Security architect jobs in Lowell, MA

CompanyFederal Reserve Bank of BostonFederal Reserve Financial Services (FRFS) delivers a suite of payments services to financial institutions via FedLine Solutions, FedNowSM, Fedwire , National Settlement Service (NSS), FedCash , FedACH (Automated Clearing House), and Check Services. We are currently leading a strategic effort to transform FRFS to a national, enterprise-focused organization. Through our evolved structure, we will meet the needs of the marketplace for new products and services more quickly, seek to provide a more robust and unified customer experience across our financial service offerings, and create new career growth opportunities for FRFS staff. The Federal Reserve has developed a new interbank 24x7x365 real-time gross settlement (RTGS) service with integrated clearing functionality, called the FedNow Service. This service enables financial institutions to provide their customers with the ability to send and receive payments any time, any day, and have full access to those funds within seconds. This position is a unique opportunity to be part of this mission-critical Federal Reserve initiative that is transforming the payments landscape in the United States. While open to location and remote work, residence near a Federal Reserve facility is preferred We are seeking a dynamic individual to fill the role of Security Architect & Developer, someone who not only embraces challenges but thrives in proactively solving them. If you are a self-starter with a passion for unraveling the root of issues, automating solutions, and approaching problems from a holistic perspective. In this role, you will be able to help design and implement the backbone of FedNow. Key Responsibilities Develop code to automate security configuration management. Build, test, and deploy cybersecurity relevant technical solutions. Identify and address the root causes of issues, focusing on solving problem categories rather than individual instances. Translate complex problems into manageable, actionable chunks that can be implemented and iteratively improved. Utilize expertise in threat modeling to proactively identify and mitigate potential security risks and inform development efforts. Represent a technologists point of view in selecting tooling and solutions. Participate in agile activities with geographically dispersed agile delivery teams. Proven ability to collaborate, build relationships and influence direct team members in a matrix-management environment. Actively seek to remove barriers and improve security across the program. Document solutions developed and the supporting processes. Strong interest in current security threats, techniques, and landscape, as well as a dedicated and self-driven desire to research current information security landscape. Identify and address the root causes of issues, focusing on solving problem categories rather than individual instances. Engage early and comprehensively. Ability to submit sound product feature requests to drive the platform forward. Knowledge, Skills and Experience Required Ability to program or script in Bash, Python, Java, or Go. Ability to utilize tools like CI/CD Automation similar to TravisCI, CircleCI, Github Action, Gitlab Pipelines or AWS CodeDeploy. Understanding of AWS capabilities, focusing on designing secure cloud architectures, implementing robust security controls within the environment, and identifying and mitigating security vulnerabilities based on threat models. Experience securing critical workloads in a cloud environment. Proven project management skills required to lead/direct technical and business teams to achieve common goals. Ability to flexibly adapt to a rapidly changing environment and generate effective and innovative solutions to address change. Experience working with the Agile framework is highly desirable. Strong communication skills with ability to influence at all levels of the organization; ability to simplify complex security topics for consumption and critical decision making Self-starter and ability to explore and learn new areas and concepts. Ability to rapidly produce proof-of-concept code to demonstrate potential solutions. Knowledge and experience normally acquired through, or equivalent to, the completion of a Computer Science or Computer Engineering Bachelors degree with a minimum of 3-7 years of job-related experience. Supervision This position will not directly supervise employees. Other Considerations Periodic Travel within U.S. may be required - 10-15% of time This role may requires being on-call on a rotational basis, to address urgent issues outside of regular business hours. Salary The salary range for this position is $150,160 - $187,700 - $225,240. The Boston Fed believes in salary transparency. The final salary and offer will be determined by the applicant's background, skills, internal equity, and alignment with market data. Whether you're developing into the job or are a more seasoned candidate, we aim to pay competitively. If you reside outside of the 1st District, you may be hired by your local Federal Reserve District and compensation will follow hiring District's range and policy. The Federal Reserve Bank of Boston is committed to provide equal employment opportunities to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service. All employees assigned to this position will be subject to FBI fingerprint/ criminal background and Patriot Act/ Office of Foreign Assets Control (OFAC) watch list checks at least once every five years. For this job, any offer of employment is contingent upon successfully passing a two-phase security screening. The first phase consists of the satisfactory completion of a physical examination (including a drug screening), reference checks, and a security investigation consisting of credit and criminal history checks. The second phase, which might not be complete until after you begin working at the Reserve Bank, is an additional risk-based security screening determined by the risk rating of the position. Depending upon the sensitivity of the position, this phase may include, and is not limited to, work and residency eligibility verification, and personal interviews with the candidate, references, and prior employers. All applicants must have resided in the United States for at least three (3) years. Full Time / Part TimeFull time Regular / TemporaryRegularJob Exempt (Yes / No) YesJob CategoryInformation Technology Family GroupWork ShiftFirst (United States of America) The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences. Always verify and apply to jobs on Federal Reserve System Careers (************************************* or through verified Federal Reserve Bank social media channels. Privacy Notice

360 IT Professionals is a Software Development Company based in Fremont, California that offers complete technology services in Mobile development, Web development, Cloud computing and IT staffing. Merging Information Technology skills in all its services and operations, the company caters to its globally positioned clients by providing dynamic feasible IT solutions. 360 IT Professionals work along with its clients to deliver high-performance results, based exclusively on the one of a kind requirement. Job Description We are looking to fill multiple full time positions as Information Security Architects in Cumberland RI. Qualifications A minimum of 5+ years of relevant security domain experience. 3+ years of hands on technical experience in network and perimeter security A minimum of 3 years in an architecture role and be able to lead/step up as needed Demonstrated expertise in integrating/developing security solutions in a 7x24 production environment Prior experience in defining the technology strategy for a large, global organization, and the ability to influence and persuade peers and colleagues in other reporting structures Strong Plus Skills: Industry recognized certifications such as CISA, CISM, CISSP, or SANS GIAC are a plus Virtualization Security experience is a strong plus (VMware ESX 6.x, Hytrust, Hypervisor, in-hypervisor malware control. Virtual NIC, NSX or equivalent.) Knowledge of risk assessment methodologies, IT policies and standards Knowledge of vulnerability identification tools, Qualys, Veracode, Qualys WAS. Additional Information In person interview is acceptable.

