Security engineer jobs in Bloomfield, NJ

JOB FUNCTION The Cybersecurity Engineer will be responsible for implementing and maintaining the firm's cybersecurity technology solutions, monitoring for security incidents and vulnerabilities, coordinating end user activities, and participating in the investigation and response of any breaches or attacks. The ideal candidate will be a self-starter who can work both independently and collaboratively with diverse technical and business teams. He or she will report to the Chief Information Security Officer. Additional responsibilities include: Managing the vulnerability management program, including internal and external scanning, monitoring threat feeds, news sources, and vendor bulletins for risks and tracking remediation Maintaining and monitoring control baselines, hardening standards, asset/coverage metrics, and configuration compliance Monitoring and documenting key performance indicators (KPIs) and governance, risk, and compliance (GRC) evidence Suggesting and evaluating new technologies Educating employees on security best practices to reduce the risk of human error Collaborating with the Cloud, Systems, Network, Database, Desktop, and Development engineering teams on risk identification, analysis, and remediation Assisting with vendor due diligence Assisting with physical security infrastructure projects, maintenance, and updates QUALIFICATIONS The ideal candidate should have the following experience: 3+ years of experience in a Security Engineer role Proficiency with managing EDR solutions, SIEM, network security, cloud security, mobile security, vulnerability management, identity and access management, encryption, and a solid understanding of operating systems like Windows and Linux Strong ability to analyze security data, identify threats, and create effective solutions Ability to document and communicate technical information clearly to both technical and non-technical audiences Scripting/automation experience a plus The ideal candidate possesses the following traits: Creativity: the ability to deploy different approaches and be resourceful. Intellectual curiosity: passion for learning and investigating a broad range of subject matter; satisfaction derived from the consumption and understanding of information and increasing knowledge base. Accountability: ownership of individual responsibilities and work product. Strong people skills: ability to build relationships internally and externally and to be versatile in engaging with different constituents.

Lead Security Engineer - Hands-On Role with Leadership Opportunity We're looking to hire a senior-level Security Engineer who's ready to step up and take the lead. Someone who's still very hands-on technically but also enjoys mentoring others, setting direction, and building scalable solutions that make a real difference. Title: Lead Security Engineer Salary: $160,000 to 190,000 +Bonus Location: Queens, NY (Hybrid) This role sits at the center of engineering, operations, and security-you'll be working directly with software and infrastructure teams to make sure security is embedded into everything we do. You won't just be managing tools; you'll help shape how security is done across the company. If you're based in the NYC area and looking for the next serious step in your career-where your ideas are heard and your work actually drives change-this is worth a conversation. What the Role Looks Like: You'll lead and mentor a small but growing team of security engineers, helping them grow while staying deep in the tech yourself. Work with internal teams to design and implement security solutions-cloud security, PAM, app and system hardening, etc. You'll be the one connecting the dots between development, infrastructure, and security-building relationships across teams and making sure security is part of the process from the start. Help optimize and improve the tools we already have, and figure out what's missing. What We're Hoping You Bring: A few years of experience leading or mentoring other security engineers-you don't need to have managed huge teams, but you've helped others level up. Solid technical background (5+ years in security engineering) and experience with on-prem and cloud security solutions (AWS or Azure). Hands-on knowledge of privileged access, identity management, system hardening, and network security. Strong instincts for risk, practical problem-solving, and keeping systems both secure and usable. Someone who communicates clearly, doesn't get lost in buzzwords, and works well with people across teams. Nice to Have, But Not Dealbreakers: Certifications like CISSP, CEH, CISM Experience with Linux security or scripting Familiarity with CI/CD pipelines and how security fits into DevOps Why This Role Might Be Right for You: You're ready for more responsibility and leadership, but don't want to give up the technical side of the work. You want to be part of a stable company with real backing and complex challenges to work on.

About The Role The Sr. Security Researcher is responsible for leading and executing offensive security assessments (red teaming) against the organization's systems and networks. This role will leverage advanced penetration testing, social engineering, and other offensive security techniques to identify and exploit vulnerabilities, simulate real-world threats, and enhance the organization's overall security posture. Responsibilities Lead and execute red team engagements: Develop and execute comprehensive red team assessments, including reconnaissance, vulnerability scanning, exploitation, and post-exploitation activities. Lead and mentor junior red team members, providing guidance, training, and hands-on experience. Develop and maintain red team methodologies, tools, and infrastructure. Conduct threat modeling and risk assessments to identify potential attack vectors and prioritize targets. Develop and execute social engineering campaigns, including phishing, vishing, and physical penetration tests. Vulnerability research and exploitation: Stay abreast of the latest threat intelligence, vulnerabilities, and exploits. Research and develop new exploitation techniques and tools. Conduct in-depth analysis of vulnerabilities and their potential impact. Reporting and communication: Prepare detailed and concise reports documenting red team findings, including technical details, impact assessments, and remediation recommendations. Effectively communicate findings to technical and non-technical audiences, including senior management. Present findings and recommendations at security forums and conferences (optional). Security awareness and training: Develop and deliver security awareness training programs to employees on topics such as social engineering, phishing, and secure coding practices. Conduct security awareness campaigns to raise employee awareness of security threats and best practices. Collaboration: Collaborate with other security teams (e.g., blue team, incident response) to improve overall security posture. Work with development teams to identify and remediate security vulnerabilities in applications and systems. Build and maintain relationships with external security researchers and the cybersecurity community. Skills and Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 5+ years of experience in cybersecurity, with 3+ years of hands-on experience in penetration testing, red teaming. Understanding of blended attacks. Proven experience leading and mentoring junior security professionals. Strong understanding of networking, systems administration, and programming concepts. Expertise in penetration testing methodologies and tools (e.g., Cobalt Strike, Outflank, Sliver, PowerShell Empire, Metasploit, Kali Linux, Nmap). Proficiency in scripting languages (e.g., Python, Ruby, PowerShell). Strong understanding of network protocols (e.g., TCP/IP, HTTP, DNS). Experience with vulnerability scanners, intrusion detection systems, and firewalls. Experience with cloud security (e.g., AWS, Azure, GCP) is a plus. Relevant security certifications (e.g., RTO I, RTO II, OSCP, OSCE, GPEN, CRTP) are highly desired. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Strong attention to detail and accuracy. Ability to adapt to new technologies and challenges. Project Management.

