Security architect jobs in Yuba City, CA - 45 jobs

Join a multibillion-dollar global company that brings together amazing technology, people, and operational scale to become a powerhouse in the memory industry. Headquartered in Rancho Cordova, California, Solidigm combines elements of an established, successful technology company with the spirit, agility, and entrepreneurial mindset of a start-up. In addition to the U.S. headquarters and other facilities in the U.S., the company has international presence in Asia, Europe, and the Americas. Solidigm will continue to lead the world in innovating new Memory technologies with aspirations to be the #1 NAND memory company in the world. At Solidigm, we view problems as opportunities to define innovative solutions that hold the power to change the world and unleash the potential technological needs that the future holds. At Solidigm, we are One Team that fosters a diverse, equitable, and inclusive culture that embraces individual uniqueness and empowers us to bring our best selves to deliver excellence in support of Solidigm's vision and mission to be the go-to partner for optimized data storage solutions. You can be part of the takeoff of an innovative business that develops cutting-edge products, delivers strong business value for customers, provides an engaging workplace for its employees, and serves a greater impact on the world. This is a golden opportunity for the right applicant to join us and help design, build, and lead Solidigm. We want a diverse team of dedicated professionals who will not just be Solidigm team members but contribute to how we shape the future of the organization. We are seeking applicants who will grow and thrive in our culture; be customer inspired, trusting, innovative, team-oriented, inclusive, results driven, collaborative, passionate, and flexible. Job Description As an SSD Hardware Security Architect, you will be an integral part of defining and driving new security technologies for future Data Center SSD products. Responsible for secure design, development and operation of Solidigm's hardware and software products and services. Responsibilities may include threat assessments, design of security components, and vulnerability assessment. Ensures products conform to standards and specifications. Develops plans and cost estimates and assesses projects to analyze risks. Responds to customer/client requests or events as they occur. Develops solutions to problems utilizing formal education, judgment and formal processes. Maintains substantial knowledge of state-of-the-art security principles, theories, attacks and contributes to literature and conferences. May participate in development of intellectual property. Requires thorough knowledge of security practices, procedures and capabilities in order to perform non-repetitive, analytical work. Key Responsibilities Architect and define hardware security features and cryptographic primitives for upcoming SSD products. This will be performed through defining technical specifications, training and technical mentoring. Perform threat modeling and devise mitigation strategies. Participate in security reviews and risk assessments throughout the product lifecycle. Collaborate with cross-functional teams (SoC, firmware, validation, etc.) to integrate security into product designs. Provide architectural support for security features in development. Research emerging hardware security technologies and assess their applicability to future products. Collaborate with other architects and product planners on Solidigm's security feature roadmap. Monitor industry trends and participate in standards bodies to influence specifications and ensure Solidigm's leadership in secure storage. Represent Solidigm in external forums and working groups to shape the future of hardware security. Mentor junior engineers and contribute to a culture of security excellence and continuous learning. Qualifications Bachelor's or master's degree in electrical engineering, Computer Engineering, or related field. 10+ years of experience in hardware architecture and security design. Prior experience in hardware design is required-preferably in security, but not mandatory. Proven background in researching, recommending, and specifying security features Proven background in cryptography and/or applied cryptography. Familiarity with latest developments in postquantum cryptographic algorithms Deep understanding of hardware threat modeling, secure silicon design, and cryptographic implementations. Familiarity with relevant industry standards (e.g. NIST Special Publications, FIPS 203 - 205, etc.) Excellent verbal and written communication, leadership, and collaboration skills. Preferred Qualifications Experience with formal verification of security hardware components. Prior involvement in industry standards organizations or technical working groups. Additional Information The compensation range for this role is $132,940 - $209,760 USD. Actual compensation is influenced by a variety of factors including but not limited to skills, experience, qualifications, and geographic location. This is a Hybrid role that can report out of any of the following Solidigm offices: Rancho Cordova California; Longmont Colorado; or Vancouver BC CAN. Powered by SmartRecruiters - Candidate Privacy Policy

Exciting Security Architect / Engineer - Zero Trust Architecture contract opportunity. Requirements 5 plus years of experience as a Security Architect / Engineer with expertise evaluating Zero Trust Architecture (ZTA). ZTA implementation roadmap (Plan, Schedule, and Decks), Cybersecurity Program and Architecture Risk Review and architect and engineer support for Zero Trust Architecture (ZTA) implementation activities Experience evaluating, recommending, and implementing commercial hardware and software security products to augment and enhance enterprise cybersecurity program. Experience with system, device, and application-level hardening and assessing the cybersecurity posture of software, hardware, and firmware. Experience with supporting an integrated, dynamic cyber defense and leveraging cybersecurity solutions to deliver cybersecurity operational services. Experience researching emerging technology, requisite security requirements, and emerging threats to develop a way forward to meet organizational goals B.S computer Science (CS), Management of Information Systems (MIS), Electrical Engineering (EE), or Cybersecurity from an accredited University. DESIRABLE QUALIFICATIONS: ISC2 Certified Information Systems Security Professional (CISSP), ISC2 Certified - Governance Risk and Compliance (CGRC) or Certified Authorization Professional (CAP), ISACA Certified Information Security Manager (CISM), ISACA Certified in Risk and Information Systems Control (CRISC), CompTIA Certified Advanced Security Practitioner (CASAP+), CompTIA Security+

Job Description Exciting Security Architect / Engineer - Zero Trust Architecture contract opportunity. Requirements 5 plus years of experience as a Security Architect / Engineer with expertise evaluating Zero Trust Architecture (ZTA). ZTA implementation roadmap (Plan, Schedule, and Decks), Cybersecurity Program and Architecture Risk Review and architect and engineer support for Zero Trust Architecture (ZTA) implementation activities Experience evaluating, recommending, and implementing commercial hardware and software security products to augment and enhance enterprise cybersecurity program. Experience with system, device, and application-level hardening and assessing the cybersecurity posture of software, hardware, and firmware. Experience with supporting an integrated, dynamic cyber defense and leveraging cybersecurity solutions to deliver cybersecurity operational services. Experience researching emerging technology, requisite security requirements, and emerging threats to develop a way forward to meet organizational goals B.S computer Science (CS), Management of Information Systems (MIS), Electrical Engineering (EE), or Cybersecurity from an accredited University. DESIRABLE QUALIFICATIONS: ISC2 Certified Information Systems Security Professional (CISSP), ISC2 Certified - Governance Risk and Compliance (CGRC) or Certified Authorization Professional (CAP), ISACA Certified Information Security Manager (CISM), ISACA Certified in Risk and Information Systems Control (CRISC), CompTIA Certified Advanced Security Practitioner (CASAP+), CompTIA Security+

