Security architect jobs in Saint George, UT - 582 jobs

Our mission at Tensorwave Cloud is to build seamless, secure, reliable, and resilient AI infrastructure at scale, eliminating barriers and challenging the status quo to empower builders and support AI innovation. About the role We are seeking an Infrastructure Security Architect responsible for building and enforcing a unified security architecture across High Performance Compute (HPC), cloud environments, and core organizational systems. This hybrid position combines security architecture, DevSecOps engineering, offensive security, and cross-organizational alignment. This role will establish the enterprise-wide security architecture strategy, implement automated controls, validate safeguards through ethical hacking techniques, and ensure alignment between Infrastructure, IT, Security, Engineering, Software Development, and Compliance. Responsibilities Develop and maintain a holistic security architecture roadmap spanning HPC, cloud platforms, on-prem infrastructure, and internal applications Architect solutions aligned with NIST 800-53, NIST CSF, CIS benchmarks, and other relevant frameworks Establish and evangelize a Security-by-Design culture across engineering and operational teams Build automated pipelines for security controls, monitoring, evidence collection, and audit readiness Engineer automated hardening, patching, and configuration management solutions across infrastructure and cloud assets Integrate security directly into CI/CD workflows, cloud provisioning, and infrastructure-as-code (IaC) Conduct hands-on ethical hacking, security testing, threat modeling, and adversarial simulations to validate security controls Lead or support purple-team activities with Security, Infrastructure, and Software Engineering Partner with Infrastructure, IT, Engineering, Software Development, Security, and Compliance to ensure unified execution of security policies Translate regulatory and audit requirements into actionable engineering tasks Act as a key technical advisor during audits to ensure evidence, control operation, and documentation meet standards Architect scalable processes that ensure continuous audit readiness and reduce manual evidence creation Define baseline security standards, technical controls, and operational guardrails Support certifications, assessments, and customer security reviews Required Experience Bachelor of Science in Computer Science, Computer Engineering, or a related technical field, or equivalent practical experience 7+ years in Infrastructure Security, DevSecOps, or Security Architecture Expertise in security frameworks: NIST 800-53, NIST CSF, CIS Extensive experience designing secure cloud and HPC environments Strong automation and engineering background (IaC, CI/CD, cloud-native security tooling) Offensive security experience (ethical hacking, red/purple team, threat modeling) Proven ability to lead cross-functional teams and drive organizational alignment Experience supporting audits, governance, and compliance initiatives Preferred Experience Certifications: OSCP, CISSP, GIAC (GCSA, GMOB, GCPN), or similar Experience with SOC 2, HIPAA, PCI, or other regulated environments Experience with GPU clusters, HPC environments, or high-throughput compute systems Deep familiarity with cloud security (AWS, GCP, Azure) What We Bring Mission driven company Competitive Salary Stock Options 100% paid Medical, Dental, and Vision insurance Flexible PTO Paid Holidays 401(k) Parental Leave Flexible Spending Account Short Term Disability Insurance Life and Voluntary Supplemental Insurance Mental Health Benefits through Spring Health We're looking for resilient, adaptable people to join our team, people who believe in the mission and think at massive scale. The solutions that worked on a handful of devices will not work at Exascale. Be prepared to be pushed daily, to learn a lot, and literally build the future. Tensorwave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, national origin, or veteran status.

Please Note: This is a Utah-based hybrid position which will require some regular in-office days each week. Additionally, employment with BambooHR is contingent on passing both a background and credit check. The Information Security Architect will lead hands-on security architecture design across BambooHR's cloud environment and corporate information systems, partnering with engineering, IT, and security teams to embed security into platforms, processes, and day-to-day technology decisions. A typical day includes leading architecture and design reviews, defining secure cloud and corporate security patterns, advising on identity and data protection strategies, and guiding teams through complex security tradeoffs to enable secure, scalable delivery. The Information Security Architect will own outcomes across cloud and corporate security architecture, delivering scalable designs, standards, and measurable risk reduction. This role operates with a high degree of autonomy and influence, partnering across engineering, IT, product, and security to embed security into how BambooHR designs, builds, and operates. You will: Lead the design and evolution of security architecture across cloud infrastructure, SaaS platforms, and corporate information systems, ensuring solutions are secure-by-design, scalable, and operationally sustainable. Own and maintain security architecture standards, reference architectures, and secure design patterns spanning identity and access management, data protection, logging/telemetry, endpoint security, and third-party integrations. Conduct and lead security architecture reviews for new systems, material changes, vendor tools, and integrations; document decisions, required control outcomes, and implementation guidance that teams can execute. Drive threat modeling and architectural risk assessments for strategic initiatives; translate findings into prioritized remediation plans and architecture improvements that balance risk reduction with usability and delivery velocity. Define and validate cloud security control expectations, including IAM, network segmentation, encryption and key management, secrets management, centralized logging, and least-privilege access models; validate adoption through partnership with engineering and IT. Influence detection and response architecture in collaboration with SecOps to improve visibility, telemetry quality, and response effectiveness; support investigations by providing architectural context and remediation guidance as needed. Partner with Security Engineering, Application Security, Security Operations, and GRC to ensure security controls are consistently designed and implemented across prevention, detection, response, and governance/audit domains (e.g., SOC 2, ISO 27001, and customer requirements). Create clear and accessible architecture documentation (standards, diagrams, patterns, decision records) and communicate security tradeoffs effectively to both technical and non-technical stakeholders. Mentor and guide security practitioners and cross-functional partners by improving shared understanding, raising architectural maturity, and promoting consistent adoption of security patterns and secure-by-default approaches. Demonstrate an AI-forward mindset and proficiency by actively using AI tools to improve productivity, quality, and decision-making in security architecture and engineering workflows, and be able to speak to real-world examples of using AI to conduct work and to design and implement practical, secure solutions (e.g., accelerating architecture documentation, threat modeling, control validation, detection logic development, policy/standard drafting, or automating analysis). What You Need to Get the Job Done Bachelor's degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent professional experience. 6-7+ years of hands-on experience in information security, security engineering, cloud security, or closely related roles. Demonstrated experience leading security architecture or design decisions for production cloud and/or corporate environments. Strong working knowledge of at least one major cloud platform (AWS, Azure, or GCP), including IAM, networking, encryption, key management, and logging. Practical experience across corporate security domains such as identity and access management, endpoint security, SaaS governance, and data protection. Ability to independently assess risk, define security control objectives, and translate them into clear architectural guidance and implementation requirements. Ability to drive architectural consistency across diverse cloud and corporate systems with varying ownership and constraints. Experience balancing security risk reduction with delivery speed, usability, and operational realities. Excellent written and verbal communication skills, with the ability to influence and align technical and non-technical stakeholders. Strong organizational and prioritization skills; ability to manage multiple initiatives in a fast-paced environment. Experience in a SaaS or cloud-first organization. What Will Make Us REALLY Love You Experience supporting SOC 2, ISO 27001, and customer security assessments. Familiarity with infrastructure-as-code, CI/CD pipelines, and cloud-native architectures. Experience with SSO/IdP platforms, MDM/endpoint management tools, and modern SaaS security controls. Security certifications such as AWS Security Specialty, CCSK, SSCP, CISSP (Associate or full), or equivalent. What You'll Love About Us A Great Company Culture that has been recognized by multiple organizations like Inc, and Salt Lake Tribune Comprehensive health, life, and disability insurance Generous leave policies that include 4 weeks of vacation, 12 company holidays, parental leave, and volunteer time off so you can enjoy quality of life 401k plans with up to 6% company match $2000 Paid-Paid Vacation bonus EAP through Headspace Check out all our benefits that benefit you About Us At BambooHR, we're building something different: we're building a people intelligence platform that transforms HR and sets people free to do great work! We're a proven market leader driving innovation while building lasting success through thoughtful, sustainable growth. Here, you'll find a place that champions growth: both professional and personal, both individual and collective. We invest in potential, giving you the space to stretch your capabilities and turn good ideas into reality while providing the safety net of a supportive, values-driven culture. Our approach combines meaningful work with meaningful lives, offering competitive benefits, professional development, and the flexibility to thrive both in and outside the office. What sets us apart isn't just what we do, but how we do it: with openness, integrity, and a shared commitment to doing the right thing. Join us in creating HR software that makes work better for everyone, while we make work better for you. BambooHR is committed to the full inclusion of all qualified individuals and will ensure that persons with disabilities are provided reasonable accommodations throughout the hiring process. If you would like to request accommodations, please let your recruiter know. BambooHR is An Equal Opportunity Employer--M/F/D/V Because our team members are trusted to handle sensitive information, we require all candidates that receive and accept employment offers to complete a background check before being hired. For information on California Privacy Policy, click here. Our process utilizes AI as an assistant to efficiently process and analyze candidate data. Recruiters and hiring managers maintain full oversight and accountability, ensuring that all final selection and rejection decisions are human-made and based solely on objective job qualifications. Please see our General Privacy Notice and California Privacy Notice for more details. See our AI Guidelines for Candidates for details on how BambooHR uses AI in recruiting, how we expect candidates to use AI, and what is not allowed.

