Security architect jobs in Rocky Mount, NC - 83 jobs

We provide creative and technology services and solutions in the areas of web design, customized web applications, IT Staffing and e-commerce solutions, Mobile App development and much more services to organizations in the All over the world. With well defined and documented processes and practices, we ensure successful implementation of all our projects. Our teams are highly trained in best practices of web and application developments and are managed by certified project managers who ensure highest levels of process control and management Job Description Security Architect Locations: Raleigh, NC Full Time Travel Required: Up to 10% or 1 day a week Work with IBM Cloud PaaS Offering Management on defining security roadmap Engage with clients as sponsor users to implement new security capabilities Architect technical security requirements for external compliance certifications Participate and enforce IBM PSIRT, IBM CSIRT, and IBM Secure Engineering processes Provide security technical guidance to Bluemix services and SaaS offerings that run on top of Bluemix PaaS Create external facing collateral for use by client facing teams and clients Participate in IBM Cloud Security interlocks Present in client facing/external conferences e.g., Interconnect etc. Support Bluemix sales by presenting to clients (on the phone, F2F) Mentor security team members You will work with the best of the teams in Cloud Dev, Cloud Security, Cloud Offering Management, Cloud Sales. You will be outgoing, team player, willing to mentor and lead team members, must have great sense of humor. You will have demonstrated communication skills, experience with working with customers and be able to bring customer requirements back to the team. Your extensive experience in security and compliance audit is of great advantage. This is a high performing, leading edge team that offers exciting opportunities in Cloud security. If you have it in you, then you are at the right place. Apply below immediately. Required Technical and Professional Expertise: At least 8 years of experience in technical security architecture and design skills At least 5 years of experience in External customer facing experience and skills At least 3 years experience in Compliance Standards Preferred Technical and Professional Experience: At least 3 years of experience in Cloud Security and compliance standards. Certified Information Systems Security Professional (CISSP) certification is preferred Additional Information All your inform ation will be kept confidential according to EEO guidelines.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

The Senior Cloud Security Architect is responsible for designing and implementing secure cloud architectures that protect enterprise workloads, data, and identities across multi-cloud environments. This role provides strategic and technical leadership in cloud security, driving adoption of zero-trust principles, secure-by-design architecture patterns, and automated security controls. The architect collaborates closely with engineering, security, DevOps, and compliance teams to evaluate risks, define standards, and ensure the organization's cloud platforms are resilient, compliant, and capable of supporting rapid innovation. Key Responsibilities Define and maintain the cloud security architecture, ensuring alignment with organizational goals, regulatory requirements, and industry best practices. Develop secure reference architectures, patterns, and guardrails for cloud workloads, data services, and platform components. Architect solutions that embed security controls across compute, storage, networking, identity, and application layers. Lead cloud threat modeling, security design reviews, and architectural risk assessments for new and existing systems. Design and implement identity-first security using platforms such as Azure AD/Entra ID, AWS IAM, or Okta. Establish and enforce RBAC/ABAC models, privileged access policies, MFA enforcement, conditional access, and identity lifecycle automation. Architect secure authentication and authorization integrations using OIDC, OAuth2, SAML, SCIM, and workload identities. Champion zero-trust principles across cloud environments, applications, and distributed systems. Embed security-by-default into CI/CD pipelines through automated SAST, SCA, IaC scanning, secrets detection, and container image scanning. Partner with platform and DevOps teams to integrate policy-as-code (OPA, Azure Policy, Sentinel) to enforce compliance and prevent misconfigurations. Guide teams in designing secure deployment patterns, secretless authentication, and automated vulnerability remediation workflows. Promote DevSecOps culture through enablement, documentation, and best practices. Develop cloud security standards, security baselines, and operational best practices across multi-cloud environments. Implement and manage CSPM, CWPP, and CIEM tools to continuously improve cloud security posture and identity governance. Support compliance initiatives (SOC2, HIPAA, PCI, ISO 27001, FedRAMP, etc.) through policy enforcement, evidence gathering, and architectural controls. Track emerging cloud risks, threat vectors, and vulnerabilities to ensure proactive security hardening. Architect secure network architectures leveraging segmentation, firewalls, private endpoints, WAF, DDoS protection, and service mesh solutions. Implement encryption strategies, key management, secrets management, and secure data flow patterns. Work with SRE and security operations to design logging, telemetry, and cloud-native monitoring systems for threat detection and incident response. Serve as the primary cloud security expert, advising engineers, architects, and leadership on risk, design decisions, and strategic initiatives. Lead security design workshops and architecture review boards for major cloud projects. Mentor engineering teams and foster a security-first mindset across the organization. Communicate complex security concepts clearly to both technical and non-technical stakeholders. Qualifications 7-12+ years in cloud security, cloud architecture, cybersecurity engineering, or similar fields. Deep expertise with at least one major cloud provider (Azure, AWS, or GCP), with strong understanding of native security services. Hands-on experience with IAM, network security, encryption, security automation, and cloud-native architecture. Strong proficiency with Infrastructure-as-Code and DevSecOps tooling (Terraform, CI/CD, security scanners, policy-as-code). Experience implementing or supporting compliance frameworks (SOC2, HIPAA, PCI, ISO 27001, etc.). Strong scripting/programming skills (Python, PowerShell, Bash, Go preferred). Excellent communication, analytical, and leadership abilities. Preferred Qualifications: Experience with CrowdStrike, Palo Alto Networks, CyberArk or Zscaler platforms a plus. Microsoft and AWS certifications. Exposure to detection and response workflows and security operations center processes. Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. Excellent verbal and written communication skills, with attention to detail in documentation. API integrations, PowerShell, and/or Python competency are highly desirable.