** **Work with Us. Change the World.** At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations. There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. We're one global team driven by our common purpose to deliver a better world. Join us. **Job Description** **AECOM** is searching for an experienced architect to be located at one of our main offices in the West Region - **Denver, CO; Chicago, IL; Houston, TX; San Francisco, San Diego, Sacramento, Los Angeles, CA; Seattle, WA ; Columbus, Cleveland, OH** . Other AECOM office locations may be considered. The Secure Spaces Architect will lead the design, development, and delivery of secure facilities for Federal clients, in compliance with Intelligence Community Directive (ICD) 705 and other applicable standards. This senior-level role requires a deep understanding of secure space requirements, including Sensitive Compartmented Information Facilities (SCIFs) or Special Access Program Facility (SAPF), secure communications centers, and other classified environments. The Secured Spaces Architect will collaborate with multidisciplinary teams, Federal agencies, and contractors to deliver innovative, compliant, and functional designs that meet the unique needs of secure operations. As a subject matter expert, the Secure Spaces Architect will also provide strategic guidance, mentor junior staff, and contribute to business development efforts by supporting proposals and client engagement. Key Responsibilities Design Leadership * Lead the architectural design of secure spaces, including SCIFs, SAPF, secure conference rooms, and other classified environments, in compliance with ICD-705, DoD standards, and client-specific requirements. * Collaborate with Accrediting Official (AO), and supports the development of Construction Surveillance Plans (CSP). * Develop detailed design documentation, including floor plans, elevations, and specifications, that meet security, operational, and aesthetic goals. * Provides technical coordination both in with designers and contractor for the design of acoustical and Radio Frequency (RF) shielding requirements in compliance with UFC 4-010-05 and ICD 705. * Collaborate with engineers, security consultants, and other disciplines to integrate physical security measures, such as access control, intrusion detection, and acoustic protection, into facility designs. * Conduct design reviews and oversee quality assurance to ensure adherence to Federal standards and project objectives. Client Engagement * Leads client engagement activities for assigned clients and assigned target clients. Identifies opportunities and manages team efforts for submittals, proposals, presentations, contract negotiation, marketing communications, trade shows and related activities. Participates in go/no-go evaluations, may also include fee proposal develop, project workplan execution in collaboration with the regional director of operations. * Serve as the primary point of contact for Federal clients, providing expert guidance on secure space requirements and design solutions. Develops new client relationships and maintains AECOM's outstanding client reputation in the federal market. * Facilitate client workshops, charrettes, and meetings to gather requirements, present designs, and address feedback. * Build and maintain strong relationships with Federal agencies, contractors, and stakeholders to ensure project success and client satisfaction. Compliance and Standards * Maintain up-to-date knowledge of ICD-705, Unified Facilities Criteria (UFC), and other relevant Federal standards. * Conduct security risk assessments and ensure that designs meet accreditation requirements for secure spaces. * Coordinate with security officers, accrediting officials, and other stakeholders to achieve facility certification and accreditation. Business Development * Support Federal business development efforts by contributing to proposals, presentations, and marketing materials related to secure space design. * Identify opportunities for growth in the Federal marketplace and provide strategic input on pursuits and partnerships. * Represent the company at industry events, conferences, and client briefings to showcase expertise in secure facility design. * Leads client engagement activities for assigned clients and assigned target clients. Identifies opportunities and manages team efforts for submittals, proposals, presentations, contract negotiation, marketing communications, trade shows and related activities. Participates in go/no-go evaluations, may also include fee proposal develop, project workplan execution in collaboration with the regional director of operations. * Develops outstanding client relationships. Responsible for client satisfaction, representing AECOM while developing an outstanding reputation in the federal market. Mentorship and Leadership * Mentor junior architects and staff, providing technical guidance and professional development opportunities. * Foster a culture of innovation, collaboration, and excellence within the design team. **The best qualified candidate will embody these critical qualities:** + Strength in understanding of the customer and building type (need to understand how they work and how these buildings are organized) + Strength in customer engagement, facility programming, leadership, communications + Strength in facility planning and space planning (multi-disciplinary systems, utilities organization, etc.) + Understanding of secure networks, security zones, and access control + Understanding of FF&E and its relationship in concert with facility planning fundamentals + At least a strong familiarity with ICD 705 and TEMPEST fundamentals and how they influence the functional planning of secure facilities **Qualifications** Minimum: + Bachelor's in Architecture from an accredited institution and 8 years of related experience + Professional licensure as a Registered Architect (RA) is required. + This position requires U.S. citizenship due to federal contract/security requirements. Preferred: + Masters degree in Architecture + 12 years of architectural experience, with at least 5 years focused on designing secure facilities for Federal clients. + ICD-705 Training Certificate within the last five years. Demonstrated expertise in ICD-705 compliance and the design of SCIFs and other classified environments. + Experience working with Federal agencies such as the Department of Defense (DoD), Intelligence Community (IC), or other classified clients. + Proven track record of leading multidisciplinary teams and delivering complex projects on time and within budget. + Certification in security-related disciplines (e.g., Certified SCIF Designer, PSP, or similar). + Active or recently held security clearance (Secret, TS, or TS/SCI). + Experience with sustainability and energy efficiency in secure facility design. + Knowledge of emerging technologies and trends in secure environments, such as AI-driven security systems and modular SCIFs. + Proficiency in architectural design software, including AutoCAD, Revit, and BIM tools. + Strong understanding of physical security systems, acoustic protection, and technical security countermeasures. + Familiarity with Federal procurement processes, including FAR/DFARS, and experience supporting proposals. + Exceptional communication and presentation skills, with the ability to convey complex ideas to diverse audiences. + Strong problem-solving and decision-making abilities, with a focus on client satisfaction and project success. + Leadership skills to inspire and guide teams, foster collaboration, and drive innovation. **Additional Information** + This position will not offer sponsorship now or in the future. + This position requires U.S. citizenship due to federal contract/security requirements. Offered rate of compensation will be based on individual education, qualifications, experience, and work location. The range for this position is $140000 to $180000. **About AECOM** AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan. AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients' complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle - from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2024. Learn more at aecom.com. **What makes AECOM a great place to work** You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you'll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you've always envisioned. Here, you'll find a welcoming workplace built on respect, collaboration and community-where you have the freedom to grow in a world of opportunity. As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines. **ReqID:** J10137232 **Business Line:** B&P - Buildings & Places **Business Group:** DCS **Strategic Business Unit:** West **Career Area:** Design **Work Location Model:** Hybrid **Compensation:** USD 140000 - USD 180000 - yearly

This job provides Information Security and Risk Management services for the Organization. Works with peers within security, HM Health Solutions customers and application teams to ensure alignment with current and future security needs. Manages activities of various Information Security personnel. Makes decisions on personnel actions (promotions, hiring, terminations, etc.). Develops talent, addresses resource management, cultivates capabilities of staff, planning and coordination of work, and managing performance. Conducts the oversight of security technology products for network, systems, and data. Controls expenses within the operating unit and is responsible for meeting budget goals. Actively contributes to the Information Security ans Risk Management (ISRM) strategic planning process by working with the Directors to develop and implement department strategic plans and action steps that support the corporate strategic objectives. Actively involved in the coordination, implementation, problem solving, communication, and training of new technologies and processes, as they are developed and moved into the environment. Develops and presents Information Security awareness and training programs. **ESSENTIAL RESPONSIBILITIES** + Perform management responsibilities including, but not limited to: involved in hiring and termination decisions; coaching and development; rewards and recognition; performance management and staff productivity. + Plan, organize, staff, direct and control the day-to-day operations of the department; develop and implement policies and programs as necessary; may have budgetary responsibility and authority. + Provide oversight of all aspects of project management to ensure continuous improvement of processes: negotiate and collaborate with leadership and staff to develop security solutions and options; develop and adhere to internal standards and strategies; ensure adherence to approved methodologies; coordinate resources, time, contingency plans and risk management. + Provide leadership to the department: lead and champion organizational change; encourage participation in activities that support relationship development; champion information security innovation; encourage and enforce proper training in regards to security issues. + Ensure compliance to Corporate and Information Security policies, standards and procedures. + Communicate effectively with all levels of the organization: facilitate meetings; plan, design and provide presentations; represent HM Health Solutions with outside entities; prepare divisional procedures, policies, reports and correspondence; spread awareness of new and existing security threats; provide oversight regarding metrics, funding, budgets and resources. + Other duties as assigned or requested. **EDUCATION** **Required** + Bachelor's Degree in Information Security, Information Systems, Information Assurance, Computer Science or related field **Substitutions** + 6 years of relevant experience substitution for a Bachelor's Degree **Preferred** + Master's Degree in Computer Science, Information Security or related field **EXPERIENCE** **Required** + 7 - 10 years in Information Security and/or Information Risk Management and/or Information Technology + 7 - 10 years in developing, communicating and presenting Information Security and Risk Management concepts to varying audiences + 1 - 3 years in mentoring others in a leadership role + 1 - 3 years in Staff Management + 1 - 3 years in developing and executing strategic plans to realize business objectives **Preferred** + 10 - 15 years in Information Security and/or Information Risk Management and/or Information Technology + Experience managing an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework + Experience supporting SSAE 16 or SOC 2 Security Trust Principle audits + Experience establishing budgets and meeting fiduciary goals + Security industry organization participation/leadership (HITRUST, ISACA, InfraGard, ISC2, ISSA, etc.) **LICENSES AND CERTIFICATIONS** **Required** + None **Preferred** + Certified Information Systems Security Professional (CISSP) **OR** + Certified Information Security Manager (CISM) **OR** + Certified in Risk and Information Systems Controls (CRISC) **OR** + Information Technology Infrastructure Library (ITIL) **SKILLS** + Knowledge of regulatory requirements such as Health Insurance Portability and Accountability Act (HIPPA), Payment Card Industry Data Security Standards (PCI DSS), and FIPS-140 + Strong teamwork and interpersonal skills + Experience in leading process improvement initiatives + Ability to motivate high performance, multi-discipline teams + Demonstrated competency in project execution + Demonstrated abilities in relationship management **Languages (Other than English)** None **Travel Requirement** 0% - 25% **PHYSICAL, MENTAL DEMANDS and WORKING CONDITIONS** **Position Type** Office-Based Teaches/Trains others regularly Frequently Travels regularly from the office to various work sites or from site-to-site Occasionally Works primarily out-of-the office selling products/services (Sales employees) Does Not Apply Physical Work Site Required Yes Lifting: up to 10 pounds Does Not Apply Lifting: 10 to 25 pounds Does Not Apply Lifting: 25 to 50 pounds Does Not Apply **_Disclaimer:_** _The job description has been designed to indicate the general nature and essential duties and responsibilities of work performed by employees within this job title. It may not contain a comprehensive inventory of all duties, responsibilities, and qualifications required of employees to do this job._ **_Compliance Requirement_** _: This job adheres to the ethical and legal standards and behavioral expectations as set forth in the code of business conduct and company policies._ _As a component of job responsibilities, employees may have access to covered information, cardholder data, or other confidential customer information that must be protected at all times. In connection with this, all employees must comply with both the Health Insurance Portability Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company's Handbook of Privacy Policies and Practices and Information Security Policy._ _Furthermore, it is every employee's responsibility to comply with the company's Code of Business Conduct. This includes but is not limited to adherence to applicable federal and state laws, rules, and regulations as well as company policies and training requirements._ **Pay Range Minimum:** $108,000.00 **Pay Range Maximum:** $201,800.00 _Base pay is determined by a variety of factors including a candidate's qualifications, experience, and expected contributions, as well as internal peer equity, market, and business considerations. The displayed salary range does not reflect any geographic differential Highmark may apply for certain locations based upon comparative markets._ Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law. We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the email below. For accommodation requests, please contact HR Services Online at ***************************** California Consumer Privacy Act Employees, Contractors, and Applicants Notice Req ID: J269753

