Security architect jobs in Chula Vista, CA

Job Description Senior Cyber Security Architect The Senior Security Architect designs and drives the secure architecture of DataHouse platforms and client solutions across cloud and hybrid environments. This role leads threat modeling, control selection, and reference architectures aligned to ISO/IEC 27001, NIST, and HIPAA, partners with engineering to embed security in delivery pipelines, and advises public-sector and healthcare clients on compliance-aligned architectures. You'll be a senior individual contributor with broad influence-mentoring engineers, shaping standards, and participating in architecture reviews and program governance. *This position requires the candidate to be based in Hawaii and able to work on-site in Honolulu as needed. Primary Responsibilities and Duties Architecture & Design: Define secure reference architectures (network, identity, data, application, and cloud) for AWS/Azure; champion zero-trust and least-privilege patterns. Risk Management: Identify, assess, and mitigate security risks to protect company assets, data, and systems from external and internal threats. Security Strategy Development: Develop and implement comprehensive security strategies and roadmaps that include key policies, procedures, and practices to safeguard the company's information technology infrastructure. Security Compliance: Ensure that security architecture meets regulatory requirements and compliance standards, such as GDPR, HIPAA, or industry-specific regulations. Governance & Compliance: Translate ISO/IEC 27001, NIST (CSF/800-53/171), and HIPAA into practical architectures, patterns, and evidence requirements; support internal audits and renewals. Advisory & Reviews: Sit on internal and client architecture review boards; support executive-level guidance to SLED and healthcare clients. Collaborate with Leadership: Work closely with senior leadership, including the CTO, and other department heads, to ensure security strategies align with business priorities and technology initiatives. Incident Readiness: Partner with SecOps to refine detection logic, playbooks, and tabletop exercises; ensure architectures support rapid containment and recovery. Mentorship & Standards: Coach engineers; author standards, patterns, and runbooks; lead brown-bags and security awareness sessions for delivery teams. Vendor Management: Work with external vendors to evaluate and select security tools, technologies, and services to enhance the company's security posture. Specific Responsibilities and Duties Develop and implement frameworks for the secure design and deployment of cloud services, network infrastructure, and enterprise applications. Lead the evaluation and integration of new security technologies and methodologies to enhance the company's security infrastructure. Collaborate with the IT department to ensure security controls are integrated into all software development and systems engineering processes. Define and enforce standards and best practices for secure software development, network security, data protection, and vulnerability management. Implement and continually improve the organization's Information Security Management System (ISMS) to maintain ongoing ISO 27001 certification. Advise client leadership teams on IT governance, budget planning, security roadmaps, and risk management programs. Ensure security practices address requirements specific to healthcare, government, and other regulated industries. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field. 6+ years of experience in information security, with at least 2 years in a senior security architecture role or similar management position. Proven experience in designing and implementing security architectures for large, complex systems across multiple platforms (cloud, on-premise, hybrid). Expert knowledge of security frameworks, such as NIST, CIS, ISO 27001, comparable ISMS frameworks, and experience with industry compliance standards. Strong understanding of network security, encryption technologies, access controls, threat modeling, and risk management. Experience with public sector and healthcare IT security requirements preferred. Experience with cloud security, including public cloud platforms such as AWS, Azure, or Google Cloud. Leadership and team management experience, with the ability to mentor and inspire a security team. Excellent problem-solving and analytical skills, with the ability to design secure systems and mitigate risks proactively. Proven track record delivering security services to external clients, including executive advisory and program governance. Strong ability to communicate risk and security strategy to executives, boards, and non-technical stakeholders. Certified Information Systems Security Professional (CISSP) or other relevant certifications (e.g., Certified Cloud Security Professional (CCSP), Certified Information Security Manager (CISM)) is preferred. AWS/Azure security certifications preferred.

What We're Doing: Lockheed Martin's, Rotary & Mission Systems (LM RMS), F-35 Cyber Security invites you to step up to one of today's most daunting challenges: the protection of exquisite government capabilities leading to warfighter supremacy against our peer and near peer adversaries. As a cybersecurity professional at Lockheed Martin, you'll safeguard the sensitive information and warfighting capabilities that our citizens and the world depend upon to protect U.S. and ally interests. Here, you'll work alongside other cybersecurity experts, related departments, and military members to support the military operational objectives by providing them with a safe and secure operating environment. In this fast-paced, real-world environment, you'll draw on all your education and experience as well as the resources of Lockheed Martin to keep these exquisite capabilities protected. The Work: This Information System Security Officer (ISSO) position will support the Information System Security Manager (ISSM) in developing, maintaining and overseeing the cybersecurity of assigned classified and/or unclassified F-35 systems at MCAS Miramar. Typical ISSO responsibilities include but are not limited to: Ensuring required cybersecurity controls are implemented and validated, to include continuous monitoring actions for assigned systems. Supporting the development and maintenance of cybersecurity related plans and procedures. Monitoring for non-compliance, anomalous activity (i.e., threats), and effectively reporting such activity and associated risks. Ensuring POA&Ms or remediation plans are in place for vulnerabilities identified during monitoring activity, audits, inspections, etc. and implementing, or overseeing, corrective actions. Creating, collecting and retaining data to meet reporting requirements. Monitoring and correlating data (i.e., events) from a variety of sources (e.g., Splunk, ELA, ePO, ACAS, etc.) to identify and mitigate threats, vulnerabilities and non-compliance. Investigating, analyzing and responding to cyber events, incidents and non-compliance, including trend analysis, creating detailed written reports and briefing the appropriate parties. Identifying, implementing and enforcing requirements for the proper handling and storage of Government data and electronic media. Conducting self-inspections and preparing for customer inspections. Interacting professionally during the enforcement of security policy and procedures. Assigned systems may vary in classification, capabilities and complexity. Mission requirements may require other than first-shift work and additional responsibilities as assigned. Who we are: Lockheed Martin is a Cyber Security pioneer, partner, innovator and builder. In support of our many customers, the amazing members of our team are responsible for providing all aspects of cybersecurity support in a complex environment. In a rapidly growing enterprise, this role offers the opportunity to grow and hone the unique skills and experiences required as a cybersecurity expert to create, design and build solutions to some of the world's hardest engineering problems. Why Join Us: Your Health, Your Wealth, Your Life With our employees as our top priority, we provide diverse career opportunities designed to propel development and boost agility. Our flexible schedules, competitive pay and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. At Lockheed Martin, we place an emphasis on empowering our employees by fostering innovation. We believe that by applying the highest standards of business ethics and visionary thinking, everything is within our reach - and yours as a Lockheed Martin employee. Lockheed Martin values your skills, training and education. Come and experience your future! Final Transferable Secret security clearance; last Periodic Reinvestigation must be within the last five (5) years or enrollment in Continuous Vetting program. Ability to obtain and maintain Special Access Program (SAP) access. Possess a valid certification that meets or exceeds DoD 8570.01-M IAT II requirements. Meets: CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP Exceeds: CASP+ CE, CCNP Security, CISA, CISSP (or Assc), GCED, GCIH, CCSP Prior experience in a cyber workforce role, as categorized by the NICE or DoD workforce frameworks. Prior experience as an ISSO, ISSM or related DoD Cyber Workforce Role on one or more F-35 information systems. Prior experience ensuring compliance with applicable laws, regulations, guidance and policies as they relate to DoD cybersecurity and SAPs (e.g., DoDI 8510.01, JSIG, DoDM 5205.07, NIST SP 800 series). Prior experience with the system authorization process, associated artifacts and their requirements (e.g., SSP, SCTM, Security CONOPs, SOPs). Lockheed Martin is an equal opportunity employer. Qualified candidates will be considered without regard to legally protected characteristics. The application window will close in 90 days; applicants are encouraged to apply within 5 - 30 days of the requisition posting date in order to receive optimal consideration. * At Lockheed Martin, we use our passion for purposeful innovation to help keep people safe and solve the world's most complex challenges. Our people are some of the greatest minds in the industry and truly make Lockheed Martin a great place to work. With our employees as our priority, we provide diverse career opportunities designed to propel, develop, and boost agility. Our flexible schedules, competitive pay, and comprehensive benefits enable our employees to live a healthy, fulfilling life at and outside of work. We place an emphasis on empowering our employees by fostering an inclusive environment built upon integrity and corporate responsibility. If this sounds like a culture you connect with, you're invited to apply for this role. Or, if you are unsure whether your experience aligns with the requirements of this position, we encourage you to search on Lockheed Martin Jobs, and apply for roles that align with your qualifications. Other Important Information By applying to this job, you are expressing interest in this position and could be considered for other career opportunities where similar skills and requirements have been identified as a match. Should this match be identified you may be contacted for this and future openings. Ability to work remotely Onsite Full-time: The work associated with this position will be performed onsite at a designated Lockheed Martin facility. Work Schedule Information Lockheed Martin supports a variety of alternate work schedules that provide additional flexibility to our employees. Schedules range from standard 40 hours over a five day work week while others may be condensed. These condensed schedules provide employees with additional time away from the office and are in addition to our Paid Time off benefits. Security Clearance Information This position requires a government security clearance, you must be a US Citizen for consideration. Pay Rate: The annual base salary range for this position in California, Massachusetts, and New York (excluding most major metropolitan areas), Colorado, Hawaii, Illinois, Maryland, Minnesota, New Jersey, Vermont, Washington or Washington DC is $93,200 - $164,450. For states not referenced above, the salary range for this position will reflect the candidate's final work location. Please note that the salary information is a general guideline only. Lockheed Martin considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer. Benefits offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays. (Washington state applicants only) Non-represented full-time employees: accrue at least 10 hours per month of Paid Time Off (PTO) to be used for incidental absences and other reasons; receive at least 90 hours for holidays. Represented full time employees accrue 6.67 hours of Vacation per month; accrue up to 52 hours of sick leave annually; receive at least 96 hours for holidays. PTO, Vacation, sick leave, and holiday hours are prorated based on start date during the calendar year. This position is incentive plan eligible. Pay Rate: The annual base salary range for this position in most major metropolitan areas in California, Massachusetts, and New York is $107,300 - $185,840. For states not referenced above, the salary range for this position will reflect the candidate's final work location. Please note that the salary information is a general guideline only. Lockheed Martin considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer. Benefits offered: Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Flexible Spending Accounts, EAP, Education Assistance, Parental Leave, Paid time off, and Holidays. This position is incentive plan eligible.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