Hybrid The Senior Cloud Security Architect is responsible for designing and implementing secure cloud architectures that protect enterprise workloads, data, and identities across multi-cloud environments. This role provides strategic and technical leadership in cloud security, driving adoption of zero-trust principles, secure-by-design architecture patterns, and automated security controls. The architect collaborates closely with engineering, security, DevOps, and compliance teams to evaluate risks, define standards, and ensure the organization's cloud platforms are resilient, compliant, and capable of supporting rapid innovation. **Key Responsibilities** + Define and maintain the cloud security architecture, ensuring alignment with organizational goals, regulatory requirements, and industry best practices. + Develop secure reference architectures, patterns, and guardrails for cloud workloads, data services, and platform components. + Architect solutions that embed security controls across compute, storage, networking, identity, and application layers. + Lead cloud threat modeling, security design reviews, and architectural risk assessments for new and existing systems. + Design and implement identity-first security using platforms such as Azure AD/Entra ID, AWS IAM, or Okta. + Establish and enforce RBAC/ABAC models, privileged access policies, MFA enforcement, conditional access, and identity lifecycle automation. + Architect secure authentication and authorization integrations using OIDC, OAuth2, SAML, SCIM, and workload identities. + Champion zero-trust principles across cloud environments, applications, and distributed systems. + Embed security-by-default into CI/CD pipelines through automated SAST, SCA, IaC scanning, secrets detection, and container image scanning. + Partner with platform and DevOps teams to integrate policy-as-code (OPA, Azure Policy, Sentinel) to enforce compliance and prevent misconfigurations. + Guide teams in designing secure deployment patterns, secretless authentication, and automated vulnerability remediation workflows. + Promote DevSecOps culture through enablement, documentation, and best practices. + Develop cloud security standards, security baselines, and operational best practices across multi-cloud environments. + Implement and manage CSPM, CWPP, and CIEM tools to continuously improve cloud security posture and identity governance. + Support compliance initiatives (SOC2, HIPAA, PCI, ISO 27001, FedRAMP, etc.) through policy enforcement, evidence gathering, and architectural controls. + Track emerging cloud risks, threat vectors, and vulnerabilities to ensure proactive security hardening. + Architect secure network architectures leveraging segmentation, firewalls, private endpoints, WAF, DDoS protection, and service mesh solutions. + Implement encryption strategies, key management, secrets management, and secure data flow patterns. + Work with SRE and security operations to design logging, telemetry, and cloud-native monitoring systems for threat detection and incident response. + Serve as the primary cloud security expert, advising engineers, architects, and leadership on risk, design decisions, and strategic initiatives. + Lead security design workshops and architecture review boards for major cloud projects. + Mentor engineering teams and foster a security-first mindset across the organization. + Communicate complex security concepts clearly to both technical and non-technical stakeholders. **Qualifications** + 7-12+ years in cloud security, cloud architecture, cybersecurity engineering, or similar fields. + Deep expertise with at least one major cloud provider (Azure, AWS, or GCP), with strong understanding of native security services. + Hands-on experience with IAM, network security, encryption, security automation, and cloud-native architecture. + Strong proficiency with Infrastructure-as-Code and DevSecOps tooling (Terraform, CI/CD, security scanners, policy-as-code). + Experience implementing or supporting compliance frameworks (SOC2, HIPAA, PCI, ISO 27001, etc.). + Strong scripting/programming skills (Python, PowerShell, Bash, Go preferred). + Excellent communication, analytical, and leadership abilities. **Preferred Qualifications:** + Experience with **CrowdStrike, Palo Alto Networks, CyberArk or Zscaler** platforms a plus. + Microsoft and AWS certifications. + Exposure to detection and response workflows and security operations center processes. + Strong problem-solving ability, curiosity, and willingness to learn new tools and techniques. + Excellent verbal and written communication skills, with attention to detail in documentation. + API integrations, PowerShell, and/or Python competency are highly desirable. **Ralliant Corporation Overview** Ralliant, originally part of Fortive, now stands as a bold, independent public company driving innovation at the forefront of precision technology. With a global footprint and a legacy of excellence, we empower engineers to bring next-generation breakthroughs to life - faster, smarter, and more reliably. Our high-performance instruments, sensors, and subsystems fuel mission-critical advancements across industries, enabling real-world impact where it matters most. At Ralliant we're building the future, together with those driven to push boundaries, solve complex problems, and leave a lasting mark on the world. We Are an Equal Opportunity Employer. Ralliant Corporation and all Ralliant Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Ralliant and all Ralliant Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at applyassistance@Ralliant.com. **Bonus or Equity** This position is also eligible for bonus as part of the total compensation package. **Pay Range** The salary range for this position (in local currency) is 126,700.00 - 235,300.00

