do** + Architect and deploy enterprise-grade cybersecurity solutions across IT and OT landscapes + Develop and maintain security architecture standards and documentation + Evaluate and implement technologies including SIEM, EDR, firewalls, IAM, DLP, DSPM, and Zero Trust frameworks + Ensure compliance with key regulatory frameworks such as NIST, ISO 27001, CMMC, and SOC 2 + Lead incident response efforts, conduct forensic investigations, and perform proactive threat hunting and risk assessment **What You Bring** + Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field + 4-7 years of progressive experience in cybersecurity, including at least 2 years in OT environments (e.g., manufacturing, energy, utilities) + Deep understanding of ICS/SCADA systems, PLC networks, and industrial protocols (Modbus, OPC UA, DNP3) + Hands-on experience with vulnerability assessments, network segmentation, IDS/IPS, and Zero Trust in OT settings + Advanced certifications such as **CISSP** , **CISM** , or **OSCP** are highly preferred **What's in it for me?** + Opportunity to work in a dynamic and innovative manufacturing environment + Engage in impactful projects that enhance organizational security posture + Collaborate with a diverse and talented team of professionals + Continuous learning and professional development opportunities + Be part of a company recognized for its commitment to diversity and ethical standards **Upon completion of waiting period consultants are eligible for:** + Medical and Prescription Drug Plans + Dental Plan + Vision Plan + Health Savings Account + Health Flexible Spending Account + Dependent Care Flexible Spending Account + Supplemental Life Insurance + Short Term and Long Term Disability Insurance + Business Travel Insurance + 401(k), Plus Match + Weekly Pay If this is a role that interests you and you'd like to learn more, click apply now and a recruiter will be in touch with you to discuss this great opportunity. We look forward to speaking with you! **About ManpowerGroup, Parent Company of: Manpower, Experis, Talent Solutions, and Jefferson Wells.** _ManpowerGroup (NYSE: MAN), the leading global workforce solutions company, helps organizations transform in a fast-changing world of work by sourcing, assessing, developing, and managing the talent that enables them to win. We develop innovative solutions for hundreds of thousands of organizations every year, providing them with skilled talent while finding meaningful, sustainable employment for millions of people across a wide range of industries and skills. Our expert family of brands -_ **_Manpower, Experis, Talent Solutions, and Jefferson Wells_** _- creates substantial value for candidates and clients across more than 75 countries and territories and has done so for over 70 years. We are recognized consistently for our diversity - as a best place to work for Women, Inclusion, Equality and Disability and in 2023 ManpowerGroup was named one of the World's Most Ethical Companies for the 14th year - all confirming our position as the brand of choice for in-demand talent._ ManpowerGroup is committed to providing equal employment opportunities in a professional, high quality work environment. It is the policy of ManpowerGroup and all of its subsidiaries to recruit, train, promote, transfer, pay and take all employment actions without regard to an employee's race, color, national origin, ancestry, sex, sexual orientation, gender identity, genetic information, religion, age, disability, protected veteran status, or any other basis protected by applicable law.

The Application Security Architect is responsible for designing, implementing, and maintaining the security of the company's applications, systems, and networks. The position requires expertise in security principles, methods, and technologies related to application development, deployment, and maintenance. The Application Security Architect is also responsible for conducting security assessments and audits, identifying vulnerabilities, and recommending solutions to mitigate risks. Essential Duties and Responsibilities Design and implement application security strategies, policies, and procedures that meet business and regulatory requirements. Work with software development teams to integrate security into the development process and ensure that applications are built securely from the ground up. Evaluate application code and conduct threat modeling to identify potential security risks and recommend solutions. Conduct vulnerability assessments and penetration testing to identify security vulnerabilities and weaknesses in applications, systems, and networks. Develop and maintain security metrics and key performance indicators (KPIs) to measure the security program's effectiveness. Collaborate with internal and external stakeholders to communicate security risks, guide best practices, and facilitate compliance with relevant security standards and regulations. Develop and maintain knowledge of emerging security threats, vulnerabilities, and technologies to proactively identify and mitigate security risks. Conduct security awareness training and education for employees to promote a security culture across the organization.