Contact Details: 1.Poonam Khandelwal Email: poonam.khandelwal@peer-consulting.com Cell: (732) 797-9766 Job Title: Cyber Command Forensic Analyst Duration: 48 months Years of Experience: 8+ years Required Hours/Week: 35hrs/week Job Description: The forensics Analyst will investigate network intrusions and other cyber incidents to determine cause, extent and consequences of the breach. Research and develop new techniques, and procedures to continually improve the digital forensics process. Produce high quality written work product presenting complex technical issues clearly and concisely. Managing and maintaining the analysis labs and forensics tools leveraged for investigations. Ensuring data is collected and preserved within industry standard best practices and in alignment evidence integrity requirements. Assisting the Cyber Emergency Response Team during critical incidents. Investigate network intrusions and other cybersecurity incidents to determine the cause and extent of the breach. Includes ability to perform host-based and network-based forensic analysis. Mandatory Skills/ Experience: Candidates who do not have the mandatory skills will not be considered. Minimum 4 years of experience in Threat Management/Forensics Investigations/Incident Response environment Proficient in performing digital forensic investigations on a variety of platforms and operating systems with a deep understanding of digital forensics processes and tools. Desirable Skills/ Experience: Experience with a wide range of forensic tools (FTK, X-Ways, SIFT, AXIOM, EnCase, etc.) Experience with memory analysis tools (i.e. Volatility, MemProcFS) Experience with Linux and open source tools Experience investigating intrusions on Windows and Linux/Unix operating systems Experience with performing forensics collections in cloud environments (AWS, Azure, GCP) Knowledge of gathering, accessing, and assessing evidence from computer systems and electronic devices Knowledge of virtual environments Knowledge of forensic imaging techniques Knowledge of Microsoft Windows operating system and Windows artifacts Knowledge of Linux/UNIX operating systems and artifacts Knowledge of mac OS operating system and forensics artifacts Knowledge of file systems Strong analytical skills

The Team: The Security Engineering Lead will be responsible for designing, building, and maintaining the organization's security infrastructure. This role requires a highly skilled professional who can lead a team of engineers, implement innovative security solutions, and ensure the resilience of the organization's systems and networks. The ideal candidate will have extensive experience in security engineering, a strong technical background, and the ability to manage and deliver complex security projects. **This Role does NOT provide sponsorship** Salary: $150k-$190k base w/ 20% bonus Responsibilities: Leadership and Management: Lead and mentor a team of security engineers, fostering a culture of continuous learning and innovation. Build and scale a global team to meet organizational needs. Architecting Security Solutions: Assist teams in designing and implementing advanced security solutions, including cloud security, privilege access management and application/system security. Collaboration: Partner with software development, infrastructure, and operations teams to embed security into the development lifecycle and operational processes. Performance Optimization: Regularly evaluate and optimize existing security tools and technologies to ensure maximum efficacy and efficiency. Training and Knowledge Sharing: Develop and deliver technical security training to engineers and other staff, ensuring a strong organizational security posture. Documentation and Reporting: Create detailed documentation for security systems and processes, and provide regular project reports senior management. Required Skills and Experience: Experience (3+ year) in people leadership roles, nurturing security engineers into high-performing teams. Experience (5+ years) in a security engineering role, focusing on designing and implementing security solutions and managing security infrastructure, both on-premise and cloud. Experience working with privilege and identity management solutions. Experience with operating system security and system hardening. Knowledge of network security principles, protocols, and technologies. Strong analytical and problem-solving skills, with the ability to assess risks and develop appropriate security controls. Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders. Ability to work independently, prioritize tasks, and manage multiple projects simultaneously. Strong leadership skills, with the ability to mentor and guide junior team members. Skills and Experience That Would Help You Stand Out: A bachelor's degree in Computer Science, Information Security, or a related field. A master's degree is a plus. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or Certified Information Security Manager (CISM) are highly desirable. Linux security experience Familiarity with DevSecOps and integrating security into CI/CD pipelines. Scripting experience.

Job Posting Title: Cloud Security Engineer - SRE Job Profile: Technical Project Management - Advisor II We are seeking a skilled and motivated Cloud Security Engineer - SRE to join our dynamic team. The ideal candidate will possess a strong technical background in systems administration, cloud computing, and infrastructure as code, with a particular focus on solution engineering/site reliability. This role will involve collaborating with cross-functional teams to enhance our security posture and streamline processes through automation. Technical Skills • Programming and Scripting: Strong proficiency in languages like Python, Go, Bash, or Ruby. SREs often need to write automation scripts and build tooling. • Systems Administration: Deep understanding of operating systems (Linux/Unix), file systems, processes, and system configurations. • Infrastructure as Code (IaC): Experience with IaC tools like Terraform, Ansible, or Chef to manage infrastructure. • Cloud Computing: Knowledge of cloud platforms such as AWS, Azure, or Google Cloud Platform, including services like EC2, S3, Kubernetes, and serverless functions. • Containers and Orchestration: Expertise in containerization (Docker) and container orchestration (Kubernetes, OpenShift). • Networking: Understanding of networking concepts, including DNS, firewalls, load balancing, and VPNs. • Monitoring and Observability: Experience with monitoring and observability tools like Prometheus, Grafana, Datadog, or New Relic. Ability to set up and maintain monitoring dashboards, alerts, and logs. • Continuous Integration/Continuous Deployment (CI/CD): Familiarity with CI/CD tools like Jenkins, GitLab CI, GitHub Actions, or CircleCI. • A strong understanding of HashiCorp Vault and Terraform will make you stand out. 2. Problem-Solving and Troubleshooting • Incident Management: Ability to manage and respond to incidents, perform root cause analysis, and implement post-mortem reviews. • Automation: Focus on automating repetitive tasks to improve efficiency and reduce human error. • Performance Tuning: Skills in identifying and resolving performance bottlenecks in systems and applications. 3. Collaboration and Communication • Teamwork: Ability to work closely with cross-functional teams, including software engineers, product managers, and DevOps teams. • Documentation: Skill in creating clear and comprehensive documentation for systems, processes, and incident reports. • Communication: Effective communication skills for interacting with stakeholders and explaining technical concepts to non-technical audiences. 4. Reliability and Scalability • Service-Level Objectives (SLOs) and Service-Level Agreements (SLAs): Understanding of setting, monitoring, and maintaining SLOs and SLAs for system reliability. • Scalability: Knowledge of best practices for designing and scaling systems to handle increased loads and demands. • Redundancy and Resilience: Experience in designing systems with redundancy and fault tolerance to minimize downtime. 5. Security and Compliance • Security Best Practices: Understanding of security principles, such as access control, data encryption, and secure coding practices. • Compliance: Familiarity with compliance standards like GDPR, HIPAA, or PCI-DSS, depending on the industry. Minimum Job Qualifications: • Bachelor degree in business or equivalent work experience • 10 years of previous program leadership and/or relevant consulting experience • Knowledge of and demonstrated experience in program management framework, knowledge groups & life cycle • 5+ years' experience in driving large scale data center consolidation efforts • Minimum 5 years' experience with matrix management of cross-functional processes and teams • Proficient with Project Management tools