About CyberArk: CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity - human or machine - across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on X, LinkedIn or Facebook. Job Description About the Team: You'll join the Product Security team and partner directly with Engineering (Development and SRE) to embed security into how we design, develop, deploy, and operate software for Machine Identity Management (MIM). About the Role: As a Senior Security Architect in Product Security, you will strengthen the security posture of MIM products and platforms by influencing design and development decisions from a security perspective. You will not own product or platform architecture-but you will help improve it through security best practices, threat modeling, and secure design patterns. Your focus is on enabling engineering teams to build secure, resilient systems by design. Responsibilities * Partner with Engineering to integrate security throughout the SSDLC: threat modeling, secure design reviews, secure coding practices, and CI/CD security controls. * Provide security-focused guidance on product and platform designs-ensuring security principles are applied without disrupting innovation or ownership. * Lead security initiatives that improve development processes and tooling (e.g., automated security checks, Infrastructure-as-Code scanning, secrets management). * Define and maintain secure development standards, patterns, and guardrails for cloud-native and distributed systems. * Conduct and guide threat modeling and security risk assessments for new features and architectures. * Deliver security enablement: training, mentoring, and awareness sessions for engineers and security champions. * Support incident response readiness for products and drive post-incident security improvements. * Stay ahead of emerging threats and technologies, updating security policies and practices accordingly. * Collaborate on AI/ML security for safe model integration and data protection aligned with evolving standards. #LI-Hybrid #LI-HA1 Qualifications * 6+ years in software development and 5+ in security, including 3+ in a security architecture or technical leadership role. * Strong engineering background with hands-on experience that informs secure design and threat modeling. * Proven ability to partner with Engineering teams to embed security without slowing delivery. * Deep knowledge of SSDLC, secure coding, and cloud security (AWS preferred). * Experience with AI/ML security considerations. * Expertise in threat modeling and secure design reviews (STRIDE, PASTA, or equivalent). * Familiarity with frameworks like OWASP, NIST, CSA. * Excellent communication and leadership skills; fluent in English. * Practical experience with security tools and cloud-native technologies. Preferred (Nice-to-have): * Exposure to FedRAMP or similar compliance frameworks. * Interest in sharing knowledge (e.g., blogs, talks, open source contributions). * Familiarity with security testing and research techniques. * Experience improving security maturity in Agile or DevSecOps environments. * Passion for mentoring engineers in secure design and development. Location & Work Setup US-based, within commuting distance of one of our offices: Boston, MA; Salt Lake City, UT; Santa Clara, CA. Expectation: 3 days in office per week. Additional Information CyberArk is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status. We are unable to sponsor or take over sponsorship of employment Visa at this time. The salary range for this position is $150,000 - $220,000/year, plus commissions or discretionary bonus, which will be based on the employee's performance. Base pay may also vary considerably depending on job-related knowledge, skills, and experience. The compensation package includes a wide range of medical, dental, vision, financial, and other benefits.

Who You'll Work With As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies As a Consultant or Senior Consultant, you will collaborate with cross-functional teams, including IT, security, and business units, to design and implement Google Cloud-based application innovation solutions. You will work alongside experienced cloud architects, data scientists, and other specialists, ensuring the successful delivery of scalable, cloud-native applications and AI-powered solutions. What You'll Do * Stay current with security trends, technologies, and best practices around Google Cloud solutions, leveraging tools like Cloud IAM, Cloud Security Command Center, BeyondCorp, and Cloud Armor. * Define and guide transformational security strategies for Google Cloud environments, ensuring alignment with Google's Zero Trust and BeyondCorp principles. * Translate complex regulatory requirements (e.g., GDPR, SOC 2, HIPAA) and technology standards into actionable functional and technical requirements for cloud and hybrid environments, ensuring security and compliance. * Lead teams through various phases of gap analyses, including security assessments, remediation planning, roadmap development, and implementation of remediation actions using Google Cloud-native tools. * Deliver on the vision, architecture, execution, and quality assurance of security projects on Google Cloud, driving initiatives that secure enterprise workloads and data. * Guide stakeholders and senior leaders on aligning security solutions with broader business goals, ensuring the architecture follows Google Cloud's security best practices and roadmap. * Establish security architecture patterns based on Google Cloud security frameworks and industry standards to meet the unique needs of enterprise clients. * Collaborate with other Google Cloud architects and security teams to continuously improve security knowledge assets and best practices, ensuring the most effective security solutions for clients. * Design and architect solutions to secure Generative AI models and applications against adversarial attacks, prompt injection, and their potential misuse for malicious cyber activities. What You'll Bring * Proven experience with Google Cloud security architecture, with hands-on experience in tools like Cloud IAM, VPC Service Controls, Cloud DLP, and Cloud Armor. * Strong background in defining and implementing Zero Trust and BeyondCorp security models within Google Cloud environments. * Familiarity or direct experience with Identity and Access Management (IAM), Data Protection, Vulnerability Management, and Cloud Security solutions in Google Cloud. * Extensive experience with security design patterns specific to Google Cloud, as well as hybrid and multi-cloud security architecture. * Experience in security and risk advisory consulting, particularly related to cloud security transformations. * Ability to lead the development and implementation of cloud security roadmaps aligned with business goals and compliance needs. * Familiarity with Google Cloud's Artificial Intelligence (AI) capabilities (e.g., Vertex AI, Generative AI services, Model Armor) including their applications, associated security risks (e.g., prompt injection, data poisoning, privacy concerns), and proven strategies for implementing security controls, governance, and responsible AI practices. * Relevant certifications are strongly desired, including (but not limited to): * GCP Professional Security Engineer * GCP Professional Cloud Architect * CISSP * Security+ About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position the base salary pay ranges are listed below. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. East Bay, San Francisco, Silicon Valley: * Consultant: $120,000-$177,000 * Senior Consultant: $140,000-$203,000 San Diego, Los Angeles, Orange County, Seattle, Houston, New Jersey, New York City, Westchester, Boston, Washington DC: * Consultant: $110,000-$162,000 * Senior Consultant: $130,000-$186,000 All other locations: * Consultant: $105,000-$148,000 * Senior Consultant: $115,000-$171,000 EEO and Accommodations Slalom is an equal opportunity employer and is committed to inclusion, diversity, and equity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team if you require accommodations during the interview process. We are accepting applications until 12/31.

Redo is building the most comprehensive platform for ecommerce growth. We help merchants personalize every step of the buyer journey to maximize profit and lifetime value. From returns to warranties, order tracking, post-purchase comms, and beyond, our AI-native suite replaces fragmented point solutions with a unified platform that boosts customer experience, retention, and revenue. Position Overview We are seeking a talented Head of Security to join our team at Redo. This role will lead security strategy across the organization, from executive-level risk management and compliance to technical security operations and architecture. In this role, you will take ownership of designing and growing our security architecture, security compliance, and risk management strategy. You will champion security best practices across engineering, product, and legal functions, and lead efforts to ensure threats are proactively identified and mitigated. Responsibilities: Lead company-wide security strategy, including building and maintaining a risk register, conducting security training and phishing campaigns, and enabling sales through security questionnaires and customer engagement Establish and maintain security operations including threat detection, monitoring, SIEM implementation, and penetration testing programs to proactively identify vulnerabilities Own all security compliance efforts, maintaining existing certifications (SOC 2, GDPR) and achieving new compliance requirements in alignment with sales priorities Establish and evolve Redo's security architecture across infrastructure, applications, and data flows Partner with infrastructure and platform engineering teams to drive security improvements including monitoring/remediation of security tooling findings (e.g., Wiz), WAF, IAM, and related infrastructure security Define and drive secure coding standards, development workflows, and security automation to detect and prevent security issues earlier in the pipeline Lead threat modeling, risk assessments, and architectural reviews for new features and systems Design and implement tools and processes for security monitoring, incident detection, response, and prevention Educate and coach teams across the company on security principles and secure development practices Qualifications: 4+ years experience in security leadership or security architecture roles, with proven ability to build and manage security programs including compliance, security operations, and technical security architecture in cloud-native environments (e.g., AWS, GCP, Azure) Proven track record of building security programs and practices in high-growth product companies Experience with SaaS-relevant compliance frameworks (e.g. SOC 2, GDPR, ISO 27001) Deep knowledge of threat modeling, system hardening, incident response, and security tooling Excellent communication and collaboration skills, able to work effectively with product, legal, and engineering partners Demonstrated ability to operate autonomously while offering mentorship and guidance to others Preferred Qualifications: Security leadership experience in early-stage or fast-growing startup environments Strong programming or scripting skills to directly contribute to security tooling and code reviews Experience driving security improvements across infrastructure and application teams, including infrastructure security (WAF, IAM) and application security practices Direct experience with security tooling such as Wiz, SIEM platforms, or bug bounty programs Experience securing IaC and CI/CD pipelines with infrastructure security best practices Familiarity with infrastructure-as-code tools such as Terraform or CDK Contributions to open-source security tooling or industry security standards initiatives Redo benefits and perks: Opportunity to work with a dynamic and innovative team in the fast-growing e-commerce industry Career growth and advancement On-site gym with showers, pickleball, and basketball Flexible PTO & company holidays Redo perks, monthly allowance to make purchases from ecommerce stores to support both existing and potential customers Company HSA contributions Weekly lunches & fully stocked break room $100 monthly babysitting perk reimbursement Office is minutes from biking and running trails