At WHOOP, we're on a mission to unlock human performance and extend healthspan. Our wearable technology provides personalized insights that help millions of members better understand their bodies, and make smarter decisions about training, recovery, and lifestyle. As we expand our platform, deepen our use of data, and scale globally, we're hiring a Security Architect to design and implement secure, scalable systems that keep our members safe and our business resilient. This is a hands-on role reporting to the CISO, partnering with Engineering, IT, Product Security, and others to embed security into the fabric of how WHOOP builds. We're looking for a technically strong, delivery-oriented architect who can operate across cloud, application, and enterprise environments and who thrives in a fast-moving, mission-driven company. You'll join a growing, execution-oriented security team with influence across the business. You'll help shape secure foundations for a global platform, driving technical excellence and clarity in every decision. We operate with urgency, ownership, and high standards, and expect the same from every team member. RESPONSIBILITIES: * Design and document secure, scalable architectures across cloud, application, endpoint, and SaaS environments to support growth and innovation * Lead the implementation and continuous improvement of security capabilities across areas such as threat detection, identity and access management, data protection, and vulnerability management * Drive secure deployment practices through automation, documentation, and process standardization * Lead security architecture and control design for WHOOP AI initiatives, including the secure use of third-party AI APIs, protection of sensitive data in AI-powered product features, governance of in-house models and MCP infrastructure, and responsible use of AI capabilities across internal and SaaS platforms * Partner with Engineering, Product Security, and IT to review new systems and features, advise on tradeoffs, and deliver secure-by-default outcomes * Serve as a trusted technical leader and mentor across the security and engineering organization * Drive the architecture and evolution of vulnerability management capabilities, ensuring integration with development pipelines, infrastructure, and program-level visibility * Align architectural decisions with applicable regulatory requirements and security standards, including GDPR, SOC 2, ISO 27001, PCI, NIST, laws governing health and biometric data, and emerging AI risk and governance frameworks * Help integrate frameworks like NIST into secure development and operational practices * Define technical success criteria and partner on security metrics and dashboards that drive accountability and visibility across the organization QUALIFICATIONS: * 7-10 years of experience in security architecture, security engineering, or technical security leadership roles supporting complex, distributed systems * Certifications such as AWS Security Specialty, CCSK,OSCP, or CISSP are strongly valued, but not required. * Demonstrated expertise in cloud security, particularly in AWS environments and modern cloud-native architectures * Ability to operate across technical depths, from threat modeling and system design to secure implementation guidance and risk tradeoff discussions * Proven success collaborating with Engineering, Product, and Infrastructure teams to drive secure outcomes in fast-paced, product-led environments * Direct experience with AI/ML security and governance, including secure implementation of third-party AI services, protection of sensitive data across internal models and AI-powered features, and support for policy development, auditability, and control across enterprise and SaaS AI tools, including MCP infrastructure, model access, and responsible use * Experience aligning security programs and architecture with industry frameworks and compliance obligations such as GDPR, SOC 2, ISO 27001, PCI, and NIST * Strong written and verbal communication skills, with a focus on documentation, stakeholder alignment, and clarity under pressure and the emotional intelligence to collaborate without ego * High degree of ownership, autonomy, and a proactive, solution-oriented mindset * Passion for mentorship, process maturity, operational rigor, and helping security functions scale through automation and shared accountability This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office. Interested in the role, but don't meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply. WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. The WHOOP compensation philosophy is designed to attract, motivate, and retain exceptional talent by offering competitive base salaries, meaningful equity, and consistent pay practices that reflect our mission and core values. At WHOOP, we view total compensation as the combination of base salary, equity, and benefits, with equity serving as a key differentiator that aligns our employees with the long-term success of the company and allows every member of our corporate team to own part of WHOOP and share in the company's long-term growth and success. The U.S. base salary range for this full-time position is $185,000 - $200,000. Salary ranges are determined by role, level, and location. Within each range, individual pay is based on factors such as job-related skills, experience, performance, and relevant education or training. In addition to the base salary, the successful candidate will also receive benefits and a generous equity package. These ranges may be modified in the future to reflect evolving market conditions and organizational needs. While most offers will typically fall toward the starting point of the range, total compensation will depend on the candidate's specific qualifications, expertise, and alignment with the role's requirements. Learn more about WHOOP.

Description: Callouts: -This is a hybrid position requiring on-site presence three days per week at one of our local offices, located in Allentown, PA (Lehigh Valley), Louisville, KY, or Providence, RI. -Prior success in candidates that have experience in Cloud Platform Engineering - Looking for experience with Azure, AWS, CISSP familiarity and containerization The Client is seeking a highly skilled Cloud Security Architect to join our Cybersecurity organization. In this role, you will work closely with our Cloud Engineering team to ensure the security and configuration of the PPL cloud infrastructure, including Azure, AWS, and other cloud service providers. You will have direct responsibility for the usage and monitoring of cyber technology within the cloud environment as well as collaborating on the cloud security strategy. You will provide expert guidance, conduct security assessments, and provide detailed design and implementation of secure cloud architecture. If you are passionate about cloud security and have a deep understanding of modern cloud security concerns like secure configurations, container security, and cloud incident response, this position is ideal for you. Qualifications REQUIRED EDUCATION: Bachelor's Degree in Computer Science, Information Security, and/or a related field or an equivalent combination of education and experience on a year for year basis. REQURIED EXPERIENCE: A minimum of 10+ years of direct cybersecurity cloud experience in the configuration and support of cloud applications and infrastructure. Experience in the configuration and support of Microsoft 365 services including: Microsoft Endpoint Manager -Intune and Configuration Manager Microsoft Defender for Cloud Microsoft Identity and Access - Microsoft 365 Active Directory/Entra and ADFS. Understanding of modern cloud technology components and deployment patterns: virtual machines, containers, Kubernetes, serverless, infrastructure as code, etc. Demonstrated knowledge of Azure architecture and core services such as Virtual Machines, Group Policy, MFA, Azure Active Directory, Management Groups, Resource Groups, Azure Regions, Azure Functions, Azure Networking, Azure IPsec Connections, Network Security Groups, Azure VDI, and Firewalls. Experience with DevOps and building CI/CD pipelines to support application and infrastructure deployments. Scripting and Programming: skills in scripting languages like PowerShell or Azure CLI for automation. Knowledge of network architectures, including VNETs, subnets, VPNs, and ExpressRoute, along with an understanding of Azure security tools and features like Azure Active Directory, Network Security Groups, and Azure Key Vault. Strong leadership, communication, and interpersonal skills. Collaborative and effective in cross-functional team environments. Strong analytical skills to assess risks and vulnerabilities in complex systems. PREFERRED QUALIFICATIONS: Knowledge of programming languages like Python, .NET, or Java. Cloud Technology Expertise: demonstrate a working knowledge of various enterprise technology stacks used to build services in the cloud. Cloud Platform Experience: possess working knowledge and practical experience in security testing within cloud platforms, particularly Azure. Proficiency in scripting and automation for security testing. Knowledge of Azure configuration best practices. Certification such as: M365 Security Microsoft Azure Administration Associate AZ 104 Microsoft Azure Network Engineer Associate Engineer Microsoft Azure Security Engineer Associate AZ 500