Akkodis is seeking a Cybersecurity Operations Specialist role is a Direct hire with a client located in NYC 10022 (Hybrid). Ideally looking for applicants to have a solid background in Security operations, SOC, Financial services, FINRA, SEC would come as a big plus. Salary Range: $130k-$140k/Annum + Benefits, The salary may be negotiable based on experience, education, geographic location, and other factors. We are seeking a Cybersecurity Operations Specialist to join our security operations team and play a hands-on role in monitoring, protecting, and improving the firm's cybersecurity posture. This position focuses on day-to-day security operations, vulnerability management, and incident response across our on-premise and cloud environments (AWS and Microsoft 365). The ideal candidate has strong technical knowledge of endpoint protection, identity management, and network security, combined with an analytical mindset and attention to detail suitable for a regulated financial environment. Key Responsibilities: Security Operations & Monitoring Monitor and investigate alerts from CrowdStrike Falcon XDR, Microsoft Defender, and Intune. Conduct triage and escalation of suspicious activities in coordination with infrastructure and IT teams. Maintain visibility and reporting through Tenable Security Center and Nessus vulnerability scans. Support log analysis, correlation, and event tracking through integrated dashboards or SIEM platforms. Vulnerability & Patch Management Perform routine vulnerability assessments and track remediation status. Collaborate with system administrators to ensure timely patching of Windows, Linux, and network devices. Validate risk reduction and patch compliance before closing findings. Endpoint & Identity Security Administer and monitor Symantec Endpoint Protection Manager (EPM) and Microsoft Intune policies. Enforce endpoint encryption (Corporate Laptop), application control, and posture management. Manage Microsoft Entra (Azure AD) identity policies, MFA enforcement, and conditional access rules. Review privileged account usage and assist in quarterly access recertification. Network & Cloud Protection Support network segmentation, VPN access, and firewall change reviews on Juniper platforms. Monitor ZScaler logs for anomalous web traffic or policy violations. Assist with AWS and Microsoft 365 security baselines, configuration hardening, and identity governance. Security Awareness & Compliance Administer and report on employee phishing and training campaigns via KnowBe4. Support audit requests (FINRA, SEC, SOC1/2) by preparing evidence and log samples. Maintain documentation of incidents, vulnerabilities, and security control tests. Incident Response & Reporting Participate in incident containment, investigation, and remediation. Collect forensic artifacts (logs, screenshots, binaries) as directed by the CISO. Prepare post-incident summaries and lessons-learned documentation. Qualifications: Required Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience). 3-5 years of experience in security operations, SOC, or IT security support. Working knowledge of EDR/XDR platforms (CrowdStrike, Defender), vulnerability scanners (Nessus), and firewall/IDS systems. Understanding of Windows/Linux administration, TCP/IP networking, and cloud identity management. Strong analytical, documentation, and communication skills. Preferred Experience with regulated financial institutions (FINRA, SEC, NFA, CFTC). Certifications such as CompTIA Security+, CySA+, Microsoft Certified: Security Operations Analyst, or GIAC GSEC. Familiarity with scripting or automation (PowerShell, Python) for security tasks. If you are interested in this role, then please click APPLY NOW. For other opportunities available at Akkodis, or any questions, feel free to contact me at *********************************. Equal Opportunity Employer/Veterans/Disabled Benefits offerings include but are not limited to: • 401(k) with match • Medical insurance • Dental Insurance • Vision assistance • Paid Holidays Off To read our Candidate Privacy Information Statement, which explains how we will use your information, please visit ****************************************** The Company will consider qualified applicants with arrest and conviction records in accordance with federal, state, and local laws and/or security clearance requirements, including, as applicable: · The California Fair Chance Act · Los Angeles City Fair Chance Ordinance · Los Angeles County Fair Chance Ordinance for Employers · San Francisco Fair Chance Ordinance

Job information: Functional title - Application Security Specialist Department - IT Security Corporate level - Vice President Report to - Director, Application Security Expected full-time salary range between $ 140,000- $180,000 + variable compensation + 401(k) match + benefits. What you will be doing: Perform Application Security scans (e.g. DAST and SCA) on applications and APIs to identify security vulnerabilities and weaknesses, Triage security findings and collaborate with development teams to prioritize and remediate identified vulnerabilities. Drive threat modelling as a standard part of the SDLC, and develop and maintain threat models for critical applications, identifying potential security risks and proposing mitigations. Drive the Security Champions program, and define and promote secure coding practices, patterns, and standards across development teams. Conduct security reviews and provide guidance on security requirements for new features and projects. Assist in the analysis, selection and rollout of new application security tools, processes, and standards. Stay up to date with the latest security threats, vulnerabilities, and industry best practices. What we're looking for: Proven experience in application security with a focus on application security testing and vulnerability management. Hands-on experience with Application Security tools. Strong understanding of common application vulnerabilities (e.g., OWASP Top 10) and mitigation techniques. Experience with threat modelling methodologies and tools. Proficiency in at least one programming language (e.g., Java, Python, JavaScript). Excellent communication and collaboration skills, with the ability to work effectively in cross functional teams. Strong understanding of risk management. Professional qualifications / certifications Degree in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent). Relevant security certifications (e.g. CISSP, CEH, CSSLP) or equivalent is preferred.