RELOCATION ASSISTANCE: Relocation assistance may be available CLEARANCE TYPE: SecretTRAVEL: Yes, 10% of the TimeDescriptionAt Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Join Northrop Grumman on our continued mission to push the boundaries of possible across land, sea, air, space, and cyberspace. Enjoy a culture where your voice is valued and start contributing to our team of passionate professionals providing real-life solutions to our world's biggest challenges. We take pride in creating purposeful work and allowing our employees to grow and achieve their goals every day by Defining Possible. With our competitive pay and comprehensive benefits, we have the right opportunities to fit your life and launch your career today. Northrop Grumman Defense Systems is seeking a Systems Security Engineer, (Level 2), that will support the Sentinel (GBSD) program performing Hardware Assurance. This position will be located in Roy, UT and will support the Ground Based Strategic Deterrent (GBSD) program. The Mission Defense Team (MDT) is seeking a highly motivated and qualified system engineer to serve as a Hardware Assurance Engineer, Level 2. You will be responsible for assessing and prioritizing a broad spectrum of hardware security threats. Key protection activities will involve vendor research, hardware assurance, program protection, counterfeit prevention, and supply chain security. Additional Responsibilities include: Assessment and analysis of threats, vulnerabilities, and risk for identified mission-critical functions and critical components Support courses of action based on knowledge and experience, initiative, guidance, and established regulations and policies Research, analyze data, and derive facts per identified vulnerabilities Participate in a variety of working groups and customer meetings; ensure communication of risk environment with stakeholders Contributes to program plans, goals, objectives, and milestones to for Hardware Assurance Review technical security assessments of SSE environments to identify points of vulnerability, non-compliance with established standards and regulations and recommended mitigation strategies Execute completion Statement of Work requirements, Program Milestone Exit Criteria, and program maturity commitments Ensure the architecture and design of systems are functional and secure; support the design, development, implementation, and integration of security systems and system components Self-starters compelled to take action in the workplace without requiring prompting from supervisors Support MDT with other duties as assigned In addition to technical skills, you will be a self-starter with strong time management skills. Your organizational skills and ability to anticipate future challenges will serve you well Basic Qualifications Must be a US Citizen with an active DoD Secret Clearance, at time of application, current and within scope, with an investigation date within the last 6 years Must have the ability to obtain and maintain Special Access Program (SAP) approval within a reasonable period of time, as determined by the company to meet its business need Requires a bachelor's degree in a STEM (Science, Technology, Engineering or Mathematics) discipline from an accredited university and 2 years of related experience; or a master's degree with 1 year Minimum 2 years of applying and understanding Systems Security Engineering principles applicable to US Government Defense Programs Minimum 2 years in showing the ability to communicate effectively and clearly present technical approaches and findings Experience in any of the full product life cycles of: ASIC Design, FPGA Design Experience in HDL (VHDL/Verilog), implementing designs using RTL Ability to show self as team player, able to multi-task, able to generate quality work products independently, able to make excellent judgement and show interpersonal skills Preferred Qualifications Degree in Aerospace Engineering, Systems Engineering, Mechanical Engineering, Software Engineering, or similar ICBM Experience Experience developing Systems Security Engineering requirements for hardware and software assurance Evaluating program processes and compliance strategies for large, complex multi-site programs Demonstrated experience and familiarity with vulnerability management Experience with Model-based Systems Engineering (MBSE) concepts and tools A solid understanding of Program Protection applicable to US Government Defense Programs and applied knowledge in the application of SSE principles across a broad spectrum of security measures (Cybersecurity, Counterfeit Awareness, Anti-Tamper, HW/SW Assurance, OPSEC, etc.) to protect critical program information (CPI) Top Secret clearance Position Benefits As a full-time employee of Northrop Grumman, you are eligible for our robust benefits package including: Medical, Dental & Vision coverage 401k Educational Assistance Life Insurance Employee Assistance Programs & Work/Life Solutions Paid Time Off Health & Wellness Resources Employee Discounts ****************************************************************** This position's standard work schedule is a 9/80. The 9/80 schedule allows employees who work a nine-hour day Monday through Thursday to take every other Friday off. This role may offer a competitive relocation assistance package. #Sentinelsystems Primary Level Salary Range: $77,200.00 - $115,800.00The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.Depending on the position, employees may be eligible for overtime, shift differential, and a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is an Equal Opportunity Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO and pay transparency statement, please visit *********************************** U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.

Description & Requirements Maximus is seeking a qualified Sr. Technical/Security Analyst for multiple projects, current and upcoming. The qualified candidate will be involved in technical/security planning and assessment projects with potentially multiple state agencies. The position requires the candidate to produce/review security relevant documentation, such as system security plans, POA&Ms, assessment plans, etc., produce technical/security analyses, develop estimates, review and contribute to requirements for large systems-planning efforts in the Child Support, Child Welfare and/or Integrated Eligibility public-sector domains. The individual will report directly to a Senior Manager. Maximus is a matrix-managed organization, which means the individual will have secondary reporting relationships to one or more Project Managers, depending on which projects they are assigned. *This role is remote but requires working standard business hours in the US time zone of the client. This position is contingent upon award. * Essential Duties and Responsibilities: - Collaborate with project managers on various initiatives and projects to track progress and provide support as necessary. - Support leadership in ensuring that the project is delivered to specifications, is on time, and within budget. - Work closely with management and work groups to create and maintain work plan documents. - Track the status and due dates of projects. - Manage relationships with project staff responsible for projects. - Produce regular weekly and monthly status reports that could include; work plan status, target dates, budget, resource capacity, and other reports as needed. - Facilitate regular meetings and reviews. - Adhere to contract requirements and comply with all corporate policies and procedures. Job Specific Duties and Responsibilities: -Perform duties independently under the direction of their direct manager and/or Project Managers on specific projects. -Review project documentation and client materials and provide analysis of technical and security related topics. -Participate in client meetings and offer observations and insight on technical and security related topics. -Identify risk areas and potential problems that require proactive attention. -Review and author artifacts and other project documents and identify potential gaps, inconsistencies, or other issues that may put the project at risk. Such artifacts and documents may include but are not limited to: *System Security Plan *Plan of Action and Milestones (POA&M) *Security Assessment Plan *Risk Assessment reports *CMS ARC-AMPE forms and documentation *Data Conversion and Migration Management Plan *Deployment and/or roll-out plans -Perform security assessments, lead security audit and assessment activities, and provide direct security oversight support to assigned clients and projects. -Identify and escalate to the Senior Manager / Project Manager risks, alternatives, and potential quality issues. -Attend interviews, focus groups, or other meetings necessary to gather information for project deliverables in accordance with the project scope of work. -Attend project meetings with the client, subcontractors, project stakeholders, or other Maximus Team members, as requested by the Senior Manager / Project Manager. -Complete project work in compliance with Maximus standards and procedures. -Support team to complete assigned responsibilities as outlined in the Project schedule. -Support all other tasks assigned by Senior Manager / Project Manager. Minimum Requirements - Bachelor's degree in related field. - 7-10 years of relevant professional experience required. - Equivalent combination of education and experience considered in lieu of degree. Job Specific Requirements: -Be available to work during standard client business hours. Projects may involve clients from any US time zone, so it is possible that work outside of the individual's local business hours will be required. -Bachelor's degree from an accredited college or university, or equivalent work experience. -7+ years of experience in information security, with at least 3 years of security-compliance work in a regulated industry. -5+ years of experience working with HIPAA, NIST 800-53 and/or CMS MARS-E or ARC-AMPE security frameworks. -Familiar with operating systems: Windows, Linux/UNIX, OS/X. -Familiar with AI tools, capabilities. -Strong command of cloud computing topics. -Strong command of agile software development practices as well as waterfall development practices. -Strong desktop software skills: proficient in MS Office, Excel, Word, Project. -Ability to explain and communicate technical subjects to non-technical audiences. -Ability to develop advanced concepts, techniques, and standards requiring a high level of interpersonal and technical skills. -Ability to work independently. -Good organizational skills and the ability to manage multiple tasks and deadlines simultaneously. -Strong interpersonal and team building skills, as well as an understanding of client relationship building are essential. -Excellent verbal and writing skills and be comfortable working with customers. -Ability to multi-task with supervision. -Self-motivated fast learner. Preferred Skills: -Prefer a candidate with experience in the Health & Human Services industry, which may include working with programs such as Child Support, Child Welfare, or Integrated Eligibility (SNAP, TANF, and Medicaid). -Preference for security related certifications, such as the CISSP (Certified Information Systems Security Professional). EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances. Accommodations Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at **************************. Minimum Salary $ 120,000.00 Maximum Salary $ 140,000.00