Job Details Waltham, MA - Waltham, MA $250000.00 - $300000.00 Salary/year Description Company Profile Trinity Partners, LLC (“Trinity”) *********************************** is a leading healthcare consulting firm based in Waltham, MA that specializes in health care strategy for pharmaceutical, biotech and life sciences firms. Our clients include top tier to venture backed companies worldwide. Trinity provides services to these clients in a variety of practice areas including strategic planning, forecasting and market estimation, licensing and acquisitions, launch strategies, data warehousing and sales force effectiveness. The company consists of approximately 900 employees and is headquartered in Waltham, Massachusetts, with offices in New Jersey, New York, San Francisco, Pennsylvania, Germany, London & India. Trinity is an EEO employer. Chief Information Security Officer The Chief Information Security Officer will lead the development and execution of a comprehensive information security strategy for a global pharmaceutical consulting firm. They will act as the strategic leader of Trinity's cyber defense program as an integral part of the Trinity leadership team. This role will ensure the confidentiality, integrity, and availability of enterprise data, systems, and infrastructure across all geographies. The CISO will collaborate with executive leadership, IT, legal, compliance, and operations to embed security into the company's culture and business processes. The CISO will posses the ability to manage the cybersecurity team to identify, assess and prioritize threats and vulnerabilities across all of Trinity's environment, while effectively influencing and communicating across multiple teams to help create a cohesive security ecosystem. The ideal candidate will be able to build strong relationships across the business to help identify gaps in security controls, as well as direct internal audits. They will possess an ability to ‘think like an adversary' and promote security throughout the organization. Key Objectives Strategic Leadership Develop and implement a global information security strategy aligned with business goals and regulatory requirements Establish and maintain enterprise-wide security policies, standards, and procedures. Lead the information security governance, risk management, including responsibility for audit readiness and post-assessment remediation plans, especially for ISO 27001 and 42001 gaps Define and report on key security metrics (e.g., incident response times, vulnerability remediation SLAs, phishing simulation results) to executive leadership and the board Lead the development and enforcement of cloud security strategies across Microsoft 365, Azure, AWS, and other SaaS platforms with emphasis on configuration management, monitoring, and incident detection/remediation in cloud environments Foster a security-first culture by engaging business leaders and department heads in regular security briefings and risk discussions. Lead threat detection, prevention, and response capabilities, including Security Operations Center (SOC) oversight. Ensure the timely investigation, response, and remediation of security incidents and breaches. Establish and document a framework-aligned, business-integrated security ecosystem for Trinity and enable mechanisms to showcase it to customers on a need basis. Lead data protection efforts across Trinity SaaS, Product and Internal environments, including cloud-native services and large-scale repositories. Software Development Lifecycle Oversight Integrate security practices into the full software development lifecycle, including secure architecture, code review, automated testing for vulnerabilities, and DevSecOps principles. Collaborate with IT and Product teams to ensure security controls are embedded from project initiation through deployment. Vendor & Third-Party Risk Management Oversee the security review process for third-party vendors, cloud providers, and partners. Ensure supply chain security and resilience. Operational Oversight Oversee the design and implementation of technical safeguards including access control, encryption, patch management, and threat detection systems Manage the cybersecurity team, including security engineers, analysts, and external vendors (e.g., Managed SOC services) Direct incident response planning and execution, including breach investigations and reporting Ensure secure configuration and monitoring of cloud-native services, including identity, access, and data protection controls Oversee data governance and protection strategies for large-scale data repositories, including SharePoint Online, OneDrive, and Teams Orchestrate regular security audits in SaaS ecosystems, to proactively identify vulnerabilities. Collaborate with international teams to maintain consistent security posture and incident response readiness globally Champion regular security audits and continuous improvement cycles, with a focus on cloud ecosystem vulnerabilities such as drift in Microsoft 365, AWS, Azure, among others. Compliance & Risk Management Work directly with General Counsel and Compliance group to ensure compliance with HIPAA, GDPR, NIST CSF, SOC 2, ISO 27001 and ISO 42001and other global data protection regulations relevant to pharmaceutical consulting Conduct regular risk assessments based on NIST RMF and develop mitigation plans Lead external security audits and accreditation surveys Ensure security practices are adapted to regional regulatory requirements and cultural contexts across North America, Europe, and Asia. Training & Awareness Champion a culture of security awareness across the organization specifically with development teams Develop and deliver training programs tailored to different roles and regions Demonstrated ability to communicate complex security concepts to the board, non-technical stakeholders, and external customers in plain, persuasive language. Technology & Innovation Evaluate and implement emerging security technologies (e.g., CASB, PAM, GRC tools) Align security architecture with frameworks such as NIST CSF, CIS 18, and OWASP Qualifications Position Requirements: Education: Bachelor's or Master's degree in Information Security, Computer Science, or related field. Work Experience: 10+[PL1] years of progressive experience in information security, including leadership roles and hands-on security engineering and vulnerability remediation. Other Skills: Knowledge and/or working skills in the following areas: Experience in pharmaceutical, healthcare, or consulting industries preferred Certifications such as CISSP, CISM, CEH, GSEC, ECSA, Security+ or CISA strongly preferred Proven ability to lead cross-functional teams and manage global security operations Strategic thinking and business acumen Strong communication and stakeholder engagement skills with demonstrated record of translating technical content for business adoption Experience with vendor management and contract negotiation Familiarity with cloud security, application security, and data loss prevention Understanding of modern threats and exploits Ability to understand and communicate attack chains to management and key stakeholders Develop, execute and track the performance of security measures to protect information and network infrastructure and computer systems Identify, define and document system security requirements and recommend solutions to management Identify and document security requirements and recommend solutions to management Ownership of remediation activities for ISO and other regulatory gaps. Experience managing or working with Managed Security Service Providers (MSSPs) and Security Operations Centers (SOCs). Familiarity with Zero Trust architecture and identity-centric security models. About Us Trinity's salary bands account for a wide range of factors that are considered in making compensation decisions including but not limited to skill sets and market demand for skills; level of experience and training; specific qualifications, performance, time in role/company, geographic location, and other business and organizational needs. A reasonable estimate of the current range is $250,000-$300,000 USD. In addition to your base salary, you will also be eligible for an annual discretionary performance bonus. Trinity's Commitment to Diversity, Equity & Inclusion Trinity Life Sciences is an Equal Opportunity Employer that prohibits discrimination and harassment of any kind. Trinity is committed to the principles of diversity, equity, and inclusion and to providing employees with a work environment that is free of discrimination and harassment. All employment decisions at Trinity are based on business needs, job requirements and individual qualifications, without regard to race, color, religion, disability, ethnicity, gender identity or expression, family, parental, or veteran status, and/or any other status based on identity or that is protected by the laws or regulations in the locations where we operate. Trinity will not tolerate any form of discrimination or harassment and encourages applicants of all ages and identities. For more information about Trinity's commitment to diversity, equity, and inclusion, you can visit our website.

At DraftKings, AI is becoming an integral part of both our present and future, powering how work gets done today, guiding smarter decisions, and sparking bold ideas. It's transforming how we enhance customer experiences, streamline operations, and unlock new possibilities. Our teams are energized by innovation and readily embrace emerging technology. We're not waiting for the future to arrive. We're shaping it, one bold step at a time. To those who see AI as a driver of progress, come build the future together. The Crown Is Yours As a Director, Information Security, you'll lead our Security Engineering and Security Operations teams to shape how we defend our platforms at scale. You'll build modern security programs grounded in automation, AI, and pragmatic risk management. You'll drive strategy, deliver key capabilities, and evolve our approach to detection, response, and resilience. This is a hands-on leadership role where you'll empower technical leaders, elevate team performance, and partner closely with Engineering, Legal, IT, and Information Security leadership. What You'll Do Lead a high-performing team of managers and senior individual contributors; foster growth through coaching, clarity, and development planning. Provide strategic direction and mentorship to the broader InfoSec team through skip levels, feedback loops, and leadership modeling. Define and communicate KPIs to drive the program, looking across operational impact as well as technical indicators of risk and drift toward failure. Partner with InfoSec leadership on roadmap planning, prioritization, risk management, and capability development across detection, response, engineering, and investigations. Advance our adoption of AI and automation to drive quantifiable impact across security functions, both in new capabilities and latency. Collaborate with Legal, Compliance, and Audit to meet regulatory and customer expectations. What You'll Bring At least 10 years of progressive experience in security, including 5+ years in leadership roles with a strong emphasis on both proactive security engineering and reactive security operations. Strong technical foundation in modern enterprise and cloud environments, including what we secure (AWS, GCP, Kubernetes, datacenters, IoT) and what we secure it with (SIEM, EDR, CSPM, SAST/DAST, IAM, forensics). Familiarity with industry-standard risk and compliance frameworks (NIST CSF, ISO 27001, SOC 2, SLSA) and how to operationalize them in modern, tech-forward environments. Experience in fast-paced, high-growth companies in enterprise tech, SaaS, gaming, or other technical consumer industries like online video gaming. Executive-level communication skills, including the ability to deliver clear, timely, and actionable updates to both technical stakeholders and executive leadership. Join Our Team We're a publicly traded (NASDAQ: DKNG) technology company headquartered in Boston. As a regulated gaming company, you may be required to obtain a gaming license issued by the appropriate state agency as a condition of employment. Don't worry, we'll guide you through the process if this is relevant to your role. The US base salary range for this full-time position is 216,000.00 USD - 270,000.00 USD, plus bonus, equity, and benefits as applicable. Our ranges are determined by role, level, and location. The compensation information displayed on each job posting reflects the range for new hire pay rates for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific pay range and how that was determined during the hiring process. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Extensive knowledge of HIPAA and HITECH. Knowledge of and experience with Information Security frameworks such as HiTRUST, NIST, or ISO 27001. Bachelor's degree in information security, information assurance, information technology, computer science, or a related discipline. Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or related certification. Five (5) years in an information security operations or management role. Passion for the mission of Health Leads and strong commitment to Health Leads' core values: belief in collective strength and the power of shared work, constant and courageous learning, celebrating our victories and each other, and stepping up leaders in a common vision. Experience with information security for cloud environments and/or software-as-a-service (SaaS) platforms. Knowledge of security-related technologies and processes, including but not limited to: data loss prevention (DLP), identity and access management (IAM), endpoint security, vulnerability and configuration management, security information and event management (SIEM), incident response and digital forensics, disaster recovery/business continuity planning, network security (LAN/WAN). Ability to communicate complex ideas and information both verbally and writing, in a clear, concise, and effective manner to technical and non-technical audiences including customers and colleagues. Superior capabilities for partnering; ability to be effective as both a team member and as a leader of teams in defining objectives, staying on task and reaching consensus; soliciting participation, challenging ideas and summarizing accomplishments and planned actions. Show integrity and ethical behavior; respect confidentiality, business ethics and organizational standards. Ability to formulate the cost benefit of security initiatives in the context of overall business risk mitigation and the organization's operational objectives. Ability to compare, contrast and prioritize among alternative approaches to meet those objectives.

