Security architect jobs in San Marcos, CA

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cloud Cyber Services team and become a member of the largest group of cybersecurity professionals worldwide. Recruiting for this role ends on 12/31/2025 Work you'll do Deloitte has an opening for a Cloud Security Architect (Manager) The cloud security architect plays an integral role in defining and assessing the client organization's cloud security strategy, architecture and practices. This individual's primary function is to provide cloud security planning, deployment and review expertise to project teams and client organizations in the Cyber space. Responsibilities include: + Lead the overall delivery of Cloud Cyber Risk projects in a project manager and or architect role, overseeing the activities of onsite and offshore engineers and architects across 8 key cyber domains: Governance, Identity, Application Security, PaaS security, Infrastructure security, Security Monitoring, Resilience and Data protection + Assist in business development activities such as defining scope of services, building resource estimates and related pricing, packaging proposals and supporting the delivery of the proposal to the client for AWS, GCP, Azure and/or Oracle Cloud services + Function as the primary client day to day interface building rapport and trust with the client + Function as an expert in CNAPP, CWPP and CSPM technologies and security risk frameworks relevant to cloud as well as the industry leading benchmarks + Review and oversee the generation of all project deliverables such as assessment reports, system designs/ architectures and risk/security recommendations + Maintain strong domain knowledge of multi-hyperscaler cloud solutions and security concepts and technologies + Assist clients with security frameworks, cloud configuration standards and resolving cloud vulnerabilities + Lead the execution of cloud security engagements during different phases of the lifecycle - assess, design, and implementation. + Lead engagements to perform technical health checks for cloud platforms/environments prior to broader deployments. + Oversee technical support for AWS, GCP, Azure and/or Oracle cyber services and resolve service-related issues through research and troubleshooting and working with vendors. + Conduct cloud security analysis, recommendations and configurations of prospective clients' platforms and environments based on Deloitte's Cloud Cyber Risk Framework. + Perform technical health checks for these cloud platforms/environments prior to broader deployments including DevSecOps and CI/CD pipelines + Experience with and leading use of leading cyber tooling for cloud such as Wiz and Snyk + Assist clients with transitions to using cloud services such as tenant setup and service configuration, focused on cloud cyber risk mitigation. Additional technologies include: MFA, SSO, Conditional Access, PIM, Security Operations tooling and scanning solutions + Assist clients with the deployment of third-party technologies to assist in securing the cloud platform such as firewall, WAF, PAM and cloud workload protection. + Assist clients with configuration and delivery of cloud security and compliance reports. + Provide technical support for AWS, Azure, GCP, Oracle, Wiz, Snyk and third-party security services and resolve service-related issues through research and troubleshooting and working with third-party vendors. + Implementation of industry leading practices around Azure, AWS, GCP, Wiz, Snyk and cloud security services for clients. + Designing and developing cloud-specific security policies, standards and procedures e.g., tenant, management group and subscription management and configuration, identify management and access control, firewall management, auditing and monitoring, security incident and event management , data protection (DLP, encryption), user and administrator account management, SSO, conditional access controls and password/key management. + Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. + Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. + Executing on cloud security engagements during different phases of the lifecycle - assess, design, and implementation & post implementation reviews. + Implementing industry leading practices around cyber risks and cloud security for clients. + Provide internal cloud and devsecops security technical training to Advisory personnel as needed. + Acting as a subject matter specialist on cloud cyber risk for the cloud platforms. + Manage to Point-of-Views (PoVs) on providing leading practices to our clients on the cyber challenges they face. + Contribute to eminence activities, such as whitepapers pertaining to cloud security capabilities. + Support talent process in the manager role such as for recruiting and coaching. The Team Deloitte's Cloud Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required: + 6+ years of experience in technical consulting, client problem solving, architecting and designing solutions in a consulting role with project leadership and/or architect experience in AWS, GCP, Azure, Oracle, Wiz and/or Snyk ; with a security focus strongly preferred + 2+ years of hands-on technical experience designing and implementing security solutions for leading Cloud service providers across SPI models and environments (Public, Private, Hybrid) + 2+ years working experience designing cloud security architectures and strategies for enterprises + 2+ years working with Cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF + 2+ years working experience with Cloud security technologies/vendors (e.g., IAM, SIEM, IDS) and/or providers (e.g., Okta, CipherCloud, AlertLogic), a big plus + 2+ years working with Cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments + 3+ years working with CNAPP, CSPM or CWPP technologies or planning for large-scale deployments of these technologies + BA/BS Degree preferably in a Technical field (ex. Computer Science, Cyber Security, Information Security, Engineering, Information Technology) + Limited sponsorship may be available Additional Requirements: + Ability to travel up to 80%, on average, based on the work you do and the clients and industries/sectors you serve + Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle. Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices. Preferred: + Previous Consulting or Big 4 experience preferred. + Industry or Vendor Security Certifications such as CCSP or other cloud architect domains + Experience with Virtualization including security for at least one or more of the following: Compute, Network, Storage, End-point, Application + Experience designing IAM technologies and services + Experience or strong working knowledge of managing enterprise security infrastructure and perimeter security appliances - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology + Experience with Azure data, analytics, or AI/ML services (Azure SQL, HDInsight, Databricks, Data Factory, Data Lake Storage, Azure Analysis Services, Synapse Analytics, Azure Machine Learning, etc.) + Understanding of industry security standards, guidelines and regulatory/compliance requirements related to information security and cloud computing such as ISO 27001, ISO 27018, NIST CSF, NIST 800-53, PCI DSS, SOC2, HIPAA, PCI, SOX, GLBA, etc. 'Information for applicants with a need for accommodation: ************************************************************************************************************ The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $144,200 to $265,600 You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

General Atomics (GA), and its affiliated companies, is one of the world's leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. We have an exciting opportunity for an Information Systems Security Manager to join our Classified Computing team located in Poway, CA. This position reports to the Director of Classified IT Systems. With general direction, this position is responsible for leading the design, development and implementation of information assurance programs and related procedures. **DUTIES AND RESPONSIBILITIES:** + Leads the design, development, and implementation of information security programs, procedures and systems for classified enclaves. + Ensures system compliance with the authoritative US Government requirements including (but not limited to): ICD503, JSIG, DISA STIGS, DD254, SCGs, etc. + Maintain authorization of classified systems/circuits via the continuous monitoring process to keep it in good standing with governing authorities. + Ensures vulnerability scanners and host-based security tools/suites are deployed and monitored in accordance with US Government regulations. + Assesses and mitigates system security threats and risks. + Oversees the patch management process. + Oversees and executes the self-inspection process. + Oversees audits of information technology systems; ensures periodic self-inspections are conducted. + Plans, designs and develops strategic initiatives to ensure secure operation and requirements are met. Represents the organization as a primary contact with internal and external representatives. + Develops information security curriculum and course contents and implements training. + Functions in a leadership role by providing direction to support and professional staff. + Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company. + Expected to work in a safe manner in accordance with established operating procedures and practices. + Performs additional duties as assigned. We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply. 51859 **Job Qualifications:** + Typically requires a bachelor's degree in a related discipline, Information Assurance certification and five or more years of professional experience in information assurance or a related field. Equivalent professional experience may be substituted in lieu of education. + Must possess an active IC/DoD Top Secret (TS) Clearance with the ability to obtain and maintain access to Sensitive Compartmented Information (SCI) and Special Access Information (SAP), and willingness to undergo CI polygraph. + Must have a current (favorably adjudicated) polygraph examination or be willing to undergo a polygraph examination with favorable adjudication. + Must demonstrate in-depth knowledge of NIST 800-53 (Risk Management Framework), JSIG, DAAPM, and other related information assurance principles, theories, concepts and techniques. + Experience with Microsoft Active Directory, networking/routing principles, multi-factor authentication, host-based security systems, and Nessus. + Experience with system assessment/hardening tools - DISA STIGs, SCAP, Nessus, etc. + Must demonstrate a broad understanding of information assurance principles, theories, concepts and techniques. + Must have experience organizing, planning, scheduling, conducting, and leading work assignments to meet project milestones or established completion dates. + Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes. + Must be customer focused and possess: + The ability to identify issues, analyze data and develop solutions to a variety of highly complex technical and administrative problems. + DoD 8570 IAM Level III certification required (e.g. CISSP, CISM or GSLC). + Experience with Sensitive Compartmented Information is required. + Experience with Special Access Programs is desired. + Experience with multiple Government information security policies and regulations: e.g. Risk Management Framework (RMF), ICD-503, JSIG, and NIST 800 series special publications. + Excellent analytical, verbal and written communication skills to accurately document, report, and present findings. + Excellent interpersonal skills enabling an effective interface with other professionals. Ability to work independently or in a team environment is essential as is the ability to work extended hours as required. **Salary:** $112,320 - $205,058 **Travel Percentage Required** 0 - 25 **Relocation Assistance Provided** Not Provided **US Citizenship Required?** Yes **Clearance Required?** Yes **Clearance Level** Management **Workstyle** Onsite General Atomics is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity/Affirmative Action Employer and will consider all qualified applicants for employment without regard to race, color, religion, religious creed, ancestry, gender, pregnancy, sex, sexual orientation, transitioning status, gender identity, gender expression, national origin, age, genetic information, military and veteran status, marital status, medical condition, mental disability, physical disability, or any other basis protected by local, state, or federal law. EEO is the law. We also prohibit compensation discrimination under all applicable laws. To learn more visit ************************************************* Notices.pdf. U.S. Citizenship is required for certain positions.