Senior Cyber Security Engineer, NYC Hybrid (3 Days a week Onsite) Our client is a financial services provider and they're looking for a senior engineer with real depth in Python OO and CyberArk or Swimlane to step into a high impact role. This is a hands-on position in a stable environment where you will own serious engineering problems and build the next generation of identity and PAM controls. What you will work on: • Engineering CyberArk (IAM/PAM) integrations and custom PAM solutions • Building Python based tooling, APIs, and automation that matter • Strengthening enterprise identity platforms across a complex environment • Collaborating with senior architects while still owning the code What we are looking for: • Python object-oriented engineering, not scripting • CyberArk (IAM/PAM) or Swimlane (SOAR) engineering experience • Infrastructure security background • 15+ years' experience in Engineering and/or Cyber Security • Experience in financial services or large enterprise is a plus Who usually fits this role: • Identity and PAM platform engineers • SOAR engineers who build with Python • Infra security engineers tired of purely operational work

You will provide guidance and technical support to clients deploying security integrations. You'll act as the technical partner, providing strategic guidance around complex systems to secure a digital environment. Interacting directly with the client, you'll partner closely with client personnel to guide and suggest integrations to better serve their success. Your thorough understanding of our product integrations contributes to the development of new principles and concepts - providing detailed analysis around what's working, what's not, and what could be better. You enjoy implementation work, are proactive about resolving potential concerns, and operate well around strict best practices that enable our clients on their road to a more secure digital world. You're creative, innovative, and you love a challenge - learning how integrations might work better around new products and technologies. Responsibilities Communicate with the customer(s), sales teams, peers, engineering and support teams as appropriate Understand the customer environment, requirements, and security roadmap to implement the appropriate security solution Configure, implement, and maintain Security Operating Platform Optimize and migrate policies and objects from the existing environment to our Next-Gen Firewall Test and validate the migration environment Coordinate and execute cutover to production Provide guidance on code upgrades Facilitate the development of new application and threat signatures Interact with our Technical Assistance Center (TAC) to understand and diagnose support cases Some travel may be required, dependent on customer request You work with the customer's security & network teams to build confidence across the business units impacted by the change Experience High level of experience with Panorama and log collectors NGFW Global Protect BS in Computer Science, MIS, business, or equivalent education/training/experience Minimum of 5 years' experience with network/security solutions and technologies (BGP, SD-WAN concepts, VXLAN and general routing and switching) Minimum of 3 years' experience leading security solutions in large environments) Detailed technical experience in the installation, configuration, and operation of high-end firewall appliances, ideally Palo Alto Networks products You're experienced in internetworking, LAN, and WAN technologies You have a good understanding of Internet protocols and applications Any of the following industry certifications or equivalent experience is a plus: CISSP, CCNA, PCNSE, JNCIE-SEC You effectively handle multiple projects and work calmly in high pressure You're an excellent writer, with strong verbal communication skills, with demonstrable ability to communicate to senior leaders and technical peers