At Klaviyo, we value the unique backgrounds, experiences and perspectives each Klaviyo (we call ourselves Klaviyos) brings to our workplace each and every day. We believe everyone deserves a fair shot at success and appreciate the experiences each person brings beyond the traditional job requirements. If you're a close but not exact match with the description, we hope you'll still consider applying. Want to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny. As a Lead Security Engineer, you'll be a vital part of the Infrastructure Security Team, focusing on strengthening the security posture across Klaviyo's entire technology environment, developing security architectures and repeatable patterns and mentoring colleagues and junior security engineers. Unlike roles with a narrowly defined specialty, this position offers the opportunity to demonstrate your unique expertise-whether that's in cloud security, identity and access management, data protection, secure systems design, or other security domains. Your work will involve evaluating and hardening our infrastructure, collaborating with cross-functional teams, and leveraging AI to build scalable solutions to address emerging threats. We are looking for someone who is excited to bring their specialized skills to the team, shaping Klaviyo's security practices and helping us continue to raise the bar. How You Will Make a Difference Secure Klaviyo's infrastructure by designing, implementing, and maintaining scalable security controls across cloud, on-prem, and hybrid environments Evaluate and improve security configurations and policies across a range of technologies, using your domain expertise to reduce risk and enable secure-by-default architectures Collaborate with engineering and IT teams to embed security practices and develop repeatable security patterns across the development and deployment lifecycle Lead threat modeling, risk assessments, and architecture reviews in areas aligned with your specialty Develop automated solutions and infrastructure-as-code to drive consistent and reproducible security outcomes Stay ahead of the latest threats and advocate for innovative security solutions aligned with business needs Help define security standards and best practices at Klaviyo, championing their adoption across teams Who You Are Have 5+ years of experience in infrastructure or security engineering roles, with deep knowledge in one or more security focus areas (e.g., cloud security, IAM, endpoint security, data protection, detection engineering, compliance) Comfortable navigating ambiguity and defining priorities in a broad-scoped role Experienced working in modern cloud environments such as AWS, GCP, or Azure Familiar with infrastructure-as-code tools such as Terraform, CloudFormation, or Pulumi Proficient in secure systems design, threat modeling, and vulnerability management AI Agentic development and prompt engineering, MCP (AWS Bedrock, OpenAI, Anthropic) Able to clearly articulate complex security topics to technical and non-technical stakeholders Passionate about security, eager to learn from others and share your expertise Nice to have - certifications (e.g., CISSP, CKS, GCP/AWS Security certs) or equivalent practical experience We use Covey as part of our hiring and / or promotional process. For jobs or candidates in NYC, certain features may qualify it as an AEDT. As part of the evaluation process we provide Covey with job requirements and candidate submitted applications. We began using Covey Scout for Inbound on April 3, 2025. Please see the independent bias audit report covering our use of Covey here Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Our salary range reflects the cost of labor across various U.S. geographic markets. The range displayed below reflects the minimum and maximum target salaries for the position across all our US locations. The base salary offered for this position is determined by several factors, including the applicant's job-related skills, relevant experience, education or training, and work location. In addition to base salary, our total compensation package may include participation in the company's annual cash bonus plan, variable compensation (OTE) for sales and customer success roles, equity, sign-on payments, and a comprehensive range of health, welfare, and wellbeing benefits based on eligibility. Your recruiter can provide more details about the specific salary/OTE range for your preferred location during the hiring process. Base Pay Range For US Locations:$188,000-$282,000 USD Get to Know Klaviyo We're Klaviyo (pronounced clay-vee-oh). We empower creators to own their destiny by making first-party data accessible and actionable like never before. We see limitless potential for the technology we're developing to nurture personalized experiences in ecommerce and beyond. To reach our goals, we need our own crew of remarkable creators-ambitious and collaborative teammates who stay focused on our north star: delighting our customers. If you're ready to do the best work of your career, where you'll be welcomed as your whole self from day one and supported with generous benefits, we hope you'll join us. AI fluency at Klaviyo includes responsible use of AI (including privacy, security, bias awareness, and human-in-the-loop). We provide accommodations as needed. By participating in Klaviyo's interview process, you acknowledge that you have read, understood, and will adhere to our Guidelines for using AI in the Klaviyo interview Process. For more information about how we process your personal data, see our Job Applicant Privacy Notice. Klaviyo is committed to a policy of equal opportunity and non-discrimination. We do not discriminate on the basis of race, ethnicity, citizenship, national origin, color, religion or religious creed, age, sex (including pregnancy), gender identity, sexual orientation, physical or mental disability, veteran or active military status, marital status, criminal record, genetics, retaliation, sexual harassment or any other characteristic protected by applicable law. IMPORTANT NOTICE: Our company takes the security and privacy of job applicants very seriously. We will never ask for payment, bank details, or personal financial information as part of the application process. All our legitimate job postings can be found on our official career site. Please be cautious of job offers that come from non-company email addresses (@klaviyo.com), instant messaging platforms, or unsolicited calls. By clicking "Submit Application" you consent to Klaviyo processing your Personal Data in accordance with our Job Applicant Privacy Notice. If you do not wish for Klaviyo to process your Personal Data, please do not submit an application. You can find our Job Applicant Privacy Notice here and here (FR).