Job Description Senior Cyber Security Architect The Senior Security Architect designs and drives the secure architecture of DataHouse platforms and client solutions across cloud and hybrid environments. This role leads threat modeling, control selection, and reference architectures aligned to ISO/IEC 27001, NIST, and HIPAA, partners with engineering to embed security in delivery pipelines, and advises public-sector and healthcare clients on compliance-aligned architectures. You'll be a senior individual contributor with broad influence-mentoring engineers, shaping standards, and participating in architecture reviews and program governance. *This position requires the candidate to be based in Hawaii and able to work on-site in Honolulu as needed. Primary Responsibilities and Duties Architecture & Design: Define secure reference architectures (network, identity, data, application, and cloud) for AWS/Azure; champion zero-trust and least-privilege patterns. Risk Management: Identify, assess, and mitigate security risks to protect company assets, data, and systems from external and internal threats. Security Strategy Development: Develop and implement comprehensive security strategies and roadmaps that include key policies, procedures, and practices to safeguard the company's information technology infrastructure. Security Compliance: Ensure that security architecture meets regulatory requirements and compliance standards, such as GDPR, HIPAA, or industry-specific regulations. Governance & Compliance: Translate ISO/IEC 27001, NIST (CSF/800-53/171), and HIPAA into practical architectures, patterns, and evidence requirements; support internal audits and renewals. Advisory & Reviews: Sit on internal and client architecture review boards; support executive-level guidance to SLED and healthcare clients. Collaborate with Leadership: Work closely with senior leadership, including the CTO, and other department heads, to ensure security strategies align with business priorities and technology initiatives. Incident Readiness: Partner with SecOps to refine detection logic, playbooks, and tabletop exercises; ensure architectures support rapid containment and recovery. Mentorship & Standards: Coach engineers; author standards, patterns, and runbooks; lead brown-bags and security awareness sessions for delivery teams. Vendor Management: Work with external vendors to evaluate and select security tools, technologies, and services to enhance the company's security posture. Specific Responsibilities and Duties Develop and implement frameworks for the secure design and deployment of cloud services, network infrastructure, and enterprise applications. Lead the evaluation and integration of new security technologies and methodologies to enhance the company's security infrastructure. Collaborate with the IT department to ensure security controls are integrated into all software development and systems engineering processes. Define and enforce standards and best practices for secure software development, network security, data protection, and vulnerability management. Implement and continually improve the organization's Information Security Management System (ISMS) to maintain ongoing ISO 27001 certification. Advise client leadership teams on IT governance, budget planning, security roadmaps, and risk management programs. Ensure security practices address requirements specific to healthcare, government, and other regulated industries. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field. 6+ years of experience in information security, with at least 2 years in a senior security architecture role or similar management position. Proven experience in designing and implementing security architectures for large, complex systems across multiple platforms (cloud, on-premise, hybrid). Expert knowledge of security frameworks, such as NIST, CIS, ISO 27001, comparable ISMS frameworks, and experience with industry compliance standards. Strong understanding of network security, encryption technologies, access controls, threat modeling, and risk management. Experience with public sector and healthcare IT security requirements preferred. Experience with cloud security, including public cloud platforms such as AWS, Azure, or Google Cloud. Leadership and team management experience, with the ability to mentor and inspire a security team. Excellent problem-solving and analytical skills, with the ability to design secure systems and mitigate risks proactively. Proven track record delivering security services to external clients, including executive advisory and program governance. Strong ability to communicate risk and security strategy to executives, boards, and non-technical stakeholders. Certified Information Systems Security Professional (CISSP) or other relevant certifications (e.g., Certified Cloud Security Professional (CCSP), Certified Information Security Manager (CISM)) is preferred. AWS/Azure security certifications preferred.

**About Us** We are a global leader in outdoor sports, golf simulation, and cycling/ power sports equipment, delivering innovative products and digital experiences to athletes and enthusiasts worldwide. Our technology ecosystem spans retail, e-commerce, connected devices, SaaS platforms, and manufacturing systems. Protecting our customers, intellectual property, and operations is essential to maintaining trust and enabling innovation. **Role Overview** We are seeking a Principal Security Architect who will own enterprise security architecture strategy and execution across a complex global landscape. This is not a maintenance role-it's a change leadership position for someone who thrives on solving complex problems, challenging assumptions, and driving transformation. You will work alongside senior IT and business leaders to design and implement enterprise and security architectures that enable innovation and accelerate top-line growth. This role demands autonomy, influence, and the ability to lead engineers through discovery, design, and delivery. **Key Responsibilities** **Enterprise Architecture Leadership** + Define anddrive enterprise-wide security architecture strategy, ensuring alignment with business objectives and growth initiatives. + Influencenetwork and compute architecture decisions to embed security into foundational design. + Champion acloud-first strategy, guiding migration and modernization efforts across hybrid and on-prem environments. + Develop reference architectures, standards, and design patterns that embed security into every layer of our technology stack. **Engineering & Technical Execution** + Lead engineers throughdiscovery and design workshops, translating business priorities into actionable security solutions. + Provide hands-on technical leadership in solution selection and integration (IAM, PAM, SIEM, EDR, cloud security, data security, DevSecOps pipelines). + Oversee proof-of-concept and pilot deployments of new security technologies, ensuring scalability and performance. **Business Partnership & Influence** + Collaborate with senior IT and business leaders toalign security architecture with revenue-driving initiatives. + Influence stakeholders by clearly articulating trade-offs between security, usability, and cost. + Act as a trusted advisor to product, engineering, and business teams during digital transformation efforts. **Governance & Risk Alignment** + Translate regulatory and compliance requirements (PCI-DSS, SOC2, ISO 27001, GDPR, CCPA) into practical security controls. + Participate in security design reviews, risk assessments, and threat modeling for critical projects. + Ensure architectural alignment with enterprise risk management and business continuity objectives. **What We're Looking For** + Relentless problem-solver who thrives in ambiguity and challenges the status quo. + Someone that can envision an effective and efficient technical landscape and then align resources to deliver. + Ability toinfluence without authority and rally teams around a bold vision. + Comfortable makinghigh-impact decisions and owning outcomes. **Qualifications** + Proven track record ofleading enterprise security transformations and delivering measurable improvements. + Deep expertise in cloud-native (AWS, Azure, GCP), hybrid, and on-prem environments. + Strong understanding of identity & access management, zero-trust models, DevSecOps, and container security. + Familiarity with MITRE ATT&CK, NIST CSF, and security design principles. + Excellent communication and stakeholder management skills. **Preferred Experience** + Security leadership in global manufacturing, retail, e-commerce, or supply chain environments. + Hands-on experience with API security, payment security (PCI-DSS), and secure mobile applications. + Knowledge of security automation and orchestration (SOAR) and infrastructure-as-code security (Terraform, CloudFormation). + Simplification of complex legacy landscapes. **Certifications** Certifications are valued but demonstrated experience in driving change and leading architecture at scale is essential. **Why This Role Matters** This is a strategic leadership position that will shape the future of our security posture and enable innovation across the enterprise. Your work will directly impact customer trust, operational resilience, and top-line growth. **Location** This role will be in either Orange County or San Diego County in California. Out of the area candidates will not be considered. \#LI-CD1 **Pay Range:** $123,200.00 - $162,800.00 The actual annual salary offered to a candidate will be based on variables including experience, geographic location, education, and skills/achievements, and will be mutually agreed upon at the time of offer. We offer a highly competitive salary, comprehensive benefits including: medical and dental, vision, disability and life insurance, 401K, PTO, paid holidays, gear discounts and the ability to add value to an exciting mission! Our Postings are not intended for distribution to or use in any jurisdiction, country or territory where such distribution or use would violate local law or would subject us to any regulations in another jurisdiction, country or territory. We reserve the right to limit our Postings in any jurisdiction, country or territory. Equal Opportunity Employer Minorities/Females/Protected Veteran/Disabled **Revelyst is a collective of makers that design and manufacture performance gear and precision technologies. Our category-defining brands leverage meticulous craftsmanship and cross-collaboration to pursue new innovations that redefine what is humanly possible in the outdoors. Portfolio brands include Foresight Sports, Bushnell Golf, Fox, Bell, Giro, CamelBak, Bushnell, Simms Fishing and more.** Revelyst is an equal opportunity employer. All applicants are considered for employment without regard race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status, and any other characteristics protected by law. The EEO Law poster is available here: **************************************************************** If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to ******************** . Please note that this email address is for accommodation purposes only. Revelyst will not respond to inquiries for other purposes.

Are you a hands-on security leader ready to make a measurable impact in a mission-driven organization? We're looking for a Director of Information Security to lead and scale our security operations, incident response, and engineering efforts. In this role, you'll oversee our security ecosystem - from real-time monitoring to proactive threat hunting - and help shape the future of enterprise security at a growing company. This is a highly collaborative position where you'll work cross-functionally with teams across the business to protect our information assets, infrastructure, and services - especially within a SaaS and life sciences environment. What will you do? Shape and drive the enterprise security operations strategy in alignment with broader company goals. Serve as a trusted advisor to senior leadership on all things security. Manage our Security Operations Center (SOC), ensuring rapid incident detection, triage, and response. Oversee threat intelligence, vulnerability management, and operational risk mitigation initiatives. Partner with IT and engineering teams to deploy, tune, and optimize tools like SIEM, SOAR, EDR, and DLP. Implement automation and integrations that improve speed and efficiency. Lead cyber incident response efforts and continuously test and improve our disaster recovery and response plans. Coordinate cross-functional teams (e.g., Legal, HR, Communications) during major security events. Lead, mentor, and grow a high-performing team of security and infrastructure professionals. Support the development of a resilient, inclusive, and learning-driven culture across the department. Align programs with regulatory standards (HIPAA, SOX, GDPR, PCI-DSS) and frameworks (NIST, MITRE ATT&CK). Support audits and ensure documentation is ready and accurate. How will you get there? Bachelor's degree in Computer Science, Information Security, or related field (Master's a plus). 12+ years of relevant experience, including 4+ years leading teams in complex enterprise environments. Hands-on expertise in SOC management, incident response, and threat intelligence. Experience in the Medical Device, Life Sciences, or highly regulated industries preferred. Professional certifications such as CISSP, CISM, GIAC, or CEH. Proficiency with security tools including SIEM, EDR, SOAR, IDS/IPS, and vulnerability management platforms. Strong knowledge of cloud (AWS, Azure, GCP), Windows/Linux systems, and network protocols. Familiarity with security frameworks and standards (NIST, MITRE, ISO 27001). Proven ability to build, lead, and retain high-performing technical teams. A proactive, solutions-oriented mindset with excellent communication and collaboration skills. #GKOSUS

The Opportunity: Are you looking for an opportunity to share your experience in cybersecurity engineering and architecture to safeguard our nation? As a systems security and network security engineer, you can identify the tools, applications, and systems needed to assess vulnerabilities and recommend the best solution and security strategy. We need your experience to lead the development and implementation of security solutions that will protect our military. On our team, you'll troubleshoot and analyze complex challenges for customers using your knowledge of cybersecurity policy and risk management. You'll use your curiosity for technology and market trends to further research and develop security solutions. Using your knowledge and experience in vulnerability scanning, DevSecOps, and zero trust, you'll assess security threats and implement infrastructure controls. In this role, you'll closely impact Navy missions by championing cybersecurity, discovering cyber risks, and providing hands-on support to critical mission areas. With mentoring, challenging hands-on problem-solving, and opportunities to learn new tools and skills, we focus on growing as a team to make the best solutions for our customers. Work with us as we secure and protect our military's cybersecurity posture for the better. What You'll Work On: Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management. Implement infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises. Perform risk and vulnerability assessments in network, system, and application areas. Leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise. Join us. The world can't wait. You Have: 5+ years of experience supporting the Information Technology (IT) systems for a DoD or government agency 5+ years of experience supporting Navy Risk Management Framework (RMF) for classified and Special Access Program (SAP) systems, including Assessment and Authorization (A&A) activities and direct development of RMF artifacts and deliverables across all steps 5+ years of experience performing cybersecurity compliance testing using industry standard tools, including Assured Compliance Assessment Solution (ACAS), DoD Security Technical Implementation Guides (STIG), Evaluate-STIG, and SCAP Experience with event correlation analysis, alert triage, log integrity checks, anomaly detection, performance validation, processing account request, auditing group memberships and reviewing account changes, assuring adherence to media control policies, preventing unauthorized data exposures, and maintaining system compliance with SAP policies Experience with network engineering functions, including Windows, Linux, and virtual operating systems, security tools, platforms, and technologies, including network and web application firewalls, web proxy, intrusion prevention systems, vulnerability scanners, and penetration tools Ability to devise and execute client deliverables, work independently, identify problems and devise analysis and solutions, communicate results, and lead the accomplishments of client tasks from inception to completion TS/SCI clearance with a polygraph HS diploma or GED DoD 8140 Certification Nice If You Have: Experience with eMASS Experience with Grafana Experience as a Navy Qualified Validator Knowledge of DoD enterprise and tactical networks, including Security Operations Center (SOC) and battlespace management systems Knowledge of systems engineering, information technology, cloud architecture, and virtualization Ability to learn new technologies, implement updated rigorous security controls, and articulate industry best practice cybersecurity and threat-based cybersecurity frameworks and trends Bachelor's degree in a related Technology field Linux OS Certification CISSP, CEH, or CISA Certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required. Compensation At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page. Salary at Booz Allen is determined by various factors, including but not limited to location, the individual's particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $77,600.00 to $176,000.00 (annualized USD). The estimate displayed represents the typical salary range for this position and is just one component of Booz Allen's total compensation package for employees. This posting will close within 90 days from the Posting Date. Identity Statement As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud. Work Model Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely. If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility. If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role. Commitment to Non-Discrimination All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