The Security Architect main role is to design, implement, and oversee our cybersecurity strategy, ensuring robust protection against evolving threats. The ideal candidate will have 7-10 years of experience in cybersecurity architecture, security operations, and risk management with a strong focus on enterprise security solutions, cloud security, identity & access management (IAM), and security best practices. The Security Architect must have hands-on experience with internet secure gateway, EDR, MDR, ITDR, secure email gateway, firewalls, MFA, scripting, policies, data classification, and cloud security controls. This role requires deep expertise in security frameworks, architecture principles, security automation, and compliance standards (NIST, CIS, ISO 27001, Zero Trust, etc.). Essential Functions Develop and maintain a comprehensive security architecture covering on-premises, cloud, and hybrid environments. Design security solutions that align with business objectives while mitigating risk. Ensure Zero Trust principles, network segmentation, and security best practices are enforced across the enterprise. Architect cloud security strategies, leveraging best practices for Azure and GCP. Lead security investigations, conduct root cause analysis, and document incident response actions. Provide threat intelligence and recommend proactive security measures to mitigate risk. Implement and maintain cloud security controls in Azure and GCP. Optimize cloud security solutions for web and network protection. Ensure Active Directory (AD) and IAM policies align with best practices. Support identity governance, access reviews, and privileged access management (PAM). Oversee the continuous best practice is leveraged for data classification policies and enforce data protection controls. Conduct security assessments and ensure compliance with industry standards (PCI, NIST, CIS). Recommend, evaluate, and implement new security technologies based on business needs and threat landscape. • Work with DevOps and IT teams to integrate security automation, security-as-code, and DevSecOps principles. Additional Functions Threat Modeling & Risk Management: Conduct threat modeling, risk assessments, and security reviews for applications, infrastructure, and networks. Provide technical leadership in responding to security incidents, forensic analysis, and root cause investigations. Develop and maintain security policies, standards, and playbooks for security operations. Collaborate with IT and business units to ensure security compliance with regulatory frameworks (PCI DSS, NIST, ISO 27001, SOC 2). Identity & Access Management (IAM) & Authentication: Design and enhance IAM policies, privileged access management (PAM), and role-based access control (RBAC). Enforce strong authentication and MFA strategies using Okta, Microsoft Authenticator, and AD. Define identity threat detection and response (ITDR) strategies. Security Governance & Compliance: Ensure security controls align with industry frameworks (NIST CSF, ISO 27001, CIS, Zero Trust, MITRE ATT&CK). Assist with audit, regulatory compliance, and security assessments. Conduct penetration testing, red/blue teaming exercises, and vulnerability management programs. Provide security guidance for third-party risk management and vendor security evaluations. Leadership & Collaboration: Act as a subject matter expert (SME) in cybersecurity architecture and best practices. Provide mentorship and training to security engineers and analysts. Work cross-functionally with IT, DevOps, and executive leadership to align security strategy with business goals. Develop security roadmaps and strategic initiatives for continuous security improvement. Maintain and fine-tune security configurations across various security platforms. Identify security gaps and recommend security enhancements and process improvements. Develop playbooks and automation scripts to enhance security operations efficiency. Conduct vulnerability assessments and penetration testing to identify security weaknesses in systems and applications. Develop and implement security policies, procedures, and standards to ensure compliance with industry's best practices and regulatory requirements. Investigate security breaches and other security incidents to determine the root cause and implement corrective actions. Stay up-to-date on the latest security threats and vulnerabilities and recommend appropriate security measures. Collaborate with other IT teams to ensure that security is integrated into all aspects of the organization's IT infrastructure. Participate in security audits and assessments to identify and address security gaps. Develop and maintain incident response plans and procedures. Evaluate and recommend security technologies and solutions to improve the organization's security posture. Qualifications 7-10 years of experience in cybersecurity architecture, security operations, or cloud security. Deep understanding of: Enterprise security architectures, security frameworks (NIST, CIS, Zero Trust, ISO 27001), and best practices Email secure gateway (Proofpoint, Mimecast) Firewalls (Palo Alto, Cisco) and network security principles Cloud security (Azure, GCP) and security automation IAM, MFA, AD, Okta, Microsoft Authenticator Endpoint security, EDR, ITDR, and threat intelligence Data classification, DLP, and information protection Experience designing secure architectures for large-scale enterprises and cloud environments. Strong knowledge of DevSecOps, security automation, and scripting (Python, PowerShell, Terraform). Excellent communication and leadership skills, capable of influencing security strategies across the organization. CISSP Certifications (Required): CISM and CCSP is plus A bachelor's degree in computer science, information systems, or a related experience. 7-10 years of experience in cybersecurity, security operations, or network security. Hands-on expertise with: Zscaler, CrowdStrike, Microsoft Defender, Sophos Proofpoint (Email Security Gateway) EDR & ITDR solutions Palo Alto & Cisco Firewalls Okta, Microsoft Authenticator (MFA), Active Directory (AD), IAM Cloud Security (Azure and GCP) Data classification and protection strategies Strong knowledge of threat intelligence, SIEM, vulnerability management, and incident response. Experience with security frameworks such as PCI, NIST, ISO 27001, CIS Benchmarks. Strong analytical, problem-solving, and communication skills. Ability to work independently and collaboratively in a fast-paced environment. Excellent communication and interpersonal skills, capable of collaborating effectively with cross-functional teams. Working Conditions & Physical Demands This position requires in person office presence at least 4x a week.

Sr. Technical Security Engineer, W2 remote Minimum Requirements 5+ years of experience in application or product security, with a track record of securing desktop and mobile applications. Strong understanding of secure architecture for thick clients, including local storage protection, inter-process communication, JavaScript engines, OS-level security features, and web security standards (CSP, same-origin policy, TLS/HTTPS). Experience with mobile (iOS/Android) and desktop (Windows/mac OS/Linux) application security models. Proficiency in GenAI security, modern cryptography, certificate management, secure authentication (OAuth, WebAuthn, FIDO2), and secure session handling. Knowledge of OS-level hardening techniques, sandboxing, privilege separation, and secure use of platform APIs. Hands-on experience with secure coding practices in at least one systems language (C++, Rust, Go) and one application language (Kotlin, Swift, C#). Familiarity with static/dynamic analysis tools, fuzzing, penetration testing, and reverse engineering for client applications. Experience embedding security into the software development lifecycle (threat modeling, code reviews, secure design patterns). Ability to manage incident response and vulnerability remediation for thick client environments. Strong cross-team communication skills and ability to write clear developer-facing security guidelines.

This young and agile company, providing identity risk solutions is currently seeking a Senior Cloud Security Engineer with a focus on Infrastructure and Security to join their growing team. You will assist with the continuous maturation of their Cloud Security services within the Security division. This is an excellent opportunity for an experienced Cloud Security Engineer with experience in both Infrastructure and Security to take the next step into a challenging position with a company offering significant growth potential. About the Company: Founded in the last 10 years, they are one the fastest growing companies in their space. They are a fast-growing company that have built a platform that allows finance organisations and fintechs to strengthen their security defences. Their mission is to allow companies to manage their identity and fraud risk. Everything they do is entrenched in achieving engineering excellence. Their culture is not corporate, and they like to trust their employees to take on a lot of responsibility and have input into the shape of growth of the organisation. About the Senior Cloud Security Engineer (Infrastructure and Security) Vacancy: What you will be doing: • Serve as a cloud security subject matter expert, advise on and implementing best practices • Respond to security incidents and provide timely and appropriate solutions • Conduct cloud security risk assessments and audits • Conduct investigations into security incidents and potential threats • Take part in on call rotations for incident response and remediation • Assist with policy management, security audits, and due diligence for cloud security concerns • Advise on, configuring, and managing a variety of security tools • Keep informed about and respond to emerging security threats and vulnerabilities • Assist with cloud security reviews of potential vendors Ideal Requirements for the Senior Cloud Security Engineer (Infrastructure and Security) Vacancy: • Several years of experience working in a similar role with a focus on Cloud Security in AWS • Experience provisioning infrastructure in AWS using Terraform, CloudFormation, CDK, or similar tools • Experience configuring VPCs, route tables, NACLs, Security Groups, iptables, Web Application Firewall, Config, GuardDuty, Inspector, KMS, IAM, etc. • In depth knowledge of AWS security best practices around systems hardening, monitoring, and incident response • Experience taking part in an on-call rotation • You are passionate about securing infrastructure, reducing risk, and protecting data! • You are a subject matter expert on cloud security in AWS • You have a solid understanding of network architecture and protocols • You can advise on cloud security policies and procedures Apply to the Role: Roles like these are snapped up very quickly, so act now if you do not want to miss out! Reply to this advert or email your CV to **********************