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Director, Tech Engineering to join our Tax Ignition Group. Responsibilities: * Lead the function of responding to clients' security inquires * Meet with clients to answer their security questions and negotiate compensating controls when there are gaps between client requirements and our product offerings * Drive innovation and improvement in the client security inquiry process such incorporating Artificial Intelligence into the process, creating additional collateral such as whitepapers, managing metrics, and improving the tooling and interactions with requestors * Partner with various groups within Tax's technology function and business teams to incorporate trends into product roadmaps; collaborate with other compliance teams, and raise awareness around client security requirements * Review and respond to client security questionnaires and assessments * Build and maintain a knowledge base of common client questions Qualifications: * Minimum ten years of recent experience in Information Technology (IT) security compliance, risk management or related IT security within a large IT organization, preferably within a professional services firm, software product, or other highly regulated environment * Bachelor's degree from an accredited college or university is preferred * Deep understanding of cloud architecture, modern software development, and technical security controls is required; Azure experience is preferred * Strong executive presence, negotiation, presentation, and communication skills are required; excellent analytical and problem-solving skills to assess complex security issues and develop effective solutions; capability to work effectively in a global environment, understanding diverse cultural perspectives and international client needs * Proven experience in client-facing roles, particularly in handling security inquiries, negotiations, and managing client relationships; demonstrated ability to drive innovation and continuous process improvement, particularly in integrating new technologies and methodologies into existing processes * Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards; CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL preferred * Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa KPMG LLP and its affiliates and subsidiaries ("KPMG") complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, KPMG is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year KPMG publishes a calendar of holidays to be observed during the year and provides eligible employees two breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at Benefits & How We Work. Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding KPMG's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Company Federal Reserve Bank of Boston Federal Reserve Financial Services (FRFS) delivers a suite of payments services to financial institutions via FedLine Solutions, FedNowSM, Fedwire, National Settlement Service (NSS), FedCash, FedACH (Automated Clearing House), and Check Services. We are currently leading a strategic effort to transform FRFS to a national, enterprise-focused organization. Through our evolved structure, we will meet the needs of the marketplace for new products and services more quickly, seek to provide a more robust and unified customer experience across our financial service offerings, and create new career growth opportunities for FRFS staff. The Federal Reserve has developed a new interbank 24x7x365 real-time gross settlement (RTGS) service with integrated clearing functionality, called the FedNow Service. This service enables financial institutions to provide their customers with the ability to send and receive payments any time, any day, and have full access to those funds within seconds. This position is a unique opportunity to be part of this mission-critical Federal Reserve initiative that is transforming the payments landscape in the United States. While open to location and remote work, residence near a Federal Reserve facility is preferred We are seeking a dynamic individual to fill the role of Security Architect & Developer, someone who not only embraces challenges but thrives in proactively solving them. If you are a self-starter with a passion for unraveling the root of issues, automating solutions, and approaching problems from a holistic perspective. In this role, you will be able to help design and implement the backbone of FedNow. Key Responsibilities * Develop code to automate security configuration management. * Build, test, and deploy cybersecurity relevant technical solutions. * Identify and address the root causes of issues, focusing on solving problem categories rather than individual instances. * Translate complex problems into manageable, actionable chunks that can be implemented and iteratively improved. * Utilize expertise in threat modeling to proactively identify and mitigate potential security risks and inform development efforts. * Represent a technologists point of view in selecting tooling and solutions. * Participate in agile activities with geographically dispersed agile delivery teams. * Proven ability to collaborate, build relationships and influence direct team members in a matrix-management environment. * Actively seek to remove barriers and improve security across the program. * Document solutions developed and the supporting processes. * Strong interest in current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape. * Identify and address the root causes of issues, focusing on solving problem categories rather than individual instances. Engage early and comprehensively. * Ability to submit sound product feature requests to drive the platform forward. Knowledge, Skills and Experience Required * Ability to program or script in Bash, Python, Java, or Go. * Ability to utilize tools like CI/CD Automation similar to TravisCI, CircleCI, Github Action, Gitlab Pipelines or AWS CodeDeploy. * Understanding of AWS capabilities, focusing on designing secure cloud architectures, implementing robust security controls within the environment, and identifying and mitigating security vulnerabilities based on threat models. * Experience securing critical workloads in a cloud environment. * Proven project management skills required to lead/direct technical and business teams to achieve common goals. * Ability to flexibly adapt to a rapidly changing environment and generate effective and innovative solutions to address change. * Experience working with the Agile framework is highly desirable. * Strong communication skills with ability to influence at all levels of the organization; ability to simplify complex security topics for consumption and critical decision making * Self-starter and ability to explore and learn new areas and concepts. * Ability to rapidly produce proof-of-concept code to demonstrate potential solutions. * Knowledge and experience normally acquired through, or equivalent to, the completion of a Computer Science or Computer Engineering Bachelors degree with a minimum of 3-7 years of job-related experience. Supervision * This position will not directly supervise employees. Other Considerations * Periodic Travel within U.S. may be required - 10-15% of time * This role may requires being on-call on a rotational basis, to address urgent issues outside of regular business hours. Salary The salary range for this position is $150,160 - $187,700 - $225,240. The Boston Fed believes in salary transparency. The final salary and offer will be determined by the applicant's background, skills, internal equity, and alignment with market data. Whether you're developing into the job or are a more seasoned candidate, we aim to pay competitively. If you reside outside of the 1st District, you may be hired by your local Federal Reserve District and compensation will follow hiring District's range and policy. The Federal Reserve Bank of Boston is committed to provide equal employment opportunities to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service. All employees assigned to this position will be subject to FBI fingerprint/ criminal background and Patriot Act/ Office of Foreign Assets Control (OFAC) watch list checks at least once every five years. For this job, any offer of employment is contingent upon successfully passing a two-phase security screening. The first phase consists of the satisfactory completion of a physical examination (including a drug screening), reference checks, and a security investigation consisting of credit and criminal history checks. The second phase, which might not be complete until after you begin working at the Reserve Bank, is an additional risk-based security screening determined by the risk rating of the position. Depending upon the sensitivity of the position, this phase may include, and is not limited to, work and residency eligibility verification, and personal interviews with the candidate, references, and prior employers. All applicants must have resided in the United States for at least three (3) years. Full Time / Part Time Full time Regular / Temporary Regular Job Exempt (Yes / No) Yes Job Category Information Technology Family Group Work Shift First (United States of America) The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences. Always verify and apply to jobs on Federal Reserve System Careers (************************************* or through verified Federal Reserve Bank social media channels. Privacy Notice

At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. The Boeing Company is looking for a Senior SAP Security Analyst to join the team in Seal Beach, CA; Huntington Beach, CA; El Segundo, CA; Long Beach, CA; Seattle, WA; Kent, WA; Renton, WA; Everett, WA; Miami, FL; Hazelwood, MO; or Berkeley, MO. We are seeking an experienced SAP specialist with deep SAP security technical skills and proven leadership, specifically within Aerospace & Defense (A&D) environments. The ideal candidate is a hands-on technical leader who will drive the evolution of our SAP Security program across complex, regulated SAP landscapes supporting manufacturing, Maintenance, Repair, and Operations (MRO), supply chain, defense contracting, and commercial aviation operations. You will bring strong expertise in SAP Governance, Risk, and Compliance (SAP GRC), Role-Based Access Control (RBAC), and Attribute-Based Access Control (ABAC), as well as user lifecycle management and identity provisioning. Experience implementing SAP security in large organizations and working within SAP S/4 landscapes is essential, along with a proven track record of leading cross-functional teams and enterprise security initiatives across multiple business units. In this role within the SAP S/4 Center of Excellence (COE), you will design, implement, and manage security controls to enhance the security posture, improve operational efficiency, and ensure regulatory compliance. You will analyze and resolve complex technical issues, standardize and document daily operating procedures and quick reference guides, and collaborate closely with technical resources and business partners to support security objectives. You will support your team with expertise in analyzing and resolving complex technical issues, standardizing and documenting daily operating procedures and quick reference guides, participating in identifying development opportunities for Security Analysts. Position Responsibilities: * Lead design, implementation, and operation of SAP security controls across SAP Enterprise Resource Planning Central Component (ECC) and S/4HANA environments, including role design, role mining, and role optimization * Provide expert guidance on RBAC and ABAC configuration for S/4HANA, Master Data Governance (MDG), SAP Global Trade Services (GTS), Business Warehouse (BW), HANA Database environments, and custom ABAP developments, review transportation and change controls for security impact * Ensure SAP RBAC and ABAC support export control data handling International Trade Arms and Regulations (ITAR), U.S. Export Administration Regulations (EAR), United Kingdom Ministry of Defense regulations (UK MOD) and program-specific access restrictions * Assist with attestation and evidence collection for internal audit, external auditors, Global Trade Compliance (GTC) reviews, and Sarbanes-Oxley Act (SOX) compliance reviews * Understand legal privacy requirements managing Personally Identifiable Information (PII) and General Data Protection Regulation (GDPR) requirements and how to apply appropriate security controls * Understand enterprise policies and processes and apply to SAP application RBAC and ABAC controls * Enforce, and continuously improve Segregation of Duties (SoD) rules and remediate violations in partnership with business process owners * Implement and manage privileged access controls, including privileged account discovery, monitoring, and logging * Drive security risk assessments, perform access reviews and attestations, and report compliance status to internal audit and external regulators * Stay current with SAP security best practices and help deploy roadmap items such as S/4HANA security hardening, Fiori security, and cloud or Software as a Service (SaaS) integration * Mentor, coach, and identify development opportunities for a team of SAP security analysts * Support incident response, investigate potential access breaches, and lead post-incident reviews * Document processes, update runbooks, standardize security implementation methodology and develop implementation playbook, and develop quick reference guides for user self-service Basic Qualifications (Required Skills/Experience): * 5 + years of experience with SAP Security and/or SAP GRC * 5+ years of experience in Role Based Access Control (RBAC) leveraging Panorama * 5+ years of experience with SAP S/4HANA, and ERP operational processes * 5+ years of Fiori experience * 5+ years of experience in SOX, SOX audits, process improvements, and policy creation * 5+ years of experience with cross-functional teams, involving key stakeholder relationship management Preferred Qualifications (Desired Skills/Experience): * Bachelor's degree or equivalent work or military experience * Active government clearance (e.g., Secret, Top Secret) * Certifications such as SAP Certified Technology Associate/Professional in security topics, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Identity and access management (IAM) related * Experience working for aerospace manufacturers, defense contractors, or on Department of Defense (DoD)/Federal Aviation Administration (FAA) programs * Experience with export control handling in SAP (data tagging, filtered views, master data partitioning) * Experience with NextLabs Data Access Enforcer, Format Preserving Encryption, and Dynamic Data Masking * Experience with SAP GRC Access Control (access risk analysis, business role management, emergency access management) * Experience building SharePoint site to document Security process, procedures, project playbooks, and quick reference guides to be consumed by project teams and end users Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. Pay & Benefits: At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Pay is based upon candidate experience and qualifications, as well as market and business considerations. Summary pay range: $129,200 - $187,450 Applications for this position will be accepted until Dec. 18, 2025 Export Control Requirements: This position must meet export control compliance requirements. To meet export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.15 is required. "U.S. Person" includes U.S. Citizen, lawful permanent resident, refugee, or asylee. Export Control Details: US based job, US Person required Relocation Relocation assistance is not a negotiable benefit for this position. Security Clearance This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Secret Clearance Post-Start is required. Visa Sponsorship Employer will not sponsor applicants for employment visa status. Shift This position is for 1st shift Equal Opportunity Employer: Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law. Read more Shows the full job description for sighted users Apply Now Save JobRemove Job