This position requires active U.S. national security clearance and/or the ability to obtain one. To learn more about the security clearance process please access this link: ******************************************************************************************* Additionally, travel may be required to customer and subcontractor sites as well as other office locations. This position is with Forward Slope, Inc. an Accelint company. Accelint is dedicated to delivering mission-critical technology and defense solutions that accelerate innovation, readiness, and national security outcomes. Company Summary: Are you looking to grow your career with a company that values innovation, collaboration, and work-life balance? Forward Slope is a fast-growing, global engineering firm with over 22 years of excellence in the Department of Defense (DoD) industry. We are proud to offer outstanding benefits, a supportive team culture, and opportunities for both educational and professional development. If you are ready to contribute to meaningful work in a fast-paced environment and be part of a company that truly invests in its people, Forward Slope wants you on our team. Job Description: Forward Slope (FSI) currently has an opening for a Director of Information Security to join our team. This position is located in San Diego, California. The Director of Information Security is a hands-on leadership role responsible for the design, implementation, and continuous improvement of our cybersecurity program. This role combines strategic leadership, operational execution, and direct technical work. The ideal candidate will be an experienced security practitioner who is equally comfortable implementing organizational vision and configuring a firewall, drafting policies and responding to incidents, and communicating risks to executives and regulators. Above all, the candidate must be able to lead, grow and inspire the cybersecurity team. Duties and Responsibilities: Cybersecurity Strategy and Program Leadership * Work closely with the CISO to evolve the company's cybersecurity strategy and align it with business objectives, regulatory requirements, and threat intelligence. * Define and track security metrics, KPIs, and KRIs to measure program effectiveness and maturity. Risk Management and Compliance * Lead the company's efforts to maintain compliance with DFARS, CMMC (Levels 2 and 3), NIST SP 800-171, NIST SP 800-53, and ITAR/EAR regulations. * Conduct risk assessments across business units, IT infrastructure, and vendors; develop actionable mitigation plans. * Prepare the organization for cybersecurity audits and assessments, including CMMC certification. Technical Security Operations * Evaluate, implement, configure and operate critical security technologies and controls including: * Firewalls, endpoint protection, SIEM, vulnerability scanning, DLP, encryption technologies, IAM/MFA. * Perform vulnerability management, threat hunting, and forensic investigations where necessary. * Develop and manage the company's Incident Response playbooks and lead and execute all incident response activities. Policy Development, Training, and Awareness * Create, maintain, and enforce security policies, standards, procedures, and guidelines. * Build a strong security awareness culture through ongoing education, attack simulations, and training. * Coordinate security onboarding and annual training programs to ensure all employees meet compliance requirements. Team Building and Leadership * Build and lead a small, high-performing security team of engineers and analysts. * Mentor and develop internal talent, providing clear career progression opportunities. * Partner with IT, software engineering, HR, contracts, and executive leadership to embed security practices across the business. Emerging Threats and Continuous Improvement * Stay informed of emerging threats, vulnerabilities, and regulatory changes. * Evaluate and adopt new security tools, frameworks, and practices to maintain a forward-leaning security posture. * Participate in external cybersecurity working groups and forums to evaluate and share best practices. Required Qualifications: * Currently hold an active U.S security clearance or be able to obtain one * Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related field. * 8+ years of progressive experience in information security roles, including 2+ years in a leadership capacity. * In-depth knowledge of cybersecurity frameworks (NIST, CMMC, DFARS, RMF). * Strong technical background securing hybrid environments (Windows/Linux, on-premises, cloud). * Proven incident response experience and technical security engineering skills. * Relevant certifications: CISSP, CISM, or equivalent. * Must be able to travel occasionally to customer sites and secure facilities as needed. Desired Qualifications: * Master's degree in Cybersecurity, Information Assurance, or related field. * Experience with FedRAMP, ISO 27001, SCAP scanning, and RMF process implementation. * Familiarity with DevSecOps, secure coding practices, and software supply chain security. * Hands-on scripting experience (Python, Bash, PowerShell) and familiarity with infrastructure-as-code concepts. Salary Range: * $150,000-$175,000* Job Type: * Full-Time Salary/Exempt Clearance Information: Some positions will require access to U.S. National Security information. Positions that require this access will be required to receive and maintain a U.S. government personnel security clearance (PCL). In order to qualify for this position, the candidate must be a US Citizen and either currently possess this National Security eligibility or be able to complete the investigation application process with a favorable determination and maintain that eligibility throughout their employment. EEOC & Know Your Rights: Accelint companies are Equal Opportunity Employers. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, status as a protected veteran or any other status protected by applicable federal, state, and local law. We ensure that all employment decisions, including hiring, promotion, compensation, and other terms and conditions of employment, are based on merit, qualifications, and business needs. For more information about your rights, please review the "Know Your Rights" poster from the Equal Employment Opportunity Commission (EEOC). ADA: In compliance with the Americans with Disabilities Act (ADA), if you have a disability and would like to request an accommodation within the application and selection process, please contact ********************. E-Verify: Accelint companies utilizes E-Verify to confirm employment eligibility to work in the United States. Verification occurs after the employee has been hired and completes the Form I-9. * Salary Range: The listed pay scale reflects the broad, minimum to maximum, pay scale for this position for the location for which it has been posted and is not a guarantee of compensation or salary. Other compensation considerations may include, but are not limited to, job responsibilities, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, or other applicable factors. Benefits Include: * Paid Time Off * Paid Company Holidays * Medical, Dental & Vision Insurance * Optional HSA and FSA * Base and Voluntary Life Insurance * Short Term & Long-Term Disability Insurance * 401k Matching * Employee Assistance Program

Are you looking to make an impactful difference in your work, yourself, and your community? Why settle for just a job when you can land a career? At ICW Group, we are hiring team members who are ready to use their skills, curiosity, and drive to be part of our journey as we strive to transform the insurance carrier space. We're proud to be in business for over 50 years, and its change agents like yourself that will help us continue to deliver our mission to create the best insurance experience possible. Headquartered in San Diego with regional offices located throughout the United States, ICW Group has been named for ten consecutive years as a Top 50 performing P&C organization offering the stability of a large, profitable and growing company combined with a focus on all things people. It's our team members who make us an employer of choice and the vibrant company we are today. We strive to make both our internal and external communities better everyday! Learn more about why you want to be here! PURPOSE OF THE JOB The purpose of this job is to design secure architectures and develop cybersecurity approaches and techniques to evaluate the security of a system or network. This position will assist with strategic initiatives for short and long-term plans to identify and reduce the attack surface across applications and systems. The position exists to monitor and defend ICW Group's technology against potential threats that jeopardize the financial growth and security goals of the Company. ESSENTIAL DUTIES AND RESPONSIBILITIES Monitors and protects information assets across hybrid environments. Monitors data flows and access events across AWS, on-prem, and SaaS platforms using DLP, CASB, SIEM, and AWS-native tools such as Macie, GuardDuty, CloudTrail, and Security Hub. Detects and investigates data breaches, insider threats, and exfiltration attempts; leads data-centric incident response through containment, analysis, and recovery. Implements and enforces data classification, labeling, and tagging frameworks integrated with AWS S3, RDS, and enterprise file systems. Designs and manages encryption and key management solutions using AWS KMS, CloudHSM, and on-premise HSMs to secure data at rest and in transit. Collaborates with development and DevOps teams to embed data protection into CI/CD pipelines and application code, ensuring secure data handling throughout SDLC. Conducts forensic reviews and produces actionable reports, metrics, and dashboards highlighting data risks and anomalies across hybrid systems. Leads complex data protection initiatives and resolves data security risks. Leads enterprise data security projects, including AWS DLP implementation, sensitive data discovery, structured/unstructured data protection, and automated alerting. Defines and enforces data governance standards for both AWS and on-prem environments, aligning to ICW's data lifecycle management and retention requirements. Partners with database, app dev, and analytics teams to integrate encryption, tokenization, and privacy-by-design principles into application workflows. Designs and maintains role-based and attribute-based access controls (RBAC/ABAC) across AWS Identity and Access Management (IAM), Active Directory, and application layers. Collaborates with Privacy, Legal, and Compliance to operationalize data protection impact assessments (DPIAs) and retention/deletion automation. Produces executive and board-level reports detailing data protection maturity, compliance metrics, and emerging risk areas. Serves as a technical escalation point for AWS data protection incidents, third-party integrations, and complex remediation efforts. Serves as ICW's senior data security SME and technical advisor. Provides expert consulting to architecture, engineering, and product teams on AWS-native security services and hybrid data protection models. Advises leadership on emerging cloud data security trends and recommends architectures that balance scalability with compliance and risk reduction. Conducts advanced data risk assessments, privacy impact analyses, and forensic reviews to guide remediation and control design. Defines AWS-aligned compliance strategies supporting NIST CSF, NYDFS 500, GLBA, and state privacy laws. Evaluates and integrates modern data security solutions such as SASE/CASB platforms, insider risk analytics, and automated data classification tools. Mentors junior engineers and fosters a data-first security mindset across ICW's engineering organization. Partners with project management and internal teams to mature hybrid data security. Implements technical and process controls to continuously improve data protection maturity in AWS and on-prem applications. Partners with cloud engineering and on-prem development teams to design secure data pipelines, storage, and access control mechanisms. Contributes to automation and orchestration of data protection activities using AWS Lambda, EventBridge, and native integration APIs. Leads knowledge sharing on emerging AWS capabilities while ensuring backward compatibility with existing on-prem data flows. Coaches development and data engineering teams to identify and mitigate data leakage risks during application and infrastructure design. SUPERVISORY RESPONSIBILITIES This position has no supervisory responsibility but may mentor and train junior engineers. EDUCATION AND EXPERIENCE Bachelor's Degree from four-year college or university required with major or emphasis Engineering, Cybersecurity, Networking, or Computer Science related discipline. Minimum 8 years of experience working in a security engineering related role designing secure networks, systems and application architectures or equivalent combination of education and experience required. Minimum 3-5 years of experience in AWS Cloud Security services preferred. Direct experience using advanced technologies such as Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus software, Network Packet Analyzers, content filtering, Malware analysis and forensics tools to detect intrusions. Experience in cyber security role requiring knowledge of data analysis, risk assessment, risk mitigation, investigation methods, incident management concepts and practices, and policy and procedure development. Experience with AWS Services such as AWS Identity & Access Management, AWS Organizations, AWS Security HuB, Guard Duty, CloudTrail, AWS CloudTrail. CERTIFICATES, LICENSES, REGISTRATIONS Certification in GSEC, CISSP, and/or Security+. AWS Certified Security - Specialty, preferred KNOWLEDGE AND SKILLS Knowledge of risk assessment tools, technologies, and methodologies. Knowledge of disaster recovery, computer forensic tools, technologies, and methods. Knowledge of enterprise security platforms. Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code, and anti-virus software. Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention. Demonstrated experience as a lead engineer in the design, implementation and support in an enterprise IT environment. Ability to work with mathematical concepts such as probability and statistical inference. Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems. Ability to combine disparate skills and thinking to craft solutions and solve complex operational problems. Ability to hypothesize on root cause of inefficiencies and then test out probable solutions against those hypotheses. Ability to read, analyze, and interpret technical journals, financial reports, security analysis reports and other IT related documents. Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Must be able to read, write and speak English effectively. Ability to effectively communicate/present technical information to a non-technical audience. Ability to cross train and share information with team members. PHYSICAL REQUIREMENTS Office environment - no specific or unusual physical or environmental demands and employees are regularly required to sit, walk, stand, talk, and hear. Employees are required to reach with hands and arms; stoop, kneel, crouch, or crawl. Employees must occasionally lift and/or move up to 30 pounds. Employees are required to have visual acuity and be capable of operating and viewing computers and other electronic devices for extended periods of time. WORK ENVIRONMENT This position operates in an office environment and requires the frequent use of a computer, telephone, copier, and other standard office equipment. We are currently not offering employment sponsorship for this opportunity. #LI-TM1 #LI-HYBRID The current range for this position is $121,624.81 - $217,710.99 This range is exclusive of fringe benefits and potential bonuses. If hired at ICW Group, your final base salary compensation will be determined by factors unique to each candidate, including experience, education and the location of the role and considers employees performing substantially similar work. WHY JOIN ICW GROUP? • Challenging work and the ability to make a difference • You will have a voice and feel a sense of belonging • We offer a competitive benefits package, with generous medical, dental, and vision plans as well as 401K retirement plans and company match • Bonus potential for all positions • Paid Time Off with an accrual rate of 5.23 hours per pay period (equal to 17 days per year) • 11 paid holidays throughout the calendar year • Want to continue learning? We'll support you 100% ICW Group is committed to creating a diverse environment and is proud to be an Equal Opportunity Employer. ICW Group will not discriminate against an applicant or employee on the basis of race, color, religion, national origin, ancestry, sex/gender, age, physical or mental disability, military or veteran status, genetic information, sexual orientation, gender identity, gender expression, marital status, or any other characteristic protected by applicable federal, state or local law. ___________________ Job Category IT