LMI is seeking a Senior Cybersecurity Information Systems Security Manager (ISSM) to provide cybersecurity Risk Management Framework (RMF) Authority to Operate (ATO) support for a United States Army client helping to develop platform architecture. This position is located in the Raleigh, NC area and can be supported by partial telework. Candidates must be able to work at the client site as needed. This position requires an active Secret clearance, TS/SCI preferred. LMI is a new breed of digital solutions provider dedicated to accelerating government impact with innovation and speed. Investing in technology and prototypes ahead of need, LMI brings commercial-grade platforms and mission-ready AI to federal agencies at commercial speed. Leveraging our mission-ready technology and solutions, proven expertise in federal deployment, and strategic relationships, we enhance outcomes for the government, efficiently and effectively. With a focus on agility and collaboration, LMI serves the defense, space, healthcare, and energy sectors-helping agencies navigate complexity and outpace change. Headquartered in Tysons, Virginia, LMI is committed to delivering impactful results that strengthen missions and drive lasting value. Responsibilities · Oversee the entire RMF cycle, including initiation, categorization, selection, implementation, assessment, authorization, and continuous monitoring. · Develop and maintain system security plans (SSPs) and associated documentation for each system under management. · Conduct risk assessments and vulnerability assessments to identify and mitigate security risks · Develop, review, and maintain Plan of Action & Milestones (POA&Ms), as required · Ensure compliance with all relevant security policies, standards, and guidelines, including NIST SP 800 series. · Work closely with Army cybersecurity personnel to document controls, support authorization, seeking any Interim Authorization to Test (IATT) and Authority to Operate (ATO) documentation and approvals and provide metrics to comply with audits. · Perform Mission Owner (MO) responsibilities in accordance with (IAW) Cybersecurity Service Providers (CSSPs) Statement of Work (SOW). · Responsible for escalating issues, problems, risks, and constraints to the appropriate levels for clarification and resolution. · Develop and maintain a working knowledge of AWS products and capabilities. · Perform unsupervised, hands-on work in GovCloud environments and eMASS. · Manage multiple and competing customer priorities with little supervision. · Develop High Availability, Continuity of Operations (COOP) and Disaster Recovery (DR) processes in accordance with government and industry guidelines. · Work closely with the DevOps and system support engineers to provide guidance on security weaknesses in the cloud environment. · Review security controls and configuration requirements including secure network design, database access, security testing, authentication methods, implementation of encryption, privilege management, logging, input validation, secure storage design, and secure data transfer. · Assist with the development and implementation for cloud security architectures for protecting sensitive data deployed into various cloud (AWS, Azure, GCP, etc.) and hybrid systems · Participate in Requests for Change (RFC), Account Requests, Change Management Processes, IAVM tracking, and Cyber Task Orders (CTOs). · Perform data transfers between security domains IAW SOCOM policies and procedures as a Data Transfer Agent (DTA). Qualifications Minimum Qualifications: · Minimum of a SECRET security clearance, TS/SCI Preferred. · 5+ years Managerial experience in developing and implementing system information security standards and procedures in a DoD Cybersecurity Enterprise Environment. · Previous Army cybersecurity and technology experience. · Demonstrated experience with US Army technology, systems, and command & control policies and procedures. · DOD Cyber Workforce (DCWF) 8140 (722) Intermediate Information Systems Security Manager certification: CGRC/CAP or CASP+ or CCSP or Cloud+ or SSCP or Security+ or GSEC. · Experience with security requirements in a federal IT environment, including FedRAMP-certified providers and FISMA requirements for acquiring and maintaining an ATO. · Experience with Enterprise Cross Domain Solutions. · Experience with DoD STIGs and SRGs. · Strong understanding of cybersecurity principles, standards, and best practices. · Excellent communication and interpersonal skills, with the ability to interact effectively with technical and non-technical stakeholders. Additional Preferred Qualifications: · Working knowledge of AWS products and capabilities. · Experience with Agile development methodologies and working with Agile teams. · A BS degree in Information Technology, Cybersecurity, Data Science, Information Systems, or Computer Science, from an ABET accredited or CAE designated institution fulfills the educational requirement. Target salary range: $119,000 - $185,000 Disclaimer: The salary range displayed represents the typical salary range for this position and is not a guarantee of compensation. Individual salaries are determined by various factors including, but not limited to location, internal equity, business considerations, client contract requirements, and candidate qualifications, such as education, experience, skills, and security clearances.

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. **Required Skills:** Security Engineer - IR Threat Intelligence Responsibilities: 1. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 2. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 3. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 4. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems 5. Engage constructively in cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions **Minimum Qualifications:** Minimum Qualifications: 6. 5+ years threat intelligence experience 7. Bachelor's degree or equivalent experience in Security 8. Familiarity with campaign tracking techniques and ability to convert the tracking results to long term countermeasures 9. Familiarity with threat modeling framework, such as Diamond Model or/and MITRE ATT&CK framework 10. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 11. Proven track record of managing and executing on short term and long term projects 12. Ability to work with a team spanning multiple locations/time zones 13. Ability to prioritize and execute tasks with minimal direction or oversight 14. Ability to think critically and qualify assessments with solid communications skills 15. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 16. Experience close collaborating with incident responders on incident investigations 17. Familiarity with malware analysis or network traffic analysis 18. Familiarity with nation-state, sophisticated criminal, or supply chain threats 19. Production of file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 20. Experience in one or more query languages such as SQL 21. Experience writing production code for threat intelligence tooling 22. Experience conducting large scale data analysis 23. Experience working across the broader security community **Public Compensation:** $154,000/year to $217,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Ask IT Consulting Inc. visualizes itself as a leader in IT services and staffing in coming years. With strong dedication and commitment of our employees, we would surpass all our competitors establishing the wider channel of media marketing building a better connection with clients. Job Description Hi, This is Sumit with Ask ITC Inc. which is backed by a $500 million Microtek group company, provides an industry leading blend of technology, business consulting, and outsourcing services. Ask IT is a minority-owed enterprise; it has been founded on providing the highest quality possible and on the devotion to customer satisfaction. Position : Information Security (Guardium) Location : Raleigh NC Duration 12 + Months Short Description: The NCDOT IT Information Security Office (ISO) requires a senior information security professional, specializing in database vulnerability and threat management (VTM) utilizing and administrating IBM Guardium. Complete Description :* The NCDOT IT Information Security Office (ISO) requires a senior information security professional, specializing in database vulnerability and threat management (VTM) and monitoring for all NCDOT IT database systems. A majority of this resource's responsibilities will be vulnerability tool administration, setup and scheduling, vulnerability assessment and risk ranking for critical IT database systems. This resource should possess senior technical skillsets as well as senior soft skills as this resource will lead database VTM efforts and strategy for the agency. This resource should possess senior skillsets in preparing reports and presentations to senior management on the status, rate of improvement and overall efficacy of database VTM and monitoring efforts across an enterprise. This resource must have experience administrating, utilizing and designing implementations of IBM Guardium on mainframe DB2 and distributed systems. Thanks and Regards, Sumit Gupta Technical Recruiter | ASK IT Consulting Inc. Women Owned Minority Certified Enterprise Address: # 33 Peachtree Court Holtsville, NY 11742 Phone: *************** Ext- 4401 Fax: *************** E: sumit.guptaaskitc.com|W: **************