Are you looking to make an impactful difference in your work, yourself, and your community? Why settle for just a job when you can land a career? At ICW Group, we are hiring team members who are ready to use their skills, curiosity, and drive to be part of our journey as we strive to transform the insurance carrier space. We're proud to be in business for over 50 years, and its change agents like yourself that will help us continue to deliver our mission to create the best insurance experience possible. Headquartered in San Diego with regional offices located throughout the United States, ICW Group has been named for ten consecutive years as a Top 50 performing P&C organization offering the stability of a large, profitable and growing company combined with a focus on all things people. It's our team members who make us an employer of choice and the vibrant company we are today. We strive to make both our internal and external communities better everyday! Learn more about why you want to be here! PURPOSE OF THE JOB The purpose of this job is to design secure architectures and develop cybersecurity approaches and techniques to evaluate the security of a system or network. This position will assist with strategic initiatives for short and long-term plans to identify and reduce the attack surface across applications and systems. The position exists to monitor and defend ICW Group's technology against potential threats that jeopardize the financial growth and security goals of the Company. ESSENTIAL DUTIES AND RESPONSIBILITIES Monitors and protects information assets across hybrid environments. Monitors data flows and access events across AWS, on-prem, and SaaS platforms using DLP, CASB, SIEM, and AWS-native tools such as Macie, GuardDuty, CloudTrail, and Security Hub. Detects and investigates data breaches, insider threats, and exfiltration attempts; leads data-centric incident response through containment, analysis, and recovery. Implements and enforces data classification, labeling, and tagging frameworks integrated with AWS S3, RDS, and enterprise file systems. Designs and manages encryption and key management solutions using AWS KMS, CloudHSM, and on-premise HSMs to secure data at rest and in transit. Collaborates with development and DevOps teams to embed data protection into CI/CD pipelines and application code, ensuring secure data handling throughout SDLC. Conducts forensic reviews and produces actionable reports, metrics, and dashboards highlighting data risks and anomalies across hybrid systems. Leads complex data protection initiatives and resolves data security risks. Leads enterprise data security projects, including AWS DLP implementation, sensitive data discovery, structured/unstructured data protection, and automated alerting. Defines and enforces data governance standards for both AWS and on-prem environments, aligning to ICW's data lifecycle management and retention requirements. Partners with database, app dev, and analytics teams to integrate encryption, tokenization, and privacy-by-design principles into application workflows. Designs and maintains role-based and attribute-based access controls (RBAC/ABAC) across AWS Identity and Access Management (IAM), Active Directory, and application layers. Collaborates with Privacy, Legal, and Compliance to operationalize data protection impact assessments (DPIAs) and retention/deletion automation. Produces executive and board-level reports detailing data protection maturity, compliance metrics, and emerging risk areas. Serves as a technical escalation point for AWS data protection incidents, third-party integrations, and complex remediation efforts. Serves as ICW's senior data security SME and technical advisor. Provides expert consulting to architecture, engineering, and product teams on AWS-native security services and hybrid data protection models. Advises leadership on emerging cloud data security trends and recommends architectures that balance scalability with compliance and risk reduction. Conducts advanced data risk assessments, privacy impact analyses, and forensic reviews to guide remediation and control design. Defines AWS-aligned compliance strategies supporting NIST CSF, NYDFS 500, GLBA, and state privacy laws. Evaluates and integrates modern data security solutions such as SASE/CASB platforms, insider risk analytics, and automated data classification tools. Mentors junior engineers and fosters a data-first security mindset across ICW's engineering organization. Partners with project management and internal teams to mature hybrid data security. Implements technical and process controls to continuously improve data protection maturity in AWS and on-prem applications. Partners with cloud engineering and on-prem development teams to design secure data pipelines, storage, and access control mechanisms. Contributes to automation and orchestration of data protection activities using AWS Lambda, EventBridge, and native integration APIs. Leads knowledge sharing on emerging AWS capabilities while ensuring backward compatibility with existing on-prem data flows. Coaches development and data engineering teams to identify and mitigate data leakage risks during application and infrastructure design. SUPERVISORY RESPONSIBILITIES This position has no supervisory responsibility but may mentor and train junior engineers. EDUCATION AND EXPERIENCE Bachelor's Degree from four-year college or university required with major or emphasis Engineering, Cybersecurity, Networking, or Computer Science related discipline. Minimum 8 years of experience working in a security engineering related role designing secure networks, systems and application architectures or equivalent combination of education and experience required. Minimum 3-5 years of experience in AWS Cloud Security services preferred. Direct experience using advanced technologies such as Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus software, Network Packet Analyzers, content filtering, Malware analysis and forensics tools to detect intrusions. Experience in cyber security role requiring knowledge of data analysis, risk assessment, risk mitigation, investigation methods, incident management concepts and practices, and policy and procedure development. Experience with AWS Services such as AWS Identity & Access Management, AWS Organizations, AWS Security HuB, Guard Duty, CloudTrail, AWS CloudTrail. CERTIFICATES, LICENSES, REGISTRATIONS Certification in GSEC, CISSP, and/or Security+. AWS Certified Security - Specialty, preferred KNOWLEDGE AND SKILLS Knowledge of risk assessment tools, technologies, and methodologies. Knowledge of disaster recovery, computer forensic tools, technologies, and methods. Knowledge of enterprise security platforms. Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code, and anti-virus software. Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention. Demonstrated experience as a lead engineer in the design, implementation and support in an enterprise IT environment. Ability to work with mathematical concepts such as probability and statistical inference. Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems. Ability to combine disparate skills and thinking to craft solutions and solve complex operational problems. Ability to hypothesize on root cause of inefficiencies and then test out probable solutions against those hypotheses. Ability to read, analyze, and interpret technical journals, financial reports, security analysis reports and other IT related documents. Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Must be able to read, write and speak English effectively. Ability to effectively communicate/present technical information to a non-technical audience. Ability to cross train and share information with team members. PHYSICAL REQUIREMENTS Office environment - no specific or unusual physical or environmental demands and employees are regularly required to sit, walk, stand, talk, and hear. Employees are required to reach with hands and arms; stoop, kneel, crouch, or crawl. Employees must occasionally lift and/or move up to 30 pounds. Employees are required to have visual acuity and be capable of operating and viewing computers and other electronic devices for extended periods of time. WORK ENVIRONMENT This position operates in an office environment and requires the frequent use of a computer, telephone, copier, and other standard office equipment. We are currently not offering employment sponsorship for this opportunity. #LI-TM1 #LI-HYBRID The current range for this position is $121,624.81 - $217,710.99 This range is exclusive of fringe benefits and potential bonuses. If hired at ICW Group, your final base salary compensation will be determined by factors unique to each candidate, including experience, education and the location of the role and considers employees performing substantially similar work. WHY JOIN ICW GROUP? • Challenging work and the ability to make a difference • You will have a voice and feel a sense of belonging • We offer a competitive benefits package, with generous medical, dental, and vision plans as well as 401K retirement plans and company match • Bonus potential for all positions • Paid Time Off with an accrual rate of 5.23 hours per pay period (equal to 17 days per year) • 11 paid holidays throughout the calendar year • Want to continue learning? We'll support you 100% ICW Group is committed to creating a diverse environment and is proud to be an Equal Opportunity Employer. ICW Group will not discriminate against an applicant or employee on the basis of race, color, religion, national origin, ancestry, sex/gender, age, physical or mental disability, military or veteran status, genetic information, sexual orientation, gender identity, gender expression, marital status, or any other characteristic protected by applicable federal, state or local law. ___________________ Job Category IT