We are seeking a talented Detection Engineer to join our Security Incident Response Team (SIRT) and help us protect our organization from cyber threats. The ideal candidate will have a deep understanding of security detection techniques and be able to design, implement, and maintain detection controls that detect and respond to security incidents. As a member of our SIRT, you will work closely with other engineers to identify and mitigate threats, shape detection strategy, and provide guidance on the design and implementation of security controls. **Responsibilities** + Develop and maintain detection controls to monitor and detect security events that threaten the confidentiality, integrity, and availability of our organization's data and systems + Analyze telemetry data from diverse sources to detect known and unknown security incidents using various security tools, such as SIEM (Splunk), EDR (Crowdstrike Falcon), CSPM (Wiz) and network traffic analysis + Engage with threat hunting, event analysis and incident response squads to identify threats and vulnerabilities seen internally + Build and implement security automation workflows using SOAR tools to streamline and enhance SIRT analysis and incident resolution. + Proactively research, identify, and understand the latest security threats and emerging trends, including their potential impact on our organization + Collaborate with other engineers to design, implement, and maintain security controls based on security standards, best practices, policies, and regulatory requirements + Provide guidance to enhance the creation, documentation, implementation, and adherence of security policies and procedures + Participate in security incident response activities and help develop mitigation and remediation strategies + Communicate security results and findings to technical audiences and management stakeholders through detailed analysis, briefings, and reports _Intuit provides a competitive compensation package with a strong pay for performance rewards approach. The expected base pay range for this position is:_ Bay Area California $206,000 - $278,500 San Diego Area California $187,000 - $252,500 _This position will be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at Intuit : Careers | Benefits (************************************************************** _)._ _Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing pay equity for employees, Intuit conducts regular comparisons across categories of ethnicity and gender._ **Qualifications** + BS/MS in Computer Science or related field or equivalent relevant experience. Experience in Cybersecurity and/or Identity and Access Management is strongly desired. + 7+ years of professional experience on/leading policy or analytics teams in a compliance, security, risk, or financial fraud environment + Developer experience in Python or comparable language preferred + Expert in producing user-friendly data visualizations and adept at communicating with data + Demonstrated project management skills for planning/driving tasks across organizations while keeping initiatives on track to achieve desired outcomes + Ability to understand and demonstrate empathy for opposing points of view on highly complex issues + Excellent written and verbal communication skills; ability to succinctly communicate technical and business requirements, business cases and other findings across organizational levels + Proven ability to use productivity/collaboration tools such as MS Office, Google Suite, and Slack If you have a passion for cybersecurity and a proven track record in security detection and incident response, we invite you to apply for this role. Join our SIRT team and help us protect our organization and customers from cyber threats. Intuit provides a competitive compensation package with a strong pay for performance rewards approach. This position will be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at Intuit : Careers | Benefits (************************************************************* ). Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing fair pay for employees, Intuit conducts regular comparisons across categories of ethnicity and gender. The expected base pay range for this position is: EOE AA M/F/Vet/Disability. Intuit will consider for employment qualified applicants with criminal histories in a manner consistent with requirements of local law.

About us One team. Global challenges. Infinite opportunities. At Viasat, we're on a mission to deliver connections with the capacity to change the world. For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate. We're looking for people who think big, act fearlessly, and create an inclusive environment that drives positive impact to join our team. What you'll do Keeping our systems, technology, and employees safe is a key priority for Viasat. As a member of the Information Assurance team, you will focus on the day-to-day information system security requirements, serve as a Subject Matter Expert (SME) in the Information Assurance realm, and provide innovative solutions to complex problems. The day-to-day * Work independently as well as with a team of Information Assurance Professionals. * Responsible for ensuring Information System Compliance with the potential to span multiple business areas or programs. * Assess, document, and recommend controls based on a thorough understanding of RMF, NISPOM and other NISP regulatory requirements, and determine which controls are applicable to the application, as well as document implementation in Security Controls Tractability Matrix (SCTM). * Document compliance actions within the approved automated compliance tracking system or develop a Plan of Actions and Milestones (POA&M) to address non-compliance. * Participate in internal/external security audits/inspections; performs risk assessments and continuous monitoring. * Ensure systems are operated, maintained, and disposed of in accordance with the governing authority approved authorization package and customer directives * Develop procedures and documentation to ensure compliance with Configuration Management (CM) for security relevant IS software, hardware, and firmware. * Ensure proper protection and / or corrective measures have been taken when an incident or vulnerability has been discovered. Follows-up to ensure completion and quality resolution. * Assesses and revises policies and procedures as needed to improve quality, timeliness, and efficiency of work. What you'll need * Bachelor's degree or equivalent experience * 3+ years as an Information System Security Officer (ISSO) in a DoD, IC, or other industrial security program and in-depth understanding of DoD 8500 series, NIST 800 series, and ICD 503, Joint Special Access Program Implementation Guide (JSIG) and overall understanding of DoD Risk Manage Framework (RMF) process. * Experience working with vulnerability and compliance scanning tools. (Nessus, SCAP, ACAS) * Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management * Working knowledge with Microsoft Windows operating systems (workstation & server), Linux, and system virtualization in a secure network environment. * Strong written communication and organizational skills * Interpersonal skills to deal courteously and effectively with a diverse group of individuals * Ability to work well under pressure, and possess advanced problem-solving skills * Possess a current DoD 8570.1/DoD 8140.01 Certification - Security+ CE a minimum * Active Top Secret Security Clearance with SCI eligibility * Ability to travel up to 10% What will help you on the job * 5+ years as an Information System Security Officer (ISSO) Salary range $93,500.00 - $148,000.00 / annually. For specific work locations within San Jose, the San Francisco Bay area and New York City metropolitan area, the base pay range for this role is $112,000.00- $168,000.00/ annually At Viasat, we consider many factors when it comes to compensation, including the scope of the position as well as your background and experience. Base pay may vary depending on job-related knowledge, skills, and experience. Additional cash or stock incentives may be provided as part of the compensation package, in addition to a range of medical, financial, and/or other benefits, dependent on the position offered. Learn more about Viasat's comprehensive benefit offerings that are focused on your holistic health and wellness at ************************************ EEO Statement Viasat is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic. If you would like to request an accommodation on the basis of disability for completing this on-line application, please click here. * Bachelor's degree or equivalent experience * 3+ years as an Information System Security Officer (ISSO) in a DoD, IC, or other industrial security program and in-depth understanding of DoD 8500 series, NIST 800 series, and ICD 503, Joint Special Access Program Implementation Guide (JSIG) and overall understanding of DoD Risk Manage Framework (RMF) process. * Experience working with vulnerability and compliance scanning tools. (Nessus, SCAP, ACAS) * Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management * Working knowledge with Microsoft Windows operating systems (workstation & server), Linux, and system virtualization in a secure network environment. * Strong written communication and organizational skills * Interpersonal skills to deal courteously and effectively with a diverse group of individuals * Ability to work well under pressure, and possess advanced problem-solving skills * Possess a current DoD 8570.1/DoD 8140.01 Certification - Security+ CE a minimum * Active Top Secret Security Clearance with SCI eligibility * Ability to travel up to 10% * Work independently as well as with a team of Information Assurance Professionals. * Responsible for ensuring Information System Compliance with the potential to span multiple business areas or programs. * Assess, document, and recommend controls based on a thorough understanding of RMF, NISPOM and other NISP regulatory requirements, and determine which controls are applicable to the application, as well as document implementation in Security Controls Tractability Matrix (SCTM). * Document compliance actions within the approved automated compliance tracking system or develop a Plan of Actions and Milestones (POA&M) to address non-compliance. * Participate in internal/external security audits/inspections; performs risk assessments and continuous monitoring. * Ensure systems are operated, maintained, and disposed of in accordance with the governing authority approved authorization package and customer directives * Develop procedures and documentation to ensure compliance with Configuration Management (CM) for security relevant IS software, hardware, and firmware. * Ensure proper protection and / or corrective measures have been taken when an incident or vulnerability has been discovered. Follows-up to ensure completion and quality resolution. * Assesses and revises policies and procedures as needed to improve quality, timeliness, and efficiency of work.