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

Why Stifel Stifel strives for a culture that puts its clients and associates first: a culture where everyone belongs, everyone is welcome, and everyone contributes to the success of our clients, their careers, and the firm as a whole. Let's talk about how you can find your place here at Stifel, where success meets success. What You'll Be Doing The Sr Information Security Analyst plays a critical role in supporting the information security strategy. Reporting directly to the Chief Information Security Officer (CISO), this role is responsible for proactively assessing and mitigating security risks, monitoring for threats, developing security policies and procedures, regulatory reporting, metrics/KPIs, security risk management, security process integration, and collaborating with multiple departments to ensure the protection of sensitive data. The ideal candidate will possess a strategic mindset, advanced technical skills, and a deep understanding of cybersecurity trends and regulatory requirements. What We're Looking For • Develop, maintain, and enforce information security policies, standards, and guidelines. Ensure security practices align with regulatory requirements and industry best practices. • Work with IT, legal, compliance, and business units to integrate security measures into all aspects of the organization's operations. • Provide guidance on security practices and assist in awareness training. • Identify, assess, and mitigate security risks. Develop remediation plans to address identified risks. • Maintain in-depth knowledge of regulatory compliance requirements, such as FINRA, SEC, PCI-DSS, and applicable laws. • Assist in audits and ensure compliance with relevant regulations. • Evaluate, recommend, and implement security technologies and solutions to enhance the security posture. Provide strategic input on the selection and deployment of security tools and technologies. • Stay current on the latest cybersecurity threats, trends, and technologies. Continuously evaluate the threat landscape and recommend improvements. • Gather and analyze information security KPIs. What You'll Bring • Proven ability in information security principles, processes, tools, and the latest industry awareness and current knowledge. • Strong knowledge of NIST (800-53, CSF) and other information security frameworks. • Understanding of financial services regulatory environment • Experience with formal risk management. • Excellent analytical skills, logical thinking, and diagramming capability. • Strong and confident interpersonal and customer service skills; ability to interface with personnel from various departments and levels, both technical and non-technical. • Excellent organizational skills. Ability to prioritize multiple tasks and meet deadlines. Attention to detail and commitment to excellence. • Experience working in an ITIL-focused support organization with incident/request tickets. • Ability to work flexible schedules, including availability outside of normal working hours. • Knowledge of data privacy regulations is preferred. Education & Experience • Required: Bachelor's degree in information technology, Computer Science, or equivalent combination of cybersecurity certifications and experience. • Required: 6+ years of experience in information security. Licenses & Credentials • Certifications: CISSP, CISM, CISA, or similar are strongly preferred. Systems & Technology • Experience using industry-standard event logging platforms. • Solid understanding of information security tools and best practices. • Proficient with Windows 365. #LI-LL1 About Stifel Stifel is more than 130 years old and still thinking like a start-up. We are a global wealth management and investment banking firm serious about innovation and fresh ideas. Built on a simple premise of safeguarding our clients' money as if it were our own, coined by our namesake, Herman Stifel, our success is intimately tied to our commitment to helping families, companies, and municipalities find their own success. While our headquarters is in St. Louis, we have offices in New York, San Francisco, Baltimore, London, Frankfurt, Toronto, and more than 400 other locations. Stifel is home to approximately 9,000 individuals who are currently building their careers as financial advisors, research analysts, project managers, marketing specialists, developers, bankers, operations associates, among hundreds more. Let's talk about how you can find your place here at Stifel, where success meets success. At Stifel we offer an entrepreneurial environment, comprehensive benefits package to include health, dental and vision care, 401k, wellness initiatives, life insurance, and paid time off. Stifel is an Equal Opportunity Employer.