Piper Companies is seeking an Information Security Manager who will be responsible for developing, implementing, and maintaining the organization's information security program. This role ensures the confidentiality, integrity, and availability of data and systems by managing security policies, risk assessments, compliance initiatives, and incident response processes. The candidate will sit 3 days a week on-site in Raleigh, NC. Responsibilities for the Information Security Manager: * Develop and enforce security policies, standards, and procedures aligned with industry best practices * Lead risk assessments and vulnerability management programs * Manage security tools such as firewalls, SIEM, endpoint protection, and DLP solutions * Monitor and respond to security incidents, coordinating investigations and remediation * Lead and mentor a team of security analysts and engineers * Collaborate with IT, DevOps, and business units to integrate security into processes and Qualifications for the Information Security Manager include: * Bachelor's degree in computer science, Information Technology, Cybersecurity, or related field * 7+ years in information security roles, with at least 1-2 years in a leadership position * Certifications such as CISSP, CISM, or equivalent preferred * Strong knowledge of security frameworks (NIST, ISO 27001) * Expertise in network security, cloud security, and IAM Compensation of the Information Security Manager: * $120,000-$165,000 * Comprehensive Benefits: Medical, Dental, Vision, 401K, PTO, Sick Leave as required by law, and Holidays This job opens for applications on 1/16/2026. Applications for this job will be accepted for at least 30 days from the posting date. Information Security Manager, Risk Assessment, CISSP, CISM, NIST, network security, IAM, cloud security, leadership, firewall, DLP, Compliance, Hybrid #LI-HL1 #LI-HYBRID

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

At Sysdig, we believe cloud security isn't a compromise - it's a promise. From the start, our mission has been clear: to help organizations secure innovation in the cloud, the right way. We created Falco, the open standard for cloud threat detection, and continue to lead the cloud security market with runtime insights, open innovation, and agentic Al. Creators of technology trusted by over 60% of the Fortune 500, Sysdig gives teams the real-time clarity to move fast and defend what matters most. Culture matters here. We believe diversity fuels stronger ideas, and open dialogue drives sharper decisions. Recognized as a Best Place to Work and one of Deloitte's fastest-growing companies for the past 5 years, we're here to raise the standard for what cloud security and workplace culture should be. If you have the passion to dig deeper, the desire to challenge convention, and the curiosity to build something better, Sysdig is the right place for you.What you will do Lead the design, implementation, and maintenance of security systems, and tools. Collaborate with different teams to integrate security practices into the development lifecycle. Build automation scripts and security tools to improve security efficiency. Review code and architecture for security weaknesses and vulnerabilities, providing recommendations for improvement. Manage and improve security monitoring and incident response within a Security Operations Center (SOC) environment. Stay up-to-date with the latest security trends, tools, and best practices. Manage security for cloud-based infrastructures, ensuring best practices for AWS, GCP, and Azure are followed. What you will bring with you 5+ years of experience in cybersecurity, with a focus on security engineering and secure software development. Proficiency in at least one programming language (Python, Java, Go etc.) and experience writing secure code. Expertise in securing cloud platforms such as AWS, GCP, and Azure, including identity and access management (IAM), security groups, encryption, and network configuration. Experience with security event monitoring, log analysis, and using SIEM (Security Information and Event Management) tools. Knowledge of security protocols, encryption algorithms, and authentication/authorization mechanisms. What we look for Strong communication skills, with the ability to explain complex security concepts to all kinds of audiences. Experience with application security, network security, and cloud security. When you join Sysdig, you can expect: Extra days off to prioritize your well-being 401(k) Retirement Savings Plan with a 3% company match Maternity and Parental Leave Mental health support for you and your family through the Modern Health app Full health benefits package for you and your family The U.S. annual compensation range for this full-time position is between $ 143,000 and 179,000 USD/year. Actual offers may be higher or lower than this range based on a variety of factors, including your work location, job-related experience and education. We would love for you to join us! Please reach out even if your experience doesn't perfectly match the job description. We can always explore other options after starting the conversation. Your background and passion will set you apart, especially if your career path is different. Sysdig values a diverse workplace and encourages women, people of color, LGBTQIA+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. Sysdig is an equal-opportunity employer. Sysdig does not discriminate on the basis of race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity, or any other legally protected status. #LI- BA1 #LI-Hybrid