Meta Security is looking for a threat intelligence investigator with extensive experience in investigating cyber threats with an intelligence-driven approach. You will be proactively responding to a broad set of security threats, as well as tracking actor groups with an interest or capability to target Meta and its employees. You will also be identifying the gaps in current detections and preventions by long-term intelligence tracking and research, and working with cross-functional stakeholders to improve Meta's security posture. You will help the team establish, lead and execute multi-year roadmaps that improve research efficiency and quality across the team, and drive improvements to stakeholder management across a broad range of intelligence requirements. **Required Skills:** Detection & Response Security Engineer, Threat Intelligence Responsibilities: 1. Influence and align the team's vision and strategy. Collaboratively prioritize and deliver specific multi-year roadmaps and projects 2. Build, cultivate, and maintain impactful relationships with intelligence stakeholders to identify and facilitate solutions to increase the impact of the team's work 3. Refine operational metrics, key performance indicators, and service level objectives to measure Intelligence research and services 4. Lead cross-functional projects to improve the security posture of Meta's infrastructure, such as red team operations, surface detection coverage expansion and vulnerability management discussions 5. Track threat clusters posing threats to Meta's infrastructure and employees, and identify, develop and implement countermeasures on our corporate network 6. Investigate, mitigate, and forecast emerging technical trends and communicate effectively with actionable suggestions to different types of audiences 7. Work closely with incident responders to provide useful and timely intelligence to enrich ongoing investigations 8. Improve the tooling of threat cluster tracking and intelligence data integration to existing systems **Minimum Qualifications:** Minimum Qualifications: 9. 8+ years threat intelligence experience 10. B.S. or M.S. in Computer Science or related field, or equivalent experience 11. Be a technical and process subject matter expert regarding Security Operations and Threat Intelligence services 12. Experience developing and delivering information on threats, incidents and program status for leadership 13. Expertise with campaign tracking techniques and converting tracking results to long term countermeasures 14. Expertise with threat modeling frameworks, such as Diamond Model or/and MITRE ATT&CK framework 15. Experience intelligence-driven hunting to spot suspicious activities in the network and identify potential risks 16. Proven track record of managing and executing on short term and long term projects 17. Ability to work with a team spanning multiple locations/time zones 18. Ability to prioritize and execute tasks with minimal direction or oversight 19. Ability to think critically and qualify assessments with solid communications skills 20. Coding or scripting experience in one or more scripting languages such as Python or PHP **Preferred Qualifications:** Preferred Qualifications: 21. Experience recruiting, building, and leading technical teams, including performance management 22. Experience close collaborating with incident responders on incident investigations 23. Experience in threat hunting including leveraging intelligence data to proactively identify and iteratively investigates suspicious behavior across networks and systems 24. Familiarity with malware analysis or network traffic analysis 25. Familiarity with nation-state, sophisticated criminal, or supply chain threats 26. Familiarity with file-based or network-based rules and signatures for detection and tracking of complex threats, such as YARA or Snort 27. Experience in one or more query languages such as SQL 28. Experience authoring production code for threat intelligence tooling 29. Experience conducting large scale data analysis 30. Experience working across the broader security community **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

The Oracle Cloud Security and Safety team is seeking dedicated security engineers looking to make their mark in a new security domain. The team is committed to bridging the gap between operations and security, empowering the engineering and operations teams within Oracle to operate their services without fear of security impacting mistakes or malicious behavior. Oracle Cloud Infrastructure is committed to constantly improving and securing our suite of massive scale, integrated cloud services in a broadly distributed, multi-tenant cloud environment. We are committed to providing the best in cloud products that meet the needs of our customers who are tackling some of the world's biggest challenges. We offer unique opportunities for smart, hands-on security engineers with the expertise and passion to solve difficult architecture, engineering, and process problems. Our customers run their businesses on our cloud, and our mission is to provide them with the most secure cloud services. Our ideal candidate is a security engineer with expertise and passion in finding and improving areas of weakness, while developing new standards in the security and safe operation of distributed systems, multi-tenant services and large-scale infrastructures. If this is you, joining Oracle Cloud Infrastructure (OCI) will enable you to design and build innovative new security models & systems from the ground up. These are exciting times in our space - we are growing fast and working on ambitious new initiatives. A security-focused engineer at any level can make significant technical and business impact **Responsibilities** + Prototype, design, and implement security solutions for new and challenging problems + Drive and champion security tool development (e.g. scanning tools) + Consult software development teams in design and architecture of safe and secure systems through Threat Modeling and modeling exercises + Champion and consult on secure development lifecycle practices + Design and integrate verification and posture reporting mechanisms + Define security configuration and implementation best practices Qualifications: + Bachelor's or Master's degree in Computer Science or related field + 5+ years of experience in security engineering or related field or equivalent experience + Experience building automated security solutions + Strong security experience, particularly with focus in one of the following areas: + Defensive Security + Offensive Security + Service architecture and Design Patterns + Strong collaboration and communication skills Preferred Skills + Experience scaling operational activities via Python, Bash, and other tools + DevOps or SRE experience operating large, distributed, continuously deployed services + Experience operating large, distributed, continuously deployed services + Expertise in designing databases schemas in (NoSQL / SQL). + Knowledge on bridging security engineering requirements into the software development life cycle. + Security training and mentoring experience + Experience with statistical/mathematical predictive modeling + Experience with machine learning / artificial intelligence + Experience designing resilient systems that support quick recovery + Experience with container orchestration and management + History of collaborating and integrating processes with software development teams, data scientists, business and other technical roles + Experience with Java or Python development Disclaimer: **Certain US customer or client-facing roles may be required to comply with applicable requirements, such as immunization and occupational health mandates.** **Range and benefit information provided in this posting are specific to the stated locations only** US: Hiring Range in USD from: $109,200 to $223,400 per annum. May be eligible for bonus and equity. Oracle maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, market conditions and locations, as well as reflect Oracle's differing products, industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. Oracle US offers a comprehensive benefits package which includes the following: 1. Medical, dental, and vision insurance, including expert medical opinion 2. Short term disability and long term disability 3. Life insurance and AD&D 4. Supplemental life insurance (Employee/Spouse/Child) 5. Health care and dependent care Flexible Spending Accounts 6. Pre-tax commuter and parking benefits 7. 401(k) Savings and Investment Plan with company match 8. Paid time off: Flexible Vacation is provided to all eligible employees assigned to a salaried (non-overtime eligible) position. Accrued Vacation is provided to all other employees eligible for vacation benefits. For employees working at least 35 hours per week, the vacation accrual rate is 13 days annually for the first three years of employment and 18 days annually for subsequent years of employment. Vacation accrual is prorated for employees working between 20 and 34 hours per week. Employees working fewer than 20 hours per week are not eligible for vacation. 9. 11 paid holidays 10. Paid sick leave: 72 hours of paid sick leave upon date of hire. Refreshes each calendar year. Unused balance will carry over each year up to a maximum cap of 112 hours. 11. Paid parental leave 12. Adoption assistance 13. Employee Stock Purchase Plan 14. Financial planning and group legal 15. Voluntary benefits including auto, homeowner and pet insurance The role will generally accept applications for at least three calendar days from the posting date or as long as the job remains posted. Career Level - IC4 **About Us** As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity. We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing accommodation-request_************* or by calling *************** in the United States. Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