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500 . Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone. Job Description **PLEASE NOTE**: This role requires a minimum of 2 days per week in our San Diego, CA ServiceNow Office. Please do not apply if you cannot meet this requirement. Thank you The ServiceNow Security Organization (SSO): The ServiceNow Security Organization (SSO) delivers world-class, innovative security solutions to reduce risk and protect the company and our customers. We enable our customers to migrate their most sensitive data and workloads to the cloud, accelerating our business so that we are the most trusted SaaS provider. We create an environment where our employees are proud to work and can make a positive impact Team: Product Security is Shifting Everywhere and holistically improving the maturity of the security program. The Secure Software Development Lifecycle (SSDL) team helps the organization measure and improve security activities. The team leads product threat modeling, helps to improve security behaviors, and manages a highly visible security champions program. The team is both highly technical and strategic. Role: As a Staff Product Security Engineer on the ServiceNow SSDL team, you will collaborate with developers and software architects on highly technical solutions and help the organization build secure and resilient software. You will be threat modeling software products and services to identify potential risk and participate in architectural reviews of products in development. A key part of this position is to ensure the continued success of a large and growing security champions program. You will help mentor security champions and assist them in secure software design. As a Staff Product Security Engineer, you will help security champions be successful. What you get to do in this role: Work on a wide range of technologies Work on complex architectural and technical challenges Participate in threat modeling activities Mentor and collaborate with development teams to adopt secure coding practices Work on strategic and highly visible security activities across the organization Be an advocate for security and participate in a security champions program Qualifications To be successful in this role, we need someone who has: Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI's potential impact on the function or industry. 2+ years of experience in software development 8+ years of experience in software security (AppSec) 2+ years of experience in threat modeling software applications and services Proficient in threat modeling methodologies such as STRIDE or PASTA and their applied use in fast-moving, iterative development lifecycles In-depth knowledge of common web application vulnerabilities (OWASP Top 10) Developer-level proficiency in one or more languages - Python, Java, JavaScript, and Golang preferred Working knowledge of Machine Learning and taxonomies such as BIML that categorize known attacks on machine learning models In-depth knowledge of software design patterns and their security considerations In-depth knowledge of authentication and authorization standards including OAuth, OIDC, SAML, JWT, and PASETO Knowledge of symmetric and asymmetric cryptography, digital signatures, PKI, TLS, and cryptographic hash functions Knowledge of cloud native technologies including containers, Kubernetes, and services provided by AWS, GCP, and Azure Knowledge of static analysis (SAST), dynamic analysis (DAST), and software composition analysis (SCA) security tools Knowledge of OWASP ASVS, SCVS, and related verification standards Ability to work collaboratively in a highly distributed team Ability to communicate technical concepts to business stakeholders A passion for security #SecurityJobs For positions in this location, we offer a base pay of: $155,800 to $272,700 plus equity (when applicable), variable/incentive compensation and benefits. Sales positions generally offer a competitive On Target Earnings (OTE) incentive compensation structure. Please note that the base pay shown is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location. We also offer health plans, including flexible spending accounts, a 401(k) Plan with company match, ESPP, matching donations, a flexible time away plan and family leave programs. Compensation is based on the geographic location in which the role is located and is subject to change based on work location. Additional Information Work Personas We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here. To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service. Equal Opportunity Employer ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements. Accommodations We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact [email protected] for assistance. Export Control Regulations For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities. From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

General information Requisition # R64222 Posting Date 11/14/2025 Security Clearance Required TS/SCI Remote Type Onsite Time Type Full time Description & Requirements Shape the future of defense with MANTECH! Join a team dedicated to safeguarding our nation through advanced tech and innovative solutions. Since 1968, we've been a trusted partner to the Department of Defense, delivering cutting-edge projects that make a real impact. Dive into exciting opportunities in Cybersecurity, IT, Data Analytics and more. Propel your career forward and be part of something extraordinary. Your journey starts now-protect and innovate with MANTECH! MANTECH seeks a motivated, career and customer-oriented Information Systems Security Officer with strengths in Information Systems Security to join our team at Marine Corps Base Camp Pendleton California. This position will assist Marine Corps Warfighting Laboratory (MCWL) prepare for and maintain the IT infrastructure, IT capabilities and Audio-Visual capabilities to support emerging ICD 705 Sensitive Compartmentalized Information Facilities (SCIFs) and Special Access Control Facilities (SAPFs) through planning, activation and operations. Responsibilities include but are not limited to: * Experience in network design, network monitoring, systems development, and knowledge of Information Assurance (IA) policies, directives, and best practices across DoD and Marine Corps. * Knowledge and experience with organizations within the Marine Corps responsible for facilitating network approvals and connections. * Work with various Marine Corps, Navy, Joint, and other services to coordinate installs supporting Initial Operating Capability (IOC) and Final Operating Capability (FOC). * Ability to communicate and provide effective staff coordination across government, Marine Corps, and contractor organizations. * Support the facility Site Security Manager (SSM)/Special Security Representative (SSR) and Information Systems Security Manager (ISSM) to oversee the secure installations and operations of systems across multiple security domains and in accordance with policies, directives, and best practices. * Establishes and satisfies complex system-wide information security requirements based upon the analysis of user, policy, regulatory, and resource demands. Supports Marine Corps and other customers at the highest levels in the development and implementation of doctrine and policies. Minimum Qualifications: * Bachelor's degree and at least 10 years' experience planning and/or operating IT infrastructure within ICD 705 facilities. * Experience with network security aspects of installations and operations. Preferred Qualifications: * Experience with MS Word, MS Power Point Clearance Requirements: * Candidate must have a current/active Top Secret clearance with the ability to obtain and maintain a TS/SCI clearance prior to starting this position. Physical Requirements: * Ability to maintain construction security oversight in outdoor environment; walk (with personal protective equipment) to inspect and document delivery of components and assembly/construction of structure. The projected compensation range for this position is $112,400.00-$186,500.00. There are differentiating factors that can impact a final salary/hourly rate, including, but not limited to, Contract Wage Determination, relevant work experience, skills and competencies that align to the specified role, geographic location (For Remote Opportunities), education and certifications as well as Federal Government Contract Labor categories. In addition, MANTECH invests in its employees beyond just compensation. MANTECH's benefits offerings include, dependent upon position, Health Insurance, Life Insurance, Paid Time Off, Holiday Pay, short-term and long-term Disability, Retirement and Savings, Learning and Development opportunities, wellness programs as well as other optional benefit elections. MANTECH International Corporation considers all qualified applicants for employment without regard to disability or veteran status or any other status protected under any federal, state, or local law or regulation. If you need a reasonable accommodation to apply for a position with MANTECH, please email us at ******************* and provide your name and contact information.

Are you looking to make an impactful difference in your work, yourself, and your community? Why settle for just a job when you can land a career? At ICW Group, we are hiring team members who are ready to use their skills, curiosity, and drive to be part of our journey as we strive to transform the insurance carrier space. We're proud to be in business for over 50 years, and its change agents like yourself that will help us continue to deliver our mission to create the best insurance experience possible. Headquartered in San Diego with regional offices located throughout the United States, ICW Group has been named for ten consecutive years as a Top 50 performing P&C organization offering the stability of a large, profitable and growing company combined with a focus on all things people. It's our team members who make us an employer of choice and the vibrant company we are today. We strive to make both our internal and external communities better everyday! Learn more about why you want to be here! PURPOSE OF THE JOB The purpose of this job is to design secure architectures and develop cybersecurity approaches and techniques to evaluate the security of a system or network. This position will assist with strategic initiatives for short and long-term plans to identify and reduce the attack surface across applications and systems. The position exists to monitor and defend ICW Group's technology against potential threats that jeopardize the financial growth and security goals of the Company. ESSENTIAL DUTIES AND RESPONSIBILITIES Monitors and protects information assets across hybrid environments. * Monitors data flows and access events across AWS, on-prem, and SaaS platforms using DLP, CASB, SIEM, and AWS-native tools such as Macie, GuardDuty, CloudTrail, and Security Hub. * Detects and investigates data breaches, insider threats, and exfiltration attempts; leads data-centric incident response through containment, analysis, and recovery. * Implements and enforces data classification, labeling, and tagging frameworks integrated with AWS S3, RDS, and enterprise file systems. * Designs and manages encryption and key management solutions using AWS KMS, CloudHSM, and on-premise HSMs to secure data at rest and in transit. * Collaborates with development and DevOps teams to embed data protection into CI/CD pipelines and application code, ensuring secure data handling throughout SDLC. * Conducts forensic reviews and produces actionable reports, metrics, and dashboards highlighting data risks and anomalies across hybrid systems. Leads complex data protection initiatives and resolves data security risks. * Leads enterprise data security projects, including AWS DLP implementation, sensitive data discovery, structured/unstructured data protection, and automated alerting. * Defines and enforces data governance standards for both AWS and on-prem environments, aligning to ICW's data lifecycle management and retention requirements. * Partners with database, app dev, and analytics teams to integrate encryption, tokenization, and privacy-by-design principles into application workflows. * Designs and maintains role-based and attribute-based access controls (RBAC/ABAC) across AWS Identity and Access Management (IAM), Active Directory, and application layers. * Collaborates with Privacy, Legal, and Compliance to operationalize data protection impact assessments (DPIAs) and retention/deletion automation. * Produces executive and board-level reports detailing data protection maturity, compliance metrics, and emerging risk areas. * Serves as a technical escalation point for AWS data protection incidents, third-party integrations, and complex remediation efforts. Serves as ICW's senior data security SME and technical advisor. * Provides expert consulting to architecture, engineering, and product teams on AWS-native security services and hybrid data protection models. * Advises leadership on emerging cloud data security trends and recommends architectures that balance scalability with compliance and risk reduction. * Conducts advanced data risk assessments, privacy impact analyses, and forensic reviews to guide remediation and control design. * Defines AWS-aligned compliance strategies supporting NIST CSF, NYDFS 500, GLBA, and state privacy laws. * Evaluates and integrates modern data security solutions such as SASE/CASB platforms, insider risk analytics, and automated data classification tools. * Mentors junior engineers and fosters a data-first security mindset across ICW's engineering organization. Partners with project management and internal teams to mature hybrid data security. * Implements technical and process controls to continuously improve data protection maturity in AWS and on-prem applications. * Partners with cloud engineering and on-prem development teams to design secure data pipelines, storage, and access control mechanisms. * Contributes to automation and orchestration of data protection activities using AWS Lambda, EventBridge, and native integration APIs. * Leads knowledge sharing on emerging AWS capabilities while ensuring backward compatibility with existing on-prem data flows. * Coaches development and data engineering teams to identify and mitigate data leakage risks during application and infrastructure design. SUPERVISORY RESPONSIBILITIES This position has no supervisory responsibility but may mentor and train junior engineers. EDUCATION AND EXPERIENCE * Bachelor's Degree from four-year college or university required with major or emphasis Engineering, Cybersecurity, Networking, or Computer Science related discipline. * Minimum 8 years of experience working in a security engineering related role designing secure networks, systems and application architectures or equivalent combination of education and experience required. * Minimum 3-5 years of experience in AWS Cloud Security services preferred. Direct experience using advanced technologies such as Intrusion Detection & Prevention Systems (IDS/IPS), Firewalls, SIEM, Antivirus software, Network Packet Analyzers, content filtering, Malware analysis and forensics tools to detect intrusions. * Experience in cyber security role requiring knowledge of data analysis, risk assessment, risk mitigation, investigation methods, incident management concepts and practices, and policy and procedure development. * Experience with AWS Services such as AWS Identity & Access Management, AWS Organizations, AWS Security HuB, Guard Duty, CloudTrail, AWS CloudTrail. CERTIFICATES, LICENSES, REGISTRATIONS * Certification in GSEC, CISSP, and/or Security+. * AWS Certified Security - Specialty, preferred KNOWLEDGE AND SKILLS * Knowledge of risk assessment tools, technologies, and methodologies. Knowledge of disaster recovery, computer forensic tools, technologies, and methods. * Knowledge of enterprise security platforms. * Ability to communicate network security issues to peers and management. Ability to read and use the results of mobile code, malicious code, and anti-virus software. * Strong understanding of endpoint security solutions to include File Integrity Monitoring and Data Loss Prevention. * Demonstrated experience as a lead engineer in the design, implementation and support in an enterprise IT environment. * Ability to work with mathematical concepts such as probability and statistical inference. * Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems. * Ability to combine disparate skills and thinking to craft solutions and solve complex operational problems. * Ability to hypothesize on root cause of inefficiencies and then test out probable solutions against those hypotheses. * Ability to read, analyze, and interpret technical journals, financial reports, security analysis reports and other IT related documents. * Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. * Must be able to read, write and speak English effectively. * Ability to effectively communicate/present technical information to a non-technical audience. * Ability to cross train and share information with team members. PHYSICAL REQUIREMENTS Office environment - no specific or unusual physical or environmental demands and employees are regularly required to sit, walk, stand, talk, and hear. Employees are required to reach with hands and arms; stoop, kneel, crouch, or crawl. Employees must occasionally lift and/or move up to 30 pounds. Employees are required to have visual acuity and be capable of operating and viewing computers and other electronic devices for extended periods of time. WORK ENVIRONMENT This position operates in an office environment and requires the frequent use of a computer, telephone, copier, and other standard office equipment. We are currently not offering employment sponsorship for this opportunity. #LI-TM1 #LI-HYBRID The current range for this position is $121,624.81 - $217,710.99 This range is exclusive of fringe benefits and potential bonuses. If hired at ICW Group, your final base salary compensation will be determined by factors unique to each candidate, including experience, education and the location of the role and considers employees performing substantially similar work. WHY JOIN ICW GROUP? * Challenging work and the ability to make a difference * You will have a voice and feel a sense of belonging * We offer a competitive benefits package, with generous medical, dental, and vision plans as well as 401K retirement plans and company match * Bonus potential for all positions * Paid Time Off with an accrual rate of 5.23 hours per pay period (equal to 17 days per year) * 11 paid holidays throughout the calendar year * Want to continue learning? We'll support you 100% ICW Group is committed to creating a diverse environment and is proud to be an Equal Opportunity Employer. ICW Group will not discriminate against an applicant or employee on the basis of race, color, religion, national origin, ancestry, sex/gender, age, physical or mental disability, military or veteran status, genetic information, sexual orientation, gender identity, gender expression, marital status, or any other characteristic protected by applicable federal, state or local law. ___________________ Job Category IT