Are you ready for your next challenge? Unleash your potential at Leidos, where we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customer's success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. If this sounds like an environment where you can thrive, keep reading! The Mission The National Security Sector within Leidos combines technology-enabled services and mission software capabilities for defense and intel customers in the areas of cyber, logistics, security operations, and decision analytics. To explore and learn more, Click here Leidos has a career opportunity for an Information System Security Officer (ISSO) at Scott AFB, IL. Candidates must already possess a current TS/SCI security clearance in order to be considered. The ISSO will provide cybersecurity support services to assist ACC Cybersecurity Chief Information Security Officer and unit Information System Security Officers (ISSO) in maintaining an effective cybersecurity program that supports missions and adequately protects the confidentiality, integrity and availability of AF IC information resources. Duties include: Develop local unit Cybersecurity programs and security plan IAW ACC, AF, IC, and DOD guidance. Gather data, analyze compliance and report results on the condition and progress of local unit Cybersecurity programs, security plans, plan of action and milestones (POA&M) and Assessment and Authorization (A&A) workflow tools data, patch management, information assurance vulnerability alerts (IAVA), DoD 8570.01M certifications, and Federal Information System Modernization Act (FISMA) compliance requirements, and Authorizations to Operate (ATOs) to unit leadership and HHQs as directed. Interact with local units and HHQ IISMs to provide Cybersecurity assessments, courses of action, and solutions to commanders on how to improve their Cybersecurity programs. Develop and provide on-the-job work center training to Government civilian, contractor, and military personnel on various IT security tools, policies and procedures required to protect resources and meet standards. Qualifications: TS/SCI security clearance on day 1. Bachelor's degree and 5 years (OR Associate's and 7 years) of relevant experience. (Additional experience may be considered in lieu of degree). IAT Level II required JWICS SYSAD admin skills and experience Experience working Assessment and Authorization documents, assessments and Cybersecurity program tasks. Two (2) years of experience with AF and IC plans and policies. Ability to learn and apply ICD 705 physical security and personnel security duties. EIO2024 At Leidos, we don't want someone who "fits the mold"-we want someone who melts it down and builds something better. This is a role for the restless, the over-caffeinated, the ones who ask, “what's next?” before the dust settles on “what's now.” If you're already scheming step 20 while everyone else is still debating step 2… good. You'll fit right in. Original Posting:October 15, 2025 For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above. Pay Range:Pay Range $85,150.00 - $153,925.00 The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

Our Security team works on operational issues at the leading edge of machine learning technology. You will join a creative and solutions-oriented team collaborating with internal teams at Scale and externally with our customers. Scale is looking for an experienced security and compliance professional to support Assessment and Authorization and agency audit activities for Scale's products that are offered in the US Government and global Public Sector space. We are looking for relentlessly curious, deliberately open-minded, and action-oriented generalists who can design effective legal advice, internal policies, and operational processes while employing an empathetic interpersonal style. If you enjoy solving novel and challenging problems and building strong teams and relationships while doing it, we'd love to hear from you! You will: * Lead public sector security compliance projects and audits (FedRAMP HIGH, DoD Cloud Computing SRG IL4/IL5/IL6 , NIST 800-53 rev 5, NIST 800-171/CMMC, Risk Management Framework) * Collaborate with product, engineering, security, operations, people operations, and legal to implement new technical, administrative, and operational controls * Work with 3PAOs and federal government AOs to achieve compliance certifications and reports * Ensure the implementation, oversight, monitoring, and maintenance of security configurations, practices, and procedures * Serve as a liaison between system owners and other security personnel, ensuring that selected security controls are effectively implemented and maintained throughout the lifecycle of projects * Act as a liaison between system owners and other security personnel to facilitate effective communication and collaboration * Develop, maintain, review, and update system security documentation on a continuous basis * Conduct required vulnerability scans and develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities. Manage risks by coordinating correction or mitigation actions and tracking the completion of POAMs * Coordinate system owner concurrence for correction or mitigation actions and monitor security controls to maintain security Authorized To Operate (ATO) * Upload security control evidence to the Governance, Risk, and Compliance (GRC) application (eMASS or Xacta) to support security control implementation during the monitoring phase * Lead Risk Management Assessment and Authorization (A&A) processes for deployments * Perform Cloud system risk assessments, enhance process workflows, and develop new processes * Implement all applicable manual Security Technical Implementation Guides (STIGs), vendor hardening guides and ensuring timely installation of all available patches * Create and maintain ATO packages * Lead security compliance reviews for new products, changes, and features * Proactively evaluate and advise the business on new and evolving certification programs, requirements, and technologies * Develop and provide training to improve the security awareness and knowledge for all employees and contractors Required: Active US Top Secret security clearance with minimum IAT Level 2 certification (Security +, CASP, or similar) Ideally you'd have: * Experience implementing and maintaining some of the following frameworks and standards: FedRAMP, DoD Cloud Computing SRG, NIST 800-171, NIST 800-53, CMMC, NIST 800-53. * STIG/RMF policy knowledge & implementation, including validating compliance via ACAS and other relevant tests. * Experience in project management and taking projects from conception to launch * An ability to translate between business and technical risk and communicate clearly to leadership * Excellent organizational and communications skills * Understanding of cybersecurity controls for cloud service providers * Knowledge of AWS and other government authorized cloud services * 5+ years of security compliance or technology audit related experience Nice-to-haves: * Bachelor's degree in accounting, information systems, computer science, or a related field Compensation packages at Scale for eligible roles include base salary, equity, and benefits. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position, determined by work location and additional factors, including job-related skills, experience, interview performance, and relevant education or training. Scale employees in eligible roles are also granted equity based compensation, subject to Board of Director approval. Your recruiter can share more about the specific salary range for your preferred location during the hiring process, and confirm whether the hired role will be eligible for equity grant. You'll also receive benefits including, but not limited to: Comprehensive health, dental and vision coverage, retirement benefits, a learning and development stipend, and generous PTO. Additionally, this role may be eligible for additional benefits such as a commuter stipend. The base salary range for this full-time position in the location of Washington DC is: $195,800-$245,300 USD Compensation packages at Scale for eligible roles include base salary, equity, and benefits. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position, determined by work location and additional factors, including job-related skills, experience, interview performance, and relevant education or training. Scale employees in eligible roles are also granted equity based compensation, subject to Board of Director approval. Your recruiter can share more about the specific salary range for your preferred location during the hiring process, and confirm whether the hired role will be eligible for equity grant. You'll also receive benefits including, but not limited to: Comprehensive health, dental and vision coverage, retirement benefits, a learning and development stipend, and generous PTO. Additionally, this role may be eligible for additional benefits such as a commuter stipend. The base salary range for this full-time position in the location of St. Louis is: $195,800-$245,300 USD PLEASE NOTE: Our policy requires a 90-day waiting period before reconsidering candidates for the same role. This allows us to ensure a fair and thorough evaluation of all applicants. About Us: At Scale, our mission is to develop reliable AI systems for the world's most important decisions. Our products provide the high-quality data and full-stack technologies that power the world's leading models, and help enterprises and governments build, deploy, and oversee AI applications that deliver real impact. We work closely with industry leaders like Meta, Cisco, DLA Piper, Mayo Clinic, Time Inc., the Government of Qatar, and U.S. government agencies including the Army and Air Force. We are expanding our team to accelerate the development of AI applications. We believe that everyone should be able to bring their whole selves to work, which is why we are proud to be an inclusive and equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability status, gender identity or Veteran status. We are committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. If you need assistance and/or a reasonable accommodation in the application or recruiting process due to a disability, please contact us at accommodations@scale.com. Please see the United States Department of Labor's Know Your Rights poster for additional information. We comply with the United States Department of Labor's Pay Transparency provision. PLEASE NOTE: We collect, retain and use personal data for our professional business purposes, including notifying you of job opportunities that may be of interest and sharing with our affiliates. We limit the personal data we collect to that which we believe is appropriate and necessary to manage applicants' needs, provide our services, and comply with applicable laws. Any information we collect in connection with your application will be treated in accordance with our internal policies and programs designed to protect personal data. Please see our privacy policy for additional information.