Sr. Manager, Information Security (Microsoft 365 Security SME) Salary: $140,000-$160,000 per year Unfortunately, we cannot support work visa permit applications for this role About Pharmaron: Pharmaron is a global CRO (Contract Research Organization) helping pharma and biotech companies bring new therapies to life. With over 21,000 employees worldwide across 23 locations in the US, UK and China, we support drug discovery through to manufacturing with fully integrated, high-quality services. We're proud of the impact we make and just last year, we supported over 780 discovery projects, 1,000+ CMC programmes, and 1,000+ clinical trials across all phases. Our teams are involved in everything from small molecules, ADC's, biologics, and gene therapies and we work with more than 3,000 global customers. To learn more, visit ****************** Role Overview: This role is to safeguard our organization's sensitive data, intellectual property, and regulatory-compliant systems. This position will secure our Microsoft 365 environments while ensuring adherence to FDA, HIPAA, GxP, and 21 CFR Part 11 requirements. Responsibilities: Microsoft 365 Security Leadership (Pharma-Focused) * Microsoft Defender Suite * Protect against targeted email threats using Defender for Office 365 * Secure lab and clinical endpoints with Defender for Endpoint * Microsoft Purview * Implement Data Loss Prevention (DLP) for sensitive research data, ePHI, and regulatory documents * Azure Active Directory * Manage Conditional Access policies, including enforcing Multi-Factor Authentication (MFA) * Microsoft Sentinel * Monitor for unusual or suspicious activity across our environments * Policy Design * Create pharma-specific security policies to safeguard clinical trial data, intellectual property, and manufacturing systems * Ensure compliance with: * HIPAA (protected health information in M365). * 21 CFR Part 11 (electronic records/signatures in validated systems). * Lead audit responses (FDA, EMA, Client Audit, & internal compliance) related to IP protection & security controls. * Document security protocols for SOX and SOC 2 reporting. * Risk Assessments * Conduct assessments aligned with FDA cybersecurity guidance and ISO 27001 standards for life sciences * Partner with Quality Assurance, IT, and R&D teams to secure regulated workloads (e.g: LIMS, ERP, CTMS). What We're Looking For: As a strategic leader with the ability to mitigate risks in a highly regulated life sciences environment, you will be the go-to expert for all Information Security matters across the USA. You will hold both the Microsoft 365 Certified: Security Administrator Associate (MS-500) and the Microsoft Certified: Cybersecurity Architect Expert certifications. With a strong work ethic and extensive experience leading multi-site projects, you will play a critical role in safeguarding organizational data and systems. * 7 + years in information security with 4+ years focused on: * Microsoft 365 security in pharma/life science * GMP/GxP environments * Expert level Knowledge of : * Microsoft Security & Compliance Center * o Azure AD Identity Protection * o Defender for Office 365/Endpoint * CISSP, CISM or CRISC knowledge is highly desirable * Experience in ERP systems (SAP, Oracle) in Manufacturing, LIMS/MES systems security and Regulatory submission platforms Why Pharmaron? Pharmaron is a premier service provider for the life sciences industry. Founded in 2004, Pharmaron has invested in its people and facilities and established a broad spectrum of research, development, and manufacturing service capabilities throughout the entire drug discovery, preclinical, and clinical development process across multiple therapeutic modalities, including small molecules, biologics, and CGT products. With over 21,000 employees and operations in the U.S., the U.K. and China. Pharmaron has an excellent track record in delivering R&D solutions to its partners in North America, Europe, Japan, and China. Collaborative Culture: You will thrive in our inclusive and collaborative environment, where teamwork and innovation go hand in hand. Here, your voice matters, and your contributions make a real impact. "Employees Number One" and "Clients Centred" are the core cultural values at Pharmaron. Our culture, which sets Pharmaron apart from other organizations, has evolved from our deep commitment to our employees, partners, and collaborators. Benefits: As part of our commitment to your well-being, we offer a comprehensive benefits package: * Insurance including Medical, Dental & Vision with significant employer contributions * Employer-funded Health Reimbursement Account * Healthcare & Dependent Care Flexible Spending Accounts * 100% Employer-paid Employee Life and AD&D Insurance, Short and Long Term Disability Insurance * 401k plan with generous employer match * Access to an Employee Assistance Program How to Apply: Ready to seize this incredible opportunity? Join us at Pharmaron and be part of a dynamic team driving innovation and excellence in biopharmaceutical research and development. Apply online today! As an Equal Employment Opportunity and Affirmative Action employer, Pharmaron values diversity and inclusion in the workplace, fostering an environment where all individuals are empowered to succeed. Join us in our mission to make a difference in the world of life sciences. #LI-JB1

Are you a Cybersecurity compliance expert ready to take the lead in a dynamic, high-impact role? Join a globally recognized firm where you'll play a key role in shaping and strengthening our cybersecurity strategy. This is your chance to make a difference in a fast-paced, professional environment that values innovation, collaboration, and technical excellence. Why You'll Love This Role: Drive Security Initiatives - Lead firmwide cybersecurity programs, ensuring compliance with ISO 27001 and other industry standards. Be a Decision-Maker - Approve security risks, implement best practices, and enhance policies to safeguard critical systems. Third-Party & Risk Management - Oversee vendor risk assessments, vulnerability management, and client security audits. Lead & Mentor - Supervise a Compliance Analyst and provide strategic guidance across teams. Innovate & Protect - Collaborate with IT leadership to integrate cutting-edge security solutions into firm operations. What You Bring to the Table: 5+ years of cybersecurity experience in a complex IT environment. Strong knowledge of security frameworks (ISO 27001, NIST, etc.). Hands-on experience with security tools, compliance audits, and risk assessments. Leadership experience with a passion for mentoring and developing security professionals. Bachelor's degree in Cyber Security, Computer Science, or a related field. Security certifications (CISSP, CRISC, etc.) strongly preferred. Offer includes: Competitive salary: $145,000 - $170,000 Hybrid work environment Excellent benefits package A culture of excellence, diversity, and professional growth Ready to step into a leadership role where your expertise will make a real impact? Apply today and be a key player in securing the future of a top international firm. Apply to this post or email your resume directly to Dan Gilliam, email: **************************** Tags: Cybersecurity, IT, ISO, Compliance, Security Manager

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Information Security, Information Security Management, Information System Security Certifications: Cisco Certified Network Associate (CCNA) Security - Cisco - Cisco, GSEC: GIAC Security Essentials Certification - Global Information Assurance Certification (GIAC) - Global Information Assurance Certification (GIAC) Experience: 5 + years of related experience US Citizenship Required: Yes Job Description: The Information Systems Security Officer (ISSO) III is responsible for ensuring the appropriate operational security posture is maintained for an information system and as such, works in close collaboration with the ISSM and ISO. The position shall have the detailed knowledge and expertise required to manage the security aspects of an information system and, in many organizations, is assigned responsibility for the day-to-day security operations of a system. This will include physical and environmental protection, personnel security, incident handling, and security training and awareness. It will be required to work in close coordination with the ISSM and ISO in monitoring the information system(s) and its environment of operation to include developing and updating the authorization documentation, implementing configuration management across authorization boundaries. This will include assessing the security impact of those changes and making recommendation to the ISSM. The primary function is working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense (OSD) and Military Compartments efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. Performance shall include: Assist the ISSM in meeting their duties and responsibilities. Prepare, review, and update authorization packages. Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media. Notify ISSM when changes occur that might affect the authorization determination of the information system(s). Conduct periodic reviews of information systems to ensure compliance with the security authorization package. Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change. Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly. Ensure all IS security-related documentation is current and accessible to properly authorized individuals. Ensure audit records are collected, reviewed, and documented (to include any anomalies) Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties. Execute the cyber security portion of the self-inspection, to include security coordination and review of all system assessment plans. Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them. Prepare reports on the status of security safeguards applied to computer systems. Perform ISSO duties in support of in-house and external customers. Conduct continuous monitoring activities for authorization boundaries under your preview. Assist Department of Defense, National Agency and Contractor organizations with the development of assessment and authorization (A&A) efforts. Experience: 5+ years related experience, especially in developing RMF packages or bodies of evidence. 2+ years SAP experience required. Prior performance in roles such as System, Network Administrator or ISSO. Education: Bachelor's degree in a related area or equivalent experience (4 years) Certifications: IAT Level II ( Security+ CE, CCNA Security, etc) or IAM Level II. Clearance Required to Start: TS/SCI required. Must be able to Attain - TS/SCI with CI Polygraph #AirforceSAPOpportunities #ISSO III The likely salary range for this position is $98,345 - $133,055. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: 10-25% Telecommuting Options: Onsite Work Location: USA MA Bedford Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans

A cloud security architect must be conversant with a breadth of technologies used to protect data, workloads, and systems within cloud platforms. Responsibilities of a cloud security architect include: Designing and implementing cloud security strategies and policies that meet an organization's specific needs. Ensuring the security of cloud-based data and applications against unauthorized access, theft, and other threats. Conducting regular security assessments and audits to identify vulnerabilities and develop plans to address them. Collaborating with other IT professionals, including network engineers, developers, security team, and operational team to integrate cloud security measures into existing systems and processes. Staying up to date on the latest cloud security technologies, trends, and best practices. Reviewing and understanding remediation options from application vulnerability monitoring and assessment tooling. Skills sought in a cloud security architect: Strong analytical and problem-solving skills, with an ability to think strategically and tactically about complex cloud security issues. Excellent communication skills, including communicating complex technical concepts to non-technical stakeholders. The ability to work independently but collaborate closely and effectively with developers and other IT professionals at project start and critical project junctures. The ability to manage multiple projects and priorities and meet deadlines in a fast-paced environment. Attention to detail and a commitment to quality work. Typical requirements for a cloud security architect are: A bachelor's or master's degree in computer science, information technology, or a related field. More than 7 years of cloud security experience, focusing on designing and implementing secure cloud computing solutions. A strong understanding of cloud computing technologies, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS). Knowledge of security frameworks such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls. Familiarity with cloud security platforms like Microsoft Azure, Amazon Web Services, and Google Cloud Platform. Certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Cloud Architect (CCA) are preferred. Desirable experience for a cloud security architect include: Identity Access Management and Identity Provider technologies and features Authentication and authorization strategies; SSO DevSecOps practices and testing as part of CICD pipeline workflows Key and secrets management services Networking and security best practices using VPC/VNet/Subnet deployment Kubernetes technology including network policy management Experience with private link / endpoint strategies We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran status, age, disability, sexual orientation or gender identity or expression or any other legally protected category. InterSystems is an E-Verify Employer in the United States. About InterSystems InterSystems, a creative data technology provider, delivers a unified foundation for next-generation applications for healthcare, finance, manufacturing, and supply chain customers in more than 80 countries. Our data platforms solve interoperability, speed, and scalability problems for large organizations around the globe to unlock the power of data and allow people to perceive data in imaginative ways. Established in 1978, InterSystems is committed to excellence through its 24×7 support for customers and partners around the world. Privately held and headquartered in Boston, Massachusetts, InterSystems has 38 offices in 28 countries worldwide. For more information, please visit InterSystems.com.

Country: United States of America Onsite U.S. Citizen, U.S. Person, or Immigration Status Requirements: Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance Security Clearance: DoD Clearance: Secret At RTX, the foundation of everything we do is rooted in our values and a higher calling - to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today's mission and stay ahead of tomorrow's threat. Our team solves tough, meaningful problems that create a safer, more secure world. The Senior Analyst, Security will help develop, administer and maintain the program's security policies and procedures in a fast-paced, deadline driven environment to ensure compliance with the 32 CFR Part 117 National Industrial Security Program Operating Manual (NISPOM), Department of Defense Manual (DoDM) 5205.07 series, Intelligence Community Directive (ICD) 705. ** This position is onsite in Westford, MA ** What YOU will do: Administering the security procedures (NISPOM, DoDM 5205.07 series, and Intelligence Community Directive (ICD) 705), as they relate to operating in a classified environment for: personnel processing, media control, marking and control of documents / materials, security education, visitor control, destruction of classified, Request, review and submit investigative Standard From (SF) for background investigations. Submit and track foreign travel through DISS. Implement local Standard Operating Procedures (SOP), Operations Security (OPSEC) Plans, and proprietary test plans utilizing risk management principles. Assist in the security oversight and management to subcontractors and subordinate business units via the DD Form 254 or other contractual methods. Support the establishment, accreditation, and maintenance of a secure facility in accordance with (IAW) ICD 705. Establish and oversee specialized procedures for the transmission of classified and/or proprietary material/information. Conduct and/or participate in internal reviews and/or Government inspections. Investigate security infractions/violations and prepare reports specifying the potential for loss or compromise and the associated risk to the program(s). Collaborate and assist the FSO on implementation of Security requirements. This position may require travel. Qualifications You Must Have: Typically requires a University Degree and minimum 2 years of prior relevant experience or an Advanced Degree in a related Experience with any of the following: NISPOM, DoDM 5205.07 series, and/or ICD 705. Active and transferable U.S. government issued TOP SECRET security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance. Qualifications We Prefer Previous experience as a security professional supporting SAP and/or SCI programs. Degree major in Business Management, Security and/or Risk Management, Government Policy, Information Management, Criminal Justice, or other related fields of study. At least 5 years of National Security experience is preferred. What We Offer: Some of our competitive benefits packages include: Medical, dental, and vision insurance. Three weeks of vacation for newly hired employees. Generous 401(k) plan that includes employer matching funds and separate. employer retirement contribution, including a Lifetime Income Strategy option. Tuition reimbursement program. Student Loan Repayment Program. Life insurance and disability coverage. Optional coverages you can buy pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection. Birth, adoption, parental leave benefits. Ovia Health, fertility, and family planning. Adoption Assistance. Autism Benefit. Employee Assistance Plan, including up to 10 free counseling sessions. Healthy You Incentives, wellness rewards program. Doctor on Demand, virtual doctor visits. Bright Horizons, child, and elder care services. Teladoc Medical Experts, second opinion program. And more! Learn More & Apply Now! Do you want to be part of a new, exciting initiative to combine foundational IT with new digital technologies? Our Digital Technology team is driving business efficiencies and a better customer experience by connecting technologies, people, information and processes. From making aircraft more electric, intelligent and integrated to building new software platforms such as Internet of Things, big data, artificial intelligence, and blockchain, there's no better place to be right now than in digital. If you're an agile thinker who enjoys utilizing modern technology to make big improvements, then you're a perfect fit for this team. Join Collins Aerospace to help us revolutionize the aerospace industry today! WE ARE REDEFINING AEROSPACE. * Please consider the following role type definitions as you apply for this role. Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products. Regardless of your role type, collaboration and innovation are critical to our business and all employees will have access to digital tools so they can work with colleagues around the world - and access to Collins sites when their work requires in-person meetings. At Collins, the paths we pave together lead to limitless possibilities. And the bonds we form - with our customers and with each other -- propel us all higher, again and again. Apply now and be part of the team that's redefining aerospace, every day. The salary range for this role is 66,000 USD - 130,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate's work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company's performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window. RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans' Readjustment Assistance Act. Privacy Policy and Terms: Click on this link to read the Policy and Terms

Company DescriptionJobs for Humanity is partnering with Capital One to build an inclusive and just employment ecosystem. Therefore, we prioritize individuals coming from the following communities: Refugee, Neurodivergent, Single Parent, Blind or Low Vision, Deaf or Hard of Hearing, Black, Hispanic, Asian, Military Veterans, the Elderly, the LGBTQ, and Justice Impacted individuals. This position is open to candidates who reside in and have the legal right to work in the country where the job is located. Company Name: Capital One Job Description201 Third Street (61049), United States of America, San Francisco, CaliforniaSenior Manager, Information Security Office Consultant At Capital One, you will help consult on initiatives, programs, and projects to raise their game in Information Security. You are pragmatic and practical in your understanding of risk and security, but also willing to know when to pull in experts and escalate. You collaborate and innovate with other teams within Capital One to push the envelope. You are comfortable with Cloud Service technologies like Storage Services, Security & Access Control Management, Container Services, and API Implementation and Management. You are familiar with various Cloud computing models to include IaaS, PaaS, and SaaS along with their architectural differences. Security is essential to what we do here, from protecting our customers to our associates. What You'll Do: Act as a central Information Security point of contact for the Enterprise Platform team Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management Serve as an expert in Capital One's Information Security capabilities, solutions, policies, procedures and standards Influence customers to leverage security capabilities and solutions to shift and integrate security to the left in the development processes Escalate and manage cyber security risk Provide ad hoc support on special Information Security hot topics for the business Provide regular updates to executive leadership with your line of business on the overall Information Security health and risk environment Work with line of business leadership to anticipate their objectives and needs to better serve the line of business Product security consulting in Authentication/Access Management /Identity application and experienced in Authentication and industry-standard protocol for authorization/authorization Basic Qualifications: High School Diploma, GED or equivalent certification At least 8 years of experience working in cybersecurity or information technology At least 7 years of experience providing guidance and oversight of Security concepts At least 7 years of experience performing security risk assessments and security architecture reviews At least 7 years of experience with architecture, software design, networking, and cloud infrastructure At least 5 years of experience with cloud security engineering Preferred Qualifications: Bachelor's Degree 3+ years of experience in securing a public cloud environment (e.g. AWS, GCP, Azure) 4+ years of experience in IAM or related areas Experience building software utilizing public cloud (e.g. AWS, GCP, Azure) Familiarity with Cloud patch management practices such as system rehydration and image management Experience utilizing Agile methodologies Experience with Software Security Architecture Experience with Application Security Experience with Threat Modeling Experience with Penetration Testing or Vulnerability Management Experience with integrating SaaS products into an Enterprise Environment Experience with securing Container services Splunk-Fu / Enterprise Monitoring experience Financial services industry experience Professional certifications such as AWS Certified Solutions Architect and Certified Information Systems Security Professional (CISSP) Experience in Offensive and Defensive Security techniques Experience in a regulated environment Strong conceptual thinking, influence and communication skills At this time, Capital One will not sponsor a new applicant for employment authorization for this position. The minimum and maximum full-time annual salaries for this role are listed below, by location. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Capital One is willing to pay at the time of this posting. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked. New York City (Hybrid On-Site): $230,100 - $262,700 for Sr Manager, Cyber TechnicalSan Francisco, California (Hybrid On-Site): $243,800 - $278,200 for Sr Manager, Cyber Technical Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter. Capital One offers a comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being. Learn more at the Capital One Careers website. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level. This role is expected to accept applications for a minimum of 5 business days.No agencies please. Capital One is an equal opportunity employer committed to diversity and inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to sex (including pregnancy, childbirth or related medical conditions), race, color, age, national origin, religion, disability, genetic information, marital status, sexual orientation, gender identity, gender reassignment, citizenship, immigration status, protected veteran status, or any other basis prohibited under applicable federal, state or local law. Capital One promotes a drug-free workplace. Capital One will consider for employment qualified applicants with a criminal history in a manner consistent with the requirements of applicable laws regarding criminal background inquiries, including, to the extent applicable, Article 23-A of the New York Correction Law; San Francisco, California Police Code Article 49, Sections 4901-4920; New York City's Fair Chance Act; Philadelphia's Fair Criminal Records Screening Act; and other applicable federal, state, and local laws and regulations regarding criminal background inquiries. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at ************** or via email at [email protected]. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations. For technical support or questions about Capital One's recruiting process, please send an email to [email protected] Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site. Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).