The Director of Information Security is responsible for establishing and maintaining the overall information security program within the Bank. The Director is responsible for providing leadership, strategic direction, and guidance to ensure the confidentiality, integrity, and availability of the Bank's information assets. The Director oversees the development and implementation of information security policies, procedures, and controls and ensures compliance with industry regulations and standards. _____________________________________________________ Essential Functions 1. Develops and implements a comprehensive information security program, including policies, procedures, and controls. 2. Monitors and urgently addresses current and emerging cybersecurity risks that pertain to the Bank and its customers. Advises the Bank's Chief Risk Officer, IT Committee, and Senior Management in developing and implementing information technology safeguard strategies and controls to mitigate risks. 3. Conducts ongoing information security compliance monitoring and performs IT and customer information risk assessments for all areas of the Bank. 4. Monitors and continuously upgrades information security and business resiliency capabilities across the enterprise. 5. Manages enterprise-wide Business Continuity Planning (BCP), including establishing and validating policies and procedures to restore business-critical services of the Bank in the event of a disaster or event. 6. Works closely with and challenges the Director of Information Technology and the Chief Risk Officer to develop strategic plans and makes recommendations for significant information technology projects involving functional changes within the Bank. 7. Provides the Board with an annual assessment of the Bank's Information Security program in accordance with the Gramm Leach Bliley Act. 8. Assures audit compliance and procedure quality control through internal and external reviews, recommends and initiates corrective actions, and ensures system resources are in compliance with established Bank policies, procedures, and state and federal laws, rules and regulations. 9. Manages physical security policies, protocols, procedures, and systems. Ensures policies and procedures are consistently applied across the Bank and ensures adherence with regulatory requirements. 10. Continuously monitors and assesses the information security team and resources to ensure the organization employs and develops top talent. 11. Performs personnel actions, including performance appraisals, disciplinary actions, and interviewing candidates for employment, and supervises the daily activities of the department, including, but not limited to, effective delegation of assignments, developing work schedules, and providing necessary training. 12. Fosters a culture of security awareness and accountability throughout the organization. Works with the Training Officer to develop and deliver security awareness and training programs to educate employees on security best practices. 13. Supports Community Reinvestment Act (CRA) through business development efforts. Actively participates in community organizations. 14. Maintains a current knowledge of bank regulations. Ensures compliance with all Federal, State and Bank policies, procedures, and regulations. 15. Other duties as assigned. Requirements Bachelor's degree in Computer Science, Information Technology, or a related field. Extensive experience in information security management, including experience in a leadership or executive role. Professional certifications such as ISACA-CISM, and/or ISC2-CISSP are required. In-depth knowledge of information security frameworks, standards, and best practices. Strong understanding and experience in implementing the guidelines of FFIEC IT Booklets. Strong understanding of risk management principles and experience conducting risk assessments. Demonstrated ability to develop and execute strategic plans and initiatives. Strong leadership and people management skills, with the ability to build and develop a high-performing security team. Up-to-date knowledge of emerging threats, vulnerabilities, and security technologies. Ability to deal with complex problems involving multiple facets and variables in non-standardized situations. Additional Comments: River City Bank is an Affirmative Action and Equal Opportunity Employer with a commitment to diversity. Individuals seeking employment at River City Bank are considered without regards to ancestry, age, color, physical or mental disability, genetic information, gender, gender identity, gender expression, marital status, medical condition, national origin, race, religion, sex, sexual orientation, protected veteran/military status or any other consideration made unlawful by federal, state or local laws. Note: River City Bank does not sponsor applicants for work visas. For CA residents please read the Notice at Collection - California before applying. NOTE: We are not currently accepting inquiries from recruiters or recruiting agencies. All applications must be submitted directly by the candidates. Salary Description $140,000 to $200,000 per year

Integrated Resources, Inc., is led by a seasoned team with combined decades in the industry. We deliver strategic workforce solutions that help you manage your talent and business more efficiently and effectively. Since launching in 1996, IRI has attracted, assembled and retained key employees who are experts in their fields. This has helped us expand into new sectors and steadily grow. We've stayed true to our focus of finding qualified and experienced professionals in our specialty areas. Our partner-employers know that they can rely on us to find the right match between their needs and the abilities of our top-tier candidates. By continually exceeding their expectations, we have built successful ongoing partnerships that help us stay true to our commitments of performance and integrity. Our team works hard to deliver a tailored approach for each and every client, critical in matching the right employers with the right candidates. We forge partnerships that are meant for the long term and align skills and cultures. At IRI, we know that our success is directly tied to our clients' success. Job Description Hi, Hope you are doing well, I am sending you below job open with one of my direct client, Send me your most updated copy of your resume in word document ASAP Position: Security Engineer Location: Sacramento CA Duration 1 Year + Start Date : 15th April 2016 Basic Qualifications (minimum 2 years' experience) • Modern security, monitoring, and logging practices for system administration • Modern continuous monitoring tools • Experience with OAuth 2.0, Identity Management systems, and API authorization methods • Experience with code quality tools, especially pertaining to code security vulnerabilities • Experience with network level and application level security threats (i.e., SQL injection, DDOS, man in the middle attacks, etc.) Nice to Have Skills (minimum 2 years' experience): • Experience working with NIST 800-53 controls • Experience working with IBM Main Frame permissions (i.e. RACF) Additional Information Thanks nagesh 732-429-1641

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. Coinbase stores more digital currency than any company in the world, making us a top tier target on the internet. Security is core to our mission and has been a key competitive differentiator for us as we scale worldwide. Essential to scaling is building and running a security compliance program that reflects how we protect the data and assets in our care, to open the doors with customers, regulators, auditors, and other external stakeholders. If you love working with fast moving companies to grow and scale security compliance engines and create positive change across the business, we'd like to speak with you about joining our team. Coinbase is looking for a Security Compliance Senior Analyst to drive the second line of defense IT SOX initiatives and help mature the IT SOX program. *What you'll be doing (ie. job duties):* * Lead Security and IT initiatives to support the SOX roadmap and advance program maturity * Assist with SOX planning activities, including scoping of IT systems and creating training material to owners in preparation for SOX audit * Lead security control gap assessments over SOX control environment, recommend remediation plans and track through completion * Assess SOX implications of new products, update relevant controls, and communicate requirements to product organization and other stakeholders * Provide ongoing reporting to stakeholders and leadership on above responsibilities and communicate progress and escalations management * Perform SOX audit and control impact analysis as a result of security and technology incidents and partner with owning teams on control uplift activities * Build close relationships with stakeholder teams including Security, IT, Infrastructure, Engineering, Data, and Finance to advise on SOX requirements and ensure excellence in control ownership * Create and improve SOX procedural documentation, including process documentation, data flow diagrams, and uplifting templates * Work closely with internal and external auditors to educate them about a complex technology control environment * Oversee quality of audit initiatives, identify and analyze process gaps, provide guidance and expertise to team members * Develop creative solutions to prove risk mitigation and solve for complex audit problems faced by the crypto industry * Identify opportunities to address systemic program challenges, recommend solutions and drive efficiency through AI and automation *What we look for in you (ie. job requirements):* * Minimum of 5+ years of security/IT compliance or equivalent experience * Strong knowledge and hands-on experience in Internal Controls over Financial Reporting, SOX 404 frameworks, and testing to support compliance * Prior experience at a big 4 accounting firm * Experience leading compliance initiatives from start to finish * Proven understanding and audit experience of cloud technologies, AWS preferred * Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with minimal supervision * Strong oral and written communication skills * Ability to multitask, direct cross functional work, and hold others accountable to committed deadlines in a fast paced environment * Ability to communicate with technical / non-technical stakeholders to align on shared outcomes * Experience in Financial services, Big Tech, or FinTech *Nice to haves:* * BA or BS in a technical field or equivalent experience * Security certifications e.g. CISA, CISSP, CISM or other relevant certifications * Experience auditing in Crypto space Position ID: P73675 \#LI-Remote *Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility**+ benefits (including medical, dental, vision and 401(k)). Pay Range: $167,280-$196,800 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