Job Title: SAP GRC/Security Consultant Company: Turnkey Consulting Turnkey Consulting is a leading advisory and implementation organization with deep expertise in risk management, governance, and compliance & security. Having the ability to provide end-to-end solutions that integrate technology, process, and people. Our business started within the SAP ecosystem, however expansion into being an agnostic partner, now gives us a wider range of solutions to support our customers, while securing their wider estate. Turnkey Consulting helps businesses optimize their risk management, security and compliance programs, protect against Cyber threats, reduce costs, and improve their operational efficiency. With a team of seasoned risk professionals and a commitment to excellence, we empower businesses to proactively protect their critical assets and stay ahead of evolving threats. Job Summary The candidate will play a key role in handling client engagements, as well as utilizing strong technical experience to find solutions that best fit our clients' needs. We are looking for a team-player and strong all-rounder with at least 2 implementations and 2 years of practical experience in the following areas Detailed understanding of the SAP authorization concept in one or more of the following areas: ECC, SAP S/4 HANA, HCM, CRM, SRM, BW, BI, BPC, SAP HANA Experience of designing, building and implementing SAP security and authorization solutions Exposure to various system user interfaces (UI), including SAP but also other relevant SaaS products Detailed understanding of SAP GRC suite of applications, with a demonstrable specialism in core modules contained within (ideally v12 onward) Experience of IDM solutions, either SAP's IDM solution, or non-SAP, such as SailPoint or Saviynt would be of advantage. Experience of third-party solutions to secure SAP estates also an advantage Experience of SAP Fiori catalogs, groups, pages and spaces Experience of SAP IAG solutions would be an advantage, both IAS and IPS Our experienced consultants are a key driver of our success as one of the most trusted names in the end-to-end security arena and we are committed to delivering to a consistently high standard. Key responsibilities of the role are: Task management of large / complex implementations, especially in Application security or enterprise risk/identity projects Implementation of GRC technology and supporting modules Work with clients to understand "why" they're in need of such solutions, define requirements and configure solutions to best fit those needs Perform controls and configuration reviews involving relevant application systems and processes Advise clients on controls in their enterprise systems relating to regulatory or legislative compliance Review and advise on security redesign and remediation projects Provide a broader range of information risk management solutions to clients as required Build relationships with new clients and maintain good relations with our existing client base Integrate solutions into wider cybersecurity controls estates We are looking ideally for someone with the following attributes: The ability to troubleshoot and diagnose problems / issues and provide prompt, robust resolution An enquiring mind to discover "why" clients need to introduce the controlling measures. The ability to manage projects within varied client engagements and lead reviews and implementations Knowledge of corporate business processes and their control points Good understanding of various IT regulations and standards, including: Sarbanes Oxley, COBIT, ISO series & the GDPR Bachelor's degree Professional certification (e.g. CISA, M.Inst.ISP, CISSP, ISO) SAP certification (Security, GRC) Consulting background Strong written and verbal communication skills Integration experience Ability to act as an SME to install, design, engineer and configure security solutions to meet client needs Ability to effectively manage own time and priorities effectively and to work both as part of a team and individually. Able to communicate technical and functional requirements to both the business and IT Key responsibilities of the role will include: Project manage large / complex SAP Security implementations, especially for S/4 HANA projects Implementation of GRC Access Controls and supporting modules Work with clients to understand requirements and configure solutions to best fit those needs Perform controls and configuration reviews involving SAP systems Advise clients on controls in SAP relating to regulatory or legislative compliance Review and advise on SAP security redesign and remediation projects Provide a broader range of information risk management solutions to clients as required Build relationships with new clients and maintain good relations with our existing client base Integrate solutions into wider cybersecurity controls estates We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class. When we collect your personal information as part of a job application or offer of employment, we do so in accordance with industry standards and best practices and in compliance with applicable privacy laws.

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. Responsibilities NNSS is seeking an experienced cyber security analyst for an exciting Senior Classified Security Engineering Analyst (Senior Cyber Security Analyst) role. The Senior Classified Security Analyst plays a critical role in safeguarding company infrastructure from cyber threats and attacks. The position is responsible for designing, implementing, managing, and enhancing security measures to protect classified and unclassified data, networks, systems, and applications. Key Responsibilities Assist the ISSM (Information Systems Security Manager) and ISSOs (Information System Security Officers) with the execution of their assigned duties. Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegiate manner. Maintain cooperative and respectful working relationships with Cyber Security staff, other divisions, and customers. Conduct Cyber Security policy compliance tasks including: discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. Perform Security Test and Evaluations of information systems in support of a security plan. Review Information System Plans for classified and unclassified systems. Complete certification and accreditation of information systems on classified and unclassified systems and networks, assist with the completion and mitigation of security testing and evaluation results. Collaborate with cross-functional teams to design, deploy, and maintain security controls including firewalls, intrusion detection/prevention systems, endpoint protection, encryption, and multi-factor authentication solutions. Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, certification and accreditation requirements, and industry best practices. Review purchase requests for technology items and provide input to senior level Cyber Security staff regarding the risks associated with the purchases. Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. Qualifications Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. Strong knowledge of network security principles, protocols, and technologies (e.g., TCP/IP, DNS, VPN, SSL/TLS). Have a strong understanding of NIST security standards (National Institute of Standards and Technology), the ability to apply NIST-defined measures to harden information structure and review Cyber Security threat information and assist with mitigating identified vulnerabilities. Hands-on experience with security tools and technologies, such as SAML, OAUTH, SIEM, IDS/IPS, DLP, WAF, EDR, and vulnerability management systems. Familiarity with cloud computing platforms (e.g., AWS, Azure, GCP) from a security perspective. Excellent analytical, problem-solving, and communication skills with the ability to collaborate effectively with diverse teams and stakeholders. Strong commitment to continuous learning, professional development, and staying current with evolving cyber threats and security technologies. Preferred Certifications (please upload current certificates when applying): Certified System Security Professional (CISSP) GIAC Security Essentials (GSEC) GIAC Information Security Professional Certification (GISP) Certified Ethical Hacker (CEH) Certified Information Security Manager (CISM) CompTIA Security Practitioner (CASP+) The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. Work schedule for this position will be 4/10's, Monday - Thursday (subject to change). Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergencies; critical operational demands may occasionally require off-shift work. Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2, “Personnel Security”. If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. Department of Energy Q Clearance (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4, “Workplace Substance Abuse Programs at DOE Sites,” will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709, “Counterintelligence Evaluation Program.” MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: $97,219.20 - $145,828.80. Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Job DescriptionDescription: Who We Are: Veteran Benefits Guide (VBG) was founded by a former United States Marine with the goal of ensuring that Veterans receive accurate disability benefits in a timely manner. Since it was founded, VBG has guided more than 45,000 Veterans through the complicated Veterans Affairs (VA) disability claims process. As a company founded by a Veteran and staffed by many Veterans and families of Veterans, VBG is committed to advocating for policies that protect the rights and interests of former service members. What we are looking for: The Senior Cyber Security Analyst is responsible for leading technical security monitoring, detection, and incident response investigations to protect the organization's systems and data. This role performs deep analysis of security alerts, logs, and forensic artifacts, coordinates containment and remediation activities, and continuously improves detection and response capabilities across the environment. This position is open to candidates located in the following states: Arizona (AZ), California (CA), Washington (WA), Nevada (NV), Utah (UT), Illinois (IL), Ohio (OH), New Jersey (NJ), Virginia (VA), North Carolina (NC), and Florida (FL). Essential Functions: Reasonable accommodation may be provided to enable individuals with disabilities to perform essential functions. Lead security incident response investigations, including detection, triage, containment, eradication, recovery, and post-incident analysis Perform deep technical investigations across endpoints, networks, identity systems, and cloud environments to determine root cause, scope, and impact Continuously monitor security alerts and telemetry, validating and escalating threats using SIEM, EDR, and other detection tools Develop and maintain incident documentation, including timelines, evidence, lessons learned, and executive-level incident reports Coordinate incident response activities with IT, infrastructure, product, legal, and compliance teams to ensure timely and effective remediation Analyze security events and threat intelligence to identify attack patterns, trends, and control gaps, driving improvements to detection and response capabilities Support and enhance incident response playbooks, procedures, and escalation workflows, ensuring repeatable and effective response Conduct proactive threat hunting and log analysis to identify suspicious activity and emerging threats Maintain and tune security monitoring and detection tools, including SIEM, intrusion detection/prevention systems, endpoint protection, and antivirus platforms Partner with engineering and IT teams to remediate vulnerabilities and control weaknesses identified through incidents, assessments, and scans Participate in security assessments, vulnerability scanning, and penetration testing, prioritizing findings based on risk and real-world exploitability Support regulatory and compliance requirements (e.g., HIPAA, GDPR, ISO 27001) by providing incident evidence, investigation summaries, and audit support Stay current on emerging threats, attacker techniques, and vulnerabilities through threat intelligence sources and industry research Communicate investigation findings, risk implications, and remediation recommendations clearly to technical and non-technical stakeholders Qualifications or competencies: CompTIA & GIAC certifications, such as Security+, CySA+, GCIH, GCED, GCIA, or GCFA, are preferred Hands-on experience with security incident detection, triage, and investigation, including root cause and impact analysis Proficiency with SIEM, EDR, IDS/IPS, and endpoint security tools used in incident response operations Experience analyzing logs, alerts, and forensic artifacts across endpoints, networks, and cloud environments Strong understanding of cyber threats, attacker techniques, and defensive security principles Strong working knowledge of risk management frameworks (NIST, ISO, and CIS) and regulatory requirements for HIPAA compliance Strong analytical, documentation, and communication skills, with the ability to clearly convey findings and recommendations Education and previous work experience: 6+ years of experience in a security operations or incident response role within an enterprise environment Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or related field (equivalent industry experience accepted) EEO: Veteran Benefits Guide provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, national origin, ancestry, physical disability, mental disability, medical condition, marital status, sex (including pregnancy, childbirth, breastfeeding or related medical conditions), gender (including gender identity and gender expression) genetic characteristic, sexual orientation, registered domestic partner status, age, military or veteran status, hairstyle or hair texture, reproductive health decision making, or any other characteristic protected by federal, state, or local laws. Requirements:

Mission Support and Test Services, LLC (MSTS) manages and operates the Nevada National Security Site (NNSS) for the U.S. National Nuclear Security Administration (NNSA). Our MISSION is to help ensure the security of the United States and its allies by providing high-hazard experimentation and incident response capabilities through operations, engineering, education, field, and integration services and by acting as environmental stewards to the Site's Cold War legacy. Our VISION is to be the user site of choice for large-scale, high-hazard, national security experimentation, with premier facilities and capabilities below ground, on the ground, and in the air. (See NNSS.gov for our unique capabilities.) Our 2,750+ professional, craft, and support employees are called upon to innovate, collaborate, and deliver on some of the more difficult nuclear security challenges facing the world today. + MSTS offers our full-time employees highly competitive salaries and benefits packages including medical, dental, and vision; both a pension and a 401k; paid time off and 96 hours of paid holidays; relocation (if located more than 75 miles from work location); tuition assistance and reimbursement; and more. + MSTS is a limited liability company consisting of Honeywell International Inc. (Honeywell), Jacobs Engineering Group Inc. (Jacobs), and HII Nuclear Inc. **Responsiblities** NNSS is seeking an experienced cyber security analyst for an exciting Senior Classified Security Engineering Analyst (Senior Cyber Security Analyst) role. The Senior Classified Security Analyst plays a critical role in safeguarding company infrastructure from cyber threats and attacks. The position is responsible for designing, implementing, managing, and enhancing security measures to protect classified and unclassified data, networks, systems, and applications. **Key Responsibilities** + Assist the ISSM (Information Systems Security Manager) and ISSOs (Information System Security Officers) with the execution of their assigned duties. + Contribute to an overall productive and respectful work environment by providing excellent customer service and working in a positive, collegiate manner. + Maintain cooperative and respectful working relationships with Cyber Security staff, other divisions, and customers. + Conduct Cyber Security policy compliance tasks including: discovering unauthorized devices, conducting site surveys for non-compliance, and ensuring network access requirements are met. + Perform Security Test and Evaluations of information systems in support of a security plan. + Review Information System Plans for classified and unclassified systems. + Complete certification and accreditation of information systems on classified and unclassified systems and networks, assist with the completion and mitigation of security testing and evaluation results. + Collaborate with cross-functional teams to design, deploy, and maintain security controls including firewalls, intrusion detection/prevention systems, endpoint protection, encryption, and multi-factor authentication solutions. + Design networks and systems with a security focus, ensuring systems are developed in accordance with federal law, customer requirements, certification and accreditation requirements, and industry best practices. + Review purchase requests for technology items and provide input to senior level Cyber Security staff regarding the risks associated with the purchases. + Assist with data calls, FISMA reporting, compliance scanning and reporting, continuous monitoring and compiling reports for auditors. **Qualifications** + Bachelor's degree or equivalent training and experience in a computer-related field and at least 5 years of related experience. + Strong knowledge of network security principles, protocols, and technologies (e.g., TCP/IP, DNS, VPN, SSL/TLS). + Have a strong understanding of NIST security standards (National Institute of Standards and Technology), the ability to apply NIST-defined measures to harden information structure and review Cyber Security threat information and assist with mitigating identified vulnerabilities. + Hands-on experience with security tools and technologies, such as SAML, OAUTH, SIEM, IDS/IPS, DLP, WAF, EDR, and vulnerability management systems. + Familiarity with cloud computing platforms (e.g., AWS, Azure, GCP) from a security perspective. + Excellent analytical, problem-solving, and communication skills with the ability to collaborate effectively with diverse teams and stakeholders. + Strong commitment to continuous learning, professional development, and staying current with evolving cyber threats and security technologies. + Preferred Certifications (please upload current certificates when applying): + Certified System Security Professional (CISSP) + GIAC Security Essentials (GSEC) + GIAC Information Security Professional Certification (GISP) + Certified Ethical Hacker (CEH) + Certified Information Security Manager (CISM) + CompTIA Security Practitioner (CASP+) + The primary work location will be at the Losee Road facility located in North Las Vegas, Nevada. + Work schedule for this position will be 4/10's, Monday - Thursday (subject to change). + Personnel may be requested by leadership to work in excess of 40 hours per week due to projects, activities, and emergencies; critical operational demands may occasionally require off-shift work. + Pre-placement physical examination, which includes a drug screen, is required. MSTS maintains a substance abuse policy that includes random drug testing. + Must possess a valid driver's license. MSTS is required by DOE directive to conduct a pre-employment drug test and background review that includes checks of personal references, credit, law enforcement records, and employment/education verifications. Applicants offered employment with MSTS are also subject to a federal background investigation to meet the requirements for access to classified information or matter if the duties of the position require a DOE security clearance. Substance abuse or illegal drug use, falsification of information, criminal activity, serious misconduct or other indicators of untrustworthiness can cause a clearance to be denied or terminated by DOE, resulting in the inability to perform the duties assigned and subsequent termination of employment. In addition, Applicants for employment must be able to obtain and maintain a DOE Q-level security clearance, which requires U.S. citizenship, at least 18 years of age. Reference DOE Order 472.2 (**************************************************************************************** , "Personnel Security". If you hold more than one citizenship (i.e., of the U.S. and another country), your ability to obtain a security clearance may be impacted. **Department of Energy Q Clearance** (position will be cleared to this level). Reviews and tests for the absence of any illegal drug as defined in 10 CFR Part 707.4 (*************************************************************************************************************** , "Workplace Substance Abuse Programs at DOE Sites," will be conducted. Applicant selected will be subject to a Federal background investigation, required to participate in subsequent reinvestigations, and must meet the eligibility requirements for access to classified matter. Successful completion of a counterintelligence evaluation, which may include a counterintelligence-scope polygraph examination, may also be required. Reference 10 CFR Part 709 (************************************************************************************ , "Counterintelligence Evaluation Program." MSTS is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability, veteran status or other characteristics protected by law. MSTS is a background screening, drug-free workplace. Annual salary range for this position is: **$97,219.20 - $145,828.80.** Starting salary is determined based on the position market value, the individual candidate education and experience and internal equity.