Job DescriptionSecurity Engineer Position: Direct HireLocation: Bridgeton, MO. If not, local you must be willing to relocate.Salary: $95K - $140K (Depending on experience).Pay Frequency: Semi Monthly.Hours: M - F (8 to 5) Fully On-Site.Status: Must be a US citizen.Travel: N/A.Benefits: PTO, Holiday Pay, Healthcare coverage, Profit-Sharing, Tuition Reimbursement, Parental Leave and free onsite fitness & rec center. Experience Level: Mid to Senior.Summary: Our client is seeking a Security Engineer to join their team.Duties: Design, implement, manage, maintain, improve, and troubleshoot company's various security systems, including but not limited to Data Loss Prevention (DLP), SIEM and UEBA, endpoint protection, and data security/auditing platforms. Analyze and audit systems, software, processes, implementations, and environments for compliance with policies, regulations, and security best practices; and recommend and implement refinements and enhancements, in collaboration with individuals and teams. Conduct threat, vulnerability, and risk assessments, at times in collaboration with external auditors, to understand and eliminate potential system and network vulnerabilities. Develop and improve monitoring and visibility capabilities of information systems, and act as a technical leader for security incident detection, response, handling, and forensics. Provide reporting on incidents, investigations, vulnerabilities, trends, conditions, and events. Remain current on information security topics, trends, events, and developments. May occasionally provide end-user security training. Provide end-user support as necessary. Provide exceptional customer service while acting ethically and maintaining business confidentiality. Provide after-hours support as required and be able to identify critical issues that require urgent response. Additional duties as assigned. Skills Needed: 7+ years of experience in Information Technology required; inclusive of up to 4 years of relevant education, including 3+ years of experience in security. Must have demonstrable experience with: Microsoft/Office 365 Security landscape. Azure and on-premises Active Directory. PowerShell and Regular Expressions. Software Development and/or Development Security Operations. Performing and managing proactive risk identification and mitigation, including penetration testing, network vulnerability assessments, and system risk profiling. Security incident detection, response, handling, and forensics. Must understand networking concepts, protocols, and services. Must have excellent verbal and written communication skills. Must possess a very strong troubleshooting methodology to tackle issues efficiently. Must be self-starting and self-sufficient to complete tasks in a timely and effective manner.

Company: The Boeing Company Boeing's Proprietary Programs in the Advanced Weapons portfolio are seeking motivated and talented Mid-Level (Levels 3 or 4) Product Security Engineers in St. Charles, Missouri! These positions will support the performance of product security and cybersecurity engineering for specialized Advanced Weapons Proprietary Programs which defend the United States homeland and its regional allies all over the world. Be a part of our passionate and highly motivated team who are excited to be on the forefront of defense of our nation. Boeing offers a comprehensive benefits package including generous Paid Time Off (PTO), flexible work schedules, paid parental leave for mothers and fathers, 401k matching, tuition assistance for earning advanced degrees, and paid medical leave programs. Come Join Us and Build the Future! Primary Responsibilities: Team members will work with other industry partners in the development and execution of a comprehensive assessment program supporting the specialized Advanced Weapons Proprietary Programs in the Space, Intelligence & Weapons Systems (SIWS) organization. These individuals will act as the primary product security engineers on the program for assessing, updating, and maintaining the security posture of the programs. This team will be supporting the program's systems by interacting continuously with the cyber team compliance team to remediate any vulnerabilities found during automated or manual cyber scans. A detailed oriented individual with a strong leadership skillset is a must for this position. Assess organization-wide security and privacy risk and update assessment results on an ongoing basis. Perform system analysis and develop system test for cyber threats, cyber test activities, and the cybersecurity of large-scale events. Ensure product security engineering development lifecycle is followed, with an emphasis on clear requirements development/verification (using CAMEO). Perform criticality analysis to include the ability to work with suppliers, identify critical components, and integrating them into the overall system Perform cyber risk assessments and develop risk mitigation plans (i.e., POA&Ms, SCRM, etc.) using a variety of tools including but not limited to CAMEO. Support and facilitate various ATO/IATT packages including processing IAVMs and CTOs for the same. Perform software assurance tasks, including but not limited to software assurance risk reports. Support proposal development efforts, including but not limited to: BOE generation, GR&A development, trade study analysis. Support the engineering installation & analysis of patches and various system updates and upgrades to determine system consequence of these changes. Attend, collect data from, out brief, and facilitate collaboration and project management from various program boards. Applying Security Technical Implementation Guides (STIGs) Managing and addressing any Cyber Tasking Orders (CTOs) related to the Cyber Tools. Documentation and verification of all installation and configuration steps for the labs and operations deliveries. Providing feedback to Cyber Leadership and engineers to improve the cybersecurity tools and processes. Collaborating with local Information System Security Officers (ISSOs) to ensure compliance with relevant cybersecurity standards and regulations. Support cyber threat intelligence activities. Support the development and maintenance of cyber scanning, patching, remediation, tools and applications Support, as required, TEMPEST, DFARS, COMSEC, CNSSI, and other compliance drivers as needed. Perform and/or support the development of tools for cyber forensics Develop, define efficiencies and improvements to tools to improve team productivity Perform system analysis trade studies to define technical concepts and solutions This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options. (St. Charles, MO.) This position requires an active Secret U.S. Security Clearance. (A U.S. Security Clearance that has been active in the past 24 months is considered active.) Basic Qualifications (Required Skills/Experience): Bachelor or Master of Science degree from an accredited course of study, in Engineering, Computer Science, Mathematics, Physics, or Chemistry. Active Secret clearance Experience using analytical, collaboration, communication and organizational skills 5 years+ experience in product security / cybersecurity engineering 5 years+ experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS) Preferred Qualifications (Desired Skills/Experience): Current DoD 8570 certification at IAT Level II / IAM Level I or higher (e.g., Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA) Experience using CAMEO (proficiency preferred) 5 years+ experience in Windows/RHEL System admin experience, installing, tuning & troubleshooting Cyber Tools to include ESS/HBSS, ConfigOS, Splunk, etc. 5 years+ experience in configuring, running, and scripting audit tools 5 years+ experience using knowledge of Software Assurance (SwA) static and/or dynamic code analysis (e.g. Fortify) Experience with Federal Information Security Management Act (FISMA)/RMF and National institute of Standards and Technology (NIST) 800-53 requirements Experience leading system and component level cyber test and evaluation, including threat and security assessments, and tabletop exercises Experienced self-starter with strong written and oral communication skills, and a focus on translating technically complex issues into simple, easy to understand concept Growing understanding of DoD defense systems architectures and communications system concepts, mission, and common system test and data analysis techniques Typical Education/Experience: Mid-Level (3): Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), computer science, engineering data science, mathematics, physics or chemistry (e.g. Bachelor) and typically 5 or more years' related work experience or an equivalent combination of technical education and experience or non-US equivalent qualifications. In the USA, ABET accreditation is the preferred, although not required, accreditation standard. Senior Level (4): Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), computer science, engineering data science, mathematics, physics or chemistry (e.g. Bachelor) and typically 9 or more years' related work experience or an equivalent combination of technical education and experience or non-US equivalent qualifications. In the USA, ABET accreditation is the preferred, although not required, accreditation standard. Relocation: This position offers basic relocation based on candidate eligibility. Shift: This position is for 1st shift. Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Please note that the salary information shown below is a general guideline only. Salaries are based upon candidate experience and qualifications, as well as market and business considerations. Mid-Level (3) Summary pay range: $123,250 - $166,750 Mid-Level (4) Summary pay range: $153,000- $207,000 Referrals to this job are not eligible for a monetary employee bonus. Language Requirements: Not Applicable Education: Bachelor's Degree or Equivalent Relocation: This position offers relocation based on candidate eligibility. Export Control Requirement: This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee. Safety Sensitive: This is not a Safety Sensitive Position. Security Clearance: This position requires an active U.S. Secret Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active) Visa Sponsorship: Employer will not sponsor applicants for employment visa status. Contingent Upon Award Program This position is not contingent upon program award Shift: Shift 1 (United States of America) Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law. EEO is the law Boeing EEO Policy Request an Accommodation Applicant Privacy Boeing Participates in E - Verify E-Verify (English) E-Verify (Spanish) Right to Work Statement Right to Work (English) Right to Work (Spanish)