Minimum qualifications: Bachelor's degree in Electrical Engineering, Computer Engineering, Computer Science, a related field, or equivalent practical experience. 10 years of experience in security certification (FIPS, Common Criteria, SESIP, EMVco, GP). Experience with hardware and software architecture. Experience in Technical Program Management. Experience with development and product life-cycle. Experience in embedded security and cryptography. Preferred qualifications: Common Criteria certification for a Secure IC, smartcard or similar devices. FIPS140-3 certification for a crypto module (CMVP). Experience with government and regulatory policies related to security. Knowledge of PP0084, CAVP and CMPV requirements. Familiarity with the SOGIS Application of Attack Potential to Smartcard. Familiarity with JIL Minimum Site Security Requirements (MSSR). About the job Be part of a team that pushes boundaries, developing custom silicon solutions that power the future of Google's direct-to-consumer products. You'll contribute to the innovation behind products loved by millions worldwide. Your expertise will shape the next generation of hardware experiences, delivering unparalleled performance, efficiency, and integration. In this role, you will identify the primary drivers (e.g., business, regulatory,) for certification and manage security certification programs (Common Criteria, FIPS) from start to finish. You will be the direct interface with the evaluation laboratory and the Certification Body. You will be responsible for providing on time all the evidence and material required for the certification. You will work directly with all the stakeholders internally (engineering and corporate teams) to convey the requirement and ensure they are met. You will drive internal improvements and take decisions as needed to achieve success. Within the Security Assurance team you will have the support from security experts and a red team to help you achieve your objectives. Google's mission is to organize the world's information and make it universally accessible and useful. Our team combines the best of Google AI, Software, and Hardware to create radically helpful experiences. We research, design, and develop new technologies and hardware to make computing faster, seamless, and more powerful. We aim to make people's lives better through technology. The US base salary range for this full-time position is $183,000-$271,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google. Responsibilities Assess engineering problems, understand the interplay between certification requirements and functional requirements, and contribute to shaping technical directions. Organize and manage security certification activities. Monitor and communicate progress, risks, and mitigation. Identify stakeholders (internal and external) and work with them to strategize, plan, and prioritize objectives, estimate task duration, and ensure schedules and dependencies are aligned and support those objectives. Leverage a variety of methodologies (e.g., Agile, Waterfall) to make teams most effective. Establish systems to identify improvements and drive future needs around security certification. Discern when a change is appropriate and to drive change across the organization, working closely with partner teams to manage and communicate changes, introducing them in the minimal disruptive manner. Put systems and mechanisms in place to facilitate future changes.

Exemption Status:United States of America (Exempt)$110,982 - $155,376 - $199,769 “Pay scale information is not necessarily reflective of actual compensation that may be earned, nor a promise of any specific pay for any selected candidate or employee, which is always dependent on actual experience, education, qualifications, and other factors. A full review of our comprehensive pay and benefits will be discussed at the offer stage with the selected candidate.” This position is not eligible for Sponsorship. MedImpact Healthcare Systems, Inc. is looking for extraordinary people to join our team! Why join MedImpact? Because our success is dependent on you; innovative professionals with top notch skills who thrive on opportunity, high performance, and teamwork. We look for individuals who want to work on a team that cares about making a difference in the value of healthcare. At MedImpact, we deliver leading edge pharmaceutical and technology related solutions that dramatically improve the value of health care. We provide superior outcomes to those we serve through innovative products, systems, and services that provide transparency and promote choice in decision making. Our vision is to set the standard in providing solutions that optimize satisfaction, service, cost, and quality in the healthcare industry. We are the premier Pharmacy Benefits Management solution! Job Description Summary The Information Security Engineer II develops, executes, and monitors enterprise-wide information security from policy through implementation across all Security departments including SECOPS, DEVSECOPS and Threat Analytics. This position expands the duties of the Security Engineer I to include direct security support for departments in corporate subsidiaries with identified areas of need which require experienced oversight. This position is required to ensure that business information is secure from unauthorized access, protected from inappropriate alteration, and is physically secure. This “hands-on” position serves as the process owner for all ongoing security activities and is responsible for the protection of the confidentiality and integrity of client, employee, and proprietary business information in accordance with federal/state laws and regulations. Enforcement of and adherence to MedImpact's corporate policies and procedures is required by all Security team members. Essential Duties and Responsibilities include the following. Other duties may be assigned. Enforces policy and supports security procedures, applications, and systems through the documentation of the resolution of assigned cases that range from simple to complex. Recommends changes to existing security process and procedures. Ability to utilize Endpoint Threat Detection and Response/Hunting toolsets Creates requirements for product evaluations and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for security related issues. Drives the delivery of new and upgraded security applications, systems, and workflow. Tests new systems for effective operations. Leads efforts to proactively maintain and improve the automation, reliability, consistency, and the quality of existing IT security tools and environments throughout the organization. Assists in the design, deployment, integration and configuration of security solutions or enhancements to ensure functionality. Ensures the confidentiality, integrity, and availability of data residing on or transmitted to, from, or through the enterprise workstations, servers, application systems, and data repositories. Initiates, facilitates, and promotes activities to create information security awareness. Disseminates and educates users on security policies and practices. Participates in regular security awareness training and updates to ensure consistent compliance with IT Security Policies. Works cross-functionally and interacts with internal business units and stakeholders to support the business' needs. Using an automated customer case request system, tracks and documents security service requests and completed cases. Participates in daily activities and reporting required for regulatory and contractual information security obligations. Coordinates tasks that are performed within the infrastructure (system administration, network administration, application support, etc.) for security updates and initiatives. Performs analysis, design and development of security features for system architecture. Participates in security incident investigations and provides on-going communication to security management. Identifies root causes of security events and proposes solutions; closes out and documents investigations. Ensures confidentiality and appropriate personnel are involved in the investigation. Maintains up-to-date industry knowledge through formal/informal training, industry associations and research of latest technologies critical to the success of the company's information security program. Continuously works to identify and improve security solutions to defend the company against data security threats. Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately. Provides guidance/training to less experienced staff. Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately. Provides IT Security consultative support to internal and external clients. Manages IT Security related projects and assignments as assigned. Supervisory Responsibilities No supervisory responsibilities Client Responsibilities This is an internal and external client facing position that requires excellent customer service skills and interpersonal communication skills (listening/verbal/written). One must be able to; manage difficult or emotional client situations; Respond promptly to client needs; Solicit client feedback to improve service; Respond to requests for service and assistance from clients; Meet commitments to clients. Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Education and/or Experience BS/BA and 8+ years' experience or equivalent combination of education and experience, and 4 years of SME in respective areas Computer Skills To perform this job successfully, an individual should have knowledge of Microsoft Office Suite. Additional expertise is required in the following: Endpoint Management Experience (BigFix, WSUS/SCCM, Symantec, Trend Micro, etc) Identity and Access Management Certificate Management Patch Management (Windows and Unix) Intrusion Detection and Prevention Security Awareness Training Mobile Device Management EDR (Endpoint detection and response) Web Content Filtering Device Encryption Vulnerability Assessment Tools Firewall and VPN Secure E-mail, Anti-SPAM Webserver applications Web API Service Security Business Continuity (Disaster Recovery) Compliance and Audit (HIPAA, HITRUST, SOC, GovRAMP and PCI a plus) OS Administration (Windows, Linux and Unix) Authentication and SSO Container Security Certificates, Licenses, Registrations Security Certification strongly preferred OWASP, ISSA, ISACA membership a plus Other Skills and Abilities Must have excellent analytical, problem solving and communication skills. Familiarity with SSAE SOC 1 and SOC 2, HITRUST, federal/state security and privacy frameworks, HIPAA, PCI and regulatory requirements for information security. Must be able to work on a team and build good working relationships with team members and internal clients. Must have good understanding of standard policies and procedures for information security. Reasoning Ability Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to define problems, collect data, establish facts, and draw valid conclusions. Mathematical Skills Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations. Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs. Language Skills Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to respond effectively to the most sensitive inquiries or complaints. Competencies To perform the job successfully, an individual should demonstrate the following competencies: Composure Decision Quality Organizational Agility Problem Solving Customer Focus Drive for Results Peer Relations Time Management Dealing with Ambiguity Learning on the Fly Political Savvy Physical Demands The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is regularly required to stand; walk; use hands to finger, handle, or feel and reach with hands and arms. The employee must occasionally lift and/or move up to 25 pounds. Work Environment The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. This position may regularly be exposed to or encounter moving mechanical parts, high, precarious places, fumes or airborne particles, toxic or caustic chemicals, outdoor weather conditions, risk of electrical shock or vibration. The noise level in the work environment is usually moderate (examples: business office with computers and printers, light traffic). Work Location This position must work on-site at the San Diego Headquarters for purposes of providing adequate support to internal clients; being available for face-to-face interactions and coordination of work with other employees, colleagues, clients, or vendors; as well as for facilitation of quick and effective decisions through collaboration with stakeholders. Remote work is not an option for these purposes. Working Hours This is an exempt level position requiring the incumbent to work the hours required to fully accomplish job responsibilities and reasonably meet deadlines for work deliverables. The individual must have the flexibility to work beyond traditional hours and be able to work nights, at weekends or on holidays as required. Work hours may be changed from time to time to meet the needs of the business. Typical core business hours are Monday through Friday from 8:00am to 5:00pm. Travel This position requires domestic travel of up to 10% of the time. The Perks: Medical / Dental / Vision / Wellness Programs Paid Time Off / Company Paid Holidays Incentive Compensation 401K with Company match Life and Disability Insurance Tuition Reimbursement Employee Referral Bonus To explore all that MedImpact has to offer, and the greatness you can bring to our teams, please submit your resume to ************************* MedImpact, is a privately-held pharmacy benefit manager (PBM) headquartered in San Diego, California. Our solutions and services positively influence healthcare outcomes and expenditures, improving the position of our clients in the market. MedImpact offers high-value solutions to payers, providers and consumers of healthcare in the U.S. and foreign markets. Equal Opportunity Employer, Male/Female/Disabilities/VeteransOSHA/ADA: To perform this job successfully, the successful candidate must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.