Join Aya Healthcare, winner of multiple Top Workplace awards! Working closely with the Platform Security team, the Senior Security Engineer role will be responsible for collaboratively maintaining, automating, and supporting all aspects of cloud infrastructure security focusing on vulnerability management, security reporting, and risk mitigation. This is a senior-level position on our Platform Security team. The ideal candidate is highly experienced with Azure architecture and design, is comfortable with all areas of Azure IaaS and PaaS including but not limited to Azure Active Directory, Identity & Access Management, Servers, Storage Accounts, DNS, SSL Certificates & Certificate Management, SQL, Application Gateways, App Services, AKS, Docker and performance metrics & tuning. The role will be responsible for managing and maintaining existing solutions as well as assisting with new solutions in both containerized and serverless workloads working with architects and engineers to develop proof of concepts and development frameworks that can be leveraged by engineering teams. This position will involve facilitating knowledge transfer and socializing our security practices within our cloud & network architectures and our workflow processes. The ability to multi-task, while maintaining structure and organization, is essential in this position. The ideal candidate for this job is resourceful, an excellent problem solver, and a superb communicator. Who We Are: We're a $10+ billion, rapidly growing workforce solutions provider in the healthcare industry. We deliver tech-enabled services that help healthcare organizations meet and manage their contingent labor needs. We build and manage tech-enabled marketplaces for national and local healthcare talent and deliver contingent labor management solutions through our proprietary software platform. At Aya, we're obsessed with creating exceptional experiences for our clients, clinicians, and employees. In fact, we put employee satisfaction above all else. Our team members are responsible for incomparable customer experience and we know that happy employees are critical to maintaining happy clients. We foster an entrepreneurial, high-energy, low-bureaucracy culture and value innovative thinking and creative problem-solving. We embrace diversity in thought and backgrounds unified by a commitment to high achievement. When you join Aya, you'll be surrounded by teammates who care about you as an individual and leaders who will help you grow both personally and professionally. Responsibilities: Collaboratively plan, implement, and maintain Azure cloud-based security processes and solutions with a focus on networking, virtual servers, web applications, databases and storage. Experience with one or more scripting languages such as PowerShell, Bash, Azure CLI, ARM Templates, Terraform is preferred. Make recommendations regarding vulnerability management and remediation to the DevOps & development teams on areas related to the security of the platform. Demonstrate a strong initiative and follow through in executing project responsibilities, overcoming obstacles, and balancing multiple priorities effectively. Strong awareness of networking and internet protocols, including TCP/IP, DNS, SMTP, HTTP, SSL/TLS, and distributed networks. Should be able to understand overall VLAN design, ACL rules, route tables, firewall rules, and Azure Policy. Coordinate with various teams to provide uninterrupted delivery of security services to ensure architecture meets compliance and operational security requirements. Required Qualifications: Systems/Security engineering: 10+ years Microsoft Azure: 5+ years Experience in a technical lead role with a deep understanding of Azure Architectures. Strong interpersonal skills - team player, personable, professional, and organized. Takes initiative, uses tact and diplomacy. Ability to define problems, collect data, establish facts and draw valid conclusions. Strong communication (written and verbal) and presentation skills. Working collaboratively across teams to drive risk reduction and security adoption. Experience with network, hardware and software security architectures and design evolution at various levels of the design lifecycle. String experience with security controls, architectures and operations. Hands on experience with AKS, Docker and it's security/networking is a must. Intermediate to advanced experience with Terraform is required. AI/ML security controls and solutions experience. Experience designing and implementing automated remediation workflows. Good understanding of DEVOPS and GitHub actions. Ability to design and deploy policy as code for multiple cloud environments. Familiarity with data privacy and similar regulatory and contractual requirements is a plus. Azure Security/CISSP/Certifications a plus. What We Offer: Free premium medical, dental, life and vision insurance Generous 401(k) match Aya also offers other benefits to those that are eligible and where required by applicable law, including reimbursements and discretionary bonuses Aya provides paid sick leave in accordance with all applicable state, federal, and local laws. Aya's general sick leave policy is that employees accrue one hour of paid sick leave for every 30 hours worked. However, to the extent any provisions of the statement above conflict with any applicable paid sick leave laws, the applicable paid sick leave laws are controlling Celebrations! We hit our goals and reward ourselves. Company-sponsored virtual events, happy hours and team-building activities are always on the horizon - plus, you get a special treat on your birthday! Unlimited DTO - we believe in time off! Virtual yoga, meditation or boot camp classes offered daily Compensation: Aya reasonably anticipates the pay scale for this position to be an annual salary of $170,000 to $190,000. The pay scale for this position may vary if applicant possesses experience outside of what Aya reasonably anticipates for this position. Bonuses are subject to the role and your manager's discretion. Aya is an Equal Opportunity Employer (EEO), including Disability / Vets, and welcomes all to apply. Please click here for our EEO policy

The Sr. Security Engineer is part of the Global IT, Security & Compliance (CISO) team, supporting security across IT, OT, and cloud environments. This role involves managing internal security platforms, partnering with our 24/7 MDR provider, responding to incidents, and integrating security into company-wide initiatives. The Senior SOC Engineer drives threat detection engineering, response automation, and security visibility across endpoints, networks, and cloud infrastructure. They are responsible for the technical leadership of SOC activities, mentoring junior engineers, optimizing integrations (Zscaler, Sentinel, Vulnerability management tools), and contributing to the global security roadmap and incident response program. What you will do * Lead and support internal incident management, including triage, containment, remediation, and post-incident reviews. * Act as the primary interface with our external MDR team for alerts, investigations, and incident handling. * Onboard and integrate new log/data sources into security monitoring. * Monitor vulnerabilities and support patch management coordination. * Design, manage, maintain, and optimize internal security applications such as EDR/XDR, SIEM, SOAR, IAM, PAM, vulnerability management, and DLP. * Develop and automate operational processes, playbooks, and response workflows. * Partner with IT, OT, and business teams to embed security into projects (cloud, infrastructure, workplace, OT). * Support OT security initiatives, including securing industrial control systems, legacy systems, and production environments. * Contribute to security architecture and roadmap initiatives. * Act as a security advocate to promote best practices and raise awareness across teams. * Design modern, user-friendly security solutions that balance usability, compliance, and risk reduction. Qualifications * Bachelor's degree in information security, computer science, or engineering * Master's degree in information security, computer science, or engineering (preferred) * 5 years' experience working in or with a SOC or MDR environment * Strong understanding of incident response processes and digital forensics basics * Knowledge of security frameworks and standards (ISO 27001, NIST, CIS, MITRE ATT&CK) * Ability to design and implement modern, user-friendly security solutions that drive adoption across business and IT/OT stakeholders * Excellent communication skills to collaborate with IT, OT, and business stakeholders * Analytical mindset with problem-solving ability * Relevant certifications are a plus (e.g., GCIA, GCIH, GCED, Azure Security Engineer, CISSP, Security+) * EDR/XDR and endpoint security (Microsoft Defender) * SIEM/SOAR administration and tuning (Microsoft Sentinel) * Understanding of Identity and Access Management (IAM, PAM, MFA) * Vulnerability management tools and remediation workflows * Cloud security (Azure, AWS, GCP) * Scripting/automation * OT security (ICS/SCADA, IIoT, legacy systems) desirable Base salary range: $112,640 - $154,880 Placement of new hires in this wage range is based on several factors including education, skill sets, experience, and training. Total Rewards We offer all Team Members a total rewards package including competitive pay, annual performance bonus, a generous benefit package with comprehensive Medical/Dental/Vision coverage, 401(k) plan with employer contribution, and paid vacation, personal and sick days. Corporate Social Responsibility Bachem takes responsibility for future generations by a careful handling of resources and avoiding environmental risks. We continually improve our ecological performance and develop and implement new approaches for enhancing employees' environmental awareness. EcoVadis has awarded Bachem Gold Medal status in their assessment of Bachem. Bachem Americas is an Equal Opportunity Employer As an equal opportunity employer, we celebrate the diversity of our team and are committed to building an inclusive workplace where individuals are hired and advanced based on merit, skills, and qualifications. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or other legally protected status. Please note: unsolicited resumes from recruitment agencies will not be considered. Share this job posting by email