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we're all a part of something bigger than ourselves. Are you ready to change the way the world moves? The Enterprise Cyber Security Cloud Security team is responsible for working with other security and cloud services teams to ensure alignment and collaboration in securing Ford's public cloud infrastructure. The teams work closely together to identify security gaps in the cloud environments and address them. The Cloud Security team is responsible for identifying, evaluating, and recommending cloud security tools and functions to enhance security around Ford's public cloud. The team is also responsible for developing and managing the following Security Services in Ford's public cloud environments: - Cloud Security Automation Development - GCP/Azure Security Compliance - GCP VPC Service Control - GCP Cloud Armor/ Azure WAF **What you'll do...** + Partner with other Cloud Security team members to identify and develop automation for security related workflows and audits (VPC SC, DLP, Exceptions, Org Policy, etc..). + Lead evaluation and develop an understanding of tools needed to address security gaps. + Lead/Collaborate with EPEO Services teams on security gap remediation. **You'll have...** + Bachelor's degree in Computer Science, Information Technology or related OR a combination of education and experience + 5+ years of scripting and automation experience + Proven experience in developing and implementing automation using scripting languages such as + Python, PowerShell, or Go, particularly for API integrations, security tool orchestration, and custom audit scripts. + Solid understanding and practical experience with Git and GitHub for version control, collaborative development, and security automation pipeline management. + Familiarity with CI/CD pipelines and automated deployment tools (e.g., Jenkins, Azure DevOps, GitHub Actions) to integrate security automation into the software development lifecycle. + Knowledge of Infrastructure-as-Code (IaC) principles and tools like Terraform. + Strong knowledge of security best practices and guidelines (at the enterprise-level) related to GCP and Azure Cloud deployments as well as common web application frameworks + Understand the functionality and secure usage of various GCP services: VPCs, IAM, security groups, compute engine, cloud storage, Security Command Center, VPC Service Control, Cloud DLP and Cloud Armor + Customer focused and strong team orientation + Self-starter and fast-learner + Strong communication and interpersonal skills + Strong problem solving and Analytical/Reasoning skills + Strong drive for results and ability to work independently + Demonstrated commitment to quality and project timing + Familiarity with the agile project planning process and use of Rally. + Document processes & procedures and developing other documentation. **Even better, you may have...** + Understand the functionality and secure usage of various Azure services: Virtual Machines, Virtual Networks, Azure Active Directory, App Services, Azure SQL Databases, Storage Accounts, Kubernetes, Containers, Key vaults. You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply! As an established global company, we offer the benefit of choice. You can choose what your Ford future will look like: will your story span the globe, or keep you close to home? Will your career be a deep dive into what you love, or a series of new teams and new skills? Will you be a leader, a changemaker, a technical expert, a culture builder...or all of the above? No matter what you choose, we offer a work life that works for you, including: - Immediate medical, dental, vision and prescription drug coverage - Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care and more - Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more - Vehicle discount program for employees and family members and management leases - Tuition assistance - Established and active employee resource groups - Paid time off for individual and team community service - A generous schedule of paid holidays, including the week between Christmas and New Year's Day - Paid time off and the option to purchase additional vacation time. For a detailed look at our benefits, click here: ******************************* This position is a range of salary grades 7-8. Visa sponsorship is not available for this position. SOUTHEAST MI RESIDENTS: This role is posted as remote unless you reside within 50 miles of Dearborn, MI-in which case we request on-site presence up to 4 days a week. Candidates for positions with Ford Motor Company must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. We are an Equal Opportunity Employer committed to a culturally diverse workforce. All qualified applicants will receive consideration for employment without regard to race, religion, color, age, sex, national origin, sexual orientation, gender identity, disability status or protected veteran status. In the United States, if you need a reasonable accommodation for the online application process due to a disability, please call **************. \#LI-Remote **Requisition ID** : 54783

About this role: Wells Fargo is seeking a Senior Information Security Engineer on Advanced Research Engineering (ARE). Advanced Research Engineering accelerates cyber research and response by delivering secure, tailored environments that remove operational barriers and foster innovation. As a Senior Information Security Engineer on ARE, you will be a hands‑on builder and operator of these environments-designing, automating, and sustaining resilient research platforms that enable rapid proof‑of‑concept (POC) development and high‑fidelity experimentation, while upholding strong OPSEC guardrails and governance. Your work directly strengthens the enterprise's security posture against evolving threats by turning ideas into tested capabilities in hours, not weeks, and by partnering across Cyber Threat Management (CTM) and adjacent teams to push innovation into repeatable, supportable service offerings. In this role, you will: * Provide Advanced Solution Support, tooling Development and Automation, and Commercial Tool Support to enable cyber security. * Lead or participate in computer security incident response activities for moderately complex events * Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards * Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security * Review and correlate security logs * Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: * Automation & Infrastructure as Code (IaC): Proficiency with Ansible, Terraform, and related automation frameworks to build repeatable, scalable, and secure environments. * Containerization & Orchestration: Hands‑on experience deploying and operating containerized workloads (e.g., Docker, Kubernetes, or enterprise container platforms) in secure, large‑scale environments. * Cloud Platforms: Experience engineering and operating research or security workloads across cloud environments (public, private, or hybrid). * CI/CD: Working knowledge of GitHub‑based source control, pipelines, and automated build/deployment workflows. * Observability, Data, & Analytics: Familiarity with Elasticsearch, Kibana, and Grafana for telemetry, monitoring, troubleshooting, and analytics use cases. * Scripting & Tooling: Proficiency in Python or similar scripting languages to automate tasks, build utilities, and integrate systems. Job Expectations: * This position offers a hybrid work schedule * This position is not eligible for Visa sponsorship * Possible up to 10% travel Locations: * 1525 WT Harris Blvd, Charlotte, North Carolina 28262 * 401 Las Colinas Blvd W Bldg A, Irving, TX 75039 * 2600 S Price Rd, Chandler, Arizona 85286 * 1100 Corporate Center Dr, Raleigh, NC 27607 Posting End Date: 29 Jan 2026 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

Support Continuous Monitoring activities for FedRAMP and other compliance functions (NIST 800-53, ISO 27001, SOC audits) - Monitor and assess daily vulnerability reports for FedRAMP-authorized systems - Identify, track, and report emerging threats and vulnerabilities - Coordinate with internal teams for timely remediation - Ensure timely submission of FedRAMP Continuous Monitoring documentation - Liaise with internal/external auditors for FedRAMP audit support - Monitor regulatory updates and integrate changes into monitoring processes - Collaborate across teams to reduce risk and improve compliance - Vulnerability Management · Tools: Qualys, Tenable, or other (plus, procurement experience) · Critical for FedRAMP · Assess current state of vulnerabilities - Compliance · Operate compliant · Collect evidence for audits (grant work) · Continuous monitoring - Collaboration · Work with internal/external teams across company · Federal VR sponsor involvement - All other duties as assigned We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to ********************.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: **************************************************** Skills and Requirements Tools: Qualys, or Tenable, or other - Experience in control assessment, third-party risk, and/or cybersecurity - Foundational knowledge of security frameworks (FedRAMP, ISO27k, NIST, etc.) - Proven experience in vulnerability management (identification, assessment, tracking, remediation) - Hands-on experience with vulnerability scanners and SIEM platforms - Experience with security automation using scripting languages - Excellent problem-solving skills - Ability to work independently or collaboratively in a fast-paced environment - Strong verbal and written communication skills - Ability to monitor security systems for threats - Installation/troubleshooting in web-based environments - Self-motivated - Can track technical issues - Proficiency in Microsoft Power Automate (building, maintaining, troubleshooting workflows) - Engineering background - Ability to understand vulnerability management within the context of security frameworks