Job DescriptionSaronic Technologies is a leader in revolutionizing defense autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations for the Department of Defense (DoD) through autonomous and intelligent platforms. Saronic Technologies is a leader in defense autonomy at sea. We're seeking an Embedded Security Engineer to design, implement, and harden security for the software that runs on our autonomous surface vessels. You'll work across device identity, secure boot and update flows, secrets/key management, and secure communications-partnering closely with autonomy, platform, manufacturing, and field teams to deliver trustworthy systems that operate reliably in maritime environments. Senior Engineers: 3+ years of experience delivering security features on embedded/Linux systems, preferably in autonomy, robotics, aerospace, or defense. Staff Engineers: 8+ years of experience including technical leadership across secure boot/update pipelines, identity/PKI, and fleet-wide hardening; demonstrated ownership of mission-critical features from design through field deployment.Key Responsibilities: Design, develop, and maintain security features for embedded Linux systems (systemd-managed services, Rust/C/C++) used for navigation, control, and communications. Own per-vessel identity and mutual authentication for boat↔cloud and boat↔boat links; implement certificate/key rotation and revocation workflows. Implement signed/verified update mechanisms with rollback protection; collaborate with manufacturing on secure boot enablement and key provisioning. Integrate and operate hardware-backed key storage (e.g., TPM/secure elements) and sealed secrets for on-vessel services. Harden network paths over constrained links: TLS/mTLS, VPN overlay policies, and least-privilege service access. Reduce attack surface in embedded services (capabilities, seccomp/AppArmor where appropriate, safe process execution, input validation). Build tamper-evident, structured logging and diagnostics suitable for ship→shore analysis and incident response. Perform threat modeling, code reviews, and security testing (static/dynamic analysis, fuzzing, negative testing). Troubleshoot and debug complex security issues in fielded systems; author runbooks and safe-rollback procedures. Document designs, processes, and verification results for compliance and knowledge sharing; contribute to secure coding guidelines. Stay current on emerging security technologies and best practices relevant to embedded Linux and autonomous systems. Required Qualifications: Bachelor's or Master's degree in Computer Science, Electrical/Computer Engineering, Software Engineering, or a related field. Proficiency in Rust and/or C/C++ developing software for embedded Linux. Strong understanding of cryptographic primitives and protocols (keys, certificates, signatures, TLS/mTLS), and experience integrating them into systems. Experience with secure/verified boot, OTA/update safety, and firmware/bootloader workflows. Familiarity with VPN overlays and constrained-network security patterns. Comfortable with Linux security fundamentals (users/permissions, capabilities, sandboxing) and systemd-based service management. Excellent problem-solving skills and ability to collaborate effectively in na fast-paced, cross-functional environment. Strong written and verbal communication skills. This role requires the ability to obtain and maintain a security clearance Preferred Qualifications: Experience with TPM/secure elements, measured/verified boot, and attestation. Exposure to NixOS-based builds, Yocto, or similar embedded Linux tooling. Experience with authenticated media/telemetry pipelines and secure streaming. DoD/defense domain familiarity and prior work under export-controlled constraints. Physical Demands: Prolonged periods of sitting at a desk and working on a computer. Occasional standing and walking within the office. Manual dexterity to operate a computer keyboard, mouse, and other office equipment. Visual acuity to read screens, documents, and reports. Occasional reaching, bending, or stooping to access file drawers, cabinets, or office supplies. Lifting and carrying items up to 20 pounds occasionally (e.g., office supplies, packages). Benefits:Medical Insurance: Comprehensive health insurance plans covering a range of services Saronic pays 100% of the premium for employees and 80% for dependents Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents Time Off: Generous PTO and HolidaysParental Leave: Paid maternity and paternity leave to support new parents Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses Retirement Plan: 401(k) plan Stock Options: Equity options to give employees a stake in the company's success Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) . Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.

Data Intelligence, LLC is seeking a highly experienced Cyber Security Lead / Information Systems Security Officer (ISSO) to support cybersecurity operations and compliance for Navy and Department of Defense (DoD) systems. This role requires deep expertise in Information Assurance (IA), cybersecurity compliance frameworks, and Navy-specific cybersecurity practices. The ideal candidate will have extensive experience working with Navy Cross Domain Solutions (NCDSO) and a strong technical background in military C4I/IT systems. Key Responsibilities: Serve as the Cyber Security Lead/ISSO for classified and unclassified Navy/DoD systems. Lead Risk Management Framework (RMF) efforts in accordance with DoD 8500 Series, NIST SP 800 Series, and other applicable cybersecurity policies and guidelines. Develop, review, and manage technical documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plan of Action & Milestones (POA&Ms). Interface with the Navy Cross Domain Solutions Office (NCDSO) to support secure cross-domain solutions, including submission packages and coordination of approvals. Provide subject matter expertise in support of system security engineering, integration, and testing. Coordinate with system engineers, developers, and stakeholders to ensure security controls are effectively implemented. Monitor systems for compliance with DFARS Clause ************ and other DoD IA requirements. Assist in the preparation and review of technical instructions, engineering plans, and test-related documentation. Maintain up-to-date knowledge of emerging cybersecurity threats, tools, and regulatory requirements. Support system Certification and Accreditation (C&A) processes in accordance with NSA and DoD standards. Required Qualifications: Education: Master's degree from an accredited college or university in Computer Science, Information Systems Management, Cybersecurity, or a related field. Experience: Minimum of 10 years of Navy or DoD experience in Information Assurance and Cybersecurity. At least 5 years of recent experience (within the last 5 years) directly supporting Navy cybersecurity programs and RMF processes. Direct experience with the Navy Cross Domain Solutions Office (NCDSO) within the last five years. Demonstrated expertise in DoD cybersecurity requirements, including the DoD 8500 Series and NIST SP 800 Series. Experience with engineering documentation including technical instructions, engineering plans, and systems integration documents. Strong understanding of military C4I/IT systems, including Navy SATCOM (MILSATCOM and Commercial), Tactical Communications, and GPS systems. High familiarity with the NSA certification process for secure systems. Certifications: Compliant with DFARS Clause ************ for Information Assurance Contractor Training and Certification (e.g., CISSP, CISM, Security+, or equivalent). Security Clearance: Must hold an active Top Secret / SCI (TS/SCI) clearance. Preferred Skills: Strong leadership and communication skills with the ability to brief senior stakeholders. Ability to lead complex cybersecurity projects with minimal supervision. In-depth knowledge of secure system design and implementation in classified environments. Experience collaborating with cybersecurity authorities across Navy and DoD organizations. About Data Intelligence, LLC: Data Intelligence, LLC (DI) is a small business that provides Information Technology System Development (Agile, DevSecOps, Cloud Platform support) Cybersecurity (RMF, Security Engineering, Cross Domain Solutions), Tactical Data Link Standards Development and Testing, and Logistics/Warehousing services to U.S. federal clients both CONUS and OCONUS. DI consistently demonstrates exceptional customer service, maintains an employee-centric culture, and delivers hands-on technical expertise to help our clients achieve their mission. Since 2005, DI has successfully provided IT Systems Engineering, Software Development, Cybersecurity, and supporting solutions and services to customers that include the Department of Defense, Intelligence, and Federal Civilian clients. Current clients include the US Navy, Air Force, Army, Marine Corps, Coast Guard, National Geospatial-Intelligence Agency, Defense Logistics Agency, and The Department of Homeland Security. DI is headquartered in Marlton, New Jersey, with satellite offices in California, Maryland, Ohio, Pennsylvania, Virginia, and Washington, D.C. Why you should join us: Data Intelligence offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays. Data Intelligence is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