JOB TITLE: Product Security Engineering 2 PAY RATE: $53-67/hour We are a national aerospace and defense staffing agency seeking highly qualified candidates for a position with a top-tier client. Job Details: Job Type: Contract (12 months with potential for extension) Clearance: Active Top Secret U.S. Security Clearance required (must be active within the last 24 months) Industry: Aerospace / Defense / Aviation Benefits: Medical, dental, and vision (Cigna) Perks: Bonus potential + Priority access via Tier 1 supplier Openings Nationwide: Thousands of opportunities across the U.S. Qualifying Questions: Are you a U.S. person as defined under ITAR regulations? Do you meet the educational and experience requirements for this role? Can you commute to the job location or relocate if necessary? Summary: Assess organization-wide security and privacy risks, updating assessment results on an ongoing basis. Perform system analysis and develop system tests for cyber threats, cybersecurity evaluations, and large-scale event assessments. Ensure adherence to the product security engineering development lifecycle, emphasizing clear requirements development and verification (using CAMEO). Conduct criticality analyses, collaborate with suppliers, identify critical components, and integrate them into overall system designs. Perform cyber risk assessments and develop mitigation plans (e.g., POA&Ms, SCRM) using tools including but not limited to CAMEO. Support and facilitate ATO/IATT packages, including processing IAVMs and CTOs. Perform software assurance tasks, including developing software assurance risk reports. Support proposal development efforts (e.g., BOE generation, GR&A development, trade studies). Assist with the engineering installation and analysis of patches, updates, and upgrades to assess system impact. Attend and facilitate program boards, collect data, and manage project documentation and collaboration. Apply Security Technical Implementation Guides (STIGs) and manage Cyber Tasking Orders (CTOs). Document and verify all installation and configuration steps for labs and operational deliveries. Provide feedback to Cyber Leadership and engineers to improve tools and processes. Collaborate with Information System Security Officers (ISSOs) to ensure compliance with cybersecurity standards and regulations. Support cyber threat intelligence, scanning, patching, remediation, and tool/application development. Assist in compliance activities including TEMPEST, DFARS, COMSEC, and CNSSI. Develop tools for cyber forensics and identify opportunities for efficiency and productivity improvements. Perform system analysis trade studies to define technical concepts and solutions. Requirements: Active Top Secret U.S. Security Clearance required (must be active within the last 24 months) Bachelor's degree (or equivalent technical education) in engineering, engineering technology, computer science, data science, mathematics, physics, or chemistry. 2 or more years of related experience, or an equivalent combination of education and experience. Current DoD 8570 certification at IAT Level II / IAM Level I or higher (e.g., Security+, GSEC, SCNP, SSCP, CISSP, CISA, GSE, SCNA). 1+ years of experience in product security or cybersecurity engineering. 1+ years of experience with cybersecurity frameworks (NIST, OWASP, DFARS). Strong analytical, collaboration, communication, and organizational skills. ABET accreditation preferred but not required. Must be a U.S. Citizen (as defined by ITAR). Preferred Qualifications: Proficiency with CAMEO. 2+ years of Windows/RHEL system administration experience, including tuning and troubleshooting cyber tools (ESS/HBSS, ConfigOS, Splunk, etc.). 2+ years of experience configuring and scripting audit tools. Experience with Software Assurance (SwA) static and/or dynamic code analysis tools (e.g., Fortify). Familiarity with FISMA/RMF and NIST 800-53 requirements. Experience leading cyber test and evaluation at system or component level. Strong written and verbal communication skills with the ability to simplify complex technical issues. Understanding of DoD defense systems architectures, communications systems, and test/data analysis methods. About Us: The Structures Company is a premier national aerospace and defense staffing agency specializing in contract, contract-to-hire, and direct hire placements. We deliver expert workforce solutions across engineering, IT, production, maintenance, and support roles. As trusted partners to major aerospace OEMs and Tier 1 suppliers, we connect professionals with opportunities to grow and excel in the aviation and aerospace industries. Eligibility Requirements: Must be a U.S. Citizen, lawful permanent resident, or protected individual under 8 U.S.C. 1324b(a)(3) to comply with ITAR regulations. Keywords: aerospace, aviation, engineering, maintenance, aircraft design, defense Take your career to new heights-apply today! Engineers - #Hotjobs