Who We Are: Bandwidth, a prior “Best of EC” award winner, is a global software company that helps enterprises deliver exceptional experiences through voice, messaging, and emergency services. Reaching 65+ countries and over 90 percent of the global economy, we're the only provider offering an owned communications cloud that delivers advanced automation, AI integrations, global reach, and premium human support. Bandwidth is trusted for mission-critical communications by the Global 2000, hyperscalers, and SaaS builders! At Bandwidth, your music matters when you are part of the BAND. We celebrate differences and encourage BANDmates to be their authentic selves. #jointheband What We Are Looking For: The mission of the Security Operations team is to build, deploy, and operate information security systems, infrastructure, and tools. The Senior Security Engineer will act as a leader in monitoring, administration, ticketing and support. In addition, mentoring other security team members in operations functions, as well as assisting management in growing and maturing security detection, monitoring and response. As a Senior Security Engineer, you will work closely with not only other Information Security teams but also partner with the IT, development and architecture organizations. You will be part of a talented team of security professionals who demonstrate superb technical competency, delivering mission critical infrastructure and ensuring the highest levels of availability, performance and security across the enterprise. What You'll Do: Provide technical and operational leadership for aspects of security operations, security architecture and security tools administration. Serve as an escalation point in incident response scenarios; acting as the incident lead and conducting investigations and forensics as needed. Actively engages in the performance of Incident Response activities, including but not limited to, triage, escalation, conducting post-mortem and lessons learned, as well as remediation tracking. Displays a strong knowledge and understanding of the utilization of various security tools include SIEM, SOAR, vulnerability scanners, CSPM, and EDR Advanced understanding of securing both cloud-based (AWS, GCP) and on-prem workloads including traditional architecture design and containerized environments. Identify gaps in current monitoring or operational processes and workflows, and recommend changes or enhancements to improve efficiency through security best practices.. Provide security consulting on medium to large scale projects for internal clients to ensure conformity with corporate information, security policy and standards Drive vulnerability management and remediation efforts - prioritizing issues, implementing mitigations, and designing strategic preventative and compensating controls Drives process improvement and control implementation projects in coordination with the other Enterprise teams Engages with neighboring Bandwidth technology teams to drive awareness and compliance to security policies and standards Participate in security on-call rotation, supporting off-hours general security incidents and production systems. Maintain working relationships with business partners to understand business processes, and the impact of implementing security controls in their ability to do business Train and mentor team members for security operations, support, and/or administration tasks What You Need: Education: Degree in an IT or Information Security discipline or other equivalent combination of education and/or experience that is focused on IT Security and Technology Operations. One or more of the following certifications: GIAC Information Security Professional (GISP) Certified Information Systems Security Professional (CISSP) AWS Certified Security Specialty Experience: 5 or more years of specific Security Operations experience required. 5 or more years SIEM, SOAR and vulnerability management experience, including integrating endpoints 3 or more years of incident response experience across a variety of environments and resource types: on-prem, cloud, endpoints, servers, containers, etc. Knowledge: Familiarity with cutting-edge security technologies such as Zero-Trust Network Access, SSO, Endpoint Detection and Response (EDR), and Security Incident and Event Management required (SIEM). Experience working in multi-cloud organizations utilizing cloud security posture management (CSPM) and cloud-native security tools with a “shift-left” DevSecOps mentality Experience working with a third-party Managed Security Service Provider (MSSP) Skills: Proficient in Windows and Linux operating systems. Ability to analyze a complex technical environment and quickly build a conceptual understanding of how the pieces all fit together Proficient in automation and scripting languages (Python, Bash, etc) Ability to analyze and correlate information from multiple sources to determine and articulate potential risk to the business in non-technical terms. Team player with strong communication skills, ability to collaborate with highly technical colleagues and non-technical end-users at a level they can understand. Bonus Points: Experience: Hands-on experience with Wiz and CrowdStrike - cloud security and container security . Hands-on experience with AWS / cloud security tools (Guard Duty, Amazon Inspector, AWS Shield,Wiz, Lacework, etc.) Strong knowledge of SIEM tools and logging (Splunk, Sumo Logic, Data Dog, Qualys) Understanding of maintaining and administering endpoint detection response tools (CrowdStrike, FireEye, etc) Foundational knowledge of Ai - LLMs (language learning models), MCP (model context protocol) and the impacts of these on securing organizational resources. Knowledge: Understanding of authentication and authorization mechanisms. Familiar with data classification, data protection, and secure data handling practices. Understanding of regulatory requirements (SOX, GDPR, HIPAA … ) The Whole Person Promise: At Bandwidth, we're pretty proud of our corporate culture, which is rooted in our “Whole Person Promise.” We promise all employees that they can have meaningful work AND a full life, and we provide a work environment geared toward enriching your body, mind, and spirit. How do we do that? Well… 100% company-paid Medical, Vision, & Dental coverage for you and your family with low deductibles and low out-of-pocket expenses. All new hires receive four weeks of PTO. PTO Embargo. When you take time off (of any kind!) you're embargoed from working. Bandmates and managers are not allowed to interrupt your PTO - not even with email. Additional PTO can be earned throughout the year through volunteer hours and Bandwidth challenges. “Mahalo moments” program grants additional time off for life's most important moments like graduations, buying a first home, getting married, wedding anniversaries (every five years), and the birth of a grandchild. 90-Minute Workout Lunches and unlimited meetings with our very own nutritionist. Are you excited about the position and its responsibilities, but not sure if you're 100% qualified? Do you feel you can work to help us crush the mission? If you answered ‘yes' to both of these questions, we encourage you to apply! You won't want to miss the opportunity to be a part of the BAND. Applicant Privacy Notice