Data Intelligence, LLC is seeking a highly experienced Cyber Security Lead / Information Systems Security Officer (ISSO) to support cybersecurity operations and compliance for Navy and Department of Defense (DoD) systems. This role requires deep expertise in Information Assurance (IA), cybersecurity compliance frameworks, and Navy-specific cybersecurity practices. The ideal candidate will have extensive experience working with Navy Cross Domain Solutions (NCDSO) and a strong technical background in military C4I/IT systems. Key Responsibilities: Serve as the Cyber Security Lead/ISSO for classified and unclassified Navy/DoD systems. Lead Risk Management Framework (RMF) efforts in accordance with DoD 8500 Series, NIST SP 800 Series, and other applicable cybersecurity policies and guidelines. Develop, review, and manage technical documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plan of Action & Milestones (POA&Ms). Interface with the Navy Cross Domain Solutions Office (NCDSO) to support secure cross-domain solutions, including submission packages and coordination of approvals. Provide subject matter expertise in support of system security engineering, integration, and testing. Coordinate with system engineers, developers, and stakeholders to ensure security controls are effectively implemented. Monitor systems for compliance with DFARS Clause ************ and other DoD IA requirements. Assist in the preparation and review of technical instructions, engineering plans, and test-related documentation. Maintain up-to-date knowledge of emerging cybersecurity threats, tools, and regulatory requirements. Support system Certification and Accreditation (C&A) processes in accordance with NSA and DoD standards. Required Qualifications: Education: Master's degree from an accredited college or university in Computer Science, Information Systems Management, Cybersecurity, or a related field. Experience: Minimum of 10 years of Navy or DoD experience in Information Assurance and Cybersecurity. At least 5 years of recent experience (within the last 5 years) directly supporting Navy cybersecurity programs and RMF processes. Direct experience with the Navy Cross Domain Solutions Office (NCDSO) within the last five years. Demonstrated expertise in DoD cybersecurity requirements, including the DoD 8500 Series and NIST SP 800 Series. Experience with engineering documentation including technical instructions, engineering plans, and systems integration documents. Strong understanding of military C4I/IT systems, including Navy SATCOM (MILSATCOM and Commercial), Tactical Communications, and GPS systems. High familiarity with the NSA certification process for secure systems. Certifications: Compliant with DFARS Clause ************ for Information Assurance Contractor Training and Certification (e.g., CISSP, CISM, Security+, or equivalent). Security Clearance: Must hold an active Top Secret / SCI (TS/SCI) clearance. Preferred Skills: Strong leadership and communication skills with the ability to brief senior stakeholders. Ability to lead complex cybersecurity projects with minimal supervision. In-depth knowledge of secure system design and implementation in classified environments. Experience collaborating with cybersecurity authorities across Navy and DoD organizations. About Data Intelligence, LLC: Data Intelligence, LLC (DI) is a small business that provides Information Technology System Development (Agile, DevSecOps, Cloud Platform support) Cybersecurity (RMF, Security Engineering, Cross Domain Solutions), Tactical Data Link Standards Development and Testing, and Logistics/Warehousing services to U.S. federal clients both CONUS and OCONUS. DI consistently demonstrates exceptional customer service, maintains an employee-centric culture, and delivers hands-on technical expertise to help our clients achieve their mission. Since 2005, DI has successfully provided IT Systems Engineering, Software Development, Cybersecurity, and supporting solutions and services to customers that include the Department of Defense, Intelligence, and Federal Civilian clients. Current clients include the US Navy, Air Force, Army, Marine Corps, Coast Guard, National Geospatial-Intelligence Agency, Defense Logistics Agency, and The Department of Homeland Security. DI is headquartered in Marlton, New Jersey, with satellite offices in California, Maryland, Ohio, Pennsylvania, Virginia, and Washington, D.C. Why you should join us: Data Intelligence offers competitive salaries, comprehensive benefits, a team-oriented environment, and opportunities for advancement. Our excellent employee retention record reflects our employee focus. We work with Veteran's organization to proactively hire those who have served our country. We offer medical, dental and vision insurance, 401k, PTO and 11 paid holidays. Data Intelligence is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Saronic Technologies is a leader in revolutionizing defense autonomy at sea, dedicated to developing state-of-the-art solutions that enhance maritime operations for the Department of Defense (DoD) through autonomous and intelligent platforms. As a Corporate Security Engineer, you'll safeguard the systems that power Saronic's mission. You'll engineer, harden, and operate Microsoft 365 and AWS environments to meet defense-grade security requirements while protecting our people, data, and operations. You'll own the protection of every employee, system, and credential. Your work will secure the full user lifecycle by automating onboarding/offboarding, protecting remote and traveling employees, and minimizing human-targeted risks like phishing and social engineering. You will design secure-by-default platforms, automate compliance and monitoring through cloud solutions, and ensure our environments remain resilient, frictionless, and compliant. At Saronic, security is a force multiplier; security is not a blocker. You will have the autonomy to build and the mandate to innovate, working side-by-side with engineers who are developing technology that directly supports national defense. This role is ideal for someone who wants to own security at scale, shape a defense-grade security program, and see their impact every day. You'll thrive here if you're driven by mission, biased toward action, and enjoy working in a high-trust, low-ego team that values resilience, integrity, and creativity. Key Responsibilities: Cloud and Identity Security Administer and secure multiple Microsoft 365 GCC High and Microsoft 365 commercial tenants and AWS GovCloud and commercial accounts to align with NIST SP 800-171, NIST CSF, and ISO 27001 standards Configure and harden identity and access management (Entra ID, AWS IAM), data loss prevention (Purview), and conditional access policies to enforce multi-factor authentication, single sign-on, and least privilege Implement security guardrails and automation in partnership with IT and DevOps teams using Infrastructure as Code (Terraform, Ansible, CloudFormation) Continuously drive security automation and visibility improvements across people, process, and technology User and Endpoint Security Engineer and enforce secure device baselines and policies via Intune and Jamf for unified endpoint management Configure and maintain endpoint protection platforms (Defender, CrowdStrike) Secure the user lifecycle through automated identity and device provisioning/de-provisioning, least-privilege enforcement, remote and traveling employee protection, and anomalous behavior monitoring Reduce phishing and user-targeted threats through identity hardening, email protections, and user awareness feedback loops Network Security Engineer and maintain secure network architectures across global offices, remote, and cloud environments through VPNs, network segmentation, DNS filtering, secure network connectivity, and firewall configurations Lead vulnerability, configuration, and asset management to maintain secure baselines and visibility across all enterprise systems Support incident response through automation, playbooks, and forensic readiness Application Security Harden and monitor SaaS applications through secure SaaS controls, SSO/SAML enforcement, SCIM provisioning, and least privilege Manage shadow IT detection, vendor risk reviews, and data protection Required Qualifications: 3+ years proven experience administering and securing Microsoft 365 through Intune + Jamf, Entra ID, Defender, Purview, and Sentinel Hands-on experience securing AWS environments, including secure configurations of IAM, GuardDuty, CloudTrail, Config, Security Hub, and encryption/key management controls Proven proficiency in scripting and automation (i.e., Python, PowerShell, Bash) Familiarity with cloud and identity ecosystems (i.e., Azure, AWS, Okta, Entra ID, Active Directory) This role requires the ability to obtain and maintain a security clearance Preferred Qualifications: Experience with highly regulated frameworks such as NIST SP 800-171, NIST SP 800-53, ISO 27001, or FedRAMP Familiarity with cloud and endpoint observability and EDR tools (i.e., Defender, CrowdStrike, Sentinel, Splunk) Demonstrated experience automating compliance and audit processes Experience implementing and managing secure cloud architecture and controls using Infrastructure as Code tools (i.e., Terraform, CloudFormation, Ansible) Proven ability to design and operate Zero Trust Network Access Experience implementing network intrusion detection and response tools Demonstrated ability to evaluate SaaS vendor security posture and integrate approved applications securely into the environment Background in defense, aerospace, or high-assurance manufacturing Relevant security certifications (SC-100, MS-500, MD-102, AWS Certified Security - Specialty, GCSA, GCIA, CISSP, CCSP) Physical Demands Prolonged periods of sitting and computer work Occasional standing and walking within the office Manual dexterity to operate computers and office equipment Visual acuity to read screens and documents Occasional reaching or lifting up to 20 pounds (e.g., equipment or supplies) Benefits:Medical Insurance: Comprehensive health insurance plans covering a range of services Saronic pays 100% of the premium for employees and 80% for dependents Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents Time Off: Generous PTO and HolidaysParental Leave: Paid maternity and paternity leave to support new parents Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses Retirement Plan: 401(k) plan Stock Options: Equity options to give employees a stake in the company's success Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office This role requires access to export-controlled information or items that require “U.S. Person” status. As defined by U.S. law, individuals who are any one of the following are considered to be a “U.S. Person”: (1) U.S. citizens, (2) legal permanent residents (a.k.a. green card holders), and (3) certain protected classes of asylees and refugees, as defined in 8 U.S.C. 1324b(a)(3) . Saronic does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity or any other reason prohibited by law in provision of employment opportunities and benefits.