The Cyber Security Audit Engineer will manage a variety of technical security auditing capabilities, including a holistic auditing approach of applications, databases, servers, networking devices, and software. Responsible for demonstrating skills in assessing IT process and technology risks, identifying and evaluating the design of IT controls, designing, executing and documenting IT audit tests, and making initial determination of reportable issues. Assist with HIPAA / HITECH assessments, and data breach preparedness. Will work in close coordination with team members and other business owner's partners to carry our customer requirements. Job Description: ROLES and RESPONSIBILITIES: Design, build, implement and monitor a holistic audit program across the enterprise. Develop understanding of appropriate business aspects, IT risks, IT control requirements, processes and systems under review. Perform process and technology risk analysis with a cybersecurity mindset and focus, prepare process maps and flowcharts, prepare effective and efficient compliance and substantive technical approach; and execute in depth IT audit review. Perform assessment of IT process and security controls within information systems environment. Evaluate test results: accurately identify symptoms, root cause, problems, identify alternative controls and develop recommendations. Perform audit reviews of technology such as applications, databases, servers, networking devices (i.e., firewalls and routers), and security tools such as IDS/IPS, anti-malware, and authentication systems (e.g., Active Directory). Performing technology assessments in a wide variety of business environments, including: Information Technology Operational and Cyber Security Assessments in accordance with industry frameworks, such as COBIT 5, ISO 27001, ISO 27005, and NIST SP 800-30 and Cybersecurity Framework HIPAA Security Rule and HITECH Act Compliance Cloud Security Compliance Assisting clients with the performance of Business Impact Analyses (BIAs) along with the development of business continuity and disaster recovery plans (BCPs and DRPs); Assisting organizations with all aspects of data breach and information security Incident Response preparation and management Performing Service Organization Control Examinations in accordance with AICPA requirements (SOC 1 SSAE 16, SOC 2 AT 101, SOC 3 AT 101) Providing data classification services Developing information technology and security policies and procedures Providing trusted advisory services and guidance to clients that will reduce organizational risk and improve their overall cyber security posture Preparing reports and other deliverables that contain strategy, technical analysis, and findings in connection with our advisory and assessment engagements and communicating those results to client management Excellent technical and interpersonal skills required. Experience with Qualys / Nessus Vulnerability scanning tools. Cloud Experience a plus EXPERIENCE, QUALIFICATION AND EDUCATION Minimum of 5 of experience with Enterprise Network, DMZ, and Security infrastructure, including design, implementation, and ongoing management and troubleshooting required. Minimum of 5 years' experience in designing, developing, implementing, and managing solutions across cybersecurity domains (Cyber Defense, Threat and Vulnerability Management. Advanced Security Analytics, Data Security, Identity Management, Security Operations and Managed Security Services etc.) Three years or more of professional experience or job-related experience in Information Security, or Information Technology Extensive knowledge and skill of IT analysis which includes expertise in analyzing confidentiality, integrity, availability of complex IT systems. Familiarity with Secure Software Development practices Hands On experience with various programming languages or scripting languages and tools. Effective oral and written communication skills. Strong interpersonal skills and demonstrable leadership ability. Certifications in one or more of the following: CISSP, CWSP, CCNP, ACE, CCNP Security, Security+, or related. Familiarity with various operating system platforms (Linux, Windows) and databases security best practices for each. Strong analytical and problem-solving ability. Ability to work independently.

**Innovate here. And see your ideas come to life.** It's an exciting time to work in tech at Edward Jones. We are making massive investments in emerging technologies to improve how we work with our clients and with each other. Relationships are the focus of our business model. And working in Technology here means using your skills to build, deliver and maintain the technologies that enable us to deepen and support those relationships. The best part? We develop and create our own industry-leading solutions internally. And you can be a part of it. Working with emerging new technologies. Creating platforms, programs and experiences that change how we work together - and support our client-first focus. Changing the future of our firm, the industry and the advisor-client relationship. **Job Overview** **Position Schedule:** Full-Time This job posting is anticipated to remain open for 30 days, from 11-Dec-2025. The posting may close early due to the volume of applicants. **Team Overview:** As a part of the Digital Risk Management team, you'll assist management by working with the various domains within the Digital, Data, and Information Security organizations to help perform various activities related to the governance, risk, and compliance efforts of the enterprise. You will be looked at as a relationship leader with these domains, helping them manage the risks and controls associated with their functions. You will consult, analyze, work on remediation, and help ensure that the groups have the technology-related risks and controls properly managed to meet the firm's risk appetite. **What You'll Do** + Conduct detailed risk analysis efforts to measure and report on the residual risk of the various Digital functions. + Act as a consultant to the Digital functions during any audits of their environments, helping them manage any findings and remediation efforts. + Act as a subject matter expert on cross-divisional risk assessments, helping properly represent the risks identified and being mitigated within the Digital organization. + Perform other activities in the effort to help identify, measure, report on, and mitigate technology-related risks. Edward Jones' compensation and benefits package includes medical and prescription drug, dental, vision, voluntary benefits (such as accident, hospital indemnity, and critical illness), short- and long-term disability, basic life, and basic AD&D coverage. Short- and long-term disability, basic life, and basic AD&D coverage are provided at no cost to associates. Edward Jones offers a 401k retirement plan, and tax-advantaged accounts: health savings account, and flexible spending account. Edward Jones observes ten paid holidays and provides 15 days of vacation for new associates beginning on January 1 of each year, as well as sick time, personal days, and a paid day for volunteerism. Associates may be eligible for bonuses and profit sharing. All associates are eligible for the firm's Employee Assistance Program. For more information on the Benefits available to Edward Jones associates, please visit our benefits page (*********************************************************************************************** . **Hiring Minimum:** $99200 **Hiring Maximum:** $168900 Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance and the California Fair Chance Act. Edward Jones is prohibited from hiring individuals with certain specified criminal history as set forth in Section 3(a)(39) and 15(b)(4) and Rule 17a-3(a)(12) of the Securities and Exchange Act of 1934, and conducts background reviews consistent with FINRA Rule 3110(e). A copy of a notice regarding the provisions of the Los Angeles County Fair Chance Ordinance is available at: dcba.lacounty.gov/wp-content/uploads/2024/08/FCOE-Official-Notice-Eng-Final-8.30.2024.pdf . Read More About Job Overview **Skills/Requirements** **What Experience You Need** + Bachelor's degree or equivalent related work experience. + 7+years Information Security, Internal Audit, or Financial Industry experience; or 7 years of Information Technology experience with a focus on security controls and processes. + Working knowledge of industry control frameworks (e.g, COBIT, NIST, other applicable frameworks). + Demonstrated success navigating complex, dynamic environments and ability to manage conflicting priorities. + Ability to work in a team-based or matrix environment, mentoring and cross training other team members. + Develops relationships; seen as trusted and trustworthy. **What could set you apart** + Experience working in equivalent roles within the financial services industry + Undergraduate or graduate degrees related to technology and/or risk management + CISA, CRISC, or other applicable and equivalent certifications **Current INTERNAL home-based associates:** While this role is posted as hybrid, **if selected and accepted, you may retain your home-based status** . Edward Jones intends in good faith to continue offering the role as home-based, though future business or regulatory needs may require on-site work. ****Candidates that live within in a commutable distance from our Tempe, AZ and St. Louis, MO home office locations are expected to work in the office three days per week, with preference for Tuesday through Thursday.**** Read More About Skills/Requirements **Awards & Accolades** At Edward Jones, we are building a place where everyone feels like they belong. We're proud of our associates' contributions to the firm and the recognitions we have received. Check out our U.S. awards and accolades: Insights & Information Blog Postings about Edward Jones (*********************************************************************** Check out our Canadian awards and accolades: Insights & Information Blog Postings about Edward Jones (************************************************************************************ Read More About Awards & Accolades **About Us** Join a financial services firm where your contributions are valued. Edward Jones is a Fortune 500¹ company where people come first. With over 9 million clients and 20,000 financial advisors across the U.S. and Canada, we're proud to be privately-owned, placing the focus on our clients rather than shareholder returns. Behind everything we do is our purpose: We partner for positive impact to improve the lives of our clients and colleagues, and together, better our communities and society. We are an innovative, flexible, and inclusive organization that attracts, develops, and inspires performance excellence and a sense of belonging. People are at the center of our partnership. Edward Jones associates are seen, heard, respected, and supported. This is what we believe makes us the best place to start or build your career. View our Purpose, Inclusion and Citizenship Report (******************************************************************************************************************************************** . ¹Fortune 500, published June 2024, data as of December 2023. Compensation provided for using, not obtaining, the rating. Edward Jones does not discriminate on the basis of race, color, gender, religion, national origin, age, disability, sexual orientation, pregnancy, veteran status, genetic information or any other basis prohibited by applicable law. \#LI-HO