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

If you are motivated and believe in the credit union philosophy of "People Helping People," join our team! The Security Engineer - IAM is a mid-level role responsible for enhancing and evolving SECU's IAM practices, processes, and solutions. This individual will serve as a key technical resource, providing operational support, management, implementation, and strategic development of IAM solutions, including Privileged Access Management (PAM), Single Sign-On (SSO), Identity Governance and Administration (IGA), Multi-Factor Authentication (MFA), Active Directory (AD), Customer Identity and Access Management (CIAM), and other IAM technologies. The engineer will provide input and have some responsibility with designing and optimizing IAM frameworks, driving automation, and ensuring alignment with security best practices and compliance requirements. Additionally, they will actively collaborate with cross-functional teams, mentor junior engineers, and work closely with key stakeholders to strengthen the adoption of IAM controls and solutions while contributing to the overall cybersecurity strategy. Responsibilities: (30%) Perform operational support and maintenance of technical security solutions to enhance SECU's security posture. (20%) Assist in the configuration and tuning of security tools and integrations with enterprise controls and tools. (20%) Participate in identification of service quality, documentation, and operational efficiency and improvement opportunities. (10%) Participate in on-call rotation and serve as a resource for technical support of information security technologies. (10%) Mentor and collaborate with junior engineers. (10%) Pursue and maintain additional skills and certifications commensurate with the role to remain current on advancing cyber security trends. Responsibilities will include participation in special assignments and cross-functional initiatives as required. Required Education & Experience (Knowledge, Skills, & Abilities): Candidate must live in North Carolina or contiguous state. Bachelors degree in Computer Science, Information Technology, Cyber Security, or related field. Additional 2 years of relevant experience can be considered in lieu of degree. Minimum 2 year of experience in related field. General IAM Solutions Experience supporting one or more IAM solutions such as PAM, SSO, Directory Services, IGA, CIAM, and MFA Understanding of IAM Concepts Demonstrated experience and understanding of core IAM principles, such as authentication, authorization, provisioning, and access control. Demonstrated experience and understanding of identity lifecycle management (creation, modification, and deletion of user accounts). Basic Programming/Scripting Skills Ability to leverage and understand scripting languages such as Python, PowerShell, or Bash for automating tasks. User and Role Management Experience in managing user accounts, groups, roles, and permissions within an IAM system. Security Awareness Understanding of security principles, including least privilege, segregation of duties, and access reviews. Incident Response and Troubleshooting Ability to investigate and resolve access-related issues and incidents. Experience with IAM-related logs and monitoring tools for diagnosing and fixing issues. Ability to identify discrepancies or potential security risks in access control settings. Communication Skills Ability to document processes, policies, and procedures clearly and concisely. Skills in communicating technical concepts to non-technical stakeholders. Preferred Education & Experience (Knowledge, Skills, & Abilities): Bachelors degree in Computer Science, Information Technology, Cyber Security, or related field. Preferred 2-5 direct years of experience. Ability to manage role-based access control (RBAC) policies. Experience working in cross-functional teams, including IT, security, and compliance. Ability to collaborate with stakeholders to understand access requirements and implement them effectively. Experience working within a DevOps environment. Professional certifications such as: CISSP, CISA, CISM, GIAC, CGEIT, CRISC, OSCE, or other relevant industry certification and/or desire to obtain such certifications. Work Environment & Physical Requirements: *Note: “Working Conditions” or “ADA” - open to other language Computer for prolonged periods SECU provides equal employment opportunity to all qualified persons regardless of race, color, religion, age, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or other classification protected by law. Disclaimer State Employees' Credit Union reserves the right to fill this role at a higher/lower level based on business need.

We provide creative and technology services and solutions in the areas of web design, customized web applications, IT Staffing and e-commerce solutions, Mobile App development and much more services to organizations in the All over the world. With well defined and documented processes and practices, we ensure successful implementation of all our projects. Our teams are highly trained in best practices of web and application developments and are managed by certified project managers who ensure highest levels of process control and management Job Description Security Architect Locations: Raleigh, NC Full Time Travel Required: Up to 10% or 1 day a week Work with IBM Cloud PaaS Offering Management on defining security roadmap Engage with clients as sponsor users to implement new security capabilities Architect technical security requirements for external compliance certifications Participate and enforce IBM PSIRT, IBM CSIRT, and IBM Secure Engineering processes Provide security technical guidance to Bluemix services and SaaS offerings that run on top of Bluemix PaaS Create external facing collateral for use by client facing teams and clients Participate in IBM Cloud Security interlocks Present in client facing/external conferences e.g., Interconnect etc. Support Bluemix sales by presenting to clients (on the phone, F2F) Mentor security team members You will work with the best of the teams in Cloud Dev, Cloud Security, Cloud Offering Management, Cloud Sales. You will be outgoing, team player, willing to mentor and lead team members, must have great sense of humor. You will have demonstrated communication skills, experience with working with customers and be able to bring customer requirements back to the team. Your extensive experience in security and compliance audit is of great advantage. This is a high performing, leading edge team that offers exciting opportunities in Cloud security. If you have it in you, then you are at the right place. Apply below immediately. Required Technical and Professional Expertise: At least 8 years of experience in technical security architecture and design skills At least 5 years of experience in External customer facing experience and skills At least 3 years experience in Compliance Standards Preferred Technical and Professional Experience: At least 3 years of experience in Cloud Security and compliance standards. Certified Information Systems Security Professional (CISSP) certification is preferred Additional Information All your inform ation will be kept confidential according to EEO guidelines.