Pacific Coast Producers | Full-Time | On-Site | Exempt Salary Range: $110,000-$140,000/year (based on experience) Pacific Coast Producers (PCP) , a growing agricultural cooperative with food production facilities across the West Coast, is seeking a talented and innovative OT/ICS Security Engineer to join our team in Woodland, CA . PCP is dedicated to investing in its people and fostering a culture of service, where each employee can do their best to make affordable, high-quality food for customers across North America. We are seeking a highly skilled OT/ICS Security Engineer enhance the security posture of our Operational Technology (OT) and Industrial Control Systems (ICS) environments. This role is critical in ensuring the integrity, availability, and confidentiality of industrial networks, protecting critical infrastructure, and implementing robust cybersecurity strategies tailored to the unique needs of our industrial environments. Primary Duties & Responsibilities: This is a hands-on role that involves administering and implementing solutions, planning strategically, and resolving issues as they arise-all while maintaining sensitivity to plant and distribution center operations. Implement and Support OT/ICS security strategies that align with business goals and meet industry standards and regulatory requirements. Conduct risk assessments, manage vulnerabilities, and conduct security audits across operational technology systems. Collaborate with engineering, IT, and operations teams to integrate cybersecurity best practices into servers, PCs, SCADA, DCS, PLCs, and other industrial control systems. Monitor for cybersecurity threats, incidents, and anomalies impacting industrial assets, and coordinate appropriate response actions. Maintain OT security policies, procedures, and training programs to build awareness and strengthen security practices. Work closely with the CIO/CISO, VP of Operations, and Director of Engineering-teamwork and collaboration are critical to success in this role. Review existing architectures, identify security gaps, and recommend prioritized improvements with a risk-aware approach. Partner with external vendors and consultants to evaluate and implement new security technologies and solutions. Ensure security initiatives align with frameworks such as NIST CSF, ISA/IEC 62443, CIS Controls, and MITRE ATT&CK for ICS. Participate in incident response efforts for OT-related breaches, including forensic investigations and corrective action planning. Collaborate cross-functionally to audit and test networks, servers, and OT/ICS equipment to ensure system integrity and security Qualified candidates must have the following experience, education and skills: Bachelor's degree in Cybersecurity, Computer Science, Industrial Engineering, or a related field. 2+ years of cybersecurity experience, with at least 1 year specifically focused on OT/ICS environments. Strong networking background. Knowledge of SCADA, PLCs, DCS, HMIs, IIoT, and industrial network protocols such as Modbus, DNP3, OPC-UA, and BACnet. Some Hands-on experience with firewalls, IDS/IPS, network segmentation, and endpoint protection in OT environments. Strong analytical skills in threat detection, vulnerability management, and incident response. Excellent communication skills, with the ability to collaborate effectively with both technical and non-technical teams. Preferred Qualifications: Familiarity with risk management methodologies and compliance standards such as NERC CIP, ISO 27001, GDPR, and CISA guidelines . While not required, the following certifications are considered a plus: CISSP, GICSP, GRID, CISM, ISA/IEC 62443 Expert . The ability to strategize, document, and implement business continuity and disaster recovery. Salary Range $110,000-$140,000 per year; candidate will be paid based on their work experience and skills. This is a full-time , on-site role based at our Production Facility in Woodland, CA. Occasional travel to our other locations in California and Oregon will be required; frequency may vary based on business needs. The base salary range reflects the reasonable expectation for what the company anticipates paying for this role at the time of posting. The actual salary offered will depend on factors including, but not limited to: Relevant skills, education, and experience Job-related qualifications and certifications Internal pay equity Market conditions and business needs Why Join PCP? At PCP, we take care of our people. Here are just a few of the benefits full-time employees enjoy: Competitive pay with opportunities for advancement. This position is eligible for our annual profit-sharing bonus program. Medical, dental, and vision coverage for you and your family, starting the first of the month after you join us. Retirement plans to support your long-term security. Paid time off including vacation, holidays, parental leave, sick leave, and bereavement. Life and disability insurance plus an Employee Assistance Program. Development opportunities through online courses, classroom training, and on-the-job growth. The stability of a farmer-owned cooperative with more than 50 years of success. A mission-driven culture focused on feeding families across North America . If you are enthusiastic about securing industrial environments and ready to take on a leadership role in OT/ICS cybersecurity , we encourage you to apply and be part of our mission in safeguarding critical infrastructure. Sponsorship : This role is not eligible for current or future visa sponsorship. About PCP Summary Pacific Coast Producers, a cooperative owned by more than 165 family farmers who cultivate and transport diverse produce like tomatoes, peaches, pears, grapes, cherries, and others, was founded in 1971. The company operates processing and packaging facilities in California and Oregon and has a workforce of over 3,000 employees. PCP is committed to delivering top-quality products to customers in all channels of trade, such as foodservice distributors and grocery retailers throughout the United States and Canada. Our facility is located in Woodland, CA, a charming city in Yolo County, known for its rich agricultural history and small-town charm. With a historic downtown area, a thriving arts scene, and close proximity to Sacramento, Woodland offers a unique blend of rural and urban living. Additionally, the city has a strong economy and a growing business community, making it an ideal place to work and grow your career. AA/EEO Policy Statement Pacific Coast Producers is an affirmative action and equal opportunity employer. No employee or applicant will be discriminated against in any condition of employment because of race, color, national origin, sex, religion, age, disability, veteran status, or any other status protected by law.

Sonsoft , Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information Technology Enabled Services. Job Description Our client has a contract opportunity in the Sacramento area for an Information Security Consultant. The current project goes until December, 31st 2017. There is the possibility that it will go longer. Requirements: • 2 (or more) years of demonstrable experience conducting PCI assessments with project dates. • CISSP • QSA Additional Information ** U.S. Citizens and those who are authorized to work independently in the United States are encouraged to apply. We are unable to sponsor at this time. Note:- This is a Contract job opportunity for you. Only US Citizen, Green Card Holder, GC-EAD, H4-EAD, L2-EAD, OPT-EAD & TN-Visa can apply. No H1B candidates, please. Please mention your Visa Status in your email or resume. ** All your information will be kept confidential according to EEO guidelines.