Our Purpose Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential. Title and Summary Senior AI Security EngineerJob Description Summary As an Information Security Engineer specializing in AI Security, you will be at the forefront of protecting our AI systems and data. Your role will involve deep technical expertise in designing, implementing, and maintaining advanced security measures to safeguard our AI infrastructure from sophisticated threats and vulnerabilities. You will be instrumental in ensuring the robustness, confidentiality, and availability of our AI-driven solutions. Key Responsibilities: - Security Architecture Design: Architect and implement robust security frameworks for AI systems, including authoring of secure coding practices and secure design principles. - Vulnerability Assessment: Identify, implement and manage tooling and methodologies for penetration testing on AI models and systems to identify and remediate security weaknesses. - Secure AI Development: Collaborate with data scientists and software engineers to integrate security best practices into the AI development lifecycle, including secure model training, validation, and deployment. Support security engineers in the evaluation of AI systems being developed and implemented. - Compliance and Standards: Keep track of emerging industry standards, regulations, and best practices for AI security, such as NIST, ISO, and GDPR. - Research and Innovation: Stay abreast of the latest advancements in AI security, conduct research, and contribute to the development of innovative security solutions. - Documentation and Reporting: Prepare and document standard operating procedures, protocols, and security reports, including assessment-based findings and recommendations for further system security enhancement. - Advisory and Support: Provide guidance and support on security matters, including answering queries, providing feedback, and advising on best practices - Technical Training and Mentorship: Provide technical training and mentorship to team members and stakeholders on AI security principles and practices. - Experimentation and POCs: Design and execute experiments and proof of concepts (POCs) to validate emerging threats and security solutions. Conduct R&D to explore new methodologies and technologies for enhancing AI security. Qualifications: - Bachelor's or Master's degree in Computer Science, Information Security, or a related field. - Extensive experience in information security, with a strong focus on AI security. - In-depth knowledge of AI technologies, machine learning algorithms, and data protection techniques. - Proven expertise in designing and implementing security measures for AI systems, including secure coding, encryption, and access controls. - Strong analytical and problem-solving skills, with the ability to conduct vulnerability assessments and penetration testing. - Excellent technical communication and collaboration skills to work effectively with diverse teams. - Relevant certifications such as CISSP, CEH, OSCP, or equivalent are highly desirable.Mastercard is a merit-based, inclusive, equal opportunity employer that considers applicants without regard to gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law. We hire the most qualified candidate for the role. In the US or Canada, if you require accommodations or assistance to complete the online application process or during the recruitment process, please contact reasonable_accommodation@mastercard.com and identify the type of accommodation or assistance you are requesting. Do not include any medical or health information in this email. The Reasonable Accommodations team will respond to your email promptly. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard's security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines. In line with Mastercard's total compensation philosophy and assuming that the job will be performed in the US, the successful candidate will be offered a competitive base salary and may be eligible for an annual bonus or commissions depending on the role. The base salary offered may vary depending on multiple factors, including but not limited to location, job-related knowledge, skills, and experience. Mastercard benefits for full time (and certain part time) employees generally include: insurance (including medical, prescription drug, dental, vision, disability, life insurance); flexible spending account and health savings account; paid leaves (including 16 weeks of new parent leave and up to 20 days of bereavement leave); 80 hours of Paid Sick and Safe Time, 25 days of vacation time and 5 personal days, pro-rated based on date of hire; 10 annual paid U.S. observed holidays; 401k with a best-in-class company match; deferred compensation for eligible roles; fitness reimbursement or on-site fitness facilities; eligibility for tuition reimbursement; and many more. Pay Ranges O'Fallon, Missouri: $115,000 - $184,000 USD

Kforce is looking for a Sailpoint Security Engineer for an opportunity with a large healthcare organization in Saint Louis, MO. Responsibilities: * Provides first level support for security technologies and participates in projects * Implements and maintains new enhancements to the enterprise security infrastructure and security management systems * Monitors controls audits and reports on access to system resources and data * Maintains enterprise security systems standards and procedures * Prepares and maintains technical documentation to assist with the ongoing operation maintenance and development of the security infrastructure * Maintains certifications as appropriate for evolving security needs; Understands and abides by change control documentation * Provides technical support for system architecture and delivery issues and participates in projects regarding IAG solution * Designs and builds tools or integrations to meet business requirements * Coordinates instillation maintenance upgrades and tuning of systems and databases * Establish workflows and processes to effectively and efficiently manage the identity lifecycle for employees, contractors, business partners, and consumers * Independently prepare and maintain technical documentation to assist with ongoing operation maintenance and development of systems * Works with vendors as needed on technical requests * Demonstrates working knowledge and utilization of process improvement change management * Uses best practices and knowledge of internal and external business issues to improve products or services * Maintains group permissions, shared directories, and other enterprise access requirements * Serves as IAG solution delivery project lead* Bachelor's degree in IS or a similar field or comparable work experience * CISM, CISSP, CISA or other information security related certification preferred * 3-5 years of experience * Working knowledge of scripting technologies required (Powershell) Working knowledge of: * SQL, JSON, , and Active Directory * Sailpoint (IdentityIQ, IdentityNow) * Systems architecture * Security infrastructure * Security technologies * Security management + security management systems

We are looking for experienced Vulnerability Development / Security Engineers with a background in healthcare IT to join our security team. You will focus on identifying, assessing, and remediating vulnerabilities across applications and cloud environments. Responsibilities: Conduct SAST and DAST scans and manage vulnerability remediation. Perform secure code reviews and implement best practices in Java and Python. Conduct threat modeling for applications, APIs, and cloud environments. Collaborate with development teams to ensure secure application delivery. Stay updated on security trends and healthcare-specific compliance requirements. Qualifications: 6-10 years of experience in application security or vulnerability management. Hands-on with SAST/DAST tools, patching, and secure coding. Strong knowledge of API and cloud security. Healthcare IT experience preferred (HIPAA, HITRUST, or related frameworks). Excellent analytical and communication skills.