Chief Information Security Officer (CISO) 📍 💰 Base Salary: Up to $325,000 + Bonus + Equity 🏢 Our Client: A Blockchain & Digital Asset Infrastructure Company About Our Client Our client is a fast-growing organization building infrastructure, software, and services that support the next generation of blockchain and digital asset ecosystems. They power secure transactions, institutional-grade solutions, and high-performance platforms used across the crypto economy. As the business scales, they are expanding their leadership team with a Chief Information Security Officer (CISO) who will own the strategic direction, operations, and continuous improvement of all information and cybersecurity initiatives. Role Overview The CISO will set the long-term vision for security across the entire organization, covering infrastructure, products, employee environments, and customer-facing systems. This leader will ensure that the company's digital asset capabilities, blockchain networks, APIs, and cloud environments meet the highest standards of protection, resilience, and regulatory readiness. This role requires an executive who can operate across technical, operational, and strategic levels-partnering with engineering, legal, compliance, product, and leadership teams. Key Responsibilities Design and drive a holistic security strategy covering infrastructure security, application security, product security, data governance, and operational risk. Safeguard digital asset environments, including wallets, key management systems, consensus mechanisms, and blockchain-based services. Build and lead an advanced threat detection, monitoring, and incident response program, ensuring rapid response and clear communication pathways. Collaborate with engineering teams to integrate secure development practices into blockchain, smart contract, and cloud-native workflows. Establish and maintain security controls, audits, and certifications, ensuring alignment with industry frameworks and regulatory expectations. Oversee vendor security, supply-chain risk management, and third-party assessments. Develop a culture of security throughout the business, including training, policy development, and ongoing risk awareness. Provide regular reports and briefings to the executive team on emerging threats, risk posture, and security roadmap progress. Experience & Qualifications 15+ years of experience in cybersecurity, with at least 5 years leading security organizations or programs at scale. Strong experience in blockchain security, digital asset custody, exchange or infrastructure security, or related crypto-native environments. Demonstrated success leading enterprise security programs that span cloud infrastructure, distributed systems, and high-availability environments. Skilled in working with frameworks such as SOC 2, ISO 27001, NIST, and global data protection standards. Expertise in cloud security (AWS, GCP, Azure), network security architecture, identity management, and DevSecOps. Comfortable operating in fast-moving, engineering-driven environments. Professional certifications (CISSP, CISM, CCISO, etc.) are a strong plus.

A financial firm is looking for a Chief Information Security Officer (CISO) to join their team in New York, NY. Compensation: $150-200K Responsibilities: Define and maintain the enterprise information security strategy, roadmap, and governance framework, aligned with business objectives and regulatory requirements Draft, maintain, and periodically review security-related policies and procedures Establish and chair/co-chair an Information Security / Cyber Risk Committee and contribute to Board-level reporting on cyber risk Develop and maintain the firm's information security governance framework Lead the firm's SOC 1 (Type 1/Type 2) and SOC 2 (Type 1/Type 2) readiness and ongoing attestation efforts Own the control catalog, control testing coordination, evidence collection, and remediation tracking across technology, operations, and third parties Act as primary security point of contact for external auditors, assessment firms, and key institutional partners Ensure security program alignment with SEC Regulation S-P, Reg S-ID, Reg SCI, SEC / Client cybersecurity expectations, and NYDFS 23 NYCRR 500 Partner with Compliance and Legal to interpret new regulations, assess impact, and implement necessary control and policy changes Maintain and periodically test the Incident Response Plan, Business Continuity and Disaster Recovery (BC/DR) from a security perspective Provide security oversight for cloud (AWS) and on-prem infrastructure, including network security, endpoint security, identity and access management (IAM), and data protection Work with Infrastructure/DevOps and application teams to embed secure SDLC practices, including code review, security testing, and secure deployment pipelines Oversee vulnerability management, including patch management processes, penetration testing, and remediation programs Define and oversee Security Operations Center (SOC) / XDR usage, log management, SIEM, threat detection, and incident handling Design and enforce data classification, data loss prevention (DLP), encryption, and key management controls Partner with business and product teams to ensure client data privacy and secure data flows, including with third-party vendors and partners Own the vendor security risk management program, including security due diligence, contract security clauses, and ongoing monitoring Evaluate and manage key security vendors Build and lead a small but high-impact security team, scaling capabilities over time Promote a security-first culture through training, awareness programs, and regular communication with staff at all levels Qualifications: Required Bachelor's degree in Computer Science, Information Security, Engineering, or related field; or equivalent experience 7+ years of progressive experience in information security, including at least 3 years in a leadership role (Head of Security, Deputy CISO, CISO, or equivalent) Hands-on experience leading SOC 1 and/or SOC 2 attestation projects at a financial institution, fintech, or SaaS provider Strong background in financial services or capital markets (broker-dealer, clearing firm, trading platform, or similar) Understanding of Information security frameworks (e.g., NIST CSF, NIST 800-53, ISO 27001) Understanding of Regulatory landscape for U.S. financial firms (e.g., SEC, Client, possibly NYDFS 500) Experience with Identity & access management, network security, endpoint security, and cloud security (preferably AWS) Experience building and maintaining incident response, BC/DR, and vulnerability/patch management programs Strong track record of cross-functional leadership, communicating complex security and risk topics to non-technical executives and boards Preferred Experience as CISO, Deputy CISO, or security leader at a broker-dealer, clearing firm, exchange/ATS, or large fintech Professional certifications such as CISSP, CISM, CISA, CRISC, CCSP or similar Experience with AWS security services Familiarity with DevSecOps practices and secure CI/CD pipelines Experience managing data localization and cross-border data separation initiatives