Exemption Status:United States of America (Exempt)$110,982 - $155,376 - $199,769 “Pay scale information is not necessarily reflective of actual compensation that may be earned, nor a promise of any specific pay for any selected candidate or employee, which is always dependent on actual experience, education, qualifications, and other factors. A full review of our comprehensive pay and benefits will be discussed at the offer stage with the selected candidate.” This position is not eligible for Sponsorship. MedImpact Healthcare Systems, Inc. is looking for extraordinary people to join our team! Why join MedImpact? Because our success is dependent on you; innovative professionals with top notch skills who thrive on opportunity, high performance, and teamwork. We look for individuals who want to work on a team that cares about making a difference in the value of healthcare. At MedImpact, we deliver leading edge pharmaceutical and technology related solutions that dramatically improve the value of health care. We provide superior outcomes to those we serve through innovative products, systems, and services that provide transparency and promote choice in decision making. Our vision is to set the standard in providing solutions that optimize satisfaction, service, cost, and quality in the healthcare industry. We are the premier Pharmacy Benefits Management solution! Job Description Summary The Information Security Engineer II develops, executes, and monitors enterprise-wide information security from policy through implementation across all Security departments including SECOPS, DEVSECOPS and Threat Analytics. This position expands the duties of the Security Engineer I to include direct security support for departments in corporate subsidiaries with identified areas of need which require experienced oversight. This position is required to ensure that business information is secure from unauthorized access, protected from inappropriate alteration, and is physically secure. This “hands-on” position serves as the process owner for all ongoing security activities and is responsible for the protection of the confidentiality and integrity of client, employee, and proprietary business information in accordance with federal/state laws and regulations. Enforcement of and adherence to MedImpact's corporate policies and procedures is required by all Security team members. Essential Duties and Responsibilities include the following. Other duties may be assigned. Enforces policy and supports security procedures, applications, and systems through the documentation of the resolution of assigned cases that range from simple to complex. Recommends changes to existing security process and procedures. Ability to utilize Endpoint Threat Detection and Response/Hunting toolsets Creates requirements for product evaluations and/or procedures to enhance productivity and effectiveness. Provides direct support to the business and IT staff for security related issues. Drives the delivery of new and upgraded security applications, systems, and workflow. Tests new systems for effective operations. Leads efforts to proactively maintain and improve the automation, reliability, consistency, and the quality of existing IT security tools and environments throughout the organization. Assists in the design, deployment, integration and configuration of security solutions or enhancements to ensure functionality. Ensures the confidentiality, integrity, and availability of data residing on or transmitted to, from, or through the enterprise workstations, servers, application systems, and data repositories. Initiates, facilitates, and promotes activities to create information security awareness. Disseminates and educates users on security policies and practices. Participates in regular security awareness training and updates to ensure consistent compliance with IT Security Policies. Works cross-functionally and interacts with internal business units and stakeholders to support the business' needs. Using an automated customer case request system, tracks and documents security service requests and completed cases. Participates in daily activities and reporting required for regulatory and contractual information security obligations. Coordinates tasks that are performed within the infrastructure (system administration, network administration, application support, etc.) for security updates and initiatives. Performs analysis, design and development of security features for system architecture. Participates in security incident investigations and provides on-going communication to security management. Identifies root causes of security events and proposes solutions; closes out and documents investigations. Ensures confidentiality and appropriate personnel are involved in the investigation. Maintains up-to-date industry knowledge through formal/informal training, industry associations and research of latest technologies critical to the success of the company's information security program. Continuously works to identify and improve security solutions to defend the company against data security threats. Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately. Provides guidance/training to less experienced staff. Apprises and keeps management aware of security issues; handles and/or escalates issues appropriately. Provides IT Security consultative support to internal and external clients. Manages IT Security related projects and assignments as assigned. Supervisory Responsibilities No supervisory responsibilities Client Responsibilities This is an internal and external client facing position that requires excellent customer service skills and interpersonal communication skills (listening/verbal/written). One must be able to; manage difficult or emotional client situations; Respond promptly to client needs; Solicit client feedback to improve service; Respond to requests for service and assistance from clients; Meet commitments to clients. Qualifications To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. Education and/or Experience BS/BA and 8+ years' experience or equivalent combination of education and experience, and 4 years of SME in respective areas Computer Skills To perform this job successfully, an individual should have knowledge of Microsoft Office Suite. Additional expertise is required in the following: Endpoint Management Experience (BigFix, WSUS/SCCM, Symantec, Trend Micro, etc) Identity and Access Management Certificate Management Patch Management (Windows and Unix) Intrusion Detection and Prevention Security Awareness Training Mobile Device Management EDR (Endpoint detection and response) Web Content Filtering Device Encryption Vulnerability Assessment Tools Firewall and VPN Secure E-mail, Anti-SPAM Webserver applications Web API Service Security Business Continuity (Disaster Recovery) Compliance and Audit (HIPAA, HITRUST, SOC, GovRAMP and PCI a plus) OS Administration (Windows, Linux and Unix) Authentication and SSO Container Security Certificates, Licenses, Registrations Security Certification strongly preferred OWASP, ISSA, ISACA membership a plus Other Skills and Abilities Must have excellent analytical, problem solving and communication skills. Familiarity with SSAE SOC 1 and SOC 2, HITRUST, federal/state security and privacy frameworks, HIPAA, PCI and regulatory requirements for information security. Must be able to work on a team and build good working relationships with team members and internal clients. Must have good understanding of standard policies and procedures for information security. Reasoning Ability Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to define problems, collect data, establish facts, and draw valid conclusions. Mathematical Skills Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations. Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs. Language Skills Ability to respond to common inquiries or complaints from customers, regulatory agencies, or members of the business community. Ability to respond effectively to the most sensitive inquiries or complaints. Competencies To perform the job successfully, an individual should demonstrate the following competencies: Composure Decision Quality Organizational Agility Problem Solving Customer Focus Drive for Results Peer Relations Time Management Dealing with Ambiguity Learning on the Fly Political Savvy Physical Demands The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this Job, the employee is regularly required to sit and talk or hear. The employee is regularly required to stand; walk; use hands to finger, handle, or feel and reach with hands and arms. The employee must occasionally lift and/or move up to 25 pounds. Work Environment The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions. This position may regularly be exposed to or encounter moving mechanical parts, high, precarious places, fumes or airborne particles, toxic or caustic chemicals, outdoor weather conditions, risk of electrical shock or vibration. The noise level in the work environment is usually moderate (examples: business office with computers and printers, light traffic). Work Location This position must work on-site at the San Diego Headquarters for purposes of providing adequate support to internal clients; being available for face-to-face interactions and coordination of work with other employees, colleagues, clients, or vendors; as well as for facilitation of quick and effective decisions through collaboration with stakeholders. Remote work is not an option for these purposes. Working Hours This is an exempt level position requiring the incumbent to work the hours required to fully accomplish job responsibilities and reasonably meet deadlines for work deliverables. The individual must have the flexibility to work beyond traditional hours and be able to work nights, at weekends or on holidays as required. Work hours may be changed from time to time to meet the needs of the business. Typical core business hours are Monday through Friday from 8:00am to 5:00pm. Travel This position requires domestic travel of up to 10% of the time. The Perks: Medical / Dental / Vision / Wellness Programs Paid Time Off / Company Paid Holidays Incentive Compensation 401K with Company match Life and Disability Insurance Tuition Reimbursement Employee Referral Bonus To explore all that MedImpact has to offer, and the greatness you can bring to our teams, please submit your resume to ************************* MedImpact, is a privately-held pharmacy benefit manager (PBM) headquartered in San Diego, California. Our solutions and services positively influence healthcare outcomes and expenditures, improving the position of our clients in the market. MedImpact offers high-value solutions to payers, providers and consumers of healthcare in the U.S. and foreign markets. Equal Opportunity Employer, Male/Female/Disabilities/VeteransOSHA/ADA: To perform this job successfully, the successful candidate must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Disclaimer: The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.

Job DescriptionDescriptionCybersecurity Lead/Information Systems Security Officer (ISSO) Support WHO WE ARE: STAHL Companies provides the Program Management for its Channel of Commercial Technology companies in Government that consist of Small Businesses and New Technology start-ups. STAHL advocates for policies that can improve government services and maintain our government's competitive advantage, by bringing more technology into government programs. STAHL Companies advocates on behalf of our nation's innovative, new technology and small businesses looking to work with the U.S. government. We do this by aligning the voice of our small business members with advocacy for change in federal policy that will make the government market more accessible to small businesses and the commercial technology ecosystem. The Channel's founding Technical Board Members include former government leaders and IT executives passionate about bringing best-of-breed technology to the government. We are seeking a skilled and experienced Cybersecurity Lead/Information Systems Security Officer (ISSO) Support to join our team! Responsibilities: · Serve as the primary cybersecurity authority and Information Systems Security Officer (ISSO) in support of Navy and Department of Defense (DoD) program objectives.· Oversee implementation and sustainment of Risk Management Framework (RMF) processes in alignment with DoD 8500 Series, NIST SP 800 Series, and related cybersecurity directives.· Lead the development, review, and approval of cybersecurity documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Continuous Monitoring strategies.· Provide subject matter expertise in Information Assurance (IA) and cybersecurity policy, ensuring compliance with DFARS Clause ************ and other applicable regulations.· Coordinate and engage with the Navy Cross Domain Solutions Office (NCDSO) to facilitate approval, certification, and integration of secure cross-domain solutions.· Manage and conduct vulnerability assessments, security audits, penetration testing, and risk analysis to safeguard Navy C4I/IT systems, including MILSATCOM, Commercial SATCOM, Tactical Communications, and GPS-enabled platforms.· Support Certification & Accreditation (C&A) and Authority to Operate (ATO) activities, ensuring timely approval and secure system deployment.· Interface with NSA and other accreditation authorities to navigate the certification process for secure communications systems.· Provide senior-level guidance and oversight on cybersecurity architecture, system hardening, encryption standards, and secure configuration baselines.· Deliver executive-level briefings, reports, and recommendations to program leadership, senior DoD stakeholders, and government oversight entities.· Mentor and train technical staff, promoting compliance, cybersecurity awareness, and professional growth across the program team.· Ensure all cybersecurity measures align with TS/SCI security requirements to protect classified information and maintain mission readiness. Qualifications:· Master's degree from an accredited college or university (Master's in computer science, or information systems management desired).· Minimum 10 years of Navy or DoD experience in Information Assurance and Cybersecurity which includes experience in all aspects of CS TA requirements and the DoD 8500 Series and NIST SP 800 Series, including RMF. Experience must be within the last five years.· Experience working with the Navy Cross Domain Solutions Office (NCDSO) within the last five years.· Demonstrated knowledge of military C4I/IT products; with specific Navy Communications (SATCOM-both MILSATCOM and Commercial), Tactical Communications and GPS knowledge.· High familiarity with NSA certification process· Training and Certification in accordance with DFARS Clause ************, Information Assurance Contractor Training and Certification· TS/SCI *Position is contingent upon award. Work Location: San Diego, CA To know more about the company, visit Stahl Companies (stahlusa.us) Key Responsibilities· Serve as the primary cybersecurity authority and Information Systems Security Officer (ISSO) in support of Navy and Department of Defense (DoD) program objectives.· Oversee implementation and sustainment of Risk Management Framework (RMF) processes in alignment with DoD 8500 Series, NIST SP 800 Series, and related cybersecurity directives.· Lead the development, review, and approval of cybersecurity documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Continuous Monitoring strategies.· Provide subject matter expertise in Information Assurance (IA) and cybersecurity policy, ensuring compliance with DFARS Clause ************ and other applicable regulations.· Coordinate and engage with the Navy Cross Domain Solutions Office (NCDSO) to facilitate approval, certification, and integration of secure cross-domain solutions.· Manage and conduct vulnerability assessments, security audits, penetration testing, and risk analysis to safeguard Navy C4I/IT systems, including MILSATCOM, Commercial SATCOM, Tactical Communications, and GPS-enabled platforms.· Support Certification & Accreditation (C&A) and Authority to Operate (ATO) activities, ensuring timely approval and secure system deployment.· Interface with NSA and other accreditation authorities to navigate the certification process for secure communications systems.· Provide senior-level guidance and oversight on cybersecurity architecture, system hardening, encryption standards, and secure configuration baselines.· Deliver executive-level briefings, reports, and recommendations to program leadership, senior DoD stakeholders, and government oversight entities.· Mentor and train technical staff, promoting compliance, cybersecurity awareness, and professional growth across the program team.· Ensure all cybersecurity measures align with TS/SCI security requirements to protect classified information and maintain mission readiness.