General information Requisition # R64222 Posting Date 11/14/2025 Security Clearance Required TS/SCI Remote Type Onsite Time Type Full time Description & Requirements Shape the future of defense with MANTECH! Join a team dedicated to safeguarding our nation through advanced tech and innovative solutions. Since 1968, we've been a trusted partner to the Department of Defense, delivering cutting-edge projects that make a real impact. Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career forward and be part of something extraordinary. Your journey starts now-protect and innovate with MANTECH! MANTECH seeks a motivated, career and customer-oriented Information Systems Security Officer with strengths in Information Systems Security to join our team at Marine Corps Base Camp Pendleton California. This position will assist Marine Corps Warfighting Laboratory (MCWL) prepare for and maintain the IT infrastructure, IT capabilities and Audio-Visual capabilities to support emerging ICD 705 Sensitive Compartmentalized Information Facilities (SCIFs) and Special Access Control Facilities (SAPFs) through planning, activation and operations. Responsibilities include but are not limited to: * Experience in network design, network monitoring, systems development, and knowledge of Information Assurance (IA) policies, directives, and best practices across DoD and Marine Corps. * Knowledge and experience with organizations within the Marine Corps responsible for facilitating network approvals and connections. * Work with various Marine Corps, Navy, Joint, and other services to coordinate installs supporting Initial Operating Capability (IOC) and Final Operating Capability (FOC). * Ability to communicate and provide effective staff coordination across government, Marine Corps, and contractor organizations. * Support the facility Site Security Manager (SSM)/Special Security Representative (SSR) and Information Systems Security Manager (ISSM) to oversee the secure installations and operations of systems across multiple security domains and in accordance with policies, directives, and best practices. * Establishes and satisfies complex system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands. Supports Marine Corps and other customers at the highest levels in the development and implementation of doctrine and policies. Minimum Qualifications: * Bachelor's degree and at least 10 years' experience planning and/or operating IT infrastructure within ICD 705 facilities. * Experience with network security aspects of installations and operations. Preferred Qualifications: * Experience with MS Word, MS Power Point Clearance Requirements: * Candidate must have a current/active Top Secret clearance with the ability to obtain and maintain a TS/SCI clearance prior to starting this position. Physical Requirements: * Ability to maintain construction security oversight in outdoor environment; walk (with personal protective equipment) to inspect and document delivery of components and assembly/construction of structure. The projected compensation range for this position is $112,400.00-$186,500.00. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, MANTECH invests in its employees beyond just compensation. MANTECH's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, short-term and long-term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections. MANTECH International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation. If you need a reasonable accommodation to apply for a position with MANTECH, please email us at ******************* and provide your name and contact information.

The Sr. Security Engineer is part of the Global IT, Security & Compliance (CISO) team, supporting security across IT, OT, and cloud environments. This role involves managing internal security platforms, partnering with our 24/7 MDR provider, responding to incidents, and integrating security into company-wide initiatives. The Senior SOC Engineer drives threat detection engineering, response automation, and security visibility across endpoints, networks, and cloud infrastructure. They are responsible for the technical leadership of SOC activities, mentoring junior engineers, optimizing integrations (Zscaler, Sentinel, Vulnerability management tools), and contributing to the global security roadmap and incident response program. What you will do * Lead and support internal incident management, including triage, containment, remediation, and post-incident reviews. * Act as the primary interface with our external MDR team for alerts, investigations, and incident handling. * Onboard and integrate new log/data sources into security monitoring. * Monitor vulnerabilities and support patch management coordination. * Design, manage, maintain, and optimize internal security applications such as EDR/XDR, SIEM, SOAR, IAM, PAM, vulnerability management, and DLP. * Develop and automate operational processes, playbooks, and response workflows. * Partner with IT, OT, and business teams to embed security into projects (cloud, infrastructure, workplace, OT). * Support OT security initiatives, including securing industrial control systems, legacy systems, and production environments. * Contribute to security architecture and roadmap initiatives. * Act as a security advocate to promote best practices and raise awareness across teams. * Design modern, user-friendly security solutions that balance usability, compliance, and risk reduction. Qualifications * Bachelor's degree in information security, computer science, or engineering * Master's degree in information security, computer science, or engineering (preferred) * 5 years' experience working in or with a SOC or MDR environment * Strong understanding of incident response processes and digital forensics basics * Knowledge of security frameworks and standards (ISO 27001, NIST, CIS, MITRE ATT&CK) * Ability to design and implement modern, user-friendly security solutions that drive adoption across business and IT/OT stakeholders * Excellent communication skills to collaborate with IT, OT, and business stakeholders * Analytical mindset with problem-solving ability * Relevant certifications are a plus (e.g., GCIA, GCIH, GCED, Azure Security Engineer, CISSP, Security+) * EDR/XDR and endpoint security (Microsoft Defender) * SIEM/SOAR administration and tuning (Microsoft Sentinel) * Understanding of Identity and Access Management (IAM, PAM, MFA) * Vulnerability management tools and remediation workflows * Cloud security (Azure, AWS, GCP) * Scripting/automation * OT security (ICS/SCADA, IIoT, legacy systems) desirable Base salary range: $112,640 - $154,880 Placement of new hires in this wage range is based on several factors including education, skill sets, experience, and training. Total Rewards We offer all Team Members a total rewards package including competitive pay, annual performance bonus, a generous benefit package with comprehensive Medical/Dental/Vision coverage, 401(k) plan with employer contribution, and paid vacation, personal and sick days. Corporate Social Responsibility Bachem takes responsibility for future generations by a careful handling of resources and avoiding environmental risks. We continually improve our ecological performance and develop and implement new approaches for enhancing employees' environmental awareness. EcoVadis has awarded Bachem Gold Medal status in their assessment of Bachem. Bachem Americas is an Equal Opportunity Employer As an equal opportunity employer, we celebrate the diversity of our team and are committed to building an inclusive workplace where individuals are hired and advanced based on merit, skills, and qualifications. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or other legally protected status. Please note: unsolicited resumes from recruitment agencies will not be considered. Share this job posting by email

Responsibilities Firewall management (e.g. DMZ, Internet, Third Party connections), specifically for Next Generation Firewalls Maintenance of IPAM Maintenance of remote access tools Support enterprise incidents Researches emerging threats and vulnerabilities to aid in the identification of network incidents Analyzes data from threat and vulnerability feeds and analyzes data for applicability to the client's organization Ensures compliance with all applicable configuration standards Recommends security controls and/or corrective actions for mitigating technical and business risk Produces vulnerability, configuration, and coverage metrics and reporting to demonstrate assessment coverage and remediation effectiveness Provision and management of multi-factor authentication (e.g., token, certificate) Malicious code detection and prevention, and Internet monitoring (e.g. IDS/IPS) Security policy verification Tiered web filtering (e.g., URL filtering, malicious sites, spyware, advertisements, instant messaging, free software downloads) Internet usage reporting Provision, installation, configuration, management, and maintenance of network intrusion detection and prevention sensors at specified network entry points Intrusion Incident reporting Ongoing vulnerability assessment and remediation activities Support of Third Party security assessment, scanning and penetration testing Design, implementation, management and maintenance of encryption solutions Management of Client-owned security certificates, SSLs and domain names; where applicable Logging, tracking and management of security risks and issues to Resolution and closure Network security Services reporting per Client requirements Remediation of discovered security risks from any security audit findings Qualifications · BS in Computer Science, Information Security, or a related field is highly desirable · 7+ years of work experience in information security, especially in a network security Engineer role · Preferred Certification - CSA+, CISSP, GIAC, PCNSA, PCNSE, PCDRA Competencies Required Experience with NGFW, specifically with Palo Alto and Panorama Experience managing Infoblox Technical expertise in analyzing threat event data, evaluating malicious activity, documenting unusual files and data, and identifying tactics, techniques and procedures used by attackers Technical expertise in system security vulnerabilities and remediation techniques, network and web-related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, etc.) Technical and troubleshooting expertise in security engineering, system and network security, authentication and security protocols Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business An understanding of organizational mission, values, and goals and consistent application of this knowledge ISO 2700 Awareness

VTG is seeking an Electronic Security Systems (ESS) Engineer Technician in San Diego, California. What will you do? Summary General technical knowledge to build, test, troubleshoot, repair and modify developmental and electrical or electronic components, parts, equipment, and systems. Essential Duties and Responsibilities include the following. Other duties may be assigned. * Perform site surveys to confirm prevailing site conditions. * Provide project status/updates to the respective project manager. * Understanding of a government project lifecycle. * Real world analytical problem-solver, able to anticipate project issues, and create new systems to streamline operations, resolve client concerns and improve project efficiency. * Assist in the integration, installation, engineering, and testing of Access Control, Intrusion Detection and Video Management Systems. * Assist in the de-installation, relocation and/or installation of systems. * Support cable plant and equipment installation. * Pull, test, and terminate CAT5, CAT5e, CAT 6, copper, and fiber. * Conduct performance tests of all installed data cable using OTDR tools and provide associated cable test results in both soft and hard copy formats. * Provide training, assistance, and feedback to develop excellent technicians. * Complete all wiring, connections, and equipment installations ensuring that systems are complete and operational according to contract requirements. * Perform work in unusual and sometimes difficult positions such as climbing ladders, scaffolding, and high lift equipment up to 100 feet, crawl spaces, above ceilings, etc. * Manual dexterity required for frequent reaching, climbing, and lifting of moderate objects, operation of power and manual tools/equipment, and operating office equipment. * Able to delegate effectively and motivate team members to achieve on-time and within budget project completions. * Maintain and inspect own and others work to meet requirements of work Quality Standards. * Update and maintain all design documents by marking all red-lined changes during the course of installation. Do you have what it takes? Qualifications * To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Preferred Education and/or Experience * Associates Degree or higher in Electrical Engineering, Electronics Technology, Information Technology or similar or Four (4) years of U.S. military service as a technician or completion of a formal two year or more contractor apprenticeship in a related field that included at least six months of formal classroom training and address electrical circuit theory. * Practical experience as an installer of equipment for the Department of Defense and/or major telecommunications services or equipment providers * Experience with Access Control Systems (ACS), Intrusion Detection Systems (IDS), Closed Circuit Television (CCTV), or Perimeter Security are a plus * Familiarity with NIWC policies and procedures to include Daily Situation Reports (DSRs) and Site Survey Reports (SSRs) preferred. * Must be able to effectively lead a crew of installers in the completion of multiple site locations. * Effectively brief site personnel on the installation status and on future plans for completing the installation. * Understand and correctly red-line as-built drawings. * Able to locate and correct installation errors such as standards violations and incorrect wiring. Clearance * An active DOD Secret clearance. * Valid passport for international travel VTG's estimated starting pay range is $28.00 - $35.00 per hour, which is a general guideline for the geographic location. When extending an offer, VTG also considers work experience, education, skill level, market considerations and may possibly include contractual requirements which may cause an offer to fall outside of this range.