Who We Are: Veteran Benefits Guide (VBG) was founded by a former United States Marine with the goal of ensuring that Veterans receive accurate disability benefits in a timely manner. Since it was founded, VBG has guided more than 45,000 Veterans through the complicated Veterans Affairs (VA) disability claims process. As a company founded by a Veteran and staffed by many Veterans and families of Veterans, VBG is committed to advocating for policies that protect the rights and interests of former service members. What we are looking for: The Senior Cyber Security Analyst is responsible for leading technical security monitoring, detection, and incident response investigations to protect the organization's systems and data. This role performs deep analysis of security alerts, logs, and forensic artifacts, coordinates containment and remediation activities, and continuously improves detection and response capabilities across the environment. This position is open to candidates located in the following states: Arizona (AZ), California (CA), Washington (WA), Nevada (NV), Utah (UT), Illinois (IL), Ohio (OH), New Jersey (NJ), Virginia (VA), North Carolina (NC), and Florida (FL). Essential Functions: Reasonable accommodation may be provided to enable individuals with disabilities to perform essential functions. Lead security incident response investigations, including detection, triage, containment, eradication, recovery, and post-incident analysis Perform deep technical investigations across endpoints, networks, identity systems, and cloud environments to determine root cause, scope, and impact Continuously monitor security alerts and telemetry, validating and escalating threats using SIEM, EDR, and other detection tools Develop and maintain incident documentation, including timelines, evidence, lessons learned, and executive-level incident reports Coordinate incident response activities with IT, infrastructure, product, legal, and compliance teams to ensure timely and effective remediation Analyze security events and threat intelligence to identify attack patterns, trends, and control gaps, driving improvements to detection and response capabilities Support and enhance incident response playbooks, procedures, and escalation workflows, ensuring repeatable and effective response Conduct proactive threat hunting and log analysis to identify suspicious activity and emerging threats Maintain and tune security monitoring and detection tools, including SIEM, intrusion detection/prevention systems, endpoint protection, and antivirus platforms Partner with engineering and IT teams to remediate vulnerabilities and control weaknesses identified through incidents, assessments, and scans Participate in security assessments, vulnerability scanning, and penetration testing, prioritizing findings based on risk and real-world exploitability Support regulatory and compliance requirements (e.g., HIPAA, GDPR, ISO 27001) by providing incident evidence, investigation summaries, and audit support Stay current on emerging threats, attacker techniques, and vulnerabilities through threat intelligence sources and industry research Communicate investigation findings, risk implications, and remediation recommendations clearly to technical and non-technical stakeholders Qualifications or competencies: CompTIA & GIAC certifications, such as Security+, CySA+, GCIH, GCED, GCIA, or GCFA, are preferred Hands-on experience with security incident detection, triage, and investigation, including root cause and impact analysis Proficiency with SIEM, EDR, IDS/IPS, and endpoint security tools used in incident response operations Experience analyzing logs, alerts, and forensic artifacts across endpoints, networks, and cloud environments Strong understanding of cyber threats, attacker techniques, and defensive security principles Strong working knowledge of risk management frameworks (NIST, ISO, and CIS) and regulatory requirements for HIPAA compliance Strong analytical, documentation, and communication skills, with the ability to clearly convey findings and recommendations Education and previous work experience: 6+ years of experience in a security operations or incident response role within an enterprise environment Bachelor's Degree in Computer Science, Cybersecurity, Information Technology, or related field (equivalent industry experience accepted) EEO: Veteran Benefits Guide provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, national origin, ancestry, physical disability, mental disability, medical condition, marital status, sex (including pregnancy, childbirth, breastfeeding or related medical conditions), gender (including gender identity and gender expression) genetic characteristic, sexual orientation, registered domestic partner status, age, military or veteran status, hairstyle or hair texture, reproductive health decision making, or any other characteristic protected by federal, state, or local laws. Salary Description $116,700.00

Lightspeed is a leading provider of cloud-based software for dealerships and Original Equipment Manufacturers (OEMs), serving the Powersport, Marine, RV, Trailer, Outdoor Power Equipment, and Golf Cart industries. Lightspeed's Dealer Management Solution (DMS) enables dealerships to optimize their end-to-end business operations, including sales, parts, service, rentals, accounting, and Customer Relationship Management (CRM). When implemented into their daily operations, Lightspeed helps dealers increase their profitability by selling more units, service, and parts, all while creating a more streamlined experience for customers. For nearly 40 years, Lightspeed has been empowering 4,500+ dealers across North America with the tools and technology they need to manage their dealerships. The Senior Security Analyst is responsible for team lead activities, such as monitoring, analyzing, and responding to security incidents across enterprise systems, cloud environments, and networks. This role ensures the confidentiality, integrity, and availability of organizational information through proactive detection, incident response, and continuous improvement. The ideal candidate will have a strong technical background in leading threat analysis, SIEM integration and management, vulnerability management, and incident handling. What you'll do: Monitor and investigate security alerts and events across SIEM, EDR, and network systems. Conduct root cause analysis and coordinate remediation of security incidents. Lead vulnerability assessments and ensure timely patching and mitigation. Develop and maintain incident response playbooks and escalation procedures. Collaborate with IT, DevOps, and Development teams to strengthen overall security posture. Lead proactive threat hunting and continuous tuning of detection mechanisms. Support internal and external audits (e.g., SOC 2) and risk assessments by providing evidence and guidance. Perform firewall management, including rule changes, troubleshooting, and SOP development for hybrid cloud/on-prem environments. Lead to red/blue team exercises and implement findings to improve defenses. Coordinate and assist with enterprise pen-tests, risk assessments, and compliance initiatives. Serve as a lead security advisor to business and technical teams, providing guidance on secure design, risk mitigation, and compliance using industry frameworks and best practices. What you should have: Qualifications: Bachelor's degree in Cybersecurity, Information Technology, or a related field, or equivalent experience. 8+ years of experience in information security, incident response, or SOC operations. Proven hands-on experience with SIEM tools (Splunk, Sentinel, QRadar, etc.) and EDR/XDR platforms (CrowdStrike, Darktrace, Microsoft Defender). Strong experience securing and monitoring cloud environments (AWS, Azure). Deep knowledge of security frameworks (NIST CSF, ISO 27001, SOC 2). Advanced scripting and automation proficiency (Python, PowerShell, Terraform). Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: Relevant certifications such as AWS Security, CISSP, GCIH, GCIA, GPEN, GWAPT preferred. Experience integrating AI and automation into security operations workflows. Hands-on experience performing dynamic application security testing and red team exercises across endpoint and cloud environments. Expert-level networking and firewall expertise with platforms such as Palo Alto, Cisco, or Checkpoint. Master's degree in Cybersecurity, Information Technology, or a related field. Inclusion and Diversity at Lightspeed: At Lightspeed, we celebrate the uniqueness of every individual and encourage diverse perspectives. We believe that inclusion drives innovation and fosters meaningful connections. We are committed to building an environment where everyone feels valued and empowered to make an impact. Equal Employment Opportunity Statement: Lightspeed is an Equal Opportunity Employer and is dedicated to building a diverse and inclusive workforce. All qualified applicants will be considered for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, religion, age, disability, veteran status, or any other protected category. Important Note: Applicants must be authorized to work in the U.S. Ready to apply? Take the next step in your career-apply today and join a team where your skills will make an impact!

Job Description L2 Security Analyst Full-Time, Exempt We are looking for a Senior Security Analyst (L2) to join the Lumifi Cyber SOC team. Senior Security Analysts are expected to handle customer facing investigations, mentoring, and training of fellow analysts, and to participate in interaction with customers and other teams through email or phone. This position is located on-site at our SOC in Scottsdale, AZ. Primary Duties Triage alerts and determine if further investigation or action is required by the customer Assist customers with the investigation and response of incidents throughout the incident response process Perform investigations of customer requests and be able to provide further contextual information along with recommended actions Proactively threat hunt using network and host data within customer environments Mentor junior analysts Required Qualifications Ability to analyze packet captures/data and logs to perform incident response and identify potential compromises to customer networks Possesses a solid understanding of the TCP/IP protocol suite, security architecture, and common TTP's (tactics, techniques, and procedures) used by threat actors Experience analyzing both log and packet data in a SIEM (RSA NetWitness, Azure Sentinel, Splunk, etc.) Strong understanding of incident response methodologies and reporting Experience using ticketing systems for tracking (JIRA, Remedy, ServiceNow, etc.) Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers Preferred Qualifications Minimum of 3+ years of experience performing triage/incident response in enterprise environments Minimum of 3+ years of experience performing forensic analysis of logs and packet captures to identify malicious artifacts Higher level security certifications (CEH, GCIH, GCFA, GCFE, GCTI, GCIA, GREM, GPEN, GFNA, OCSP) Strong research background and an analytical approach, especially with respect to event classification, event correlation, and root cause analysis A mentoring/leadership background including mentoring other analysts and orchestrating team efforts for problem solving Ability to manage projects to completion both individually and in a group Benefits Include: Health Insurance 80% paid by employer Dental Insurance 80% paid by employer Vision Insurance 80% paid by employer Self- Managed vacation leave Paid sick leave Paid holiday leave All candidates must be eligible to work in the U.S. for any employer. We are an E-Verify employer. Lumifi welcomes and encourages diversity in our workplace. All qualified applicants will receive consideration for employment without regard to race color, religion, sex, sexual orientation, gender identity, national origin or disability. Powered by JazzHR 6oXedfgOJk