We are seeking a detail-oriented and highly skilled Security Analyst to join our team in Boston and shape the future of Cybersecurity. As a Security Analyst at 7AI, you will leverage your expertise of the security landscape to review and analyze AI Agent investigations, ensuring accuracy and completeness, ultimately helping to build our multi-agent platform. You will be integral in building and maintaining the reliability of our AI Agents, working in tandem with Engineering and Product to inform our roadmap as we build. If you want to build the next generation of Cybersecurity and put AI in the hands of defenders, please apply below. Key Responsibilities: Review and validate alerts and investigations completed by the AI Agents for accuracy and completeness. Collaborate with the Engineering and Product teams to provide feedback and assist in optimizing the AI platform. Develop internal playbooks, standard operating procedures and tools that will guide the AI Agents to perform quality investigations. Stay current with emerging cybersecurity trends, vulnerabilities, and new attack techniques, especially the field of AI-driven attacks. Investigate flagged security incidents, analyzing potential threats and confirming the findings generated by AI. Recommend mitigation strategies and remediation steps to train the AI to reduce the threat surface. Correlate findings from multiple sources, including network logs, endpoint data, and threat intelligence, to validate AI-generated reports. Assist with ongoing threat monitoring, triage, and prioritization of security incidents. Required Qualifications: 4+ years of experience in a Security Analyst or similar role within the cybersecurity field. Hands-on experience with incident response for Cloud and Identity alerts, and at least two of Email, EDR, Threat Intel and Networking alerts. Strong understanding of security monitoring tools and techniques (SIEM, IDS/IPS, IDP, etc.). Experience analyzing and investigating security alerts from multiple sources, including intrusion detection systems, network monitoring tools, and endpoint protection platforms. Familiarity with the latest cybersecurity threats, attack vectors, and vulnerabilities. Strong analytical and problem-solving skills, with the ability to verify AI-driven analysis and make independent security decisions. Scripting experience with languages such as Python Data querying experience with SIEM technologies (SPL, KQL, FQL, SQL, etc).

New England College of Optometry seeks an entry level Information Security Manager to develop, implement, and oversee a robust information security strategy and program. This critical role involves establishing and enforcing policies, procedures, and technologies to protect the confidentiality, integrity, and availability of institutional and student data. The Information Security Manager will be responsible for risk assessment, incident response, security operations, and ensuring compliance with all relevant regulations and standards. This role requires strong leadership, technical expertise, and excellent communication skills to collaborate effectively across the institution. Responsibilities * Develop, implement, and oversee a robust information security strategy and program in alignment with institutional goals and industry best practices. * Establish and maintain institutional information security policies, standards, and guidelines, ensuring they are regularly reviewed, updated, and communicated. * Manage security operations, including monitoring, detection, prevention, response, and analysis of security threats and vulnerabilities. * Lead and coordinate the information security incident response team, managing security breaches & ensuring timely and effective resolution and post-incident analysis. * Conduct regular risk assessments and penetration testing to identify and mitigate potential security vulnerabilities across systems, networks, and applications. * Ensure compliance with national and international regulatory frameworks (e.g., FERPA, HIPAA, ISO 27001, SOC 2) relevant to the organization. * Oversee security awareness training programs for all employees to promote a culture of security consciousness. * Manage the security budget and evaluate, select, and implement appropriate security tools and technologies. * Report on the status of the security program, vulnerabilities, and incidents to executive leadership. * Work on "special projects" as assigned by the Chief Information Officer. * Other duties as assigned. Requirements * Experience in designing, implementing, and managing enterprise-level information security programs and strategy. * Technical knowledge of network security, application security, cloud security (e.g., AWS, Azure, GCP), and endpoint protection technologies. * Understanding of risk management methodologies and security frameworks (e.g., ISO 27001, NIST, CIS Controls). * Experience leading security incident response and forensic analysis. * Strong communication and interpersonal skills, with the ability to explain complex security issues to technical and non-technical audiences. * Knowledge of networking principles, including wireless networking. * Excellent written and verbal communication skills, professional appearance, punctuality and a sense of urgency. * Experience working with Active Directory and Google Cloud Platform. * Ability and willingness to learn new technologies. Preferred Background/Skills * Professional certifications such as CISSP, CISM, or relevant SANS certifications. * Experience with Governance, Risk, and Compliance (GRC) tools and processes. * Exceptional organizational skills, with the ability to prioritize projects and tasks. * Familiarity with scripting languages (e.g., Python, PowerShell) for security automation. * Ability to write reports and document steps for knowledge sharing. * Ability to work efficiently and independently with minimal supervision. * Excellent customer service and communications skills. Education * Bachelor's degree in Computer Science, Information Technology, Information Security, or a related technical field. Experience * A minimum of 2 years of progressive experience in the field of information security. NECO is an Equal Opportunity employer and encourages all qualified candidates to apply. New England College of Optometry offers a robust benefits program including: * 3 plan options for BCBS medical coverage (employer subsidized at 75% or greater) * Mental Health and Wellness benefits * BCBS Dental * Discounted vision services * 13 paid holidays and generous paid time off for sick, vacation, and personal days * Employer-paid life insurance, and short-term and long-term disability * Voluntary Insurance: life, critical illness, hospital indemnity, accident, * Voluntary Benefits: employee discounts and pet insurance * 9% employer contribution to a 403(b) retirement plan after 1 year of service with no vesting schedule or match requirement * Qualified Public Service Loan Forgiveness Employer