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. We have an exciting opportunity for an Information Systems Security Manager to join our Classified Computing team located in Poway, CA. This position reports to the Director of Classified IT Systems. With general direction, this position is responsible for leading the design, development and implementation of information assurance programs and related procedures. DUTIES AND RESPONSIBILITIES: * Leads the design, development, and implementation of information security programs, procedures and systems for classified enclaves. * Ensures system compliance with the authoritative US Government requirements including (but not limited to): ICD503, JSIG, DISA STIGS, DD254, SCGs, etc. * Maintain authorization of classified systems/circuits via the continuous monitoring process to keep it in good standing with governing authorities. * Ensures vulnerability scanners and host-based security tools/suites are deployed and monitored in accordance with US Government regulations. * Assesses and mitigates system security threats and risks. * Oversees the patch management process. * Oversees and executes the self-inspection process. * Oversees audits of information technology systems; ensures periodic self-inspections are conducted. * Plans, designs and develops strategic initiatives to ensure secure operation and requirements are met. Represents the organization as a primary contact with internal and external representatives. * Develops information security curriculum and course contents and implements training. * Functions in a leadership role by providing direction to support and professional staff. * Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company. * Expected to work in a safe manner in accordance with established operating procedures and practices. * Performs additional duties as assigned. We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply. Job Category Security Travel Percentage Required 0% - 25% Full-Time/Part-Time Full-Time Salary State California Clearance Level Secret Pay Range Low 112,320 City San Diego Clearance Required? Yes Pay Range High 205,058 Recruitment Posting Title Information Systems Security Manager ISSM Job Qualifications * Typically requires a bachelor's degree in a related discipline, Information Assurance certification and five or more years of professional experience in information assurance or a related field. Equivalent professional experience may be substituted in lieu of education. * Must possess an active IC/DoD Top Secret (TS) Clearance with the ability to obtain and maintain access to Sensitive Compartmented Information (SCI) and Special Access Information (SAP), and willingness to undergo CI polygraph. * Must have a current (favorably adjudicated) polygraph examination or be willing to undergo a polygraph examination with favorable adjudication. * Must demonstrate in-depth knowledge of NIST 800-53 (Risk Management Framework), JSIG, DAAPM, and other related information assurance principles, theories, concepts and techniques. * Experience with Microsoft Active Directory, networking/routing principles, multi-factor authentication, host-based security systems, and Nessus. * Experience with system assessment/hardening tools - DISA STIGs, SCAP, Nessus, etc. * Must demonstrate a broad understanding of information assurance principles, theories, concepts and techniques. * Must have experience organizing, planning, scheduling, conducting, and leading work assignments to meet project milestones or established completion dates. * Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes. * Must be customer focused and possess: * The ability to identify issues, analyze data and develop solutions to a variety of highly complex technical and administrative problems. * DoD 8570 IAM Level III certification required (e.g. CISSP, CISM or GSLC). * Experience with Sensitive Compartmented Information is required. * Experience with Special Access Programs is desired. * Experience with multiple Government information security policies and regulations: e.g. Risk Management Framework (RMF), ICD-503, JSIG, and NIST 800 series special publications. * Excellent analytical, verbal and written communication skills to accurately document, report, and present findings. * Excellent interpersonal skills enabling an effective interface with other professionals. Ability to work independently or in a team environment is essential as is the ability to work extended hours as required. US Citizenship Required? Yes Experience Level Management Relocation Assistance Provided? No Workstyle Onsite

Are you looking to make an impactful difference in your work, yourself, and your community? Why settle for just a job when you can land a career? At ICW Group, we are hiring team members who are ready to use their skills, curiosity, and drive to be part of our journey as we strive to transform the insurance carrier space. We're proud to be in business for over 50 years, and its change agents like yourself that will help us continue to deliver our mission to create the best insurance experience possible. Headquartered in San Diego with regional offices located throughout the United States, ICW Group has been named for ten consecutive years as a Top 50 performing P&C organization offering the stability of a large, profitable and growing company combined with a focus on all things people. It's our team members who make us an employer of choice and the vibrant company we are today. We strive to make both our internal and external communities better everyday! Learn more about why you want to be here! PURPOSE OF THE JOB The purpose of the Information Security Engineer III is to design secure architectures and develop cybersecurity approaches and techniques to evaluate the security of a system or network. This position will assist with strategic initiatives for short and long-term plans to identify and reduce the attack surface across applications and systems. The position exists to monitor and defend ICW Group's technology against potential threats that jeopardize the financial growth and security goals of the Company. ESSENTIAL DUTIES AND RESPONSIBILITIES Monitors and defends information systems against unauthorized access, modifications and/or destruction. Monitors cloud, on-prem, and SaaS environments for security threats using SIEM, EDR, cloud-native logging, and network telemetry. Leads security incident response, including preparation, detection, analysis, containment, eradication, and recovery. Researches and implements methods to remediate network and application security vulnerabilities. Leads and participates in security architecture controls reporting, compliance audits, monthly and ad-hoc statistics and trends, and risk-focused reports including internal and 3rd party Risk Assessments. Utilizes automated tools to identify, assess, and report security concerns, with emphasis placed on effective communication to stakeholders. Takes an active lead to inform, advise, and partner with business units to help better secure operations. Conducts threat hunting and root-cause analysis to identify anomalous behavior, exploitation attempts, and indicators of compromise. Investigates potential data misuse, data exfiltration, and anomalous access patterns using logs, DLP, and monitoring tools. Leads and runs complex security related projects and resolves security related issues. Resolves complex security projects and issues. Develops a set of security standards to respond to and recover from a security breach. Uses advanced technologies including Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus, Network Packet Analyzers, Malware analysis and forensics tools to detect intrusions, breaches in compliance, etc. Prepares and analyses system security reports by collecting, analyzing, and summarizing data and trends and makes recommendations to improve security. Conducts threat modeling, secure design reviews, and application security assessments. Maintains operational security posture for an information system or program to ensure information system security policies, standards, and procedures are established and followed. Creates and updates technical security standards for assets and software. Serves as cyber security technical subject matter expert and trainer and primary resource for the organization. Provides information security expertise to system development teams throughout the life cycle process. Partners with Engineering, Infrastructure, Cloud, Data, and Operations teams to embed security into system design and delivery. Leads and conducts information security risk assessments including documenting processes, service level agreements and best practices. Develops the overall security design, development, testing and implementation of security solutions. Recommends compliance strategies that support customer requirements and alignment to company policy. Tracks and reports on security metrics, risk trends, and remediation progress for assigned initiatives. Collaborates with key stakeholders on remediation strategies and follow remediation activities through closure. Partners with project management and other internal teams in determining overall security solutions. Executes technical and process changes required to adopt, maintain, and adjust InfoSec controls as required to manage the company's risks and align with industry best practices. Works closely with Cloud Engineering to define secure deployment patterns, guardrails, and reusable security-approved architectures. Works with peers in other internal groups to drive technical security risk down in targeted areas. Takes end-to-end ownership of one or more security platforms, controls, or metrics, driving continuous improvement. Contributes to the continual enhancement of the IT security infrastructure program through governance, core processes, leading technology, and enhancement of team's skill sets. Coaches and educates engineers and partners to improve early detection, secure design, and shared security ownership. EDUCATION AND EXPERIENCE Bachelor's Degree required in Engineering, Cybersecurity, Networking, or Computer Science related discipline. Minimum 8 years of experience working in a security engineering related role designing secure networks, systems and application architectures or equivalent combination of education and experience required. Minimum 3-5 years of experience in AWS Cloud Security services preferred. Direct experience using advanced technologies such as Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus software, Network Packet Analyzers, content filtering, Malware analysis and forensics tools to detect intrusions. Experience in cyber security role requiring knowledge of data analysis, risk assessment, risk mitigation, investigation methods, incident management concepts and practices, and policy and procedure development. Experience with AWS Services such as AWS Identity & Access Management, AWS Organizations, AWS Security HuB, Guard Duty, CloudTrail, AWS CloudTrail. CERTIFICATES, LICENSES, REGISTRATIONS Certification in GSEC, CISSP, and/or Security+ preferred. AWS Certified Security - Specialty, preferred. KNOWLEDGE AND SKILLS Knowledge of risk assessment tools, technologies, and methodologies. Knowledge of disaster recovery, computer forensic tools, technologies, and methods. Knowledge of enterprise security platforms. Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code, and anti-virus software. Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention. Demonstrated experience as a lead engineer in the design, implementation and support in an enterprise IT environment. Ability to combine disparate skills and thinking to craft solutions and solve complex operational problems. Ability to hypothesize on root cause of inefficiencies and then test out probable solutions against those hypotheses. Must be able to read, write and speak English effectively. Ability to effectively communicate/present technical information to a non-technical audience. Ability to cross train and share information with team members. PHYSICAL REQUIREMENTS Office environment - no specific or unusual physical or environmental demands and employees are regularly required to sit, walk, stand, talk, and hear. Employees are required to reach with hands and arms; stoop, kneel, crouch, or crawl. Employees must occasionally lift and/or move up to 30 pounds. Employees are required to have visual acuity and be capable of operating and viewing computers and other electronic devices for extended periods of time. WORK ENVIRONMENT This position operates in an office environment and requires the frequent use of a computer, telephone, copier, and other standard office equipment. We are currently not offering employment sponsorship for this opportunity. #LI-TM1 #LI-HYBRID The current range for this position is $121,624.81 - $217,710.99 This range is exclusive of fringe benefits and potential bonuses. If hired at ICW Group, your final base salary compensation will be determined by factors unique to each candidate, including experience, education and the location of the role and considers employees performing substantially similar work. WHY JOIN ICW GROUP? • Challenging work and the ability to make a difference • You will have a voice and feel a sense of belonging • We offer a competitive benefits package, with generous medical, dental, and vision plans as well as 401K retirement plans and company match • Bonus potential for all positions • Paid Time Off with an accrual rate of 5.23 hours per pay period (equal to 17 days per year) • 11 paid holidays throughout the calendar year • Want to continue learning? We'll support you 100% ICW Group is committed to creating a diverse environment and is proud to be an Equal Opportunity Employer. ICW Group will not discriminate against an applicant or employee on the basis of race, color, religion, national origin, ancestry, sex/gender, age, physical or mental disability, military or veteran status, genetic information, sexual orientation, gender identity, gender expression, marital status, or any other characteristic protected by applicable federal, state or local law. ___________________ Job Category IT