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap corporate systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap, acting as the key individual with both the authority and responsibility to ensure the safety and resilience of enterprise systems, products, and services. Your oversight will encompass: - Enterprise systems:Identifying potential misuse and abuse cases, proposing solutions to address these scenarios, and identifying product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. - Build-time controls: Managing applications/products security controls and activities during development. - Runtime controls: Overseeing security measures at runtime, from prevention to detection and response. Additionally, you will be involved with aspects of internally built products and represent all areas of security, spanning governance, risk, and compliance (GRC) to security monitoring, for a number of departments/teams. You will also have the authority and ability to involve other security team members as needed. While you will take on multiple responsibilities-from advisor to builder and beyond-your primary focus will be designing and building security patterns and practices for services and processes, and fostering strong relationships with product, business, and engineering. Essential Job Duties & Responsibilities Lead, participate in, and contribute to partnerships between security, IT, General & Administrative teams, engineering, product, and operations teams to build, orchestrate, and automate security controls and services in GoodLeap enterprise systems, products, services, and operational processes. Identify potential misuse and abuse cases in enterprise systems, propose solutions to address these scenarios, and identify product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. Support or develop components of the security analytics platform. Contribute to investigations, threat hunting, and incident response activities in a supporting role. Collaborate with the monitoring and response team to create playbooks for specific incident response scenarios related to the products and services you oversee. These investigations, incidents, and playbooks may address security, fraud, privacy, resilience, and related concerns. Support the security operations team with the vulnerability management lifecycle for products and services under your purview. Ensure technical alignment for the products and services you oversee with team initiatives, including GRC, security operations, and monitoring and response activities. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in agile product lifecycles. Ideally, you have experience in a product manager or engineering manager role and understand how SaaS products (B2B, B2B2C, and B2C) are built, including roadmap planning and feature and defect prioritization. Experience with threat modeling methodologies, with the ability to create efficient and scalable approaches to conducting such assessments. Familiarity with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Hands-on experience with managing security for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting with G&A teams, internal product teams, and other cross-functional areas. Proficiency in writing automation scripts in multiple languages, with prior experience automating security processes in cloud or SaaS environments. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution. In addition to the above salary, this role may be eligible for a bonus. Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI. We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. We are seeking a highly skilled and experienced Identity and Access Management (IAM) Engineer to join our team. In this pivotal role, you will be instrumental in designing, implementing, and managing IAM solutions that secure our enterprise applications and facilitate the secure, efficient, and seamless integration of identity and access systems in context of our rapid growth through Mergers and Acquisitions. You will ensure robust access controls, streamline user experiences, and maintain operational continuity across our diverse IT landscape. The ideal candidate will have deep technical expertise in modern IAM principles, protocols and products along with strong management and communication skills. **Responsibilities:** + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **M&A Integration Strategy & Execution:** Lead the planning, design, and execution of IAM integration strategies for M&A activities, ensuring alignment with overall business and security objectives. This includes assessing the IAM landscapes of merging entities to identify challenges and solutions. + **Identity System Merging & Consolidation:** Manage the complex process of merging disparate identity providers, user directories (e.g., Active Directory, Azure AD, LDAP), and access management systems from acquired companies into the existing infrastructure. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privileged Access Management (PAM), and Role-Based Access Control (RBAC) frameworks. + **Security & Compliance:** Ensure IAM systems and processes comply with regulatory requirements (e.g., GDPR, HIPAA, SOX) and internal security policies, providing auditable records of access activities. Protect against data breaches by ensuring only authorized personnel can access sensitive information. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Collaboration & Communication:** Coordinate cross-functional teams, including Information Security, IT Operations, HR, and Application Development, to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical stakeholders. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA, and privileged access management (PAM). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Experience with scripting languages (e.g., PowerShell, Python) for automation and integration. + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Understanding of DevOps practices. + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + **M&A Specific Skills:** Proven track record of managing complex integration projects, including assessing existing IAM capabilities, workflow, systems, and processes of acquired entities. Ability to navigate the complexities of integrating diverse identity infrastructures. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. + Adaptability to stay ahead of evolving IAM technologies and security threats. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************

Trustmark's mission is to improve wellbeing - for everyone. It is a mission grounded in a belief in equality and born from our caring culture. It is a culture we can only realize by building trust. Trust established by ensuring associates feel respected, valued and heard. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture of diversity and inclusion where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. At Trustmark, we have a commitment to welcoming people, no matter their background, identity or experience, to a workplace where they feel safe being their whole, authentic selves. A workplace made up of diverse, empowered individuals that allows ideas to thrive and enables us to bring the best to our colleagues, clients and communities. We are seeking a highly skilled Cyber Security Engineer to join our team and play a pivotal role in safeguarding our organization's digital assets. The ideal candidate will possess a deep understanding of cybersecurity principles, a strong technical background, and a passion for protecting sensitive information. You will be responsible for engineering, implementing and monitoring security measures for the protection of Trustmark's computer systems, networks and information. The role helps identify and define system security requirements as well as develop detailed cyber security designs. **Responsibilities:** + Design, implement, and maintain security architectures, systems, and solutions to protect critical infrastructure and data. + Conduct vulnerability assessments and penetration testing to identify and mitigate risks. + Develop and implement security policies, standards, and procedures. + Monitor security systems and respond to incidents promptly and effectively. + Stay up-to-date with the latest cybersecurity threats and trends. + Collaborate with cross-functional teams to ensure security is integrated into all aspects of the business. + Provide technical guidance and support to internal stakeholders. **Qualifications:** + Bachelor's degree in Computer Science, Information Technology, or a related field or + 3-5 Years of network engineering or cyber engineering experience + Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001). + Proficiency in network security, systems security, application security, and data security. + Hands-on experience with security tools and technologies (e.g., firewalls, intrusion detection systems, encryption, SIEM). + Excellent problem-solving and analytical skills. + Strong communication and interpersonal skills. + Ability to work independently and as part of a team. **Preferred Qualifications:** + Certifications such as CISSP, CISA, or CEH. + Experience with cloud security (e.g., AWS, Azure, GCP). + Knowledge of scripting and programming languages (e.g., Python, PowerShell). Brand: Trustmark Come join a team at Trustmark that will not only utilize your current skills but will enhance them as well. Trustmark benefits include health/dental/vision, life insurance, FSA and HSA, 401(k) plan, Employee Assistant Program, Back-up Care for Children, Adults and Elders and many health and wellness initiatives. We also offer a Wellness program that enables employees to participate in health initiatives to reduce their insurance premiums. **For the fourth consecutive year we were selected as a Top Workplace by the Chicago Tribune.** The award is based exclusively on Trustmark associate responses to an anonymous survey. The survey measured 15 key drivers of engaged cultures that are critical to the success of an organization. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, sexual identity, age, veteran or disability. Join a passionate and purpose-driven team of colleagues who contribute to Trustmark's mission of helping people increase wellbeing through better health and greater financial security. At Trustmark, you'll work collaboratively to transform lives and help people, communities and businesses thrive. Flourish in a culture where appreciation, mutual respect and trust are constants, not just for our customers but for ourselves. Introduce yourself to our recruiters and we'll get in touch if there's a role that seems like a good match. When you join Trustmark, you become part of an organization that makes a positive difference in people's lives. You will play a vital role in delivering on our mission of helping people increase wellbeing through better health and greater financial security. Our customers tell us they simply appreciate the personal attention and knowledgeable service. Others tell us we've changed their lives. At Trustmark, you'll be part of a close-knit team. You'll enjoy abundant opportunities to grow your career. That's why so many of our associates stay at Trustmark and thrive. Trustmark benefits from more than 100 years of experience but pairs that rich history with a palpable sense of optimism, growth and excitement for what's ahead - and beyond. This is a place where associates bring their whole selves to work each day. A place where you can be yourself. Whatever your beyond is, you can achieve it at Trustmark.