We are seeking a motivated Network Engineer for our client who 3+ years of hands-on experience supporting and maintaining enterprise network environments. The ideal candidate has a solid foundation in networking fundamentals and practical experience with key security and infrastructure tools such as DLP Forcepoint, Cisco networking, Fortinet firewalls, HPE servers/storage, and Arctic Wolf MDR. This role will assist in day-to-day network operations, troubleshooting, and implementation of improvements across our infrastructure. This is a contract-to-hire opportunity with one of Verinext's clients, onsite in Secaucus, NJ. Requirements Responsibilities Support, maintain, and troubleshoot enterprise network systems including switches, routers, firewalls, and wireless infrastructure Manage and monitor Cisco networking equipment, performing configuration changes and resolving connectivity issues Administer and support Fortinet firewalls, including rule updates, VPN configuration, and security event analysis Assist with deployment, configuration, and maintenance of HPE server and storage solutions Work with DLP Forcepoint to ensure data loss prevention policies are properly configured, monitored, and tuned Partner with the security team to monitor alerts and incidents via Arctic Wolf MDR, responding to potential threats and escalating as appropriate Participate in network upgrades, new hardware rollouts, and ongoing optimization projects Document network configurations, processes, and troubleshooting steps Provide Tier 1-2 support for network-related tickets and escalate complex issues as needed Ensure systems align with security, compliance, and best-practice standards Required Skills & Experience 3+ years of hands-on experience in network administration or engineering Strong working knowledge of Cisco networking (routing, switching, VLANs, ACLs, wireless) Experience configuring and supporting Fortinet firewalls (FortiGate, VPN, security policies) Practical experience with DLP Forcepoint for data protection and policy management Exposure to HPE server and storage platforms (ProLiant, Nimble, etc.) Familiarity with Arctic Wolf MDR monitoring and responding to security alerts Solid understanding of TCP/IP, DNS, DHCP, subnetting, NAT, VPNs, and standard networking principles Experience supporting Windows and/or Linux network environments Strong troubleshooting skills and the ability to work efficiently in fast-paced environments Excellent communication, documentation, and teamwork skills Preferred (Nice-to-Have) Relevant certifications such as CCNA, Network+, Fortinet NSE, or similar Experience with virtualization technologies (VMware, Hyper-V) Basic scripting or automation experience (PowerShell, Python) Exposure to cloud networking (Azure, AWS) Benefits Health Care Plan (Medical, Dental & Vision) Retirement Plan (401k, IRA)

Sharp Decisions is looking for the following: Role: Systems Admin & Engineering - Vice President Role Description Install and configure servers, storage devices, network and telecommunications equipment. Perform upgrades and maintenance on all IT infrastructure hardware. Install and configure server operating systems, database software, file server structure and protocols, email servers, authentication servers, back-up systems and firewalls. Monitor system performance daily. Provide support on all IT infrastructure-related issues. Manage incident response for any major outages. Role Objectives: Delivery Install and configure servers, storage devices, network and telecommunications equipment as required by business need and outlined by the system architect's designs. Perform upgrades and maintenance on all IT infrastructure hardware. Install and configure server operating systems, database software, file server structure and protocols, email servers, authentication servers, back-up systems and firewalls. Configure domain and security policies and define access lists. Configure and deploy monitoring and reporting utilities, operations logs and access auditing tools. Monitor system performance daily and run reports on key metrics such as storage capacity, server resource utilization, connectivity and uptime, back-up performance and incident logs. Provide support on all IT infrastructure-related issues and escalation support for all other IT departments. Manage incident response for any major outages. Test disaster recovery systems and implement disaster response plans as needed. Role Objectives: Interpersonal Collaborate with IT systems architect to execute system designs. Provide reports and analysis on system performance and support planning of infrastructure improvements. Engage with other IT infrastructure teams to install hardware, configure devices and policies, and coordinate upgrades and maintenance. Coordinate incident response with all engineers and system owners during outages. Partner with application, web administration, database and other development focused teams to create infrastructure plans and review system performance. Work with disaster recovery, storage management and cyber security architects to implement systems, hardware and policy configurations to support their designs. Role Objectives: Expertise Demonstrate comprehensive understanding of IT infrastructure hardware, cloud service platforms, operating systems, virtual environments and configuration tools. Display expertise with application integration, update and change management, database design and structures, system deployments and automated reporting and monitoring tools. Exhibit knowledge of regulations regarding data security and retention, anti-virus tools and protection models, network security and access protocols, and firewall configurations. Show ability to manage and prioritize projects across multiple functions and divisions and manage incident response while providing clear communications to affected parties. Qualifications and Skills 5+ years of experience in an infrastructure/end-user support role. • Microsoft Active Directory (User, group and computer management) • Microsoft Windows Desktop and Server Operating Systems - Windows registry, Group Policy, File/folder security concepts (NTFS/share permissions, etc.) • Microsoft Office/SharePoint/Teams • Microsoft SCCM • Infoblox DNS/DHCP Management • Performance Monitoring • Enterprise Backups (Commvault/Rubrik) • Enterprise storage (Pure) • Citrix Workspace/XenDesktop Virtual Desktop • VMware vSphere • Core networking concepts (DNS, DHCP, etc.) • Excellent customer service skills. • Excellent verbal and written communication skills. • High sense of urgency to support a trading floor. • Able to follow directions, priorities, and guidance from management. • Ability to multi-task and work on several projects at the same time. • Strong ability to deliver on time. • Ability to document process, requirements, and create test plans. • Strong ability to translate business requirements into technical solutions. • Strong team player.