Apply share * link Copy link * email Email a friend Minimum qualifications: * Bachelor's degree in Electrical Engineering, Computer Engineering, Computer Science, a related field, or equivalent practical experience. * 10 years of experience in security certification (FIPS, Common Criteria, SESIP, EMVco, GP). * Experience with hardware and software architecture. * Experience in Technical Program Management. * Experience with development and product life-cycle. * Experience in embedded security and cryptography. Preferred qualifications: * Common Criteria certification for a Secure IC, smartcard or similar devices. * FIPS140-3 certification for a crypto module (CMVP). * Experience with government and regulatory policies related to security. * Knowledge of PP0084, CAVP and CMPV requirements. * Familiarity with the SOGIS Application of Attack Potential to Smartcard. * Familiarity with JIL Minimum Site Security Requirements (MSSR). About the job Be part of a team that pushes boundaries, developing custom silicon solutions that power the future of Google's direct-to-consumer products. You'll contribute to the innovation behind products loved by millions worldwide. Your expertise will shape the next generation of hardware experiences, delivering unparalleled performance, efficiency, and integration. In this role, you will identify the primary drivers (e.g., business, regulatory,) for certification and manage security certification programs (Common Criteria, FIPS) from start to finish. You will be the direct interface with the evaluation laboratory and the Certification Body. You will be responsible for providing on time all the evidence and material required for the certification. You will work directly with all the stakeholders internally (engineering and corporate teams) to convey the requirement and ensure they are met. You will drive internal improvements and take decisions as needed to achieve success. Within the Security Assurance team you will have the support from security experts and a red team to help you achieve your objectives. Google's mission is to organize the world's information and make it universally accessible and useful. Our team combines the best of Google AI, Software, and Hardware to create radically helpful experiences. We research, design, and develop new technologies and hardware to make computing faster, seamless, and more powerful. We aim to make people's lives better through technology. The US base salary range for this full-time position is $183,000-$271,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google. Responsibilities * Assess engineering problems, understand the interplay between certification requirements and functional requirements, and contribute to shaping technical directions. * Organize and manage security certification activities. Monitor and communicate progress, risks, and mitigation. * Identify stakeholders (internal and external) and work with them to strategize, plan, and prioritize objectives, estimate task duration, and ensure schedules and dependencies are aligned and support those objectives. Leverage a variety of methodologies (e.g., Agile, Waterfall) to make teams most effective. * Establish systems to identify improvements and drive future needs around security certification. * Discern when a change is appropriate and to drive change across the organization, working closely with partner teams to manage and communicate changes, introducing them in the minimal disruptive manner. Put systems and mechanisms in place to facilitate future changes.

Saronic Technologies is a leader in revolutionizing defense autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations for the Department of Defense (DoD) through autonomous and intelligent platforms. As a Corporate Security Engineer, you'll safeguard the systems that power Saronic's mission. You'll engineer, harden, and operate Microsoft 365 and AWS environments to meet defense-grade security requirements while protecting our people, data, and operations. You'll own the protection of every employee, system, and credential. Your work will secure the full user lifecycle by automating onboarding/offboarding, protecting remote and traveling employees, and minimizing human-targeted risks like phishing and social engineering. You will design secure-by-default platforms, automate compliance and monitoring through cloud solutions, and ensure our environments remain resilient, frictionless, and compliant. At Saronic, security is a force multiplier; security is not a blocker. You will have the autonomy to build and the mandate to innovate, working side-by-side with engineers who are developing technology that directly supports national defense. This role is ideal for someone who wants to own security at scale, shape a defense-grade security program, and see their impact every day. You'll thrive here if you're driven by mission, biased toward action, and enjoy working in a high-trust, low-ego team that values resilience, integrity, and creativity. Key Responsibilities: Cloud and Identity Security Administer and secure multiple Microsoft 365 GCC High and Microsoft 365 commercial tenants and AWS GovCloud and commercial accounts to align with NIST SP 800-171, NIST CSF, and ISO 27001 standards Configure and harden identity and access management (Entra ID, AWS IAM), data loss prevention (Purview), and conditional access policies to enforce multi-factor authentication, single sign-on, and least privilege Implement security guardrails and automation in partnership with IT and DevOps teams using Infrastructure as Code (Terraform, Ansible, CloudFormation) Continuously drive security automation and visibility improvements across people, process, and technology User and Endpoint Security Engineer and enforce secure device baselines and policies via Intune and Jamf for unified endpoint management Configure and maintain endpoint protection platforms (Defender, CrowdStrike) Secure the user lifecycle through automated identity and device provisioning/de-provisioning, least-privilege enforcement, remote and traveling employee protection, and anomalous behavior monitoring Reduce phishing and user-targeted threats through identity hardening, email protections, and user awareness feedback loops Network Security Engineer and maintain secure network architectures across global offices, remote, and cloud environments through VPNs, network segmentation, DNS filtering, secure network connectivity, and firewall configurations Lead vulnerability, configuration, and asset management to maintain secure baselines and visibility across all enterprise systems Support incident response through automation, playbooks, and forensic readiness Application Security Harden and monitor SaaS applications through secure SaaS controls, SSO/SAML enforcement, SCIM provisioning, and least privilege Manage shadow IT detection, vendor risk reviews, and data protection Required Qualifications: 3+ years proven experience administering and securing Microsoft 365 through Intune + Jamf, Entra ID, Defender, Purview, and Sentinel Hands-on experience securing AWS environments, including secure configurations of IAM, GuardDuty, CloudTrail, Config, Security Hub, and encryption/key management controls Proven proficiency in scripting and automation (i.e., Python, PowerShell, Bash) Familiarity with cloud and identity ecosystems (i.e., Azure, AWS, Okta, Entra ID, Active Directory) This role requires the ability to obtain and maintain a security clearance Preferred Qualifications: Experience with highly regulated frameworks such as NIST SP 800-171, NIST SP 800-53, ISO 27001, or FedRAMP Familiarity with cloud and endpoint observability and EDR tools (i.e., Defender, CrowdStrike, Sentinel, Splunk) Demonstrated experience automating compliance and audit processes Experience implementing and managing secure cloud architecture and controls using Infrastructure as Code tools (i.e., Terraform, CloudFormation, Ansible) Proven ability to design and operate Zero Trust Network Access Experience implementing network intrusion detection and response tools Demonstrated ability to evaluate SaaS vendor security posture and integrate approved applications securely into the environment Background in defense, aerospace, or high-assurance manufacturing Relevant security certifications (SC-100, MS-500, MD-102, AWS Certified Security - Specialty, GCSA, GCIA, CISSP, CCSP) Physical Demands Prolonged periods of sitting and computer work Occasional standing and walking within the office Manual dexterity to operate computers and office equipment Visual acuity to read screens and documents Occasional reaching or lifting up to 20 pounds (e.g., equipment or supplies) Benefits:Medical Insurance: Comprehensive health insurance plans covering a range of services Saronic pays 100% of the premium for employees and 80% for dependents Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents Time Off: Generous PTO and HolidaysParental Leave: Paid maternity and paternity leave to support new parents Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses Retirement Plan: 401(k) plan Stock Options: Equity options to give employees a stake in the company's success Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) . Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.