Work with Us. Change the World. At AECOM, we're delivering a better world. Whether improving your commute, keeping the lights on, providing access to clean water, or transforming skylines, our work helps people and communities thrive. We are the world's trusted infrastructure consulting firm, partnering with clients to solve the world's most complex challenges and build legacies for future generations. There has never been a better time to be at AECOM. With accelerating infrastructure investment worldwide, our services are in great demand. We invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. We're one global team driven by our common purpose to deliver a better world. Join us. Job Description AECOM is searching for an experienced architect to be located at one of our main offices in the West Region - Denver, CO; Chicago, IL; Houston, TX; San Francisco, San Diego, Sacramento, Los Angeles, CA; Seattle, WA ; Columbus, Cleveland, OH . Other AECOM office locations may be considered. The Secure Spaces Architect will lead the design, development, and delivery of secure facilities for Federal clients, in compliance with Intelligence Community Directive (ICD) 705 and other applicable standards. This senior-level role requires a deep understanding of secure space requirements, including Sensitive Compartmented Information Facilities (SCIFs) or Special Access Program Facility (SAPF), secure communications centers, and other classified environments. The Secured Spaces Architect will collaborate with multidisciplinary teams, Federal agencies, and contractors to deliver innovative, compliant, and functional designs that meet the unique needs of secure operations. As a subject matter expert, the Secure Spaces Architect will also provide strategic guidance, mentor junior staff, and contribute to business development efforts by supporting proposals and client engagement. Key Responsibilities Design Leadership * Lead the architectural design of secure spaces, including SCIFs, SAPF, secure conference rooms, and other classified environments, in compliance with ICD-705, DoD standards, and client-specific requirements. * Collaborate with Accrediting Official (AO), and supports the development of Construction Surveillance Plans (CSP). * Develop detailed design documentation, including floor plans, elevations, and specifications, that meet security, operational, and aesthetic goals. * Provides technical coordination both in with designers and contractor for the design of acoustical and Radio Frequency (RF) shielding requirements in compliance with UFC 4-010-05 and ICD 705. * Collaborate with engineers, security consultants, and other disciplines to integrate physical security measures, such as access control, intrusion detection, and acoustic protection, into facility designs. * Conduct design reviews and oversee quality assurance to ensure adherence to Federal standards and project objectives. Client Engagement * Leads client engagement activities for assigned clients and assigned target clients. Identifies opportunities and manages team efforts for submittals, proposals, presentations, contract negotiation, marketing communications, trade shows and related activities. Participates in go/no-go evaluations, may also include fee proposal develop, project workplan execution in collaboration with the regional director of operations. * Serve as the primary point of contact for Federal clients, providing expert guidance on secure space requirements and design solutions. Develops new client relationships and maintains AECOM's outstanding client reputation in the federal market. * Facilitate client workshops, charrettes, and meetings to gather requirements, present designs, and address feedback. * Build and maintain strong relationships with Federal agencies, contractors, and stakeholders to ensure project success and client satisfaction. Compliance and Standards * Maintain up-to-date knowledge of ICD-705, Unified Facilities Criteria (UFC), and other relevant Federal standards. * Conduct security risk assessments and ensure that designs meet accreditation requirements for secure spaces. * Coordinate with security officers, accrediting officials, and other stakeholders to achieve facility certification and accreditation. Business Development * Support Federal business development efforts by contributing to proposals, presentations, and marketing materials related to secure space design. * Identify opportunities for growth in the Federal marketplace and provide strategic input on pursuits and partnerships. * Represent the company at industry events, conferences, and client briefings to showcase expertise in secure facility design. * Leads client engagement activities for assigned clients and assigned target clients. Identifies opportunities and manages team efforts for submittals, proposals, presentations, contract negotiation, marketing communications, trade shows and related activities. Participates in go/no-go evaluations, may also include fee proposal develop, project workplan execution in collaboration with the regional director of operations. * Develops outstanding client relationships. Responsible for client satisfaction, representing AECOM while developing an outstanding reputation in the federal market. Mentorship and Leadership * Mentor junior architects and staff, providing technical guidance and professional development opportunities. * Foster a culture of innovation, collaboration, and excellence within the design team. The best qualified candidate will embody these critical qualities: * Strength in understanding of the customer and building type (need to understand how they work and how these buildings are organized) * Strength in customer engagement, facility programming, leadership, communications * Strength in facility planning and space planning (multi-disciplinary systems, utilities organization, etc.) * Understanding of secure networks, security zones, and access control * Understanding of FF&E and its relationship in concert with facility planning fundamentals * At least a strong familiarity with ICD 705 and TEMPEST fundamentals and how they influence the functional planning of secure facilities Qualifications Minimum: * Bachelor's in Architecture from an accredited institution and 8 years of related experience * Professional licensure as a Registered Architect (RA) is required. * This position requires U.S. citizenship due to federal contract/security requirements. Preferred: * Masters degree in Architecture * 12 years of architectural experience, with at least 5 years focused on designing secure facilities for Federal clients. * ICD-705 Training Certificate within the last five years. Demonstrated expertise in ICD-705 compliance and the design of SCIFs and other classified environments. * Experience working with Federal agencies such as the Department of Defense (DoD), Intelligence Community (IC), or other classified clients. * Proven track record of leading multidisciplinary teams and delivering complex projects on time and within budget. * Certification in security-related disciplines (e.g., Certified SCIF Designer, PSP, or similar). * Active or recently held security clearance (Secret, TS, or TS/SCI). * Experience with sustainability and energy efficiency in secure facility design. * Knowledge of emerging technologies and trends in secure environments, such as AI-driven security systems and modular SCIFs. * Proficiency in architectural design software, including AutoCAD, Revit, and BIM tools. * Strong understanding of physical security systems, acoustic protection, and technical security countermeasures. * Familiarity with Federal procurement processes, including FAR/DFARS, and experience supporting proposals. * Exceptional communication and presentation skills, with the ability to convey complex ideas to diverse audiences. * Strong problem-solving and decision-making abilities, with a focus on client satisfaction and project success. * Leadership skills to inspire and guide teams, foster collaboration, and drive innovation. Additional Information * This position will not offer sponsorship now or in the future. * This position requires U.S. citizenship due to federal contract/security requirements. About AECOM AECOM is proud to offer comprehensive benefits to meet the diverse needs of our employees. Depending on your employment status, AECOM benefits may include medical, dental, vision, life, AD&D, disability benefits, paid time off, leaves of absences, voluntary benefits, perks, flexible work options, well-being resources, employee assistance program, business travel insurance, service recognition awards, retirement savings plan, and employee stock purchase plan. AECOM is the global infrastructure leader, committed to delivering a better world. As a trusted professional services firm powered by deep technical abilities, we solve our clients' complex challenges in water, environment, energy, transportation and buildings. Our teams partner with public- and private-sector clients to create innovative, sustainable and resilient solutions throughout the project lifecycle - from advisory, planning, design and engineering to program and construction management. AECOM is a Fortune 500 firm that had revenue of $16.1 billion in fiscal year 2024. Learn more at aecom.com. What makes AECOM a great place to work You will be part of a global team that champions your growth and career ambitions. Work on groundbreaking projects - both in your local community and on a global scale - that are transforming our industry and shaping the future. With cutting-edge technology and a network of experts, you'll have the resources to make a real impact. Our award-winning training and development programs are designed to expand your technical expertise and leadership skills, helping you build the career you've always envisioned. Here, you'll find a welcoming workplace built on respect, collaboration and community-where you have the freedom to grow in a world of opportunity. As an Equal Opportunity Employer, we believe in your potential and are here to help you achieve it. All your information will be kept confidential according to EEO guidelines.

Meta's Product Security team is seeking a experienced hacker who derives purpose in life by revealing potential weaknesses and then crafting creative solutions to eliminate those weaknesses. Your skills will be the foundation of security initiatives that protect the security and privacy of over two billion people. You will be relied upon to provide engineering and product teams with the web, mobile, or native code security expertise necessary to make informed product decisions. Come help us make life hard for the bad guys. **Required Skills:** Product Security Engineer, AI Responsibilities: 1. Security Reviews: perform manual design and implementation reviews of products and services that make up the Meta ecosystem, like Instagram, WhatsApp, Oculus, Portal, and more 2. Developer Guidance: provide guidance and education to developers that help prevent the authoring of vulnerabilities 3. Automated Analysis and Secure Frameworks: build automation (static and dynamic analysis) and frameworks with software engineers that enable Meta to scale consistently across all of our products **Minimum Qualifications:** Minimum Qualifications: 4. BS or MS in Computer Science or a related field, or equivalent experience 5. 8+ years of experience finding vulnerabilities in interpreted languages. Knowledge of best practice secure code development 6. Experience with exploiting common security vulnerabilities 7. Knowledge of common exploit mitigations and how they work 8. Coding and scripting experience in one or more general purpose languages **Preferred Qualifications:** Preferred Qualifications: 9. Experience creating software that enables security processes, especially those leveraging AI/ML for automation or augmentation 10. Experience integrating or building AI-powered tools to assist with vulnerability detection, code review, or threat modeling 11. Experience creating software that enables security processes 12. 8+ years of experience finding vulnerabilities in C/C++ code 13. Contributions to the security community (public research, blogging, presentations, bug bounty) 14. Demonstrated ability to collaborate with AI researchers or engineers to apply AI in security workflows **Public Compensation:** $177,000/year to $251,000/year + bonus + equity + benefits **Industry:** Internet **Equal Opportunity:** Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment. Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.