About Optima Optima is a design-driven real estate development firm rooted in the modernist tradition with offices in Illinois and Arizona. For more than 40 years, we have been developing, designing, building and managing striking urban and suburban luxury residential communities. From the beginning, we aimed to reinvent housing by integrating the functions involved in new construction within one company. We control and execute every aspect of the process in-house development, architecture, construction, sales and management for a dynamic system that offers greater focus and fluidity. We are committed to delivering extraordinary living through design, innovation, sustainability and management. What You'll Do You will collaborate with Architect, Engineering, and Construction teams to support the multifamily residential real estate development life cycle.You will coordinate guidance and input from our ownership and consultants regarding architectural design and incorporate input into Revit models.Work with Architecture team to build Revit models and Revit-based construction documents.Create and modify many different document types throughout the entire cycle of a project including Schematic Drawings, Construction Documents, Presentation drawings, Contractor coordination drawings, Marketing drawings and Construction Sketches. Assist and have opportunities to lead elements of coordination between Architects, Engineers, Consultants, Subcontractors and construction team.Participate or lead systems coordination meetings to review subcontractors 3D building models using BIM 360 or Navisworks.Review Subcontractors submittals/ shop drawings to meet contract requirements and construction schedules.Visit the construction site as needed to observe the overall progress and participate in quality control process. Revit sheet creation, maintain project drawing files and archives and own printing and exporting CAD designs for consultants. You will manage incorporating consultant Revit and CAD files to Optima models, manage Revit and CAD redlines to expedite project delivery. Support the Architecture Teams work in Procore submittal management, posting drawings and other responsibilities such as contact management, posting and receiving CAD and Revit files. What You'll Need At least 5-10 years of relevant architectural experience. Bachelors Degree in Architecture. High level Revit skills to be proficient at:Creation and editing many document types (CDs, SDs, Presentation, Marketing).Modifying or creating details within Architectural CD set.Revit Schedule creation and management. Create and modify content/families. Experience with Bluebeam or other PDF review/editing software.Experience using project management software such as Procore.Experience with MS Office Software including Excel and WordExperience in Adobe suite including Photoshop, In-design, Illustrator.Experience with MEP-FP systems and BIM coordination software such as Navisworks.Excellent written and verbal communication skills. Organized, self-reliant and hard-working and the ability to multi-task.Reliable, responsive and positive work ethic with the highest degree of integrity. What Will Set You Apart: Architecture license. Masters Degree in Architecture. Working knowledge of building codes and accessibility standards, as well as design techniques, tools and principles pertaining to technical plans, blueprints, drawings and models.Able to interpret and apply complex documents affecting real estate projects, including Entitlement documents, traffic studies, subcontractor agreements, leases, due diligence materials, title reports, ALTA surveys, and architectural drawings. Capable of reading, analyzing and interpreting technical procedures, government regulations and building codes.Experience on high-rise, multifamily, developer-led projects. Experience with design-build, IgCC or LEED projects.Experience in construction and/or construction observation/supervision and familiar with construction means, methods, and techniques. Benefits and Perks Annual Salary: $80,000 - $100,000Competitive benefits and great perks make a huge difference; we get that, so youll get them too. Team Members receive a competitive 401k match, paid parental leave, paid time off, and a 100% company paid medical plan option. At Optima, we believe benefits should be meaningful and a part of what makes us great! Come as you are! At Optima we celebrate diversity and are committed to creating an inclusive environment for all team members. Optima evaluates qualified applicants without regard to race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status or other legally protected characteristics Optima does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job postings. No fee will be paid to third parties who submit unsolicited candidates directly to Optima team members or the Optima people experience team. No placement fees will be paid to any 3rd party unless such a request has been made by the Optima people experience team. Powered by JazzHR PI11b8c4a5b6de-31181-39330862

Discover your exciting role The Security Systems Engineer designs and implements security solutions to protect facilities, identifies vulnerabilities, and develops strategies to prevent unauthorized access, ensuring effective risk mitigation and compliance with security standards. Explore your tasks and responsibilities * Design and implement integrated security systems tailored for advanced technology and cleanroom environments. * Identify and assess vulnerabilities specific to sensitive facility operations and controlled environments. * Conduct comprehensive threat, risk, and vulnerability assessments for high-value assets and critical infrastructure. * Specify and deploy appropriate security devices and controls that do not compromise cleanroom protocols. * Consult with stakeholders on security requirements, best practices, and regulatory compliance. * Develop strategies to prevent unauthorized access while maintaining operational continuity. * Ensure all security solutions meet industry standards, facility-specific guidelines, and cleanroom requirements. * Collaborate with internal teams, external vendors, and facility managers to deliver effective technical solutions. * Support both large-scale and small-scale security projects, from design through commissioning and validation. * Prepare and maintain detailed documentation for security system designs, installations, and compliance audits. * Other duties as assigned Show your expertise Minimum Required * Bachelor's degree in Engineering or a related field. * 2-5 years of experience as a Security Systems Engineer or in a similar role, preferably in advanced technology or cleanroom facilities. Preferred * Relevant certifications (e.g., CISSP, PSP, or similar) are highly desirable. * Prior experience as a consulting engineer preferred * Prior experience with Advanced Technology * Experience working within a team environment * Experience in the quality control review process * Experience contributing to continuous improvement processes Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time. Non-Solicitation: We are not currently accepting third-party agency candidates for this position. Any agency candidate submitted to any employee of Exyte may be contacted by Exyte without obligation to the third-party agency. Exyte US, Inc. is proud to be an Affirmative Action and Equal Employment Opportunity employer that is committed to celebrating diversity and supporting an inclusive workplace where associates excel based on personal merit, qualifications, experience, ability, and job performance. We prohibit discrimination and harassment of any kind based on race, color, religion, age, sex (e.g., pregnancy, childbirth and related medical conditions, sexual orientation, gender identity or expression), national origin, disability status, genetic information, protected veteran status, or any other protected characteristic as outlined by federal, state, or local laws. Contact: You want to be part of the Exyte team? We look forward to receiving your application! For further questions and information, please do not hesitate to contact Phillip Turner via E-Mail at ************************ Please note that we only consider applications submitted through our application portal. Applications sent via email will not be considered due to data protection regulations.