Full-time Description New England College of Optometry seeks an entry level Information Security Manager to develop, implement, and oversee a robust information security strategy and program. This critical role involves establishing and enforcing policies, procedures, and technologies to protect the confidentiality, integrity, and availability of institutional and student data. The Information Security Manager will be responsible for risk assessment, incident response, security operations, and ensuring compliance with all relevant regulations and standards. This role requires strong leadership, technical expertise, and excellent communication skills to collaborate effectively across the institution. Responsibilities Develop, implement, and oversee a robust information security strategy and program in alignment with institutional goals and industry best practices. Establish and maintain institutional information security policies, standards, and guidelines, ensuring they are regularly reviewed, updated, and communicated. Manage security operations, including monitoring, detection, prevention, response, and analysis of security threats and vulnerabilities. Lead and coordinate the information security incident response team, managing security breaches & ensuring timely and effective resolution and post-incident analysis. Conduct regular risk assessments and penetration testing to identify and mitigate potential security vulnerabilities across systems, networks, and applications. Ensure compliance with national and international regulatory frameworks (e.g., FERPA, HIPAA, ISO 27001, SOC 2) relevant to the organization. Oversee security awareness training programs for all employees to promote a culture of security consciousness. Manage the security budget and evaluate, select, and implement appropriate security tools and technologies. Report on the status of the security program, vulnerabilities, and incidents to executive leadership. Work on "special projects" as assigned by the Chief Information Officer. Other duties as assigned. Requirements Experience in designing, implementing, and managing enterprise-level information security programs and strategy. Technical knowledge of network security, application security, cloud security (e.g., AWS, Azure, GCP), and endpoint protection technologies. Understanding of risk management methodologies and security frameworks (e.g., ISO 27001, NIST, CIS Controls). Experience leading security incident response and forensic analysis. Strong communication and interpersonal skills, with the ability to explain complex security issues to technical and non-technical audiences. Knowledge of networking principles, including wireless networking. Excellent written and verbal communication skills, professional appearance, punctuality and a sense of urgency. Experience working with Active Directory and Google Cloud Platform. Ability and willingness to learn new technologies. Preferred Background/Skills Professional certifications such as CISSP, CISM, or relevant SANS certifications. Experience with Governance, Risk, and Compliance (GRC) tools and processes. Exceptional organizational skills, with the ability to prioritize projects and tasks. Familiarity with scripting languages (e.g., Python, PowerShell) for security automation. Ability to write reports and document steps for knowledge sharing. Ability to work efficiently and independently with minimal supervision. Excellent customer service and communications skills. Education Bachelor's degree in Computer Science, Information Technology, Information Security, or a related technical field. Experience A minimum of 2 years of progressive experience in the field of information security. NECO is an Equal Opportunity employer and encourages all qualified candidates to apply. New England College of Optometry offers a robust benefits program including: 3 plan options for BCBS medical coverage (employer subsidized at 75% or greater) Mental Health and Wellness benefits BCBS Dental Discounted vision services 13 paid holidays and generous paid time off for sick, vacation, and personal days Employer-paid life insurance, and short-term and long-term disability Voluntary Insurance: life, critical illness, hospital indemnity, accident, Voluntary Benefits: employee discounts and pet insurance 9% employer contribution to a 403(b) retirement plan after 1 year of service with no vesting schedule or match requirement Qualified Public Service Loan Forgiveness Employer

Extensive knowledge of HIPAA and HITECH. Knowledge of and experience with Information Security frameworks such as HiTRUST, NIST, or ISO 27001. Bachelor's degree in information security, information assurance, information technology, computer science, or a related discipline. Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or related certification. Five (5) years in an information security operations or management role. Passion for the mission of Health Leads and strong commitment to Health Leads' core values: belief in collective strength and the power of shared work, constant and courageous learning, celebrating our victories and each other, and stepping up leaders in a common vision. Experience with information security for cloud environments and/or software-as-a-service (SaaS) platforms. Knowledge of security-related technologies and processes, including but not limited to: data loss prevention (DLP), identity and access management (IAM), endpoint security, vulnerability and configuration management, security information and event management (SIEM), incident response and digital forensics, disaster recovery/business continuity planning, network security (LAN/WAN). Ability to communicate complex ideas and information both verbally and writing, in a clear, concise, and effective manner to technical and non-technical audiences including customers and colleagues. Superior capabilities for partnering; ability to be effective as both a team member and as a leader of teams in defining objectives, staying on task and reaching consensus; soliciting participation, challenging ideas and summarizing accomplishments and planned actions. Show integrity and ethical behavior; respect confidentiality, business ethics and organizational standards. Ability to formulate the cost benefit of security initiatives in the context of overall business risk mitigation and the organization's operational objectives. Ability to compare, contrast and prioritize among alternative approaches to meet those objectives.

We are seeking an experienced and strategic Principal Security Architect to lead the design, implementation, and oversight of enterprise-class network and cloud security across our global infrastructure. This role blends deep technical expertise with strategic leadership and focuses on securing our on-premises data centers, public cloud platforms, and enterprise network edge using best-in-class tools like Palo Alto and Cisco. This is a hands-on leadership role that influences global security architecture, mentors' engineers, and collaborates with cross-functional teams to protect our digital assets at scale. Key Responsibilities Security Architecture & Engineering Lead the design and evolution of security controls across hybrid cloud and on-prem environments. Architect and implement network segmentation, next-gen firewall policies, and zero-trust access models. Define secure connectivity strategies across WAN, remote access, data centers, and cloud networks. Technology Ownership Serve as SME for Palo Alto Networks firewalls, Prisma Access, and Panorama. Lead security configuration, lifecycle management, and policy enforcement on Cisco security platforms (ASA, ISE, Firepower, Umbrella). Harden security for multi-cloud platforms (AWS, Azure, GCP) including IAM, VPCs, firewalls, and API security. Operations & Response Lead threat detection and response for network and infrastructure incidents. Collaborate with SOC, GRC, and infrastructure teams to close security gaps and maintain compliance. Continuously improve security monitoring, alerting, and forensics capabilities. Security Automation & Tooling Integrate security into CI/CD pipelines and infrastructure provisioning via Terraform, Ansible, or Python. Automate security posture checks and drift detection in public cloud and data center environments. Work with vulnerability management platforms and integrate findings into remediation workflows. Governance, Risk & Compliance Define security baselines and configuration standards for networking and infrastructure teams. Ensure compliance with frameworks such as ISO 27001, NIST, CIS, and industry-specific requirements. Participate in audits, risk assessments, and security reviews for new technologies and vendors. Required Qualifications 10+ years of experience in infrastructure or network security, with 3+ years in a principal or lead role. Deep expertise in Palo Alto Networks products and Cisco security platforms. Strong understanding of cloud security architecture and native security tools in AWS, Azure, and/or GCP. Experience securing on-premise and hybrid data centers, including virtualization and SDN technologies. Proven experience designing and enforcing enterprise security policies across global networks. Solid knowledge of routing/switching protocols (BGP, OSPF), VPNs, DNS security, and NAC. Familiarity with SIEM, NDR, and EDR tools for detection and response. Scripting/automation proficiency (Python, Bash, PowerShell, or IaC tools). Preferred Qualifications Certifications such as PCNSE, CISSP, CCNP Security, AWS/Azure Security Specialty. Experience with identity federation (SAML, OAuth), secrets management, and PKI. Background in segmentation frameworks (e.g., SCADA/ICS, OT security), or data loss prevention (DLP). Experience in DevSecOps or cloud-native security tooling. We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran status, age, disability, sexual orientation or gender identity or expression or any other legally protected category. InterSystems is an E-Verify Employer in the United States. About InterSystems InterSystems, a creative data technology provider, delivers a unified foundation for next-generation applications for healthcare, finance, manufacturing, and supply chain customers in more than 80 countries. Our data platforms solve interoperability, speed, and scalability problems for large organizations around the globe to unlock the power of data and allow people to perceive data in imaginative ways. Established in 1978, InterSystems is committed to excellence through its 24×7 support for customers and partners around the world. Privately held and headquartered in Boston, Massachusetts, InterSystems has 38 offices in 28 countries worldwide. For more information, please visit InterSystems.com.