Ready to be pushed beyond what you think you're capable of? At Coinbase, our mission is to increase economic freedom in the world. It's a massive, ambitious opportunity that demands the best of us, every day, as we build the emerging onchain platform - and with it, the future global financial system. To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company's hardest problems. Our ******************************** is intense and isn't for everyone. But if you want to build the future alongside others who excel in their disciplines and expect the same from you, there's no better place to be. While many roles at Coinbase are remote-first, we are not remote-only. In-person participation is required throughout the year. Team and company-wide offsites are held multiple times annually to foster collaboration, connection, and alignment. Attendance is expected and fully supported. The Application Security organization at Coinbase is seeking to hire an experienced Offensive Security Engineer specializing in Web3 penetration testing and Web3 bug bounty program management and optimization. In this role, you will collaborate with the Bug Bounty Program Lead to drive Web3 bug bounty triage, validation, and strategic initiatives aimed at increasing program efficiency, maturity, and hacker engagement. You will work closely with whitehat hackers, security engineers, and cross-functional teams to enhance Coinbase's security posture through an effective bug bounty program. Additionally, you will perform penetration tests on Web3 technologies and applications, ensuring the security of Coinbase's blockchain-based products and services. *What you'll be doing (ie. job duties):* * Conduct security assessments of Web3 products and services, including smart contracts, DeFi protocols, and blockchain infrastructure. * Collaborate with partner teams to enhance detection and response capabilities for Web3 vulnerabilities. * Stay informed on emerging security trends, advisories, and academic research in the Web3 space. * Lead Web3 bug bounty triage and validation, ensuring timely and accurate assessments of reported vulnerabilities. * Develop and implement strategies to incentivize high-quality bug bounty submissions and engage with the hacker community. * Manage the Web3 bug bounty program, including scope updates, researcher communication, and payout disbursements. * Analyze bug bounty data to identify trends, common vulnerabilities, and areas for improvement. * Collaborate with engineering teams to prioritize and remediate vulnerabilities identified through the bug bounty program. * Mentor and train junior security engineers in Web3 bug bounty triage and analysis. * Provide on-call support for critical Web3 bug bounty-related incidents. * Document and report on Web3 bug bounty metrics and program effectiveness. *What we look for in you (ie. job requirements):* * Bachelor's or Master's degree in Computer Science, Cybersecurity, Software Engineering, or a related field. * 3+ years of experience in Web3 application security and penetration testing. * Proven track record of identifying critical vulnerabilities across the blockchain protocol stack, Web2, and Web3 components. * Extensive knowledge of the blockchain ecosystem, including L1/L2 networks, DeFi protocols, and staking mechanisms. * Deep understanding of Web2 security concepts and common vulnerabilities (e.g., OWASP Top 10, SANS Top 25). * Strong analytical skills to identify trends and patterns in vulnerabilities. * Excellent communication skills for engaging with internal teams. * Passion for security and a drive to improve Web3 security posture. * Ability to work independently and take ownership of penetration testing initiatives. * Energy and self-drive for continuous learning in the rapidly evolving crypto space. * Excellence in clear, direct, and kind communication with technical and non-technical stakeholders. * Experience building relationships with product, engineering, and security teams. *Nice to haves:* * Participation in CTFs, bug bounty programs, or open-source security research. * Expertise in Application Security, Network Security, or Cloud Security. * Relevant security certifications (e.g., OSCP, GPEN). * Experience developing and implementing security tooling to support bug bounty triage and analysis. * Experience with bug bounty programs and platforms, including triage, validation, and researcher communication. * Strong analytical skills to identify trends and patterns in bug bounty submissions. * Excellent communication skills to effectively engage with bug bounty researchers. Position ID: P69494 \#LI-remote *Pay Transparency Notice:* Depending on your work location, the target annual salary for this position can range as detailed below. Full time offers from Coinbase also include bonus eligibility + equity eligibility**+ benefits (including medical, dental, vision and 401(k)). Pay Range: $152,405-$179,300 USD Please be advised that each candidate may submit a maximum of four applications within any 30-day period. We encourage you to carefully evaluate how your skills and interests align with Coinbase's roles before applying. Commitment to Equal Opportunity Coinbase is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, gender, national origin, age, disability, veteran status, sex, gender expression or identity, sexual orientation or any other basis protected by applicable law. Coinbase will also consider for employment qualified applicants with criminal histories in a manner consistent with applicable federal, state and local law. For US applicants, you may view the *********************************************** in certain locations, as required by law. Coinbase is also committed to providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please contact us at accommodations*********************************** *Global Data Privacy Notice for Job Candidates and Applicants* Depending on your location, the General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) may regulate the way we manage the data of job applicants. Our full notice outlining how data will be processed as part of the application procedure for applicable locations is available ********************************************************** By submitting your application, you are agreeing to our use and processing of your data as required. *AI Disclosure* For select roles, Coinbase is piloting an AI tool based on machine learning technologies to conduct initial screening interviews to qualified applicants. The tool simulates realistic interview scenarios and engages in dynamic conversation. A human recruiter will review your interview responses, provided in the form of a voice recording and/or transcript, to assess them against the qualifications and characteristics outlined in the job description. For select roles, Coinbase is also piloting an AI interview intelligence platform to transcribe and summarize interview notes, allowing our interviewers to fully focus on you as the candidate. *The above pilots are for testing purposes and Coinbase will not use AI to make decisions impacting employment*. To request a reasonable accommodation due to disability, please contact accommodations[at]coinbase.com

Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500. **_Department Overview:_** **Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value. **Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. Lead IAM work for new customer onboardings and migrations. Collaborate with CAH Account Management, Application Teams, and Customers to design, implement, and test federated SSO solution based on customer login requirements. Provide technical guidance and act as primary point of contact for business partners and customer related to IAM work for onboarding. Additional responsibilities include supporting application integrations and enhancing SSO self service application onboarding. **Responsibilities:** + **Customer Onboarding IAM Efforts - Strategy & Execution :** Lead the planning, design, and execution for Customer Onboarding via federated SSO, ensuring alignment with overall business and security objectives. This includes assessing multiple Cardinal Health e-commerce applications, understanding login requirements for new/existing customers, designing, testing and implementing solutions etc to ensure top notch user login experience and enhancing Cardinal Health's security posture. + **Collaboration & Communication:** Coordinate cross-functional teams, including Customer Business and IT teams, Cardinal Health's Account Management/Sales and Application teams, Information Security and others to ensure effective IAM implementation and seamless integration with business processes. Communicate complex security concepts to technical and non-technical internal and external stakeholders. + **Application Integration Leadership:** Lead the integration of various enterprise applications (SaaS, on-premise, custom-built) with our core IAM infrastructure, ensuring secure authentication, authorization, and user provisioning/de-provisioning. + **User Lifecycle Management:** Streamline and automate user provisioning, de-provisioning, and periodic access reviews for employees, contractors, and partners across all integrated systems, ensuring smooth onboarding and offboarding during M&A transitions. + **Solution Design & Implementation:** Design, implement, and maintain IAM solutions including Single Sign-On (SSO), Multi-Factor Authentication (MFA), and Role-Based Access Control (RBAC) frameworks. + **Technical Troubleshooting & Support:** Troubleshoot, identify, and resolve technical identity and access management-related issues, providing expert support to internal teams and end-users during and after integration. + **Documentation & Best Practices:** Develop, review, and maintain comprehensive technical documentation, including architecture diagrams, configuration guides, and operational procedures. Stay up-to-date with IAM best practices, regulatory requirements, and security trends. **Qualifications:** + **Education:** Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field, or equivalent practical experience. + **Experience:** 5+ years of progressive experience as an IAM Engineer, designing and implementing enterprise scale solutions with significant experience in supporting M&A integration projects preferred. + **Technical Expertise:** + Extensive knowledge and experience with authentication standards and technologies such as SSO (SAML, OAuth, OpenID Connect), MFA + Proficiency in directory services (e.g., Active Directory, Azure AD, LDAP). + Hands-on experience with leading IAM platforms (e.g., Okta, Microsoft Azure AD, CyberArk, ForgeRock, Ping Identity, SailPoint). + Strong understanding of security principles, risk management, and access control models (e.g., RBAC). + Familiarity with Zero Trust architecture principles. + Familiarity with AI/ML concepts and their practical application in security and risk management, especially in IAM context. + Strong communication and interpersonal skills to collaborate effectively with various teams and stakeholders. + Detail-oriented mindset to ensure precise access control configurations and compliance. + Excellent problem-solving and analytical abilities to troubleshoot access issues and design solutions for unique business requirements + Must be a self-starter who takes full ownership of projects from inception to completion , holding oneself accountable for the security and operation integrity of IAM platform. + Ability to manage multiple priorities and meet tight deadlines in a fast-paced M&A environment. **Anticipated salary range:** $94,900 - $135,600 **Bonus eligible:** No **Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being. + Medical, dental and vision coverage + Paid time off plan + Health savings account (HSA) + 401k savings plan + Access to wages before pay day with my FlexPay + Flexible spending accounts (FSAs) + Short- and long-term disability coverage + Work-Life resources + Paid parental leave + Healthy lifestyle programs **Application window anticipated to close:** 12/20/2025 *if interested in opportunity, please submit application as soon as possible. The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity. _Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._ _Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._ _To read and review this privacy notice click_ here (***************************************************************************************************************************