Candidates can live within commutable distance to any Slalom office in the US. We have a hybrid and flexible environment. Who You'll Work With As a modern technology company, we've never met a technical challenge we didn't like. We enable our clients to learn from their data, create incredible digital experiences, and make the most of new technologies. We blend design, engineering, and analytics expertise to build the future. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are seeking an experienced AWS Security Architect with deep expertise in AWS cloud architecture, native & external security services, and regulatory compliance to provide advisory and delivery services aligned with the standards of a top-tier consulting firm. This role will partner with enterprise clients to design, assess, and implement secure AWS environments that meet business, compliance, and regulatory requirements. This role requires a strong blend of hands-on technical capabilities, architectural leadership, and client-facing advisory skills. As a trusted advisor, you will lead security strategy sessions, assess current cloud security postures, and deliver AWS-native and third-party solutions that align with best practices. You will work across multiple industry verticals, collaborating with engineering, security, risk, and compliance teams, and guiding clients through security transformation journeys and ensuring AWS adoption is secure, compliant, and resilient. This is a strategic technical consulting role suited for individuals who are passionate about cloud security, compliance, and helping clients adopt secure architectures in regulated environments. Key Responsibilities * Serve as a client-facing advisor, providing strategic guidance on cloud security transformation, governance, and operating models. * Lead cloud security assessments, maturity evaluations, and gap analyses, producing recommendations aligned with regulatory frameworks (e.g., NIST, ISO 27001, CIS, PCI DSS, HIPAA). * Design and implement AWS-native security architectures leveraging IAM, KMS, CloudTrail, Security Hub, GuardDuty, Macie, Detective, and Control Tower. * Establish governance, risk, and compliance (GRC) frameworks for AWS adoption, including policy-as-code and automated compliance monitoring. * Define and implement identity and access management (IAM) strategies, including federation, least privilege, and Zero Trust principles. * Guide clients in adopting secure application and data architectures, including encryption, data loss prevention, and secure API integrations. * Support incident response and forensics readiness through AWS-native logging, monitoring, and detection services. * Collaborate with DevOps and platform teams to integrate security into DevOps pipelines (DevSecOps) with automation for vulnerability management, code scanning, and compliance validation. * Collaborate with client executives to articulate cloud security roadmaps, business cases, and investment priorities. * Partner with internal teams to develop accelerators, templates, and reusable security patterns that improve time-to-value for clients. * Author client deliverables such as risk assessments, security architecture design documents, gap analyses, and roadmap plans. * Provide thought leadership via security workshops, executive briefings, and architecture reviews. * Stay current with AWS service releases, regulatory changes, and emerging cyber risks to inform recommendations. Core Qualifications * 8+ years of IT security experience with at least 4+ years focused on AWS security. * Proven consulting experience delivering security assessments, compliance programs, and cloud security roadmaps for enterprise clients. * Strong expertise in AWS security services (i.e. IAM, KMS, CloudTrail, GuardDuty, Macie, Security Hub, Detective, WAF, Shield). * Deep knowledge of cloud governance, risk management, and regulatory compliance frameworks (NIST, ISO, CIS Benchmarks, SOC 2, HIPAA, PCI DSS) and experience designing or assessing AWS environments aligned with these frameworks. * Hands-on experience embedding security into DevOps/DevSecOps pipelines and Infrastructure-as-Code (Terraform, CloudFormation, AWS CDK). * Experience designing ransomware detection, response, and business resilience strategies in AWS including backup, recovery, and isolation patterns. About Us Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. From strategy through delivery, our agile teams across 52 offices in 12 countries collaborate with clients to bring powerful customer experiences, innovative ways of working, and new products and services to life. We are trusted by leaders across the Global 1000, many successful enterprise and mid-market companies, and 500+ public sector organizations to improve operations, drive growth, and create value. At Slalom, we believe that together, we can move faster, dream bigger, and build better tomorrows for all. Compensation and Benefits Slalom prides itself on helping team members thrive in their work and life. As a result, Slalom is proud to invest in benefits that include meaningful time off and paid holidays, parental leave, 401(k) with a match, a range of choices for highly subsidized health, dental, & vision coverage, adoption and fertility assistance, and short/long-term disability. We also offer yearly $350 reimbursement account for any well-being-related expenses, as well as discounted home, auto, and pet insurance. Slalom is committed to fair and equitable compensation practices. For this position, the target base salary pay range in the following locations: Boston, Houston, Los Angeles, Orange County, Seattle, San Diego, Washington DC, New York, New Jersey, for Consultant level is $119,000-$147,500 and for Senior Consultant level it is $136,500-$169,500 and for Principal level it is $151,000-$187,500. In all other markets, the target base salary pay range for Senior Consultant level it is $125,000-$155,500 and for Principal level it is $138,500-$172,000. In addition, individuals may be eligible for an annual discretionary bonus. Actual compensation will depend upon an individual's skills, experience, qualifications, location, and other relevant factors. The salary pay range is subject to change and may be modified at any time. We will accept applications until 3/31/2026 or until the positions are filled. We are committed to pay transparency and compliance with applicable laws. If you have questions or concerns about the pay range or other compensation information in this posting, please contact us at: ********************. EEO and Accommodations Slalom is an equal opportunity employer and is committed to attracting, developing and retaining highly qualified talent who empower our innovative teams through unique perspectives and experiences. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veterans' status, or any other characteristic protected by federal, state, or local laws. Slalom will also consider qualified applications with criminal histories, consistent with legal requirements. Slalom welcomes and encourages applications from individuals with disabilities. Reasonable accommodations are available for candidates during all aspects of the selection process. Please advise the talent acquisition team or contact ****************************** if you require accommodations during the interview process.

Job Description Lightspeed is a leading provider of cloud-based software for dealerships and Original Equipment Manufacturers (OEMs), serving the Powersport, Marine, RV, Trailer, Outdoor Power Equipment, and Golf Cart industries. Lightspeed's Dealer Management Solution (DMS) enables dealerships to optimize their end-to-end business operations, including sales, parts, service, rentals, accounting, and Customer Relationship Management (CRM). When implemented into their daily operations, Lightspeed helps dealers increase their profitability by selling more units, service, and parts, all while creating a more streamlined experience for customers. For nearly 40 years, Lightspeed has been empowering 4,500+ dealers across North America with the tools and technology they need to manage their dealerships. The Senior Security Analyst is responsible for team lead activities, such as monitoring, analyzing, and responding to security incidents across enterprise systems, cloud environments, and networks. This role ensures the confidentiality, integrity, and availability of organizational information through proactive detection, incident response, and continuous improvement. The ideal candidate will have a strong technical background in leading threat analysis, SIEM integration and management, vulnerability management, and incident handling. What you'll do: Monitor and investigate security alerts and events across SIEM, EDR, and network systems. Conduct root cause analysis and coordinate remediation of security incidents. Lead vulnerability assessments and ensure timely patching and mitigation. Develop and maintain incident response playbooks and escalation procedures. Collaborate with IT, DevOps, and Development teams to strengthen overall security posture. Lead proactive threat hunting and continuous tuning of detection mechanisms. Support internal and external audits (e.g., SOC 2) and risk assessments by providing evidence and guidance. Perform firewall management, including rule changes, troubleshooting, and SOP development for hybrid cloud/on-prem environments. Lead to red/blue team exercises and implement findings to improve defenses. Coordinate and assist with enterprise pen-tests, risk assessments, and compliance initiatives. Serve as a lead security advisor to business and technical teams, providing guidance on secure design, risk mitigation, and compliance using industry frameworks and best practices. What you should have: Qualifications: Bachelor's degree in Cybersecurity, Information Technology, or a related field, or equivalent experience. 8+ years of experience in information security, incident response, or SOC operations. Proven hands-on experience with SIEM tools (Splunk, Sentinel, QRadar, etc.) and EDR/XDR platforms (CrowdStrike, Darktrace, Microsoft Defender). Strong experience securing and monitoring cloud environments (AWS, Azure). Deep knowledge of security frameworks (NIST CSF, ISO 27001, SOC 2). Advanced scripting and automation proficiency (Python, PowerShell, Terraform). Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: Relevant certifications such as AWS Security, CISSP, GCIH, GCIA, GPEN, GWAPT preferred. Experience integrating AI and automation into security operations workflows. Hands-on experience performing dynamic application security testing and red team exercises across endpoint and cloud environments. Expert-level networking and firewall expertise with platforms such as Palo Alto, Cisco, or Checkpoint. Master's degree in Cybersecurity, Information Technology, or a related field. Inclusion and Diversity at Lightspeed: At Lightspeed, we celebrate the uniqueness of every individual and encourage diverse perspectives. We believe that inclusion drives innovation and fosters meaningful connections. We are committed to building an environment where everyone feels valued and empowered to make an impact. Equal Employment Opportunity Statement: Lightspeed is an Equal Opportunity Employer and is dedicated to building a diverse and inclusive workforce. All qualified applicants will be considered for employment without regard to race, color, creed, ancestry, national origin, gender, sexual orientation, gender identity, gender expression, marital status, religion, age, disability, veteran status, or any other protected category. Important Note: Applicants must be authorized to work in the U.S. Ready to apply? Take the next step in your career-apply today and join a team where your skills will make an impact!

L2 Security Analyst Full-Time, Exempt We are looking for a Senior Security Analyst (L2) to join the Lumifi Cyber SOC team. Senior Security Analysts are expected to handle customer facing investigations, mentoring, and training of fellow analysts, and to participate in interaction with customers and other teams through email or phone. This position is located on-site at our SOC in Scottsdale, AZ. Primary Duties Triage alerts and determine if further investigation or action is required by the customer Assist customers with the investigation and response of incidents throughout the incident response process Perform investigations of customer requests and be able to provide further contextual information along with recommended actions Proactively threat hunt using network and host data within customer environments Mentor junior analysts Required Qualifications Ability to analyze packet captures/data and logs to perform incident response and identify potential compromises to customer networks Possesses a solid understanding of the TCP/IP protocol suite, security architecture, and common TTP's (tactics, techniques, and procedures) used by threat actors Experience analyzing both log and packet data in a SIEM (RSA NetWitness, Azure Sentinel, Splunk, etc.) Strong understanding of incident response methodologies and reporting Experience using ticketing systems for tracking (JIRA, Remedy, ServiceNow, etc.) Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, and interact with customers Preferred Qualifications Minimum of 3+ years of experience performing triage/incident response in enterprise environments Minimum of 3+ years of experience performing forensic analysis of logs and packet captures to identify malicious artifacts Higher level security certifications (CEH, GCIH, GCFA, GCFE, GCTI, GCIA, GREM, GPEN, GFNA, OCSP) Strong research background and an analytical approach, especially with respect to event classification, event correlation, and root cause analysis A mentoring/leadership background including mentoring other analysts and orchestrating team efforts for problem solving Ability to manage projects to completion both individually and in a group Benefits Include: Health Insurance 80% paid by employer Dental Insurance 80% paid by employer Vision Insurance 80% paid by employer Self- Managed vacation leave Paid sick leave Paid holiday leave All candidates must be eligible to work in the U.S. for any employer. We are an E-Verify employer. Lumifi welcomes and encourages diversity in our workplace. All qualified applicants will receive consideration for employment without regard to race color, religion, sex, sexual orientation, gender identity, national origin or disability.