Candidates can live within commutable distance to any Slalom office in the US. We have a hybrid and flexible environment. Who You'll Work With As a modern technology company, we've never met a technical challenge we didn't like. We enable our clients to learn from their data, create incredible digital experiences, and make the most of new technologies. We blend design, engineering, and analytics expertise to build the future. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are seeking an experienced AWS Security Architect with deep expertise in AWS cloud architecture, native & external security services, and regulatory compliance to provide advisory and delivery services aligned with the standards of a top-tier consulting firm. This role will partner with enterprise clients to design, assess, and implement secure AWS environments that meet business, compliance, and regulatory requirements. This role requires a strong blend of hands-on technical capabilities, architectural leadership, and client-facing advisory skills. As a trusted advisor, you will lead security strategy sessions, assess current cloud security postures, and deliver AWS-native and third-party solutions that align with best practices. You will work across multiple industry verticals, collaborating with engineering, security, risk, and compliance teams, and guiding clients through security transformation journeys and ensuring AWS adoption is secure, compliant, and resilient. This is a strategic technical consulting role suited for individuals who are passionate about cloud security, compliance, and helping clients adopt secure architectures in regulated environments. Key Responsibilities * Serve as a client-facing advisor, providing strategic guidance on cloud security transformation, governance, and operating models. * Lead cloud security assessments, maturity evaluations, and gap analyses, producing recommendations aligned with regulatory frameworks (e.g., NIST, ISO 27001, CIS, PCI DSS, HIPAA). * Design and implement AWS-native security architectures leveraging IAM, KMS, CloudTrail, Security Hub, GuardDuty, Macie, Detective, and Control Tower. * Establish governance, risk, and compliance (GRC) frameworks for AWS adoption, including policy-as-code and automated compliance monitoring. * Define and implement identity and access management (IAM) strategies, including federation, least privilege, and Zero Trust principles. * Guide clients in adopting secure application and data architectures, including encryption, data loss prevention, and secure API integrations. * Support incident response and forensics readiness through AWS-native logging, monitoring, and detection services. * Collaborate with DevOps and platform teams to integrate security into DevOps pipelines (DevSecOps) with automation for vulnerability management, code scanning, and compliance validation. * Collaborate with client executives to articulate cloud security roadmaps, business cases, and investment priorities. * Partner with internal teams to develop accelerators, templates, and reusable security patterns that improve time-to-value for clients. * Author client deliverables such as risk assessments, security architecture design documents, gap analyses, and roadmap plans. * Provide thought leadership via security workshops, executive briefings, and architecture reviews. * Stay current with AWS service releases, regulatory changes, and emerging cyber risks to inform recommendations. Core Qualifications * 8+ years of IT security experience with at least 4+ years focused on AWS security. * Proven consulting experience delivering security assessments, compliance programs, and cloud security roadmaps for enterprise clients. * Strong expertise in AWS security services (i.e. IAM, KMS, CloudTrail, GuardDuty, Macie, Security Hub, Detective, WAF, Shield). * Deep knowledge of cloud governance, risk management, and regulatory compliance frameworks (NIST, ISO, CIS Benchmarks, SOC 2, HIPAA, PCI DSS) and experience designing or assessing AWS environments aligned with these frameworks. * Hands-on experience embedding security into DevOps/DevSecOps pipelines and Infrastructure-as-Code (Terraform, CloudFormation, AWS CDK). * Experience designing ransomware detection, response, and business resilience strategies in AWS including backup, recovery, and isolation patterns. About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position, the target base salary pay range in the following locations: Boston, Houston, Los Angeles, Orange County, Seattle, San Diego, Washington DC, New York, New Jersey, for Consultant level is $119,000-$147,500 and for Senior Consultant level it is $136,500-$169,500 and for Principal level it is $151,000-$187,500. In all other markets, the target base salary pay range for Senior Consultant level it is $125,000-$155,500 and for Principal level it is $138,500-$172,000. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. We will accept applications until 3/31/2026 or until the positions are filled. We are committed to pay transparency and compliance with applicable laws. If you have questions or concerns about the pay range or other compensation information in this posting, please contact us at: ********************. EEO and Accommodations Slalom is an equal opportunity employer and is committed to attracting, developing and retaining highly qualified talent who empower our innovative teams through unique perspectives and experiences. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team or contact ****************************** if you require accommodations during the interview process.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. **Responsibilities:** + **M&A Integration Execution:** Collaborate and engage with IAM Lead and other business partners on planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Design and Implement Sailpoint IIQ Solutions:** Configure and customize Sailpoint IIQ components (Lifecycel Manager, Compliance Manager etc). Also develop workflows, rules, and connectors for identity governance. + **Application integration with Sailpoint IIQ:** Integrate Sailpoint IIQ with enterprise applications, directories and cloud platforms in addition to developing and maintaining connectros for provisioning and de-provisioning. + **Sailpoint IIQ Development and Scripting:** Write and maintain BeanShell scripts, Java code and XML configurations, develop customer Sailpoint tasks and workflows. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications** + Experience with SailPoint IdentityIQ (IIQ) is a must + Experience with SailPoint IIQ Integrations (Workday, Active Directory/LDAP, Webservices, SCIM, JDBC, SAP) + Experience implementing Life Cycle Manager (LCM) Configuration workflow tasks that model business functions, including Lifecycle Requests (Role or Entitlement), Lifecycle Events (Joiner, Mover, or Leaver), and LCM Workflow Details (Workflows and Subprocesses) + Solid understanding of the SailPoint object model, rules, and policies + Experience with both lifecycle manager (LCM) and compliance manager (CM) modules + Knowledge of Active Directory, LDAP, Workday, and cloud platforms (GCP, MS Entra ID) is required + Proven track record of successful IAM implementations including large scale enterprise deployments. + Experience working within regulatory standards and requirements such as, SOX, HIPAA, GDPR etc. is desired. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************