The Role We are looking for a Network Engineer to join our IT team to handle the design, implementation, and maintenance of our internal and client-side network infrastructure. You will play a key role in ensuring the stability, security, and performance of our networks, enabling us to deliver exceptional service to our clients and support our internal operations effectively. You should be comfortable with everything from troubleshooting network issues to supporting end-user systems, and contributing to network improvements within the company and on our deployed microgrids. This role will report to our Senior Manager of IT and be based at our HQ in Ridgewood, NJ, with travel up to 20% of the time. Key responsibilities will include: Network Design & Implementation: Plan, design, and implement network solutions for both internal use and client sites, utilizing routers, switches, firewalls, wireless access points, and other network devices. Conduct on-site client assessments to understand their needs and develop tailored network architectures. Ensure network designs meet performance, security, and scalability requirements, incorporating redundancy and future-proofing best practices. Network Maintenance & Optimization: Proactively monitor network performance, analyze metrics, and identify areas for improvement. Perform regular maintenance and optimization of network devices and services to ensure reliability and maximize throughput. Security & Compliance: Implement and maintain network security best practices, including firewalls, VPNs, and intrusion detection/prevention systems. Ensure the security of both internal and client systems, adhering to industry regulations. Troubleshooting & Support: Provide Tier 1/2/3 support for network-related issues, resolving escalated or complex problems remotely and on-site at client locations. Respond to inbound support requests, collaborating with the help desk to address and resolve network incidents promptly. Work with vendors and service providers to address outages and equipment failures effectively. Documentation & Reporting: Maintain comprehensive network diagrams, standard operating procedures (SOPs), and configuration records. Generate reports on network health, capacity planning, and performance trends to support strategic decision-making. Collaboration & Stakeholder Engagement: Collaborate effectively with the Sr. IT Manager and team leads to align network strategies with business objectives. Participate in cross-functional teams to evaluate and integrate new technologies, expanding and upgrading infrastructure as needed. The Ideal Candidate Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience). 3+ years of hands-on experience in network engineering or a similar role. Professional certifications (e.g., CCNA, CCNP) are strongly preferred. In-depth knowledge of routing protocols (e.g., BGP, OSPF), switching technologies (VLANs, STP), and firewall configurations. Familiarity with SCADA devices, FortiGate firewalls, and Teltonika modems is highly desirable. Experience with network monitoring tools (e.g., SolarWinds, Nagios, PRTG) and logging systems (SIEM solutions). Familiarity with cloud networking environments (AWS, Azure, or GCP) is a plus. Strong troubleshooting skills to diagnose and resolve network issues in both on-premise and client-site environments. Excellent problem-solving and analytical abilities. Strong communication and interpersonal skills to effectively interact with technical and non-technical stakeholders, including clients. Detail-oriented with the ability to prioritize tasks, manage time efficiently, and meet deadlines. Team player with a collaborative mindset and a customer-focused approach. Willingness to travel to US-based client sites as necessary. Ability to participate in an on-call rotation when required. This is a great opportunity to have a long-term impact on a fast-paced, private equity-backed growth business. Some of the core virtues embraced by Scales' employees include: Do the Right Thing Act Like an Owner Hustle Demand Results Go Together Evolve or Disappear We offer a competitive compensation package and a comprehensive benefits program including medical benefits, paid vacation and holidays, and 401K matching. About Scale Microgrids Scale Microgrids (“Scale”) is a fully integrated distributed energy platform focused on designing, implementing, and financing innovative distributed clean energy solutions. Through its leading technical expertise and access to scale capital, Scale helps its customers transition to a decentralized energy future by providing and financing sustainable, cost-effective, and resilient power solutions. Scale has its own proprietary microgrid solution, which provides customers with cheaper, cleaner, and more reliable power, and also partners with third-party developers to acquire and/or finance a broader range of distributed energy assets. Scale is backed by EQT, a firm with ~$250B in assets, bringing a depth of experience, resources, and capital that will enable Scale to continue pursuing our vision of powering the world with distributed energy. The investment enables Scale to own and operate billions of dollars in distributed generation assets. To learn more about Scale Microgrids, please visit ******************************** About EQT EQT is a leading purpose-driven global investment organization with EUR 246 billion in total assets under management, divided into two business segments: Private Capital and Real Assets. EQT owns portfolio companies and assets in Europe, Asia Pacific, and the Americas and supports them in achieving sustainable growth, operational excellence, and market leadership. To learn more about EQT, please visit ********************* Scale strives to attract and retain a workforce that reflects the composition of our customer base and communities. We are committed to providing a work environment that provides everyone with equal access and opportunity to contribute and drive meaningful outcomes. We encourage applicants from all backgrounds to apply and will consider qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

Be Part Of A High-Performing Team This organization operates at the forefront of a highly regulated, innovation-driven industry, supporting complex technology environments that enable critical business outcomes. The technology team is responsible for maintaining resilient, scalable, and secure infrastructure while continuously modernizing how networks are designed, automated, and monitored. Collaboration, technical excellence, and forward-thinking problem solving are central to how this team operates, with ongoing initiatives focused on cloud enablement, automation, and enterprise network optimization. What's In Store For You This role offers the opportunity to work in a technically advanced environment where automation and cloud networking are core priorities. The position provides exposure to enterprise-scale infrastructure, hands-on ownership of impactful initiatives, and the ability to contribute to long-term architectural improvements. The work model supports a hybrid schedule with on-site collaboration at a primary technology hub, enabling both flexibility and close partnership with cross-functional teams. How You Will Make an Impact Design, enhance, and maintain enterprise network and monitoring platforms to support business and operational needs Implement automation and scripting solutions to streamline network operations and lifecycle management Support cloud and hybrid network environments, including connectivity, segmentation, and performance optimization Participate in architectural discussions, providing technical insight and practical recommendations Troubleshoot and resolve complex network issues across on-prem and cloud environments Develop and maintain technical documentation, standards, and operational procedures Collaborate with infrastructure, architecture, and vendor partners to deliver reliable and scalable solutions Are You an Experienced Network Engineering Professional Ready to Make an Impact? Extensive experience in enterprise network engineering and operations Strong hands-on expertise with Cisco routing and switching technologies Proven experience automating network tasks using scripting languages such as Python or Bash Practical experience deploying and managing cloud network infrastructure (AWS preferred) Familiarity with Infrastructure as Code tools for network provisioning and orchestration Solid understanding of network architecture concepts and the ability to contribute to design discussions Strong communication skills and confidence engaging with technical and business stakeholders Bachelor's degree in a related technical field or equivalent professional experience To apply, please submit your resume and cover letter highlighting your relevant experience and qualifications. ------- About us: Axiom Path is a global solutions provider leveraging AI and pre-built analytics to deliver exceptional services across various domains. Our core values (Accountability, Excellence, Integrity, and Community) guide us in providing optimized results and unparalleled service. We are an equal opportunity employer, a SIA-recognized diversity-owned firm, committed to diversity and inclusion.