**MANTECH** seeks a motivated, career and customer-oriented **Information Systems Security Officer** with strengths in Information Systems Security to join our team at Marine Corps Base **Camp Pendleton California.** This position will assist Marine Corps Warfighting Laboratory (MCWL) prepare for and maintain the IT infrastructure, IT capabilities and Audio-Visual capabilities to support emerging ICD 705 Sensitive Compartmentalized Information Facilities (SCIFs) and Special Access Control Facilities (SAPFs) through planning, activation and operations. **Responsibilities include but are not limited to:** + Experience in network design, network monitoring, systems development, and knowledge of Information Assurance (IA) policies, directives, and best practices across DoD and Marine Corps. + Knowledge and experience with organizations within the Marine Corps responsible for facilitating network approvals and connections. + Work with various Marine Corps, Navy, Joint, and other services to coordinate installs supporting Initial Operating Capability (IOC) and Final Operating Capability (FOC). + Ability to communicate and provide effective staff coordination across government, Marine Corps, and contractor organizations. + Support the facility Site Security Manager (SSM)/Special Security Representative (SSR) and Information Systems Security Manager (ISSM) to oversee the secure installations and operations of systems across multiple security domains and in accordance with policies, directives, and best practices. + Establishes and satisfies complex system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands. Supports Marine Corps and other customers at the highest levels in the development and implementation of doctrine and policies. **Minimum Qualifications:** + Bachelor's degree and at least 10 years' experience planning and/or operating IT infrastructure within ICD 705 facilities. + Experience with network security aspects of installations and operations. **Preferred Qualifications:** + Experience with MS Word, MS Power Point **Clearance Requirements** **_:_** + Candidate must have a current/active Top Secret clearance with the ability to obtain and maintain a TS/SCI clearance prior to starting this position. **Physical Requirements:** + Ability to maintain construction security oversight in outdoor environment; walk (with personal protective equipment) to inspect and document delivery of components and assembly/construction of structure. MANTECH International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation. If you need a reasonable accommodation to apply for a position with MANTECH, please email us at ******************* and provide your name and contact information.

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. We have an exciting opportunity for an ISSO to join our Security Classified Systems team. This position is located in San Diego (Rancho Bernardo) CA. DUTIES AND RESPONSIBILITIES: * Interprets regulations as they apply to information systems, platforms, and IT operating processes, practices, and procedures. * Participates in the development or modification of the computer environment information assurance security program plans and requirements. * Participates in the development, distribution, and maintenance of System Security Plans, instructions, guidance, and standard operating procedures. * Participates in audits of IT, platforms, and operating procedures; analyzes results. * Participates in identifying risks and makes recommendations for improvements; may participate in corrective measures when incidents or vulnerabilities are discovered. * Maintains knowledge of applicable policies, regulations, and compliance documents related to classified computing assets and environments. * May represent the organization as a primary contact with internal representatives. * Maintains the strict confidentiality of sensitive information. * Performs other duties as assigned. * Responsible for observing all laws, regulations, and other applicable obligations wherever and whenever business is conducted on behalf of the Company. * Expected to work in a safe manner in accordance with established operating procedures and practices. We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply. Job Category Information Technology Travel Percentage Required 0% - 25% Full-Time/Part-Time Full-Time Salary State California Clearance Level Secret Pay Range Low 89,180 City San Diego Clearance Required? Yes Pay Range High 155,825 Recruitment Posting Title Information System Security Officer - ISSO Job Qualifications * Typically requires a bachelors degree in a related discipline and six or more years of progressive professional experience in information assurance or a related field. Equivalent professional experience may be substituted in lieu of education * Must possess an active Secret clearance and have the ability to obtain and maintain a TS (with SAP & SCI eligibility) * Must be able to meet the requirements to obtain and maintain a Department of Energy (DOE) Q clearance * Must maintain DoD 8570 IAM Level I (e.g. Security +) professional certification as required by customers or contractual obligations. * Security + certification required. * Experience with DoD policy such as Risk Management Framework and Joint SAP Implementation Guide. * Operational experience with installing, troubleshooting, and auditing Windows desktop & server operating systems. * Experience with DISA STIGs, SCAP tool, ACAS. * Experience installing and troubleshooting common x86-based computer hardware. * Must demonstrate a general understanding of information assurance principles, theories, concepts and techniques. Must have experience organizing, planning, scheduling, conducting, and coordinating work assignments to meet project milestones or established completion dates. * Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes. * Must be customer focus and possess: * The ability to identify issues, analyze data and develop solutions to a variety of problems. * Good analytical, verbal and written communication skills to accurately document, report, and present findings. * Good interpersonal skills enabling an effective interface with other professionals; and good computer skills. * Ability to work independently or in a team environment is essential as is the ability to work extended hours as required. US Citizenship Required? Yes Experience Level Mid-Level (3-7 years) Relocation Assistance Provided? No Workstyle Onsite

Saronic Technologies is a leader in revolutionizing defense autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations for the Department of Defense (DoD) through autonomous and intelligent platforms. Saronic Technologies is a leader in defense autonomy at sea. We're seeking an Embedded Security Engineer to design, implement, and harden security for the software that runs on our autonomous surface vessels. You'll work across device identity, secure boot and update flows, secrets/key management, and secure communications-partnering closely with autonomy, platform, manufacturing, and field teams to deliver trustworthy systems that operate reliably in maritime environments. Senior Engineers: 3+ years of experience delivering security features on embedded/Linux systems, preferably in autonomy, robotics, aerospace, or defense. Staff Engineers: 8+ years of experience including technical leadership across secure boot/update pipelines, identity/PKI, and fleet-wide hardening; demonstrated ownership of mission-critical features from design through field deployment.Key Responsibilities: Design, develop, and maintain security features for embedded Linux systems (systemd-managed services, Rust/C/C++) used for navigation, control, and communications. Own per-vessel identity and mutual authentication for boat↔cloud and boat↔boat links; implement certificate/key rotation and revocation workflows. Implement signed/verified update mechanisms with rollback protection; collaborate with manufacturing on secure boot enablement and key provisioning. Integrate and operate hardware-backed key storage (e.g., TPM/secure elements) and sealed secrets for on-vessel services. Harden network paths over constrained links: TLS/mTLS, VPN overlay policies, and least-privilege service access. Reduce attack surface in embedded services (capabilities, seccomp/AppArmor where appropriate, safe process execution, input validation). Build tamper-evident, structured logging and diagnostics suitable for ship→shore analysis and incident response. Perform threat modeling, code reviews, and security testing (static/dynamic analysis, fuzzing, negative testing). Troubleshoot and debug complex security issues in fielded systems; author runbooks and safe-rollback procedures. Document designs, processes, and verification results for compliance and knowledge sharing; contribute to secure coding guidelines. Stay current on emerging security technologies and best practices relevant to embedded Linux and autonomous systems. Required Qualifications: Bachelor's or Master's degree in Computer Science, Electrical/Computer Engineering, Software Engineering, or a related field. Proficiency in Rust and/or C/C++ developing software for embedded Linux. Strong understanding of cryptographic primitives and protocols (keys, certificates, signatures, TLS/mTLS), and experience integrating them into systems. Experience with secure/verified boot, OTA/update safety, and firmware/bootloader workflows. Familiarity with VPN overlays and constrained-network security patterns. Comfortable with Linux security fundamentals (users/permissions, capabilities, sandboxing) and systemd-based service management. Excellent problem-solving skills and ability to collaborate effectively in na fast-paced, cross-functional environment. Strong written and verbal communication skills. This role requires the ability to obtain and maintain a security clearance Preferred Qualifications: Experience with TPM/secure elements, measured/verified boot, and attestation. Exposure to NixOS-based builds, Yocto, or similar embedded Linux tooling. Experience with authenticated media/telemetry pipelines and secure streaming. DoD/defense domain familiarity and prior work under export-controlled constraints. Physical Demands: Prolonged periods of sitting at a desk and working on a computer. Occasional standing and walking within the office. Manual dexterity to operate a computer keyboard, mouse, and other office equipment. Visual acuity to read screens, documents, and reports. Occasional reaching, bending, or stooping to access file drawers, cabinets, or office supplies. Lifting and carrying items up to 20 pounds occasionally (e.g., office supplies, packages). Benefits:Medical Insurance: Comprehensive health insurance plans covering a range of services Saronic pays 100% of the premium for employees and 80% for dependents Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents Time Off: Generous PTO and HolidaysParental Leave: Paid maternity and paternity leave to support new parents Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses Retirement Plan: 401(k) plan Stock Options: Equity options to give employees a stake in the company's success Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) . Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.